last executing test programs: 33.80395935s ago: executing program 1 (id=17282): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={{0x14}, [@NFT_MSG_NEWRULE={0x78, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x4c, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_SOCKET_DREG={0x8, 0x2, 0x1, 0x0, 0xb}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SOCKET_LEVEL={0x8, 0x3, 0x89}]}}}, {0x1c, 0x1, 0x0, 0x1, @masq={{0x9}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_MASQ_REG_PROTO_MIN={0x8, 0x2, 0x1, 0x0, 0xc}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0xa0}}, 0x0) 33.71895423s ago: executing program 1 (id=17284): capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000}) mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) chroot(&(0x7f0000000300)='./file0\x00') 33.653177932s ago: executing program 1 (id=17286): sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{0x0}], 0x1, &(0x7f0000000380)=[@op={0x10, 0x117, 0x3, 0x1}], 0x10}], 0x1, 0x40800) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8b30, &(0x7f0000000040)={'wlan1\x00'}) 33.653079719s ago: executing program 1 (id=17287): getrandom(&(0x7f0000000600)=""/274, 0xffffff4f, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19) 31.908716566s ago: executing program 1 (id=17312): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8}) fstat(r0, &(0x7f00000007c0)) 31.904377344s ago: executing program 1 (id=17314): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x6c, r1, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x0, 0x0, @loopback={0xff00000000000000}}}, {0x20, 0x2, @in6={0xa, 0x0, 0x0, @remote}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}]}]}, 0x6c}}, 0x0) 15.595648288s ago: executing program 32 (id=17314): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x6c, r1, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x0, 0x0, @loopback={0xff00000000000000}}}, {0x20, 0x2, @in6={0xa, 0x0, 0x0, @remote}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}]}]}, 0x6c}}, 0x0) 1.486560602s ago: executing program 0 (id=17636): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r0) sendmsg$NLBL_MGMT_C_ADD(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000a40)={0xf4, r1, 0xe701ac47a3d23ecd, 0x0, 0x0, {}, [@NLBL_MGMT_A_DOMAIN={0xce, 0x1, 'C\xec\xf8\xa0w\x15|\xd8\xbcs\xe1\xb93\x14\xcd\xcb\xb6\xb9\xbb\x84\xe5\xbc\xdb\x7f\x9a\xf2\xea\xcc\x91:v@\xe83-\x1d\xaagQl\x7f\tKt\fc\x1f\x17]\xd5\xd0\xf0\xa8\xeb\xd2g\x92\x04\x02\x00\x00od\xe6,\xd3@I\x17\xf3\xbees0\xad\xc6\xbf/*\xb6(o\x91t\x12\x93U6\xf4@n\xdc\xdc\x8a7y\x81FY\xbe\xbbc\xd2\xc3\x01\xa5\xe2V\x8c\xb3im~\xd2V\xdaG\xbdbF\xc8n\x86\xac\x9c\xfb\xda\xe2&\"\xb4:\x13\xe9\tc\x85\xb4\xcb\x17\xbfm\x846\xe7\x7fp\x9eCdb\xad;\xa2\x8fs\xbf6\xe8\xe3Xg3&\xe2 \xd6\n\x9d=~<\x93/\xaf\x89\x06+\x96]\xb5+\xee\xff8^D*\xdb\xb8\xd8t\x80\xd4\x8fK=E0\xe8R\x83'}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x2}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}]}, 0xf4}}, 0x0) 1.42189384s ago: executing program 0 (id=17637): r0 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r1=>0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=@newqdisc={0x38, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_RESET_TIMEOUT={0x8, 0x4, 0x8000}]}}]}, 0x38}}, 0x0) 1.229758067s ago: executing program 3 (id=17643): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000ac0), r0) sendmsg$NLBL_CALIPSO_C_REMOVE(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000080)={0x1c, r1, 0x419, 0x70bd2c, 0x25dfdbff, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x2}]}, 0x40}, 0x1, 0x0, 0x0, 0x4008090}, 0x44000) 1.133301331s ago: executing program 3 (id=17645): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x10a}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000600)={0x8, 0x0, &(0x7f0000001b80)=[@increfs], 0x0, 0x0, 0x0}) 1.132947078s ago: executing program 3 (id=17646): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a01080000000000000000030000000900010073797a3100000000080002400000000614000000110001"], 0x50}}, 0x0) close(r0) 1.094801284s ago: executing program 3 (id=17647): r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x181942, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x20) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x22e41, 0x0) 1.026516023s ago: executing program 0 (id=17648): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000009c0), r0) sendmsg$NLBL_MGMT_C_LISTDEF(r0, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000a00)={0x1c, r1, 0x1, 0x70bd29, 0x25dfdbfc, {}, [@NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x3d}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x24000080) 1.026143395s ago: executing program 2 (id=17649): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0a00000004000000040000000a"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b708000000bc7a007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r1}, 0xc) 1.02485405s ago: executing program 3 (id=17650): r0 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x81) pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$HIDIOCGFEATURE(r0, 0x4004480d, &(0x7f0000000080)={0x0, "46c40a1c578bfff0cee259a8763f511c58c803330978350c360d041fc05106dabe96b5478c15a92ea3a52ebe3128c320d33abbf13911b30098abd71ca39da2d2"}) 926.783862ms ago: executing program 2 (id=17651): ioprio_set$pid(0x3, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/tty/ldiscs\x00', 0x0, 0x0) pread64(r0, 0x0, 0x0, 0x7f) 925.094092ms ago: executing program 0 (id=17652): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000010140)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000003b810000850000007d000000850000005000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000100)='sys_exit\x00', r0}, 0x10) lstat64(&(0x7f0000000080)='./cgroup\x00', &(0x7f0000000a00)) 862.488916ms ago: executing program 2 (id=17653): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000280)={0xffffffffffffffff, 0x7, 0x3}) 861.366538ms ago: executing program 0 (id=17654): capset(&(0x7f0000000280)={0x20071026}, &(0x7f0000000340)) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_ipv6_tunnel_SIOCADD6RD(r0, 0x89f9, &(0x7f0000000300)={'sit0\x00', 0x0}) 757.967605ms ago: executing program 0 (id=17655): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x7, 0x1c, &(0x7f0000000d80)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bc8900000000000035090100000000009500000000000000b7080000000000007b9a00fe00000000b509000000000000c3aaf0fff1000000bf8600000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018220000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7050000080000004608ebff76000000bf9800000000000056080000000000008500000000000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 631.419955ms ago: executing program 2 (id=17656): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$setregs(0x1a, r0, 0xfffffffffffffff8, 0x0) 545.96806ms ago: executing program 2 (id=17657): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f0000000340)=[{0x28, 0x0, 0x0, 0xffefffff}, {0x6, 0x0, 0x0, 0x2}]}, 0x8) sendmmsg(r0, &(0x7f0000001c00), 0x400000000000159, 0x40840) 470.87847ms ago: executing program 2 (id=17658): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x67) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x10, &(0x7f0000000c00)=ANY=[@ANYBLOB="18000000000000000000000000010000b7080000000000007b8af8ff00000000ad080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r1, 0x0, 0xe, 0x0, &(0x7f0000000080)="00faff0f0001eeff7f6faf9a1e4d", 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) 0s ago: executing program 3 (id=17659): r0 = socket$igmp(0x2, 0x3, 0x2) capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff}) setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, 0x0, 0x0) kernel console output (not intermixed with test programs): 9] netlink: 'syz.1.12321': attribute type 3 has an invalid length. [ 202.785188][T31414] can0 (unregistered): slcan off ptm0. [ 202.955631][ T40] audit: type=1326 audit(1746827916.460:1353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31460 comm="syz.1.12332" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 202.967980][ T40] audit: type=1326 audit(1746827916.460:1354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31460 comm="syz.1.12332" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 202.977956][ T40] audit: type=1326 audit(1746827916.460:1355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31460 comm="syz.1.12332" exe="/syz-executor" sig=0 arch=40000003 syscall=343 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 202.992214][ T40] audit: type=1326 audit(1746832011.476:1356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31460 comm="syz.1.12332" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 203.005509][ T40] audit: type=1326 audit(1746832011.476:1357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31460 comm="syz.1.12332" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 203.209238][T31479] netlink: 'syz.0.12340': attribute type 21 has an invalid length. [ 203.212566][T31479] IPv6: NLM_F_CREATE should be specified when creating new route [ 204.035160][ T40] audit: type=1326 audit(1746832012.476:1358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31536 comm="syz.1.12370" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 204.053669][ T40] audit: type=1326 audit(1746832012.476:1359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31536 comm="syz.1.12370" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 204.060430][ T40] audit: type=1326 audit(1746832012.486:1360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31536 comm="syz.1.12370" exe="/syz-executor" sig=0 arch=40000003 syscall=82 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 204.068864][ T40] audit: type=1326 audit(1746832012.486:1361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31536 comm="syz.1.12370" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 204.080581][ T40] audit: type=1326 audit(1746832012.486:1362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31536 comm="syz.1.12370" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 204.216561][T31567] netlink: 'syz.0.12383': attribute type 9 has an invalid length. [ 204.607917][T31609] tmpfs: Bad value for 'mpol' [ 205.318309][T31692] 9pnet_virtio: no channels available for device [ 205.332154][T31694] netlink: 'syz.1.12444': attribute type 2 has an invalid length. [ 205.505740][T31720] __nla_validate_parse: 3 callbacks suppressed [ 205.505757][T31720] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12457'. [ 205.517621][T31726] cgroup: Unknown subsys name 'fowner>00000000000000000000' [ 205.616146][T31741] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 205.633117][T31746] netlink: 'syz.2.12468': attribute type 21 has an invalid length. [ 205.636835][T31746] netlink: 156 bytes leftover after parsing attributes in process `syz.2.12468'. [ 205.750703][T31762] netlink: 'syz.0.12477': attribute type 11 has an invalid length. [ 205.783150][T31767] random: crng reseeded on system resumption [ 205.926847][T31790] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks [ 205.971777][T31796] netlink: 8 bytes leftover after parsing attributes in process `syz.2.12493'. [ 206.039735][T31806] QAT: Stopping all acceleration devices. [ 206.053851][T31810] netlink: 45 bytes leftover after parsing attributes in process `syz.2.12501'. [ 206.240199][T31837] SET target dimension over the limit! [ 206.286879][T31844] netlink: 4 bytes leftover after parsing attributes in process `syz.0.12518'. [ 206.433730][T31854] ieee802154 phy1 wpan1: encryption failed: -22 [ 206.463526][T31856] netlink: 'syz.0.12524': attribute type 11 has an invalid length. [ 206.635037][T31881] Zero length message leads to an empty skb [ 207.142827][T31957] openvswitch: netlink: Key type 177 is out of range max 32 [ 207.278103][T31973] netlink: 'syz.2.12581': attribute type 1 has an invalid length. [ 207.311858][T31975] sctp: [Deprecated]: syz.2.12583 (pid 31975) Use of struct sctp_assoc_value in delayed_ack socket option. [ 207.311858][T31975] Use struct sctp_sack_info instead [ 207.366389][ T6030] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 207.410017][T31987] veth1_virt_wifi: entered promiscuous mode [ 207.412780][T31987] A link change request failed with some changes committed already. Interface veth1_virt_wifi may have been left with an inconsistent configuration, please check. [ 207.460030][T31991] netlink: 'syz.1.12591': attribute type 1 has an invalid length. [ 207.463023][T31991] netlink: 228 bytes leftover after parsing attributes in process `syz.1.12591'. [ 207.466616][T31991] netlink: 8 bytes leftover after parsing attributes in process `syz.1.12591'. [ 207.549695][ T6030] usb 5-1: Using ep0 maxpacket: 32 [ 207.553685][ T6030] usb 5-1: unable to get BOS descriptor or descriptor too short [ 207.557980][ T6030] usb 5-1: config index 0 descriptor too short (expected 34347, got 43) [ 207.562110][ T6030] usb 5-1: config 31 has too many interfaces: 196, using maximum allowed: 32 [ 207.565614][ T6030] usb 5-1: config 31 has an invalid descriptor of length 0, skipping remainder of the config [ 207.569654][ T6030] usb 5-1: config 31 has 1 interface, different from the descriptor's value: 196 [ 207.573125][ T6030] usb 5-1: config 31 has no interface number 0 [ 207.575516][ T6030] usb 5-1: config 31 interface 81 altsetting 3 has an endpoint descriptor with address 0x93, changing to 0x83 [ 207.579793][ T6030] usb 5-1: config 31 interface 81 altsetting 3 bulk endpoint 0x83 has invalid maxpacket 150 [ 207.583774][ T6030] usb 5-1: config 31 interface 81 has no altsetting 0 [ 207.589829][ T6030] usb 5-1: string descriptor 0 read error: -22 [ 207.592522][ T6030] usb 5-1: New USB device found, idVendor=0dfc, idProduct=0001, bcdDevice=24.ac [ 207.596031][ T6030] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 207.603290][T31950] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 207.609956][ T6030] input: USB Touchscreen 0dfc:0001 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:31.81/input/input52 [ 207.677409][T32009] xt_cluster: node mask cannot exceed total number of nodes [ 207.734597][T32015] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12602'. [ 207.766402][T32019] netlink: 'syz.1.12603': attribute type 1 has an invalid length. [ 207.768889][T32019] netlink: 244 bytes leftover after parsing attributes in process `syz.1.12603'. [ 207.771716][T32019] NCSI netlink: No device for ifindex 0 [ 207.811326][ T24] vxcan1 speed is unknown, defaulting to 1000 [ 207.816073][ T24] syz1: Port: 1 Link DOWN [ 207.819241][ T24] vxcan1 speed is unknown, defaulting to 1000 [ 207.834352][T32027] PM: Enabling pm_trace changes system date and time during resume. [ 207.834352][T32027] PM: Correct system time has to be restored manually after resume. [ 207.849252][ T6030] IPVS: starting estimator thread 0... [ 207.862153][T32034] netlink: 8 bytes leftover after parsing attributes in process `syz.2.12611'. [ 207.865874][T32034] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 207.897463][T32040] sctp: [Deprecated]: syz.2.12614 (pid 32040) Use of int in max_burst socket option deprecated. [ 207.897463][T32040] Use struct sctp_assoc_value instead [ 207.954667][T32032] IPVS: using max 48 ests per chain, 115200 per kthread [ 207.972550][T32053] netlink: 'syz.3.12621': attribute type 4 has an invalid length. [ 207.980263][T32053] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check. [ 208.146533][ C1] usbtouchscreen 5-1:31.81: usbtouch_irq - usb_submit_urb failed with result: -19 [ 208.149687][ T6012] usb 5-1: USB disconnect, device number 14 [ 208.357116][T32109] No source specified [ 208.527512][ T40] kauditd_printk_skb: 5 callbacks suppressed [ 208.527529][ T40] audit: type=1326 audit(1746832016.676:1368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32136 comm="syz.2.12658" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000 [ 208.541831][ T40] audit: type=1326 audit(1746832016.676:1369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32136 comm="syz.2.12658" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000 [ 208.553457][ T40] audit: type=1326 audit(1746832016.676:1370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32136 comm="syz.2.12658" exe="/syz-executor" sig=0 arch=40000003 syscall=114 compat=1 ip=0xf7fd3579 code=0x7ffc0000 [ 208.560749][ T40] audit: type=1326 audit(1746832016.676:1371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32136 comm="syz.2.12658" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000 [ 208.572209][ T40] audit: type=1326 audit(1746832016.676:1372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32136 comm="syz.2.12658" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000 [ 208.573869][T32145] tmpfs: Bad value for 'mpol' [ 208.714793][T32161] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0 [ 208.741749][T32167] netlink: 'syz.0.12673': attribute type 1 has an invalid