last executing test programs: 4m26.184501522s ago: executing program 3 (id=2722): r0 = landlock_create_ruleset(&(0x7f0000000040)={0x8034, 0x2, 0x2}, 0x18, 0x0) landlock_restrict_self(r0, 0x7) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @local}, 0x18) 4m26.136140963s ago: executing program 3 (id=2725): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0) madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xc) 4m26.096770193s ago: executing program 3 (id=2728): r0 = landlock_create_ruleset(&(0x7f00000000c0)={0x8008}, 0x10, 0x0) landlock_restrict_self(r0, 0x0) r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) tgkill(r1, r1, 0x1f) 4m26.046196479s ago: executing program 3 (id=2731): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000280)='./file0\x00', 0x0, 0x97801, 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x112) 4m26.036387588s ago: executing program 3 (id=2734): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, &(0x7f0000000f40)=""/4083, 0x0, 0xff32, 0x1, 0x1}, 0x28) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={r1, 0x34}, 0x10) 4m25.812996732s ago: executing program 3 (id=2742): socket(0x11, 0x800000003, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, 0x0, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x14, 0x4, 0x4, 0x6}, 0x48) bpf$MAP_UPDATE_ELEM(0x4, &(0x7f0000000180)={r0, &(0x7f0000000000), 0x0}, 0x20) 4m25.766249974s ago: executing program 32 (id=2742): socket(0x11, 0x800000003, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, 0x0, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x14, 0x4, 0x4, 0x6}, 0x48) bpf$MAP_UPDATE_ELEM(0x4, &(0x7f0000000180)={r0, &(0x7f0000000000), 0x0}, 0x20) 3m27.236437045s ago: executing program 1 (id=5006): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x1f2) lseek(r0, 0x0, 0x0) 3m27.1885745s ago: executing program 1 (id=5009): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x7, 0xfa00, {0x0, &(0x7f0000000000)={0xffffffffffffffff}, 0x13f}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000280)={0x15, 0x110, 0xfa00, {r1, 0x0, 0x0, 0x30, 0x0, @in6={0xa, 0x4e23, 0x1, @loopback, 0x5}, @ib={0x1b, 0x0, 0xc, {"7d735931001016095e000303ff010001"}, 0x4}}}, 0x118) write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f0000000080)={0x7, 0x8, 0xfa00, {r1}}, 0x10) write$RDMA_USER_CM_CMD_DESTROY_ID(r0, &(0x7f0000000180)={0x1, 0x10, 0xfa00, {&(0x7f0000000140), r1}}, 0x18) 3m27.183926694s ago: executing program 1 (id=5012): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="09000000030000000400010005"], 0x48) bpf$MAP_CREATE(0x0, 0x0, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b7030000000000fd850000007200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000680)='sys_exit\x00', r1}, 0x10) brk(0x689d80000000) 3m27.152240898s ago: executing program 1 (id=5013): mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x3) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1edc01, 0x0) mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000180)='./file0/../file0\x00', 0x0, 0x887008, 0x0) 3m27.093994836s ago: executing program 1 (id=5015): mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0xc00, 0x0) chroot(&(0x7f0000000100)='./file0\x00') mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000140)='ramfs\x00', 0x10, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x0) 3m26.690993012s ago: executing program 1 (id=5035): r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) r1 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000000)={0x2001, 0x0, 0x3}, 0x10) bind$tipc(r1, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 3m26.620393535s ago: executing program 33 (id=5035): r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) r1 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000000)={0x2001, 0x0, 0x3}, 0x10) bind$tipc(r1, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 3m4.809318966s ago: executing program 4 (id=5323): r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x140, 0x0) r1 = syz_io_uring_setup(0x2421, &(0x7f0000000380)={0x0, 0x0, 0x13090}, &(0x7f0000000100), &(0x7f0000000080)) r2 = signalfd(0xffffffffffffffff, &(0x7f00007aeff8)={[0xfffffffffffffffc]}, 0x8) read$msr(r2, &(0x7f00000002c0)=""/195, 0xc3) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 3m3.931998447s ago: executing program 4 (id=5334): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_XSAVE(r2, 0x9000aea4, &(0x7f0000000240)) ioctl$KVM_CAP_HYPERV_SYNIC2(r2, 0x4068aea3, 0x0) 3m3.840477674s ago: executing program 4 (id=5335): mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0) mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000300)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x101000, 0x0) fsync(r0) 3m3.782738436s ago: executing program 4 (id=5337): r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) mkdir(&(0x7f0000000100)='./file0\x00', 0x48) mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x227) 3m3.779294294s ago: executing program 4 (id=5344): r0 = syz_open_dev$dri(&(0x7f0000000080), 0xfffffffffffffffc, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0], 0x1}) ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, &(0x7f00000001c0)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_SETPLANE(r0, 0xc03064b7, &(0x7f0000000180)={r1, 0x0, r2, 0xc58, 0xffffffff, 0x9, 0x7, 0x7, 0x6, 0x0, 0xe, 0xffffffff}) 3m3.515678574s ago: executing program 4 (id=5346): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000000100)=[{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000180)="5bc9d51b0010853f8e645dc714b8815bff642957d7d2f849d7f5b80b5c8f94e03a62189065e8f4430d1ebd24aacd9c09056784c6c4a41eed3bb890bfe0e8517d2b9e4ec0572f7c606779ba63ae0ed1d8e6a49b4efd62de202b322189bc62fd3c4c79c2b1080cff2368d7a8c06a0b904aaf4342ec8b193dbfcf69a8ff3cf168efc046cede13a895958b779791b7a00c045a6f50214b6cd4b5b10a2f433923e261cb9a8d8365", 0xa5}, {&(0x7f00000000c0)="99472fa420b36a4532aaafa4624703fb5e133e8e2b7441b3dddf30f1b4f1c3ca130caa7d3323175bb042383845aeafd2eb1d2676c5832edc59171f", 0x3b}, {&(0x7f0000000240)="a7e28e97e46b403b56f9195b35", 0xd}, {&(0x7f0000000280)="6f156d21c411714c71cd397e243394fe2b", 0x11}, {&(0x7f00000002c0)="2e695621ee7a92305a205f899ab86c6ad2614b8246070db41b1da028312dd740a9c1fd09422755ee4d302d9d596d8207129ad00f0760f37112402fb35df2220c6463449b1e770dca724422bf3ea674a2bafcb85b012771544496115f0bc40688af0e", 0x62}], 0x5, 0x0, 0x0, 0x20040004}], 0x1, 0x40810) 3m3.422783492s ago: executing program 34 (id=5346): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000000100)=[{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000180)="5bc9d51b0010853f8e645dc714b8815bff642957d7d2f849d7f5b80b5c8f94e03a62189065e8f4430d1ebd24aacd9c09056784c6c4a41eed3bb890bfe0e8517d2b9e4ec0572f7c606779ba63ae0ed1d8e6a49b4efd62de202b322189bc62fd3c4c79c2b1080cff2368d7a8c06a0b904aaf4342ec8b193dbfcf69a8ff3cf168efc046cede13a895958b779791b7a00c045a6f50214b6cd4b5b10a2f433923e261cb9a8d8365", 0xa5}, {&(0x7f00000000c0)="99472fa420b36a4532aaafa4624703fb5e133e8e2b7441b3dddf30f1b4f1c3ca130caa7d3323175bb042383845aeafd2eb1d2676c5832edc59171f", 0x3b}, {&(0x7f0000000240)="a7e28e97e46b403b56f9195b35", 0xd}, {&(0x7f0000000280)="6f156d21c411714c71cd397e243394fe2b", 0x11}, {&(0x7f00000002c0)="2e695621ee7a92305a205f899ab86c6ad2614b8246070db41b1da028312dd740a9c1fd09422755ee4d302d9d596d8207129ad00f0760f37112402fb35df2220c6463449b1e770dca724422bf3ea674a2bafcb85b012771544496115f0bc40688af0e", 0x62}], 0x5, 0x0, 0x0, 0x20040004}], 0x1, 0x40810) 25.360153373s ago: executing program 5 (id=8906): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000200)={0x0, 0x22, 0xf, {[@global=@item_012={0x0, 0x1, 0x5}, @local=@item_4={0x3, 0x2, 0x0, "45501821"}, @global=@item_012={0x1, 0x1, 0x9, "f5"}, @global=@item_012={0x1, 0x1, 0x7, "84"}, @main=@item_4={0x3, 0x0, 0xb, "9e3ce079"}]}}, 0x0}, 0x0) syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0) r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) writev(r1, &(0x7f0000000180)=[{&(0x7f0000000080)='w', 0x1}], 0x1) 23.737678354s ago: executing program 5 (id=8932): r0 = socket$xdp(0x2c, 0x3, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f00000002c0)=0x100, 0x4) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000280)={'batadv_slave_1\x00', 0x0}) setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x210000, 0x1000, 0x80}, 0x20) bind$xdp(r0, &(0x7f0000000240)={0x2c, 0x1, r2}, 0x60) 23.642597402s ago: executing program 5 (id=8935): r0 = fsopen(&(0x7f00000001c0)='devpts\x00', 0x0) setrlimit(0x7, &(0x7f0000000400)) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) fsmount(r0, 0x0, 0xf) fsconfig$FSCONFIG_SET_FLAG(r0, 0x0, &(0x7f0000000040)='ro\x00', 0x0, 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0) 23.627297141s ago: executing program 5 (id=8938): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x260) 23.560766302s ago: executing program 5 (id=8939): sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x64}}, 0x0) syz_clone(0x80842111, 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) io_setup(0x3ff, &(0x7f0000000500)=0x0) io_submit(r2, 0xf000, &(0x7f0000000300)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f00000001c0)='m', 0xfffffdfc}]) syz_clone(0x42164000, 0x0, 0x0, 0x0, 0x0, 0x0) 23.397962229s ago: executing program 5 (id=8948): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) close(r1) socket$unix(0x1, 0x1, 0x0) ioctl$SIOCSIFHWADDR(r1, 0x8937, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"}) 23.304500003s ago: executing program 35 (id=8948): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) close(r1) socket$unix(0x1, 0x1, 0x0) ioctl$SIOCSIFHWADDR(r1, 0x8937, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"}) 2.536568462s ago: executing program 7 (id=9331): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902"], 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000040)='task\x00') fchdir(r1) mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0) syz_open_procfs$namespace(r0, &(0x7f00000000c0)='ns/time\x00') 2.287067885s ago: executing program 0 (id=9334): mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'md5-generic\x00'}, 0x5a) syz_clone(0x1002000, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = accept4(r0, 0x0, 0x0, 0x0) write(r1, &(0x7f0000000040)="cb", 0xfffffdef) 2.179739697s ago: executing program 0 (id=9339): r0 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000007fc0)=[@in={0x2, 0x0, @rand_addr=0x64010102}]}, &(0x7f0000000100)=0x10) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='net_prio.prioidx\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f0000000040), 0x55af) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x66, &(0x7f0000000080), &(0x7f0000000000)=0x8) 2.107945105s ago: executing program 0 (id=9341): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = syz_io_uring_setup(0x19d1, &(0x7f00000003c0)={0x0, 0x0, 0x10100, 0x8000000, 0x8000000}, &(0x7f0000000080)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}) io_uring_enter(r1, 0xa3d, 0x0, 0x0, 0x0, 0xff39) recvmmsg(r0, &(0x7f0000000400)=[{{0x0, 0xf5ffffff, 0x0, 0x0, 0x0, 0x4000000}}], 0xf00, 0x0, 0x0) shutdown(r0, 0x1) 1.779939549s ago: executing program 2 (id=9346): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x1, 0x7fff0000}]}) signalfd4(0xffffffffffffffff, &(0x7f0000000140)={[0xffeffffffffffffa]}, 0x8, 0x0) r0 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec25, 0x8, 0x1, 0x40000333}, &(0x7f00000006c0)=0x0, &(0x7f00000001c0)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfdfffffc, 0x0, 0x4) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}) io_uring_enter(r0, 0x847ba, 0x0, 0xe, 0x0, 0x0) 1.58663778s ago: executing program 2 (id=9347): r0 = syz_io_uring_setup(0x24fa, &(0x7f0000000340)={0x0, 0x9140, 0x10100}, &(0x7f0000000400)=0x0, &(0x7f0000000140)=0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_serviced_recursive\x00', 0x275a, 0x0) write$UHID_CREATE2(r3, &(0x7f00000002c0)=ANY=[@ANYBLOB=' '], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}) io_uring_enter(r0, 0x104eb4, 0x0, 0x0, 0x0, 0x0) 1.584106174s ago: executing program 2 (id=9355): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002800), 0x2, 0x0) fcntl$setstatus(r0, 0x4, 0x800) r1 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x10c4, 0x10, 0x0, 0x180000}, &(0x7f0000000340)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x1}}) io_uring_enter(r1, 0x3516, 0x0, 0x0, 0x0, 0x0) 1.302171816s ago: executing program 7 (id=9348): socket$netlink(0x10, 0x3, 0x0) fanotify_init(0x202, 0x0) r0 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0x79a8, 0x8, 0x1, 0x5000032f}, &(0x7f00000006c0)=0x0, &(0x7f0000000140)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}) io_uring_enter(r0, 0x847ba, 0x0, 0xe, 0x0, 0x0) 1.301990577s ago: executing program 2 (id=9349): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="adcd1a9a3fc36e961ed00fe41b0cd695", 0x20) r1 = accept4$alg(r0, 0x0, 0x0, 0x0) read$alg(r1, &(0x7f00000012c0)=""/4109, 0x100d) sendmmsg$alg(r1, &(0x7f0000000c80)=[{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f00000000c0)="7f1ad71c5e1e2ffd65015711202c22a16e97f0b88f833c486c5fbe2f289a0d0f74a06da438dab866494a247e9e4e4f06f21c7c3f5c4dc83ecf01cf0f3edeb9a676c8fb387ad8e1ef53ac7dfd6baf1ecf42036e181292251526714cf6d8fb4bce389c96bc0e24d3abc248a5b98fa279d377b558a6a1486d3a79e1164c19f1c333019380a90df8ef6b", 0x88}, {&(0x7f0000000180)="b01220ee4b5a0b12c273972ea3edd768dbad1c3febf48a9926f16268a3edc6f2ff97ba688eaaaf7ee0f2264fb2ee0f67e6121291692267d8b34d076518f221f60e554115e2810116af423f9f1534f78900edd661bc516f8d574e309f4913645794855756a586a7ccc83d81ea4d2578711903a191dd576ce98d41453c09625efe7dff4b6222712a7309e131c3841dec7fdfdea97eaa9652e221e15ad8cb5793f185774b0f49782a59e05617354be85a35db7bcfe79be4356ede43b918981ce2318a65cfe8b262", 0xc6}, {&(0x7f0000000280)="faab1d43a65d20ccf90a2bc53c6384d81e049741816045278e7e25ee0c020808bb08ab9992f5ffd89cd1df31c662ff364cbace61fcb7e067b266f3fed7c325d75bd964ef413b57037d7b69e34cdda89b0328e064119c9e8c7beb616f163ccf71e6f0ce625cddf3ac464cae067dc59d", 0x6f}, {&(0x7f0000002300)="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", 0xe50}], 0x4, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x20000850}], 0x1, 0x4000080) 1.210392582s ago: executing program 0 (id=9350): r0 = socket$kcm(0x2, 0x5, 0x84) sendmsg$inet(r0, &(0x7f0000000600)={&(0x7f00000001c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000380)=[{&(0x7f0000000640)="80", 0x26892}], 0x1}, 0xfc) sendmsg$inet(r0, &(0x7f0000000680)={&(0x7f0000000000)={0x2, 0x4e24, @rand_addr=0x64010102}, 0x10, &(0x7f0000000540)=[{&(0x7f0000000240)="f9", 0x1}], 0x1}, 0x4000080) sendmsg$inet(r0, &(0x7f00000010c0)={&(0x7f0000000f00)={0x2, 0x4e24, @rand_addr=0x64010102}, 0x10, &(0x7f0000001080)=[{&(0x7f0000000f40)='i', 0x1}], 0x1}, 0x8010) timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000)) timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) 1.208180227s ago: executing program 2 (id=9359): pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newqdisc={0x3c, 0x24, 0x2, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0x0, 0x5}, {0x0, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_codel={{0xa}, {0xc, 0x2, [@TCA_CODEL_ECN={0x8, 0x4, 0x1}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x44000}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010001fff752b056800080000faff8141", @ANYRES32=0x0, @ANYBLOB="67a9fde500000000280012800a00010076786c616e"], 0x3}}, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc) splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0) 1.135310044s ago: executing program 7 (id=9352): mlock(&(0x7f00007fe000/0x800000)=nil, 0x800000) r0 = userfaultfd(0x801) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x10}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000140)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3}) ioctl$UFFDIO_WRITEPROTECT(r0, 0xc018aa06, &(0x7f00000000c0)={{&(0x7f0000b72000/0x400000)=nil, 0x400000}, 0x1}) madvise(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x19) 890.119555ms ago: executing program 0 (id=9356): r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0) bind$llc(r0, &(0x7f0000000140)={0x1a, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x10) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.bfq.io_queued\x00', 0x275a, 0x0) write$cgroup_int(r1, &(0x7f0000000000), 0xffffff6a) sendfile(r0, r1, 0x0, 0xffffffff000) recvmmsg(r0, &(0x7f0000000640)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000b00)=""/225, 0xe1}], 0x1}, 0xffffffff}], 0x1, 0x0, 0x0) 798.751385ms ago: executing program 7 (id=9357): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000e00), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000e40)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_SCAN(r1, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000380)={0x1c, r2, 0xf21, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20000015}, 0x44000) 775.233169ms ago: executing program 7 (id=9358): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000140)=0x15) ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000002c0)=0x7e) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000200)=0x3) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180)=0x3) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x7e) 697.113266ms ago: executing program 7 (id=9360): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f000905", @ANYRES64], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000b00)={0x18, &(0x7f0000000040)=ANY=[@ANYBLOB="00000f00000009003d140f296cbebcd09647190890"], 0x0, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io(r0, &(0x7f0000000b00)={0x18, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000100), 0x0, 0x0) ioctl$HIDIOCGFIELDINFO(r1, 0xc038480a, &(0x7f0000000000)={0x2, 0x100, 0x5, 0x5, 0x2d44, 0x1bf0, 0x9, 0x46, 0x5, 0x5, 0x7, 0x2, 0x80000001}) 514.060595ms ago: executing program 6 (id=9364): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x4020aeb2, &(0x7f0000000300)={0x0, 0x12c, @ioapic={0xffff1000, 0x8000, 0x2, 0x80000001, 0x0, [{0x1, 0x85, 0x1, '\x00', 0x4}, {0x5, 0x3, 0x0, '\x00', 0x6}, {0x7, 0x3, 0xe, '\x00', 0x3b}, {0x4e, 0xe, 0xd6, '\x00', 0x86}, {0xc, 0xb, 0x6, '\x00', 0x4}, {0xf, 0x8, 0xf5, '\x00', 0x3}, {0x2, 0xa, 0x50, '\x00', 0x6}, {0x88, 0x3, 0x2a, '\x00', 0x80}, {0x4, 0x0, 0xa, '\x00', 0x1}, {0x8, 0x9, 0x3, '\x00', 0x8}, {0x3, 0x6, 0x3, '\x00', 0x6}, {0x2, 0x9, 0x0, '\x00', 0x7f}, {0x14, 0x51, 0xa, '\x00', 0xfc}, {0xe, 0xfc, 0x5, '\x00', 0x1}, {0x9, 0x2, 0x6, '\x00', 0x9}, {0x1, 0x3, 0xfe, '\x00', 0x3}, {0x2, 0xb, 0xd6, '\x00', 0x7f}, {0x7, 0x15, 0xca, '\x00', 0x6}, {0x0, 0x1, 0x4, '\x00', 0x13}, {0x4, 0x0, 0x40, '\x00', 0xda}, {0x3, 0x3, 0x6, '\x00', 0x9}, {0x9, 0x3, 0x1, '\x00', 0x2}, {0xf9, 0x1, 0x4, '\x00', 0x8}, {0x7, 0xc, 0x0, '\x00', 0x6}]}}) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f0000000040)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 426.479013ms ago: executing program 6 (id=9365): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x0, 0x20}, 0xc) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f0000000180)="1a", 0x34000, 0x0, &(0x7f0000000480)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendmmsg$sock(r0, &(0x7f0000000800)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)="89", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000001c0)="69b4", 0x2}], 0x1}}], 0x2, 0x48800) shutdown(r0, 0x1) 288.285567ms ago: executing program 2 (id=9366): r0 = syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRESOCT], 0x0) syz_usb_disconnect(r0) r1 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x200) syz_usb_disconnect(r0) syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[], 0x0) ioctl$EVIOCRMFF(r1, 0x4004550d, 0x0) 287.663443ms ago: executing program 6 (id=9367): r0 = syz_open_dev$mouse(&(0x7f00000000c0), 