last executing test programs: 1m31.251705056s ago: executing program 2 (id=23856): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000140), 0x10) sendmsg$can_bcm(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="06"], 0x48}, 0x1, 0x0, 0x0, 0x4000011}, 0x2004c800) 1m31.200572224s ago: executing program 2 (id=23861): capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff}) r0 = semget$private(0x0, 0x6, 0x0) semctl$SETVAL(r0, 0x3, 0x10, 0x0) 1m31.13705158s ago: executing program 2 (id=23863): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r0) sendmsg$NFC_CMD_DEV_UP(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x14, r1, 0x1, 0x124, 0x234}, 0x14}}, 0x0) 1m31.072863815s ago: executing program 2 (id=23865): r0 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e21, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x2000002}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}}, 0x1c) 1m31.012064223s ago: executing program 2 (id=23867): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) 1m31.011539921s ago: executing program 2 (id=23870): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000}) writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="16", 0x1}], 0x1) 1m14.923478524s ago: executing program 32 (id=23870): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000}) writev(r0, &(0x7f0000000000)=[{&(0x7f0000000100)="16", 0x1}], 0x1) 1.968358821s ago: executing program 3 (id=25885): r0 = userfaultfd(0x801) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x280}) ioctl$UFFDIO_WRITEPROTECT(r0, 0xc018aa06, &(0x7f00000000c0)={{&(0x7f000040a000/0x800000)=nil, 0x800000}, 0x1}) 1.967913822s ago: executing program 3 (id=25886): ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000000300)={0x52, 0x0, 0x8, {0x0, 0x1}, {0x74, 0x2}, @cond=[{0x283, 0xfff, 0x9, 0x1, 0x400, 0x401}, {0x400, 0x2, 0x5, 0x6, 0x4, 0x200}]}) r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x822b01) write$char_usb(r0, &(0x7f0000000040)="e2", 0xff0f) 1.865136199s ago: executing program 3 (id=25890): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="12000000040000000400000008"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xd, &(0x7f0000000f80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000850000000700000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x4002000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 977.585507ms ago: executing program 3 (id=25903): r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_PKTINFO(r0, 0x10e, 0xc, &(0x7f0000000040)=0x8, 0x4) sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)=ANY=[@ANYBLOB="2800000012000100"/20, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=r0], 0x28}}, 0x802) 869.459977ms ago: executing program 3 (id=25899): setresuid(0xee01, 0xee00, 0x0) setfsuid(0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) 867.462423ms ago: executing program 3 (id=25902): r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000740)=ANY=[@ANYBLOB="120100000cb768405e0483020b990102030109021b000100000000090400000101290000090519"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_open_dev$audion(&(0x7f00000011c0), 0x3, 0x8c4201) 461.460834ms ago: executing program 1 (id=25924): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000300), 0xffffffffffffffff) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000100)={0x80, r1, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_PEERS={0x58, 0x8, 0x0, 0x1, [{0x54, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0x4}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @c_g}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e23, 0x1, @loopback, 0x1ff}}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x2}]}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x44001}, 0x4c020) 422.263529ms ago: executing program 1 (id=25928): timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) syz_open_dev$dvb_frontend(&(0x7f00000004c0), 0x0, 0x413f) 319.222728ms ago: executing program 4 (id=25933): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'macsec0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000480)=ANY=[@ANYBLOB="5000000010000104fcfffffd8000000000000000", @ANYRES32=r1, @ANYBLOB="4312000000000000280012800b0001006d616373656300001800028005000900000000000c0001"], 0x50}, 0x1, 0x0, 0x0, 0x2004d808}, 0x0) 305.569265ms ago: executing program 4 (id=25935): r0 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c0000005e00679a3601ffc4910700004f78d4c1a0731cccff"], 0x1c}}, 0x0) recvmmsg$unix(r0, &(0x7f0000002380)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) 304.414105ms ago: executing program 1 (id=25941): r0 = socket$key(0xf, 0x3, 0x2) mmap(&(0x7f0000003000/0x3000)=nil, 0x3000, 0xa964c761d5ec79d0, 0x13, r0, 0xcee93000) capset(&(0x7f0000002ffa)={0x19980330}, 0x0) 249.664892ms ago: executing program 0 (id=25936): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r0, 0x5452, &(0x7f0000000180)=0xffffffffffffffff) shutdown(r1, 0x1) 248.123263ms ago: executing program 4 (id=25937): r0 = socket$inet6(0xa, 0x800000000000002, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000340)=0x63ba, 0x4) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000001c0)=0x10, 0x4) 196.322287ms ago: executing program 0 (id=25946): r0 = getpgrp(0x0) r1 = syz_pidfd_open(r0, 0x0) fsetxattr$trusted_overlay_nlink(r1, &(0x7f00000018c0), 0x0, 0x0, 0x1) 196.04639ms ago: executing program 1 (id=25938): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5021900000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_OFFSET={0x8, 0x3, 0x1, 0x0, 0x4a}, @NFTA_EXTHDR_OP={0x8, 0x6, 0x1, 0x0, 0x1}]}}}]}]}], {0x14}}, 0x7c}}, 0x0) 195.821561ms ago: executing program 4 (id=25939): r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0) ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0) ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'aio_iiro_16\x00', [0x24, 0x8, 0x3, 0x10, 0x0, 0xcc7, 0xc9, 0x3, 0x103, 0x400, 0x802, 0x2, 0x1, 0x6, 0x1ff, 0x0, 0x0, 0x1ffffd, 0xfffffff4, 0x2, 0x0, 0xfffffffd, 0xfffffffe, 0xfffffff5, 0x4, 0x0, 0x7ff, 0xf, 0xfffffffd, 0xa000000, 0x4]}) 195.687144ms ago: executing program 0 (id=25940): open(&(0x7f0000000100)='./bus\x00', 0x24040, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) utime(&(0x7f0000000a40)='./bus\x00', 0x0) 194.093471ms ago: executing program 4 (id=25942): r0 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'sit0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=@ipv6_newnexthop={0x40, 0x68, 0x1, 0x0, 0x25dfdbfd, {}, [@NHA_ENCAP_TYPE={0x6, 0x7, 0x3}, @NHA_OIF={0x8, 0x5, r1}, @NHA_ENCAP={0x18, 0x8, 0x0, 0x1, @SEG6_IPTUNNEL_SRH={0x14, 0x1, {{0x0, {0x35, 0x0, 0x4, 0x0, 0x7b, 0x10, 0x6fb5}}}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x4008081}, 0x0) 108.575844ms ago: executing program 4 (id=25943): timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) syz_open_dev$dvb_frontend(&(0x7f00000004c0), 0x0, 0x413f) 108.420608ms ago: executing program 0 (id=25944): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f00000000c0), 0x10) sendmsg$can_bcm(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="0400"/16, @ANYRES64=0x0, @ANYRES64=0x2710, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="0000000001"], 0x48}}, 0x0) 106.482519ms ago: executing program 1 (id=25952): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x1f, 0xd, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x80}, [@call={0x85, 0x0, 0x0, 0xa8}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x20000002}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0xa6}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) 27.298056ms ago: executing program 0 (id=25945): mkdir(&(0x7f0000000400)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8c, 0x0) mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000500)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) 25.824135ms ago: executing program 1 (id=25955): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB="1400000042000501"], 0x14}}, 0x44014) recvmmsg(r0, &(0x7f0000000000)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000004c0)=""/4091, 0xffb}, {&(0x7f0000002580)=""/4096}, {&(0x7f00000014c0)=""/155}, {&(0x7f00000024c0)=""/170}], 0x1}}], 0x40000000000013e, 0x2, 0x0) 0s ago: executing program 0 (id=25947): r0 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c0000005e00679a3601ffc4910700004f78d4c1a0731cccff"], 0x1c}}, 0x0) recvmmsg$unix(r0, &(0x7f0000002380)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) kernel console output (not intermixed with test programs): nown main item tag 0x0 [ 494.001292][ T59] hid-generic 0000:0000:0000.000B: hidraw0: HID v0.00 Device [syz0] on syz0 [ 494.110062][T23315] fido_id[23315]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 494.124063][T23319] netlink: 24 bytes leftover after parsing attributes in process `syz.1.23940'. [ 495.208142][T23352] netlink: 4 bytes leftover after parsing attributes in process `syz.0.23962'. [ 496.054029][T23362] netlink: 'syz.0.23956': attribute type 7 has an invalid length. [ 496.057809][T23362] netlink: 'syz.0.23956': attribute type 8 has an invalid length. [ 496.126887][ T830] hid-generic 000F:FFFFFFFA:0009.000C: unknown main item tag 0x5 [ 496.130436][ T830] hid-generic 000F:FFFFFFFA:0009.000C: hidraw0: HID v0.02 Device [syz0] on syz1 [ 496.144061][T23368] autofs: Bad value for 'fd' [ 496.173645][T23369] fido_id[23369]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 496.459902][T23381] netlink: 4 bytes leftover after parsing attributes in process `syz.0.23967'. [ 496.778137][ T40] kauditd_printk_skb: 58 callbacks suppressed [ 496.778153][ T40] audit: type=1326 audit(469.685:22974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23390 comm="syz.1.23981" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703ef6c code=0x7ffc0000 [ 496.801010][ T40] audit: type=1326 audit(469.695:22975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23390 comm="syz.1.23981" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703ef6c code=0x7ffc0000 [ 496.811034][ T40] audit: type=1326 audit(469.695:22976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23390 comm="syz.1.23981" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703ef6c code=0x7ffc0000 [ 496.820238][ T40] audit: type=1326 audit(469.695:22977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23390 comm="syz.1.23981" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703ef6c code=0x7ffc0000 [ 496.837462][ T40] audit: type=1326 audit(469.695:22978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23390 comm="syz.1.23981" exe="/syz-executor" sig=0 arch=40000003 syscall=270 compat=1 ip=0xf703ef6c code=0x7ffc0000 [ 496.846099][ T40] audit: type=1326 audit(469.695:22979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23390 comm="syz.1.23981" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703ef6c code=0x7ffc0000 [ 496.869291][ T40] audit: type=1326 audit(469.695:22980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23390 comm="syz.1.23981" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703ef6c code=0x7ffc0000 [ 496.877945][ T40] audit: type=1326 audit(469.713:22981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23390 comm="syz.1.23981" exe="/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf703ef6c code=0x7ffc0000 [ 496.889475][ T40] audit: type=1326 audit(469.713:22982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23390 comm="syz.1.23981" exe="/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf703ef6c code=0x7ffc0000 [ 497.399177][T23416] netlink: 296 bytes leftover after parsing attributes in process `syz.0.23983'. [ 497.828463][ T29] kernel read not supported for file /media0 (pid: 29 comm: kworker/1:0) [ 498.469496][T23479] sg_write: data in/out 41084/1 bytes for SCSI command 0x1c-- guessing data in; [ 498.469496][T23479] program syz.3.24013 not setting count and/or reply_len properly [ 498.537949][T23481] IPVS: Scheduler module ip_vs_sip not found [ 500.117204][T23529] autofs: Bad value for 'fd' [ 500.468082][T23543] netlink: 28 bytes leftover after parsing attributes in process `syz.0.24054'. [ 501.247634][T23578] netem: change failed [ 502.465604][T23612] CUSE: unknown device info "" [ 502.467745][T23612] CUSE: unknown device info "" [ 502.470315][T23612] CUSE: unknown device info "" [ 502.472544][T23612] CUSE: unknown device info "" [ 502.475170][T23612] CUSE: unknown device info "" [ 502.479396][T23612] CUSE: unknown device info "" [ 502.482778][T23612] CUSE: unknown device info "" [ 502.484856][T23612] CUSE: unknown device info "" [ 502.486873][T23612] CUSE: unknown device info "" [ 502.488873][T23612] CUSE: unknown device info "#" [ 502.491623][T23612] CUSE: unknown device info "" [ 502.493823][T23612] CUSE: unknown device info "" [ 502.495867][T23612] CUSE: unknown device info "" [ 502.497888][T23612] CUSE: DEVNAME unspecified [ 502.546323][T23616] tipc: Started in network mode [ 502.548736][T23616] tipc: Node identity , cluster identity 4711 [ 502.551391][T23616] tipc: Failed to set node id, please configure manually [ 502.554947][T23616] tipc: Enabling of bearer rejected, failed to enable media [ 502.714521][ T843] usb 6-1: new high-speed USB device number 22 using dummy_hcd [ 502.875190][ T843] usb 6-1: Using ep0 maxpacket: 8 [ 502.880127][ T843] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 502.883336][ T843] usb 6-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30 [ 502.889355][ T843] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 502.895171][ T843] usb 6-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 502.903233][ T843] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 502.910840][ T843] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 502.916390][ T843] usb 6-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100 [ 502.922368][ T843] usb 6-1: config 168 interface 0 has no altsetting 0 [ 502.927666][ T843] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 502.931677][ T843] usb 6-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30 [ 502.936363][ T843] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 502.941320][ T843] usb 6-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 502.946353][ T843] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 502.952493][ T843] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 502.957758][ T843] usb 6-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100 [ 502.963669][ T843] usb 6-1: config 168 interface 0 has no altsetting 0 [ 502.967662][ T843] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 502.972271][ T843] usb 6-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30 [ 502.978399][ T843] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 502.983385][ T843] usb 6-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 502.988124][ T843] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 502.993882][ T843] usb 6-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 502.999303][ T843] usb 6-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100 [ 503.006407][ T843] usb 6-1: config 168 interface 0 has no altsetting 0 [ 503.010048][T23634] netlink: 80 bytes leftover after parsing attributes in process `syz.0.24087'. [ 503.013254][ T843] usb 6-1: string descriptor 0 read error: -22 [ 503.016762][ T843] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 503.020424][ T843] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 503.038648][ T843] adutux 6-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 503.124366][ T843] hid-generic FFFF:0008:0003.000D: item fetching failed at offset 0/1 [ 503.127433][ T843] hid-generic FFFF:0008:0003.000D: probe with driver hid-generic failed with error -22 [ 503.136779][T23644] max out of range [ 503.271737][ T7140] usb 6-1: USB disconnect, device number 22 [ 503.851487][T23650] tipc: Started in network mode [ 503.853078][T23650] tipc: Node identity , cluster identity 511 [ 503.855182][T23650] tipc: Failed to set node id, please configure manually [ 503.858331][T23650] tipc: Enabling of bearer rejected, failed to enable media [ 503.956155][T23658] netlink: 8 bytes leftover after parsing attributes in process `syz.3.24100'. [ 