length. [ 208.880139][T32197] syz.1.12688: attempt to access beyond end of device [ 208.880139][T32197] loop1: rw=0, sector=64, nr_sectors = 2 limit=0 [ 208.885445][T32197] isofs_fill_super: bread failed, dev=loop1, iso_blknum=16, block=32 [ 209.105761][T32226] openvswitch: netlink: Missing key (keys=40, expected=2000) [ 209.198829][T32244] xt_CT: You must specify a L4 protocol and not use inversions on it [ 209.345906][T32268] openvswitch: netlink: Actions may not be safe on all matching packets [ 209.409442][ T40] audit: type=1326 audit(1746832017.509:1373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32280 comm="syz.3.12728" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 209.422384][ T40] audit: type=1326 audit(1746832017.509:1374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32280 comm="syz.3.12728" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 209.432528][ T40] audit: type=1326 audit(1746832017.518:1375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32280 comm="syz.3.12728" exe="/syz-executor" sig=0 arch=40000003 syscall=96 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 209.440958][ T40] audit: type=1326 audit(1746832017.518:1376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32280 comm="syz.3.12728" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 209.449051][ T40] audit: type=1326 audit(1746832017.518:1377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32280 comm="syz.3.12728" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 210.796781][T32358] /dev/sr0: Can't open blockdev [ 211.027582][T32426] __nla_validate_parse: 6 callbacks suppressed [ 211.027599][T32426] netlink: 8 bytes leftover after parsing attributes in process `syz.1.12794'. [ 211.079011][T32435] validate_nla: 3 callbacks suppressed [ 211.079028][T32435] netlink: 'syz.1.12798': attribute type 1 has an invalid length. [ 211.085049][T32435] netlink: 'syz.1.12798': attribute type 2 has an invalid length. [ 211.163648][ T1321] IPVS: starting estimator thread 0... [ 211.164068][T32454] netlink: 40 bytes leftover after parsing attributes in process `syz.1.12809'. [ 211.268984][T32455] IPVS: using max 30 ests per chain, 72000 per kthread [ 211.523824][T32519] overlayfs: empty lowerdir [ 211.628711][T32531] netlink: 24 bytes leftover after parsing attributes in process `syz.2.12846'. [ 211.791702][T32552] netlink: 4 bytes leftover after parsing attributes in process `syz.0.12856'. [ 211.991641][T32578] netlink: 36 bytes leftover after parsing attributes in process `syz.3.12869'. [ 212.070720][T32588] xt_TCPMSS: Only works on TCP SYN packets [ 212.155330][T32602] ufs: You didn't specify the type of your ufs filesystem [ 212.155330][T32602] [ 212.155330][T32602] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 212.155330][T32602] [ 212.155330][T32602] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 212.170046][T32602] ufs: ufs_fill_super(): bad magic number [ 212.300731][T32616] tipc: Trying to set illegal importance in message [ 212.315218][T32618] cgroup: name respecified [ 212.349706][T32623] netdevsim netdevsim2 netdevsim2: entered allmulticast mode [ 212.603707][T32653] ubi31: detaching mtd0 [ 212.610877][T32653] ubi31: mtd0 is detached [ 212.759201][T32672] netlink: 16 bytes leftover after parsing attributes in process `syz.2.12916'. [ 213.020609][T32724] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12942'. [ 213.024724][T32724] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12942'. [ 213.419753][T32754] ip6t_REJECT: ECHOREPLY is not supported [ 213.554789][ T302] netlink: 164 bytes leftover after parsing attributes in process `syz.2.12965'. [ 213.559511][ T302] netlink: 164 bytes leftover after parsing attributes in process `syz.2.12965'. [ 213.577683][ T5940] usb 6-1: new high-speed USB device number 13 using dummy_hcd [ 213.761987][ T5940] usb 6-1: Using ep0 maxpacket: 32 [ 213.772124][ T5940] usb 6-1: New USB device found, idVendor=1ba6, idProduct=0001, bcdDevice=49.88 [ 213.775070][ T5940] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 213.777639][ T5940] usb 6-1: Product: syz [ 213.779008][ T5940] usb 6-1: Manufacturer: syz [ 213.782268][ T5940] usb 6-1: SerialNumber: syz [ 213.785815][ T5940] usb 6-1: config 0 descriptor?? [ 213.795615][ T5940] as10x_usb: device has been detected [ 213.797933][ T5940] dvbdev: DVB: registering new adapter (Abilis Systems DVB-Titan) [ 213.816040][ T5940] usb 6-1: DVB: registering adapter 1 frontend 0 (Abilis Systems DVB-Titan)... [ 213.842662][ T5940] as10x_usb: error during firmware upload part1 [ 213.846305][ T5940] Registered device Abilis Systems DVB-Titan [ 214.014309][ T6012] usb 6-1: USB disconnect, device number 13 [ 214.038764][ T6012] Unregistered device Abilis Systems DVB-Titan [ 214.041712][ T6012] as10x_usb: device has been disconnected [ 214.063553][ T369] @�: renamed from veth0_vlan [ 214.704361][ T450] openvswitch: netlink: Geneve option length err (len 256, max 255). [ 215.177299][ T517] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 215.218784][ T522] autofs4:pid:522:validate_dev_ioctl: invalid path supplied for cmd(0xc018937a) [ 215.580858][ T444] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 215.586554][ T444] Bluetooth: hci3: Error when powering off device on rfkill (-4) [ 216.063756][ T614] ieee802154 phy1 wpan1: encryption failed: -22 [ 216.517118][ T627] __nla_validate_parse: 10 callbacks suppressed [ 216.517137][ T627] netlink: 20 bytes leftover after parsing attributes in process `syz.3.13109'. [ 216.691307][ T654] random: crng reseeded on system resumption [ 216.739219][ T658] netlink: 4 bytes leftover after parsing attributes in process `syz.3.13123'. [ 217.617519][ T698] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13140'. [ 217.845954][ T724] netlink: 76 bytes leftover after parsing attributes in process `syz.2.13145'. [ 218.148084][ T740] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13151'. [ 218.286488][ T760] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13160'. [ 218.354624][ T775] affs: No valid root block on device nbd2 [ 218.436862][ T787] binder: 784:787 unknown command 1077961494 [ 218.439775][ T787] binder: 784:787 ioctl c0306201 80000100 returned -22 [ 218.586900][ T40] kauditd_printk_skb: 5 callbacks suppressed [ 218.586916][ T40] audit: type=1326 audit(2000000005.687:1383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=816 comm="syz.0.13180" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 218.587011][ T40] audit: type=1326 audit(2000000005.687:1384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=816 comm="syz.0.13180" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 218.589770][ T40] audit: type=1326 audit(2000000005.687:1385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=816 comm="syz.0.13180" exe="/syz-executor" sig=0 arch=40000003 syscall=393 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 218.589885][ T40] audit: type=1326 audit(2000000005.687:1386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=816 comm="syz.0.13180" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 218.590022][ T40] audit: type=1326 audit(2000000005.687:1387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=816 comm="syz.0.13180" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 218.642151][ T819] ptrace attach of "/syz-executor exec"[821] was attempted by "/syz-executor exec"[819] [ 218.840094][ T859] Cannot find add_set index 0 as target [ 218.956850][ T877] (unnamed net_device) (uninitialized): option arp_interval: invalid value (18446744073709551615) [ 218.960307][ T877] (unnamed net_device) (uninitialized): option arp_interval: allowed values 0 - 2147483647 [ 219.013548][ T40] audit: type=1326 audit(2000000006.089:1388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=887 comm="syz.2.13210" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000 [ 219.033684][ T40] audit: type=1326 audit(2000000006.089:1389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=887 comm="syz.2.13210" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000 [ 219.054083][ T40] audit: type=1326 audit(2000000006.089:1390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=887 comm="syz.2.13210" exe="/syz-executor" sig=0 arch=40000003 syscall=51 compat=1 ip=0xf7fd3579 code=0x7ffc0000 [ 219.059445][ T895] netlink: 'syz.0.13211': attribute type 6 has an invalid length. [ 219.060020][ T894] QAT: failed to copy from user cfg_data. [ 219.066164][ T40] audit: type=1326 audit(2000000006.089:1391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=887 comm="syz.2.13210" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000 [ 219.080983][ T40] audit: type=1326 audit(2000000006.089:1392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=887 comm="syz.2.13210" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000 [ 219.111364][ T900] IPv6: Can't replace route, no match found [ 219.461537][ T962] netlink: 'syz.1.13235': attribute type 2 has an invalid length. [ 219.751368][ T996] tmpfs: Bad value for 'mpol' [ 219.876951][ T1021] /dev/sg0: Can't lookup blockdev [ 220.193233][ T1075] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13275'. [ 220.424701][ T1125] netlink: 272 bytes leftover after parsing attributes in process `syz.0.13290'. [ 220.724391][ T1189] program syz.1.13316 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 220.744128][ T1191] netlink: 'syz.2.13317': attribute type 1 has an invalid length. [ 220.818065][ T1204] netlink: 'syz.1.13323': attribute type 16 has an invalid length. [ 220.821645][ T1204] netlink: 'syz.1.13323': attribute type 3 has an invalid length. [ 220.825279][ T1204] netlink: 132 bytes leftover after parsing attributes in process `syz.1.13323'. [ 220.899323][ T1218] netlink: 'syz.1.13329': attribute type 1 has an invalid length. [ 220.902390][ T1218] netlink: 224 bytes leftover after parsing attributes in process `syz.1.13329'. [ 221.169096][ T1259] vivid-001: ================= START STATUS ================= [ 221.172202][ T1259] vivid-001: Radio HW Seek Mode: Bounded [ 221.175291][ T1259] vivid-001: Radio Programmable HW Seek: false [ 221.177981][ T1259] vivid-001: RDS Rx I/O Mode: Block I/O [ 221.182061][ T1259] vivid-001: Generate RBDS Instead of RDS: false [ 221.184523][ T1259] vivid-001: RDS Reception: true [ 221.186454][ T1259] vivid-001: RDS Program Type: 0 inactive [ 221.188692][ T1259] vivid-001: RDS PS Name: inactive [ 221.192405][ T1259] vivid-001: RDS Radio Text: inactive [ 221.194545][ T1259] vivid-001: RDS Traffic Announcement: false inactive [ 221.197149][ T1259] vivid-001: RDS Traffic Program: false inactive [ 221.199589][ T1259] vivid-001: RDS Music: false inactive [ 221.201959][ T1259] vivid-001: ================== END STATUS ================== [ 221.718552][ T1327] xt_TPROXY: Can be used only with -p tcp or -p udp [ 221.739643][ T1330] snd_dummy snd_dummy.0: control 1:0:0:syz0:-3 is already present [ 221.812954][ T1338] No such timeout policy "syz1" [ 222.139877][ T1394] PKCS8: Unsupported PKCS#8 version [ 222.256205][ T1413] __nla_validate_parse: 1 callbacks suppressed [ 222.256224][ T1413] netlink: 24 bytes leftover after parsing attributes in process `syz.1.13423'. [ 222.595276][ T1469] netlink: 16 bytes leftover after parsing attributes in process `syz.1.13447'. [ 222.598749][ T1469] openvswitch: netlink: Missing key (keys=40, expected=80) [ 222.649160][ T1475] netlink: 'syz.1.13449': attribute type 1 has an invalid length. [ 222.652591][ T1475] netlink: 224 bytes leftover after parsing attributes in process `syz.1.13449'. [ 222.656863][ T1475] netlink: 8 bytes leftover after parsing attributes in process `syz.1.13449'. [ 222.754440][ T1492] netlink: 'syz.2.13456': attribute type 5 has an invalid length. [ 222.888082][ T1501] ksmbd: Unknown IPC event: 3, ignore. [ 222.999793][ T1511] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.13466'. [ 223.003510][ T1511] openvswitch: netlink: ufid size 3068 bytes exceeds the range (1, 16) [ 223.010682][ T1511] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 223.149719][ T1531] usb usb8: usbfs: process 1531 (syz.1.13476) did not claim interface 0 before use [ 223.336342][ T1558] netlink: 4 bytes leftover after parsing attributes in process `syz.2.13489'. [ 223.407144][ T1572] Unknown options in mask 7 [ 223.501724][ T1589] netlink: 12 bytes leftover after parsing attributes in process `syz.2.13505'. [ 223.505583][ T1589] netlink: 12 bytes leftover after parsing attributes in process `syz.2.13505'. [ 223.571277][ T1602] xt_HMARK: spi-set and port-set can't be combined [ 223.592561][ T1604] netlink: 68 bytes leftover after parsing attributes in process `syz.1.13512'. [ 223.613906][ T1608] zonefs (nbd2) ERROR: Not a zoned block device [ 223.706645][ T1623] IPv6: Can't replace route, no match found [ 223.737380][ T1628] netlink: 24 bytes leftover after parsing attributes in process `syz.0.13523'. [ 223.815735][ T1648] netlink: 'syz.1.13534': attribute type 2 has an invalid length. [ 223.819988][ T1648] netlink: 'syz.1.13534': attribute type 1 has an invalid length. [ 224.523549][ T1757] validate_nla: 6 callbacks suppressed [ 224.523561][ T1757] netlink: 'syz.2.13587': attribute type 13 has an invalid length. [ 224.533637][ T1757] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap0 [ 224.537628][ T1757] gretap0: entered promiscuous mode [ 224.539432][ T1757] gretap0: entered allmulticast mode [ 224.821683][ T1797] AppArmor: change_hat: Invalid input '0x' [ 224.915282][ T1811] netlink: 'syz.0.13614': attribute type 16 has an invalid length. [ 224.920458][ T1811] netlink: 'syz.0.13614': attribute type 3 has an invalid length. [ 224.975405][ T1820] netlink: 'syz.1.13617': attribute type 3 has an invalid length. [ 224.978370][ T1820] netlink: 'syz.1.13617': attribute type 2 has an invalid length. [ 225.471700][ T1877] openvswitch: netlink: EtherType 0 is less than min 600 [ 225.696816][ T1901] netdevsim netdevsim2 netdevsim0: unset [1, 2] type 2 family 0 port 20003 - 0 [ 225.700400][ T1901] netdevsim netdevsim2 netdevsim0: unset [1, 1] type 2 family 0 port 20000 - 0 [ 225.703403][ T1901] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 225.799130][ T1914] wg1 speed is unknown, defaulting to 1000 [ 225.948950][ T1928] netdevsim netdevsim1 netdevsim0: set [1, 2] type 2 family 0 port 20000 - 0 [ 225.952826][ T1928] netdevsim netdevsim1 netdevsim1: set [1, 2] type 2 family 0 port 20000 - 0 [ 225.956552][ T1928] netdevsim netdevsim1 netdevsim2: set [1, 2] type 2 family 0 port 20000 - 0 [ 225.962405][ T1928] netdevsim netdevsim1 netdevsim3: set [1, 2] type 2 family 0 port 20000 - 0 [ 225.966121][ T1928] geneve5: entered promiscuous mode [ 225.968433][ T1928] geneve5: entered allmulticast mode [ 226.046512][ T1937] netdevsim netdevsim2 netdevsim0: left promiscuous mode [ 226.098954][ T1941] syz.2.13676: attempt to access beyond end of device [ 226.098954][ T1941] nbd2: rw=4096, sector=2, nr_sectors = 2 limit=0 [ 226.104939][ T1941] EXT4-fs (nbd2): unable to read superblock [ 226.399029][ T1981] kAFS: unable to lookup cell '/,' [ 226.430601][ T1983] PKCS8: Unsupported PKCS#8 version [ 226.472035][ T1996] netdevsim netdevsim1 netdevsim0: unset [1, 2] type 2 family 0 port 20000 - 0 [ 226.475304][ T1996] netdevsim netdevsim1 netdevsim0: unset [1, 1] type 2 family 0 port 256 - 0 [ 226.478038][ T1996] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 226.486717][ T1998] xt_TCPMSS: Only works on TCP SYN packets [ 226.704384][ T40] kauditd_printk_skb: 10 callbacks suppressed [ 226.704401][ T40] audit: type=1326 audit(2000000013.282:1403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2022 comm="syz.0.13716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 226.717606][ T40] audit: type=1326 audit(2000000013.282:1404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2022 comm="syz.0.13716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 226.726572][ T40] audit: type=1326 audit(2000000013.292:1405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2022 comm="syz.0.13716" exe="/syz-executor" sig=0 arch=40000003 syscall=197 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 226.736854][ T40] audit: type=1326 audit(2000000013.292:1406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2022 comm="syz.0.13716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 226.746548][ T40] audit: type=1326 audit(2000000013.292:1407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2022 comm="syz.0.13716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 227.029281][ T2070] netlink: 'syz.3.13738': attribute type 10 has an invalid length. [ 227.145792][ T2089] netlink: 'syz.1.13747': attribute type 4 has an invalid length. [ 227.217072][ T2099] sctp: [Deprecated]: syz.1.13753 (pid 2099) Use of int in max_burst socket option. [ 227.217072][ T2099] Use struct sctp_assoc_value instead [ 227.515993][ T2149] 0�X��D: left allmulticast mode [ 227.521752][ T2149] sit0: left promiscuous mode [ 227.553918][ T2149] bond_slave_0: entered promiscuous mode [ 227.556974][ T2149] bond_slave_1: entered promiscuous mode [ 227.559687][ T2149] team_slave_0: entered promiscuous mode [ 227.562777][ T2149] team_slave_1: entered promiscuous mode [ 227.564596][ T40] audit: type=1326 audit(2000000014.087:1408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2156 comm="syz.1.13781" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 227.567048][ T2149] 8021q: adding VLAN 0 to HW filter on device bond0 [ 227.574389][ T40] audit: type=1326 audit(2000000014.087:1409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2156 comm="syz.1.13781" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 227.585632][ T40] audit: type=1326 audit(2000000014.087:1410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2156 comm="syz.1.13781" exe="/syz-executor" sig=0 arch=40000003 syscall=164 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 227.592548][ T40] audit: type=1326 audit(2000000014.087:1411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2156 comm="syz.1.13781" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 227.600603][ T40] audit: type=1326 audit(2000000014.087:1412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2156 comm="syz.1.13781" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 227.627728][ T2149] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 228.086529][ T2198] netlink: 'syz.2.13801': attribute type 1 has an invalid length. [ 228.089450][ T2198] __nla_validate_parse: 20 callbacks suppressed [ 228.089457][ T2198] netlink: 232 bytes leftover after parsing attributes in process `syz.2.13801'. [ 228.094780][ T2198] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13801'. [ 228.220235][ T2216] netlink: 763 bytes leftover after parsing attributes in process `syz.3.13810'. [ 228.237973][ T2218] overlay: Bad value for 'workdir' [ 228.419980][ T2246] netlink: 'syz.2.13825': attribute type 3 has an invalid length. [ 228.422528][ T2246] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13825'. [ 228.520002][ T2263] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13834'. [ 228.625977][ T2278] ip6erspan1: entered allmulticast mode [ 228.992878][ T2334] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13868'. [ 229.175402][ T2352] wireguard0: entered promiscuous mode [ 229.177758][ T2352] wireguard0: entered allmulticast mode [ 229.299564][ T2375] netlink: 'syz.3.13888': attribute type 1 has an invalid length. [ 229.302980][ T2375] netlink: 224 bytes leftover after parsing attributes in process `syz.3.13888'. [ 229.327139][ T2379] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 229.440985][ T2399] netlink: 12 bytes leftover after parsing attributes in process `syz.1.13900'. [ 229.492305][ T2409] netlink: zone id is out of range [ 229.494509][ T2409] netlink: zone id is out of range [ 229.497440][ T2409] netlink: zone id is out of range [ 229.500200][ T2409] netlink: zone id is out of range [ 229.502255][ T2409] netlink: zone id is out of range [ 229.504898][ T2409] netlink: del zone limit has 4 unknown bytes [ 229.531007][ T2415] Cannot find del_set index 4 as target [ 229.547738][ T2419] SET target dimension over the limit! [ 229.625461][ T2431] program syz.1.13915 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 229.651251][ T2433] IPVS: length: 78 != 8 [ 229.716056][ T2447] netlink: 8 bytes leftover after parsing attributes in process `syz.1.13922'. [ 229.879596][ T2475] netlink: 4 bytes leftover after parsing attributes in process `syz.2.13937'. [ 229.885710][ T2475] validate_nla: 2 callbacks suppressed [ 229.885727][ T2475] netlink: 'syz.2.13937': attribute type 3 has an invalid length. [ 229.975454][ T2496] overlayfs: missing 'lowerdir' [ 230.065985][ T2505] netlink: 'syz.2.13952': attribute type 13 has an invalid length. [ 230.207213][ T2527] Cannot find del_set index 320 as target [ 230.316206][ T2553] misc userio: No port type given on /dev/userio [ 230.521891][ T2589] cgroup: subsys name conflicts with all [ 230.733565][ T2632] netlink: 'syz.0.14004': attribute type 10 has an invalid length. [ 230.736797][ T2632] batman_adv: batadv0: Adding interface: wlan0 [ 230.738771][ T2632] batman_adv: batadv0: The MTU of interface wlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 230.747629][ T2632] batman_adv: batadv0: Not using interface wlan0 (retrying later): interface not active [ 230.782590][ T2637] netlink: 'syz.0.14007': attribute type 21 has an invalid length. [ 231.350720][ T2762] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 231.354217][ T2762] overlayfs: missing 'lowerdir' [ 231.392080][ T2767] netlink: 'syz.0.14059': attribute type 11 has an invalid length. [ 231.793216][ T2866] netlink: 'syz.2.14099': attribute type 10 has an invalid length. [ 231.802187][ T2866] team_slave_0: left promiscuous mode [ 231.811475][ T2866] team_slave_1: left promiscuous mode [ 231.869690][ T2866] bond0: (slave team0): Releasing backup interface [ 231.947251][ T2866] batman_adv: batadv0: Adding interface: team0 [ 231.949784][ T2866] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 231.959862][ T2866] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active [ 231.999314][ T2896] xt_bpf: check failed: parse error [ 232.000915][ T2895] netlink: 'syz.0.14110': attribute type 25 has an invalid length. [ 232.168526][ T2935] netlink: 'syz.0.14128': attribute type 2 has an invalid length. [ 232.187588][ T2940] libceph: resolve ' [ 232.187588][ T2940] -&���f�Y�ǝ�a���2i� [ 232.187588][ T2940] .���?��&�*��&' (ret=-3): failed [ 232.287023][ T1103] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1 [ 232.289848][ T1103] ata1: failed to read log page 10h (errno=-5) [ 232.292469][ T1103] ata1.00: exception Emask 0x1 SAct 0x1000 SErr 0x0 action 0x0 [ 232.295661][ T1103] ata1.00: irq_stat 0x40000000 [ 232.298156][ T1103] ata1.00: failed command: WRITE FPDMA QUEUED [ 232.300743][ T1103] ata1.00: cmd 61/18:60:66:0b:10/00:00:00:00:00/40 tag 12 ncq dma 12288 out [ 232.300743][ T1103] res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error) [ 232.307883][ T1103] ata1.00: status: { DRDY } [ 232.309790][ T1103] ata1.00: error: { ABRT } [ 232.315495][ T1103] ata1.00: configured for UDMA/100 [ 232.318051][ T1103] ata1: EH complete [ 232.463968][ T2986] nft_compat: unsupported protocol 0 [ 232.531899][ T3005] netlink: 'syz.0.14153': attribute type 23 has an invalid length. [ 232.922245][ T3093] sock: sock_set_timeout: `syz.0.14193' (pid 3093) tries to set negative timeout [ 232.956673][ T3102] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 233.033527][ T3117] trusted_key: encrypted_key: insufficient parameters specified [ 233.071952][ T3125] 9pnet_fd: Insufficient options for proto=fd [ 233.223198][ T3150] ipt_REJECT: TCP_RESET invalid for non-tcp [ 233.448453][ T3191] netlink: 'syz.3.14242': attribute type 1 has an invalid length. [ 233.607965][ T3225] openvswitch: netlink: Message has 4 unknown bytes. [ 233.650211][ T40] kauditd_printk_skb: 11 callbacks suppressed [ 233.650227][ T40] audit: type=1326 audit(2000000019.783:1424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3231 comm="syz.0.14262" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 233.662318][ T40] audit: type=1326 audit(2000000019.783:1425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3231 comm="syz.0.14262" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 233.672709][ T40] audit: type=1326 audit(2000000019.783:1426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3231 comm="syz.0.14262" exe="/syz-executor" sig=0 arch=40000003 syscall=247 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 233.684492][ T40] audit: type=1326 audit(2000000019.783:1427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3231 comm="syz.0.14262" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 233.693780][ T40] audit: type=1326 audit(2000000019.783:1428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3231 comm="syz.0.14262" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 233.806530][ T3259] geneve4: entered promiscuous mode [ 233.808767][ T3259] geneve4: entered allmulticast mode [ 234.084356][ T3282] __nla_validate_parse: 12 callbacks suppressed [ 234.084376][ T3282] netlink: 763 bytes leftover after parsing attributes in process `syz.1.14287'. [ 234.129062][ T3286] vim2m vim2m.0: Fourcc format (0x47524247) invalid. [ 234.211388][ T3300] overlay: Bad value for 'workdir' [ 234.389729][ T40] audit: type=1326 audit(2000000020.466:1429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3337 comm="syz.1.14314" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 234.399608][ T40] audit: type=1326 audit(2000000020.466:1430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3337 comm="syz.1.14314" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 234.410659][ T40] audit: type=1326 audit(2000000020.475:1431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3337 comm="syz.1.14314" exe="/syz-executor" sig=0 arch=40000003 syscall=398 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 234.420772][ T40] audit: type=1326 audit(2000000020.475:1432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3337 comm="syz.1.14314" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 234.431904][ T40] audit: type=1326 audit(2000000020.475:1433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3337 comm="syz.1.14314" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 234.503283][ T3359] netlink: 8 bytes leftover after parsing attributes in process `syz.1.14322'. [ 234.519771][ T3365] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 234.536855][ T3369] netlink: 224 bytes leftover after parsing attributes in process `syz.0.14327'. [ 234.597328][ T3384] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 234.780562][ T3427] ip6erspan0: entered allmulticast mode [ 234.830750][ T3435] mkiss: ax0: crc mode is auto. [ 235.180713][ T3477] netlink: 256 bytes leftover after parsing attributes in process `syz.1.14381'. [ 235.316271][ T3509] xt_socket: unknown flags 0x46 [ 235.413814][ T3539] netlink: 8 bytes leftover after parsing attributes in process `syz.0.14410'. [ 235.434911][ T3547] cgroup: noprefix used incorrectly [ 235.453930][ T3549] 9pnet_fd: p9_fd_create_tcp (3549): problem connecting socket to 127.0.0.1 [ 235.526319][ T3551] bond0: (slave dummy0): Releasing backup interface [ 235.582975][ T3551] dummy0: left promiscuous mode [ 235.624499][ T3571] netlink: 20 bytes leftover after parsing attributes in process `syz.0.14425'. [ 235.643601][ T3551] bond0: (slave bond_slave_0): Releasing backup interface [ 235.676950][ T3575] netlink: 228 bytes leftover after parsing attributes in process `syz.1.14427'. [ 235.686549][ T3551] bond_slave_0: left promiscuous mode [ 235.690462][ T3579] ieee802154 phy1 wpan1: encryption failed: -22 [ 235.721010][ T3581] netlink: 4 bytes leftover after parsing attributes in process `syz.2.14430'. [ 235.750352][ T3551] bond0: (slave bond_slave_1): Releasing backup interface [ 235.818410][ T3551] bond_slave_1: left promiscuous mode [ 235.887390][ T3551] team0: Port device team_slave_0 removed [ 235.934533][ T3551] team0: Port device team_slave_1 removed [ 235.937016][ T3551] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 235.939447][ T3551] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 235.997260][ T3551] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 235.999746][ T3551] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 236.092894][ T3551] bond0: (slave macvlan0): Releasing backup interface [ 236.327235][ T3551] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 236.330021][ T3551] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 236.332894][ T3551] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 236.335624][ T3551] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 236.383905][ T3551] team0: Port device geneve0 removed [ 236.434903][ T3551] bond0: (slave netdevsim0): Releasing backup interface [ 236.541045][ T3607] wireguard0: entered promiscuous mode [ 236.543512][ T3607] wireguard0: entered allmulticast mode [ 236.649695][ T3636] SET target dimension over the limit! [ 236.651382][ T3638] validate_nla: 4 callbacks suppressed [ 236.651395][ T3638] netlink: 'syz.3.14456': attribute type 21 has an invalid length. [ 236.686487][ T3646] netlink: 256 bytes leftover after parsing attributes in process `syz.3.14462'. [ 236.708428][ T3651] program syz.2.14464 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 236.776282][ T3667] netlink: 'syz.3.14473': attribute type 2 has an invalid length. [ 236.778792][ T3667] netlink: 8 bytes leftover after parsing attributes in process `syz.3.14473'. [ 236.816737][ T3664] team0: Port device dummy0 removed [ 236.884740][ T3664] bond0: (slave batadv0): Releasing backup interface [ 236.990722][ T3664] bond0: (slave 4�@��): Releasing backup interface [ 237.130913][ T3664] bond0: (slave bond_slave_1): Releasing backup interface [ 237.280478][ T3714] netlink: 'syz.1.14495': attribute type 13 has an invalid length. [ 237.283043][ T3664] team0: Port device team_slave_0 removed [ 237.347174][ T3664] team0: Port device team_slave_1 removed [ 237.349531][ T3664] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 237.386570][ T3664] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 237.389025][ T3664] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 237.535257][ T3664] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 237.539112][ T3664] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 237.542963][ T3664] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 237.546972][ T3664] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 237.592724][ T3664] team0: Port device geneve0 removed [ 237.596269][ T3664] batman_adv: batadv0: Removing interface: wlan0 [ 237.727260][ T3732] misc userio: No port type given on /dev/userio [ 237.756634][ T3740] cgroup: subsys name conflicts with all [ 237.801295][ T3746] netlink: 'syz.2.14512': attribute type 2 has an invalid length. [ 237.807779][ T3746] : entered promiscuous mode [ 237.928120][ T3765] bond0: left promiscuous mode [ 237.930120][ T3765] 8021q: adding VLAN 0 to HW filter on device bond0 [ 237.978173][ T3771] netlink: 'syz.1.14531': attribute type 10 has an invalid length. [ 237.984591][ T3765] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 237.990078][ T3771] batman_adv: batadv0: Adding interface: wlan0 [ 237.992541][ T3771] batman_adv: batadv0: The MTU of interface wlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 238.002314][ T3771] batman_adv: batadv0: Not using interface wlan0 (retrying later): interface not active [ 238.004931][ T3775] cgroup: subsys name conflicts with all [ 238.114226][ T3793] netlink: 'syz.2.14535': attribute type 21 has an invalid length. [ 238.176798][ T3798] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 238.430644][ T3835] 8021q: adding VLAN 0 to HW filter on device team0 [ 238.433853][ T3835] dummy0: left promiscuous mode [ 238.435459][ T3835] dummy0: left allmulticast mode [ 238.486844][ T3835] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 238.732770][ T3881] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 238.771846][ T3894] netlink: 'syz.1.14584': attribute type 21 has an invalid length. [ 238.812454][ T3901] netlink: 'syz.3.14587': attribute type 10 has an invalid length. [ 238.816331][ T3901] batman_adv: batadv0: Adding interface: wlan0 [ 238.819390][ T3901] batman_adv: batadv0: The MTU of interface wlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 238.828952][ T3901] batman_adv: batadv0: Not using interface wlan0 (retrying later): interface not active [ 238.935731][ T3907] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 239.003981][ T3928] netlink: 'syz.2.14599': attribute type 10 has an invalid length. [ 239.009038][ T3928] batman_adv: batadv0: Adding interface: wlan0 [ 239.012538][ T3928] batman_adv: batadv0: The MTU of interface wlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 239.020251][ T3928] batman_adv: batadv0: Not using interface wlan0 (retrying later): interface not active [ 239.193020][ T3948] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 239.216149][ T3960] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 239.219833][ T3960] overlayfs: missing 'lowerdir' [ 239.699235][ T4061] xt_bpf: check failed: parse error [ 239.746402][ T4070] netlink: 'syz.2.14676': attribute type 2 has an invalid length. [ 239.920128][ T4107] libceph: resolve ' [ 239.920128][ T4107] -&���f�Y�ǝ�a���2i� [ 239.920128][ T4107] .���?