0x0, 0x2042) r1 = syz_io_uring_setup(0x110, &(0x7f0000000200)={0x0, 0xfec9, 0x8, 0x5, 0x3d4}, &(0x7f0000000040)=0x0, &(0x7f0000000140)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}) io_uring_enter(r1, 0xdb4, 0x0, 0x0, 0x0, 0x0) write$binfmt_script(r0, 0x0, 0x0) 210.077358ms ago: executing program 6 (id=9368): ioctl$DRM_IOCTL_MODE_SETCRTC(0xffffffffffffffff, 0xc06864a2, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000300)="2e00000010008188040f80ec59acbc0413a181000b00000000010000000000000e000a000f000000028002002d1f", 0x2e}], 0x1}, 0x0) close(r0) 139.79518ms ago: executing program 6 (id=9369): r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000200)={0x8000, 0x101, 0x4}) r1 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000040)={0x0, &(0x7f00000002c0)=[0x0], 0x0, 0x0, 0xfffffd52, 0x1}) ioctl$DRM_IOCTL_MODE_CURSOR(r0, 0xc01c64a3, &(0x7f0000000280)={0x3, r2, 0x1, 0xffff, 0xa, 0x1ff, 0x1}) ioctl$DRM_IOCTL_MODE_CURSOR2(r0, 0xc02464bb, &(0x7f0000000080)={0x3, r2, 0x1fc, 0x0, 0x4, 0x800008, 0x0, 0x4, 0x4000}) 309.466µs ago: executing program 6 (id=9370): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x20080, 0x100f9}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000100)={'batadv0\x00', 0x0}) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$BATADV_CMD_SET_MESH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)={0x24, r3, 0x209, 0x0, 0x0, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}]}, 0x24}}, 0x0) 0s ago: executing program 0 (id=9371): syz_usb_connect(0x4, 0x0, 0x0, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x4, &(0x7f0000000240)=@lang_id={0x4, 0x3, 0xf0ff}}]}) r0 = syz_open_dev$evdev(&(0x7f0000001540), 0x0, 0x0) ioctl$EVIOCGLED(r0, 0x5452, &(0x7f0000000240)=""/77) ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000000180)={0x57, 0x0, 0x0, {0xfffe, 0x1}, {0x74, 0x2}, @const={0x6, {0x7f, 0x0, 0x8000, 0xfffd}}}) r1 = syz_open_dev$evdev(&(0x7f00000000c0), 0x78, 0x822b01) write$char_usb(r1, &(0x7f0000000040)="e2", 0x1068) kernel console output (not intermixed with test programs): .996098][T22411] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only [ 296.999924][T22411] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 297.004661][T22411] overlayfs: failed to get uuid (433/file1, err=-13); falling back to uuid=null. [ 297.061508][T22413] input: syz0 as /devices/virtual/input/input71 [ 297.120057][T18680] usb 5-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 297.124024][T18680] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 297.125225][ T140] ath9k_htc 11-1:1.0: ath9k_htc: Target is unresponsive [ 297.127494][T18680] usb 5-1: Product: syz [ 297.130547][ T140] ath9k_htc: Failed to initialize the device [ 297.131910][T18680] usb 5-1: Manufacturer: syz [ 297.131926][T18680] usb 5-1: SerialNumber: syz [ 297.133852][T18680] usb 5-1: config 0 descriptor?? [ 297.137312][ T1336] usb 11-1: ath9k_htc: USB layer deinitialized [ 297.349394][T18680] usb 5-1: USB disconnect, device number 24 [ 297.435115][ T1336] usb 11-1: new high-speed USB device number 18 using dummy_hcd [ 297.580508][T22422] input: syz0 as /devices/virtual/input/input72 [ 297.585174][ T1336] usb 11-1: Using ep0 maxpacket: 16 [ 297.590434][ T1336] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 297.595339][ T1336] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 297.599660][ T1336] usb 11-1: New USB device found, idVendor=0458, idProduct=5012, bcdDevice= 0.00 [ 297.603369][ T1336] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 297.608907][ T1336] usb 11-1: config 0 descriptor?? [ 297.712330][T22426] overlayfs: upper fs does not support tmpfile. [ 297.838666][T10229] Bluetooth: hci4: Frame reassembly failed (-84) [ 298.027991][ T1336] input: HID 0458:5012 as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.0/0003:0458:5012.002A/input/input73 [ 298.104225][ T1336] input: HID 0458:5012 as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.0/0003:0458:5012.002A/input/input74 [ 298.171931][ T1336] kye 0003:0458:5012.002A: input,hiddev0,hidraw0: USB HID v0.09 Device [HID 0458:5012] on usb-dummy_hcd.6-1/input0 [ 298.225605][T18680] usb 11-1: USB disconnect, device number 18 [ 298.335339][ T29] usb 5-1: new high-speed USB device number 25 using dummy_hcd [ 298.497796][ T29] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 298.502843][ T29] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 298.508170][ T29] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 298.512595][ T29] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 298.518190][ T29] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 298.521930][ T29] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 298.527747][ T29] usb 5-1: config 0 descriptor?? [ 298.774645][T22434] syzkaller1: entered promiscuous mode [ 298.776768][T22434] syzkaller1: entered allmulticast mode [ 298.943598][ T29] plantronics 0003:047F:FFFF.002B: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 299.155221][ T6061] usb 11-1: new high-speed USB device number 19 using dummy_hcd [ 299.306585][ T6061] usb 11-1: config index 0 descriptor too short (expected 39, got 27) [ 299.310262][ T6061] usb 11-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 299.315478][ T6061] usb 11-1: config 0 interface 0 has no altsetting 0 [ 299.320841][ T6061] usb 11-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 299.324744][ T6061] usb 11-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 299.328920][ T6061] usb 11-1: Product: syz [ 299.330737][ T6061] usb 11-1: Manufacturer: syz [ 299.332248][ T6061] usb 11-1: SerialNumber: syz [ 299.335233][ T6061] usb 11-1: config 0 descriptor?? [ 299.339228][ T6061] hub 11-1:0.0: bad descriptor, ignoring hub [ 299.341689][ T6061] hub 11-1:0.0: probe with driver hub failed with error -5 [ 299.348218][ T6061] usb 11-1: selecting invalid altsetting 0 [ 299.845181][ T63] Bluetooth: hci4: command 0x1003 tx timeout [ 299.849545][ T5984] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 299.975262][T22436] usb 11-1: reset high-speed USB device number 19 using dummy_hcd [ 300.008968][T22442] tipc: Enabled bearer , priority 10 [ 300.166291][T22432] usb 5-1: string descriptor 0 read error: -71 [ 300.249213][T22445] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 300.254649][T22445] batadv_slave_0: entered promiscuous mode [ 300.566199][ T24] usb 11-1: USB disconnect, device number 19 [ 300.966852][ T1336] usb 5-1: USB disconnect, device number 25 [ 301.140930][T22473] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7133'. [ 301.144445][T22473] netlink: 'syz.6.7133': attribute type 5 has an invalid length. [ 301.368080][T22490] netlink: 9286 bytes leftover after parsing attributes in process `syz.0.7141'. [ 301.853692][T22527] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 301.858052][T22527] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=null. [ 302.740641][T22548] netlink: 'syz.6.7166': attribute type 23 has an invalid length. [ 302.802145][T22550] netlink: 71 bytes leftover after parsing attributes in process `syz.6.7167'. [ 303.003056][T22557] evm: overlay not supported [ 303.172418][T22576] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 303.285195][ T6061] usb 5-1: new high-speed USB device number 26 using dummy_hcd [ 303.436718][ T6061] usb 5-1: config index 0 descriptor too short (expected 23569, got 27) [ 303.440404][ T6061] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 303.446231][ T6061] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 303.449979][ T6061] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 303.453150][ T6061] usb 5-1: Manufacturer: syz [ 303.458060][ T6061] usb 5-1: config 0 descriptor?? [ 303.505040][ T6061] rc_core: IR keymap rc-hauppauge not found [ 303.507473][ T6061] Registered IR keymap rc-empty [ 303.512672][ T6061] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0 [ 303.517459][ T6061] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input76 [ 303.672377][ T6029] usb 5-1: USB disconnect, device number 26 [ 303.775147][ T34] usb 10-1: new high-speed USB device number 14 using dummy_hcd [ 303.928907][ T34] usb 10-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 303.932764][ T34] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 303.935802][ T34] usb 10-1: Product: syz [ 303.937891][ T34] usb 10-1: Manufacturer: syz [ 303.939505][ T34] usb 10-1: SerialNumber: syz [ 303.942689][ T34] usb 10-1: config 0 descriptor?? [ 304.155901][ T6061] usb 10-1: USB disconnect, device number 14 [ 304.844966][ T34] usb 7-1: new high-speed USB device number 27 using dummy_hcd [ 305.007440][ T34] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 305.011006][ T34] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 305.013978][ T34] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 305.018048][ T34] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 305.020910][ T34] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 305.025075][ T34] usb 7-1: config 0 descriptor?? [ 305.165171][ T6061] usb 5-1: new full-speed USB device number 27 using dummy_hcd [ 305.316211][ T6061] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid maxpacket 27750, setting to 64 [ 305.321587][ T6061] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 305.324433][ T6061] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 305.327323][ T6061] usb 5-1: Product: syz [ 305.328643][ T6061] usb 5-1: Manufacturer: syz [ 305.330166][ T6061] usb 5-1: SerialNumber: syz [ 305.332859][ T6061] usb 5-1: config 0 descriptor?? [ 305.437710][ T34] plantronics 0003:047F:FFFF.002C: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 305.751093][ T6061] usb 5-1: USB disconnect, device number 27 [ 305.778712][T22704] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7237'. [ 305.783148][T22704] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7237'. [ 306.286386][T22732] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 306.419722][T22739] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 306.529166][ T40] kauditd_printk_skb: 6 callbacks suppressed [ 306.529177][ T40] audit: type=1326 audit(2000000666.899:5236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22744 comm="syz.0.7256" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 306.538486][ T40] audit: type=1326 audit(2000000666.899:5237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22744 comm="syz.0.7256" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 306.546388][ T40] audit: type=1326 audit(2000000666.899:5238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22744 comm="syz.0.7256" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 306.553519][ T40] audit: type=1326 audit(2000000666.899:5239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22744 comm="syz.0.7256" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 306.561265][ T40] audit: type=1326 audit(2000000666.899:5240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22744 comm="syz.0.7256" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 306.568813][ T40] audit: type=1326 audit(2000000666.899:5241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22744 comm="syz.0.7256" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 306.575960][ T40] audit: type=1326 audit(2000000666.899:5242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22744 comm="syz.0.7256" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 306.582562][ T40] audit: type=1326 audit(2000000666.899:5243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22744 comm="syz.0.7256" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 306.589804][ T40] audit: type=1326 audit(2000000666.899:5244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22744 comm="syz.0.7256" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 306.597550][ T40] audit: type=1326 audit(2000000666.899:5245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22744 comm="syz.0.7256" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 306.896325][ T1110] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1 [ 306.898418][ T1110] ata1: failed to read log page 10h (errno=-5) [ 306.900368][ T1110] ata1.00: exception Emask 0x1 SAct 0x8000 SErr 0x0 action 0x0 [ 306.902621][ T1110] ata1.00: irq_stat 0x40000000 [ 306.904187][ T1110] ata1.00: failed command: WRITE FPDMA QUEUED [ 306.906456][ T1110] ata1.00: cmd 61/18:78:de:0f:10/00:00:00:00:00/40 tag 15 ncq dma 12288 out [ 306.906456][ T1110] res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error) [ 306.911818][ T1110] ata1.00: status: { DRDY } [ 306.913261][ T1110] ata1.00: error: { ABRT } [ 306.919581][ T1110] ata1.00: configured for UDMA/100 [ 306.921453][ T1110] ata1: EH complete [ 306.934996][T18680] usb 5-1: new high-speed USB device number 28 using dummy_hcd [ 306.968892][T22772] input: syz0 as /devices/virtual/input/input77 [ 307.082568][T22777] netlink: 83 bytes leftover after parsing attributes in process `syz.6.7270'. [ 307.095125][T18680] usb 5-1: Using ep0 maxpacket: 8 [ 307.104699][T18680] usb 5-1: config 0 interface 0 has no altsetting 0 [ 307.107068][T18680] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 307.109847][T18680] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 307.113362][T18680] usb 5-1: config 0 descriptor?? [ 307.307827][T22789] kvm: apic: phys broadcast and lowest prio [ 307.358340][T22795] Bluetooth: hci0: invalid length 0, exp 2 for type 0 [ 307.524398][T18680] mcp2221 0003:04D8:00DD.002D: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.0-1/input0 [ 307.536916][ T34] usb 7-1: USB disconnect, device number 27 [ 307.730022][T18680] usb 5-1: USB disconnect, device number 28 [ 307.851577][T22825] input: syz1 as /devices/virtual/input/input78 [ 308.116017][T22842] netlink: 'syz.6.7300': attribute type 2 has an invalid length. [ 308.118575][T22842] netlink: 1184 bytes leftover after parsing attributes in process `syz.6.7300'. [ 308.256985][T22859] input: syz0 as /devices/virtual/input/input79 [ 308.487872][T22879] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7314'. [ 308.496325][T22879] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7314'. [ 308.506275][T10229] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 308.511990][T10229] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 308.514728][T10229] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 308.517584][T10229] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 308.562611][T22893] vivid-001: disconnect [ 308.571610][T22882] vivid-001: reconnect [ 308.755680][ T1110] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1 [ 308.757734][ T1110] ata1: failed to read log page 10h (errno=-5) [ 308.759830][ T1110] ata1.00: exception Emask 0x1 SAct 0x200000 SErr 0x0 action 0x0 [ 308.762830][ T1110] ata1.00: irq_stat 0x40000000 [ 308.764582][ T1110] ata1.00: failed command: WRITE FPDMA QUEUED [ 308.766581][ T1110] ata1.00: cmd 61/30:a8:16:45:08/00:00:00:00:00/40 tag 21 ncq dma 24576 out [ 308.766581][ T1110] res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error) [ 308.772777][ T1110] ata1.00: status: { DRDY } [ 308.774305][ T1110] ata1.00: error: { ABRT } [ 308.776584][ T1110] ata1.00: configured for UDMA/100 [ 308.778616][ T1110] ata1: EH complete [ 308.985613][ T1110] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1 [ 308.987719][ T1110] ata1: failed to read log page 10h (errno=-5) [ 308.989678][ T1110] ata1.00: exception Emask 0x1 SAct 0x40 SErr 0x0 action 0x0 [ 308.991991][ T1110] ata1.00: irq_stat 0x40000000 [ 308.993504][ T1110] ata1.00: failed command: WRITE FPDMA QUEUED [ 308.995501][ T1110] ata1.00: cmd 61/20:30:06:46:08/00:00:00:00:00/40 tag 6 ncq dma 16384 out [ 308.995501][ T1110] res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error) [ 309.000722][ T1110] ata1.00: status: { DRDY } [ 309.002144][ T1110] ata1.00: error: { ABRT } [ 309.004212][ T1110] ata1.00: configured for UDMA/100 [ 309.006150][ T1110] ata1: EH complete [ 309.625788][ T1110] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1 [ 309.627914][ T1110] ata1: failed to read log page 10h (errno=-5) [ 309.629845][ T1110] ata1.00: NCQ disabled due to excessive errors [ 309.631773][ T1110] ata1.00: exception Emask 0x1 SAct 0x20 SErr 0x0 action 0x0 [ 309.634009][ T1110] ata1.00: irq_stat 0x40000000 [ 309.636000][ T1110] ata1.00: failed command: WRITE FPDMA QUEUED [ 309.637844][ T1110] ata1.00: cmd 61/20:28:06:46:08/00:00:00:00:00/40 tag 5 ncq dma 16384 out [ 309.637844][ T1110] res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error) [ 309.643104][ T1110] ata1.00: status: { DRDY } [ 309.644522][ T1110] ata1.00: error: { ABRT } [ 309.646600][ T1110] ata1.00: configured for UDMA/100 [ 309.648418][ T1110] ata1: EH complete [ 310.329730][T22921] netlink: 36 bytes leftover after parsing attributes in process `syz.6.7334'. [ 310.354078][T22928] kernel read not supported for file /eth0 (pid: 22928 comm: syz.6.7336) [ 310.813820][T22970] netlink: 'syz.6.7356': attribute type 3 has an invalid length. [ 311.871072][T23006] input input80: cannot allocate more than FF_MAX_EFFECTS effects [ 312.105019][ T34] usb 5-1: new high-speed USB device number 29 using dummy_hcd [ 312.255066][ T34] usb 5-1: Using ep0 maxpacket: 16 [ 312.257210][ T34] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 312.257249][ T34] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 312.257261][ T34] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 312.257307][ T34] usb 5-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 312.257319][ T34] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 312.258423][ T34] usb 5-1: config 0 descriptor?? [ 312.688012][ T34] shield 0003:0955:7214.002E: unknown main item tag 0x0 [ 312.688031][ T34] shield 0003:0955:7214.002E: unknown main item tag 0x0 [ 312.688043][ T34] shield 0003:0955:7214.002E: unknown main item tag 0x0 [ 312.688060][ T34] shield 0003:0955:7214.002E: unknown main item tag 0x0 [ 312.688072][ T34] shield 0003:0955:7214.002E: unknown main item tag 0x0 [ 312.689148][ T34] input: HID 0955:7214 Haptics as /devices/virtual/input/input81 [ 312.710574][ T34] shield 0003:0955:7214.002E: Registered Thunderstrike controller [ 312.710684][ T34] shield 0003:0955:7214.002E: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.0-1/input0 [ 312.890087][T12806] shield 0003:0955:7214.002E: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 312.890306][ T6061] usb 5-1: USB disconnect, device number 29 [ 312.893526][T12806] shield 0003:0955:7214.002E: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 312.899438][T12806] shield 0003:0955:7214.002E: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 312.902487][T12806] shield 0003:0955:7214.002E: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 312.975728][T23041] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7390'. [ 312.981645][T23041] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7390'. [ 312.989978][ T40] kauditd_printk_skb: 5 callbacks suppressed [ 312.989989][ T40] audit: type=1326 audit(2000000673.359:5251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23042 comm="syz.5.7391" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2579 code=0x7ffc0000 [ 312.998991][ T40] audit: type=1326 audit(2000000673.359:5252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23042 comm="syz.5.7391" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2579 code=0x7ffc0000 [ 313.006129][ T40] audit: type=1326 audit(2000000673.359:5253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23042 comm="syz.5.7391" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fb2579 code=0x7ffc0000 [ 313.013258][ T40] audit: type=1326 audit(2000000673.359:5254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23042 comm="syz.5.7391" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2579 code=0x7ffc0000 [ 313.021276][ T40] audit: type=1326 audit(2000000673.359:5255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23042 comm="syz.5.7391" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2579 code=0x7ffc0000 [ 313.030101][ T40] audit: type=1326 audit(2000000673.359:5256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23042 comm="syz.5.7391" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fb2579 code=0x7ffc0000 [ 313.038047][ T40] audit: type=1326 audit(2000000673.359:5257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23042 comm="syz.5.7391" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2579 code=0x7ffc0000 [ 313.046779][ T40] audit: type=1326 audit(2000000673.359:5258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23042 comm="syz.5.7391" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2579 code=0x7ffc0000 [ 313.053690][ T40] audit: type=1326 audit(2000000673.359:5259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23042 comm="syz.5.7391" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fb2579 code=0x7ffc0000 [ 313.054376][T23049] tipc: Started in network mode [ 313.060697][ T40] audit: type=1326 audit(2000000673.379:5260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23042 comm="syz.5.7391" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2579 code=0x7ffc0000 [ 313.062304][T23049] tipc: Node identity ac1414aa, cluster identity 4711 [ 313.072700][T23049] tipc: Enabled bearer , priority 10 [ 313.114195][T23053] netlink: 188 bytes leftover after parsing attributes in process `syz.5.7396'. [ 313.755050][ T6061] usb 11-1: new high-speed USB device number 20 using dummy_hcd [ 313.842122][T23120] binder: 23119:23120 ioctl c0306201 0 returned -14 [ 313.907392][ T6061] usb 11-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 313.910992][ T6061] usb 11-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 313.914386][ T6061] usb 11-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 313.917847][ T6061] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 313.922645][T23089] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 313.927050][ T6061] usb 11-1: Quirk or no altset; falling back to MIDI 1.0 [ 314.086286][ T6061] tipc: Node number set to 2886997162 [ 314.140299][ T6061] usb 11-1: USB disconnect, device number 20 [ 314.356408][T23152] program syz.0.7439 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 314.468671][T23167] PF_CAN: dropped non conform CAN skbuff: dev type 65534, len 63 [ 315.153376][T23231] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7475'. [ 315.372976][T23254] loop4: detected capacity change from 0 to 7 [ 315.380378][T23254] Dev loop4: unable to read RDB block 7 [ 315.382157][T23254] loop4: unable to read partition table [ 315.384156][T23254] loop4: partition table beyond EOD, truncated [ 315.390929][T23254] loop_reread_partitions: partition scan of loop4 (xݗ ) failed (rc=-5) [ 315.627139][ T6029] usb 10-1: new high-speed USB device number 15 using dummy_hcd [ 315.787329][ T6029] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 315.791362][ T6029] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 315.794696][ T6029] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 315.794710][ T6029] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 315.796579][T23256] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 315.798053][ T6029] usb 10-1: Quirk or no altset; falling back to MIDI 1.0 [ 315.998738][ T6029] usb 10-1: USB disconnect, device number 15 [ 316.647243][ T1422] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.475633][T23355] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7534'. [ 317.481773][T23355] macsec0: entered promiscuous mode [ 317.483587][T23355] team0: entered promiscuous mode [ 317.486218][T23355] macsec0: entered allmulticast mode [ 317.487909][T23355] team0: entered allmulticast mode [ 317.489889][T23355] team0: Device macsec0 is already an upper device of the team interface [ 317.493695][T23355] team0: left allmulticast mode [ 317.495525][T23355] team0: left promiscuous mode [ 318.226417][T23422] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7565'. [ 318.441166][T23432] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 318.615369][T18680] usb 5-1: new high-speed USB device number 30 using dummy_hcd [ 318.766314][T18680] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 318.769869][T18680] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 318.773305][T18680] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 318.776271][T18680] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 318.780123][T18680] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 318.782969][T18680] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 318.787857][T18680] usb 5-1: config 0 descriptor?? [ 319.219544][T18680] plantronics 0003:047F:FFFF.002F: ignoring exceeding usage max [ 319.226087][T18680] plantronics 0003:047F:FFFF.002F: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 319.391683][T23451] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only [ 319.394948][T23451] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 320.175714][T23490] netlink: 48 bytes leftover after parsing attributes in process `syz.6.7595'. [ 320.408743][T23500] bridge_slave_0: left allmulticast mode [ 320.410577][T23500] bridge_slave_0: left promiscuous mode [ 320.412468][T23500] bridge0: port 1(bridge_slave_0) entered disabled state [ 320.418453][T23500] bridge_slave_1: left allmulticast mode [ 320.420476][T23500] bridge_slave_1: left promiscuous mode [ 320.422416][T23500] bridge0: port 2(bridge_slave_1) entered disabled state [ 320.431253][T23500] team0: Port device team_slave_0 removed [ 320.436291][T23500] team0: Port device team_slave_1 removed [ 320.438791][T23500] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 320.442013][T23500] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 320.444668][T23500] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 321.045649][T23543] binder: 23542:23543 ioctl c0306201 0 returned -14 [ 321.186488][T23554] random: crng reseeded on system resumption [ 321.216154][ T29] usb 5-1: USB disconnect, device number 30 [ 321.914447][ T40] kauditd_printk_skb: 4 callbacks suppressed [ 321.914463][ T40] audit: type=1326 audit(2000000682.279:5265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23577 comm="syz.6.7633" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x7ffc0000 [ 321.926847][ T40] audit: type=1326 audit(2000000682.279:5266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23577 comm="syz.6.7633" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x7ffc0000 [ 321.935813][ T40] audit: type=1326 audit(2000000682.279:5267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23577 comm="syz.6.7633" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fb7579 code=0x7ffc0000 [ 321.944619][ T40] audit: type=1326 audit(2000000682.279:5268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23577 comm="syz.6.7633" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x7ffc0000 [ 321.952028][ T40] audit: type=1326 audit(2000000682.279:5269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23577 comm="syz.6.7633" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x7ffc0000 [ 321.959134][ T40] audit: type=1326 audit(2000000682.289:5270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23577 comm="syz.6.7633" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fb7579 code=0x7ffc0000 [ 321.966034][ T40] audit: type=1326 audit(2000000682.289:5271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23577 comm="syz.6.7633" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x7ffc0000 [ 321.973228][ T40] audit: type=1326 audit(2000000682.289:5272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23577 comm="syz.6.7633" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fb7579 code=0x7ffc0000 [ 321.980156][ T40] audit: type=1326 audit(2000000682.299:5273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23577 comm="syz.6.7633" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x7ffc0000 [ 321.986973][ T40] audit: type=1326 audit(2000000682.299:5274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23577 comm="syz.6.7633" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x7ffc0000 [ 322.185106][ T6029] usb 10-1: new high-speed USB device number 16 using dummy_hcd [ 322.319417][T23599] syz_tun: entered allmulticast mode [ 322.324277][T23598] syz_tun: left allmulticast mode [ 322.346868][ T6029] usb 10-1: Using ep0 maxpacket: 8 [ 322.351866][ T6029] usb 10-1: config index 0 descriptor too short (expected 301, got 45) [ 322.355352][ T6029] usb 10-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 322.359311][ T6029] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 322.363511][ T6029] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 322.367809][ T6029] usb 10-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 322.374047][ T6029] usb 10-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 322.374983][T12806] usb 5-1: new high-speed USB device number 31 using dummy_hcd [ 322.378257][ T6029] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 322.525034][T12806] usb 5-1: Using ep0 maxpacket: 8 [ 322.529066][T12806] usb 5-1: config 0 interface 0 has no altsetting 0 [ 322.531804][T12806] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 322.535658][T12806] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 322.542039][T12806] usb 5-1: config 0 descriptor?? [ 322.600640][ T6029] usb 10-1: usb_control_msg returned -32 [ 322.603140][ T6029] usbtmc 10-1:16.0: can't read capabilities [ 322.833777][ T63] Bluetooth: hci4: sending frame failed (-49) [ 322.839419][ T5984] Bluetooth: hci4: Opcode 0x1003 failed: -49 [ 322.955642][T12806] mcp2221 0003:04D8:00DD.0030: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.0-1/input0 [ 323.156083][T12806] usb 5-1: USB disconnect, device number 31 [ 323.425476][ T6029] usb 11-1: new high-speed USB device number 21 using dummy_hcd [ 323.576462][ T6029] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 323.581785][ T6029] usb 11-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 323.585278][ T6029] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 323.587795][ T6029] usb 11-1: Product: syz [ 323.589148][ T6029] usb 11-1: Manufacturer: syz [ 323.590807][ T6029] usb 11-1: SerialNumber: syz [ 323.594523][ T6029] usb 11-1: config 0 descriptor?? [ 323.880751][T23650] binder: 23649:23650 ioctl c0306201 80000040 returned -14 [ 324.011655][ T6029] usb 11-1: USB disconnect, device number 21 [ 324.947760][T23696] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7684'. [ 324.949242][ T1336] usb 10-1: USB disconnect, device number 16 [ 325.159578][ T24] usb 11-1: new high-speed USB device number 22 using dummy_hcd [ 325.335452][ T24] usb 11-1: Using ep0 maxpacket: 16 [ 325.340122][ T24] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 325.343641][ T24] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 325.346808][ T24] usb 11-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 325.350847][ T24] usb 11-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 325.353781][ T24] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 325.358257][ T24] usb 11-1: config 0 descriptor?? [ 325.385266][ T140] usb 10-1: new high-speed USB device number 17 using dummy_hcd [ 325.404536][T23743] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7705'. [ 325.407462][T23743] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7705'. [ 325.410324][T23743] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7705'. [ 325.535289][ T140] usb 10-1: Using ep0 maxpacket: 8 [ 325.538134][ T140] usb 10-1: config 0 interface 0 has no altsetting 0 [ 325.540282][ T140] usb 10-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 325.543135][ T140] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 325.547865][ T140] usb 10-1: config 0 descriptor?? [ 325.635320][T23766] hub 6-0:1.0: USB hub found [ 325.637278][T23766] hub 6-0:1.0: 1 port detected [ 325.769484][ T24] shield 0003:0955:7214.0031: unknown main item tag 0x0 [ 325.771690][ T24] shield 0003:0955:7214.0031: unknown main item tag 0x0 [ 325.773919][ T24] shield 0003:0955:7214.0031: unknown main item tag 0x0 [ 325.776303][ T24] shield 0003:0955:7214.0031: unknown main item tag 0x0 [ 325.778446][ T24] shield 0003:0955:7214.0031: unknown main item tag 0x0 [ 325.784694][ T24] input: HID 0955:7214 Haptics as /devices/virtual/input/input83 [ 325.794280][ T24] shield 0003:0955:7214.0031: Registered Thunderstrike controller [ 325.797118][ T24] shield 0003:0955:7214.0031: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.6-1/input0 [ 325.964353][ T140] mcp2221 0003:04D8:00DD.0032: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.5-1/input0 [ 325.970171][T23695] random: crng reseeded on system resumption [ 325.991097][ T1344] shield 0003:0955:7214.0031: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 325.992231][ T6029] usb 11-1: USB disconnect, device number 22 [ 325.996176][ T1344] shield 0003:0955:7214.0031: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 325.996231][ T1344] shield 0003:0955:7214.0031: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 325.996282][ T1344] shield 0003:0955:7214.0031: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 326.123956][T23795] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7729'. [ 326.167408][ T29] usb 10-1: USB disconnect, device number 17 [ 327.478818][T23892] smc: ib device syz0 ibport 1 applied user defined pnetid SYZ0 [ 327.659618][T23902] overlayfs: conflicting lowerdir path [ 327.671018][T23902] overlayfs: overlay with incompat feature 'volatile' cannot be mounted [ 327.989636][T23925] input: syz1 as /devices/virtual/input/input84 [ 327.991758][T23925] input: failed to attach handler leds to device input84, error: -6 [ 328.644992][ T29] usb 11-1: new high-speed USB device number 23 using dummy_hcd [ 328.795065][ T29] usb 11-1: Using ep0 maxpacket: 8 [ 328.798746][ T29] usb 11-1: config 0 interface 0 has no altsetting 0 [ 328.801841][ T29] usb 11-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 328.806267][ T29] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 328.812126][ T29] usb 11-1: config 0 descriptor?? [ 329.226135][T24014] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7832'. [ 329.228087][ T29] mcp2221 0003:04D8:00DD.0033: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.6-1/input0 [ 329.241255][T24016] kvm: user requested TSC rate below hardware speed [ 329.430438][ T1344] usb 11-1: USB disconnect, device number 23 [ 330.047772][ T40] kauditd_printk_skb: 4 callbacks suppressed [ 330.047787][ T40] audit: type=1326 audit(2000000690.419:5279): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=24085 comm="syz.6.7867" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x0 [ 330.186178][ T40] audit: type=1326 audit(2000000690.559:5280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24099 comm="syz.5.7873" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb2598 code=0x7ffc0000 [ 330.194501][ T40] audit: type=1326 audit(2000000690.559:5281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24099 comm="syz.5.7873" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb2598 code=0x7ffc0000 [ 330.202613][ T40] audit: type=1326 audit(2000000690.559:5282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24099 comm="syz.5.7873" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb2598 code=0x7ffc0000 [ 330.210256][ T40] audit: type=1326 audit(2000000690.559:5283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24099 comm="syz.5.7873" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb2598 code=0x7ffc0000 [ 330.217382][ T40] audit: type=1326 audit(2000000690.559:5284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24099 comm="syz.5.7873" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb2598 code=0x7ffc0000 [ 330.224649][ T40] audit: type=1326 audit(2000000690.559:5285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24099 comm="syz.5.7873" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2579 code=0x7ffc0000 [ 330.234676][ T40] audit: type=1326 audit(2000000690.559:5286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24099 comm="syz.5.7873" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb2598 code=0x7ffc0000 [ 330.242818][ T40] audit: type=1326 audit(2000000690.559:5287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24099 comm="syz.5.7873" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb2598 code=0x7ffc0000 [ 330.251066][ T40] audit: type=1326 audit(2000000690.559:5288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24099 comm="syz.5.7873" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2579 code=0x7ffc0000 [ 330.272342][T24104] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 330.395256][ T29] usb 5-1: new high-speed USB device number 32 using dummy_hcd [ 330.546854][ T29] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 330.551034][ T29] usb 5-1: config 0 interface 0 has no altsetting 0 [ 330.556308][ T29] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 330.560474][ T29] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 330.563951][ T29] usb 5-1: Product: syz [ 330.566298][ T29] usb 5-1: Manufacturer: syz [ 330.568566][ T29] usb 5-1: SerialNumber: syz [ 330.572922][ T29] usb 5-1: config 0 descriptor?? [ 330.579499][ T29] usb 5-1: selecting invalid altsetting 0 [ 330.782811][ T6029] usb 5-1: USB disconnect, device number 32 [ 331.390442][T24136] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check. [ 331.793578][T24156] binder: 24155:24156 ioctl c0306201 800008c0 returned -14 [ 331.822666][T18680] usb 11-1: new high-speed USB device number 24 using dummy_hcd [ 331.996467][T18680] usb 11-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 332.000515][T18680] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 332.004334][T18680] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 332.008692][T18680] usb 11-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 332.012826][T18680] usb 11-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 332.016089][T18680] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 332.020320][T18680] usb 11-1: config 0 descriptor?? [ 332.405184][ T63] Bluetooth: hci4: command 0x1003 tx timeout [ 332.409028][ T5984] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 332.434353][T18680] plantronics 0003:047F:FFFF.0034: ignoring exceeding usage max [ 332.439859][T18680] plantronics 0003:047F:FFFF.0034: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0 [ 332.448444][T24175] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7905'. [ 332.793287][T24198] smc: net device bond0 erased user defined pnetid SYZ2 [ 332.797250][T24198] smc: ib device syz0 ibport 1 erased user defined pnetid SYZ0 [ 333.226441][T24233] netlink: 'syz.2.7933': attribute type 16 has an invalid length. [ 333.230363][T24233] netlink: 'syz.2.7933': attribute type 17 has an invalid length. [ 333.233662][T24233] lo: left promiscuous mode [ 333.251273][T24233] sit0: left promiscuous mode [ 333.291220][T24233] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 333.863689][ T10] kernel write not supported for file /sg0 (pid: 10 comm: kworker/0:1) [ 334.275005][ T1336] usb 7-1: new high-speed USB device number 28 using dummy_hcd [ 334.338508][ T10] kernel read not supported for file /media0 (pid: 10 comm: kworker/0:1) [ 334.385363][ T6061] usb 10-1: new high-speed USB device number 18 using dummy_hcd [ 334.435837][ T1336] usb 7-1: Using ep0 maxpacket: 16 [ 334.438989][ T1336] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 334.442736][ T1336] usb 7-1: New USB device found, idVendor=0458, idProduct=5016, bcdDevice= 0.00 [ 334.445972][ T1336] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 334.449945][ T1336] usb 7-1: config 0 descriptor?? [ 334.457448][T24326] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7974'. [ 334.460544][T24326] (unnamed net_device) (uninitialized): Invalid ad_actor_system MAC address. [ 334.463403][T24326] (unnamed net_device) (uninitialized): option ad_actor_system: invalid value (68719607821) [ 334.506002][ T140] usb 11-1: USB disconnect, device number 24 [ 334.545096][ T6061] usb 10-1: Using ep0 maxpacket: 8 [ 334.550474][ T6061] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 334.554043][ T6061] usb 10-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 334.561169][ T6061] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 334.566728][ T6061] usb 10-1: config 0 descriptor?? [ 334.778057][ T6061] iowarrior 10-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0 [ 334.872338][ T1336] kye 0003:0458:5016.0035: control desc unexpectedly large [ 334.879313][ T1336] input: HID 0458:5016 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:0458:5016.0035/input/input85 [ 334.909053][T24352] input: syz1 as /devices/virtual/input/input87 [ 334.949280][ T1336] input: HID 0458:5016 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:0458:5016.0035/input/input86 [ 335.013585][ T1336] kye 0003:0458:5016.0035: input,hiddev1,hidraw0: USB HID v0.09 Device [HID 0458:5016] on usb-dummy_hcd.2-1/input0 [ 335.069239][T18680] usb 7-1: USB disconnect, device number 28 [ 335.162348][T24356] netlink: 64 bytes leftover after parsing attributes in process `syz.6.7989'. [ 335.178464][ T140] usb 10-1: USB disconnect, device number 18 [ 335.573625][T24371] pim6reg1: entered promiscuous mode [ 335.577255][T24371] pim6reg1: entered allmulticast mode [ 335.771772][T24384] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(3) [ 335.774553][T24384] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 335.792797][T24384] vhci_hcd vhci_hcd.0: Device attached [ 335.798724][T24385] usbip_core: unknown command [ 335.800769][T24385] vhci_hcd: unknown pdu 0 [ 335.802501][T24385] usbip_core: unknown command [ 335.815440][T10229] vhci_hcd: stop threads [ 335.817319][T10229] vhci_hcd: release socket [ 335.819313][T10229] vhci_hcd: disconnect device [ 336.533659][ T40] kauditd_printk_skb: 149 callbacks suppressed [ 336.533672][ T40] audit: type=1326 audit(2000000696.899:5438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24421 comm="syz.6.8018" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb7579 code=0x0 [ 336.707238][T24429] loop7: detected capacity change from 0 to 7 [ 336.710655][T24429] Dev loop7: unable to read RDB block 7 [ 336.712774][T24429] loop7: unable to read partition table [ 336.715798][T24429] loop7: partition table beyond EOD, truncated [ 336.718423][T24429] loop_reread_partitions: partition scan of loop7 (被x ) failed (rc=-5) [ 336.825061][ T6061] usb 7-1: new high-speed USB device number 29 using dummy_hcd [ 336.995149][ T6061] usb 7-1: Using ep0 maxpacket: 16 [ 336.999838][ T6061] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 337.004113][ T6061] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 337.008939][ T6061] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 337.012917][ T6061] usb 7-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 337.019716][ T6061] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 337.023509][ T6061] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 337.026938][ T6061] usb 7-1: SerialNumber: syz [ 337.033433][ T6061] hub 7-1:1.0: bad descriptor, ignoring hub [ 337.037427][ T6061] hub 7-1:1.0: probe with driver hub failed with error -5 [ 337.041809][ T6061] cdc_ether 7-1:1.0: probe with driver cdc_ether failed with error -22 [ 337.137253][ C1] vcan0: j1939_tp_rxtimer: 0xffff888060e4e400: rx timeout, send abort [ 337.143306][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888060e4e400: 0x2f000: (3) A timeout occurred and this is the connection abort to close the session. [ 337.469743][T24458] netlink: 212376 bytes leftover after parsing attributes in process `syz.5.8034'. [ 337.775681][T24482] syz_tun: Device is already in use. [ 337.934495][T24488] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8047'. [ 337.937811][T24488] netlink: 12 bytes leftover after parsing attributes in process `syz.5.8047'. [ 337.940729][T24488] netlink: 'syz.5.8047': attribute type 18 has an invalid length. [ 338.360445][T24504] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(3) [ 338.364045][T24504] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 338.368139][T24504] vhci_hcd vhci_hcd.0: Device attached [ 338.545182][ T6061] vhci_hcd: vhci_device speed not set [ 338.605121][ T6061] usb 49-1: new high-speed USB device number 2 using vhci_hcd [ 338.616286][ T29] usb 11-1: new low-speed USB device number 25 using dummy_hcd [ 338.768494][ T29] usb 11-1: config 0 has no interfaces? [ 338.770896][ T29] usb 11-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 338.777690][ T29] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 338.783957][ T29] usb 11-1: config 0 descriptor?? [ 338.805698][T24523] binder: 24522:24523 ioctl c0306201 80000540 returned -22 [ 338.994347][ T29] usb 11-1: USB disconnect, device number 25 [ 338.995363][T24505] vhci_hcd: connection reset by peer [ 339.000190][T10215] vhci_hcd: stop threads [ 339.003950][T10215] vhci_hcd: release socket [ 339.010279][T10215] vhci_hcd: disconnect device [ 339.055060][ T6061] vhci_hcd: vhci_device speed not set [ 339.507210][ T29] usb 7-1: USB disconnect, device number 29 [ 339.570166][T24549] netlink: 28 bytes leftover after parsing attributes in process `syz.5.8074'. [ 339.762586][T24569] loop2: detected capacity change from 0 to 7 [ 339.769565][T24569] Dev loop2: unable to read RDB block 7 [ 339.772128][T24569] loop2: unable to read partition table [ 339.774707][T24569] loop2: partition table beyond EOD, truncated [ 339.777555][T24569] loop_reread_partitions: partition scan of loop2 (被x ) failed (rc=-5) [ 339.986699][ T1336] usb 11-1: new high-speed USB device number 26 using dummy_hcd [ 340.147664][ T1336] usb 11-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 340.154525][ T1336] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 340.169795][ T1336] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 340.172921][ T1336] usb 11-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 340.177612][ T1336] usb 11-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 340.180539][ T1336] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 340.184397][ T1336] usb 11-1: config 0 descriptor?? [ 340.275393][T12806] usb 5-1: new high-speed USB device number 33 using dummy_hcd [ 340.392336][ T40] audit: type=1326 audit(2000000700.759:5439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24603 comm="syz.2.8098" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x0 [ 340.436319][T12806] usb 5-1: too many configurations: 9, using maximum allowed: 8 [ 340.441510][T12806] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 340.445659][T12806] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 340.450641][T12806] usb 5-1: config 0 interface 0 has no altsetting 0 [ 340.455271][T12806] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 340.459460][T12806] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 340.464578][T12806] usb 5-1: config 0 interface 0 has no altsetting 0 [ 340.469543][T12806] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 340.472762][T12806] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 340.477606][T12806] usb 5-1: config 0 interface 0 has no altsetting 0 [ 340.483822][T12806] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 340.487597][T12806] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 340.492082][T12806] usb 5-1: config 0 interface 0 has no altsetting 0 [ 340.496874][T12806] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 340.500689][T12806] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 340.504927][T12806] usb 5-1: config 0 interface 0 has no altsetting 0 [ 340.515738][T12806] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 340.518641][T12806] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 340.522956][T12806] usb 5-1: config 0 interface 0 has no altsetting 0 [ 340.528082][T12806] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 340.533218][T12806] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 340.538268][T12806] usb 5-1: config 0 interface 0 has no altsetting 0 [ 340.542894][T12806] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 340.546947][T12806] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 340.551685][T12806] usb 5-1: config 0 interface 0 has no altsetting 0 [ 340.559485][T12806] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 340.563716][T12806] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 340.567098][T12806] usb 5-1: Product: syz [ 340.568545][T12806] usb 5-1: Manufacturer: syz [ 340.570422][T12806] usb 5-1: SerialNumber: syz [ 340.576511][T12806] usb 5-1: config 0 descriptor?? [ 340.585024][T12806] yurex 5-1:0.0: USB YUREX device now attached to Yurex #0 [ 340.594747][T24611] Bluetooth: MGMT ver 1.23 [ 340.600281][ T1336] plantronics 0003:047F:FFFF.0036: unknown main item tag 0x0 [ 340.603460][ T1336] plantronics 0003:047F:FFFF.0036: unknown main item tag 0x0 [ 340.606678][ T1336] plantronics 0003:047F:FFFF.0036: unknown main item tag 0x0 [ 340.609807][ T1336] plantronics 0003:047F:FFFF.0036: unknown main item tag 0x0 [ 340.612965][ T1336] plantronics 0003:047F:FFFF.0036: unknown main item tag 0x0 [ 340.616795][ T1336] plantronics 0003:047F:FFFF.0036: unknown main item tag 0x0 [ 340.620009][ T1336] plantronics 0003:047F:FFFF.0036: unknown main item tag 0x0 [ 340.623092][ T1336] plantronics 0003:047F:FFFF.0036: unknown main item tag 0x0 [ 340.625938][ T1336] plantronics 0003:047F:FFFF.0036: unknown main item tag 0x0 [ 340.628749][ T1336] plantronics 0003:047F:FFFF.0036: unknown main item tag 0x0 [ 340.634234][ T1336] plantronics 0003:047F:FFFF.0036: hiddev1,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0 [ 340.785333][ T6061] usb 5-1: USB disconnect, device number 33 [ 340.790623][ T6061] yurex 5-1:0.0: USB YUREX #0 now disconnected [ 340.798924][T18680] usb 11-1: USB disconnect, device number 26 [ 341.391067][T24624] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8106'. [ 341.397409][T24624] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8106'. [ 341.473153][T24630] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 341.479050][T24630] overlayfs: fs on './file0' does not support file handles, falling back to xino=off. [ 341.996793][T24651] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 342.382960][ T1336] usb 5-1: new high-speed USB device number 34 using dummy_hcd [ 342.547070][ T1336] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 342.552758][ T1336] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 342.565109][ T1336] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 342.570416][ T1336] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 342.577295][ T1336] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 342.581003][ T1336] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 342.586427][ T1336] usb 5-1: config 0 descriptor?? [ 342.589438][T24658] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 343.008919][ T1336] plantronics 0003:047F:FFFF.0037: reserved main item tag 0xd [ 343.015047][ T1336] plantronics 0003:047F:FFFF.0037: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 343.267896][ T6029] usb 5-1: USB disconnect, device number 34 [ 343.310446][ T40] audit: type=1326 audit(2000000703.669:5440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24715 comm="syz.2.8148" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x0 [ 343.355572][ T1336] usb 10-1: new high-speed USB device number 19 using dummy_hcd [ 343.527826][ T1336] usb 10-1: Using ep0 maxpacket: 32 [ 343.531225][ T1336] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 343.535467][ T1336] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 343.539249][ T1336] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 343.545984][ T1336] usb 10-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00 [ 343.550466][ T1336] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 343.556014][ T1336] usb 10-1: config 0 descriptor?? [ 343.981316][ T1336] input: HID 0458:5011 as /devices/platform/dummy_hcd.5/usb10/10-1/10-1:0.0/0003:0458:5011.0038/input/input91 [ 344.048805][ T1336] input: HID 0458:5011 as /devices/platform/dummy_hcd.5/usb10/10-1/10-1:0.0/0003:0458:5011.0038/input/input92 [ 344.060185][ T1336] kye 0003:0458:5011.0038: input,hiddev0,hidraw0: USB HID v0.00 Mouse [HID 0458:5011] on usb-dummy_hcd.5-1/input0 [ 344.146344][ T140] usb 11-1: new high-speed USB device number 27 using dummy_hcd [ 344.175456][ T6029] psmouse serio11: Failed to reset mouse on : -5 [ 344.295463][ T140] usb 11-1: Using ep0 maxpacket: 16 [ 344.299681][ T140] usb 11-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 344.305797][ T140] usb 11-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00 [ 344.310599][ T140] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 344.320385][ T140] usb 11-1: config 0 descriptor?? [ 344.327047][ T140] input: bcm5974 as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.0/input/input93 [ 344.528878][ T140] bcm5974 11-1:0.0: could not read from device [ 344.535459][ T5374] bcm5974 11-1:0.0: could not read from device [ 344.547653][ T140] input: failed to attach handler mousedev to device input93, error: -5 [ 344.556536][ T140] usb 11-1: USB disconnect, device number 27 [ 344.556649][ T5374] bcm5974 11-1:0.0: could not read from device [ 344.705085][T24769] loop7: detected capacity change from 0 to 7 [ 344.708488][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 344.712446][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 344.716672][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 344.721213][ C2] Buffer I/O error on dev loop7, logical block 0, async page read [ 344.725926][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 344.729902][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 344.733520][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 344.737722][ C2] Buffer I/O error on dev loop7, logical block 0, async page read [ 344.741367][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 344.745249][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 344.749092][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 344.752314][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 344.756121][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 344.759933][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 344.763350][T24769] ldm_validate_partition_table(): Disk read failed. [ 344.765457][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 344.772182][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 344.776293][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 344.779878][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 344.783625][ C2] Buffer I/O error on dev loop7, logical block 0, async page read [ 344.787450][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 344.791434][T24769] Dev loop7: unable to read RDB block 0 [ 344.797477][T24769] loop7: unable to read partition table [ 344.799873][T24769] loop7: partition table beyond EOD, truncated [ 344.802354][T24769] loop_reread_partitions: partition scan of loop7 (Cj̖P=ý?}X %`ր{֐ȵ4FLQk݊) failed (rc=-5) [ 345.115604][ C3] kye 0003:0458:5011.0038: usb_submit_urb(ctrl) failed: -1 [ 345.133978][ T140] IPVS: starting estimator thread 0... [ 345.168154][T24780] af_packet: tpacket_rcv: packet too big, clamped from 44 to 4294967272. macoff=96 [ 345.245106][T24778] IPVS: using max 27 ests per chain, 64800 per kthread [ 345.858925][T24811] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 345.907854][ T1336] usb 10-1: USB disconnect, device number 19 [ 346.099178][T24824] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8195'. [ 346.104500][T24824] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8195'. [ 347.556274][T24885] sctp: [Deprecated]: syz.2.8224 (pid 24885) Use of struct sctp_assoc_value in delayed_ack socket option. [ 347.556274][T24885] Use struct sctp_sack_info instead [ 347.945378][ T6029] misc userio: Buffer overflowed, userio client isn't keeping up [ 348.424454][T24931] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8244'. [ 348.875668][ T1336] usb 7-1: new high-speed USB device number 30 using dummy_hcd [ 348.996734][ T6029] input: PS/2 Generic Mouse as /devices/serio11/input/input90 [ 349.055128][ T1336] usb 7-1: Using ep0 maxpacket: 8 [ 349.060122][ T1336] usb 7-1: config 0 interface 0 has no altsetting 0 [ 349.062742][ T1336] usb 7-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 349.066782][ T1336] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 349.071939][ T1336] usb 7-1: config 0 descriptor?? [ 349.205280][ T6029] psmouse serio11: Failed to enable mouse on [ 349.487952][ T1336] mcp2221 0003:04D8:00DD.0039: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0 [ 349.693583][ T1344] usb 7-1: USB disconnect, device number 30 [ 349.925231][T24979] loop4: detected capacity change from 0 to 7 [ 349.929803][T24979] Dev loop4: unable to read RDB block 7 [ 349.931608][T24979] loop4: AHDI p1 [ 349.932841][T24979] loop4: partition table partially beyond EOD, truncated [ 350.361447][T25002] Bluetooth: hci0: load_link_keys: expected 3 bytes, got 7 bytes [ 350.866241][T25047] batadv_slave_1: entered promiscuous mode [ 350.869770][T25046] batadv_slave_1: left promiscuous mode [ 351.018852][T25064] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.8306'. [ 351.192976][ T6029] kernel write not supported for file [eventfd] (pid: 6029 comm: kworker/0:3) [ 351.202791][T25081] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.8312'. [ 351.227660][T25083] netlink: 4 bytes leftover after parsing attributes in process `syz.5.8313'. [ 351.295022][ T1344] usb 5-1: new high-speed USB device number 35 using dummy_hcd [ 351.458558][ T1344] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 351.463285][ T1344] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 351.467875][ T1344] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 351.473129][ T1344] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 351.476882][ T1344] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 351.482208][ T1344] usb 5-1: config 0 descriptor?? [ 351.894515][ T1344] hid_parser_main: 5 callbacks suppressed [ 351.894536][ T1344] plantronics 0003:047F:FFFF.003A: unknown main item tag 0x0 [ 351.900983][ T1344] plantronics 0003:047F:FFFF.003A: unknown main item tag 0x0 [ 351.904227][ T1344] plantronics 0003:047F:FFFF.003A: unknown main item tag 0x0 [ 351.907510][ T1344] plantronics 0003:047F:FFFF.003A: unknown main item tag 0x0 [ 351.910637][ T1344] plantronics 0003:047F:FFFF.003A: unknown main item tag 0x0 [ 351.913984][ T1344] plantronics 0003:047F:FFFF.003A: unknown main item tag 0x0 [ 351.917342][ T1344] plantronics 0003:047F:FFFF.003A: unknown main item tag 0x0 [ 351.920790][ T1344] plantronics 0003:047F:FFFF.003A: unknown main item tag 0x0 [ 351.924682][ T1344] plantronics 0003:047F:FFFF.003A: unknown main item tag 0x0 [ 351.928586][ T1344] plantronics 0003:047F:FFFF.003A: unknown main item tag 0x0 [ 351.935891][ T1344] plantronics 0003:047F:FFFF.003A: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 352.146336][ T1344] usb 5-1: USB disconnect, device number 35 [ 352.697785][T25163] syzkaller1: entered promiscuous mode [ 352.699876][T25163] syzkaller1: entered allmulticast mode [ 352.706802][T25163] PF_CAN: dropped non conform CAN FD skbuff: dev type 65534, len 6 [ 