504.652502][T23720] program syz.0.24130 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 505.434244][ T40] audit: type=1326 audit(477.780:22983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23746 comm="syz.3.24143" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f05f6c code=0x0 [ 505.457284][T23751] syz.0.24151 (23751): drop_caches: 2 [ 506.652815][ T63] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 506.660016][ T63] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 506.665246][ T63] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 506.672014][ T63] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 506.678204][ T63] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 506.731798][T23797] wg1 speed is unknown, defaulting to 1000 [ 506.736398][T23797] wg1 speed is unknown, defaulting to 1000 [ 506.740360][T23797] lo speed is unknown, defaulting to 1000 [ 507.346094][ T361] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 20001 - 0 [ 507.550378][ T361] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 20001 - 0 [ 507.603481][T23797] chnl_net:caif_netlink_parms(): no params data found [ 507.729346][ T361] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 20001 - 0 [ 507.786667][T23797] bridge0: port 1(bridge_slave_0) entered blocking state [ 507.789847][T23797] bridge0: port 1(bridge_slave_0) entered disabled state [ 507.794316][T23797] bridge_slave_0: entered allmulticast mode [ 507.797185][T23797] bridge_slave_0: entered promiscuous mode [ 507.800531][T23797] bridge0: port 2(bridge_slave_1) entered blocking state [ 507.803271][T23797] bridge0: port 2(bridge_slave_1) entered disabled state [ 507.805673][T23797] bridge_slave_1: entered allmulticast mode [ 507.808525][T23797] bridge_slave_1: entered promiscuous mode [ 507.827786][T23797] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 507.929836][ T361] netdevsim netdevsim2 netdevsim0 (unregistering): left allmulticast mode [ 507.933935][ T361] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 20001 - 0 [ 507.986004][T23797] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 508.004507][T23797] team0: Port device team_slave_0 added [ 508.009113][T23797] team0: Port device team_slave_1 added [ 508.023010][T23797] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 508.025431][T23797] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 508.034353][T23797] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 508.039062][T23797] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 508.041321][T23797] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 508.049494][T23797] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 508.075786][T23797] hsr_slave_0: entered promiscuous mode [ 508.078229][T23797] hsr_slave_1: entered promiscuous mode [ 508.080529][T23797] debugfs: 'hsr0' already exists in 'hsr' [ 508.082635][T23797] Cannot create hsr debugfs directory [ 508.482463][T23797] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 508.556706][T23797] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 508.606729][T23797] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 508.627339][ T361] bond0: left allmulticast mode [ 508.630343][ T361] mac80211_hwsim hwsim8 .: left allmulticast mode [ 508.633436][ T361] bond0: left promiscuous mode [ 508.640063][ T361] bridge0: port 1(bond0) entered disabled state [ 508.848334][ T63] Bluetooth: hci4: command tx timeout [ 509.770716][ T361] dvmrp9 (unregistering): left allmulticast mode [ 511.071064][ T63] Bluetooth: hci4: command tx timeout [ 511.135567][ T361] bond0 (unregistering): (slave .): Releasing backup interface [ 511.178726][ T361] bond0 (unregistering): Released all slaves [ 511.184217][ T361] bond1 (unregistering): Released all slaves [ 511.196106][ T361] bond2 (unregistering): Released all slaves [ 511.207617][ T361] bond3 (unregistering): Released all slaves [ 511.219293][ T361] bond4 (unregistering): Released all slaves [ 511.232847][ T361] bond5 (unregistering): Released all slaves [ 511.247103][ T361] bond6 (unregistering): Released all slaves [ 511.263094][ T361] bond7 (unregistering): Released all slaves [ 511.283071][ T361] bond8 (unregistering): Released all slaves [ 511.295400][ T361] bond9 (unregistering): Released all slaves [ 511.360419][T23797] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 511.416256][ T361] !: left promiscuous mode [ 511.543869][ T361] : left promiscuous mode [ 511.660330][T23797] 8021q: adding VLAN 0 to HW filter on device bond0 [ 511.668206][T23797] 8021q: adding VLAN 0 to HW filter on device team0 [ 511.676803][ T1195] bridge0: port 1(bridge_slave_0) entered blocking state [ 511.680535][ T1195] bridge0: port 1(bridge_slave_0) entered forwarding state [ 511.696812][ T1195] bridge0: port 2(bridge_slave_1) entered blocking state [ 511.700418][ T1195] bridge0: port 2(bridge_slave_1) entered forwarding state [ 511.901447][T23797] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 512.200644][T23797] veth0_vlan: entered promiscuous mode [ 512.211311][T23797] veth1_vlan: entered promiscuous mode [ 512.280998][T23797] veth0_macvtap: entered promiscuous mode [ 512.287330][T23797] veth1_macvtap: entered promiscuous mode [ 512.462644][T23797] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 512.473504][T23797] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 512.482345][ T60] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 512.486361][ T60] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 512.493295][ T60] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 512.497046][ T60] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 513.070225][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 513.074183][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 513.137217][ T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 513.140919][ T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 513.293717][ T63] Bluetooth: hci4: command tx timeout [ 513.499204][T23865] netlink: 'syz.4.24161': attribute type 1 has an invalid length. [ 513.796521][ T9] kernel write not supported for file /radio3 (pid: 9 comm: kworker/0:0) [ 513.956283][T23911] netlink: 12 bytes leftover after parsing attributes in process `syz.4.24189'. [ 514.283872][T23937] loop2: detected capacity change from 0 to 7 [ 514.295238][ C3] blk_print_req_error: 10 callbacks suppressed [ 514.295259][ C3] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 514.300567][ C3] buffer_io_error: 10 callbacks suppressed [ 514.300580][ C3] Buffer I/O error on dev loop2, logical block 0, async page read [ 514.307699][ C3] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 514.310990][ C3] Buffer I/O error on dev loop2, logical block 0, async page read [ 514.313939][ C1] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 514.317608][ C1] Buffer I/O error on dev loop2, logical block 0, async page read [ 514.330269][ C1] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 514.334001][ C1] Buffer I/O error on dev loop2, logical block 0, async page read [ 514.337530][ C3] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 514.341497][ C3] Buffer I/O error on dev loop2, logical block 0, async page read [ 514.345179][ C3] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 514.349183][ C3] Buffer I/O error on dev loop2, logical block 0, async page read [ 514.363673][ C0] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 514.367825][ C0] Buffer I/O error on dev loop2, logical block 0, async page read [ 514.372306][T23859] ldm_validate_partition_table(): Disk read failed. [ 514.376619][ C3] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 514.380264][ C3] Buffer I/O error on dev loop2, logical block 0, async page read [ 514.383326][ C3] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 514.387497][ C3] Buffer I/O error on dev loop2, logical block 0, async page read [ 514.392911][ C3] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 514.397438][ C3] Buffer I/O error on dev loop2, logical block 0, async page read [ 514.400207][T23859] Dev loop2: unable to read RDB block 0 [ 514.403297][T23859] loop2: unable to read partition table [ 514.408068][T23859] loop2: partition table beyond EOD, truncated [ 514.421865][T23937] ldm_validate_partition_table(): Disk read failed. [ 514.424421][T23937] Dev loop2: unable to read RDB block 0 [ 514.427215][T23937] loop2: unable to read partition table [ 514.429237][T23937] loop2: partition table beyond EOD, truncated [ 514.431397][T23937] loop_reread_partitions: partition scan of loop2 (被x ) failed (rc=-5) [ 514.918213][ T361] hsr_slave_1: left promiscuous mode [ 514.984277][T23993] netlink: 8 bytes leftover after parsing attributes in process `syz.1.24228'. [ 514.987273][T23993] netlink: 4 bytes leftover after parsing attributes in process `syz.1.24228'. [ 514.990233][T23993] netlink: 'syz.1.24228': attribute type 7 has an invalid length. [ 514.992838][T23993] netlink: 'syz.1.24228': attribute type 13 has an invalid length. [ 515.014767][ T361] veth1_vlan: left allmulticast mode [ 515.159218][ T361] pimreg (unregistering): left allmulticast mode [ 515.516414][ T63] Bluetooth: hci4: command tx timeout [ 516.226418][ T361] pim6reg (unregistering): left allmulticast mode [ 516.776293][T24039] fuse: blksize only supported for fuseblk [ 516.808045][T24041] netlink: 68 bytes leftover after parsing attributes in process `syz.1.24254'. [ 516.931510][T24051] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 516.956308][T24053] netlink: 40 bytes leftover after parsing attributes in process `syz.0.24255'. [ 517.154829][T24069] Cannot find add_set index 46338 as target [ 517.775708][ T361] IPVS: stop unused estimator thread 0... [ 517.833594][T24112] loop7: detected capacity change from 0 to 7 [ 517.911717][T24112] Dev loop7: unable to read RDB block 7 [ 517.914475][T24112] loop7: unable to read partition table [ 517.918111][T24112] loop7: partition table beyond EOD, truncated [ 517.921994][T24112] loop_reread_partitions: partition scan of loop7 (Cj̖P=ý?}X %`ր{֐ȵ4FLQk݊) failed (rc=-5) [ 518.022937][ T1113] ata1.00: exception Emask 0x0 SAct 0x0 SErr 0x0 action 0x0 [ 518.026491][ T1113] ata1.00: irq_stat 0x40000000 [ 518.031471][ T1113] ata1.00: failed command: ZAC MANAGEMENT OUT [ 518.034182][ T1113] ata1.00: cmd 9f/02:00:00:00:00/01:00:00:00:00/40 tag 3 nodata 0 out [ 518.034182][ T1113] res 41/04:00:00:00:00/00:00:00:00:00/40 Emask 0x1 (device error) [ 518.049393][ T1113] ata1.00: status: { DRDY ERR } [ 518.056095][ T1113] ata1.00: error: { ABRT } [ 518.057607][ T1113] ata1.00: device reported invalid CHS sector 0 [ 518.095335][T24133] netlink: 8 bytes leftover after parsing attributes in process `syz.4.24292'. [ 518.151946][T24137] netlink: 8 bytes leftover after parsing attributes in process `syz.1.24295'. [ 518.383205][T24164] netlink: 20 bytes leftover after parsing attributes in process `syz.1.24308'. [ 518.630871][T24188] mkiss: ax0: crc mode is auto. [ 519.076619][T24219] CUSE: DEVNAME unspecified [ 519.329236][T24240] netlink: 8 bytes leftover after parsing attributes in process `syz.3.24343'. [ 519.333547][T24240] netlink: 16 bytes leftover after parsing attributes in process `syz.3.24343'. [ 519.556028][ T12] Bluetooth: hci1: Frame reassembly failed (-84) [ 519.567263][ T361] Bluetooth: hci1: Frame reassembly failed (-84) [ 520.303813][ T5300] Bluetooth: hci4: command tx timeout [ 520.860229][ T1113] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1 [ 520.863392][ T1113] ata1: failed to read log page 10h (errno=-5) [ 520.866037][ T1113] ata1.00: exception Emask 0x1 SAct 0x200000 SErr 0x0 action 0x0 [ 520.870203][ T1113] ata1.00: irq_stat 0x40000000 [ 520.872500][ T1113] ata1.00: failed command: WRITE FPDMA QUEUED [ 520.875293][ T1113] ata1.00: cmd 61/18:a8:2e:13:10/00:00:00:00:00/40 tag 21 ncq dma 12288 out [ 520.875293][ T1113] res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error) [ 520.882882][ T1113] ata1.00: status: { DRDY } [ 520.884857][ T1113] ata1.00: error: { ABRT } [ 520.887804][ T1113] ata1.00: configured for UDMA/100 [ 520.890451][ T1113] ata1: EH complete [ 521.145905][T24307] RDS: rds_bind could not find a transport for fe88::101, load rds_tcp or rds_rdma? [ 521.757178][ T63] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 521.823194][T24314] netlink: 4 bytes leftover after parsing attributes in process `syz.1.24374'. [ 521.866740][T24318] binder: 24317:24318 ioctl 400c620e 800002c0 returned -22 [ 522.149379][T24351] netlink: 8 bytes leftover after parsing attributes in process `syz.0.24394'. [ 523.975203][T15826] hid-generic 0006:0009:0000.000E: unknown main item tag 0x4 [ 523.990850][T15826] hid-generic 0006:0009:0000.000E: hidraw0: VIRTUAL HID v0.05 Device [syz1] on syz0 [ 524.165632][T24444] fido_id[24444]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 524.430530][T24495] netlink: 220 bytes leftover after parsing attributes in process `syz.4.24466'. [ 524.433418][T24495] netlink: 8 bytes leftover after parsing attributes in process `syz.4.24466'. [ 524.687903][T24514] netlink: 36 bytes leftover after parsing attributes in process `syz.0.24473'. [ 524.773564][ T843] Process accounting resumed [ 524.799347][T24518] Process accounting resumed [ 525.092075][ T9] usb 5-1: new high-speed USB device number 21 using dummy_hcd [ 525.166125][ T40] audit: type=1326 audit(496.253:22984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24560 comm="syz.3.24488" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f05f6c code=0x7ffc0000 [ 525.173333][ T40] audit: type=1326 audit(496.253:22985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24560 comm="syz.3.24488" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f05f6c code=0x7ffc0000 [ 525.180837][ T40] audit: type=1326 audit(496.253:22986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24560 comm="syz.3.24488" exe="/syz-executor" sig=0 arch=40000003 syscall=120 compat=1 ip=0xf7f05f6c code=0x7ffc0000 [ 525.188145][ T40] audit: type=1326 audit(496.271:22987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24560 comm="syz.3.24488" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f05f6c code=0x7ffc0000 [ 525.195046][ T40] audit: type=1326 audit(496.271:22988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24563 comm="syz.3.24488" exe="/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf7105cab code=0x7ffc0000 [ 525.205002][ T40] audit: type=1326 audit(496.271:22989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24560 comm="syz.3.24488" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f05f6c code=0x7ffc0000 [ 525.219872][ T40] audit: type=1326 audit(496.300:22990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24560 comm="syz.3.24488" exe="/syz-executor" sig=0 arch=40000003 syscall=284 compat=1 ip=0xf7f05f6c code=0x7ffc0000 [ 525.252836][ T9] usb 5-1: Using ep0 maxpacket: 32 [ 525.256027][ T9] usb 5-1: config index 0 descriptor too short (expected 156, got 27) [ 525.258830][ T9] usb 5-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 525.272694][ T9] usb 5-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 525.282545][ T9] usb 5-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 525.297773][ T9] usb 5-1: config 0 interface 0 has no altsetting 0 [ 525.302893][ T9] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 525.308996][ T9] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 525.312676][ T9] usb 5-1: Product: syz [ 525.314507][ T9] usb 5-1: Manufacturer: syz [ 525.317155][ T9] usb 5-1: SerialNumber: syz [ 525.326991][ T9] usb 5-1: config 0 descriptor?? [ 525.334141][ T9] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 525.341773][ T9] ldusb 5-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 525.345096][ T40] audit: type=1326 audit(496.412:22991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24563 comm="syz.3.24488" exe="/syz-executor" sig=0 arch=40000003 syscall=1 compat=1 ip=0xf7f05f6c code=0x7ffc0000 [ 525.381244][ T40] audit: type=1326 audit(496.449:22992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24560 comm="syz.3.24488" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f05f88 code=0x7ffc0000 [ 