��&�*��&' (ret=-3): failed [ 240.021237][ T4123] __nla_validate_parse: 7 callbacks suppressed [ 240.021249][ T4123] netlink: 12 bytes leftover after parsing attributes in process `syz.3.14697'. [ 240.084668][ T4133] netlink: 8 bytes leftover after parsing attributes in process `syz.1.14701'. [ 240.146936][ T4136] batman_adv: batadv0: Adding interface: team0 [ 240.148686][ T4136] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 240.157272][ T4136] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active [ 240.460713][ T4193] nft_compat: unsupported protocol 0 [ 240.467442][ T4197] batman_adv: batadv0: Adding interface: team0 [ 240.470152][ T4197] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 240.481389][ T4197] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active [ 240.685930][ T4235] sock: sock_set_timeout: `syz.3.14752' (pid 4235) tries to set negative timeout [ 240.771827][ T4250] netlink: 12 bytes leftover after parsing attributes in process `syz.0.14760'. [ 240.861092][ T4261] 9pnet_fd: Insufficient options for proto=fd [ 241.073031][ T4299] netlink: 28 bytes leftover after parsing attributes in process `syz.1.14785'. [ 241.169684][ T4315] ipt_REJECT: TCP_RESET invalid for non-tcp [ 241.374596][ T4345] sock: sock_set_timeout: `syz.1.14807' (pid 4345) tries to set negative timeout [ 241.425929][ T4355] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 241.479769][ T4367] openvswitch: netlink: Message has 4 unknown bytes. [ 241.487897][ T4369] netlink: 4 bytes leftover after parsing attributes in process `syz.3.14819'. [ 241.504805][ T4372] 9pnet_fd: Insufficient options for proto=fd [ 241.909952][ T4465] vim2m vim2m.0: Fourcc format (0x47524247) invalid. [ 242.158082][ T4510] validate_nla: 8 callbacks suppressed [ 242.158100][ T4510] netlink: 'syz.1.14886': attribute type 11 has an invalid length. [ 242.267843][ T4526] netlink: 'syz.2.14902': attribute type 1 has an invalid length. [ 242.340454][ T4541] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.343947][ T4541] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.348095][ T4541] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.351613][ T4541] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.355122][ T4541] geneve4: entered promiscuous mode [ 242.359613][ T4541] geneve4: entered allmulticast mode [ 242.385845][ T40] kauditd_printk_skb: 1 callbacks suppressed [ 242.385859][ T40] audit: type=1326 audit(2000000027.949:1435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4545 comm="syz.3.14905" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 242.397091][ T4541] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 242.397960][ T40] audit: type=1326 audit(2000000027.959:1436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4545 comm="syz.3.14905" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 242.400554][ T4541] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 242.400615][ T4541] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 242.400636][ T4541] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 242.416606][ T40] audit: type=1326 audit(2000000027.959:1437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4545 comm="syz.3.14905" exe="/syz-executor" sig=0 arch=40000003 syscall=398 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 242.424219][ T40] audit: type=1326 audit(2000000027.959:1438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4545 comm="syz.3.14905" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 242.431104][ T40] audit: type=1326 audit(2000000027.959:1439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4545 comm="syz.3.14905" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 242.621390][ T4563] netlink: 20 bytes leftover after parsing attributes in process `syz.1.14914'. [ 242.640207][ T4551] batman_adv: batadv0: Removing interface: team0 [ 242.691567][ T4551] bridge_slave_0: left allmulticast mode [ 242.694017][ T4551] bridge_slave_0: left promiscuous mode [ 242.696574][ T4551] bridge0: port 1(bridge_slave_0) entered disabled state [ 242.767572][ T40] audit: type=1326 audit(2000000028.314:1440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4572 comm="syz.0.14917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 242.779710][ T40] audit: type=1326 audit(2000000028.314:1441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4572 comm="syz.0.14917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 242.786628][ T40] audit: type=1326 audit(2000000028.314:1442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4572 comm="syz.0.14917" exe="/syz-executor" sig=0 arch=40000003 syscall=398 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 242.789876][ T4551] bridge_slave_1: left allmulticast mode [ 242.792965][ T40] audit: type=1326 audit(2000000028.314:1443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4572 comm="syz.0.14917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 242.795526][ T4551] bridge_slave_1: left promiscuous mode [ 242.801986][ T40] audit: type=1326 audit(2000000028.314:1444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4572 comm="syz.0.14917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 242.804727][ T4551] bridge0: port 2(bridge_slave_1) entered disabled state [ 242.812189][ T4575] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 242.956307][ T4551] bond0: (slave bond_slave_0): Releasing backup interface [ 243.030856][ T4551] bond_slave_0: left promiscuous mode [ 243.095706][ T4551] bond0: (slave bond_slave_1): Releasing backup interface [ 243.148557][ T4551] bond_slave_1: left promiscuous mode [ 243.208903][ T4551] team0: Port device team_slave_0 removed [ 243.290822][ T4551] team0: Port device team_slave_1 removed [ 243.293829][ T4551] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 243.296874][ T4551] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 243.352359][ T4551] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 243.355628][ T4551] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 243.469317][ T4551] bond0: (slave macvlan0): Releasing backup interface [ 243.687449][ T4551] batman_adv: batadv0: Removing interface: wlan0 [ 243.800738][ T4551] team0: Port device removed [ 243.834348][ T4593] geneve5: entered promiscuous mode [ 243.836625][ T4593] geneve5: entered allmulticast mode [ 243.874486][ T4601] netlink: 20 bytes leftover after parsing attributes in process `syz.3.14930'. [ 243.960992][ T4605] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 244.232674][ T4619] netlink: 228 bytes leftover after parsing attributes in process `syz.2.14940'. [ 244.240244][ T4621] batman_adv: batadv0: Removing interface: team0 [ 244.335262][ T4621] bond0: (slave bond_slave_0): Releasing backup interface [ 244.442216][ T4633] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 244.474402][ T4621] bond0: (slave bond_slave_1): Releasing backup interface [ 244.598767][ T4621] team0: Port device team_slave_0 removed [ 244.672161][ T4621] team0: Port device team_slave_1 removed [ 244.675157][ T4621] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 244.742194][ T4621] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 244.745366][ T4621] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 244.827117][ T4621] bond0: (slave macvlan0): Releasing backup interface [ 245.024141][ T4621] batman_adv: batadv0: Removing interface: wlan0 [ 245.067158][ T4625] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 245.070173][ T4625] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 245.073149][ T4625] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 245.075922][ T4625] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 245.078952][ T4625] geneve4: entered promiscuous mode [ 245.080715][ T4625] geneve4: entered allmulticast mode [ 245.125643][ T4625] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 245.128446][ T4625] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 245.128467][ T4625] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 245.128482][ T4625] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 245.430077][ T4645] netlink: 228 bytes leftover after parsing attributes in process `syz.3.14955'. [ 245.501649][ T4653] netlink: 4 bytes leftover after parsing attributes in process `syz.3.14959'. [ 245.525854][ T4655] ieee802154 phy1 wpan1: encryption failed: -22 [ 245.539628][ T4658] netlink: 'syz.3.14961': attribute type 1 has an invalid length. [ 245.542812][ T4658] netlink: 224 bytes leftover after parsing attributes in process `syz.3.14961'. [ 245.725163][ T4681] netlink: 4 bytes leftover after parsing attributes in process `syz.0.14970'. [ 245.791295][ T4689] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 246.108632][ T4725] openvswitch: netlink: Missing valid actions attribute. [ 246.112384][ T4725] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 246.152818][ T4730] program syz.2.14997 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 246.192582][ T4734] ecryptfs_validate_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 246.195240][ T4735] program syz.2.15000 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 246.203607][ T4734] Error validating options; rc = [-22] [ 246.276989][ T4743] netlink: 'syz.3.15004': attribute type 21 has an invalid length. [ 246.281146][ T4743] netlink: 'syz.3.15004': attribute type 6 has an invalid length. [ 246.284449][ T4743] netlink: 64 bytes leftover after parsing attributes in process `syz.3.15004'. [ 246.554782][ T4751] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 246.624455][ T4755] tmpfs: Bad value for 'mpol' [ 246.730260][ T4761] netlink: 212408 bytes leftover after parsing attributes in process `syz.0.15011'. [ 246.942724][ T4768] netlink: 16 bytes leftover after parsing attributes in process `syz.2.15014'. [ 248.162399][ T4770] netlink: 'syz.3.15015': attribute type 3 has an invalid length. [ 248.171461][ T4774] overlayfs: conflicting options: metacopy=on,redirect_dir=nofollow [ 248.316251][ T4792] CIFS: iocharset name too long [ 248.383919][ T4806] autofs4:pid:4806:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(1.31), cmd(0xc018937e) [ 248.389476][ T4806] autofs4:pid:4806:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc018937e) [ 248.506781][ T4830] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 248.713837][ T4865] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 248.842877][ T4896] autofs4:pid:4896:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(1.31), cmd(0xc018937e) [ 248.848514][ T4896] autofs4:pid:4896:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc018937e) [ 248.883009][ T4906] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 248.955358][ T4922] netlink: 'syz.2.15090': attribute type 3 has an invalid length. [ 248.982171][ T4924] autofs4:pid:4924:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(1.31), cmd(0xc018937e) [ 248.988245][ T4924] autofs4:pid:4924:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc018937e) [ 249.059757][ T4942] netlink: 4 bytes leftover after parsing attributes in process `syz.2.15105'. [ 249.089039][ T4949] netlink: 24 bytes leftover after parsing attributes in process `syz.3.15106'. [ 249.094902][ T4949] netlink: 24 bytes leftover after parsing attributes in process `syz.3.15106'. [ 249.104702][ T4952] netlink: 'syz.0.15104': attribute type 3 has an invalid length. [ 249.232976][ T4976] netlink: 'syz.1.15118': attribute type 1 has an invalid length. [ 249.368372][ T4998] dlm: Unknown command passed to DLM device : 0 [ 249.368372][ T4998] [ 249.566591][ T5033] netlink: 'syz.3.15147': attribute type 2 has an invalid length. [ 249.604084][ T5034] XFS (nullb0): Invalid superblock magic number [ 249.904329][ T5086] netlink: 'syz.3.15170': attribute type 10 has an invalid length. [ 249.908246][ T5086] bond0: (slave wlan1): Opening slave failed [ 250.001997][ T5102] 8021q: adding VLAN 0 to HW filter on device bond9 [ 250.014409][ T5109] netlink: 'syz.3.15180': attribute type 1 has an invalid length. [ 250.041084][ T40] audit: type=1400 audit(2000000035.114:1445): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=5111 comm="syz.2.15181" [ 250.203753][ T24] usb 5-1: new full-speed USB device number 15 using dummy_hcd [ 250.239058][ T40] audit: type=1326 audit(2000000035.301:1446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5137 comm="syz.3.15195" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 250.248588][ T40] audit: type=1326 audit(2000000035.301:1447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5137 comm="syz.3.15195" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 250.258609][ T40] audit: type=1326 audit(2000000035.301:1448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5137 comm="syz.3.15195" exe="/syz-executor" sig=0 arch=40000003 syscall=30 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 250.269670][ T40] audit: type=1326 audit(2000000035.301:1449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5137 comm="syz.3.15195" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 250.279056][ T40] audit: type=1326 audit(2000000035.301:1450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5137 comm="syz.3.15195" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 250.337033][ T40] audit: type=1326 audit(2000000035.386:1451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5154 comm="syz.3.15203" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 250.345791][ T40] audit: type=1326 audit(2000000035.386:1452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5154 comm="syz.3.15203" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 250.355131][ T40] audit: type=1326 audit(2000000035.386:1453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5154 comm="syz.3.15203" exe="/syz-executor" sig=0 arch=40000003 syscall=290 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 250.363804][ T40] audit: type=1326 audit(2000000035.386:1454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5154 comm="syz.3.15203" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 250.380818][ T24] usb 5-1: config 195 has an invalid interface number: 145 but max is 0 [ 250.384855][ T24] usb 5-1: config 195 has no interface number 0 [ 250.387915][ T24] usb 5-1: config 195 interface 145 has no altsetting 0 [ 250.392827][ T24] usb 5-1: New USB device found, idVendor=055f, idProduct=c211, bcdDevice=9b.e4 [ 250.396999][ T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 250.400272][ T24] usb 5-1: Product: syz [ 250.402029][ T24] usb 5-1: Manufacturer: syz [ 250.403979][ T24] usb 5-1: SerialNumber: syz [ 250.457696][ T5175] random: crng reseeded on system resumption [ 250.641112][ T24] gspca_main: sunplus-2.14.0 probing 055f:c211 [ 250.644604][ T24] gspca_sunplus: reg_r err -71 [ 250.713369][ T5206] netlink: 'syz.3.15229': attribute type 12 has an invalid length. [ 251.240023][ T5212] __nla_validate_parse: 13 callbacks suppressed [ 251.240042][ T5212] netlink: 8 bytes leftover after parsing attributes in process `syz.0.15231'. [ 251.753868][ T24] sunplus 5-1:195.145: probe with driver sunplus failed with error -71 [ 251.764055][ T24] usb 5-1: USB disconnect, device number 15 [ 252.342281][ T5208] netdevsim netdevsim1 netdevsim1: unset [1, 1] type 2 family 0 port 256 - 0 [ 252.345015][ T5208] netdevsim netdevsim1 netdevsim2: unset [1, 1] type 2 family 0 port 256 - 0 [ 252.347638][ T5208] netdevsim netdevsim1 netdevsim3: unset [1, 1] type 2 family 0 port 256 - 0 [ 252.438100][ T5208] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 252.441826][ T5208] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 252.445319][ T5208] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 252.598558][ T5208] netdevsim netdevsim1 netdevsim1: unset [1, 2] type 2 family 0 port 20000 - 0 [ 252.602271][ T5208] netdevsim netdevsim1 netdevsim2: unset [1, 2] type 2 family 0 port 20000 - 0 [ 252.605927][ T5208] netdevsim netdevsim1 netdevsim3: unset [1, 2] type 2 family 0 port 20000 - 0 [ 252.907932][ T5226] CIFS: iocharset name too long [ 252.956899][ T5231] XFS (nullb0): Invalid superblock magic number [ 254.693823][ T5246] netdevsim netdevsim0 netdevsim0: unset [1, 1] type 2 family 0 port 256 - 0 [ 254.697379][ T5246] netdevsim netdevsim0 netdevsim1: unset [1, 1] type 2 family 0 port 256 - 0 [ 254.701132][ T5246] netdevsim netdevsim0 netdevsim2: unset [1, 1] type 2 family 0 port 256 - 0 [ 254.705080][ T5246] netdevsim netdevsim0 netdevsim3: unset [1, 1] type 2 family 0 port 256 - 0 [ 255.115645][ T5318] netlink: 'syz.0.15279': attribute type 21 has an invalid length. [ 255.706620][ T5412] netlink: 4 bytes leftover after parsing attributes in process `syz.1.15321'. [ 255.742844][ T5418] netlink: 68 bytes leftover after parsing attributes in process `syz.1.15324'. [ 255.746178][ T5418] netlink: 68 bytes leftover after parsing attributes in process `syz.1.15324'. [ 255.778273][ T5422] netlink: 132 bytes leftover after parsing attributes in process `syz.1.15326'. [ 255.900159][ T5444] netlink: 12 bytes leftover after parsing attributes in process `syz.0.15337'. [ 255.903552][ T5444] netlink: 12 bytes leftover after parsing attributes in process `syz.0.15337'. [ 256.322704][ T5521] netlink: 12 bytes leftover after parsing attributes in process `syz.1.15379'. [ 256.325654][ T5521] netlink: 12 bytes leftover after parsing attributes in process `syz.1.15379'. [ 256.400531][ T24] usb 7-1: new full-speed