352.931915][T25170] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8354'. [ 353.009991][T25176] netlink: 360 bytes leftover after parsing attributes in process `syz.0.8357'. [ 353.235362][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 353.239673][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 353.292429][T25201] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4) [ 353.295001][T25201] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 353.297839][T25201] vhci_hcd vhci_hcd.0: Device attached [ 353.477612][ T6061] vhci_hcd: vhci_device speed not set [ 353.536682][ T6061] usb 41-1: new full-speed USB device number 2 using vhci_hcd [ 353.568119][ T1344] usb 7-1: new low-speed USB device number 31 using dummy_hcd [ 353.721501][ T1344] usb 7-1: config 0 has no interfaces? [ 353.726140][ T1344] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 353.729979][ T1344] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 353.737789][ T1344] usb 7-1: config 0 descriptor?? [ 353.947667][T25204] vhci_hcd: cannot find the pending unlink 3 [ 353.948737][ T29] usb 7-1: USB disconnect, device number 31 [ 353.950271][T25204] vhci_hcd: unknown pdu 1 [ 353.952350][T10207] vhci_hcd: stop threads [ 353.955982][T10207] vhci_hcd: release socket [ 353.957754][T10207] vhci_hcd: disconnect device [ 354.016093][ T6061] vhci_hcd: vhci_device speed not set [ 354.416537][T25257] openvswitch: netlink: VXLAN extension 0 has unexpected len 4 expected 0 [ 354.622144][T25276] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.8402'. [ 355.385997][ T1344] usb 11-1: new full-speed USB device number 28 using dummy_hcd [ 355.559267][ T1344] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 355.562489][ T1344] usb 11-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 355.566672][ T1344] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 355.569515][ T1344] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 355.645922][T25318] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8420'. [ 355.650286][T25318] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8420'. [ 355.780381][ T1344] usb 11-1: usb_control_msg returned -32 [ 355.782291][ T1344] usbtmc 11-1:16.0: can't read capabilities [ 356.031887][ T40] audit: type=1326 audit(2000000716.399:5441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25331 comm="syz.5.8426" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fb2579 code=0x0 [ 356.174088][T25343] netlink: 14528 bytes leftover after parsing attributes in process `syz.2.8428'. [ 357.568635][T25382] Bluetooth: hci4: Frame reassembly failed (-84) [ 358.162739][ T29] usb 11-1: USB disconnect, device number 28 [ 358.198093][T25400] tipc: Started in network mode [ 358.199983][T25400] tipc: Node identity ac1414aa, cluster identity 4711 [ 358.203065][T25400] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 358.207847][T25400] tipc: Enabled bearer , priority 10 [ 358.335453][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 358.485286][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 358.512939][T25433] overlayfs: invalid origin (00000079000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000) [ 358.625185][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 358.765185][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 358.896617][T25471] netlink: 96 bytes leftover after parsing attributes in process `syz.6.8487'. [ 358.905078][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 358.991965][ T40] audit: type=1326 audit(2000000719.359:5442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25480 comm="syz.2.8492" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 359.002352][ T40] audit: type=1326 audit(2000000719.359:5443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25480 comm="syz.2.8492" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 359.011900][ T40] audit: type=1326 audit(2000000719.359:5444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25480 comm="syz.2.8492" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 359.024353][ T40] audit: type=1326 audit(2000000719.359:5445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25480 comm="syz.2.8492" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 359.032848][ T40] audit: type=1326 audit(2000000719.359:5446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25480 comm="syz.2.8492" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 359.041973][ T40] audit: type=1326 audit(2000000719.359:5447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25480 comm="syz.2.8492" exe="/syz-executor" sig=0 arch=40000003 syscall=116 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 359.052749][ T40] audit: type=1326 audit(2000000719.359:5448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25480 comm="syz.2.8492" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 359.055118][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 359.062993][ T40] audit: type=1326 audit(2000000719.359:5449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25480 comm="syz.2.8492" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 359.185473][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 359.325318][ T29] tipc: Node number set to 2886997162 [ 359.475216][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 359.611371][ T63] Bluetooth: hci4: command 0x1003 tx timeout [ 359.611403][ T5984] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 359.634778][T18680] usb 11-1: new high-speed USB device number 29 using dummy_hcd [ 359.755226][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 359.795019][T18680] usb 11-1: Using ep0 maxpacket: 8 [ 359.809691][T18680] usb 11-1: config 0 interface 0 has no altsetting 0 [ 359.811920][T18680] usb 11-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 359.815076][T18680] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 359.818870][T18680] usb 11-1: config 0 descriptor?? [ 360.240473][T18680] mcp2221 0003:04D8:00DD.003B: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.6-1/input0 [ 360.275071][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 360.439506][T18680] usb 11-1: USB disconnect, device number 29 [ 361.289485][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 362.325112][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 362.503001][T25591] can0: slcan on ptm0. [ 362.586341][T25590] can0 (unregistered): slcan off ptm0. [ 362.623674][T25593] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8542'. [ 363.365126][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 363.420584][T25659] syzkaller1: entered promiscuous mode [ 363.422473][T25659] syzkaller1: entered allmulticast mode [ 364.078631][T25697] binder: 25693:25697 ioctl c0185649 0 returned -22 [ 364.230244][T25702] input: syz1 as /devices/virtual/input/input94 [ 364.232397][T25702] input: failed to attach handler leds to device input94, error: -6 [ 364.312560][T25707] netlink: 28 bytes leftover after parsing attributes in process `syz.2.8594'. [ 364.317954][T25707] netlink: 'syz.2.8594': attribute type 7 has an invalid length. [ 364.321309][T25707] netlink: 'syz.2.8594': attribute type 8 has an invalid length. [ 364.324592][T25707] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8594'. [ 364.405083][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 364.703460][T25720] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 364.709494][T25720] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 364.719490][T25720] overlayfs: "xino" feature enabled using 2 upper inode bits. [ 364.901852][T25724] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8602'. [ 365.080981][T25741] overlayfs: lowerdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 365.135209][T25747] hsr0: entered promiscuous mode [ 365.137823][T25747] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8612'. [ 365.142781][T25747] hsr_slave_0: left promiscuous mode [ 365.147931][T25747] hsr_slave_1: left promiscuous mode [ 365.161427][T25747] hsr0 (unregistering): left promiscuous mode [ 365.445081][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 365.460154][T25766] netfs: Couldn't get user pages (rc=-14) [ 365.808479][T25783] input: syz1 as /devices/virtual/input/input95 [ 365.838201][T25787] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 365.925141][ T5984] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 365.925570][ T63] Bluetooth: hci4: command 0x1003 tx timeout [ 366.057639][ T29] usb 10-1: new full-speed USB device number 20 using dummy_hcd [ 366.095140][ T1336] usb 5-1: new high-speed USB device number 36 using dummy_hcd [ 366.207380][ T29] usb 10-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 366.210812][ T29] usb 10-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0 [ 366.213820][ T29] usb 10-1: config 0 interface 0 has no altsetting 0 [ 366.216066][ T29] usb 10-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00 [ 366.219209][ T29] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 366.224324][ T29] usb 10-1: config 0 descriptor?? [ 366.256583][ T1336] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 366.263664][ T1336] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41 [ 366.268096][ T1336] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11 [ 366.271398][ T1336] usb 5-1: Product: syz [ 366.273239][ T1336] usb 5-1: Manufacturer: syz [ 366.275261][ T1336] usb 5-1: SerialNumber: syz [ 366.485053][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 366.491574][ T1336] usblp 5-1:1.0: usblp0: USB Unidirectional printer dev 36 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8 [ 366.638399][ T29] hid_parser_main: 5 callbacks suppressed [ 366.638420][ T29] hid-steam 0003:28DE:1102.003C: unknown main item tag 0x0 [ 366.644104][ T29] hid-steam 0003:28DE:1102.003C: unknown main item tag 0x0 [ 366.648644][ T29] hid-steam 0003:28DE:1102.003C: : USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.5-1/input0 [ 366.690482][ T1336] usb 5-1: USB disconnect, device number 36 [ 366.693453][ T1336] usblp0: removed [ 366.705449][ T29] hid-steam 0003:28DE:1102.003C: Steam Controller 'XXXXXXXXXX' connected [ 366.711878][ T29] input: Steam Controller as /devices/platform/dummy_hcd.5/usb10/10-1/10-1:0.0/0003:28DE:1102.003C/input/input96 [ 366.725434][ T29] hid-steam 0003:28DE:1102.003D: unknown main item tag 0x0 [ 366.729298][ T29] hid-steam 0003:28DE:1102.003D: unknown main item tag 0x0 [ 366.740363][ T29] hid-steam 0003:28DE:1102.003D: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.5-1/input0 [ 366.784580][T25820] binder: 25819:25820 ioctl c0306201 80000380 returned -14 [ 366.841485][ T140] usb 10-1: USB disconnect, device number 20 [ 366.861297][ T140] hid-steam 0003:28DE:1102.003C: Steam Controller 'XXXXXXXXXX' disconnected [ 367.097243][T25833] syzkaller1: entered promiscuous mode [ 367.099032][T25833] syzkaller1: entered allmulticast mode [ 367.288263][T25838] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8653'. [ 367.492397][T10202] smc: removing ib device syz0 [ 367.525033][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 368.141516][T25869] netlink: 'syz.6.8668': attribute type 1 has an invalid length. [ 368.164033][T25869] 8021q: adding VLAN 0 to HW filter on device bond1 [ 368.177038][T25869] bond1: (slave geneve2): making interface the new active one [ 368.180635][T25869] bond1: (slave geneve2): Enslaving as an active interface with an up link [ 368.352250][T25880] block nbd5: shutting down sockets [ 368.402404][T25886] netlink: 4 bytes leftover after parsing attributes in process `syz.5.8673'. [ 368.402586][T25885] netlink: 32 bytes leftover after parsing attributes in process `syz.6.8675'. [ 368.407512][T25886] netlink: 104 bytes leftover after parsing attributes in process `syz.5.8673'. [ 368.409259][T25885] bridge: RTM_NEWNEIGH with invalid ether address [ 368.412898][T25886] netlink: 104 bytes leftover after parsing attributes in process `syz.5.8673'. [ 368.565061][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 368.646640][ T1336] usb 5-1: new high-speed USB device number 37 using dummy_hcd [ 368.805001][ T1336] usb 5-1: Using ep0 maxpacket: 16 [ 368.809224][ T1336] usb 5-1: config 0 has an invalid interface number: 8 but max is 0 [ 368.812588][ T1336] usb 5-1: config 0 has no interface number 0 [ 368.817204][ T1336] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 368.822443][ T1336] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 368.828566][ T1336] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 368.832187][ T1336] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 368.835540][ T1336] usb 5-1: Product: syz [ 368.837272][ T1336] usb 5-1: SerialNumber: syz [ 368.841330][ T1336] usb 5-1: config 0 descriptor?? [ 368.846966][ T1336] cm109 5-1:0.8: invalid payload size 0, expected 4 [ 368.851274][ T1336] input: CM109 USB driver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.8/input/input97 [ 369.051418][ C3] cm109 5-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90 [ 369.304719][ C2] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 369.310149][ C2] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 369.313043][ C2] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 369.316194][ C2] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 369.319294][T18680] usb 5-1: USB disconnect, device number 37 [ 369.321950][ C2] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 369.321972][ C2] cm109 5-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 369.334407][T18680] cm109 5-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 369.605117][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 369.767127][T25953] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 369.893054][T25963] kvm: kvm [25962]: vcpu0, guest rIP: 0xeeee8000 Unhandled WRMSR(0x40000006) = 0x0 [ 370.497770][T26015] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8727'. [ 370.500507][T26015] netlink: 20 bytes leftover after parsing attributes in process `syz.5.8727'. [ 370.645054][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 370.809240][T26041] input: syz0 as /devices/virtual/input/input98 [ 371.162527][T26065] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8750'. [ 371.185235][ T1336] usb 10-1: new high-speed USB device number 21 using dummy_hcd [ 371.347085][ T1336] usb 10-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 371.351829][ T1336] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 371.357478][ T1336] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 371.360667][ T1336] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 371.368182][ T1336] usb 10-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 371.371462][ T1336] usb 10-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 371.375281][ T1336] usb 10-1: Manufacturer: syz [ 371.380750][ T1336] usb 10-1: config 0 descriptor?? [ 371.685054][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 371.799421][ T1336] appleir 0003:05AC:8243.003E: unknown main item tag 0x0 [ 371.805941][ T1336] appleir 0003:05AC:8243.003E: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.5-1/input0 [ 371.960260][T26103] netlink: 4 bytes leftover after parsing attributes in process `syz.6.8763'. [ 372.371692][ T40] audit: type=1326 audit(2000000732.739:5450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26128 comm="syz.0.8774" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70de598 code=0x7ffc0000 [ 372.381069][ T40] audit: type=1326 audit(2000000732.739:5451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26128 comm="syz.0.8774" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70de598 code=0x7ffc0000 [ 372.388382][ T40] audit: type=1326 audit(2000000732.739:5452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26128 comm="syz.0.8774" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 372.397412][ T40] audit: type=1326 audit(2000000732.739:5453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26128 comm="syz.0.8774" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70de598 code=0x7ffc0000 [ 372.404656][ T40] audit: type=1326 audit(2000000732.739:5454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26128 comm="syz.0.8774" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70de598 code=0x7ffc0000 [ 372.413345][ T40] audit: type=1326 audit(2000000732.739:5455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26128 comm="syz.0.8774" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 372.420381][ T40] audit: type=1326 audit(2000000732.749:5456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26128 comm="syz.0.8774" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 372.429542][ T40] audit: type=1326 audit(2000000732.749:5457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26128 comm="syz.0.8774" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 372.437988][ T40] audit: type=1326 audit(2000000732.749:5458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26128 comm="syz.0.8774" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70de598 code=0x7ffc0000 [ 372.447044][ T40] audit: type=1326 audit(2000000732.749:5459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26128 comm="syz.0.8774" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 372.594379][ T1336] libceph: connect (1)[c::]:6789 error -101 [ 372.597738][ T1336] libceph: mon0 (1)[c::]:6789 connect error [ 372.627509][T18680] libceph: connect (1)[c::]:6789 error -101 [ 372.630327][T18680] libceph: mon0 (1)[c::]:6789 connect error [ 372.675360][ T140] usb 11-1: new high-speed USB device number 30 using dummy_hcd [ 372.725097][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 372.837109][ T140] usb 11-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 372.841211][ T140] usb 11-1: config 0 interface 0 has no altsetting 0 [ 372.846776][ T140] usb 11-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 372.850999][ T140] usb 11-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 372.857093][ T140] usb 11-1: Product: syz [ 372.858878][ T140] usb 11-1: Manufacturer: syz [ 372.860797][ T140] usb 11-1: SerialNumber: syz [ 372.864844][ T140] usb 11-1: config 0 descriptor?? [ 372.868248][ T1336] libceph: connect (1)[c::]:6789 error -101 [ 372.870983][ T1336] libceph: mon0 (1)[c::]:6789 connect error [ 372.871215][ T140] usb 11-1: selecting invalid altsetting 0 [ 372.885818][T18680] libceph: connect (1)[c::]:6789 error -101 [ 372.892390][T18680] libceph: mon0 (1)[c::]:6789 connect error [ 373.071939][ T29] usb 11-1: USB disconnect, device number 30 [ 373.386966][ T1336] libceph: connect (1)[c::]:6789 error -101 [ 373.390165][ T1336] libceph: mon0 (1)[c::]:6789 connect error [ 373.403347][T26144] ceph: No mds server is up or the cluster is laggy [ 373.403770][T26150] ceph: No mds server is up or the cluster is laggy [ 373.416574][ T24] libceph: connect (1)[c::]:6789 error -101 [ 373.419285][ T24] libceph: mon0 (1)[c::]:6789 connect error [ 373.619279][T26189] netlink: 20 bytes leftover after parsing attributes in process `syz.6.8798'. [ 373.644100][T26189] netlink: 4 bytes leftover after parsing attributes in process `syz.6.8798'. [ 373.774176][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 373.819444][ T1344] usb 10-1: USB disconnect, device number 21 [ 373.909974][T26209] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8807'. [ 373.990827][T26216] netlink: 60 bytes leftover after parsing attributes in process `syz.0.8810'. [ 374.054447][T26226] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8815'. [ 374.200934][ T1336] infiniband syz1: ib_query_port failed (-19) [ 374.805223][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 375.154864][T26291] veth0: entered promiscuous mode [ 375.157935][ T29] IPVS: starting estimator thread 0... [ 375.159033][T26292] tipc: Enabling of bearer rejected, already enabled [ 