525.390344][ T40] audit: type=1326 audit(496.449:22993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24560 comm="syz.3.24488" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f05f6c code=0x7ffc0000 [ 525.529034][T24578] netlink: 4 bytes leftover after parsing attributes in process `syz.3.24492'. [ 525.535671][T24578] netlink: 4 bytes leftover after parsing attributes in process `syz.3.24492'. [ 525.559459][ T39] usb 5-1: USB disconnect, device number 21 [ 525.566296][ T39] ldusb 5-1:0.0: LD USB Device #0 now disconnected [ 525.601110][T24582] xt_l2tp: missing protocol rule (udp|l2tpip) [ 525.874645][T24609] netlink: 52 bytes leftover after parsing attributes in process `syz.1.24502'. [ 525.879078][T24609] tipc: Invalid UDP bearer configuration [ 525.879107][T24609] tipc: Enabling of bearer rejected, failed to enable media [ 526.249767][T24658] netlink: 16 bytes leftover after parsing attributes in process `syz.0.24520'. [ 526.594274][ T9] kernel read not supported for file /media0 (pid: 9 comm: kworker/0:0) [ 526.845353][T24741] netlink: 12 bytes leftover after parsing attributes in process `syz.1.24549'. [ 527.889883][T24768] netlink: 80 bytes leftover after parsing attributes in process `syz.1.24559'. [ 528.047362][T24782] max out of range [ 529.003048][T24826] loop4: detected capacity change from 0 to 7 [ 529.018501][T24826] loop4: [CUMANA/ADFS] p1 [ADFS] p1 [ 529.020369][T24826] loop4: partition table partially beyond EOD, truncated [ 529.024689][T24826] loop4: p1 size 2989602745 extends beyond EOD, truncated [ 529.041092][ T5349] loop4: [CUMANA/ADFS] p1 [ADFS] p1 [ 529.043293][ T5349] loop4: partition table partially beyond EOD, truncated [ 529.046851][ T5349] loop4: p1 size 2989602745 extends beyond EOD, truncated [ 529.086946][T23859] udevd[23859]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 529.099962][T23859] udevd[23859]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 530.606506][ T843] libceph: connect (1)[c::]:6789 error -101 [ 530.608763][ T843] libceph: mon0 (1)[c::]:6789 connect error [ 530.739377][T24872] netlink: 'syz.1.24608': attribute type 1 has an invalid length. [ 530.744031][T24872] netlink: 96 bytes leftover after parsing attributes in process `syz.1.24608'. [ 530.747066][T24872] netlink: 1 bytes leftover after parsing attributes in process `syz.1.24608'. [ 530.750175][T24872] netlink: 'syz.1.24608': attribute type 1 has an invalid length. [ 530.753258][T24872] netlink: 634 bytes leftover after parsing attributes in process `syz.1.24608'. [ 530.825113][ T40] kauditd_printk_skb: 10 callbacks suppressed [ 530.825126][ T40] audit: type=1326 audit(501.540:23004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24879 comm="syz.4.24613" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fa7f6c code=0x0 [ 530.883052][ T843] libceph: connect (1)[c::]:6789 error -101 [ 530.885161][ T843] libceph: mon0 (1)[c::]:6789 connect error [ 531.346986][T24854] ceph: No mds server is up or the cluster is laggy [ 532.928392][T24926] netlink: 12 bytes leftover after parsing attributes in process `syz.3.24633'. [ 532.980591][ T9] kernel write not supported for file /radio7 (pid: 9 comm: kworker/0:0) [ 533.812947][T25013] netlink: 100 bytes leftover after parsing attributes in process `syz.1.24676'. [ 535.780022][T25144] vivid-007: disconnect [ 535.783798][T25135] vivid-007: reconnect [ 535.999607][T25166] fuse: blksize only supported for fuseblk [ 536.026106][T25168] netlink: 252 bytes leftover after parsing attributes in process `syz.1.24748'. [ 536.444281][T25179] netlink: 40 bytes leftover after parsing attributes in process `syz.3.24749'. [ 539.333112][ T5349] udevd invoked oom-killer: gfp_mask=0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), order=0, oom_score_adj=-1000 [ 539.346256][ T5349] CPU: 1 UID: 0 PID: 5349 Comm: udevd Tainted: G L syzkaller #0 PREEMPT(full) [ 539.346286][ T5349] Tainted: [L]=SOFTLOCKUP [ 539.346292][ T5349] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 539.346302][ T5349] Call Trace: [ 539.346309][ T5349] [ 539.346317][ T5349] dump_stack_lvl+0x100/0x190 [ 539.346347][ T5349] dump_header+0xfb/0x606 [ 539.346367][ T5349] oom_kill_process.cold+0xd/0x330 [ 539.346388][ T5349] out_of_memory+0x340/0x14f0 [ 539.346420][ T5349] ? __pfx_out_of_memory+0x10/0x10 [ 539.346452][ T5349] __alloc_frozen_pages_noprof+0x233d/0x2ba0 [ 539.346489][ T5349] ? workingset_refault+0x477/0xf60 [ 539.346505][ T5349] ? workingset_refault+0x477/0xf60 [ 539.346522][ T5349] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 539.346553][ T5349] ? __lock_acquire+0x4a5/0x2630 [ 539.346584][ T5349] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 539.346604][ T5349] ? policy_nodemask+0xed/0x4f0 [ 539.346626][ T5349] alloc_pages_mpol+0x1fb/0x550 [ 539.346650][ T5349] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 539.346669][ T5349] ? swap_entry_swapped+0x1ff/0x2b0 [ 539.346687][ T5349] ? __pfx_swap_entry_swapped+0x10/0x10 [ 539.346709][ T5349] folio_alloc_mpol_noprof+0x36/0x340 [ 539.346732][ T5349] swap_cache_alloc_folio+0x1a8/0x300 [ 539.346757][ T5349] ? __pfx_swap_cache_alloc_folio+0x10/0x10 [ 539.346784][ T5349] ? __lock_acquire+0x4a5/0x2630 [ 539.346807][ T5349] swap_cluster_readahead+0x411/0x770 [ 539.346838][ T5349] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 539.346862][ T5349] ? find_held_lock+0x2b/0x80 [ 539.346882][ T5349] ? mark_held_locks+0x40/0x70 [ 539.346911][ T5349] ? get_vma_policy+0x23d/0x3b0 [ 539.346933][ T5349] swapin_readahead+0x160/0x12c0 [ 539.346964][ T5349] ? __pfx_swapin_readahead+0x10/0x10 [ 539.346986][ T5349] ? find_held_lock+0x2b/0x80 [ 539.347002][ T5349] ? swap_table_get+0x103/0x2c0 [ 539.347023][ T5349] ? swap_table_get+0x103/0x2c0 [ 539.347048][ T5349] ? swap_table_get+0x10d/0x2c0 [ 539.347071][ T5349] ? swap_cache_get_folio+0x1ae/0x600 [ 539.347095][ T5349] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 539.347116][ T5349] ? __pfx_get_swap_device+0x10/0x10 [ 539.347139][ T5349] ? do_swap_page+0xb2e/0x6900 [ 539.347160][ T5349] do_swap_page+0xb2e/0x6900 [ 539.347188][ T5349] ? __page_table_check_ptes_set+0x1b5/0x4e0 [ 539.347205][ T5349] ? xas_move_index+0xae/0x110 [ 539.347228][ T5349] ? __pfx_do_swap_page+0x10/0x10 [ 539.347255][ T5349] ? rcu_is_watching+0x12/0xc0 [ 539.347280][ T5349] ? __pte_offset_map+0x179/0x310 [ 539.347301][ T5349] __handle_mm_fault+0x18c7/0x2b60 [ 539.347328][ T5349] ? mt_find+0x45e/0x8e0 [ 539.347348][ T5349] ? __pfx___handle_mm_fault+0x10/0x10 [ 539.347369][ T5349] ? __pfx_mt_find+0x10/0x10 [ 539.347400][ T5349] ? find_vma+0xbf/0x140 [ 539.347417][ T5349] ? __pfx_find_vma+0x10/0x10 [ 539.347436][ T5349] handle_mm_fault+0x36d/0xa20 [ 539.347464][ T5349] do_user_addr_fault+0x74c/0x12f0 [ 539.347489][ T5349] exc_page_fault+0x6f/0xd0 [ 539.347507][ T5349] asm_exc_page_fault+0x26/0x30 [ 539.347523][ T5349] RIP: 0010:rseq_set_ids_get_csaddr+0x88/0x210 [ 539.347549][ T5349] Code: 0f 47 e8 0f 01 cb 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 0f b6 04 02 84 c0 74 08 3c 03 0f 8e 42 01 00 00 44 8b 3b <44> 89 7d 00 e8 2f f6 c7 ff 44 89 7d 04 e8 26 f6 c7 ff 44 89 75 14 [ 539.347569][ T5349] RSP: 0000:ffffc900042bfe28 EFLAGS: 00050246 [ 539.347588][ T5349] RAX: 0000000000000000 RBX: ffffc900042bfe80 RCX: ffffc900042bfea0 [ 539.347599][ T5349] RDX: 1ffff92000857fd0 RSI: ffffffff82405290 RDI: ffff8880260a3a98 [ 539.347609][ T5349] RBP: 00007fb7d115f680 R08: 0000000000000001 R09: 0000000000000000 [ 539.347619][ T5349] R10: 0000000000000001 R11: 0000000000000000 R12: ffff8880260a24c0 [ 539.347629][ T5349] R13: ffffc900042bfea0 R14: 0000000000000000 R15: 0000000000000001 [ 539.347650][ T5349] ? rseq_set_ids_get_csaddr+0x50/0x210 [ 539.347678][ T5349] ? rseq_set_ids_get_csaddr+0x50/0x210 [ 539.347705][ T5349] __rseq_handle_slowpath+0x251/0x3c0 [ 539.347730][ T5349] ? __pfx___rseq_handle_slowpath+0x10/0x10 [ 539.347765][ T5349] irqentry_exit+0x24c/0x670 [ 539.347784][ T5349] asm_exc_page_fault+0x26/0x30 [ 539.347800][ T5349] RIP: 0033:0x7fb7d0aa7407 [ 539.347821][ T5349] Code: Unable to access opcode bytes at 0x7fb7d0aa73dd. [ 539.347829][ T5349] RSP: 002b:00007ffdd3bab0d0 EFLAGS: 00010202 [ 539.347841][ T5349] RAX: 0000000000000000 RBX: 00007fb7d115f880 RCX: 00007fb7d0aa7407 [ 539.347851][ T5349] RDX: 0000000000000008 RSI: 00007ffdd3bab230 RDI: 000000000000000b [ 539.347860][ T5349] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 539.347870][ T5349] R10: 0000000000000bb8 R11: 0000000000000202 R12: 0000000000000000 [ 539.347879][ T5349] R13: 000055954b8fd100 R14: 0000000000000000 R15: 00007ffdd3bab320 [ 539.347902][ T5349] [ 539.347908][ T5349] Mem-Info: [ 539.525334][ T5349] active_anon:0 inactive_anon:516 isolated_anon:0 [ 539.525334][ T5349] active_file:31 inactive_file:46 isolated_file:0 [ 539.525334][ T5349] unevictable:1768 dirty:0 writeback:0 [ 539.525334][ T5349] slab_reclaimable:7061 slab_unreclaimable:68503 [ 539.525334][ T5349] mapped:20497 shmem:1768 pagetables:1482 [ 539.525334][ T5349] sec_pagetables:371 bounce:0 [ 539.525334][ T5349] kernel_misc_reclaimable:0 [ 539.525334][ T5349] free:20898 free_pcp:0 free_cma:0 [ 539.539930][ T5349] Node 0 active_anon:4kB inactive_anon:28kB active_file:0kB inactive_file:60kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:16kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8032kB pagetables:1400kB sec_pagetables:1140kB all_unreclaimable? yes Balloon:0kB [ 539.550009][ T5349] Node 1 active_anon:84kB inactive_anon:1540kB active_file:0kB inactive_file:376kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:81972kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:5952kB pagetables:4528kB sec_pagetables:344kB all_unreclaimable? yes Balloon:0kB [ 539.560454][ T5349] Node 0 DMA free:2884kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 539.569931][ T5349] lowmem_reserve[]: 0 285 285 285 285 [ 539.571813][ T5349] Node 0 DMA32 free:28532kB boost:24576kB min:37644kB low:40908kB high:44172kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:44kB active_file:0kB inactive_file:60kB unevictable:3536kB writepending:0kB zspages:1456kB present:1032196kB managed:292464kB mlocked:0kB bounce:0kB free_pcp:48kB local_pcp:0kB free_cma:0kB [ 539.583169][ T5349] lowmem_reserve[]: 0 0 0 0 0 [ 539.585236][ T5349] Node 1 DMA32 free:51904kB boost:8192kB min:55336kB low:67120kB high:78904kB reserved_highatomic:0KB free_highatomic:0KB active_anon:120kB inactive_anon:1840kB active_file:324kB inactive_file:0kB unevictable:3536kB writepending:0kB zspages:5264kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 539.599641][ T5349] lowmem_reserve[]: 0 0 0 0 0 [ 539.601588][ T5349] Node 0 DMA: 69*4kB (UE) 26*8kB (UE) 6*16kB (U) 12*32kB (UE) 4*64kB (UE) 1*128kB (E) 0*256kB 1*512kB (E) 1*1024kB (E) 0*2048kB 0*4096kB = 2884kB [ 539.607443][ T5349] Node 0 DMA32: 671*4kB (UME) 344*8kB (UME) 202*16kB (UME) 130*32kB (ME) 77*64kB (UME) 27*128kB (UME) 10*256kB (UME) 9*512kB (UM) 0*1024kB 0*2048kB 0*4096kB = 28380kB [ 539.624481][ T5349] Node 1 DMA32: 1123*4kB (UME) 979*8kB (UME) 662*16kB (UME) 287*32kB (UME) 119*64kB (UM) 39*128kB (UM) 16*256kB (UM) 6*512kB (UM) 0*1024kB 0*2048kB 0*4096kB = 51876kB [ 539.631906][ T5349] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 539.637574][ T5349] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 539.641246][ T5349] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 539.645054][ T5349] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 539.649089][ T5349] 2376 total pagecache pages [ 539.650976][ T5349] 496 pages in swap cache [ 539.652731][ T5349] Free swap = 96684kB [ 539.654155][ T5349] Total swap = 124996kB [ 539.655868][ T5349] 524155 pages RAM [ 539.663254][ T5349] 0 pages HighMem/MovableOnly [ 539.664839][ T5349] 210146 pages reserved [ 539.666527][ T5349] 0 pages cma reserved [ 539.670659][ T5349] Unreclaimable slab info: [ 539.673083][ T5349] Name Used Total [ 539.675900][ T5349] bio-184 7KB 8KB [ 539.685196][ T5349] pid_3 33KB 63KB [ 539.687756][ T5349] pid_2 73KB 126KB [ 539.698882][ T5349] bio-464 17KB 31KB [ 539.701672][ T5349] bio-528 19KB 31KB [ 539.703990][ T5349] bio-544 19KB 31KB [ 539.705858][ T5349] bio-560 19KB 31KB [ 539.708190][ T5349] afs_inode_cache 56KB 61KB [ 539.713217][ T5349] zswap_entry 553KB 608KB [ 539.715839][ T5349] AF_VSOCK 74KB 183KB [ 539.718588][ T5349] sw_flow_stats 24KB 36KB [ 539.725446][ T5349] sw_flow 33KB 122KB [ 539.727974][ T5349] batadv_tt_change_cache 11KB 16KB [ 539.730408][ T5349] batadv_tl_cache 28KB 32KB [ 539.736680][ T5349] ceph_osd_request 5KB 63KB [ 539.739524][ T5349] ceph_msg 2KB 30KB [ 539.742983][ T5349] IEEE-802.15.4-MAC 40KB 125KB [ 539.748288][ T5349] IEEE-802.15.4-RAW 37KB 157KB [ 539.750549][ T5349] p9_req_t 16KB 39KB [ 539.755041][ T5349] INET6_SMC 32KB 58KB [ 539.757790][ T5349] INET_SMC 65KB 125KB [ 539.760411][ T5349] SMC6 68KB 187KB [ 539.762850][ T5349] SMC 34KB 187KB [ 539.774315][ T5349] TIPC 58KB 154KB [ 539.776526][ T5349] RDS 43KB 185KB [ 539.778968][ T5349] rds_connection 34KB 62KB [ 539.781385][ T5349] SCTPv6 48KB 180KB [ 539.783856][ T5349] SCTP 63KB 214KB [ 539.795170][ T5349] sctp_chunk 19KB 70KB [ 539.797711][ T5349] sctp_bind_bucket 8KB 16KB [ 539.800038][ T5349] PNPIPE 43KB 154KB [ 539.802044][ T5349] PHONET 48KB 126KB [ 539.804477][ T5349] L2TP/IPv6 50KB 159KB [ 539.816394][ T5349] L2TP/IP 36KB 157KB [ 539.818884][ T5349] KCM 42KB 155KB [ 539.820976][ T5349] kcm_mux 50KB 94KB [ 539.823417][ T5349] RXRPC 30KB 128KB [ 539.825891][ T5349] rxrpc_call_jar 148KB 223KB [ 539.830889][ T5349] can_gw 21KB 24KB [ 539.833424][ T5349] can_receiver 12KB 23KB [ 539.836062][ T5349] net_bridge_fdb_entry 25KB 43KB [ 539.842134][ T5349] xfrm6_tunnel_spi 22KB 24KB [ 539.844487][ T5349] MPTCPv6 89KB 223KB [ 539.846770][ T5349] ip6-frags 36KB 63KB [ 539.852456][ T5349] fib6_node 64KB 72KB [ 539.855338][ T5349] ip6_dst_cache 65KB 148KB [ 539.857410][ T5349] mfc6_cache 13KB 16KB [ 539.867707][ T5349] PINGv6 35KB 154KB [ 539.873513][ T5349] RAWv6 140KB 216KB [ 539.875508][ T5349] UDPLITEv6 33KB 126KB [ 539.877459][ T5349] UDPv6 81KB 220KB [ 539.879419][ T5349] tw_sock_TCPv6 10KB 15KB [ 539.889746][ T5349] request_sock_TCPv6 39KB 61KB [ 539.892946][ T5349] TCPv6 198KB 417KB [ 539.895653][ T5349] nf_conntrack 19KB 31KB [ 539.898162][ T5349] wg_peer 116KB 148KB [ 539.900644][ T5349] allowedips_node 20KB 31KB [ 539.908299][ T5349] ubi_wl_entry_slab 2KB 3KB [ 539.910358][ T5349] t10_alua_lu_gp_cache 8KB 15KB [ 539.919996][ T5349] scsi_sense_cache 67KB 68KB [ 539.922667][ T5349] virtio_scsi_cmd 21KB 24KB [ 539.931853][ T5349] bio-136 58KB 80KB [ 539.934884][ T5349] io_kiocb 0KB 31KB [ 539.937305][ T5349] bio-264 39KB 55KB [ 539.940132][ T5349] mqueue_inode_cache 72KB 212KB [ 539.942756][ T5349] f2fs_bio_post_read_ctx 30KB 31KB [ 539.950917][ T5349] jfs_mp 14KB 15KB [ 539.953556][ T5349] orangefs_op_cache 51KB 68KB [ 539.957094][ T5349] fuse_request 19KB 31KB [ 539.959269][ T5349] cifs_small_rq 28KB 32KB [ 539.961421][ T5349] cifs_request 67KB 67KB [ 539.963343][ T5349] cifs_mpx_ids 8KB 15KB [ 539.965197][ T5349] cifs_io_subrequest 42KB 47KB [ 539.967596][ T5349] cifs_io_request 105KB 111KB [ 539.969543][ T5349] nfs_commit_data 24KB 31KB [ 539.971628][ T5349] nfs_write_data 38KB 63KB [ 539.973797][ T5349] ecryptfs_sb_cache 20KB 31KB [ 539.976158][ T5349] jbd2_inode 22KB 27KB [ 539.987354][ T5349] ext4_system_zone 1KB 3KB [ 539.989863][ T5349] ext4_io_end_vec 5KB 15KB [ 539.992144][ T5349] kioctx 11KB 159KB [ 539.994424][ T5349] aio_kiocb 17KB 46KB [ 539.996583][ T5349] userfaultfd_ctx_cache 63KB 110KB [ 540.009949][ T5349] dnotify_mark 33KB 35KB [ 540.012446][ T5349] dnotify_struct 8KB 11KB [ 540.014869][ T5349] fasync_cache 33KB 47KB [ 540.016833][ T5349] zspage 168KB 185KB [ 540.024446][ T5349] zs_handle 196KB 228KB [ 540.026893][ T5349] pid_namespace 48KB 108KB [ 540.029457][ T5349] kvm_gmem_inode_cache 15KB 31KB [ 540.034089][ T5349] kvm_vcpu 31KB 62KB [ 540.036612][ T5349] x86_emulator 31KB 63KB [ 540.039091][ T5349] rpc_buffers 25KB 31KB [ 540.043895][ T5349] rpc_tasks 8KB 15KB [ 540.046266][ T5349] UNIX-STREAM 56KB 245KB [ 540.048759][ T5349] UNIX 144KB 367KB [ 540.051323][ T5349] ip4-frags 