USB device number 15 using dummy_hcd [ 256.535405][ T5545] netlink: 4 bytes leftover after parsing attributes in process `syz.0.15385'. [ 256.577716][ T24] usb 7-1: config 195 has an invalid interface number: 145 but max is 0 [ 256.581136][ T24] usb 7-1: config 195 has no interface number 0 [ 256.583713][ T24] usb 7-1: config 195 interface 145 has no altsetting 0 [ 256.590297][ T24] usb 7-1: New USB device found, idVendor=055f, idProduct=c211, bcdDevice=9b.e4 [ 256.595260][ T24] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 256.601643][ T24] usb 7-1: Product: syz [ 256.603375][ T24] usb 7-1: Manufacturer: syz [ 256.605222][ T24] usb 7-1: SerialNumber: syz [ 256.756791][ T5572] __nla_validate_parse: 2 callbacks suppressed [ 256.756807][ T5572] netlink: 4 bytes leftover after parsing attributes in process `syz.3.15398'. [ 256.836155][ T24] gspca_main: sunplus-2.14.0 probing 055f:c211 [ 256.839118][ T24] gspca_sunplus: reg_r err -71 [ 257.402069][ T5577] netlink: 12 bytes leftover after parsing attributes in process `syz.2.15399'. [ 257.405200][ T5577] netlink: 12 bytes leftover after parsing attributes in process `syz.2.15399'. [ 257.630497][ T5606] netlink: 12 bytes leftover after parsing attributes in process `syz.3.15415'. [ 257.635593][ T5606] netlink: 12 bytes leftover after parsing attributes in process `syz.3.15415'. [ 257.665716][ T2293] usb 6-1: new full-speed USB device number 14 using dummy_hcd [ 257.828748][ T2293] usb 6-1: config 195 has an invalid interface number: 145 but max is 0 [ 257.832616][ T2293] usb 6-1: config 195 has no interface number 0 [ 257.835364][ T2293] usb 6-1: config 195 interface 145 has no altsetting 0 [ 257.841562][ T2293] usb 6-1: New USB device found, idVendor=055f, idProduct=c211, bcdDevice=9b.e4 [ 257.845248][ T2293] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 257.850508][ T2293] usb 6-1: Product: syz [ 257.852251][ T2293] usb 6-1: Manufacturer: syz [ 257.854236][ T2293] usb 6-1: SerialNumber: syz [ 257.979899][ T24] sunplus 7-1:195.145: probe with driver sunplus failed with error -71 [ 257.985015][ T24] usb 7-1: USB disconnect, device number 15 [ 258.089971][ T2293] gspca_main: sunplus-2.14.0 probing 055f:c211 [ 258.092975][ T2293] gspca_sunplus: reg_r err -71 [ 258.987471][ T5716] netlink: 'syz.1.15460': attribute type 21 has an invalid length. [ 259.141082][ T2293] sunplus 6-1:195.145: probe with driver sunplus failed with error -71 [ 259.147838][ T2293] usb 6-1: USB disconnect, device number 14 [ 259.277575][ T5745] netlink: 'syz.2.15475': attribute type 21 has an invalid length. [ 259.284221][ T5747] macvlan0: left promiscuous mode [ 259.286132][ T5747] macvlan0: entered allmulticast mode [ 259.288272][ T5747] veth1_vlan: entered allmulticast mode [ 259.431744][ T5771] macvlan0: left promiscuous mode [ 259.433610][ T5771] macvlan0: entered allmulticast mode [ 259.435716][ T5771] veth1_vlan: entered allmulticast mode [ 259.707711][ T24] usb 7-1: new high-speed USB device number 16 using dummy_hcd [ 259.879514][ T24] usb 7-1: too many configurations: 80, using maximum allowed: 8 [ 259.891931][ T24] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 259.895616][ T24] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 259.898809][ T24] usb 7-1: Product: syz [ 259.900693][ T24] usb 7-1: Manufacturer: syz [ 259.902687][ T24] usb 7-1: SerialNumber: syz [ 259.909907][ T24] usb 7-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 259.937760][ T6033] usb 7-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 260.330900][ T5808] macvlan0: entered allmulticast mode [ 260.333300][ T5808] veth1_vlan: entered allmulticast mode [ 260.394193][ T24] usb 7-1: USB disconnect, device number 16 [ 260.663597][ T5853] netlink: 44 bytes leftover after parsing attributes in process `syz.0.15521'. [ 260.706544][ T5858] netlink: 'syz.3.15523': attribute type 1 has an invalid length. [ 260.709874][ T5858] netlink: 'syz.3.15523': attribute type 3 has an invalid length. [ 260.714397][ T5858] netlink: 224 bytes leftover after parsing attributes in process `syz.3.15523'. [ 261.075287][ T5900] netlink: 'syz.2.15544': attribute type 2 has an invalid length. [ 261.076006][ T6033] ath9k_htc 7-1:1.0: ath9k_htc: Target is unresponsive [ 261.080094][ T6033] ath9k_htc: Failed to initialize the device [ 261.082533][ T24] usb 7-1: ath9k_htc: USB layer deinitialized [ 261.176042][ T5916] netlink: 4 bytes leftover after parsing attributes in process `syz.2.15553'. [ 261.193825][ T9] usb 5-1: new low-speed USB device number 16 using dummy_hcd [ 261.201930][ T5923] netlink: 4 bytes leftover after parsing attributes in process `syz.2.15561'. [ 261.375329][ T6012] usb 8-1: new high-speed USB device number 13 using dummy_hcd [ 261.376961][ T9] usb 5-1: config 0 has an invalid interface number: 1 but max is 0 [ 261.381649][ T9] usb 5-1: config 0 has no interface number 0 [ 261.384051][ T9] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10 [ 261.388335][ T9] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 261.392186][ T9] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 261.395737][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 261.400805][ T9] usb 5-1: config 0 descriptor?? [ 261.411429][ T9] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 261.536468][ T6012] usb 8-1: too many configurations: 80, using maximum allowed: 8 [ 261.549380][ T6012] usb 8-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 261.553033][ T6012] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 261.556157][ T6012] usb 8-1: Product: syz [ 261.558183][ T6012] usb 8-1: Manufacturer: syz [ 261.560237][ T6012] usb 8-1: SerialNumber: syz [ 261.570851][ T6012] usb 8-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 261.588156][ T64] usb 8-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 261.623431][ T5882] iowarrior 5-1:0.1: Error -90 while submitting URB [ 261.629563][ T6012] usb 5-1: USB disconnect, device number 16 [ 262.035913][ T9] usb 8-1: USB disconnect, device number 13 [ 262.256457][ T5941] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 262.293790][ T5945] netlink: 256 bytes leftover after parsing attributes in process `syz.1.15565'. [ 262.451702][ T5962] netlink: 'syz.1.15575': attribute type 2 has an invalid length. [ 262.533420][ T5993] netlink: 4 bytes leftover after parsing attributes in process `syz.1.15580'. [ 262.652498][ T6025] netlink: 'syz.0.15586': attribute type 2 has an invalid length. [ 262.690319][ T64] ath9k_htc 8-1:1.0: ath9k_htc: Target is unresponsive [ 262.697139][ T64] ath9k_htc: Failed to initialize the device [ 262.701830][ T9] usb 8-1: ath9k_htc: USB layer deinitialized [ 262.742755][ T6047] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 262.749750][ T6049] netlink: 256 bytes leftover after parsing attributes in process `syz.3.15599'. [ 262.894973][ T6071] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 262.913000][ T6074] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 262.937565][ T6079] xt_CT: You must specify a L4 protocol and not use inversions on it [ 262.943683][ T6081] netlink: 256 bytes leftover after parsing attributes in process `syz.2.15614'. [ 262.947753][ T6030] usb 6-1: new high-speed USB device number 15 using dummy_hcd [ 263.119488][ T6030] usb 6-1: too many configurations: 80, using maximum allowed: 8 [ 263.139700][ T6030] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 263.142978][ T6030] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 263.142997][ T6030] usb 6-1: Product: syz [ 263.143009][ T6030] usb 6-1: Manufacturer: syz [ 263.143020][ T6030] usb 6-1: SerialNumber: syz [ 263.149051][ T6030] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 263.186728][ T9] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 263.194392][ T6115] netlink: 'syz.0.15631': attribute type 3 has an invalid length. [ 263.319975][ T6128] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 263.371877][ T6137] xt_CT: You must specify a L4 protocol and not use inversions on it [ 263.448555][ T6145] netlink: 'syz.2.15647': attribute type 3 has an invalid length. [ 263.636538][ T34] usb 6-1: USB disconnect, device number 15 [ 263.982597][ T6215] netlink: 'syz.3.15682': attribute type 1 has an invalid length. [ 263.987036][ T6215] netlink: 228 bytes leftover after parsing attributes in process `syz.3.15682'. [ 264.058616][ T6030] usb 7-1: new low-speed USB device number 17 using dummy_hcd [ 264.220151][ T6030] usb 7-1: config 0 has an invalid interface number: 1 but max is 0 [ 264.223230][ T6030] usb 7-1: config 0 has no interface number 0 [ 264.225138][ T6030] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10 [ 264.228583][ T6030] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 264.231870][ T6030] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 264.234710][ T6030] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 264.238296][ T6030] usb 7-1: config 0 descriptor?? [ 264.244113][ T6030] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 264.315490][ T9] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive [ 264.318598][ T9] ath9k_htc: Failed to initialize the device [ 264.324466][ T34] usb 6-1: ath9k_htc: USB layer deinitialized [ 264.326825][ T6242] netlink: 'syz.0.15695': attribute type 1 has an invalid length. [ 264.330434][ T6242] netlink: 228 bytes leftover after parsing attributes in process `syz.0.15695'. [ 264.463071][ T6195] iowarrior 7-1:0.1: Error -90 while submitting URB [ 264.467990][ T24] usb 7-1: USB disconnect, device number 17 [ 264.577356][ T6267] netlink: 40 bytes leftover after parsing attributes in process `syz.0.15705'. [ 264.706654][ T6278] netlink: 132 bytes leftover after parsing attributes in process `syz.1.15711'. [ 264.788682][ T6288] netlink: 4 bytes leftover after parsing attributes in process `syz.1.15718'. [ 264.832338][ T6292] xt_addrtype: ipv6 BLACKHOLE matching not supported [ 264.879144][ T6294] sp0: Synchronizing with TNC [ 265.040289][ T6312] netlink: 40 bytes leftover after parsing attributes in process `syz.3.15729'. [ 265.067077][ T6314] xt_addrtype: ipv6 BLACKHOLE matching not supported [ 265.391133][ T6347] ip6t_srh: unknown srh invflags 6BE9 [ 265.520388][ T6371] binder: 6370:6371 ioctl c0306201 80000100 returned -22 [ 265.702322][ T6395] ip6t_srh: unknown srh invflags 6BE9 [ 266.021151][ T6432] overlayfs: unescaped trailing colons in lowerdir mount option. [ 266.146249][ T6442] binder: 6441:6442 ioctl c0306201 80000100 returned -22 [ 266.379015][ T6465] netlink: zone id is out of range [ 266.381699][ T6465] netlink: zone id is out of range [ 266.383997][ T6465] netlink: zone id is out of range [ 266.386301][ T6465] netlink: zone id is out of range [ 266.388575][ T6465] netlink: zone id is out of range [ 266.589772][ T6507] NILFS (nbd1): device size too small [ 266.681471][ T6520] overlayfs: cannot append lower layer [ 266.771864][ T6525] netlink: 'syz.2.15833': attribute type 1 has an invalid length. [ 266.909688][ T6536] overlayfs: unescaped trailing colons in lowerdir mount option. [ 267.190854][ T6576] overlayfs: cannot append lower layer [ 267.311263][ T6578] NILFS (nbd2): device size too small [ 267.414614][ T6588] netlink: 'syz.1.15865': attribute type 1 has an invalid length. [ 267.692279][ T6612] netlink: 'syz.0.15876': attribute type 1 has an invalid length. [ 267.699693][ T6612] __nla_validate_parse: 5 callbacks suppressed [ 267.699709][ T6612] netlink: 228 bytes leftover after parsing attributes in process `syz.0.15876'. [ 267.826821][ T1414] ieee802154 phy1 wpan1: encryption failed: -22 [ 268.037816][ T6656] netlink: 4 bytes leftover after parsing attributes in process `syz.3.15899'. [ 268.070548][ T6660] binder: 6658:6660 ioctl 400c620e 80001180 returned -22 [ 268.423029][ T6693] netlink: 4 bytes leftover after parsing attributes in process `syz.2.15917'. [ 268.457404][ T6696] binder: 6695:6696 ioctl 400c620e 80001180 returned -22 [ 268.641658][ T6723] netlink: 6 bytes leftover after parsing attributes in process `syz.2.15939'. [ 268.730068][ T6725] binder: 6724:6725 ioctl 400c620e 80001180 returned -22 [ 268.761075][ T6733] binder: 6732:6733 ioctl c00c620f 80000040 returned -22 [ 268.791104][ T6737] netlink: 'syz.1.15937': attribute type 6 has an invalid length. [ 268.794258][ T6737] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.15937'. [ 269.398472][ T6797] netlink: 'syz.3.15967': attribute type 6 has an invalid length. [ 269.401671][ T6797] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.15967'. [ 269.545816][ T6819] netlink: 'syz.0.15980': attribute type 6 has an invalid length. [ 269.548357][ T6819] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.15980'. [ 269.594989][ T6827] net_ratelimit: 27 callbacks suppressed [ 269.595007][ T6827] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 269.743042][ T6850] delete_channel: no stack [ 269.750759][ T6855] netlink: 4 bytes leftover after parsing attributes in process `syz.2.15998'. [ 269.918216][ T6880] netlink: 20 bytes leftover after parsing attributes in process `syz.3.16010'. [ 269.927122][ T6880] vlan2: entered promiscuous mode [ 269.929535][ T6880] gretap0: entered promiscuous mode [ 270.104942][ T6902] delete_channel: no stack [ 270.108550][ T6905] netlink: 4 bytes leftover after parsing attributes in process `syz.3.16021'. [ 270.109714][ T6012] usb 5-1: new high-speed USB device number 17 using dummy_hcd [ 270.222941][ T6919] vlan0: entered promiscuous mode [ 270.225050][ T6919] gretap0: entered promiscuous mode [ 270.275362][ T6012] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 270.280772][ T6012] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 270.284168][ T6012] usb 5-1: Product: syz [ 270.285954][ T6012] usb 5-1: Manufacturer: syz [ 270.287920][ T6012] usb 5-1: SerialNumber: syz [ 270.299214][ T6012] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 270.311393][ T2293] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 270.712727][ T6950] vlan2: entered promiscuous mode [ 270.714697][ T6950] 0�X��D: entered promiscuous mode [ 270.747137][ T9] usb 5-1: USB disconnect, device number 17 [ 271.322661][ T6983] vlan2: entered promiscuous mode [ 271.324283][ T6983] gretap0: entered promiscuous mode [ 271.582892][ T7014] sp0: Synchronizing with TNC [ 271.588388][ T7013] [U] � [ 271.670511][ T2293] usb 5-1: Service connection timeout for: 256 [ 271.673055][ T2293] ath9k_htc 5-1:1.0: ath9k_htc: Unable to initialize HTC services [ 271.677560][ T2293] ath9k_htc: Failed to initialize the device [ 271.680558][ T9] usb 5-1: ath9k_htc: USB layer deinitialized [ 272.408615][ T7078] sp0: Synchronizing with TNC [ 272.413804][ T7077] [U] � [ 272.834401][ T7119] ipt_rpfilter: only valid in 'raw' or 'mangle' table, not '' [ 273.242306][ T24] usb 8-1: new high-speed USB device number 14 using dummy_hcd [ 273.407751][ T24] usb 8-1: string descriptor 0 read error: -71 [ 273.409780][ T24] usb 8-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 273.412718][ T24] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 273.418780][ T24] usb 8-1: can't set config #1, error -71 [ 273.422548][ T24] usb 8-1: USB disconnect, device number 14 [ 273.434594][ T7146] ipt_rpfilter: only valid in 'raw' or 'mangle' table, not '' [ 273.760141][ T7173] ipt_rpfilter: only valid in 'raw' or 'mangle' table, not '' [ 274.063056][ T7190] netlink: 'syz.2.16162': attribute type 3 has an invalid length. [ 274.566379][ T7247] netlink: 'syz.3.16182': attribute type 3 has an invalid length. [ 274.631253][ T7252] __nla_validate_parse: 10 callbacks suppressed [ 274.631267][ T7252] netlink: 28 bytes leftover after parsing attributes in process `syz.2.16192'. [ 274.639881][ T7252] netlink: 8 bytes leftover after parsing attributes in process `syz.2.16192'. [ 274.879705][ T7267] netlink: 'syz.1.16193': attribute type 3 has an invalid length. [ 274.919609][ T7273] pim6reg9: entered allmulticast mode [ 275.503901][ T7363] pim6reg9: entered allmulticast mode [ 275.739429][ T7389] sctp: [Deprecated]: syz.2.16242 (pid 7389) Use of struct sctp_assoc_value in delayed_ack socket option. [ 275.739429][ T7389] Use struct sctp_sack_info instead [ 275.746905][ T7389] sctp: [Deprecated]: syz.2.16242 (pid 7389) Use of struct sctp_assoc_value in delayed_ack socket option. [ 275.746905][ T7389] Use struct sctp_sack_info instead [ 275.950523][ T7417] hugetlbfs: Bad value 'g' for mount option 'nr_inodes' [ 275.950523][ T7417] [ 276.302344][ T7458] netlink: 16 bytes leftover after parsing attributes in process `syz.3.16268'. [ 276.400598][ T7479] sctp: [Deprecated]: syz.0.16279 (pid 7479) Use of struct sctp_assoc_value in delayed_ack socket option. [ 276.400598][ T7479] Use struct sctp_sack_info instead [ 276.411137][ T7479] sctp: [Deprecated]: syz.0.16279 (pid 7479) Use of struct sctp_assoc_value in delayed_ack socket option. [ 276.411137][ T7479] Use struct sctp_sack_info instead [ 276.451076][ T40] kauditd_printk_skb: 5 callbacks suppressed [ 276.451089][ T40] audit: type=1326 audit(2000000059.818:1460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7486 comm="syz.2.16283" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000 [ 276.460031][ T40] audit: type=1326 audit(2000000059.818:1461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7486 comm="syz.2.16283" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000 [ 276.466776][ T40] audit: type=1326 audit(2000000059.818:1462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7486 comm="syz.2.16283" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf7fd3579 code=0x7ffc0000 [ 276.473990][ T40] audit: type=1326 audit(2000000059.818:1463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7486 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000 [ 276.489043][ T40] audit: type=1326 audit(2000000059.818:1464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7486 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fd3579 code=0x7ffc0000 [ 276.498807][ T40] audit: type=1326 audit(2000000059.818:1465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7486 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fd3579 code=0x7ffc0000 [ 276.508827][ T40] audit: type=1326 audit(2000000059.818:1466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7486 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000 [ 276.571733][ T7503] sctp: [Deprecated]: syz.3.16291 (pid 7503) Use of struct sctp_assoc_value in delayed_ack socket option. [ 276.571733][ T7503] Use struct sctp_sack_info instead [ 276.581189][ T7503] sctp: [Deprecated]: syz.3.16291 (pid 7503) Use of struct sctp_assoc_value in delayed_ack socket option. [ 276.581189][ T7503] Use struct sctp_sack_info instead [ 276.587342][ T7505] hugetlbfs: Bad value 'g' for mount option 'nr_inodes' [ 276.587342][ T7505] [ 276.635654][ T7511] hugetlbfs: Bad value 'g' for mount option 'nr_inodes' [ 276.635654][ T7511] [ 276.988720][ T7554] netlink: 36 bytes leftover after parsing attributes in process `syz.2.16317'. [ 277.053276][ T7563] netlink: 16 bytes leftover after parsing attributes in process `syz.2.16321'. [ 277.078601][ T7567] netlink: 332 bytes leftover after parsing attributes in process `syz.2.16324'. [ 277.081659][ T7567] netlink: 196 bytes leftover after parsing attributes in process `syz.2.16324'. [ 277.114370][ T7575] netlink: 'syz.1.16327': attribute type 1 has an invalid length. [ 277.118356][ T7575] nbd: error processing sock list [ 277.171610][ T40] audit: type=1326 audit(2000000060.492:1467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7582 comm="syz.0.16330" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 277.181192][ T40] audit: type=1326 audit(2000000060.492:1468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7582 comm="syz.0.16330" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 277.191062][ T40] audit: type=1326 audit(2000000060.492:1469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7582 comm="syz.0.16330" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 277.283424][ T7588] tipc: Invalid UDP bearer configuration [ 277.283451][ T7588] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media [ 277.420037][ T7606] netlink: 'syz.3.16342': attribute type 1 has an invalid length. [ 277.431527][ T7606] nbd: error processing sock list [ 277.658441][ T7622] netlink: 36 bytes leftover after parsing attributes in process `syz.3.16348'. [ 277.802621][ T7633] tipc: Invalid UDP bearer configuration [ 277.802663][ T7633] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media [ 277.840246][ T7636] netlink: 332 bytes leftover after parsing attributes in process `syz.3.16356'. [ 277.843219][ T7636] netlink: 196 bytes leftover after parsing attributes in process `syz.3.16356'. [ 278.006352][ T7648] nd_bus ndbus0: __nd_ioctl:bus unknown input size cmd: cmd_call field: 1 [ 278.084812][ T7656] tipc: Invalid UDP bearer configuration [ 278.084857][ T7656] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media [ 278.516301][ T7682] tipc: Invalid UDP bearer configuration [ 278.516345][ T7682] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media [ 279.218240][ T7732] sp0: Synchronizing with TNC [ 279.227277][ T7731] [U] �` [ 279.327110][ T7738] team0: Port device bridge6 added [ 279.522967][ T7765] sp0: Synchronizing with TNC [ 279.528884][ T7764] [U] �` [ 279.818285][ T7806] sp0: Synchronizing with TNC [ 279.824197][ T7805] [U] �` [ 280.103443][ T7848] Bluetooth: MGMT ver 1.23 [ 280.261748][ T7878] __nla_validate_parse: 1 callbacks suppressed [ 280.261760][ T7878] netlink: 4 bytes leftover after parsing attributes in process `syz.2.16471'. [ 280.271357][ T7880] CUSE: unknown device info "�KJ�H+��ۤ2Lh��nL�1�`�Cc��n�����8���0���(�3նi��>f���_ٮ,���<�_e�F��" [ 280.280248][ T7880] CUSE: unknown device info "3�ܟ�,��̘�" [ 280.282791][ T7880] CUSE: DEVNAME unspecified [ 280.407248][ T7891] fuse: Invalid rootmode [ 280.426788][ T7893] team0: Port device bridge8 added [ 281.706512][ T7991] Bluetooth: MGMT ver 1.23 [ 281.924990][ T8004] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16529'. [ 282.551998][ T8051] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16550'. [ 282.558903][ T8051] netlink: 12 bytes leftover after parsing attributes in process `syz.0.16550'. [ 282.560445][ T8053] option changes via remount are deprecated (pid=8052 comm=syz.1.16552) [ 282.659302][ T8062] netlink: 16 bytes leftover after parsing attributes in process `syz.0.16556'. [ 283.082414][ T8106] netlink: 24 bytes leftover after parsing attributes in process `syz.1.16577'. [ 283.120710][ T8113] netlink: 100 bytes leftover after parsing attributes in process `syz.2.16581'. [ 283.343490][ T8135] netlink: 8 bytes leftover after parsing attributes in process `syz.2.16591'. [ 283.480859][ T8144] netlink: 8 bytes leftover after parsing attributes in process `syz.2.16595'. [ 283.675306][ T8169] Bluetooth: MGMT ver 1.23 [ 283.816232][ T8171] tipc: Started in network mode [ 283.818457][ T8171] tipc: Node identity ac141442, cluster identity 4711 [ 283.821797][ T8171] tipc: New replicast peer: 172.20.20.170 [ 283.824423][ T8171] tipc: Enabled bearer <udp:syz0>, priority 10 [ 283.881974][ T40] kauditd_printk_skb: 6 callbacks suppressed [ 283.881988][ T40] audit: type=1326 audit(2000000066.768:1476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8188 comm="syz.0.16613" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 283.897025][ T40] audit: type=1326 audit(2000000066.768:1477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8188 comm="syz.0.16613" exe="/syz-executor" sig=0 arch=40000003 syscall=120 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 283.905545][ T40] audit: type=1326 audit(2000000066.778:1478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8188 comm="syz.0.16613" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 283.916751][ T40] audit: type=1326 audit(2000000066.778:1479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8195 comm="syz.0.16613" exe="/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 283.925083][ T40] audit: type=1326 audit(2000000066.787:1480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8188 comm="syz.0.16613" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 283.936021][ T40] audit: type=1326 audit(2000000066.806:1481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8188 comm="syz.0.16613" exe="/syz-executor" sig=0 arch=40000003 syscall=284 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 284.054539][ T40] audit: type=1326 audit(2000000066.927:1482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8195 comm="syz.0.16613" exe="/syz-executor" sig=0 arch=40000003 syscall=1 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 284.066818][ T40] audit: type=1326 audit(2000000066.937:1483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8188 comm="syz.0.16613" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 284.081119][ T40] audit: type=1326 audit(2000000066.937:1484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8188 comm="syz.0.16613" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 284.087943][ T40] audit: type=1326 audit(2000000066.937:1485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8188 comm="syz.0.16613" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 284.249708][ T8221] netlink: 16 bytes leftover after parsing attributes in process `syz.1.16632'. [ 284.350116][ T8229] Bluetooth: MGMT ver 1.23 [ 284.452051][ T8247] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 284.456683][ T8247] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 284.460282][ T8247] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 284.463933][ T8247] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 284.889227][ T8295] netlink: 'syz.2.16667': attribute type 2 has an invalid length. [ 284.891836][ T8295] netlink: 'syz.2.16667': attribute type 1 has an invalid length. [ 285.015090][ T9] tipc: Node number set to 2886997058 [ 285.133449][ T8318] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media [ 285.296064][ T6030] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 285.298539][ T6030] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 285.308649][ T6030] hid-generic 0000:0003:0000.0003: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0 [ 285.354662][ T9] usb 5-1: new high-speed USB device number 18 using dummy_hcd [ 285.369785][ T8332] fido_id[8332]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 285.515922][ T9] usb 5-1: too many configurations: 9, using maximum allowed: 8 [ 285.520183][ T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 285.523835][ T9] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 285.530231][ T9] usb 5-1: config 0 interface 0 has no altsetting 0 [ 285.534221][ T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 285.539132][ T9] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 285.543730][ T9] usb 5-1: config 0 interface 0 has no altsetting 0 [ 285.548624][ T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 285.552371][ T9] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 285.556979][ T9] usb 5-1: config 0 interface 0 has no altsetting 0 [ 285.562663][ T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 285.566260][ T9] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 285.570984][ T9] usb 5-1: config 0 interface 0 has no altsetting 0 [ 285.574655][ T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 285.578400][ T9] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 285.583376][ T9] usb 5-1: config 0 interface 0 has no altsetting 0 [ 285.587205][ T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 285.591243][ T9] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 285.595700][ T9] usb 5-1: config 0 interface 0 has no altsetting 0 [ 285.599609][ T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 285.604003][ T9] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 285.608499][ T9] usb 5-1: config 0 interface 0 has no altsetting 0 [ 285.612868][ T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 285.616683][ T9] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 285.621162][ T9] usb 5-1: config 0 interface 0 has no altsetting 0 [ 285.626432][ T9] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 285.630131][ T9] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 285.633959][ T9] usb 5-1: Product: syz [ 285.635789][ T9] usb 5-1: Manufacturer: syz [ 285.637773][ T9] usb 5-1: SerialNumber: syz [ 285.641833][ T9] usb 5-1: config 0 descriptor?? [ 285.648465][ T9] yurex 5-1:0.0: USB YUREX device now attached to Yurex #0 [ 285.709942][ T8360] __nla_validate_parse: 3 callbacks suppressed [ 285.709958][ T8360] netlink: 36 bytes leftover after parsing attributes in process `syz.3.16696'. [ 285.716480][ T8360] netlink: 16 bytes leftover after parsing attributes in process `syz.3.16696'. [ 285.721228][ T8360] netlink: 36 bytes leftover after parsing attributes in process `syz.3.16696'. [ 285.724503][ T8360] netlink: 36 bytes leftover after parsing attributes in process `syz.3.16696'. [ 285.767979][ T8362] vimc link validate: Scaler:src:16x16 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0) [ 285.867664][ T1321] usb 5-1: USB disconnect, device number 18 [ 285.873250][ T1321] yurex 5-1:0.0: USB YUREX #0 now disconnected [ 286.074131][ T8374] netlink: 48 bytes leftover after parsing attributes in process `syz.3.16703'. [ 286.556375][ T8397] netlink: 8 bytes leftover after parsing attributes in process `syz.2.16714'. [ 286.660830][ T8410] vivid-007: disconnect [ 286.663279][ T8409] vivid-007: reconnect [ 287.416038][ T8474] vivid-007: disconnect [ 287.422156][ T8473] vivid-007: reconnect [ 287.426345][ T8476] overlayfs: workdir and upperdir must be separate subtrees [ 287.808616][ T8502] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media [ 288.453101][ T8561] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media [ 288.621857][ T8574] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 288.625133][ T8574] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 288.628225][ T8574] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 288.631346][ T8574] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 289.081430][ T8611] overlayfs: workdir and upperdir must be separate subtrees [ 289.188617][ T8617] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16817'. [ 289.264285][ T8621] tipc: Started in network mode [ 289.266692][ T8621] tipc: Node identity ac141442, cluster identity 4711 [ 289.273284][ T8621] tipc: New replicast peer: 172.20.20.170 [ 289.275905][ T8621] tipc: Enabled bearer <udp:syz0>, priority 10 [ 289.712966][ T8648] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16830'. [ 290.148862][ T8690] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16857'. [ 290.151804][ T8690] netlink: 12 bytes leftover after parsing attributes in process `syz.1.16857'. [ 290.247067][ T8708] option changes via remount are deprecated (pid=8706 comm=syz.0.16859) [ 290.305725][ T8714] tipc: Started in network mode [ 290.307363][ T8714] tipc: Node identity ac141442, cluster identity 4711 [ 290.309757][ T8714] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media [ 290.356741][ T40] kauditd_printk_skb: 1 callbacks suppressed [ 290.356752][ T40] audit: type=1326 audit(2000000072.820:1487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8724 comm="syz.0.16868" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70ae579 code=0x0 [ 290.476917][ T9] tipc: Node number set to 2886997058 [ 290.620592][ T40] audit: type=1326 audit(2000000073.073:1488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8746 comm="syz.3.16877" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x0 [ 291.439650][ T40] audit: type=1326 audit(2000000073.840:1489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8818 comm="syz.2.16912" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fd3579 code=0x0 [ 291.451009][ T8823] wg1 speed is unknown, defaulting to 1000 [ 291.455284][ T8823] vxcan1 speed is unknown, defaulting to 1000 [ 291.494615][ T8827] vivid-007: disconnect [ 291.497175][ T8826] vivid-007: reconnect [ 291.936625][ T8869] bridge9: trying to set multicast startup query interval below minimum, setting to 100 (1000ms) [ 292.504065][ T8938] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 292.665676][ T8951] bridge7: trying to set multicast startup query interval below minimum, setting to 100 (1000ms) [ 292.673431][ T8948] wg1 speed is unknown, defaulting to 1000 [ 292.676636][ T8948] vxcan1 speed is unknown, defaulting to 1000 [ 293.331168][ T8990] wg1 speed is unknown, defaulting to 1000 [ 293.335434][ T8990] vxcan1 speed is unknown, defaulting to 1000 [ 293.366436][ T9015] : entered promiscuous mode [ 293.479996][ T9027] netlink: 'syz.0.17008': attribute type 7 has an invalid length. [ 293.483881][ T9027] netlink: 'syz.0.17008': attribute type 8 has an invalid length. [ 293.548007][ T9038] Invalid source name [ 293.549322][ T9038] UBIFS error (pid: 9038): cannot open "usrquota", error -22 [ 293.597817][ T9034] tipc: Started in network mode [ 293.603144][ T9034] tipc: Node identity ff000000000000000000000000000001, cluster identity 4711 [ 293.606865][ T9034] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media [ 293.657785][ T9053] tmpfs: Cannot enable swap on remount if it was disabled on first mount [ 293.672567][ T9056] nbd: must specify a device to reconfigure [ 293.769749][ T40] audit: type=1326 audit(2000000076.019:1490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9069 comm="syz.1.17029" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x0 [ 293.945508][ T9094] [U] [ 293.947505][ T9094] [U] [ 293.948743][ T9094] [U] [ 293.950037][ T9094] [U] [ 293.952411][ T9094] [U] [ 293.953332][ T9094] [U] [ 293.954342][ T9094] [U] [ 293.955293][ T9094] [U] [ 293.956151][ T9094] [U] [ 293.956977][ T9094] [U] [ 293.957797][ T9094] [U] [ 293.958642][ T9094] [U] [ 293.959455][ T9094] [U] [ 293.960304][ T9094] [U] [ 293.961187][ T9094] [U] [ 