375.159045][T26291] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8843'. [ 375.245620][T26293] IPVS: using max 24 ests per chain, 57600 per kthread [ 375.845038][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 375.989943][T26324] netlink: 32 bytes leftover after parsing attributes in process `syz.5.8859'. [ 376.141397][T26335] netlink: 4 bytes leftover after parsing attributes in process `syz.6.8865'. [ 376.548915][T26368] binder: BINDER_SET_CONTEXT_MGR already set [ 376.551753][T26368] binder: 26367:26368 ioctl 4018620d 80000040 returned -16 [ 376.885020][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 377.103845][T26409] input: syz1 as /devices/virtual/input/input99 [ 377.550489][T26428] input: syz1 as /devices/virtual/input/input100 [ 377.867099][ T29] usb 10-1: new high-speed USB device number 22 using dummy_hcd [ 377.935029][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 378.027931][ T29] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 378.032721][ T29] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 378.038032][ T29] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 378.043562][ T29] usb 10-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 378.047597][ T29] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 378.053509][ T29] usb 10-1: config 0 descriptor?? [ 378.097881][ T1422] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.478233][ T29] plantronics 0003:047F:FFFF.003F: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0 [ 378.727747][ T140] usb 10-1: USB disconnect, device number 22 [ 378.874805][T26468] 9pnet: p9_errstr2errno: server reported unknown error 184467 [ 378.965131][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 378.973717][T26474] tipc: Enabling of bearer rejected, already enabled [ 379.047455][T26478] netlink: 48 bytes leftover after parsing attributes in process `syz.6.8925'. [ 379.277545][T26491] blk_print_req_error: 6 callbacks suppressed [ 379.277563][T26491] I/O error, dev loop13, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2 [ 379.287894][T26491] SQUASHFS error: Failed to read block 0x0: -5 [ 379.479266][T17653] bridge0: port 3(syz_tun) entered disabled state [ 379.498577][T17653] syz_tun (unregistering): left allmulticast mode [ 379.502258][T17653] syz_tun (unregistering): left promiscuous mode [ 379.507257][T17653] bridge0: port 3(syz_tun) entered disabled state [ 379.872050][ T63] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 379.881896][ T63] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 379.887419][ T63] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 379.895029][ T63] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 379.901553][ T63] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 380.005154][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 380.089217][T26540] chnl_net:caif_netlink_parms(): no params data found [ 380.192082][T26564] netlink: 112 bytes leftover after parsing attributes in process `syz.2.8964'. [ 380.210694][T26540] bridge0: port 1(bridge_slave_0) entered blocking state [ 380.214118][T26540] bridge0: port 1(bridge_slave_0) entered disabled state [ 380.217483][T26540] bridge_slave_0: entered allmulticast mode [ 380.222088][T26540] bridge_slave_0: entered promiscuous mode [ 380.227203][T26540] bridge0: port 2(bridge_slave_1) entered blocking state [ 380.231061][T26540] bridge0: port 2(bridge_slave_1) entered disabled state [ 380.234621][T26540] bridge_slave_1: entered allmulticast mode [ 380.240908][T26540] bridge_slave_1: entered promiscuous mode [ 380.284602][T26540] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 380.292112][T26540] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 380.331132][T26540] team0: Port device team_slave_0 added [ 380.335945][T26540] team0: Port device team_slave_1 added [ 380.387756][T26540] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 380.390093][T26540] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 380.400209][T26540] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 380.410881][T26540] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 380.413940][T26540] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 380.424350][T26540] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 380.492476][T26540] hsr_slave_0: entered promiscuous mode [ 380.497331][T26540] hsr_slave_1: entered promiscuous mode [ 380.500282][T26540] debugfs: 'hsr0' already exists in 'hsr' [ 380.502650][T26540] Cannot create hsr debugfs directory [ 380.707006][T26540] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 380.713493][T26540] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 380.722240][T26540] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 380.732950][T26540] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 380.814059][T26540] 8021q: adding VLAN 0 to HW filter on device bond0 [ 380.836878][T26540] 8021q: adding VLAN 0 to HW filter on device team0 [ 380.844774][T10215] bridge0: port 1(bridge_slave_0) entered blocking state [ 380.847814][T10215] bridge0: port 1(bridge_slave_0) entered forwarding state [ 380.862955][T10202] bridge0: port 2(bridge_slave_1) entered blocking state [ 380.866604][T10202] bridge0: port 2(bridge_slave_1) entered forwarding state [ 380.953997][T26590] netlink: 4 bytes leftover after parsing attributes in process `syz.6.8973'. [ 381.045042][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 381.061415][T26540] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 381.119336][T26599] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8975'. [ 381.271558][T26540] veth0_vlan: entered promiscuous mode [ 381.277995][T26540] veth1_vlan: entered promiscuous mode [ 381.298272][T26540] veth0_macvtap: entered promiscuous mode [ 381.303696][T26540] veth1_macvtap: entered promiscuous mode [ 381.318002][T26540] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 381.329004][T26540] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 381.337064][T10215] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 381.340291][T10215] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 381.344111][T10215] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 381.349218][T10215] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 381.409723][T10207] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 381.412412][T10207] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 381.437928][T10207] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 381.440502][T10207] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 381.486902][ T40] kauditd_printk_skb: 121 callbacks suppressed [ 381.486919][ T40] audit: type=1326 audit(2000000741.859:5581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26621 comm="syz.0.8984" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 381.500195][ T40] audit: type=1326 audit(2000000741.859:5582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26621 comm="syz.0.8984" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 381.510083][ T40] audit: type=1326 audit(2000000741.859:5583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26621 comm="syz.0.8984" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 381.519762][ T40] audit: type=1326 audit(2000000741.859:5584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26621 comm="syz.0.8984" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70de598 code=0x7ffc0000 [ 381.529557][ T40] audit: type=1326 audit(2000000741.859:5585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26621 comm="syz.0.8984" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70de598 code=0x7ffc0000 [ 381.538458][ T40] audit: type=1326 audit(2000000741.859:5586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26621 comm="syz.0.8984" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70de598 code=0x7ffc0000 [ 381.546968][T26626] cgroup: fork rejected by pids controller in /syz7 [ 381.547566][ T40] audit: type=1326 audit(2000000741.859:5587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26621 comm="syz.0.8984" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 381.560326][ T40] audit: type=1326 audit(2000000741.859:5588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26621 comm="syz.0.8984" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 381.569393][ T40] audit: type=1326 audit(2000000741.859:5589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26621 comm="syz.0.8984" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70de598 code=0x7ffc0000 [ 381.579115][ T40] audit: type=1326 audit(2000000741.859:5590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26621 comm="syz.0.8984" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 381.826316][T26636] input: syz0 as /devices/virtual/input/input101 [ 382.085039][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 382.958413][T26682] 9pnet: p9_errstr2errno: server reported unknown error 1844674 [ 383.125064][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 383.334813][T26702] random: crng reseeded on system resumption [ 383.453020][T10229] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 383.655396][ T24] usb 11-1: new high-speed USB device number 31 using dummy_hcd [ 383.758034][ T5984] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 383.762764][ T5984] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 383.772704][ T5984] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 383.780827][ T5984] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 383.784944][ T5984] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 383.805286][ T24] usb 11-1: Using ep0 maxpacket: 8 [ 383.809306][ T24] usb 11-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 383.813862][ T24] usb 11-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0 [ 383.817877][ T24] usb 11-1: config 0 interface 0 has no altsetting 0 [ 383.821338][ T24] usb 11-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 383.825642][ T24] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 383.834653][ T24] usb 11-1: config 0 descriptor?? [ 383.965581][T26718] chnl_net:caif_netlink_parms(): no params data found [ 384.061739][T26718] bridge0: port 1(bridge_slave_0) entered blocking state [ 384.064575][T26718] bridge0: port 1(bridge_slave_0) entered disabled state [ 384.067895][T26718] bridge_slave_0: entered allmulticast mode [ 384.071999][T26718] bridge_slave_0: entered promiscuous mode [ 384.076526][T26718] bridge0: port 2(bridge_slave_1) entered blocking state [ 384.079383][T26718] bridge0: port 2(bridge_slave_1) entered disabled state [ 384.081898][T26718] bridge_slave_1: entered allmulticast mode [ 384.084844][T26718] bridge_slave_1: entered promiscuous mode [ 384.132364][T26718] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 384.140554][T26718] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 384.165171][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 384.221179][T26718] team0: Port device team_slave_0 added [ 384.226343][T26718] team0: Port device team_slave_1 added [ 384.252691][ T24] mcp2221 0003:04D8:00DD.0040: unknown main item tag 0x0 [ 384.255938][ T24] mcp2221 0003:04D8:00DD.0040: unknown main item tag 0x0 [ 384.258740][ T24] mcp2221 0003:04D8:00DD.0040: unknown main item tag 0x0 [ 384.261658][ T24] mcp2221 0003:04D8:00DD.0040: unknown main item tag 0x0 [ 384.264782][ T24] mcp2221 0003:04D8:00DD.0040: unknown main item tag 0x0 [ 384.267942][ T24] mcp2221 0003:04D8:00DD.0040: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.6-1/input0 [ 384.279103][T26718] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 384.281899][T26718] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 384.292783][T26718] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 384.298530][T26718] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 384.301196][T26718] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 384.311947][T26718] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 384.364093][T26718] hsr_slave_0: entered promiscuous mode [ 384.366523][T26718] hsr_slave_1: entered promiscuous mode [ 384.368924][T26718] debugfs: 'hsr0' already exists in 'hsr' [ 384.370860][T26718] Cannot create hsr debugfs directory [ 384.458658][ T6029] usb 11-1: USB disconnect, device number 31 [ 384.812072][T26755] netlink: 'syz.2.9038': attribute type 12 has an invalid length. [ 385.084510][T26772] netlink: 'syz.6.9046': attribute type 1 has an invalid length. [ 385.135418][T10229] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 385.215034][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 385.239066][T10229] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 385.327487][T10229] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 385.472865][T10229] bridge_slave_1: left allmulticast mode [ 385.475291][T10229] bridge_slave_1: left promiscuous mode [ 385.477612][T10229] bridge0: port 2(bridge_slave_1) entered disabled state [ 385.485425][T10229] bridge_slave_0: left allmulticast mode [ 385.487645][T10229] bridge_slave_0: left promiscuous mode [ 385.490018][T10229] bridge0: port 1(bridge_slave_0) entered disabled state [ 385.846396][ T5984] Bluetooth: hci2: command tx timeout [ 385.997535][T10229] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 386.013859][T10229] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 386.021801][T10229] bond0 (unregistering): Released all slaves [ 386.245635][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 386.263171][T26843] netlink: 4 bytes leftover after parsing attributes in process `syz.2.9079'. [ 386.282026][T26845] netlink: 8 bytes leftover after parsing attributes in process `syz.6.9080'. [ 386.394984][T10229] hsr_slave_0: left promiscuous mode [ 386.398751][T10229] hsr_slave_1: left promiscuous mode [ 386.401606][T10229] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 386.405255][T10229] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 386.409626][T10229] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 386.412971][T10229] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 386.458954][T10229] veth1_macvtap: left promiscuous mode [ 386.461581][T10229] veth0_macvtap: left promiscuous mode [ 386.463927][T10229] veth1_vlan: left promiscuous mode [ 386.466503][T10229] veth0_vlan: left promiscuous mode [ 387.295191][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 387.714615][T10229] team0 (unregistering): Port device team_slave_1 removed [ 387.885817][T10229] team0 (unregistering): Port device team_slave_0 removed [ 387.926728][ T5984] Bluetooth: hci2: command tx timeout [ 388.088541][T26894] overlayfs: failed to clone upperpath [ 388.339714][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 388.877262][T26850] netlink: 96 bytes leftover after parsing attributes in process `syz.6.9082'. [ 388.923741][T26718] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 388.930038][T26718] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 388.936515][T26718] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 388.943044][T26718] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 389.011311][T26718] 8021q: adding VLAN 0 to HW filter on device bond0 [ 389.041606][T26718] 8021q: adding VLAN 0 to HW filter on device team0 [ 389.048309][T26914] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9109'. [ 389.059859][T10202] bridge0: port 1(bridge_slave_0) entered blocking state [ 389.062832][T10202] bridge0: port 1(bridge_slave_0) entered forwarding state [ 389.073277][ T1150] bridge0: port 2(bridge_slave_1) entered blocking state [ 389.075930][ T1150] bridge0: port 2(bridge_slave_1) entered forwarding state [ 389.271857][T26718] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 389.275847][T26937] netlink: 72 bytes leftover after parsing attributes in process `syz.2.9117'. [ 389.282086][T26937] netlink: 16 bytes leftover after parsing attributes in process `syz.2.9117'. [ 389.365070][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 389.492324][T26718] veth0_vlan: entered promiscuous mode [ 389.500823][T26718] veth1_vlan: entered promiscuous mode [ 389.527991][T26718] veth0_macvtap: entered promiscuous mode [ 389.534588][T26718] veth1_macvtap: entered promiscuous mode [ 389.556048][T26718] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 389.563606][T26718] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 389.578687][T10207] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 389.593419][T10207] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 389.597966][T10207] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 389.602145][T10207] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 389.662503][T10229] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 389.666451][T10229] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 389.698173][ T1150] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 389.702240][ T1150] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 390.005183][ T5984] Bluetooth: hci2: command tx timeout [ 390.353352][T26994] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(3) [ 390.355539][T26994] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 390.359422][T26994] vhci_hcd vhci_hcd.0: Device attached [ 390.405062][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 390.595244][ T10] usb 49-1: new low-speed USB device number 3 using vhci_hcd [ 390.598246][ T6042] usb 11-1: new high-speed USB device number 32 using dummy_hcd [ 390.738348][T27026] netlink: 28 bytes leftover after parsing attributes in process `syz.7.9150'. [ 390.742400][T27026] netem: change failed [ 390.745840][ T6042] usb 11-1: Using ep0 maxpacket: 16 [ 390.750563][ T6042] usb 11-1: config 0 has no interfaces? [ 390.752910][ T6042] usb 11-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 390.756708][ T6042] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 390.760711][ T6042] usb 11-1: config 0 descriptor?? [ 390.971687][T26995] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 2 [ 390.977940][T10202] vhci_hcd: stop threads [ 390.982668][T10202] vhci_hcd: release socket [ 390.984479][T10202] vhci_hcd: disconnect device [ 390.985620][ T3248] usb 11-1: USB disconnect, device number 32 [ 391.067367][ T6042] usb 12-1: new high-speed USB device number 2 using dummy_hcd [ 391.174236][T27058] netlink: 56 bytes leftover after parsing attributes in process `syz.0.9164'. [ 391.215573][ T6042] usb 12-1: too many configurations: 9, using maximum allowed: 8 [ 391.219100][ T6042] usb 12-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 391.222536][ T6042] usb 12-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 391.227010][ T6042] usb 12-1: config 0 interface 0 has no altsetting 0 [ 391.231470][ T6042] usb 12-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 391.236742][ T6042] usb 12-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 391.243727][ T6042] usb 12-1: config 0 interface 0 has no altsetting 0 [ 391.247878][ T6042] usb 12-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 391.251509][ T6042] usb 12-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 391.257057][ T6042] usb 12-1: config 0 interface 0 has no altsetting 0 [ 391.265478][ T6042] usb 12-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 391.271623][ T6042] usb 12-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 391.278279][ T6042] usb 12-1: config 0 interface 0 has no altsetting 0 [ 391.282384][ T6042] usb 12-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 391.287177][ T6042] usb 12-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 391.292340][ T6042] usb 12-1: config 0 interface 0 has no altsetting 0 [ 391.297330][ T6042] usb 12-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 391.301064][ T6042] usb 12-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 391.315453][ T6042] usb 12-1: config 0 interface 0 has no altsetting 0 [ 391.319912][ T6042] usb 12-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 391.324069][ T6042] usb 12-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 391.335252][ T6042] usb 12-1: config 0 interface 0 has no altsetting 0 [ 391.340014][ T6042] usb 12-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 391.355325][ T6042] usb 12-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 391.359933][ T6042] usb 12-1: config 0 interface 0 has no altsetting 0 [ 391.384765][ T6042] usb 12-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 391.395210][ T6042] usb 12-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 391.398956][ T6042] usb 12-1: Product: syz [ 391.400921][ T6042] usb 12-1: Manufacturer: syz [ 391.403027][ T6042] usb 12-1: SerialNumber: syz [ 391.434337][ T6042] usb 12-1: config 0 descriptor?? [ 391.444144][ T6042] yurex 12-1:0.0: USB YUREX device now attached to Yurex #0 [ 391.455055][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 391.578115][T27074] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 391.657613][ T6042] usb 12-1: USB disconnect, device number 2 [ 391.662177][ T6042] yurex 12-1:0.0: USB YUREX #0 now disconnected [ 392.085117][ T5984] Bluetooth: hci2: command tx timeout [ 392.143433][T27084] netlink: 4 bytes leftover after parsing attributes in process `syz.6.9175'. [ 392.450690][T27088] bridge0: entered promiscuous mode [ 392.454268][T27088] batman_adv: batadv0: Adding interface: macsec0 [ 392.458903][T27088] batman_adv: batadv0: The MTU of interface macsec0 is too small (1468) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 392.471218][T27088] batman_adv: batadv0: Interface activated: macsec0 [ 392.495192][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 392.665153][T27098] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(3) [ 392.668047][T27098] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 392.673404][T27098] vhci_hcd vhci_hcd.0: Device attached [ 392.915513][ T3248] usb 51-1: new low-speed USB device number 2 using vhci_hcd [ 392.937238][ T29] usb 12-1: new high-speed USB device number 3 using dummy_hcd [ 393.045478][ T6042] usb 11-1: new high-speed USB device number 33 using dummy_hcd [ 393.095370][ T29] usb 12-1: Using ep0 maxpacket: 16 [ 393.100030][ T29] usb 12-1: config 0 has no interfaces? [ 393.102686][ T29] usb 12-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 393.106551][ T29] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 393.111840][ T29] usb 12-1: config 0 descriptor?? [ 393.200146][ T6042] usb 11-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 393.205493][ T6042] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 393.211280][ T6042] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 393.215415][ T6042] usb 11-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 393.221034][ T6042] usb 11-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 393.225563][ T6042] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 393.233527][ T6042] usb 11-1: config 0 descriptor?? [ 393.309649][T27066] Set syz1 is full, maxelem 65536 reached [ 393.319928][T27099] usb 51-1: recv xbuf, 0 [ 393.322299][T10215] vhci_hcd: stop threads [ 393.324078][T10215] vhci_hcd: release socket [ 393.324230][ T8614] usb 12-1: USB disconnect, device number 3 [ 393.325810][T10215] vhci_hcd: disconnect device [ 393.385146][ T3248] vhci_hcd: vhci_device speed not set [ 393.398587][ C2] vcan0: j1939_tp_rxtimer: 0xffff888021297800: rx timeout, send abort [ 393.402185][ C2] vcan0: j1939_tp_rxtimer: 0xffff888021294c00: rx timeout, send abort [ 393.405862][ C2] vcan0: j1939_xtp_rx_abort_one: 0xffff888021297800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 393.412360][ C2] vcan0: j1939_xtp_rx_abort_one: 0xffff888021294c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 393.497344][T27118] netlink: 'syz.0.9188': attribute type 4 has an invalid length. [ 393.512826][T27118] netlink: 'syz.0.9188': attribute type 4 has an invalid length. [ 393.525291][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 393.528806][T27120] netlink: 36 bytes leftover after parsing attributes in process `syz.2.9187'. [ 393.658288][ T6042] plantronics 0003:047F:FFFF.0041: unknown main item tag 0x0 [ 393.661495][ T6042] plantronics 0003:047F:FFFF.0041: unknown main item tag 0x0 [ 393.664655][ T6042] plantronics 0003:047F:FFFF.0041: unknown main item tag 0x0 [ 393.668493][ T6042] plantronics 0003:047F:FFFF.0041: unknown main item tag 0x0 [ 393.671668][ T6042] plantronics 0003:047F:FFFF.0041: unknown main item tag 0x0 [ 393.674766][ T6042] plantronics 0003:047F:FFFF.0041: unknown main item tag 0x0 [ 393.678887][ T6042] plantronics 0003:047F:FFFF.0041: unknown main item tag 0x0 [ 393.683134][ T6042] plantronics 0003:047F:FFFF.0041: unknown main item tag 0x0 [ 393.688759][ T6042] plantronics 0003:047F:FFFF.0041: unknown main item tag 0x0 [ 393.692223][ T6042] plantronics 0003:047F:FFFF.0041: unknown main item tag 0x0 [ 393.700616][ T6042] plantronics 0003:047F:FFFF.0041: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0 [ 393.732264][T27131] netlink: 52 bytes leftover after parsing attributes in process `syz.0.9193'. [ 393.917923][ T6061] usb 11-1: USB disconnect, device number 33 [ 393.950991][T27152] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.9202'. [ 394.311912][T27169] IPv4: Oversized IP packet from 127.202.26.0 [ 394.565381][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 394.708844][ T40] kauditd_printk_skb: 88 callbacks suppressed [ 394.708860][ T40] audit: type=1326 audit(2000000755.079:5679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27216 comm="syz.2.9232" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x0 [ 395.088301][T27234] netlink: 20 bytes leftover after parsing attributes in process `syz.7.9239'. [ 395.094677][T27234] netlink: 20 bytes leftover after parsing attributes in process `syz.7.9239'. [ 395.505387][ T6042] usb 12-1: new high-speed USB device number 4 using dummy_hcd [ 395.615079][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 395.656620][ T6042] usb 12-1: Using ep0 maxpacket: 8 [ 395.660776][ T6042] usb 12-1: config index 0 descriptor too short (expected 301, got 45) [ 395.664737][ T6042] usb 12-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 395.669564][ T6042] usb 12-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 395.676727][ T10] vhci_hcd: vhci_device speed not set [ 395.679660][ T6042] usb 12-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 395.684092][ T6042] usb 12-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 395.690043][ T6042] usb 12-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 395.693833][ T6042] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 395.789688][T27261] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null. [ 395.797907][T27261] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 395.919018][ T6042] usb 12-1: usb_control_msg returned -32 [ 395.921632][ T6042] usbtmc 12-1:16.0: can't read capabilities [ 396.645136][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 397.255069][ T1336] usb 11-1: new high-speed USB device number 34 using dummy_hcd [ 397.425907][ T1336] usb 11-1: too many configurations: 9, using maximum allowed: 8 [ 397.431286][ T1336] usb 11-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 397.435251][ T1336] usb 11-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 397.439794][ T1336] usb 11-1: config 0 interface 0 has no altsetting 0 [ 397.443608][ T1336] usb 11-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 397.448046][ T1336] usb 11-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 397.453462][ T1336] usb 11-1: config 0 interface 0 has no altsetting 0 [ 397.457609][ T1336] usb 11-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 397.461346][ T1336] usb 11-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 397.466185][ T1336] usb 11-1: config 0 interface 0 has no altsetting 0 [ 397.470177][ T1336] usb 11-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 397.475034][ T1336] usb 11-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 397.480522][ T1336] usb 11-1: config 0 interface 0 has no altsetting 0 [ 397.484670][ T1336] usb 11-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 397.488505][ T1336] usb 11-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 397.492964][ T1336] usb 11-1: config 0 interface 0 has no altsetting 0 [ 397.496901][ T1336] usb 11-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 397.500668][ T1336] usb 11-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 397.505373][ T1336] usb 11-1: config 0 interface 0 has no altsetting 0 [ 397.509710][ T1336] usb 11-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 397.513695][ T1336] usb 11-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 397.518178][ T1336] usb 11-1: config 0 interface 0 has no altsetting 0 [ 397.521958][ T1336] usb 11-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 397.525804][ T1336] usb 11-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 397.530254][ T1336] usb 11-1: config 0 interface 0 has no altsetting 0 [ 397.535565][ T1336] usb 11-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 397.540135][ T1336] usb 11-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 397.543729][ T1336] usb 11-1: Product: syz [ 397.545547][ T1336] usb 11-1: Manufacturer: syz [ 397.547516][ T1336] usb 11-1: SerialNumber: syz [ 397.551995][ T1336] usb 11-1: config 0 descriptor?? [ 397.558471][ T1336] yurex 11-1:0.0: USB YUREX device now attached to Yurex #1 [ 397.685100][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 397.765456][T18680] usb 11-1: USB disconnect, device number 34 [ 397.768522][T18680] yurex 11-1:0.0: USB YUREX #1 now disconnected [ 398.165147][ T63] Bluetooth: hci4: command 0x1003 tx timeout [ 398.165183][ T5984] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 398.293220][ T6029] usb 12-1: USB disconnect, device number 4 [ 398.725053][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 398.814109][T27360] input: syz1 as /devices/virtual/input/input102 [ 399.089855][T27389] netlink: 4 bytes leftover after parsing attributes in process `syz.7.9303'. [ 399.205078][T18680] usb 5-1: new high-speed USB device number 38 using dummy_hcd [ 399.231875][T27389] hsr_slave_0 (unregistering): left promiscuous mode [ 399.396649][T18680] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 399.401061][T18680] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 399.417216][T18680] usb 5-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 399.421024][T18680] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 399.439501][T18680] usb 5-1: config 0 descriptor?? [ 399.488276][T27405] netlink: 'syz.7.9311': attribute type 30 has an invalid length. [ 399.707341][T27416] team0: No ports can be present during mode change [ 399.711883][T27416] netlink: 4 bytes leftover after parsing attributes in process `syz.7.9315'. [ 399.775543][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 399.860208][T18680] hid_parser_main: 5 callbacks suppressed [ 399.860223][T18680] cm6533_jd 0003:0D8C:0022.0042: unknown main item tag 0x0 [ 399.865541][T18680] cm6533_jd 0003:0D8C:0022.0042: unknown main item tag 0x0 [ 399.868109][T27416] team0 (unregistering): Port device team_slave_0 removed [ 399.869678][T18680] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/0003:0D8C:0022.0042/input/input103 [ 399.877526][T27416] team0 (unregistering): Port device team_slave_1 removed [ 399.885290][T18680] cm6533_jd 0003:0D8C:0022.0042: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.0-1/input0 [ 400.061894][ T10] usb 5-1: USB disconnect, device number 38 [ 400.340353][T27443] overlayfs: failed to clone upperpath [ 400.765169][ T6029] usb 12-1: new high-speed USB device number 5 using dummy_hcd [ 400.805042][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 400.916703][ T6029] usb 12-1: config 0 has no interfaces? [ 400.919438][ T6029] usb 12-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 400.923839][ T6029] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 400.937748][ T6029] usb 12-1: config 0 descriptor?? [ 401.113051][ T40] audit: type=1326 audit(2000000761.479:5680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27487 comm="syz.2.9345" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 401.125151][ T40] audit: type=1326 audit(2000000761.479:5681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27487 comm="syz.2.9345" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 401.133672][ T40] audit: type=1326 audit(2000000761.479:5682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27487 comm="syz.2.9345" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 401.148481][ T40] audit: type=1326 audit(2000000761.479:5683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27487 comm="syz.2.9345" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 401.158438][ T40] audit: type=1326 audit(2000000761.479:5684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27487 comm="syz.2.9345" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 401.159611][ T6061] usb 12-1: USB disconnect, device number 5 [ 401.171685][ T40] audit: type=1326 audit(2000000761.479:5685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27487 comm="syz.2.9345" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 401.179605][ T40] audit: type=1326 audit(2000000761.479:5686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27487 comm="syz.2.9345" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 401.189329][ T40] audit: type=1326 audit(2000000761.479:5687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27487 comm="syz.2.9345" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 401.196374][ T40] audit: type=1326 audit(2000000761.499:5688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27487 comm="syz.2.9345" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 401.205085][ T40] audit: type=1326 audit(2000000761.499:5689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27487 comm="syz.2.9345" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 401.845187][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 401.861308][T27507] netlink: 12 bytes leftover after parsing attributes in process `syz.2.9359'. [ 402.505060][ T8614] usb 12-1: new high-speed USB device number 6 using dummy_hcd [ 402.656832][ T8614] usb 12-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 402.662403][ T8614] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 402.667238][ T8614] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 402.671533][ T8614] usb 12-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 402.677411][ T8614] usb 12-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 402.681902][ T8614] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 402.687634][ T8614] usb 12-1: config 0 descriptor?? [ 402.690496][T27534] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22 [ 402.762965][T27552] netlink: 'syz.6.9368': attribute type 10 has an invalid length. [ 402.767741][T27552] syz_tun: entered promiscuous mode [ 402.780563][T27552] syz_tun: entered allmulticast mode [ 402.788911][T27552] bond0: (slave syz_tun): Enslaving as an active interface with an up link [ 402.885178][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 403.079381][T27559] [ 403.080486][T27559] ===================================================== [ 403.083395][T27559] WARNING: SOFTIRQ-safe -> SOFTIRQ-unsafe lock order detected [ 403.086550][T27559] syzkaller #0 Not tainted [ 403.088518][T27559] ----------------------------------------------------- [ 403.093417][T27559] syz.0.9371/27559 [HC0[0]:SC0[0]:HE0:SE1] is trying to acquire: [ 403.096786][T27559] ffff888070b28600 (&new->fa_lock){....}-{3:3}, at: kill_fasync+0x138/0x510 [ 403.100573][T27559] [ 403.100573][T27559] and this task is already holding: [ 403.103746][T27559] ffff88806e398028 (&client->buffer_lock){....}-{3:3}, at: evdev_pass_values+0x10e/0x9b0 [ 403.104333][ T8614] plantronics 0003:047F:FFFF.0043: reserved main item tag 0xd [ 403.108028][T27559] which would create a new lock dependency: [ 403.108041][T27559] (&client->buffer_lock){....}-{3:3} -> (&new->fa_lock){....}-{3:3} [ 403.108092][T27559] [ 403.108092][T27559] but this new dependency connects a SOFTIRQ-irq-safe lock: [ 403.108102][T27559] (&dev->event_lock#2){..-.}-{3:3} [ 403.108127][T27559] [ 403.108127][T27559] ... which became SOFTIRQ-irq-safe at: [ 403.108136][T27559] lock_acquire+0x179/0x350 [ 403.114286][ T8614] plantronics 0003:047F:FFFF.0043: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.7-1/input0 [ 403.117376][T27559] _raw_spin_lock_irqsave+0x3a/0x60 [ 403.117405][T27559] input_inject_event+0x9f/0x3b0 [ 403.117423][T27559] led_set_brightness+0x217/0x290 [ 403.117451][T27559] led_trigger_event+0xda/0x270 [ 403.117470][T27559] kbd_bh+0x21b/0x300 [ 403.117493][T27559] tasklet_action_common+0x284/0x400 [ 403.117515][T27559] handle_softirqs+0x219/0x8e0 [ 403.117533][T27559] run_ksoftirqd+0x3a/0x60 [ 403.117552][T27559] smpboot_thread_fn+0x3f4/0xae0 [ 403.117572][T27559] kthread+0x3c5/0x780 [ 403.156167][T27559] ret_from_fork+0x5d4/0x6f0 [ 403.158152][T27559] ret_from_fork_asm+0x1a/0x30 [ 403.160201][T27559] [ 403.160201][T27559] to a SOFTIRQ-irq-unsafe lock: [ 403.163083][T27559] (tasklist_lock){.+.+}-{3:3} [ 403.163113][T27559] [ 403.163113][T27559] ... which became SOFTIRQ-irq-unsafe at: [ 403.168154][T27559] ... [ 403.168162][T27559] lock_acquire+0x179/0x350 [ 403.171077][T27559] _raw_read_lock+0x5f/0x70 [ 403.173172][T27559] __do_wait+0x105/0x890 [ 403.175044][T27559] do_wait+0x21e/0x5a0 [ 403.176860][T27559] kernel_wait+0x9f/0x160 [ 403.178671][T27559] call_usermodehelper_exec_work+0xf1/0x170 [ 403.181431][T27559] process_one_work+0x9cf/0x1b70 [ 403.184059][T27559] worker_thread+0x6c8/0xf10 [ 403.186414][T27559] kthread+0x3c5/0x780 [ 403.188138][T27559] ret_from_fork+0x5d4/0x6f0 [ 403.190000][T27559] ret_from_fork_asm+0x1a/0x30 [ 403.192047][T27559] [ 403.192047][T27559] other info that might help us debug this: [ 403.192047][T27559] [ 403.196244][T27559] Chain exists of: [ 403.196244][T27559] &dev->event_lock#2 --> &client->buffer_lock --> tasklist_lock [ 403.196244][T27559] [ 403.201571][T27559] Possible interrupt unsafe locking scenario: [ 403.201571][T27559] [ 403.204931][T27559] CPU0 CPU1 [ 403.207194][T27559] ---- ---- [ 403.209518][T27559] lock(tasklist_lock); [ 403.211396][T27559] local_irq_disable(); [ 403.214200][T27559] lock(&dev->event_lock#2); [ 403.217242][T27559] lock(&client->buffer_lock); [ 403.220363][T27559] [ 403.221847][T27559] lock(&dev->event_lock#2); [ 403.223902][T27559] [ 403.223902][T27559] *** DEADLOCK *** [ 403.223902][T27559] [ 403.227426][T27559] 7 locks held by syz.0.9371/27559: [ 403.229778][T27559] #0: ffff888042369118 (&evdev->mutex){+.+.}-{4:4}, at: evdev_write+0x184/0x440 [ 403.234105][T27559] #1: ffff888043bb8230 (&dev->event_lock#2){..-.}-{3:3}, at: input_inject_event+0x9f/0x3b0 [ 403.238425][T27559] #2: ffffffff8e5c10a0 (rcu_read_lock){....}-{1:3}, at: input_inject_event+0xbb/0x3b0 [ 403.242446][T27559] #3: ffffffff8e5c10a0 (rcu_read_lock){....}-{1:3}, at: input_pass_values+0x80/0x880 [ 403.246506][T27559] #4: ffffffff8e5c10a0 (rcu_read_lock){....}-{1:3}, at: evdev_events+0x7b/0x390 [ 403.250288][T27559] #5: ffff88806e398028 (&client->buffer_lock){....}-{3:3}, at: evdev_pass_values+0x10e/0x9b0 [ 403.254842][T27559] #6: ffffffff8e5c10a0 (rcu_read_lock){....}-{1:3}, at: kill_fasync+0x62/0x510 [ 403.259149][T27559] [ 403.259149][T27559] the dependencies between SOFTIRQ-irq-safe lock and the holding lock: [ 403.263636][T27559] -> (&dev->event_lock#2){..-.