34KB 63KB [ 540.062926][ T5349] mfc_cache 13KB 16KB [ 540.065441][ T5349] UDP-Lite 70KB 191KB [ 540.067746][ T5349] MPTCP 82KB 183KB [ 540.069780][ T5349] tcp_bind2_bucket 24KB 32KB [ 540.071769][ T5349] tcp_bind_bucket 24KB 32KB [ 540.081781][ T5349] inet_peer 25KB 32KB [ 540.084940][ T5349] xfrm_dst 17KB 55KB [ 540.086997][ T5349] xfrm_state 45KB 191KB [ 540.088930][ T5349] ip_fib_trie 24KB 40KB [ 540.090873][ T5349] ip_fib_alias 63KB 79KB [ 540.092800][ T5349] rtable 29KB 56KB [ 540.102105][ T5349] PING 68KB 189KB [ 540.104120][ T5349] RAW 95KB 255KB [ 540.106195][ T5349] UDP 99KB 255KB [ 540.108147][ T5349] request_sock_TCP 39KB 61KB [ 540.110144][ T5349] TCP 452KB 796KB [ 540.112322][ T5349] hugetlbfs_inode_cache 35KB 187KB [ 540.114253][ T5349] netfs_subrequest 35KB 39KB [ 540.121804][ T5349] netfs_request 105KB 111KB [ 540.123995][ T5349] bio-280 21KB 23KB [ 540.125951][ T5349] ep_head 3KB 20KB [ 540.137435][ T5349] eventpoll_pwq 8KB 39KB [ 540.140089][ T5349] eventpoll_epi 48KB 70KB [ 540.142589][ T5349] inotify_inode_mark 27KB 42KB [ 540.145234][ T5349] sgpool-128 365KB 505KB [ 540.167043][ T5349] sgpool-64 257KB 414KB [ 540.169454][ T5349] sgpool-32 102KB 252KB [ 540.171567][ T5349] sgpool-16 66KB 140KB [ 540.173686][ T5349] sgpool-8 58KB 93KB [ 540.175664][ T5349] bio_crypt_ctx 9KB 11KB [ 540.177654][ T5349] bio_integrity_data 7KB 8KB [ 540.185106][ T5349] request_queue 214KB 247KB [ 540.187852][ T5349] blkdev_ioc 20KB 63KB [ 540.200948][ T5349] bio-200 204KB 234KB [ 540.204209][ T5349] biovec-max 973KB 1015KB [ 540.207074][ T5349] biovec-128 93KB 223KB [ 540.209205][ T5349] biovec-64 172KB 252KB [ 540.211665][ T5349] biovec-16 36KB 70KB [ 540.219137][ T5349] mm_slot 12KB 15KB [ 540.221661][ T5349] ksm_mm_slot 10KB 12KB [ 540.229074][ T5349] uid_cache 28KB 54KB [ 540.231575][ T5349] iommu_iova_magazine 1010KB 1134KB [ 540.236710][ T5349] iommu_iova 279KB 280KB [ 540.239361][ T5349] dmaengine-unmap-256 26KB 30KB [ 540.242332][ T5349] dmaengine-unmap-128 14KB 30KB [ 540.254805][ T5349] dmaengine-unmap-16 7KB 8KB [ 540.257100][ T5349] dmaengine-unmap-2 3KB 4KB [ 540.259526][ T5349] QIPCRTR 34KB 156KB [ 540.261866][ T5349] audit_buffer 20KB 42KB [ 540.264016][ T5349] skbuff_ext_cache 19KB 36KB [ 540.273553][ T5349] skbuff_small_head 1101KB 1435KB [ 540.275618][ T5349] skbuff_fclone_cache 118KB 203KB [ 540.283421][ T5349] skbuff_head_cache 1022KB 1023KB [ 540.285514][ T5349] configfs_dir_cache 29KB 32KB [ 540.292005][ T5349] file_lease_cache 27KB 31KB [ 540.294034][ T5349] file_lock_cache 28KB 71KB [ 540.295992][ T5349] file_lock_ctx 36KB 43KB [ 540.304805][ T5349] fsnotify_inode_mark_connector 21KB 39KB [ 540.307177][ T5349] posix_timers_cache 33KB 64KB [ 540.317542][ T5349] taskstats 99KB 175KB [ 540.320198][ T5349] mem_cgroup_per_node 117KB 154KB [ 540.322410][ T5349] mem_cgroup 159KB 178KB [ 540.324669][ T5349] proc_dir_entry 677KB 765KB [ 540.327007][ T5349] pde_opener 2KB 15KB [ 540.328969][ T5349] seq_file 30KB 70KB [ 540.342581][ T5349] sigqueue 19KB 43KB [ 540.344657][ T5349] shmem_inode_cache 8095KB 8757KB [ 540.346941][ T5349] kernfs_iattrs_cache 44KB 46KB [ 540.349469][ T5349] kernfs_node_cache 35718KB 36791KB [ 540.354809][ T5349] mnt_cache 91KB 126KB [ 540.357469][ T5349] filp 444KB 669KB [ 540.359446][ T5349] names_cache 460KB 716KB [ 540.370018][ T5349] net_namespace 105KB 231KB [ 540.374379][ T5349] ima_iint_cache 24KB 63KB [ 540.376761][ T5349] lsm_inode_cache 1575KB 1834KB [ 540.378788][ T5349] lsm_file_cache 124KB 200KB [ 540.380916][ T5349] key_jar 35KB 78KB [ 540.390833][ T5349] uts_namespace 72KB 123KB [ 540.392865][ T5349] nsproxy 11KB 31KB [ 540.397854][ T5349] vm_area_struct 996KB 1296KB [ 540.400112][ T5349] fs_cache 36KB 64KB [ 540.402472][ T5349] files_cache 125KB 207KB [ 540.412223][ T5349] signal_cache 899KB 2033KB [ 540.414682][ T5349] sighand_cache 1163KB 2074KB [ 540.423393][ T5349] task_struct 4860KB 5512KB [ 540.426796][ T5349] cred 152KB 320KB [ 540.428989][ T5349] anon_vma_chain 298KB 362KB [ 540.431107][ T5349] anon_vma 320KB 454KB [ 540.433238][ T5349] pid 146KB 406KB [ 540.445907][ T5349] Acpi-Operand 195KB 328KB [ 540.455419][ T5349] Acpi-ParseExt 21KB 39KB [ 540.457767][ T5349] Acpi-Parse 19KB 27KB [ 540.459800][ T5349] Acpi-State 9KB 31KB [ 540.461735][ T5349] Acpi-Namespace 31KB 48KB [ 540.463806][ T5349] shared_policy_node 14KB 16KB [ 540.465909][ T5349] numa_policy 8KB 16KB [ 540.477064][ T5349] perf_event 15KB 31KB [ 540.481954][ T5349] trace_event_file 540KB 540KB [ 540.483998][ T5349] ftrace_event_field 1026KB 1027KB [ 540.486943][ T5349] pool_workqueue 1995KB 2128KB [ 540.498483][ T5349] task_group 91KB 108KB [ 540.500510][ T5349] maple_node 688KB 1448KB [ 540.502469][ T5349] mm_struct 370KB 612KB [ 540.504803][ T5349] vmap_area 1268KB 1449KB [ 540.507638][ T5349] debug_objects_cache 2543KB 5676KB [ 540.509826][ T5349] page->ptl 180KB 252KB [ 540.521661][ T5349] kmalloc-cg-8k 3136KB 3552KB [ 540.523967][ T5349] kmalloc-cg-4k 16136KB 18304KB [ 540.526097][ T5349] kmalloc-cg-2k 10908KB 12736KB [ 540.528420][ T5349] kmalloc-cg-1k 2820KB 3392KB [ 540.530417][ T5349] kmalloc-cg-512 865KB 1232KB [ 540.536894][ T5349] kmalloc-cg-256 525KB 616KB [ 540.538988][ T5349] kmalloc-cg-128 255KB 292KB [ 540.540976][ T5349] kmalloc-cg-64 76KB 132KB [ 540.542962][ T5349] kmalloc-cg-32 45KB 176KB [ 540.551009][ T5349] kmalloc-cg-16 6KB 28KB [ 540.553257][ T5349] kmalloc-cg-8 24KB 44KB [ 540.558275][ T5349] kmalloc-cg-192 78KB 92KB [ 540.560291][ T5349] kmalloc-cg-96 51KB 80KB [ 540.562241][ T5349] kmalloc-8k 5472KB 5856KB [ 540.564248][ T5349] kmalloc-4k 31472KB 31520KB [ 540.575095][ T5349] kmalloc-2k 11232KB 12672KB [ 540.577430][ T5349] kmalloc-1k 7998KB 8128KB [ 540.579551][ T5349] kmalloc-512 11115KB 11936KB [ 540.581732][ T5349] kmalloc-256 5449KB 5476KB [ 540.584038][ T5349] kmalloc-128 1522KB 1664KB [ 540.586831][ T5349] kmalloc-64 3088KB 3344KB [ 540.588911][ T5349] kmalloc-32 1897KB 3064KB [ 540.590925][ T5349] kmalloc-16 479KB 532KB [ 540.592876][ T5349] kmalloc-8 1088KB 1412KB [ 540.594890][ T5349] kmalloc-192 1836KB 2056KB [ 540.604290][ T5349] kmalloc-96 1595KB 1964KB [ 540.607037][ T5349] kmem_cache_node 213KB 220KB [ 540.611583][ T5349] kmem_cache 177KB 226KB [ 540.613725][ T5349] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz4,task=syz.4.24747,pid=25163,uid=0 [ 540.631189][ T5349] Out of memory: Killed process 25163 (syz.4.24747) total-vm:104184kB, anon-rss:0kB, file-rss:20484kB, shmem-rss:0kB, UID:0 pgtables:108kB oom_score_adj:1000 [ 540.648719][T25184] syz.0.24752 invoked oom-killer: gfp_mask=0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), order=0, oom_score_adj=1000 [ 540.694961][T25184] CPU: 0 UID: 0 PID: 25184 Comm: syz.0.24752 Tainted: G L syzkaller #0 PREEMPT(full) [ 540.694982][T25184] Tainted: [L]=SOFTLOCKUP [ 540.694986][T25184] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 540.694993][T25184] Call Trace: [ 540.694997][T25184] [ 540.695002][T25184] dump_stack_lvl+0x100/0x190 [ 540.695024][T25184] dump_header+0xfb/0x606 [ 540.695037][T25184] oom_kill_process.cold+0xd/0x330 [ 540.695051][T25184] out_of_memory+0x1256/0x14f0 [ 540.695073][T25184] ? __pfx_out_of_memory+0x10/0x10 [ 540.695095][T25184] __alloc_frozen_pages_noprof+0x233d/0x2ba0 [ 540.695123][T25184] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 540.695146][T25184] ? __lock_acquire+0x4a5/0x2630 [ 540.695167][T25184] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 540.695180][T25184] ? policy_nodemask+0xed/0x4f0 [ 540.695195][T25184] alloc_pages_mpol+0x1fb/0x550 [ 540.695208][T25184] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 540.695221][T25184] ? swap_entry_swapped+0x1ff/0x2b0 [ 540.695233][T25184] ? __pfx_swap_entry_swapped+0x10/0x10 [ 540.695248][T25184] folio_alloc_mpol_noprof+0x36/0x340 [ 540.695263][T25184] swap_cache_alloc_folio+0x1a8/0x300 [ 540.695282][T25184] ? __pfx_swap_cache_alloc_folio+0x10/0x10 [ 540.695299][T25184] ? mark_held_locks+0x40/0x70 [ 540.695314][T25184] ? finish_task_switch.isra.0+0x205/0xb80 [ 540.695327][T25184] ? lockdep_hardirqs_on+0x78/0x100 [ 540.695345][T25184] swap_cluster_readahead+0x53b/0x770 [ 540.695381][T25184] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 540.695408][T25184] ? css_rstat_updated+0x1ce/0x5a0 [ 540.695434][T25184] ? get_vma_policy+0x23d/0x3b0 [ 540.695454][T25184] swapin_readahead+0x160/0x12c0 [ 540.695480][T25184] ? page_table_check_set+0x4a9/0xa10 [ 540.695504][T25184] ? __pfx_swapin_readahead+0x10/0x10 [ 540.695528][T25184] ? find_held_lock+0x2b/0x80 [ 540.695543][T25184] ? swap_table_get+0x103/0x2c0 [ 540.695565][T25184] ? swap_table_get+0x103/0x2c0 [ 540.695591][T25184] ? swap_table_get+0x10d/0x2c0 [ 540.695607][T25184] ? swap_cache_get_folio+0x1ae/0x600 [ 540.695626][T25184] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 540.695642][T25184] ? __pfx_get_swap_device+0x10/0x10 [ 540.695657][T25184] ? do_swap_page+0xb2e/0x6900 [ 540.695672][T25184] do_swap_page+0xb2e/0x6900 [ 540.695696][T25184] ? __pfx_do_swap_page+0x10/0x10 [ 540.695712][T25184] ? do_fault+0x9d6/0x18e0 [ 540.695728][T25184] ? rcu_is_watching+0x12/0xc0 [ 540.695746][T25184] ? __pte_offset_map+0x179/0x310 [ 540.695760][T25184] __handle_mm_fault+0x18c7/0x2b60 [ 540.695779][T25184] ? reacquire_held_locks+0xce/0x1e0 [ 540.695795][T25184] ? __pfx___handle_mm_fault+0x10/0x10 [ 540.695813][T25184] ? lock_vma_under_rcu+0x17c/0x590 [ 540.695839][T25184] handle_mm_fault+0x36d/0xa20 [ 540.695858][T25184] do_user_addr_fault+0x5a3/0x12f0 [ 540.695875][T25184] exc_page_fault+0x6f/0xd0 [ 540.695887][T25184] asm_exc_page_fault+0x26/0x30 [ 540.695898][T25184] RIP: 0023:0xf701f2f0 [ 540.695913][T25184] Code: Unable to access opcode bytes at 0xf701f2c6. [ 540.695918][T25184] RSP: 002b:00000000ff9f3bdc EFLAGS: 00010202 [ 540.695928][T25184] RAX: 0000000000000001 RBX: 00000000f73f6280 RCX: 0000000000000000 [ 540.695935][T25184] RDX: 0000000000000000 RSI: 000000000007c035 RDI: 0000000000000000 [ 540.695942][T25184] RBP: 00000000ff9f3e38 R08: 0000000000000000 R09: 0000000000000000 [ 540.695948][T25184] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000 [ 540.695955][T25184] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 540.695969][T25184] [ 540.695973][T25184] Mem-Info: [ 540.855058][T25184] active_anon:1 inactive_anon:434 isolated_anon:0 [ 540.855058][T25184] active_file:0 inactive_file:106 isolated_file:0 [ 540.855058][T25184] unevictable:1768 dirty:0 writeback:0 [ 540.855058][T25184] slab_reclaimable:7061 slab_unreclaimable:69269 [ 540.855058][T25184] mapped:20484 shmem:1768 pagetables:1482 [ 540.855058][T25184] sec_pagetables:371 bounce:0 [ 540.855058][T25184] kernel_misc_reclaimable:0 [ 540.855058][T25184] free:20049 free_pcp:202 free_cma:0 [ 541.009534][T25184] Node 0 active_anon:12kB inactive_anon:20kB active_file:4kB inactive_file:0kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:16kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8000kB pagetables:1400kB sec_pagetables:1140kB all_unreclaimable? yes Balloon:0kB [ 541.056454][T25184] Node 1 active_anon:636kB inactive_anon:2028kB active_file:37716kB inactive_file:1536kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:85320kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:5860kB pagetables:4528kB sec_pagetables:344kB all_unreclaimable? yes Balloon:0kB [ 541.098762][T25184] Node 0 DMA free:2884kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 541.136409][T25184] lowmem_reserve[]: 0 285 285 285 285 [ 541.138577][T25184] Node 0 DMA32 free:25224kB boost:24576kB min:37644kB low:40908kB high:44172kB reserved_highatomic:0KB free_highatomic:0KB active_anon:12kB inactive_anon:20kB active_file:4kB inactive_file:0kB unevictable:3536kB writepending:0kB zspages:1456kB present:1032196kB managed:292464kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:4kB free_cma:0kB [ 541.161203][T25184] lowmem_reserve[]: 0 0 0 0 0 [ 541.169784][T25184] Node 1 DMA32 free:102408kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:244kB inactive_anon:2388kB active_file:22004kB inactive_file:36392kB unevictable:3536kB writepending:100kB zspages:5256kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:18712kB local_pcp:1516kB free_cma:0kB [ 541.223092][T25184] lowmem_reserve[]: 0 0 0 0 0 [ 541.225522][T25184] Node 0 DMA: 69*4kB (UE) 26*8kB (UE) 6*16kB (U) 12*32kB (UE) 4*64kB (UE) 1*128kB (E) 0*256kB 1*512kB (E) 1*1024kB (E) 0*2048kB 0*4096kB = 2884kB [ 541.232684][T25184] Node 0 DMA32: 680*4kB (UME) 328*8kB (UME) 201*16kB (UME) 131*32kB (UME) 54*64kB (UME) 20*128kB (UME) 7*256kB (UME) 9*512kB (UM) 0*1024kB 0*2048kB 0*4096kB = 25168kB [ 541.241315][T25184] Node 1 DMA32: 3433*4kB (U) 4780*8kB (UE) 2616*16kB (UE) 129*32kB (UE) 7*64kB (U) 33*128kB (U) 26*256kB (U) 17*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 117988kB [ 541.249865][T25184] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 541.254362][T25184] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 541.258910][T25184] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 541.266542][T25184] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 541.270607][T25184] 19839 total pagecache pages [ 541.272688][T25184] 648 pages in swap cache [ 541.274851][T25184] Free swap = 98460kB [ 541.276616][T25184] Total swap = 124996kB [ 541.278392][T25184] 524155 pages RAM [ 541.280139][T25184] 0 pages HighMem/MovableOnly [ 541.283296][T25184] 210146 pages reserved [ 541.285129][T25184] 0 pages cma reserved [ 541.289121][T25184] Unreclaimable slab info: [ 541.291752][T25184] Name Used Total [ 541.295152][T25184] bio-184 7KB 8KB [ 541.298111][T25184] pid_3 33KB 63KB [ 541.300708][T25184] pid_2 58KB 126KB [ 541.304638][T25184] bio-464 17KB 31KB [ 541.306669][T25184] bio-528 19KB 31KB [ 541.308633][T25184] bio-544 19KB 31KB [ 541.310677][T25184] bio-560 19KB 31KB [ 541.313706][T25184] afs_inode_cache 56KB 61KB [ 541.316020][T25184] zswap_entry 553KB 608KB [ 541.318433][T25184] AF_VSOCK 74KB 183KB [ 541.320939][T25184] sw_flow_stats 24KB 36KB [ 541.344590][T25184] sw_flow 33KB 122KB [ 541.347433][T25184] batadv_tt_change_cache 11KB 16KB [ 541.350282][T25184] batadv_tl_cache 28KB 32KB [ 541.352313][T25184] ceph_osd_request 5KB 63KB [ 541.357512][T25184] ceph_msg 2KB 30KB [ 541.360530][T25184] IEEE-802.15.4-MAC 40KB 125KB [ 541.362945][T25184] IEEE-802.15.4-RAW 37KB 157KB [ 541.365737][T25184] p9_req_t 16KB 39KB [ 541.385367][T25184] INET6_SMC 32KB 58KB [ 541.389589][T25184] INET_SMC 65KB 125KB [ 541.392042][T25184] SMC6 68KB 187KB [ 541.394420][T25184] SMC 31KB 187KB [ 541.396849][T25184] TIPC 58KB 154KB [ 541.400436][T25184] RDS 43KB 185KB [ 541.403865][T25184] rds_connection 34KB 62KB [ 541.406354][T25184] SCTPv6 43KB 180KB [ 541.409767][T25184] SCTP 59KB 183KB [ 541.412398][T25184] sctp_chunk 19KB 70KB [ 541.415274][T25184] sctp_bind_bucket 8KB 16KB [ 541.420541][T25184] PNPIPE 43KB 154KB [ 541.423650][T25184] PHONET 48KB 126KB [ 541.426146][T25184] L2TP/IPv6 50KB 159KB [ 541.432167][T25184] L2TP/IP 36KB 157KB [ 541.434880][T25184] KCM 42KB 155KB [ 541.437459][T25184] kcm_mux 50KB 94KB [ 541.439579][T25184] RXRPC 30KB 128KB [ 541.444763][T25184] rxrpc_call_jar 148KB 223KB [ 541.446188][T25208] mkiss: ax0: crc mode is auto. [ 541.447196][T25184] can_gw 21KB 24KB [ 541.447213][T25184] can_receiver 12KB 23KB [ 541.447226][T25184] net_bridge_fdb_entry 25KB 43KB [ 541.447240][T25184] xfrm6_tunnel_spi 22KB 24KB [ 541.447253][T25184] MPTCPv6 86KB 223KB [ 541.462370][T25184] ip6-frags 36KB 63KB [ 541.464690][T25184] fib6_node 64KB 72KB [ 541.467306][T25184] ip6_dst_cache 65KB 148KB [ 541.470161][T25184] mfc6_cache 13KB 16KB [ 541.475948][T25184] PINGv6 35KB 154KB [ 541.478626][T25184] RAWv6 140KB 216KB [ 541.481157][T25184] UDPLITEv6 33KB 126KB [ 541.491131][T25184] UDPv6 78KB 220KB [ 541.494942][T25184] tw_sock_TCPv6 10KB 15KB [ 541.497598][T25184] request_sock_TCPv6 39KB 61KB [ 541.499828][T25184] TCPv6 178KB 357KB [ 541.502291][T25184] nf_conntrack 19KB 31KB [ 541.504345][T25184] wg_peer 116KB 148KB [ 541.507157][T25184] allowedips_node 20KB 31KB [ 541.510662][T25184] ubi_wl_entry_slab 2KB 3KB [ 541.513239][T25184] t10_alua_lu_gp_cache 8KB 15KB [ 