293.962036][ T9094] [U] [ 293.964084][ T9094] [U] [ 293.964983][ T9094] [U] [ 293.965900][ T9094] [U] [ 293.966844][ T9094] [U] [ 293.967827][ T9094] [U] [ 293.968665][ T9094] [U] [ 293.969422][ T9094] [U] [ 293.970274][ T9094] [U] [ 293.974183][ T9094] [U] [ 293.975065][ T9094] [U] [ 293.975893][ T9094] [U] [ 293.976746][ T9094] [U] [ 293.977679][ T9094] [U] [ 293.978557][ T9094] [U] [ 293.979391][ T9094] [U] [ 293.980192][ T9094] [U] [ 293.980995][ T9094] [U] [ 293.981857][ T9094] [U] [ 293.982753][ T9094] [U] [ 293.983705][ T9094] [U] [ 293.984995][ T9094] [U] [ 293.985861][ T9094] [U] [ 293.986670][ T9094] [U] [ 293.987483][ T9094] [U] [ 293.988619][ T9094] [U] [ 293.989423][ T9094] [U] [ 293.990245][ T9094] [U] [ 293.991033][ T9094] [U] [ 293.991844][ T9094] [U] [ 293.992696][ T9094] [U] [ 293.993579][ T9094] [U] [ 293.994430][ T9094] [U] [ 293.996661][ T9094] [U] [ 293.997964][ T9094] [U] [ 293.999160][ T9094] [U] [ 294.000379][ T9094] [U] [ 294.001733][ T9094] [U] [ 294.002916][ T9094] [U] [ 294.004144][ T9094] [U] [ 294.005365][ T9094] [U] [ 294.009624][ T9094] [U] [ 294.010925][ T9094] [U] [ 294.012182][ T9094] [U] [ 294.013399][ T9094] [U] [ 294.015022][ T9094] [U] [ 294.016090][ T9094] [U] [ 294.016989][ T9094] [U] [ 294.018003][ T9094] [U] [ 294.019115][ T9094] [U] [ 294.020103][ T9094] [U] [ 294.020967][ T9094] [U] [ 294.021939][ T9094] [U] [ 294.023008][ T9094] [U] [ 294.024162][ T9094] [U] [ 294.025107][ T9094] [U] [ 294.025991][ T9094] [U] [ 294.027771][ T9094] [U] [ 294.028634][ T9094] [U] [ 294.029445][ T9094] [U] [ 294.030258][ T9094] [U] [ 294.031151][ T9094] [U] [ 294.031977][ T9094] [U] [ 294.032810][ T9094] [U] [ 294.033573][ T9094] [U] [ 294.034542][ T9094] [U] [ 294.035377][ T9094] [U] [ 294.036176][ T9094] [U] [ 294.036975][ T9094] [U] [ 294.037963][ T9094] [U] [ 294.038836][ T9094] [U] [ 294.039651][ T9094] [U] [ 294.040461][ T9094] [U] [ 294.041356][ T9094] [U] [ 294.042188][ T9094] [U] [ 294.043195][ T9094] [U] [ 294.044236][ T9094] [U] [ 294.045370][ T9094] [U] [ 294.046301][ T9094] [U] [ 294.047167][ T9094] [U] [ 294.048354][ T9094] [U] [ 294.050227][ T9094] [U] [ 294.051090][ T9094] [U] [ 294.051972][ T9094] [U] [ 294.052810][ T9094] [U] [ 294.053916][ T9094] [U] [ 294.054802][ T9094] [U] [ 294.055640][ T9094] [U] [ 294.056442][ T9094] [U] [ 294.057361][ T9094] [U] [ 294.058189][ T9094] [U] [ 294.059011][ T9094] [U] [ 294.059811][ T9094] [U] [ 294.060685][ T9094] [U] [ 294.061522][ T9094] [U] [ 294.062381][ T9094] [U] [ 294.063247][ T9094] [U] [ 294.065929][ T9094] [U] [ 294.067195][ T9094] [U] [ 294.068366][ T9094] [U] [ 294.069668][ T9094] [U] [ 294.075289][ T9094] [U] [ 294.076549][ T9094] [U] [ 294.077779][ T9094] [U] [ 294.079005][ T9094] [U] [ 294.080394][ T9094] [U] [ 294.081638][ T9094] [U] [ 294.082871][ T9094] [U] [ 294.084047][ T9094] [U] [ 294.085430][ T9094] [U] [ 294.086660][ T9094] [U] [ 294.087859][ T9094] [U] [ 294.097574][ T9093] [U] [ 294.483409][ T9139] overlayfs: conflicting lowerdir path [ 294.791916][ T9170] delete_channel: no stack [ 295.440953][ T9245] overlayfs: conflicting options: nfs_export=on,index=off [ 295.505439][ T9253] openvswitch: netlink: IP tunnel attribute has 8 unknown bytes. [ 295.586421][ T9265] netlink: 16 bytes leftover after parsing attributes in process `syz.2.17121'. [ 295.693237][ T9273] netlink: 48 bytes leftover after parsing attributes in process `syz.3.17124'. [ 295.824723][ T9289] netlink: 36 bytes leftover after parsing attributes in process `syz.3.17133'. [ 296.012317][ T9305] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media [ 296.053928][ T9309] CIFS: Unable to determine destination address [ 296.269580][ T9323] netlink: 8 bytes leftover after parsing attributes in process `syz.2.17150'. [ 296.273562][ T9323] netlink: 12 bytes leftover after parsing attributes in process `syz.2.17150'. [ 296.277655][ T9323] netlink: 'syz.2.17150': attribute type 5 has an invalid length. [ 296.330836][ T9330] netlink: 8 bytes leftover after parsing attributes in process `syz.2.17153'. [ 296.334535][ T9330] netlink: 4 bytes leftover after parsing attributes in process `syz.2.17153'. [ 296.338087][ T9330] netlink: 'syz.2.17153': attribute type 12 has an invalid length. [ 296.380905][ T9336] devtmpfs: Too few inodes for current use [ 296.936035][ T9405] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.17188'. [ 297.090160][ T9434] loop2: detected capacity change from 0 to 7 [ 297.111370][ T9434] Dev loop2: unable to read RDB block 7 [ 297.115992][ T9434] loop2: unable to read partition table [ 297.118986][ T9434] loop2: partition table beyond EOD, truncated [ 297.121881][ T9434] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5) [ 297.158492][ T9441] sp0: Synchronizing with TNC [ 297.162178][ T9440] [U] � [ 297.318712][ T9455] netlink: 28 bytes leftover after parsing attributes in process `syz.1.17213'. [ 297.513183][ T9482] netlink: 'syz.3.17227': attribute type 23 has an invalid length. [ 297.563272][ T9488] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 297.566403][ T9488] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 297.572559][ T9488] vhci_hcd vhci_hcd.0: Device attached [ 297.675089][ T9500] netlink: 'syz.0.17233': attribute type 4 has an invalid length. [ 297.677595][ T9500] netlink: 17 bytes leftover after parsing attributes in process `syz.0.17233'. [ 297.830348][ T6030] usb 41-1: new high-speed USB device number 3 using vhci_hcd [ 298.124999][ T9489] vhci_hcd: connection reset by peer [ 298.127386][ T13] vhci_hcd: stop threads [ 298.128769][ T13] vhci_hcd: release socket [ 298.132187][ T13] vhci_hcd: disconnect device [ 298.242444][ T9562] netlink: 'syz.0.17262': attribute type 3 has an invalid length. [ 298.720142][ T9] usb 8-1: new high-speed USB device number 15 using dummy_hcd [ 298.911845][ T9] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 298.915434][ T9] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 298.919644][ T9] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 298.931504][ T9] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 298.936087][ T9] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 298.943330][ T9] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 298.947057][ T9] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 298.950358][ T9] usb 8-1: Product: syz [ 298.963599][ T9] usb 8-1: Manufacturer: syz [ 298.972924][ T9] cdc_wdm 8-1:1.0: skipping garbage [ 298.975383][ T9] cdc_wdm 8-1:1.0: skipping garbage [ 298.979364][ T9] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device [ 298.982118][ T9] cdc_wdm 8-1:1.0: Unknown control protocol [ 299.187704][ T9] usb 8-1: USB disconnect, device number 15 [ 299.839183][ T9642] binder: 9640:9642 ioctl c018620c 80000380 returned -22 [ 301.040451][ T9707] overlayfs: conflicting lowerdir path [ 301.232140][ T9725] loop2: detected capacity change from 0 to 7 [ 301.238021][ T9725] Dev loop2: unable to read RDB block 7 [ 301.239830][ T9725] loop2: unable to read partition table [ 301.242072][ T9725] loop2: partition table beyond EOD, truncated [ 301.245751][ T9725] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5) [ 301.274097][ T5349] Dev loop2: unable to read RDB block 7 [ 301.276374][ T5349] loop2: unable to read partition table [ 301.278402][ T5349] loop2: partition table beyond EOD, truncated [ 301.556754][ T9750] openvswitch: netlink: Duplicate key (type 0). [ 301.606677][ T63] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured! [ 301.907797][ T9768] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma? [ 302.143426][ T9782] netlink: 'syz.2.17366': attribute type 4 has an invalid length. [ 302.145967][ T9782] __nla_validate_parse: 5 callbacks suppressed [ 302.145975][ T9782] netlink: 17 bytes leftover after parsing attributes in process `syz.2.17366'. [ 303.304841][ T6030] vhci_hcd: vhci_device speed not set [ 303.439583][ T9803] netlink: 8 bytes leftover after parsing attributes in process `syz.3.17378'. [ 303.686033][ T9811] loop2: detected capacity change from 0 to 7 [ 303.707279][ T9811] Dev loop2: unable to read RDB block 7 [ 303.709710][ T9811] loop2: unable to read partition table [ 303.713441][ T9811] loop2: partition table beyond EOD, truncated [ 303.719621][ T9811] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5) [ 303.922836][ T9830] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma? [ 303.983413][ T9834] loop2: detected capacity change from 0 to 7 [ 303.995128][ T8316] Dev loop2: unable to read RDB block 7 [ 303.997496][ T8316] loop2: unable to read partition table [ 304.002782][ T8316] loop2: partition table beyond EOD, truncated [ 304.021157][ T9834] Dev loop2: unable to read RDB block 7 [ 304.023555][ T9834] loop2: unable to read partition table [ 304.026744][ T9834] loop2: partition table beyond EOD, truncated [ 304.029495][ T9834] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5) [ 304.672564][ T6012] usb 5-1: new high-speed USB device number 19 using dummy_hcd [ 304.832729][ T6012] usb 5-1: Using ep0 maxpacket: 8 [ 304.836774][ T6012] usb 5-1: config 0 has no interfaces? [ 304.838634][ T6012] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 304.841499][ T6012] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 304.845425][ T6012] usb 5-1: config 0 descriptor?? [ 305.064720][ T6012] usb 5-1: USB disconnect, device number 19 [ 306.051679][ C1] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured! [ 315.715799][ C0] ip6_tunnel: ip6tnl3 xmit: Local address not yet configured! [ 316.895887][ T5972] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 316.899924][ T5972] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 316.904013][ T5972] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 316.909190][ T5972] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 316.919918][ T5972] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 316.934174][ T5983] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 316.938285][ T5983] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 316.943295][ T5983] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 316.947499][ T5983] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 316.953809][ T5983] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 317.060440][ T40] audit: type=1326 audit(2000000097.796:1491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9903 comm="syz.0.17424" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7fc00000 [ 317.067062][ T40] audit: type=1326 audit(2000000097.796:1492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9903 comm="syz.0.17424" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ae579 code=0x7fc00000 [ 317.076803][ T40] audit: type=1326 audit(2000000097.796:1493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9903 comm="syz.0.17424" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7fc00000 [ 317.089140][ T40] audit: type=1326 audit(2000000097.796:1494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9903 comm="syz.0.17424" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7fc00000 [ 317.107915][ T40] audit: type=1326 audit(2000000097.796:1495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9903 comm="syz.0.17424" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7fc00000 [ 317.112154][ T9917] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 317.114748][ T40] audit: type=1326 audit(2000000097.796:1496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9903 comm="syz.0.17424" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7fc00000 [ 317.125122][ T40] audit: type=1326 audit(2000000097.796:1497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9903 comm="syz.0.17424" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7fc00000 [ 317.134331][ T40] audit: type=1326 audit(2000000097.796:1498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9903 comm="syz.0.17424" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7fc00000 [ 317.240543][ T9900] wg1 speed is unknown, defaulting to 1000 [ 317.243293][ T9900] vxcan1 speed is unknown, defaulting to 1000 [ 317.257859][ T9927] netlink: 8 bytes leftover after parsing attributes in process `syz.0.17434'. [ 317.261314][ T9927] netlink: 12 bytes leftover after parsing attributes in process `syz.0.17434'. [ 317.265188][ T9927] netlink: 'syz.0.17434': attribute type 20 has an invalid length. [ 317.613329][ T9949] [U] [ 317.614361][ T9949] [U] K{� [ 317.615518][ T9949] [U] �t �1���F���fˊ�`G�J��g���������o��/�mC� [ 317.617924][ T9949] [U] t�ؖ/,�~�Ĝ��j���}8���'o1��"�7-�JQ�K��W��q�5c%"�H12��Y������X�`����`+��(��!(���z'�tXln�I�g�j����ݭ�p�~�7�!���"�����(�5�Ob���̓J� [ 317.623814][ T9949] [U] �k\&�}6�6�X�HX�������.`�a�$�40|϶��9��ި����U��4���Vbz��}�w�M�T���Q��Φr�4�� [ 317.627308][ T9949] [U] ".h6��"�k�[����J�4��I�n��[Z(��C|T�]z{��3�c=��x�����4�w�)\T�XJ��SH{q;칢��t��+���g����d�.˂�>y����wUh�fN����hl]S�2���\g%�O�&z)��'�pul�_<� �ذ����`ұT�������;_�"(�u{7j��2X �/�'��c���I����H�c�ճ�V�=��Ai�%w�Es� R��j���g��r����hI���a��6-�D��V�� i"��n� ��Asc~4���8c�*�OO5/��J�~���w�vK+����3��Y)��M���v��yq潀DTr�Otpem%f��ej�A5��T_-X~�^aaۂ�q�� [ 317.639222][ T9949] [U] +�w�G?]��'a: ��)�����' B>t���f/��<'�U�'��h�i�.+]e�.�-ɿ���%��>2`�^U�8F.�6��3��+�A�«���g3�p��6:�^0��t��v�'E�t����YC�n��rϩ�n�Pj�;�Z������8!��\���A�ʖ2��$�wi.��#��/Bai���`��4j��d�y@�z��gW�5˿B��ٜ�N�y"vI2�� [ 317.647518][ T9949] [U] �T�_K5�t�YJ���9��c�$br�L�Nul��9w���|�G�"ʃ�%����C�؝���q�� ��3��q��N^HP*��$ �.�7yӱ�2� [ 317.651231][ T9949] [U] �?���h��*����3�7�鍾^#Q�"0~���(�o�XL�b�,'v��=���C�S���G�S��0�ւ��`���ه��=1(��p#�2DO*Ƀ [ 317.654992][ T9949] [U] �s��g������Gu��d-{���|&������2��L�c_��!`��oz֥�B��%>�r��w���Ss�H"�yA4�O.�Y��䏄RTԶ�B�[+/<<R�B����|Фe���۠�V96#���ͤ�j�U�%s851���ҩs�P��\��?q�|L��QX�0�K�1orɴ2��|��d�F�������2ޔ���0��H�}C[/����px^��o [ 317.667075][ T9949] [U] �؛���(J�Л��m��xz�;�����؝_����*3�3��5�\�xm��U��AK!aQ`��;F�I+��VUH���m�j��Ʒ��Z�c��z���)_矡 ���&�����a�xto���_� ���:���%�P���C���y�+_�����}U�m��ƫC�!KJ�7��g��=b� [ 317.675583][ T9949] [U] ٽ�F�%�XA��l�2r*g��VW��$��j �A��F�ߝ�+��9̈́Vi�֗�kپ�1}_���%�r6��(]��/����řYܺ��h����r g��rn/ܫ�#!�d����%���D��-{�$�vU��T���$:mtr�E�C1V�D~��];[�����sq����(��e,X�8�"���G�d���2@T8��������t8.Rc+�@�ꦇp�u�p����C���'�yL�-Ss1E?�7�O���^]����c��H]�Jkr]Rkq܆��ݣ��OTc��x���4�N� ��&���ڋ��@�:m7�~�+�W*���xM��>>��{q���_�՝LX8�U����{�Z����)��7?�rR;�c�r�hײڣ����1�>)�Mă��t���(��aϝ�}9�ڥ�J*Mќ�ġ�'L��q �DW����=��|q� �Æ�W;5��Ž�!�dB�x`��/��E�`ƦM��X��"�\ [ 317.697825][ T9949] [U] {;����٘_�o2��)�o��.2�W2���y���x_ HPϱ�S�D����:]�{������ [ 317.701475][ T9949] [U] I,�>�� ��5�1��^1�N4�oǶ�'0�?֒i�9w.�_.�W�a���V��`)�Z���c6Giӹ�a��XL[����F�*��O�W)+��'\n�[K@����2�Ǭ���p"^`��� �� [ 317.714024][ T9949] [U] 22��Ʃ���x?0;3u� [ 317.716365][ T9949] [U] ޜ���sObx�8�W�4�(�~/���K�U��ԖoQ�e+�G�-y�gY_�>v�����3.h�ә]̈́�2��)�D�, �� �D~�d���+�w;A\�FP��Ș|$��)�KؐI���ɿk�YT^R���癵��A=�#�ܜ ����ae��t�1��ݯ4K�.e"R�S|��s���:��>p��r�"z������#P!�KY"�}��F�N84����hޱ�o��sߙ̫%Dlw�m�� [ 317.729140][ T9949] [U] [�['xn�'�����,mr��/����1D=!D�x91B�w�R�lf���K�Z��#�`�l؛�˜��b~�m��� [ 317.733131][ T9949] [U] �L�>��d+�d�����"5���h3<���iR=F^�f�n��������v���D�OIO�:U�>�Y� [ 317.737153][ T9949] [U] 'B�6v�20��瞥��"t8�{9�FW��]���쩍 [ 317.739858][ T9949] [U] �72�����u�C6����τI]8c��tۨQSk�Y��I��� �|V'�TV/��g�$[� 9kh`�"����}��[^=��0�]��%�̂T�����F�_v�4C��� [ 317.748023][ T9949] [U] �ec� [ 317.749455][ T9949] [U] ���|���<��:^�3$7nK~�-�@��?