}-{3:3} { [ 403.265804][T27559] IN-SOFTIRQ-W at: [ 403.267552][T27559] lock_acquire+0x179/0x350 [ 403.270456][T27559] _raw_spin_lock_irqsave+0x3a/0x60 [ 403.273796][T27559] input_inject_event+0x9f/0x3b0 [ 403.276918][T27559] led_set_brightness+0x217/0x290 [ 403.279796][T27559] led_trigger_event+0xda/0x270 [ 403.282610][T27559] kbd_bh+0x21b/0x300 [ 403.285063][T27559] tasklet_action_common+0x284/0x400 [ 403.288089][T27559] handle_softirqs+0x219/0x8e0 [ 403.290887][T27559] run_ksoftirqd+0x3a/0x60 [ 403.293665][T27559] smpboot_thread_fn+0x3f4/0xae0 [ 403.296812][T27559] kthread+0x3c5/0x780 [ 403.299448][T27559] ret_from_fork+0x5d4/0x6f0 [ 403.302123][T27559] ret_from_fork_asm+0x1a/0x30 [ 403.304885][T27559] INITIAL USE at: [ 403.306613][T27559] lock_acquire+0x179/0x350 [ 403.309272][T27559] _raw_spin_lock_irqsave+0x3a/0x60 [ 403.312248][T27559] input_inject_event+0x9f/0x3b0 [ 403.314589][T27559] led_set_brightness+0x217/0x290 [ 403.317407][T27559] kbd_led_trigger_activate+0xcb/0x110 [ 403.320484][T27559] led_trigger_set+0x59a/0xc50 [ 403.322902][T27559] led_trigger_set_default+0x1e0/0x2e0 [ 403.325840][T27559] led_classdev_register_ext+0x7b8/0xa10 [ 403.328892][T27559] input_leds_connect+0x552/0x8e0 [ 403.331108][T27559] input_attach_handler.isra.0+0x173/0x250 [ 403.333499][T27559] input_register_device+0xab9/0x1180 [ 403.335764][T27559] atkbd_connect+0x5f8/0xa40 [ 403.337692][T27559] serio_driver_probe+0x7f/0xd0 [ 403.339978][T27559] really_probe+0x241/0xa90 [ 403.342070][T27559] __driver_probe_device+0x1de/0x440 [ 403.344736][T27559] driver_probe_device+0x4c/0x1b0 [ 403.347586][T27559] __driver_attach+0x283/0x580 [ 403.349715][T27559] bus_for_each_dev+0x13e/0x1d0 [ 403.351778][T27559] serio_handle_event+0x335/0xc30 [ 403.353966][T27559] process_one_work+0x9cf/0x1b70 [ 403.356470][T27559] worker_thread+0x6c8/0xf10 [ 403.358569][T27559] kthread+0x3c5/0x780 [ 403.360528][T27559] ret_from_fork+0x5d4/0x6f0 [ 403.362768][T27559] ret_from_fork_asm+0x1a/0x30 [ 403.365035][T27559] } [ 403.365958][T27559] ... key at: [] __key.7+0x0/0x40 [ 403.367824][ T6061] usb 12-1: USB disconnect, device number 6 [ 403.368754][T27559] -> (&client->buffer_lock){....}-{3:3} { [ 403.373096][T27559] INITIAL USE at: [ 403.374415][T27559] lock_acquire+0x179/0x350 [ 403.376490][T27559] _raw_spin_lock+0x2e/0x40 [ 403.379077][T27559] evdev_pass_values+0x10e/0x9b0 [ 403.381888][T27559] evdev_events+0x1bb/0x390 [ 403.384461][T27559] input_pass_values+0x74b/0x880 [ 403.386433][T27559] input_handle_event+0xf00/0x14d0 [ 403.389018][T27559] input_inject_event+0x1e8/0x3b0 [ 403.391780][T27559] evdev_write+0x2e1/0x440 [ 403.394374][T27559] vfs_write+0x2a0/0x11d0 [ 403.396941][T27559] ksys_write+0x1f8/0x250 [ 403.399539][T27559] __do_fast_syscall_32+0x7c/0x3a0 [ 403.402371][T27559] do_fast_syscall_32+0x32/0x80 [ 403.404952][T27559] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 403.407786][T27559] } [ 403.408745][T27559] ... key at: [] __key.1+0x0/0x40 [ 403.411325][T27559] ... acquired at: [ 403.412942][T27559] _raw_spin_lock+0x2e/0x40 [ 403.415110][T27559] evdev_pass_values+0x10e/0x9b0 [ 403.417369][T27559] evdev_events+0x1bb/0x390 [ 403.419490][T27559] input_pass_values+0x74b/0x880 [ 403.421827][T27559] input_handle_event+0xf00/0x14d0 [ 403.424202][T27559] input_inject_event+0x1e8/0x3b0 [ 403.426396][T27559] evdev_write+0x2e1/0x440 [ 403.428378][T27559] vfs_write+0x2a0/0x11d0 [ 403.430337][T27559] ksys_write+0x1f8/0x250 [ 403.432264][T27559] __do_fast_syscall_32+0x7c/0x3a0 [ 403.434347][T27559] do_fast_syscall_32+0x32/0x80 [ 403.436195][T27559] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 403.438801][T27559] [ 403.439762][T27559] [ 403.439762][T27559] the dependencies between the lock to be acquired [ 403.439770][T27559] and SOFTIRQ-irq-unsafe lock: [ 403.445730][T27559] -> (tasklist_lock){.+.+}-{3:3} { [ 403.448238][T27559] HARDIRQ-ON-R at: [ 403.450001][T27559] lock_acquire+0x179/0x350 [ 403.452727][T27559] _raw_read_lock+0x5f/0x70 [ 403.455503][T27559] __do_wait+0x105/0x890 [ 403.458133][T27559] do_wait+0x21e/0x5a0 [ 403.460930][T27559] kernel_wait+0x9f/0x160 [ 403.464074][T27559] call_usermodehelper_exec_work+0xf1/0x170 [ 403.467551][T27559] process_one_work+0x9cf/0x1b70 [ 403.470398][T27559] worker_thread+0x6c8/0xf10 [ 403.473362][T27559] kthread+0x3c5/0x780 [ 403.475880][T27559] ret_from_fork+0x5d4/0x6f0 [ 403.478717][T27559] ret_from_fork_asm+0x1a/0x30 [ 403.481645][T27559] SOFTIRQ-ON-R at: [ 403.483741][T27559] lock_acquire+0x179/0x350 [ 403.486954][T27559] _raw_read_lock+0x5f/0x70 [ 403.489685][T27559] __do_wait+0x105/0x890 [ 403.492338][T27559] do_wait+0x21e/0x5a0 [ 403.494960][T27559] kernel_wait+0x9f/0x160 [ 403.497591][T27559] call_usermodehelper_exec_work+0xf1/0x170 [ 403.500872][T27559] process_one_work+0x9cf/0x1b70 [ 403.503800][T27559] worker_thread+0x6c8/0xf10 [ 403.506760][T27559] kthread+0x3c5/0x780 [ 403.509613][T27559] ret_from_fork+0x5d4/0x6f0 [ 403.512638][T27559] ret_from_fork_asm+0x1a/0x30 [ 403.515490][T27559] INITIAL USE at: [ 403.517226][T27559] lock_acquire+0x179/0x350 [ 403.519928][T27559] _raw_write_lock_irq+0x36/0x50 [ 403.522801][T27559] copy_process+0x4caf/0x7690 [ 403.525528][T27559] kernel_clone+0xfc/0x930 [ 403.528152][T27559] user_mode_thread+0xc7/0x110 [ 403.531199][T27559] rest_init+0x23/0x2b0 [ 403.534286][T27559] start_kernel+0x3ee/0x4d0 [ 403.537048][T27559] x86_64_start_reservations+0x18/0x30 [ 403.540181][T27559] x86_64_start_kernel+0x130/0x190 [ 403.543107][T27559] common_startup_64+0x13e/0x148 [ 403.545946][T27559] INITIAL READ USE at: [ 403.547852][T27559] lock_acquire+0x179/0x350 [ 403.551115][T27559] _raw_read_lock+0x5f/0x70 [ 403.554352][T27559] __do_wait+0x105/0x890 [ 403.557693][T27559] do_wait+0x21e/0x5a0 [ 403.560483][T27559] kernel_wait+0x9f/0x160 [ 403.563318][T27559] call_usermodehelper_exec_work+0xf1/0x170 [ 403.566814][T27559] process_one_work+0x9cf/0x1b70 [ 403.569954][T27559] worker_thread+0x6c8/0xf10 [ 403.572904][T27559] kthread+0x3c5/0x780 [ 403.575639][T27559] ret_from_fork+0x5d4/0x6f0 [ 403.578512][T27559] ret_from_fork_asm+0x1a/0x30 [ 403.581629][T27559] } [ 403.582908][T27559] ... key at: [] tasklist_lock+0x18/0x40 [ 403.586554][T27559] ... acquired at: [ 403.588246][T27559] _raw_read_lock+0x5f/0x70 [ 403.590257][T27559] send_sigio+0xb8/0x3e0 [ 403.592137][T27559] dnotify_handle_event+0x15e/0x2b0 [ 403.594449][T27559] fsnotify_handle_inode_event.isra.0+0x1e2/0x3f0 [ 403.597155][T27559] fsnotify+0x13d6/0x1dc0 [ 403.599139][T27559] path_openat+0x1b50/0x2cb0 [ 403.601159][T27559] do_filp_open+0x20b/0x470 [ 403.603096][T27559] do_sys_openat2+0x11b/0x1d0 [ 403.605204][T27559] __ia32_compat_sys_openat+0x16d/0x210 [ 403.607809][T27559] __do_fast_syscall_32+0x7c/0x3a0 [ 403.610761][T27559] do_fast_syscall_32+0x32/0x80 [ 403.613829][T27559] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 403.617273][T27559] [ 403.618309][T27559] -> (&f_owner->lock){....}-{3:3} { [ 403.620610][T27559] INITIAL USE at: [ 403.622295][T27559] lock_acquire+0x179/0x350 [ 403.625150][T27559] _raw_write_lock_irq+0x36/0x50 [ 403.627923][T27559] __f_setown+0x61/0x3c0 [ 403.630413][T27559] generic_setlease+0xef2/0x1300 [ 403.633162][T27559] kernel_setlease+0x106/0x140 [ 403.636059][T27559] vfs_setlease+0x258/0x2d0 [ 403.638855][T27559] fcntl_setlease+0x3ed/0x5a0 [ 403.641582][T27559] do_fcntl+0x751/0x15a0 [ 403.644070][T27559] do_compat_fcntl64+0x367/0x710 [ 403.646392][T27559] __do_fast_syscall_32+0x7c/0x3a0 [ 403.648869][T27559] do_fast_syscall_32+0x32/0x80 [ 403.651222][T27559] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 403.654302][T27559] INITIAL READ USE at: [ 403.656140][T27559] lock_acquire+0x179/0x350 [ 403.658907][T27559] _raw_read_lock_irqsave+0x74/0x90 [ 403.661995][T27559] send_sigio+0x31/0x3e0 [ 403.664664][T27559] kill_fasync+0x214/0x510 [ 403.667849][T27559] lease_break_callback+0x23/0x30 [ 403.671399][T27559] __break_lease+0x671/0x1810 [ 403.674260][T27559] do_dentry_open+0x91f/0x1530 [ 403.677134][T27559] vfs_open+0x82/0x3f0 [ 403.679763][T27559] path_openat+0x1de4/0x2cb0 [ 403.682604][T27559] do_filp_open+0x20b/0x470 [ 403.685507][T27559] do_sys_openat2+0x11b/0x1d0 [ 403.688724][T27559] __ia32_compat_sys_openat+0x16d/0x210 [ 403.692767][T27559] __do_fast_syscall_32+0x7c/0x3a0 [ 403.696422][T27559] do_fast_syscall_32+0x32/0x80 [ 403.699317][T27559] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 403.702802][T27559] } [ 403.703972][T27559] ... key at: [] __key.1+0x0/0x40 [ 403.706951][T27559] ... acquired at: [ 403.708534][T27559] _raw_read_lock_irqsave+0x74/0x90 [ 403.710790][T27559] send_sigio+0x31/0x3e0 [ 403.712716][T27559] kill_fasync+0x214/0x510 [ 403.714707][T27559] lease_break_callback+0x23/0x30 [ 403.716890][T27559] __break_lease+0x671/0x1810 [ 403.718947][T27559] do_dentry_open+0x91f/0x1530 [ 403.721024][T27559] vfs_open+0x82/0x3f0 [ 403.722834][T27559] path_openat+0x1de4/0x2cb0 [ 403.724883][T27559] do_filp_open+0x20b/0x470 [ 403.726867][T27559] do_sys_openat2+0x11b/0x1d0 [ 403.728830][T27559] __ia32_compat_sys_openat+0x16d/0x210 [ 403.731596][T27559] __do_fast_syscall_32+0x7c/0x3a0 [ 403.734191][T27559] do_fast_syscall_32+0x32/0x80 [ 403.736602][T27559] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 403.739363][T27559] [ 403.740418][T27559] -> (&new->fa_lock){....}-{3:3} { [ 403.742772][T27559] INITIAL USE at: [ 403.744489][T27559] lock_acquire+0x179/0x350 [ 403.746752][T27559] _raw_write_lock_irq+0x36/0x50 [ 403.748738][T27559] fasync_remove_entry+0xb2/0x1e0 [ 403.751069][T27559] fasync_helper+0xaf/0xd0 [ 403.753807][T27559] lease_modify+0x232/0x500 [ 403.756893][T27559] locks_remove_file+0x29e/0x5c0 [ 403.759912][T27559] __fput+0x351/0xb70 [ 403.762156][T27559] task_work_run+0x14d/0x240 [ 403.764723][T27559] exit_to_user_mode_loop+0xeb/0x110 [ 403.767600][T27559] __do_fast_syscall_32+0x2ac/0x3a0 [ 403.770430][T27559] do_fast_syscall_32+0x32/0x80 [ 403.773097][T27559] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 403.776417][T27559] INITIAL READ USE at: [ 403.778249][T27559] lock_acquire+0x179/0x350 [ 403.781015][T27559] _raw_read_lock_irqsave+0x74/0x90 [ 403.784499][T27559] kill_fasync+0x138/0x510 [ 403.787716][T27559] lease_break_callback+0x23/0x30 [ 403.790696][T27559] __break_lease+0x671/0x1810 [ 403.793486][T27559] do_dentry_open+0x91f/0x1530 [ 403.796303][T27559] vfs_open+0x82/0x3f0 [ 403.798918][T27559] path_openat+0x1de4/0x2cb0 [ 403.801866][T27559] do_filp_open+0x20b/0x470 [ 403.804698][T27559] do_sys_openat2+0x11b/0x1d0 [ 403.807914][T27559] __ia32_compat_sys_openat+0x16d/0x210 [ 403.811501][T27559] __do_fast_syscall_32+0x7c/0x3a0 [ 403.814615][T27559] do_fast_syscall_32+0x32/0x80 [ 403.817460][T27559] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 403.820924][T27559] } [ 403.822035][T27559] ... key at: [] __key.0+0x0/0x40 [ 403.825083][T27559] ... acquired at: [ 403.826794][T27559] lock_acquire+0x179/0x350 [ 403.829011][T27559] _raw_read_lock_irqsave+0x74/0x90 [ 403.831566][T27559] kill_fasync+0x138/0x510 [ 403.833529][T27559] evdev_pass_values+0x619/0x9b0 [ 403.835633][T27559] evdev_events+0x1bb/0x390 [ 403.837612][T27559] input_pass_values+0x74b/0x880 [ 403.839813][T27559] input_handle_event+0xf00/0x14d0 [ 403.842098][T27559] input_inject_event+0x1e8/0x3b0 [ 403.844674][T27559] evdev_write+0x2e1/0x440 [ 403.846992][T27559] vfs_write+0x2a0/0x11d0 [ 403.849225][T27559] ksys_write+0x1f8/0x250 [ 403.851224][T27559] __do_fast_syscall_32+0x7c/0x3a0 [ 403.853487][T27559] do_fast_syscall_32+0x32/0x80 [ 403.855639][T27559] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 403.858523][T27559] [ 403.859660][T27559] [ 403.859660][T27559] stack backtrace: [ 403.862465][T27559] CPU: 2 UID: 0 PID: 27559 Comm: syz.0.9371 Not tainted syzkaller #0 PREEMPT(full) [ 403.862494][T27559] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 403.862509][T27559] Call Trace: [ 403.862518][T27559] [ 403.862528][T27559] dump_stack_lvl+0x116/0x1f0 [ 403.862559][T27559] check_irq_usage+0x7dc/0x920 [ 403.862592][T27559] ? check_path.constprop.0+0x24/0x50 [ 403.862621][T27559] ? __lock_acquire+0x12bc/0x1ce0 [ 403.862649][T27559] __lock_acquire+0x12bc/0x1ce0 [ 403.862683][T27559] lock_acquire+0x179/0x350 [ 403.862710][T27559] ? kill_fasync+0x138/0x510 [ 403.862746][T27559] _raw_read_lock_irqsave+0x74/0x90 [ 403.862773][T27559] ? kill_fasync+0x138/0x510 [ 403.862803][T27559] kill_fasync+0x138/0x510 [ 403.862835][T27559] evdev_pass_values+0x619/0x9b0 [ 403.862863][T27559] evdev_events+0x1bb/0x390 [ 403.862886][T27559] input_pass_values+0x74b/0x880 [ 403.862910][T27559] input_handle_event+0xf00/0x14d0 [ 403.862932][T27559] ? _copy_from_user+0x59/0xd0 [ 403.862969][T27559] input_inject_event+0x1e8/0x3b0 [ 403.862993][T27559] evdev_write+0x2e1/0x440 [ 403.863014][T27559] ? __pfx_evdev_write+0x10/0x10 [ 403.863034][T27559] ? common_file_perm+0x1a9/0x340 [ 403.863063][T27559] ? bpf_lsm_file_permission+0x9/0x10 [ 403.863095][T27559] ? security_file_permission+0x71/0x210 [ 403.863126][T27559] ? rw_verify_area+0xcf/0x6c0 [ 403.863148][T27559] ? __pfx_evdev_write+0x10/0x10 [ 403.863168][T27559] vfs_write+0x2a0/0x11d0 [ 403.863195][T27559] ? __pfx_vfs_write+0x10/0x10 [ 403.863225][T27559] ? find_held_lock+0x2b/0x80 [ 403.863246][T27559] ? __fget_files+0x204/0x3c0 [ 403.863272][T27559] ? __fget_files+0x20e/0x3c0 [ 403.863298][T27559] ksys_write+0x1f8/0x250 [ 403.863323][T27559] ? __pfx_ksys_write+0x10/0x10 [ 403.863349][T27559] ? rcu_is_watching+0x12/0xc0 [ 403.863373][T27559] __do_fast_syscall_32+0x7c/0x3a0 [ 403.863405][T27559] do_fast_syscall_32+0x32/0x80 [ 403.863436][T27559] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 403.863464][T27559] RIP: 0023:0xf70de579 [ 403.863479][T27559] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 403.863501][T27559] RSP: 002b:00000000f54ce55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004 [ 403.863523][T27559] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000040 [ 403.863537][T27559] RDX: 0000000000001068 RSI: 0000000000000000 RDI: 0000000000000000 [ 403.863550][T27559] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 403.863564][T27559] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 403.863577][T27559] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 403.863596][T27559] [ 403.925082][ C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 403.926060][ C2] vkms_vblank_simulate: vblank timer overrun [ 403.987063][ C2] vkms_vblank_simulate: vblank timer overrun SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 404.378872][T27556] team0: left allmulticast mode [ 404.381392][T27556] team0: left promiscuous mode [ 404.398002][T27556] batman_adv: batadv0: Interface deactivated: macsec0 [ 404.428659][T10215] netdevsim netdevsim6 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 404.432361][T10215] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 404.436361][T10215] netdevsim netdevsim6 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 404.440264][T10215] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 404.444492][T10215] netdevsim netdevsim6 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 404.450105][T10215] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 404.453807][T10215] netdevsim netdevsim6 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 404.458554][T10215] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 404.539529][T27557] bond0: (slave syz_tun): Releasing backup interface [ 404.542594][T27557] syz_tun (unregistering): left allmulticast mode [ 404.690239][ T1150] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 404.749905][ T1150] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 404.829490][ T1150] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 404.959001][ T1150] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 405.136120][ T1150] bridge_slave_1: left allmulticast mode [ 405.138790][ T1150] bridge_slave_1: left promiscuous mode [ 405.141218][ T1150] bridge0: port 2(bridge_slave_1) entered disabled state [ 405.145559][ T1150] bridge_slave_0: left allmulticast mode [ 405.147833][ T1150] bridge_slave_0: left promiscuous mode [ 405.150168][ T1150] bridge0: port 1(bridge_slave_0) entered disabled state [ 405.254446][ T1150] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 405.259973][ T1150] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 405.264801][ T1150] bond0 (unregistering): Released all slaves [ 405.570154][ T1150] hsr_slave_1: left promiscuous mode [ 405.572787][ T1150] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 405.576006][ T1150] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 405.579619][ T1150] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 405.582875][ T1150] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 405.590963][ T1150] veth1_macvtap: left promiscuous mode [ 405.593505][ T1150] veth0_macvtap: left promiscuous mode [ 405.595983][ T1150] veth1_vlan: left promiscuous mode [ 405.597620][ T1150] veth0_vlan: left promiscuous mode [ 406.928041][ T1150] veth0_to_bridge: left allmulticast mode [ 406.931011][ T1150] veth0_to_bridge: left promiscuous mode [ 406.933938][ T1150] bridge0: port 1(veth0_to_bridge) entered disabled state [ 407.065896][ T1150] bond1 (unregistering): (slave geneve2): Releasing active interface [ 407.098082][ T1150] batman_adv: batadv0: Removing interface: macsec0 [ 407.324485][ T1150] bond0 (unregistering): Released all slaves [ 407.331708][ T1150] bond1 (unregistering): Released all slaves [ 407.452923][ T1150] tipc: Disabling bearer [ 407.454988][ T1150] tipc: Left network mode [ 407.637592][ T1150] hsr_slave_0: left promiscuous mode [ 407.639924][ T1150] hsr_slave_1: left promiscuous mode [ 408.921316][ T1150] IPVS: stop unused estimator thread 0... VM DIAGNOSIS: 15:28:05 Registers: info registers vcpu 0 CPU#0 RAX=00000000002f7da4 RBX=0000000000000000 RCX=ffffffff8b90abf9 RDX=ffffed1005646656 RSI=ffffffff8c162c80 RDI=ffffffff8190ccb1 RBP=fffffbfff1c52ef8 RSP=ffffffff8e207e08 R8 =0000000000000000 R9 =ffffed1005646655 R10=ffff88802b2332ab R11=0000000000000000 R12=0000000000000000 R13=ffffffff8e2977c0 R14=ffffffff90ab8190 R15=0000000000000000 RIP=ffffffff8b90975f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880974c3000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f7405de0 CR3=000000006c1ba000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000003 RBX=ffff88802b33a440 RCX=0000000000000000 RDX=0000000000000000 RSI=0000000000000000 RDI=ffff88802b33a458 RBP=0000000000000000 RSP=ffffc90004557828 R8 =0000000000000001 R9 =0000000000000000 R10=ffff88801deec058 R11=ffffc900045577ac R12=00000001000027c4 R13=0000000000000000 R14=0000000000000000 R15=0000000000001928 RIP=ffffffff81976070 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880975c3000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000032715ffc CR3=000000006c1ba000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85617045 RDI=ffffffff9b0f9700 RBP=ffffffff9b0f96c0 RSP=ffffc9000448f2f0 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d R12=0000000000000000 R13=000000000000002d R14=ffffffff9b0f96c0 R15=ffffffff85616fe0 RIP=ffffffff8561706f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880976c3000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f743d6f0 CR3=0000000068779000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffff00 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=00000000002f95fc RBX=0000000000000003 RCX=ffffffff8b90abf9 RDX=ffffed10056a6656 RSI=ffffffff8c162c80 RDI=ffffffff8190ccb1 RBP=ffffed1003865000 RSP=ffffc9000048fdf8 R8 =0000000000000000 R9 =ffffed10056a6655 R10=ffff88802b5332ab R11=0000000000000000 R12=0000000000000003 R13=ffff88801c328000 R14=ffffffff90ab8190 R15=0000000000000000 RIP=ffffffff8b90975f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880977c3000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000057c464c0 CR3=0000000066eff000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000