541.515869][T25184] scsi_sense_cache 67KB 68KB [ 541.518406][T25184] virtio_scsi_cmd 21KB 24KB [ 541.520457][T25184] bio-136 58KB 80KB [ 541.522411][T25184] io_kiocb 0KB 31KB [ 541.524400][T25184] bio-264 39KB 55KB [ 541.528717][T25184] mqueue_inode_cache 72KB 212KB [ 541.531070][T25184] f2fs_bio_post_read_ctx 30KB 31KB [ 541.534080][T25184] jfs_mp 14KB 15KB [ 541.539317][T25184] orangefs_op_cache 51KB 68KB [ 541.541903][T25184] fuse_request 19KB 31KB [ 541.544648][T25184] cifs_small_rq 28KB 32KB [ 541.547956][T25184] cifs_request 67KB 67KB [ 541.550934][T25184] cifs_mpx_ids 8KB 15KB [ 541.553346][T25184] cifs_io_subrequest 42KB 47KB [ 541.555866][T25184] cifs_io_request 105KB 111KB [ 541.559397][T25184] nfs_commit_data 24KB 31KB [ 541.563326][T25184] nfs_write_data 38KB 63KB [ 541.566595][T25184] ecryptfs_sb_cache 20KB 31KB [ 541.569237][T25184] jbd2_inode 22KB 27KB [ 541.571688][T25184] ext4_system_zone 1KB 3KB [ 541.574185][T25184] ext4_io_end_vec 5KB 15KB [ 541.576699][T25184] kioctx 11KB 159KB [ 541.579328][T25184] aio_kiocb 17KB 46KB [ 541.583027][T25184] userfaultfd_ctx_cache 62KB 110KB [ 541.585265][T25184] dnotify_mark 33KB 35KB [ 541.587507][T25184] dnotify_struct 8KB 11KB [ 541.587521][T25184] fasync_cache 33KB 47KB [ 541.587534][T25184] zspage 168KB 185KB [ 541.587546][T25184] zs_handle 196KB 228KB [ 541.587555][T25184] pid_namespace 47KB 108KB [ 541.600808][T25184] kvm_gmem_inode_cache 15KB 31KB [ 541.606172][T25184] kvm_vcpu 31KB 62KB [ 541.606198][T25184] x86_emulator 31KB 63KB [ 541.606213][T25184] rpc_buffers 25KB 31KB [ 541.614054][T25184] rpc_tasks 8KB 15KB [ 541.614074][T25184] UNIX-STREAM 56KB 245KB [ 541.614089][T25184] UNIX 144KB 367KB [ 541.621994][T25184] ip4-frags 34KB 63KB [ 541.622014][T25184] mfc_cache 13KB 16KB [ 541.622028][T25184] UDP-Lite 70KB 191KB [ 541.622041][T25184] MPTCP 82KB 183KB [ 541.622058][T25184] tcp_bind2_bucket 24KB 32KB [ 541.622071][T25184] tcp_bind_bucket 24KB 32KB [ 541.622084][T25184] inet_peer 25KB 32KB [ 541.622098][T25184] xfrm_dst 17KB 55KB [ 541.622111][T25184] xfrm_state 45KB 191KB [ 541.622124][T25184] ip_fib_trie 24KB 40KB [ 541.622138][T25184] ip_fib_alias 63KB 79KB [ 541.622152][T25184] rtable 28KB 56KB [ 541.622165][T25184] PING 68KB 189KB [ 541.622178][T25184] RAW 95KB 255KB [ 541.622192][T25184] UDP 99KB 255KB [ 541.622205][T25184] request_sock_TCP 39KB 61KB [ 541.622220][T25184] TCP 286KB 605KB [ 541.622236][T25184] hugetlbfs_inode_cache 35KB 187KB [ 541.622365][T25184] netfs_subrequest 35KB 39KB [ 541.622381][T25184] netfs_request 105KB 111KB [ 541.622394][T25184] bio-280 21KB 23KB [ 541.622409][T25184] ep_head 3KB 20KB [ 541.622424][T25184] eventpoll_pwq 8KB 39KB [ 541.622438][T25184] eventpoll_epi 48KB 70KB [ 541.622451][T25184] inotify_inode_mark 25KB 42KB [ 541.622468][T25184] sgpool-128 433KB 595KB [ 541.622482][T25184] sgpool-64 308KB 446KB [ 541.622495][T25184] sgpool-32 102KB 252KB [ 541.622510][T25184] sgpool-16 84KB 156KB [ 541.622524][T25184] sgpool-8 67KB 101KB [ 541.622538][T25184] bio_crypt_ctx 9KB 11KB [ 541.622551][T25184] bio_integrity_data 7KB 8KB [ 541.622564][T25184] request_queue 214KB 247KB [ 541.622578][T25184] blkdev_ioc 20KB 63KB [ 541.622592][T25184] bio-200 274KB 296KB [ 541.622605][T25184] biovec-max 1364KB 1402KB [ 541.622618][T25184] biovec-128 119KB 255KB [ 541.622632][T25184] biovec-64 199KB 283KB [ 541.622646][T25184] biovec-16 53KB 85KB [ 541.622661][T25184] mm_slot 12KB 15KB [ 541.622673][T25184] ksm_mm_slot 10KB 12KB [ 541.622692][T25184] uid_cache 28KB 54KB [ 541.622707][T25184] iommu_iova_magazine 1008KB 1134KB [ 541.622721][T25184] iommu_iova 279KB 280KB [ 541.622734][T25184] dmaengine-unmap-256 26KB 30KB [ 541.622747][T25184] dmaengine-unmap-128 14KB 30KB [ 541.622760][T25184] dmaengine-unmap-16 7KB 8KB [ 541.622772][T25184] dmaengine-unmap-2 3KB 4KB [ 541.622787][T25184] QIPCRTR 34KB 156KB [ 541.622800][T25184] audit_buffer 20KB 42KB [ 541.622813][T25184] skbuff_ext_cache 19KB 36KB [ 541.622827][T25184] skbuff_small_head 806KB 879KB [ 541.622841][T25184] skbuff_fclone_cache 90KB 140KB [ 541.622857][T25184] skbuff_head_cache 1101KB 1179KB [ 541.622870][T25184] configfs_dir_cache 29KB 32KB [ 541.622883][T25184] file_lease_cache 27KB 31KB [ 541.622896][T25184] file_lock_cache 24KB 71KB [ 541.622909][T25184] file_lock_ctx 36KB 43KB [ 541.622923][T25184] fsnotify_inode_mark_connector 20KB 39KB [ 541.622939][T25184] posix_timers_cache 33KB 64KB [ 541.622954][T25184] taskstats 70KB 175KB [ 541.622968][T25184] mem_cgroup_per_node 117KB 154KB [ 541.622980][T25184] mem_cgroup 159KB 178KB [ 541.622998][T25184] proc_dir_entry 677KB 765KB [ 541.623012][T25184] pde_opener 2KB 15KB [ 541.623025][T25184] seq_file 20KB 70KB [ 541.623038][T25184] sigqueue 16KB 39KB [ 541.623057][T25184] shmem_inode_cache 7922KB 8757KB [ 541.623070][T25184] kernfs_iattrs_cache 44KB 46KB [ 541.623141][T25184] kernfs_node_cache 35746KB 36791KB [ 541.623156][T25184] mnt_cache 91KB 126KB [ 541.623177][T25184] filp 352KB 661KB [ 541.623194][T25184] names_cache 300KB 348KB [ 541.623207][T25184] net_namespace 105KB 231KB [ 541.623220][T25184] ima_iint_cache 24KB 63KB [ 541.623253][T25184] lsm_inode_cache 1555KB 1834KB [ 541.623270][T25184] lsm_file_cache 105KB 200KB [ 541.623285][T25184] key_jar 34KB 78KB [ 541.623299][T25184] uts_namespace 72KB 123KB [ 541.623312][T25184] nsproxy 11KB 31KB [ 541.623340][T25184] vm_area_struct 880KB 1226KB [ 541.623355][T25184] fs_cache 28KB 64KB [ 541.623374][T25184] files_cache 149KB 223KB [ 541.623393][T25184] signal_cache 879KB 2033KB [ 541.623412][T25184] sighand_cache 1116KB 2074KB [ 541.623431][T25184] task_struct 4511KB 5292KB [ 541.623451][T25184] cred 142KB 320KB [ 541.623469][T25184] anon_vma_chain 278KB 358KB [ 541.623488][T25184] anon_vma 293KB 454KB [ 541.623505][T25184] pid 146KB 406KB [ 541.623525][T25184] Acpi-Operand 195KB 328KB [ 541.623538][T25184] Acpi-ParseExt 21KB 39KB [ 541.623552][T25184] Acpi-Parse 19KB 27KB [ 541.623566][T25184] Acpi-State 9KB 31KB [ 541.623579][T25184] Acpi-Namespace 31KB 48KB [ 541.623592][T25184] shared_policy_node 14KB 16KB [ 541.623605][T25184] numa_policy 8KB 16KB [ 541.623620][T25184] perf_event 15KB 31KB [ 541.623636][T25184] trace_event_file 540KB 540KB [ 541.623652][T25184] ftrace_event_field 1026KB 1027KB [ 541.623671][T25184] pool_workqueue 1995KB 2128KB [ 541.623687][T25184] task_group 91KB 108KB [ 541.623718][T25184] maple_node 722KB 1448KB [ 541.623736][T25184] mm_struct 275KB 551KB [ 541.623761][T25184] vmap_area 1321KB 1449KB [ 541.623885][T25184] debug_objects_cache 2537KB 5676KB [ 541.623909][T25184] page->ptl 140KB 232KB [ 541.623928][T25184] kmalloc-cg-8k 3136KB 3552KB [ 541.623963][T25184] kmalloc-cg-4k 16024KB 18208KB [ 541.623999][T25184] kmalloc-cg-2k 10852KB 12736KB [ 541.624021][T25184] kmalloc-cg-1k 2852KB 3392KB [ 541.624038][T25184] kmalloc-cg-512 1424KB 1440KB [ 541.624058][T25184] kmalloc-cg-256 524KB 616KB [ 541.624078][T25184] kmalloc-cg-128 254KB 292KB [ 541.624097][T25184] kmalloc-cg-64 72KB 132KB [ 541.624117][T25184] kmalloc-cg-32 45KB 176KB [ 541.624134][T25184] kmalloc-cg-16 6KB 28KB [ 541.624151][T25184] kmalloc-cg-8 24KB 44KB [ 541.624168][T25184] kmalloc-cg-192 76KB 92KB [ 541.624185][T25184] kmalloc-cg-96 49KB 80KB [ 541.624223][T25184] kmalloc-8k 5536KB 5856KB [ 541.624246][T25184] kmalloc-4k 27112KB 27936KB [ 541.624269][T25184] kmalloc-2k 11524KB 12704KB [ 541.624288][T25184] kmalloc-1k 8014KB 8128KB [ 541.624328][T25184] kmalloc-512 11081KB 11936KB [ 541.624345][T25184] kmalloc-256 5515KB 5532KB [ 541.624379][T25184] kmalloc-128 1513KB 1664KB [ 541.624423][T25184] kmalloc-64 3027KB 3344KB [ 541.624508][T25184] kmalloc-32 1849KB 3064KB [ 541.624529][T25184] kmalloc-16 481KB 532KB [ 541.624567][T25184] kmalloc-8 1065KB 1412KB [ 541.624600][T25184] kmalloc-192 1867KB 2056KB [ 541.624638][T25184] kmalloc-96 1524KB 1960KB [ 541.624654][T25184] kmem_cache_node 213KB 220KB [ 541.624670][T25184] kmem_cache 177KB 226KB [ 541.624686][T25184] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz0,task=syz.0.24752,pid=25184,uid=0 [ 541.625136][T25184] Out of memory (oom_kill_allocating_task): Killed process 25184 (syz.0.24752) total-vm:104052kB, anon-rss:4kB, file-rss:20484kB, shmem-rss:0kB, UID:0 pgtables:108kB oom_score_adj:1000 [ 541.958565][T25227] netlink: 68 bytes leftover after parsing attributes in process `syz.4.24774'. [ 542.366361][T25274] netlink: 20 bytes leftover after parsing attributes in process `syz.3.24798'. [ 542.405114][T25278] netlink: 8 bytes leftover after parsing attributes in process `syz.0.24800'. [ 542.479116][T25286] loop7: detected capacity change from 0 to 7 [ 542.506757][T25286] Dev loop7: unable to read RDB block 7 [ 542.508821][T25286] loop7: unable to read partition table [ 542.511546][T25286] loop7: partition table beyond EOD, truncated [ 542.514035][T25286] loop_reread_partitions: partition scan of loop7 (Cj̖P=ý?}X %`ր{֐ȵ4FLQk݊) failed (rc=-5) [ 542.569932][ T59] libceph: connect (1)[c::]:6789 error -22 [ 542.571993][ T59] libceph: mon0 (1)[c::]:6789 connect error [ 542.851846][ T59] libceph: connect (1)[c::]:6789 error -22 [ 542.854050][ T59] libceph: mon0 (1)[c::]:6789 connect error [ 543.399010][ T59] libceph: connect (1)[c::]:6789 error -22 [ 543.401940][ T59] libceph: mon0 (1)[c::]:6789 connect error [ 543.451189][T25297] ceph: No mds server is up or the cluster is laggy [ 543.547522][T25313] netlink: 4 bytes leftover after parsing attributes in process `syz.3.24815'. [ 543.551693][T25313] team0: Master is either lo or non-ether device [ 543.619008][T25319] random: crng reseeded on system resumption [ 543.637674][T25323] netlink: 'syz.0.24828': attribute type 1 has an invalid length. [ 543.641415][T25323] netlink: 104088 bytes leftover after parsing attributes in process `syz.0.24828'. [ 544.029968][T25358] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 544.092575][ T40] audit: type=1326 audit(513.967:23005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25364 comm="syz.0.24840" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f36f6c code=0x0 [ 544.168248][T25373] CUSE: DEVNAME unspecified [ 544.262543][T25382] RDS: rds_bind could not find a transport for fe88::105, load rds_tcp or rds_rdma? [ 544.385408][T25389] netlink: 4 bytes leftover after parsing attributes in process `syz.4.24852'. [ 544.398235][T25389] 8021q: adding VLAN 0 to HW filter on device ipvlan3 [ 544.401580][T25389] team0: Device ipvlan3 is already an upper device of the team interface [ 544.454174][ T59] usb 6-1: new high-speed USB device number 23 using dummy_hcd [ 544.614454][ T59] usb 6-1: Using ep0 maxpacket: 32 [ 544.617837][ T59] usb 6-1: config index 0 descriptor too short (expected 156, got 27) [ 544.620920][ T59] usb 6-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 544.624927][ T59] usb 6-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 544.629481][ T59] usb 6-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 544.635002][ T59] usb 6-1: config 0 interface 0 has no altsetting 0 [ 544.639940][ T59] usb 6-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 544.642823][ T59] usb 6-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 544.645539][ T59] usb 6-1: Product: syz [ 544.647334][ T59] usb 6-1: Manufacturer: syz [ 544.648962][ T59] usb 6-1: SerialNumber: syz [ 544.652003][ T59] usb 6-1: config 0 descriptor?? [ 544.656752][ T59] ldusb 6-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 544.661083][ T59] ldusb 6-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 544.877898][ T59] usb 6-1: USB disconnect, device number 23 [ 544.884554][ T59] ldusb 6-1:0.0: LD USB Device #0 now disconnected [ 545.647327][T25429] netlink: 4 bytes leftover after parsing attributes in process `syz.1.24874'. [ 545.890622][T25450] can0: slcan on ptm0. [ 546.026907][T25447] can0 (unregistered): slcan off ptm0. [ 546.175874][T25465] syz.3.24880 (25465): drop_caches: 2 [ 546.725730][T25501] syz.1.24893 (25501): drop_caches: 2 [ 546.802480][T25510] netlink: 8 bytes leftover after parsing attributes in process `syz.1.24898'. [ 548.009267][ T40] audit: type=1326 audit(517.626:23006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25531 comm="syz.1.24909" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703ef6c code=0x7ffc0000 [ 548.019859][ T40] audit: type=1326 audit(517.626:23007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25531 comm="syz.1.24909" exe="/syz-executor" sig=0 arch=40000003 syscall=120 compat=1 ip=0xf703ef6c code=0x7ffc0000 [ 548.040199][ T40] audit: type=1326 audit(517.636:23008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25531 comm="syz.1.24909" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703ef6c code=0x7ffc0000 [ 548.051545][ T40] audit: type=1326 audit(517.636:23009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25531 comm="syz.1.24909" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703ef6c code=0x7ffc0000 [ 548.060707][ T40] audit: type=1326 audit(517.655:23010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25537 comm="syz.1.24909" exe="/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf7175cab code=0x7ffc0000 [ 548.071629][ T40] audit: type=1326 audit(517.673:23011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25531 comm="syz.1.24909" exe="/syz-executor" sig=0 arch=40000003 syscall=284 compat=1 ip=0xf703ef6c code=0x7ffc0000 [ 548.204980][ T40] audit: type=1326 audit(517.804:23012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25537 comm="syz.1.24909" exe="/syz-executor" sig=0 arch=40000003 syscall=1 compat=1 ip=0xf703ef6c code=0x7ffc0000 [ 548.213573][ T40] audit: type=1326 audit(517.814:23013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25531 comm="syz.1.24909" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf703ef88 code=0x7ffc0000 [ 548.222122][ T40] audit: type=1326 audit(517.814:23014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25531 comm="syz.1.24909" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703ef6c code=0x7ffc0000 [ 548.280390][ T29] usb 9-1: new high-speed USB device number 2 using dummy_hcd [ 548.450719][ T29] usb 9-1: Using ep0 maxpacket: 32 [ 548.453834][ T29] usb 9-1: config index 0 descriptor too short (expected 156, got 27) [ 548.456613][ T29] usb 9-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 548.460416][ T29] usb 9-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 548.464402][ T29] usb 9-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 548.469572][ T29] usb 9-1: config 0 interface 0 has no altsetting 0 [ 548.473957][ T29] usb 9-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 548.477009][ T29] usb 9-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 548.479928][ T29] usb 9-1: Product: syz [ 548.481335][ T29] usb 9-1: Manufacturer: syz [ 548.483190][ T29] usb 9-1: SerialNumber: syz [ 548.491438][ T29] usb 9-1: config 0 descriptor?? [ 548.496804][ T29] ldusb 9-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 548.504678][ T29] ldusb 9-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 548.719135][ T29] usb 9-1: USB disconnect, device number 2 [ 548.724304][ T29] ldusb 9-1:0.0: LD USB Device #0 now disconnected [ 549.251758][ T53] hid-generic 0006:0009:0000.000F: unknown main item tag 0x4 [ 549.253899][ T53] hid-generic 0006:0009:0000.000F: hidraw0: VIRTUAL HID v0.05 Device [syz1] on syz0 [ 549.330579][T25564] fido_id[25564]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 549.415304][T25576] netlink: 4 bytes leftover after parsing attributes in process `syz.4.24927'. [ 549.426602][T25576] netlink: 4 bytes leftover after parsing attributes in process `syz.4.24927'. [ 549.616064][ T9] usb 8-1: new high-speed USB device number 18 using dummy_hcd [ 549.787620][ T9] usb 8-1: Using ep0 maxpacket: 32 [ 549.791548][ T9] usb 8-1: config index 0 descriptor too short (expected 156, got 27) [ 549.795141][ T9] usb 8-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 549.801121][ T9] usb 8-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 549.806670][ T9] usb 8-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 549.824384][ T9] usb 8-1: config 0 interface 0 has no altsetting 0 [ 549.836124][ T9] usb 8-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 549.840165][ T9] usb 8-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 549.843933][ T9] usb 8-1: Product: syz [ 549.846038][ T9] usb 8-1: Manufacturer: syz [ 549.848236][ T9] usb 8-1: SerialNumber: syz [ 549.862156][ T9] usb 8-1: config 0 descriptor?? [ 549.869873][ T9] ldusb 8-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 549.885789][ T9] ldusb 8-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 550.025373][T25610] loop7: detected capacity change from 0 to 7 [ 550.057406][T25191] Dev loop7: unable to read RDB block 7 [ 550.060129][T25191] loop7: unable to read partition table [ 550.062792][T25191] loop7: partition table beyond EOD, truncated [ 550.093525][ T9] usb 8-1: USB disconnect, device number 18 [ 550.096808][T25610] Dev loop7: unable to read RDB block 7 [ 550.099445][T25610] loop7: unable to read partition table [ 550.102089][T25610] loop7: partition table beyond EOD, truncated [ 550.104798][T25610] loop_reread_partitions: partition scan of loop7 (Cj̖P=ý?