��/mtl��۾�I�w�@g~t�{��P�+�$�jp|���I�Ri�pm� ��Y� ��8�t���V�����,�l�,� [ 317.762657][ T9948] [U] �K�����)0���~��ʪ�iP'�f��z��r���@B�]�5��{��ʼ�'�8�ƥF��UTqUdǩ�K;7��0c[��y���YC���ذm��L�8�T�͚�5���rx����W� x���oQhVi'8����L� [ 317.939724][ T9975] vivid-000: disconnect [ 318.166758][ T9979] netlink: 8 bytes leftover after parsing attributes in process `syz.3.17455'. [ 318.169554][ T9979] netlink: 8 bytes leftover after parsing attributes in process `syz.3.17455'. [ 318.285240][ T9900] chnl_net:caif_netlink_parms(): no params data found [ 318.770784][ T9970] vivid-000: reconnect [ 318.887772][ T9900] bridge0: port 1(bridge_slave_0) entered blocking state [ 318.891027][ T9900] bridge0: port 1(bridge_slave_0) entered disabled state [ 318.894127][ T9900] bridge_slave_0: entered allmulticast mode [ 318.897991][ T9900] bridge_slave_0: entered promiscuous mode [ 318.904808][ T9900] bridge0: port 2(bridge_slave_1) entered blocking state [ 318.907874][ T9900] bridge0: port 2(bridge_slave_1) entered disabled state [ 318.910897][ T9900] bridge_slave_1: entered allmulticast mode [ 318.914907][ T9900] bridge_slave_1: entered promiscuous mode [ 318.937768][T10028] netlink: 16 bytes leftover after parsing attributes in process `syz.0.17476'. [ 319.136901][ T5983] Bluetooth: hci4: command tx timeout [ 319.180795][ T9900] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 319.187314][ T9900] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 319.399941][T10063] netlink: 4 bytes leftover after parsing attributes in process `syz.3.17493'. [ 319.470130][ T9900] team0: Port device team_slave_0 added [ 319.486391][T10071] netlink: 'syz.0.17497': attribute type 1 has an invalid length. [ 319.491225][T10071] netlink: 220 bytes leftover after parsing attributes in process `syz.0.17497'. [ 319.495569][T10071] netlink: 'syz.0.17497': attribute type 1 has an invalid length. [ 319.572662][T10078] netlink: 8 bytes leftover after parsing attributes in process `syz.2.17500'. [ 319.576902][T10078] netlink: 8 bytes leftover after parsing attributes in process `syz.2.17500'. [ 319.634712][ T9900] team0: Port device team_slave_1 added [ 319.911027][ T9900] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 319.924039][ T9900] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 319.935892][ T9900] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 319.948721][ T9900] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 319.953051][ T9900] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 319.963824][ T9900] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 320.233060][T10121] netlink: 24 bytes leftover after parsing attributes in process `syz.0.17517'. [ 320.256694][ T9900] hsr_slave_0: entered promiscuous mode [ 320.260112][ T9900] hsr_slave_1: entered promiscuous mode [ 321.360426][ T5983] Bluetooth: hci4: command tx timeout [ 323.360209][ T46] team0: Port device bridge6 removed [ 323.584113][ T5983] Bluetooth: hci4: command tx timeout [ 324.430748][ T46] bond0 (unregistering): Released all slaves [ 324.441545][ T46] bond1 (unregistering): Released all slaves [ 324.451572][ T46] bond2 (unregistering): Released all slaves [ 324.461375][ T46] bond3 (unregistering): Released all slaves [ 324.475210][ T46] bond4 (unregistering): Released all slaves [ 324.488981][ T46] bond5 (unregistering): Released all slaves [ 324.500579][ T46] bond6 (unregistering): Released all slaves [ 324.512618][ T46] bond7 (unregistering): Released all slaves [ 324.527431][ T46] bond8 (unregistering): Released all slaves [ 325.477637][ T46] bond9 (unregistering): Released all slaves [ 325.487748][ T46] bond10 (unregistering): Released all slaves [ 325.753466][T10147] ./file0: Can't lookup blockdev [ 325.818824][ T5983] Bluetooth: hci4: command tx timeout [ 326.035925][ T46] : left promiscuous mode [ 326.146884][T10176] IPVS: ip_vs_add_dest(): lower threshold is higher than upper threshold [ 326.149843][ T2293] IPVS: starting estimator thread 0... [ 326.267402][T10177] IPVS: using max 30 ests per chain, 72000 per kthread [ 326.379489][ T46] tipc: Disabling bearer <udp:syz0> [ 326.383708][ T46] tipc: Left network mode [ 326.500519][ T46] IPVS: stopping backup sync thread 21033 ... [ 327.004298][T10223] syz.2.17559 (10223): drop_caches: 2 [ 327.059692][ T9900] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 327.264224][ T9900] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 327.350702][ T9900] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 327.429317][ T9900] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 327.608884][T10259] netlink: 'syz.2.17571': attribute type 10 has an invalid length. [ 327.708644][T10259] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 327.715273][T10259] batadv0: entered promiscuous mode [ 327.718891][T10259] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 327.766615][T10259] syz.2.17571 (10259) used greatest stack depth: 20808 bytes left [ 327.787748][T10272] tmpfs: Cannot disable swap on remount [ 327.835670][ T9900] 8021q: adding VLAN 0 to HW filter on device bond0 [ 328.043289][ T9900] 8021q: adding VLAN 0 to HW filter on device team0 [ 328.055117][T10291] __nla_validate_parse: 2 callbacks suppressed [ 328.055133][T10291] netlink: 4 bytes leftover after parsing attributes in process `syz.3.17583'. [ 328.553354][T10161] bridge0: port 1(bridge_slave_0) entered blocking state [ 328.556406][T10161] bridge0: port 1(bridge_slave_0) entered forwarding state [ 328.561290][T10161] bridge0: port 2(bridge_slave_1) entered blocking state [ 328.564302][T10161] bridge0: port 2(bridge_slave_1) entered forwarding state [ 328.576106][T10314] netlink: 'syz.2.17594': attribute type 1 has an invalid length. [ 329.158038][ T9900] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 330.092716][T10380] netlink: 'syz.2.17617': attribute type 5 has an invalid length. [ 330.584072][T10410] CIFS: Unable to determine destination address [ 330.702807][ T9900] veth0_vlan: entered promiscuous mode [ 330.718160][ T9900] veth1_vlan: entered promiscuous mode [ 330.797981][T10425] ucma_write: process 9293 (syz.3.17634) changed security contexts after opening file descriptor, this is not allowed. [ 330.800493][ T9900] veth0_macvtap: entered promiscuous mode [ 330.818694][ T9900] veth1_macvtap: entered promiscuous mode [ 331.133133][T10447] binder: 10446:10447 ioctl c0306201 80000600 returned -22 [ 331.284972][ T9900] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 331.301571][ T9900] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 331.310701][ T9900] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 331.314669][ T9900] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 331.318373][ T9900] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 331.329059][ T9900] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 331.687961][ T46] hsr_slave_0: left promiscuous mode [ 331.751912][ T46] hsr_slave_1: left promiscuous mode [ 331.794848][ T46] veth1_vlan: left allmulticast mode [ 332.309942][T10471] ================================================================== [ 332.313376][T10471] BUG: KASAN: vmalloc-out-of-bounds in vrealloc_noprof+0x132/0x320 [ 332.316733][T10471] Write of size 4064 at addr ffffc9000d259020 by task syz.0.17655/10471 [ 332.321599][T10471] [ 332.322648][T10471] CPU: 1 UID: 0 PID: 10471 Comm: syz.0.17655 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 332.322672][T10471] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 332.322683][T10471] Call Trace: [ 332.322689][T10471] <TASK> [ 332.322704][T10471] dump_stack_lvl+0x116/0x1f0 [ 332.322733][T10471] print_report+0xc3/0x670 [ 332.322754][T10471] ? __virt_addr_valid+0x5e/0x590 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 332.322778][T10471] ? vrealloc_noprof+0x132/0x320 [ 332.322793][T10471] kasan_report+0xe0/0x110 [ 332.322812][T10471] ? vrealloc_noprof+0x132/0x320 [ 332.322830][T10471] kasan_check_range+0xef/0x1a0 [ 332.322853][T10471] __asan_memset+0x23/0x50 [ 332.322878][T10471] vrealloc_noprof+0x132/0x320 [ 332.322894][T10471] push_insn_history+0x2ae/0x6c0 [ 332.322914][T10471] do_check_common+0xbd3/0xc2a0 [ 332.322942][T10471] ? __pfx_do_check_common+0x10/0x10 [ 332.322959][T10471] ? __pfx_mark_fastcall_pattern_for_call+0x10/0x10 [ 332.322987][T10471] ? kfree+0x2b6/0x4d0 [ 332.323000][T10471] ? bpf_check+0x6c86/0xb460 [ 332.323017][T10471] ? bpf_check+0x7b2f/0xb460 [ 332.323036][T10471] bpf_check+0x7f51/0xb460 [ 332.323060][T10471] ? __pfx_bpf_check+0x10/0x10 [ 332.323077][T10471] ? pcpu_alloc_noprof+0x949/0x1470 [ 332.323100][T10471] ? __lock_acquire+0xaa4/0x1ba0 [ 332.323128][T10471] ? find_held_lock+0x2b/0x80 [ 332.323146][T10471] ? __asan_memset+0x23/0x50 [ 332.323172][T10471] ? bpf_obj_name_cpy+0x14a/0x1a0 [ 332.323196][T10471] bpf_prog_load+0xe41/0x2490 [ 332.323222][T10471] ? __pfx_bpf_prog_load+0x10/0x10 [ 332.323244][T10471] ? __pfx___futex_wait+0x10/0x10 [ 332.323274][T10471] ? bpf_lsm_bpf+0x9/0x10 [ 332.323291][T10471] __sys_bpf+0x433c/0x4d80 [ 332.323315][T10471] ? __pfx___sys_bpf+0x10/0x10 [ 332.323338][T10471] ? __lock_acquire+0xaa4/0x1ba0 [ 332.323361][T10471] ? do_futex+0x122/0x350 [ 332.323378][T10471] ? __pfx_do_futex+0x10/0x10 [ 332.323400][T10471] ? xfd_validate_state+0x5d/0x180 [ 332.323428][T10471] ? rcu_is_watching+0x12/0xc0 [ 332.323445][T10471] __ia32_sys_bpf+0x76/0xe0 [ 332.323470][T10471] __do_fast_syscall_32+0x73/0x120 [ 332.323495][T10471] do_fast_syscall_32+0x32/0x80 [ 332.323519][T10471] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 332.323540][T10471] RIP: 0023:0xf70ae579 [ 332.323554][T10471] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 332.323572][T10471] RSP: 002b:00000000f509e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 332.323589][T10471] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000700 [ 332.323601][T10471] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000 [ 332.323610][T10471] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 332.323620][T10471] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 332.323630][T10471] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 332.323646][T10471] </TASK> [ 332.323651][T10471] [ 332.445993][T10471] The buggy address belongs to the virtual mapping at [ 332.445993][T10471] [ffffc9000d1d9000, ffffc9000d25b000) created by: [ 332.445993][T10471] kvrealloc_noprof+0x7d/0xd0 [ 332.452869][T10471] [ 332.453936][T10471] The buggy address belongs to the physical page: [ 332.456627][T10471] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888000000000 pfn:0x696fa [ 332.460711][T10471] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 332.463626][T10471] raw: 04fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 332.467209][T10471] raw: ffff888000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 332.470810][T10471] page dumped because: kasan: bad access detected [ 332.473452][T10471] page_owner tracks the page as allocated [ 332.475926][T10471] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x102cc2(GFP_HIGHUSER|__GFP_NOWARN), pid 10471, tgid 10470 (syz.0.17655), ts 332309641711, free_ts 330048647873 [ 332.483159][T10471] post_alloc_hook+0x181/0x1b0 [ 332.485261][T10471] get_page_from_freelist+0x135c/0x3920 [ 332.487588][T10471] __alloc_frozen_pages_noprof+0x5a8/0x23a0 [ 332.490128][T10471] alloc_pages_mpol+0x1fb/0x550 [ 332.492219][T10471] alloc_pages_noprof+0x131/0x390 [ 332.494351][T10471] __vmalloc_node_range_noprof+0x732/0x1540 [ 332.497128][T10471] __kvmalloc_node_noprof+0x2ff/0x600 [ 332.499691][T10471] kvrealloc_noprof+0x7d/0xd0 [ 332.501901][T10471] push_insn_history+0x2ae/0x6c0 [ 332.504075][T10471] check_mem_access+0x3edc/0x5fb0 [ 332.506136][T10471] check_store_reg+0x2ef/0x470 [ 332.508151][T10471] do_check_common+0x4618/0xc2a0 [ 332.510263][T10471] bpf_check+0x7f51/0xb460 [ 332.512207][T10471] bpf_prog_load+0xe41/0x2490 [ 332.514235][T10471] __sys_bpf+0x433c/0x4d80 [ 332.516158][T10471] __ia32_sys_bpf+0x76/0xe0 [ 332.518108][T10471] page last free pid 65 tgid 65 stack trace: [ 332.520622][T10471] __free_frozen_pages+0x69d/0xff0 [ 332.522855][T10471] vfree+0x176/0x960 [ 332.524532][T10471] delayed_vfree_work+0x56/0x70 [ 332.526627][T10471] process_one_work+0x9cc/0x1b70 [ 332.528640][T10471] worker_thread+0x6c8/0xf10 [ 332.530626][T10471] kthread+0x3c2/0x780 [ 332.532404][T10471] ret_from_fork+0x45/0x80 [ 332.534513][T10471] ret_from_fork_asm+0x1a/0x30 [ 332.536724][T10471] [ 332.537757][T10471] Memory state around the buggy address: [ 332.540107][T10471] ffffc9000d258f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 332.543468][T10471] ffffc9000d258f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 332.546785][T10471] >ffffc9000d259000: 00 00 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 332.550156][T10471] ^ [ 332.552320][T10471] ffffc9000d259080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 332.555714][T10471] ffffc9000d259100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 332.559050][T10471] ================================================================== [ 332.562503][ C1] vkms_vblank_simulate: vblank timer overrun [ 332.628387][T10471] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 332.631634][T10471] CPU: 1 UID: 0 PID: 10471 Comm: syz.0.17655 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 332.636667][T10471] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 332.641258][T10471] Call Trace: [ 332.642720][T10471] <TASK> [ 332.644004][T10471] dump_stack_lvl+0x3d/0x1f0 [ 332.645998][T10471] panic+0x71c/0x800 [ 332.647684][T10471] ? __pfx_panic+0x10/0x10 [ 332.649603][T10471] ? rcu_is_watching+0x12/0xc0 [ 332.651735][T10471] ? preempt_schedule_thunk+0x16/0x30 [ 332.654114][T10471] ? vrealloc_noprof+0x132/0x320 [ 332.656309][T10471] ? preempt_schedule_common+0x44/0xc0 [ 332.658800][T10471] ? vrealloc_noprof+0x132/0x320 [ 332.661209][T10471] check_panic_on_warn+0xab/0xb0 [ 332.663403][T10471] end_report+0x107/0x170 [ 332.665221][T10471] kasan_report+0xee/0x110 [ 332.667128][T10471] ? vrealloc_noprof+0x132/0x320 [ 332.669218][T10471] kasan_check_range+0xef/0x1a0 [ 332.671359][T10471] __asan_memset+0x23/0x50 [ 332.673236][T10471] vrealloc_noprof+0x132/0x320 [ 332.675285][T10471] push_insn_history+0x2ae/0x6c0 [ 332.677363][T10471] do_check_common+0xbd3/0xc2a0 [ 332.679429][T10471] ? __pfx_do_check_common+0x10/0x10 [ 332.681698][T10471] ? __pfx_mark_fastcall_pattern_for_call+0x10/0x10 [ 332.684468][T10471] ? kfree+0x2b6/0x4d0 [ 332.686303][T10471] ? bpf_check+0x6c86/0xb460 [ 332.688358][T10471] ? bpf_check+0x7b2f/0xb460 [ 332.690399][T10471] bpf_check+0x7f51/0xb460 [ 332.692365][T10471] ? __pfx_bpf_check+0x10/0x10 [ 332.694432][T10471] ? pcpu_alloc_noprof+0x949/0x1470 [ 332.696649][T10471] ? __lock_acquire+0xaa4/0x1ba0 [ 332.698759][T10471] ? find_held_lock+0x2b/0x80 [ 332.700851][T10471] ? __asan_memset+0x23/0x50 [ 332.702927][T10471] ? bpf_obj_name_cpy+0x14a/0x1a0 [ 332.705146][T10471] bpf_prog_load+0xe41/0x2490 [ 332.707217][T10471] ? __pfx_bpf_prog_load+0x10/0x10 [ 332.709365][T10471] ? __pfx___futex_wait+0x10/0x10 [ 332.711541][T10471] ? bpf_lsm_bpf+0x9/0x10 [ 332.713384][T10471] __sys_bpf+0x433c/0x4d80 [ 332.715240][T10471] ? __pfx___sys_bpf+0x10/0x10 [ 332.717335][T10471] ? __lock_acquire+0xaa4/0x1ba0 [ 332.719642][T10471] ? do_futex+0x122/0x350 [ 332.721665][T10471] ? __pfx_do_futex+0x10/0x10 [ 332.723653][T10471] ? xfd_validate_state+0x5d/0x180 [ 332.725841][T10471] ? rcu_is_watching+0x12/0xc0 [ 332.727834][T10471] __ia32_sys_bpf+0x76/0xe0 [ 332.729727][T10471] __do_fast_syscall_32+0x73/0x120 [ 332.732014][T10471] do_fast_syscall_32+0x32/0x80 [ 332.734257][T10471] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 332.737077][T10471] RIP: 0023:0xf70ae579 [ 332.738841][T10471] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 332.746668][T10471] RSP: 002b:00000000f509e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 332.750332][T10471] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000700 [ 332.753926][T10471] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000 [ 332.757191][T10471] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 332.760441][T10471] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 332.763763][T10471] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 332.767012][T10471] </TASK> [ 332.769139][T10471] Kernel Offset: disabled [ 332.771120][T10471] Rebooting in 86400 seconds.. VM DIAGNOSIS: 21:48:59 Registers: info registers vcpu 0 CPU#0 RAX=0000000080000000 RBX=0000000000000400 RCX=ffffffff8b36c11a RDX=ffff888020338000 RSI=0000000000000018 RDI=0000000000000004 RBP=0000000000000018 RSP=ffffc9000108fb28 R8 =0000000000000004 R9 =0000000000000018 R10=0000000000000400 R11=0000000000000000 R12=0000000000000001 R13=0000000000000000 R14=0000000000000000 R15=dffffc0000000000 RIP=ffffffff81ba969c RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880977ec000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000005735f4a8 CR3=000000004b6bc000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000066 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff854c18f5 RDI=ffffffff9addfbc0 RBP=ffffffff9addfb80 RSP=ffffc90007ef6f00 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000074697257 R12=0000000000000000 R13=0000000000000066 R14=ffffffff9addfb80 R15=ffffffff854c1890 RIP=ffffffff854c191f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880978ec000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f7f769cc CR3=0000000057b17000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000000 RBX=000000006298b043 RCX=ffffffff84d35774 RDX=ffff888024388000 RSI=ffffffff84d35705 RDI=ffff88807776ddd7 RBP=ffff88807776ddd8 RSP=ffffc90002def1c0 R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000229 R11=0000000000000000 R12=dffffc0000000000 R13=0000000000000228 R14=0000000098b04300 R15=ffffc90002def448 RIP=ffffffff84d35713 RFL=00000a86 [-OS--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f454933f300 ffffffff 00c00000 GS =0000 ffff8880979ec000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055bff9c01000 CR3=000000004eb61000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000000 RBX=ffffffff8e3bf440 RCX=00000000ff2344d8 RDX=0000000000000000 RSI=0000000000000000 RDI=0000000000000001 RBP=ffff88805a8c4680 RSP=ffffc900021c6d80 R8 =4e4450ddd5b2e78e R9 =0000000000000000 R10=0000000000000002 R11=0000000000000000 R12=ffffffff8226f0b7 R13=0000000000000206 R14=ffff8880446c0000 R15=0000000000000001 RIP=ffffffff819794af RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097aec000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f7f755c0 CR3=0000000057b17000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000