}X %`ր{֐ȵ4FLQk݊) failed (rc=-5) [ 550.115043][ T9] ldusb 8-1:0.0: LD USB Device #0 now disconnected [ 550.980855][T25648] netlink: 52 bytes leftover after parsing attributes in process `syz.3.24962'. [ 551.002995][T25648] tipc: Invalid UDP bearer configuration [ 551.003048][T25648] tipc: Enabling of bearer rejected, failed to enable media [ 551.064088][T25655] netlink: 16 bytes leftover after parsing attributes in process `syz.3.24964'. [ 551.124794][T25660] netlink: 12 bytes leftover after parsing attributes in process `syz.0.24967'. [ 551.274321][T25671] 8021q: VLANs not supported on team0 [ 551.744824][T25696] overlayfs: workdir and upperdir must be separate subtrees [ 552.302665][T25730] netlink: 4 bytes leftover after parsing attributes in process `syz.0.25002'. [ 552.342773][T25714] syz.1.24994 (25714): drop_caches: 1 [ 552.429989][T25714] syz.1.24994 (25714): drop_caches: 1 [ 552.437056][ T9] usb 9-1: new high-speed USB device number 3 using dummy_hcd [ 552.639068][ T9] usb 9-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 552.643737][ T9] usb 9-1: config 0 interface 0 has no altsetting 0 [ 552.647585][ T9] usb 9-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 552.651075][ T9] usb 9-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 552.654168][ T9] usb 9-1: Product: syz [ 552.655876][ T9] usb 9-1: Manufacturer: syz [ 552.657600][ T9] usb 9-1: SerialNumber: syz [ 552.660545][ T9] usb 9-1: config 0 descriptor?? [ 552.667400][ T9] usb 9-1: selecting invalid altsetting 0 [ 552.786450][T25760] block device autoloading is deprecated and will be removed. [ 552.890657][ T9] usb 9-1: USB disconnect, device number 3 [ 553.539224][T25828] IPVS: sync thread started: state = BACKUP, mcast_ifn = bridge_slave_0, syncid = 0, id = 0 [ 553.757153][T25849] netlink: 12 bytes leftover after parsing attributes in process `syz.3.25054'. [ 554.228727][T25878] netlink: 'syz.4.25068': attribute type 62 has an invalid length. [ 554.695841][T25909] CIFS: Unable to determine destination address [ 554.882401][T25927] netlink: 8 bytes leftover after parsing attributes in process `syz.0.25092'. [ 554.887161][T25927] netlink: 12 bytes leftover after parsing attributes in process `syz.0.25092'. [ 554.892128][T25927] netlink: 4 bytes leftover after parsing attributes in process `syz.0.25092'. [ 555.071575][T25945] ALSA: mixer_oss: invalid index 20000 [ 555.147702][ T361] tipc: Subscription rejected, illegal request [ 556.330113][ T40] kauditd_printk_skb: 1 callbacks suppressed [ 556.330132][ T40] audit: type=1400 audit(525.412:23016): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=25983 comm="syz.3.25119" [ 556.784728][T26014] netlink: 260 bytes leftover after parsing attributes in process `syz.1.25133'. [ 556.789820][T26014] netlink: 64 bytes leftover after parsing attributes in process `syz.1.25133'. [ 557.525134][T26081] sp0: Synchronizing with TNC [ 557.620276][T26085] sch_tbf: peakrate 1 is lower than or equals to rate 16149960914006595198 ! [ 558.213190][ T13] tipc: Subscription rejected, illegal request [ 558.244091][T26120] IPVS: ip_vs_edit_dest(): lower threshold is higher than upper threshold [ 559.223193][T26185] IPVS: sync thread started: state = BACKUP, mcast_ifn = hsr0, syncid = 786440, id = 0 [ 559.223945][T26184] IPVS: stopping backup sync thread 26185 ... [ 559.240644][T26168] syz.0.25205 (26168): drop_caches: 1 [ 559.330223][T26168] syz.0.25205 (26168): drop_caches: 1 [ 559.782184][T26220] netlink: 32 bytes leftover after parsing attributes in process `syz.4.25230'. [ 559.941369][T26239] IPVS: stopping backup sync thread 25828 ... [ 560.805446][T26306] netlink: 4 bytes leftover after parsing attributes in process `syz.1.25272'. [ 560.813179][T26306] netlink: 173 bytes leftover after parsing attributes in process `syz.1.25272'. [ 560.826683][ T5300] Bluetooth: hci4: command 0x2016 tx timeout [ 560.859224][T26310] netlink: 'syz.4.25273': attribute type 1 has an invalid length. [ 560.863370][T26310] netlink: 'syz.4.25273': attribute type 3 has an invalid length. [ 561.782232][T26368] netlink: 4 bytes leftover after parsing attributes in process `syz.3.25300'. [ 562.724038][T26416] IPVS: Unknown mcast interface: bridge_slave_0 [ 562.770578][ T39] usb 9-1: new high-speed USB device number 4 using dummy_hcd [ 562.908974][ T71] usb 8-1: new high-speed USB device number 19 using dummy_hcd [ 562.941034][ T39] usb 9-1: Using ep0 maxpacket: 16 [ 562.942602][ T39] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 562.951912][ T39] usb 9-1: config 0 interface 0 has no altsetting 0 [ 562.957688][ T39] usb 9-1: New USB device found, idVendor=15c2, idProduct=0041, bcdDevice=1f.20 [ 562.967827][ T39] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 562.970596][ T39] usb 9-1: Product: syz [ 562.972084][ T39] usb 9-1: Manufacturer: syz [ 562.973749][ T39] usb 9-1: SerialNumber: syz [ 562.981442][ T39] usb 9-1: config 0 descriptor?? [ 563.059000][ T5300] Bluetooth: hci4: command 0x2016 tx timeout [ 563.092104][ T71] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 563.095578][ T71] usb 8-1: config 0 interface 0 has no altsetting 0 [ 563.099485][ T71] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 563.103114][ T71] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 563.106608][ T71] usb 8-1: Product: syz [ 563.108030][ T71] usb 8-1: Manufacturer: syz [ 563.109599][ T71] usb 8-1: SerialNumber: syz [ 563.112890][ T71] usb 8-1: config 0 descriptor?? [ 563.121920][ T71] usb 8-1: selecting invalid altsetting 0 [ 563.392135][ T7140] usb 8-1: USB disconnect, device number 19 [ 563.990386][T26449] overlayfs: workdir and upperdir must be separate subtrees [ 564.059331][T26452] IPVS: sync thread started: state = BACKUP, mcast_ifn = bridge_slave_0, syncid = 0, id = 0 [ 564.171925][T26460] netlink: 24 bytes leftover after parsing attributes in process `syz.1.25339'. [ 564.397295][T26476] netlink: 12 bytes leftover after parsing attributes in process `syz.1.25345'. [ 564.911068][T26515] Invalid source name [ 565.735968][T26554] CIFS: VFS: Malformed UNC in devname [ 565.745699][ C1] imon 9-1:0.0: imon usb_rx_callback_intf0: status(-71) [ 565.768797][ T39] input: iMON Panel, Knob and Mouse(15c2:0041) as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/input/input78 [ 565.796075][ T39] imon:send_packet: packet tx failed (-71) [ 565.806861][T26559] sctp: [Deprecated]: syz.0.25388 (pid 26559) Use of struct sctp_assoc_value in delayed_ack socket option. [ 565.806861][T26559] Use struct sctp_sack_info instead [ 565.820905][T26561] netlink: 40 bytes leftover after parsing attributes in process `syz.4.25389'. [ 565.826734][ T39] imon 9-1:0.0: panel buttons/knobs setup failed [ 565.965614][ T39] rc_core: IR keymap rc-imon-pad not found [ 565.967587][ T39] Registered IR keymap rc-empty [ 565.969200][ T39] imon 9-1:0.0: Looks like you're trying to use an IR protocol this device does not support [ 565.972370][ T39] imon 9-1:0.0: Unsupported IR protocol specified, overriding to iMON IR protocol [ 565.987598][ T39] imon:send_packet: packet tx failed (-71) [ 566.009668][ T39] imon 9-1:0.0: remote input dev register failed [ 566.012027][ T39] imon 9-1:0.0: imon_init_intf0: rc device setup failed [ 566.174198][ T39] imon 9-1:0.0: unable to initialize intf0, err 0 [ 566.177261][ T39] imon:imon_probe: failed to initialize context! [ 566.194293][ T39] imon 9-1:0.0: unable to register, err -19 [ 566.205367][ T39] usb 9-1: USB disconnect, device number 4 [ 566.603447][ C3] sr 2:0:0:0: [sr0] tag#12 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 566.606912][ C3] sr 2:0:0:0: [sr0] tag#12 CDB: Regenerate(16) 82 5a 86 a5 26 a3 50 1f b1 dd 8d ff 3e 90 d6 f5 [ 566.775698][T26637] netlink: 'syz.1.25424': attribute type 10 has an invalid length. [ 566.779325][T26637] netlink: 256 bytes leftover after parsing attributes in process `syz.1.25424'. [ 566.994902][ T63] Bluetooth: hci4: link tx timeout [ 566.997437][ T63] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa [ 567.003779][ T63] Bluetooth: hci4: link tx timeout [ 567.005429][ T63] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa [ 567.027130][T26670] netlink: 68 bytes leftover after parsing attributes in process `syz.0.25440'. [ 567.031233][T26670] netlink: 16 bytes leftover after parsing attributes in process `syz.0.25440'. [ 567.062809][ T40] audit: type=1326 audit(535.453:23017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26673 comm="syz.3.25442" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f05f6c code=0x0 [ 567.092457][T26677] vlan1: entered promiscuous mode [ 567.094354][T26677] vlan1: entered allmulticast mode [ 567.095968][T26677] syz_tun: entered allmulticast mode [ 567.098786][T26678] tipc: Started in network mode [ 567.100713][T26678] tipc: Node identity aaaaaaaaaa2a, cluster identity 4711 [ 567.103651][T26678] tipc: Enabled bearer , priority 10 [ 567.229353][T26692] netlink: 20 bytes leftover after parsing attributes in process `syz.1.25450'. [ 567.823541][T26738] binder: 26737:26738 ioctl c0306201 80000680 returned -14 [ 567.913692][T26745] netlink: 8 bytes leftover after parsing attributes in process `syz.1.25475'. [ 567.961545][T26751] x_tables: ip6_tables: recent.0 match: invalid size 216 (kernel) != (user) 232 [ 567.969368][T26753] usb usb8: usbfs: process 26753 (syz.1.25479) did not claim interface 4 before use [ 568.171101][ T7140] tipc: Node number set to 8432298 [ 569.205328][ T63] Bluetooth: hci4: command 0x2016 tx timeout [ 569.352919][T26874] IPVS: Error connecting to the multicast addr [ 569.456835][T26880] random: crng reseeded on system resumption [ 569.496761][T26882] netlink: 120 bytes leftover after parsing attributes in process `syz.3.25540'. [ 569.499754][T26882] netlink: 'syz.3.25540': attribute type 1 has an invalid length. [ 569.502990][T26882] netlink: 64 bytes leftover after parsing attributes in process `syz.3.25540'. [ 569.756092][T26913] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 570.196710][T26942] mkiss: ax0: crc mode is auto. [ 570.296485][T26953] tipc: Enabling of bearer rejected, failed to enable media [ 571.745338][T27096] netlink: 44 bytes leftover after parsing attributes in process `syz.4.25643'. [ 571.756462][T27096] netlink: 43 bytes leftover after parsing attributes in process `syz.4.25643'. [ 571.760229][T27096] netlink: 'syz.4.25643': attribute type 6 has an invalid length. [ 571.762877][T27096] netlink: 'syz.4.25643': attribute type 5 has an invalid length. [ 571.765675][T27096] netlink: 43 bytes leftover after parsing attributes in process `syz.4.25643'. [ 571.790577][T27088] syz.3.25639 (27088) used greatest stack depth: 19088 bytes left [ 571.938509][T27129] netlink: 'syz.1.25658': attribute type 29 has an invalid length. [ 571.943979][T27129] netlink: 'syz.1.25658': attribute type 29 has an invalid length. [ 572.117977][T27139] syz.1.25664 invoked oom-killer: gfp_mask=0x140dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO|__GFP_COMP), order=0, oom_score_adj=1000 [ 572.125297][T27139] CPU: 1 UID: 0 PID: 27139 Comm: syz.1.25664 Tainted: G L syzkaller #0 PREEMPT(full) [ 572.125317][T27139] Tainted: [L]=SOFTLOCKUP [ 572.125321][T27139] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 572.125328][T27139] Call Trace: [ 572.125333][T27139] [ 572.125338][T27139] dump_stack_lvl+0x100/0x190 [ 572.125404][T27139] dump_header+0xfb/0x606 [ 572.125417][T27139] oom_kill_process.cold+0xd/0x330 [ 572.125431][T27139] out_of_memory+0x1256/0x14f0 [ 572.125453][T27139] ? __pfx_out_of_memory+0x10/0x10 [ 572.125480][T27139] __alloc_frozen_pages_noprof+0x233d/0x2ba0 [ 572.125506][T27139] ? is_bpf_text_address+0x8a/0x1a0 [ 572.125525][T27139] ? is_bpf_text_address+0x8a/0x1a0 [ 572.125544][T27139] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 572.125562][T27139] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 572.125578][T27139] ? __lock_acquire+0x4a5/0x2630 [ 572.125600][T27139] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 572.125612][T27139] ? cpuset_nodemask_valid_mems_allowed+0x5f/0x80 [ 572.125630][T27139] ? policy_nodemask+0xed/0x4f0 [ 572.125644][T27139] alloc_pages_mpol+0x1fb/0x550 [ 572.125658][T27139] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 572.125674][T27139] folio_alloc_mpol_noprof+0x36/0x340 [ 572.125694][T27139] vma_alloc_folio_noprof+0xed/0x1d0 [ 572.125712][T27139] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 572.125737][T27139] do_anonymous_page+0xb3a/0x1fb0 [ 572.125759][T27139] __handle_mm_fault+0x1d48/0x2b60 [ 572.125777][T27139] ? mt_find+0x45e/0x8e0 [ 572.125845][T27139] ? __pfx___handle_mm_fault+0x10/0x10 [ 572.125872][T27139] ? __pfx_mt_find+0x10/0x10 [ 572.125895][T27139] ? find_vma+0xbf/0x140 [ 572.125906][T27139] ? __pfx_find_vma+0x10/0x10 [ 572.125920][T27139] handle_mm_fault+0x36d/0xa20 [ 572.125949][T27139] do_user_addr_fault+0x74c/0x12f0 [ 572.125975][T27139] exc_page_fault+0x6f/0xd0 [ 572.125990][T27139] asm_exc_page_fault+0x26/0x30 [ 572.126001][T27139] RIP: 0010:_copy_to_iter+0x4c0/0x1720 [ 572.126086][T27139] Code: 00 e8 24 ea 15 fd 48 8b 74 24 18 48 8b 44 24 08 4c 8d 24 06 89 de 4c 89 e7 e8 bc 87 81 fd 0f 01 cb 48 89 d9 4c 89 f7 4c 89 e6 a4 0f 1f 00 49 89 cc 0f 01 ca 48 89 d8 48 29 c8 48 01 44 24 08 [ 572.126098][T27139] RSP: 0018:ffffc90003c4f9f0 EFLAGS: 00050246 [ 572.126108][T27139] RAX: 0000000000000001 RBX: 0000000000000824 RCX: 0000000000000824 [ 572.126115][T27139] RDX: 0000000000000001 RSI: ffff888012fb0000 RDI: 0000000080004180 [ 572.126121][T27139] RBP: ffffc90003c4fbf8 R08: 0000000000000000 R09: ffffed10025f6104 [ 572.126128][T27139] R10: ffff888012fb0823 R11: 0000000000000000 R12: ffff888012fb0000 [ 572.126135][T27139] R13: 0000000000000000 R14: 0000000080004180 R15: 0000000000000824 [ 572.126153][T27139] ? __pfx__copy_to_iter+0x10/0x10 [ 572.126167][T27139] ? m_stop+0x39c/0x500 [ 572.126185][T27139] ? m_stop+0x333/0x500 [ 572.126202][T27139] seq_read_iter+0xdab/0x1270 [ 572.126227][T27139] seq_read+0x33b/0x4c0 [ 572.126258][T27139] ? __pfx_seq_read+0x10/0x10 [ 572.126276][T27139] ? __pfx___might_resched+0x10/0x10 [ 572.126302][T27139] ? rw_verify_area+0xce/0x6d0 [ 572.126319][T27139] ? __pfx_seq_read+0x10/0x10 [ 572.126337][T27139] vfs_read+0x1e4/0xb30 [ 572.126350][T27139] ? __pfx_vfs_read+0x10/0x10 [ 572.126361][T27139] ? __fget_files+0x215/0x3d0 [ 572.126376][T27139] ? __fget_files+0x21f/0x3d0 [ 572.126391][T27139] ksys_read+0x12a/0x250 [ 572.126402][T27139] ? __pfx_ksys_read+0x10/0x10 [ 572.126417][T27139] __do_fast_syscall_32+0xe3/0x8c0 [ 572.126432][T27139] do_fast_syscall_32+0x32/0x70 [ 572.126445][T27139] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 572.126463][T27139] RIP: 0023:0xf703ef6c [ 572.126473][T27139] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8 [ 572.126483][T27139] RSP: 002b:00000000f542d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000003 [ 572.126493][T27139] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080004180 [ 572.126500][T27139] RDX: 0000000000002020 RSI: 0000000000000000 RDI: 0000000000000000 [ 572.126506][T27139] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 572.126512][T27139] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 572.126518][T27139] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 572.126533][T27139] [ 572.126630][T27139] Mem-Info: [ 572.277782][T27139] active_anon:773 inactive_anon:1232 isolated_anon:0 [ 572.277782][T27139] active_file:9766 inactive_file:13488 isolated_file:0 [ 572.277782][T27139] unevictable:1768 dirty:12 writeback:0 [ 572.277782][T27139] slab_reclaimable:7021 slab_unreclaimable:68346 [ 572.277782][T27139] mapped:22171 shmem:1774 pagetables:1674 [ 572.277782][T27139] sec_pagetables:377 bounce:0 [ 572.277782][T27139] kernel_misc_reclaimable:0 [ 572.277782][T27139] free:39311 free_pcp:32 free_cma:0 [ 572.292433][T27139] Node 0 active_anon:8kB inactive_anon:24kB active_file:0kB inactive_file:4kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:16kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8000kB pagetables:1400kB sec_pagetables:1140kB all_unreclaimable? yes Balloon:0kB [ 572.302783][T27139] Node 0 DMA free:2884kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 572.313484][T27139] lowmem_reserve[]: 0 285 285 285 285 [ 572.315781][T27139] Node 0 DMA32 free:31660kB boost:24576kB min:37644kB low:40908kB high:44172kB reserved_highatomic:0KB free_highatomic:0KB active_anon:8kB inactive_anon:24kB active_file:0kB inactive_file:4kB unevictable:3536kB writepending:0kB zspages:1112kB present:1032196kB managed:292464kB mlocked:0kB bounce:0kB free_pcp:128kB local_pcp:0kB free_cma:0kB [ 572.327540][T27139] lowmem_reserve[]: 0 0 0 0 0 [ 572.329247][T27139] Node 0 DMA: 69*4kB (UE) 26*8kB (UE) 6*16kB (U) 12*32kB (UE) 4*64kB (UE) 1*128kB (E) 0*256kB 1*512kB (E) 1*1024kB (E) 0*2048kB 0*4096kB = 2884kB [ 572.334886][T27139] Node 0 DMA32: 717*4kB (UME) 345*8kB (UME) 201*16kB (UME) 213*32kB (UME) 84*64kB (UME) 25*128kB (UME) 9*256kB (UME) 10*512kB (UM) 0*1024kB 0*2048kB 0*4096kB = 31660kB [ 572.340136][T27139] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 572.343111][T27139] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 572.346202][T27139] 26664 total pagecache pages [ 572.347753][T27139] 1529 pages in swap cache [ 572.349324][T27139] Free swap = 97240kB [ 572.350774][T27139] Total swap = 124996kB [ 572.352164][T27139] 524155 pages RAM [ 572.353453][T27139] 0 pages HighMem/MovableOnly [ 572.355024][T27139] 210146 pages reserved [ 572.356530][T27139] 0 pages cma reserved [ 572.357948][T27139] Unreclaimable slab info: [ 572.360011][T27139] Name Used Total [ 572.362119][T27139] bio-184 7KB 8KB [ 572.364247][T27139] pid_3 31KB 63KB [ 572.366607][T27139] pid_2 86KB 126KB [ 572.368621][T27139] bio-464 17KB 31KB [ 572.370709][T27139] bio-528 19KB 31KB [ 572.372805][T27139] bio-544 19KB 31KB [ 572.374833][T27139] bio-560 19KB 31KB [ 572.376896][T27139] afs_inode_cache 56KB 61KB [ 572.379024][T27139] zswap_entry 430KB 592KB [ 572.381001][T27139] AF_VSOCK 67KB 183KB [ 572.382979][T27139] sw_flow_stats 24KB 36KB [ 572.385010][T27139] sw_flow 32KB 122KB [ 572.387252][T27139] batadv_tt_change_cache 11KB 16KB [ 572.389487][T27139] batadv_tl_cache 28KB 32KB [ 572.391693][T27139] ceph_osd_request 8KB 95KB [ 572.394019][T27139] ceph_msg 3KB 30KB [ 572.396112][T27139] IEEE-802.15.4-MAC 40KB 125KB [ 572.400281][T27139] IEEE-802.15.4-RAW 36KB 157KB [ 572.402213][T27139] p9_req_t 9KB 39KB [ 572.404154][T27139] INET6_SMC 32KB 58KB [ 572.406102][T27139] INET_SMC 65KB 125KB [ 572.408269][T27139] SMC6 65KB 187KB [ 572.410321][T27139] SMC 46KB 187KB [ 572.412268][T27139] TIPC 32KB 154KB [ 572.414257][T27139] RDS 39KB 185KB [ 572.416195][T27139] rds_connection 34KB 62KB [ 572.418239][T27139] SCTPv6 80KB 210KB [ 572.420244][T27139] SCTP 63KB 214KB [ 572.422339][T27139] sctp_chunk 15KB 70KB [ 572.424323][T27139] sctp_bind_bucket 7KB 16KB [ 572.426520][T27139] PNPIPE 37KB 154KB [ 572.428493][T27139] PHONET 48KB 126KB [ 572.430855][T27139] L2TP/IPv6 48KB 159KB [ 572.432806][T27139] L2TP/IP 36KB 157KB [ 572.434837][T27139] KCM 40KB 155KB [ 572.436807][T27139] kcm_mux 50KB 94KB [ 572.438722][T27139] RXRPC 26KB 128KB [ 572.440729][T27139] rxrpc_call_jar 148KB 223KB [ 572.443619][T27139] can_gw 21KB 24KB [ 572.445653][T27139] can_receiver 12KB 23KB [ 572.447734][T27139] net_bridge_fdb_entry 25KB 43KB [ 572.449848][T27139] xfrm6_tunnel_spi 22KB 24KB [ 572.452264][T27139] MPTCPv6 82KB 223KB [ 572.454230][T27139] ip6-frags 36KB 63KB [ 572.456199][T27139] fib6_node 64KB 72KB [ 572.458053][T27139] ip6_dst_cache 57KB 148KB [ 572.460043][T27139] mfc6_cache 13KB 16KB [ 572.462938][T27139] PINGv6 35KB 154KB [ 572.465178][T27139] RAWv6 127KB 216KB [ 572.467253][T27139] UDPLITEv6 58KB 157KB [ 572.469410][T27139] UDPv6 94KB 220KB [ 572.471340][T27139] tw_sock_TCPv6 19KB 31KB [ 572.473497][T27139] request_sock_TCPv6 39KB 61KB [ 572.475438][T27139] TCPv6 212KB 327KB [ 572.477346][T27139] nf_conntrack 16KB 31KB [ 572.479177][T27139] wg_peer 116KB 148KB [ 572.481004][T27139] allowedips_node 20KB 31KB [ 572.482856][T27139] ubi_wl_entry_slab 2KB 3KB [ 572.485513][T27139] t10_alua_lu_gp_cache 8KB 15KB [ 572.488377][T27139] scsi_sense_cache 67KB 68KB [ 572.490980][T27139] virtio_scsi_cmd 21KB 24KB [ 572.493475][T27139] bio-136 46KB 72KB [ 572.496659][T27139] io_kiocb 0KB 31KB [ 572.499320][T27139] bio-264 39KB 55KB [ 572.501651][T27139] mqueue_inode_cache 72KB 212KB [ 572.504891][T27139] f2fs_bio_post_read_ctx 30KB 31KB [ 572.508183][T27139] jfs_mp 14KB 15KB [ 572.510396][T27139] orangefs_op_cache 51KB 68KB [ 572.512834][T27139] fuse_request 18KB 31KB [ 572.515409][T27139] cifs_small_rq 28KB 32KB [ 572.518551][T27139] cifs_request 67KB 67KB [ 572.520544][T27139] cifs_mpx_ids 8KB 15KB [ 572.523052][T27139] cifs_io_subrequest 42KB 47KB [ 572.525686][T27139] cifs_io_request 105KB 111KB [ 572.528807][T27139] nfs_commit_data 24KB 31KB [ 572.531551][T27139] nfs_write_data 38KB 63KB [ 572.534085][T27139] ecryptfs_sb_cache 20KB 31KB [ 572.536569][T27139] jbd2_inode 22KB 27KB [ 572.539592][T27139] ext4_system_zone 1KB 3KB [ 572.542240][T27139] ext4_io_end_vec 7KB 15KB [ 572.544772][T27139] kioctx 32KB 191KB [ 572.547459][T27139] aio_kiocb 12KB 46KB [ 572.550779][T27139] userfaultfd_ctx_cache 59KB 110KB [ 572.553872][T27139] dnotify_mark 33KB 35KB [ 572.556350][T27139] dnotify_struct 8KB 11KB [ 572.559507][T27139] fasync_cache 33KB 47KB [ 572.562025][T27139] zspage 132KB 177KB [ 572.564520][T27139] zs_handle 152KB 228KB [ 572.567056][T27139] pid_namespace 43KB 108KB [ 572.569782][T27139] kvm_gmem_inode_cache 15KB 31KB [ 572.572557][T27139] kvm_vcpu 62KB 125KB [ 572.575523][T27139] x86_emulator 63KB 126KB [ 572.578460][T27139] rpc_buffers 25KB 31KB [ 572.581865][T27139] rpc_tasks 8KB 15KB [ 572.584391][T27139] UNIX-STREAM 98KB 245KB [ 572.586694][T27139] UNIX 137KB 367KB [ 572.588920][T27139] ip4-frags 33KB 63KB [ 572.592370][T27139] mfc_cache 13KB 16KB [ 572.594916][T27139] UDP-Lite 68KB 191KB [ 572.597397][T27139] MPTCP 61KB 183KB [ 572.599499][T27139] tcp_bind2_bucket 23KB 32KB [ 572.602600][T27139] tcp_bind_bucket 23KB 32KB [ 572.605372][T27139] inet_peer 25KB 32KB [ 572.607992][T27139] xfrm_dst 17KB 55KB [ 572.610475][T27139] xfrm_state 41KB 191KB [ 572.612848][T27139] ip_fib_trie 24KB 40KB [ 572.615185][T27139] ip_fib_alias 63KB 79KB [ 572.617735][T27139] rtable 26KB 64KB [ 572.620596][T27139] PING 64KB 189KB [ 572.623979][T27139] RAW 80KB 223KB [ 572.626944][T27139] UDP 78KB 255KB [ 572.629359][T27139] request_sock_TCP 39KB 61KB [ 572.631546][T27139] TCP 436KB 637KB [ 572.634221][T27139] hugetlbfs_inode_cache 35KB 187KB [ 572.636947][T27139] netfs_subrequest 43KB 46KB [ 572.639612][T27139] netfs_request 130KB 143KB [ 572.641956][T27139] bio-280 21KB 23KB [ 572.644560][T27139] ep_head 2KB 20KB [ 572.647099][T27139] eventpoll_pwq 7KB 39KB [ 572.649607][T27139] eventpoll_epi 46KB 70KB [ 572.652111][T27139] inotify_inode_mark 39KB 46KB [ 572.654521][T27139] sgpool-128 42KB 297KB [ 572.657518][T27139] sgpool-64 65KB 286KB [ 572.660079][T27139] sgpool-32 37KB 252KB [ 572.662371][T27139] sgpool-16 35KB 140KB [ 572.664577][T27139] sgpool-8 33KB 78KB [ 572.667336][T27139] bio_crypt_ctx 9KB 11KB [ 572.670026][T27139] bio_integrity_data 7KB 8KB [ 572.672240][T27139] request_queue 214KB 247KB [ 572.674687][T27139] blkdev_ioc 20KB 63KB [ 572.677143][T27139] bio-200 109KB 148KB [ 572.679557][T27139] biovec-max 765KB 807KB [ 572.681717][T27139] biovec-128 63KB 223KB [ 572.684252][T27139] biovec-64 27KB 189KB [ 572.686970][T27139] biovec-16 18KB 62KB [ 572.689643][T27139] mm_slot 12KB 15KB [ 572.692143][T27139] ksm_mm_slot 10KB 12KB [ 572.694273][T27139] uid_cache 28KB 54KB [ 572.696793][T27139] iommu_iova_magazine 1009KB 1134KB [ 572.699480][T27139] iommu_iova 264KB 280KB [ 572.701562][T27139] dmaengine-unmap-256 26KB 30KB [ 572.704176][T27139] dmaengine-unmap-128 14KB 30KB [ 572.706906][T27139] dmaengine-unmap-16 7KB 8KB [ 572.709257][T27139] dmaengine-unmap-2 3KB 4KB [ 572.711866][T27139] QIPCRTR 29KB 156KB [ 572.714616][T27139] audit_buffer 17KB 39KB [ 572.717031][T27139] skbuff_ext_cache 18KB 36KB [ 572.719843][T27139] skbuff_small_head 572KB 833KB [ 572.722001][T27139] skbuff_fclone_cache 85KB 156KB [ 572.724436][T27139] skbuff_head_cache 437KB 531KB [ 572.726952][T27139] configfs_dir_cache 29KB 32KB [ 572.729322][T27139] file_lease_cache 26KB 31KB [ 572.732264][T27139] file_lock_cache 27KB 79KB [ 572.735209][T27139] file_lock_ctx 35KB 43KB [ 572.737837][T27139] fsnotify_inode_mark_connector 31KB 39KB [ 572.740782][T27139] posix_timers_cache 32KB 64KB [ 572.743331][T27139] taskstats 69KB 127KB [ 572.745416][T27139] mem_cgroup_per_node 117KB 154KB [ 572.747984][T27139] mem_cgroup 159KB 178KB [ 572.750477][T27139] proc_dir_entry 677KB 765KB [ 572.752885][T27139] pde_opener 10KB 15KB [ 572.755416][T27139] seq_file 52KB 78KB [ 572.757927][T27139] sigqueue 20KB 39KB [ 572.759999][T27139] shmem_inode_cache 8182KB 8849KB [ 572.762723][T27139] kernfs_iattrs_cache 44KB 46KB [ 572.765146][T27139] kernfs_node_cache 35811KB 36791KB [ 572.767702][T27139] mnt_cache 89KB 126KB [ 572.770583][T27139] filp 696KB 740KB [ 572.772989][T27139] names_cache 856KB 928KB [ 572.775251][T27139] net_namespace 105KB 231KB [ 572.777730][T27139] ima_iint_cache 35KB 63KB [ 572.780027][T27139] lsm_inode_cache 1588KB 1850KB [ 572.782346][T27139] lsm_file_cache 198KB 220KB [ 572.785239][T27139] key_jar 30KB 78KB [ 572.787458][T27139] uts_namespace 69KB 123KB [ 572.789816][T27139] nsproxy 17KB 35KB [ 572.792319][T27139] vm_area_struct 1177KB 1281KB [ 572.794712][T27139] fs_cache 40KB 64KB [ 572.797265][T27139] files_cache 169KB 255KB [ 572.799876][T27139] signal_cache 940KB 2033KB [ 572.802693][T27139] sighand_cache 1158KB 2074KB [ 572.805659][T27139] task_struct 4970KB 5264KB [ 572.808382][T27139] cred 157KB 320KB [ 572.810504][T27139] anon_vma_chain 326KB 362KB [ 572.812459][T27139] anon_vma 366KB 438KB [ 572.814494][T27139] pid 143KB 406KB [ 572.816704][T27139] Acpi-Operand 195KB 328KB [ 572.818626][T27139] Acpi-ParseExt 21KB 39KB [ 572.820602][T27139] Acpi-Parse 19KB 27KB [ 572.822737][T27139] Acpi-State 9KB 31KB [ 572.825001][T27139] Acpi-Namespace 31KB 48KB [ 572.827242][T27139] shared_policy_node 14KB 16KB [ 572.829195][T27139] numa_policy 8KB 16KB [ 572.831142][T27139] perf_event 15KB 31KB [ 572.833084][T27139] trace_event_file 540KB 540KB [ 572.834975][T27139] ftrace_event_field 1026KB 1027KB [ 572.836982][T27139] pool_workqueue 2017KB 2128KB [ 572.838926][T27139] task_group 91KB 108KB [ 572.840877][T27139] maple_node 882KB 1416KB [ 572.842828][T27139] mm_struct 388KB 551KB [ 572.845224][T27139] vmap_area 681KB 1267KB [ 572.847758][T27139] debug_objects_cache 2561KB 5776KB [ 572.849789][T27139] page->ptl 172KB 228KB [ 572.851775][T27139] kmalloc-cg-8k 3104KB 3552KB [ 572.853762][T27139] kmalloc-cg-4k 16792KB 18240KB [ 572.855736][T27139] kmalloc-cg-2k 10976KB 12704KB [ 572.857689][T27139] kmalloc-cg-1k 2830KB 3392KB [ 572.859631][T27139] kmalloc-cg-512 1208KB 1232KB [ 572.861544][T27139] kmalloc-cg-256 517KB 616KB [ 572.863461][T27139] kmalloc-cg-128 252KB 292KB [ 572.865377][T27139] kmalloc-cg-64 75KB 132KB [ 572.867340][T27139] kmalloc-cg-32 50KB 176KB [ 572.869382][T27139] kmalloc-cg-16 6KB 28KB [ 572.871384][T27139] kmalloc-cg-8 24KB 44KB [ 572.873365][T27139] kmalloc-cg-192 72KB 92KB [ 572.875352][T27139] kmalloc-cg-96 61KB 80KB [ 572.877489][T27139] kmalloc-8k 5600KB 5920KB [ 572.879812][T27139] kmalloc-4k 29208KB 30304KB [ 572.881779][T27139] kmalloc-2k 11604KB 12640KB [ 572.883774][T27139] kmalloc-1k 7652KB 8192KB [ 572.885745][T27139] kmalloc-512 11217KB 11936KB [ 572.887804][T27139] kmalloc-256 4426KB 4720KB [ 572.890208][T27139] kmalloc-128 1579KB 1668KB [ 572.892776][T27139] kmalloc-64 3221KB 3360KB [ 572.895054][T27139] kmalloc-32 1964KB 3072KB [ 572.897519][T27139] kmalloc-16 480KB 532KB [ 572.900209][T27139] kmalloc-8 1084KB 1416KB [ 572.903223][T27139] kmalloc-192 1843KB 2056KB [ 572.905536][T27139] kmalloc-96 1560KB 1952KB [ 572.907516][T27139] kmem_cache_node 213KB 220KB [ 572.909561][T27139] kmem_cache 177KB 226KB [ 572.911950][T27139] oom-kill:constraint=CONSTRAINT_MEMORY_POLICY,nodemask=0,cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz1,task=syz.1.25664,pid=27139,uid=0 [ 572.917521][T27139] Out of memory (oom_kill_allocating_task): Killed process 27138 (syz.1.25664) total-vm:102004kB, anon-rss:212kB, file-rss:22384kB, shmem-rss:0kB, UID:0 pgtables:108kB oom_score_adj:1000 [ 572.984844][T27177] __nla_validate_parse: 3 callbacks suppressed [ 572.984861][T27177] netlink: 8 bytes leftover after parsing attributes in process `syz.4.25680'. [ 572.991818][T27177] bridge_slave_0: default FDB implementation only supports local addresses [ 573.240001][T27213] comedi comedi3: fl512: I/O port conflict (0x8005c22,16) [ 573.291653][T27221] sp0: Synchronizing with TNC [ 573.305883][T27217] [U] [ 573.370754][T27230] netlink: 'syz.4.25706': attribute type 2 has an invalid length. [ 573.955984][T27296] netlink: 8 bytes leftover after parsing attributes in process `syz.0.25736'. [ 573.960061][T27296] netlink: 4 bytes leftover after parsing attributes in process `syz.0.25736'. [ 573.963483][T27296] netlink: 'syz.0.25736': attribute type 12 has an invalid length. [ 574.036063][T27306] netlink: 40 bytes leftover after parsing attributes in process `syz.1.25741'. [ 574.066632][T27308] netlink: 11 bytes leftover after parsing attributes in process `syz.1.25742'. [ 574.148974][T27320] netlink: 8 bytes leftover after parsing attributes in process `syz.1.25752'. [ 574.156814][T27320] netlink: 4 bytes leftover after parsing attributes in process `syz.1.25752'. [ 574.164776][T27320] netlink: 'syz.1.25752': attribute type 12 has an invalid length. [ 574.350011][T27337] netlink: 11 bytes leftover after parsing attributes in process `syz.0.25754'. [ 574.634838][T27363] netlink: 40 bytes leftover after parsing attributes in process `syz.0.25766'. [ 574.678014][T27369] netlink: 16 bytes leftover after parsing attributes in process `syz.4.25769'. [ 577.964714][T27501] x_tables: ip6_tables: recent.0 match: invalid size 216 (kernel) != (user) 232 [ 578.104855][T27515] usb usb8: usbfs: process 27515 (syz.4.25838) did not claim interface 4 before use [ 578.321944][T27544] ALSA: mixer_oss: invalid OSS volume '' [ 579.152375][ T843] usb 6-1: new high-speed USB device number 24 using dummy_hcd [ 579.314925][ T843] usb 6-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00 [ 579.318476][ T843] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 579.321079][ T843] usb 6-1: Product: syz [ 579.322572][ T843] usb 6-1: Manufacturer: syz [ 579.339191][ T843] usb 6-1: SerialNumber: syz [ 579.595475][ T843] rtl8150 6-1:1.0: couldn't reset the device [ 579.598086][ T843] rtl8150 6-1:1.0: probe with driver rtl8150 failed with error -5 [ 579.603751][ T843] usb 6-1: USB disconnect, device number 24 [ 580.548147][T27657] __nla_validate_parse: 7 callbacks suppressed [ 580.548166][T27657] netlink: 4 bytes leftover after parsing attributes in process `syz.0.25900'. [ 580.556589][T27657] netlink: 104 bytes leftover after parsing attributes in process `syz.0.25900'. [ 580.560455][T27657] netlink: 104 bytes leftover after parsing attributes in process `syz.0.25900'. [ 580.736088][ T40] audit: type=1800 audit(548.255:23018): pid=27675 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.4.25912" name="/newroot/430/bus/#2179//deleted" dev="tmpfs" ino=2179 res=0 errno=0 [ 580.774193][T27683] random: crng reseeded on system resumption [ 580.818783][ T830] usb 8-1: new high-speed USB device number 20 using dummy_hcd [ 580.847808][T27691] IPVS: Unknown mcast interface: bridge_slave_0 [ 580.928501][T27705] netlink: 120 bytes leftover after parsing attributes in process `syz.0.25926'. [ 580.931674][T27705] netlink: 'syz.0.25926': attribute type 1 has an invalid length. [ 580.934725][T27705] netlink: 64 bytes leftover after parsing attributes in process `syz.0.25926'. [ 581.003265][ T830] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x19, changing to 0x9 [ 581.003765][T27713] netlink: 216 bytes leftover after parsing attributes in process `syz.4.25931'. [ 581.007356][ T830] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 581.011159][T27713] netlink: 'syz.4.25931': attribute type 2 has an invalid length. [ 581.023515][ T830] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 581.026403][ T830] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 581.028983][ T830] usb 8-1: Product: syz [ 581.030415][ T830] usb 8-1: Manufacturer: syz [ 581.032084][ T830] usb 8-1: SerialNumber: syz [ 581.044750][ T830] usb 8-1: config 0 descriptor?? [ 581.064656][T27717] netlink: 8 bytes leftover after parsing attributes in process `syz.4.25933'. [ 581.212612][ T40] audit: type=1326 audit(548.695:23019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27734 comm="syz.0.25940" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36f6c code=0x7ffc0000 [ 581.219837][T27737] netlink: 'syz.4.25942': attribute type 1 has an invalid length. [ 581.226153][ T40] audit: type=1326 audit(548.695:23020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27734 comm="syz.0.25940" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36f6c code=0x7ffc0000 [ 581.235712][ T40] audit: type=1326 audit(548.704:23021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27734 comm="syz.0.25940" exe="/syz-executor" sig=0 arch=40000003 syscall=30 compat=1 ip=0xf7f36f6c code=0x7ffc0000 [ 581.250837][ T40] audit: type=1326 audit(548.704:23022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27734 comm="syz.0.25940" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36f6c code=0x7ffc0000 [ 581.378119][T27745] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 581.404234][T27739] ================================================================== [ 581.406866][T27739] BUG: KASAN: slab-use-after-free in dvb_device_open+0x33f/0x3b0 [ 581.409465][T27739] Read of size 8 at addr ffff888028c5e218 by task syz.4.25943/27739 [ 581.412628][T27739] SYZFAIL: failed to recv rpc [ 581.414388][T27739] CPU: 0 UID: 0 PID: 27739 Comm: syz.4.25943 Tainted: G L syzkaller #0 PREEMPT(full) [ 581.414410][T27739] Tainted: [L]=SOFTLOCKUP [ 581.414415][T27739] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 581.414424][T27739] Call Trace: [ 581.414430][T27739] [ 581.414437][T27739] dump_stack_lvl+0x100/0x190 [ 581.414460][T27739] print_report+0x156/0x4c9 [ 581.414479][T27739] ? __virt_addr_valid+0x81/0x620 [ 581.414498][T27739] ? __phys_addr+0xe8/0x180 [ 581.414514][T27739] ? dvb_device_open+0x33f/0x3b0 [ 581.414528][T27739] kasan_report+0xdf/0x1e0 [ 581.414542][T27739] ? dvb_device_open+0x33f/0x3b0 [ 581.414556][T27739] ? __pfx_dvb_device_open+0x10/0x10 [ 581.414569][T27739] dvb_device_open+0x33f/0x3b0 [ 581.414581][T27739] ? __pfx_dvb_device_open+0x10/0x10 [ 581.414593][T27739] chrdev_open+0x234/0x6a0 [ 581.414606][T27739] ? __pfx_apparmor_file_open+0x10/0x10 [ 581.414620][T27739] ? __pfx_chrdev_open+0x10/0x10 fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 581.414633][T27739] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 581.414647][T27739] do_dentry_open+0x6d8/0x1660 [ 581.414659][T27739] ? __pfx_chrdev_open+0x10/0x10 [ 581.414673][T27739] vfs_open+0x82/0x3f0 [ 581.414688][T27739] path_openat+0x208c/0x31a0 [ 581.414703][T27739] ? asm_int80_emulation+0x1a/0x20 [ 581.414716][T27739] ? __pfx_path_openat+0x10/0x10 [ 581.414731][T27739] do_file_open+0x20e/0x430 [ 581.414744][T27739] ? __pfx_do_file_open+0x10/0x10 [ 581.414760][T27739] ? _raw_spin_unlock+0x28/0x50 [ 581.414777][T27739] ? alloc_fd+0x476/0x790 [ 581.414791][T27739] do_sys_openat2+0x10d/0x1e0 [ 581.414805][T27739] ? __pfx_do_sys_openat2+0x10/0x10 [ 581.414823][T27739] __ia32_compat_sys_openat+0x12d/0x210 [ 581.414840][T27739] ? __pfx___ia32_compat_sys_openat+0x10/0x10 [ 581.414860][T27739] do_int80_emulation+0x141/0x6b0 [ 581.414873][T27739] asm_int80_emulation+0x1a/0x20 [ 581.414885][T27739] RIP: 0023:0xf71a5cab [ 581.414895][T27739] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53 [ 581.414908][T27739] RSP: 002b:00000000f546603c EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 581.414919][T27739] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000f5466100 [ 581.414929][T27739] RDX: 000000000000413f RSI: 0000000000000000 RDI: 0000000000000000 [ 581.414937][T27739] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 581.414946][T27739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 581.414954][T27739] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 581.414967][T27739] [ 581.414972][T27739] [ 581.496353][ T843] usb 8-1: USB disconnect, device number 20 [ 581.497938][T27739] Allocated by task 1: [ 581.535508][T27739] kasan_save_stack+0x30/0x50 [ 581.537563][T27739] kasan_save_track+0x14/0x30 [ 581.539604][T27739] __kasan_kmalloc+0xaa/0xb0 [ 581.541597][T27739] dvb_register_device+0x1d6/0x1e20 [ 581.543872][T27739] dvb_register_frontend+0x5a8/0x8a0 [ 581.546300][T27739] vidtv_bridge_probe+0x44b/0xa30 [ 581.548594][T27739] platform_probe+0x106/0x1d0 [ 581.550718][T27739] really_probe+0x241/0xa60 [ 581.552689][T27739] __driver_probe_device+0x1de/0x400 [ 581.554982][T27739] driver_probe_device+0x4c/0x1b0 [ 581.557089][T27739] __driver_attach+0x21f/0x5d0 [ 581.559193][T27739] bus_for_each_dev+0x13e/0x1d0 [ 581.561450][T27739] bus_add_driver+0x305/0x5b0 [ 581.563697][T27739] driver_register+0x1e2/0x360 [ 581.565762][T27739] vidtv_bridge_init+0x38/0x70 [ 581.567957][T27739] do_one_initcall+0x11d/0x760 [ 581.570036][T27739] kernel_init_freeable+0x6e5/0x7a0 [ 581.572321][T27739] kernel_init+0x1f/0x1e0 [ 581.574285][T27739] ret_from_fork+0x754/0xd80 [ 581.576348][T27739] ret_from_fork_asm+0x1a/0x30 [ 581.578502][T27739] [ 581.579556][T27739] Freed by task 27709: [ 581.581299][T27739] kasan_save_stack+0x30/0x50 [ 581.583360][T27739] kasan_save_track+0x14/0x30 [ 581.585407][T27739] kasan_save_free_info+0x3b/0x70 [ 581.587648][T27739] __kasan_slab_free+0x5f/0x80 [ 581.589838][T27739] kfree+0x1f6/0x6b0 [ 581.591742][T27739] dvb_device_put.part.0+0x57/0x90 [ 581.594137][T27739] dvb_device_open+0x2ba/0x3b0 [ 581.596224][T27739] chrdev_open+0x234/0x6a0 [ 581.598185][T27739] do_dentry_open+0x6d8/0x1660 [ 581.600261][T27739] vfs_open+0x82/0x3f0 [ 581.602035][T27739] path_openat+0x208c/0x31a0 [ 581.604082][T27739] do_file_open+0x20e/0x430 [ 581.606156][T27739] do_sys_openat2+0x10d/0x1e0 [ 581.608350][T27739] __ia32_compat_sys_openat+0x12d/0x210 [ 581.610855][T27739] do_int80_emulation+0x141/0x6b0 [ 581.613114][T27739] asm_int80_emulation+0x1a/0x20 [ 581.615343][T27739] [ 581.616457][T27739] The buggy address belongs to the object at ffff888028c5e200 [ 581.616457][T27739] which belongs to the cache kmalloc-256 of size 256 [ 581.622676][T27739] The buggy address is located 24 bytes inside of [ 581.622676][T27739] freed 256-byte region [ffff888028c5e200, ffff888028c5e300) [ 581.628150][T27739] [ 581.629135][T27739] The buggy address belongs to the physical page: [ 581.631854][T27739] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x28c5e [ 581.635722][T27739] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 581.639209][T27739] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 581.642315][T27739] page_type: f5(slab) [ 581.644056][T27739] raw: 00fff00000000040 ffff88801b842b40 dead000000000100 dead000000000122 [ 581.647892][T27739] raw: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000 [ 581.651476][T27739] head: 00fff00000000040 ffff88801b842b40 dead000000000100 dead000000000122 [ 581.655021][T27739] head: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000 [ 581.658719][T27739] head: 00fff00000000001 ffffea0000a31781 00000000ffffffff 00000000ffffffff [ 581.662481][T27739] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 581.665243][T27739] page dumped because: kasan: bad access detected [ 581.667309][T27739] page_owner tracks the page as allocated [ 581.669123][T27739] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 19997675803, free_ts 19643328236 [ 581.675784][T27739] post_alloc_hook+0x153/0x170 [ 581.677355][T27739] get_page_from_freelist+0x111d/0x3140 [ 581.679144][T27739] __alloc_frozen_pages_noprof+0x27c/0x2ba0 [ 581.681041][T27739] new_slab+0xa6/0x6b0 [ 581.682378][T27739] refill_objects+0x26b/0x400 [ 581.683970][T27739] __pcs_replace_empty_main+0x1ab/0x660 [ 581.685794][T27739] __kmalloc_cache_noprof+0x493/0x6f0 [ 581.687603][T27739] bus_add_driver+0x92/0x5b0 [ 581.689129][T27739] driver_register+0x1e2/0x360 [ 581.690690][T27739] usb_register_driver+0x21c/0x3e0 [ 581.692334][T27739] au0828_init+0x12a/0x160 [ 581.693829][T27739] do_one_initcall+0x11d/0x760 [ 581.695406][T27739] kernel_init_freeable+0x6e5/0x7a0 [ 581.697075][T27739] kernel_init+0x1f/0x1e0 [ 581.698524][T27739] ret_from_fork+0x754/0xd80 [ 581.700228][T27739] ret_from_fork_asm+0x1a/0x30 [ 581.701956][T27739] page last free pid 1 tgid 1 stack trace: [ 581.703875][T27739] __free_frozen_pages+0x7e1/0x10d0 [ 581.705555][T27739] rcu_core+0x5a2/0x10d0 [ 581.707275][T27739] handle_softirqs+0x1eb/0x9e0 [ 581.709220][T27739] __irq_exit_rcu+0xef/0x150 [ 581.710877][T27739] irq_exit_rcu+0x9/0x30 [ 581.712234][T27739] sysvec_apic_timer_interrupt+0xa3/0xc0 [ 581.714217][T27739] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 581.716234][T27739] [ 581.717027][T27739] Memory state around the buggy address: [ 581.718817][T27739] ffff888028c5e100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 581.721358][T27739] ffff888028c5e180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 581.724452][T27739] >ffff888028c5e200: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 581.727585][T27739] ^ [ 581.729643][T27739] ffff888028c5e280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 581.732876][T27739] ffff888028c5e300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 581.735920][T27739] ================================================================== [ 581.746857][T27739] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 581.749816][T27739] CPU: 0 UID: 0 PID: 27739 Comm: syz.4.25943 Tainted: G L syzkaller #0 PREEMPT(full) [ 581.754809][T27739] Tainted: [L]=SOFTLOCKUP [ 581.756699][T27739] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 581.760531][T27739] Call Trace: [ 581.761615][T27739] [ 581.762611][T27739] dump_stack_lvl+0x100/0x190 [ 581.764671][T27739] vpanic+0x552/0x970 [ 581.766368][T27739] ? __pfx_vpanic+0x10/0x10 [ 581.768352][T27739] ? dvb_device_open+0x33f/0x3b0 [ 581.770507][T27739] panic+0xd1/0xe0 [ 581.772011][T27739] ? __pfx_panic+0x10/0x10 [ 581.773813][T27739] ? dvb_device_open+0x33f/0x3b0 [ 581.775785][T27739] ? preempt_schedule_common+0x42/0xc0 [ 581.778124][T27739] check_panic_on_warn.cold+0x19/0x34 [ 581.780530][T27739] end_report.part.0+0x3a/0x90 [ 581.782500][T27739] kasan_report.cold+0xe/0x18 [ 581.784288][T27739] ? dvb_device_open+0x33f/0x3b0 [ 581.786254][T27739] ? __pfx_dvb_device_open+0x10/0x10 [ 581.788399][T27739] dvb_device_open+0x33f/0x3b0 [ 581.790404][T27739] ? __pfx_dvb_device_open+0x10/0x10 [ 581.792258][T27739] chrdev_open+0x234/0x6a0 [ 581.793984][T27739] ? __pfx_apparmor_file_open+0x10/0x10 [ 581.795985][T27739] ? __pfx_chrdev_open+0x10/0x10 [ 581.797694][T27739] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 581.800218][T27739] do_dentry_open+0x6d8/0x1660 [ 581.802121][T27739] ? __pfx_chrdev_open+0x10/0x10 [ 581.804008][T27739] vfs_open+0x82/0x3f0 [ 581.805347][T27739] path_openat+0x208c/0x31a0 [ 581.806991][T27739] ? asm_int80_emulation+0x1a/0x20 [ 581.808872][T27739] ? __pfx_path_openat+0x10/0x10 [ 581.810708][T27739] do_file_open+0x20e/0x430 [ 581.812360][T27739] ? __pfx_do_file_open+0x10/0x10 [ 581.814377][T27739] ? _raw_spin_unlock+0x28/0x50 [ 581.816172][T27739] ? alloc_fd+0x476/0x790 [ 581.817596][T27739] do_sys_openat2+0x10d/0x1e0 [ 581.819123][T27739] ? __pfx_do_sys_openat2+0x10/0x10 [ 581.820828][T27739] __ia32_compat_sys_openat+0x12d/0x210 [ 581.822730][T27739] ? __pfx___ia32_compat_sys_openat+0x10/0x10 [ 581.825109][T27739] do_int80_emulation+0x141/0x6b0 [ 581.827051][T27739] asm_int80_emulation+0x1a/0x20 [ 581.828696][T27739] RIP: 0023:0xf71a5cab [ 581.829935][T27739] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53 [ 581.835599][T27739] RSP: 002b:00000000f546603c EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 581.838238][T27739] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000f5466100 [ 581.840868][T27739] RDX: 000000000000413f RSI: 0000000000000000 RDI: 0000000000000000 [ 581.843628][T27739] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 581.846354][T27739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 581.848801][T27739] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 581.851318][T27739] [ 581.852943][T27739] Kernel Offset: disabled [ 581.854348][T27739] Rebooting in 86400 seconds.. VM DIAGNOSIS: 23:56:43 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000033 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85783e85 RDI=ffffffff9b498680 RBP=ffffffff9b498640 RSP=ffffc900262d72e8 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3832303838386652 R12=0000000000000000 R13=0000000000000033 R14=0000000000000010 R15=ffffffff85783e20 RIP=ffffffff85783eaf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff888097140000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000080001000 CR3=000000005c98d000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffff000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=ffff888029433018 RBX=0000000000000050 RCX=0000000000000002 RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff8e7e7760 RBP=ffff8880294324c0 RSP=ffffc9000453f1c8 R8 =0000000000000000 R9 =0000000000000000 R10=ffffffff8e7e7760 R11=0000000000000001 R12=0000000000000000 R13=0000000000000007 R14=0000000000000002 R15=0000000000000000 RIP=ffffffff81e44d7d RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff888097240000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f74032f0 CR3=0000000047ce2000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000003fffffff7 00000094fffffff7 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000000 RBX=0000000000000000 RCX=ffffffff827f057a RDX=0000000000000000 RSI=0000000000000001 RDI=0000000000000006 RBP=ffff888042277fe0 RSP=ffffc900043ff0b8 R8 =0000000000000003 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=dffffc0000000000 R14=0000000000000000 R15=0000000000000001 RIP=ffffffff820841f0 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f40c3e33300 ffffffff 00c00000 GS =0000 ffff888097340000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000555705d3f000 CR3=00000000513e5000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12 0000003000000012 0004000000080024 0000000000280034 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000006565 0000001400000000 0000000000000000 0000000000000015 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0800020800760800 0a014f9800020003 9a80030600000058 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0480021080808080 8080920800020800 0100000008060a01 6bfc000000000808 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0480033808000002 0100000008060601 048e0e0800300302 00000000010fffff ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff021008000fff ffffff0200000000 0806080179ee0fff ffffff020fffffff ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff020fffffffff02 0008000fffffffff 022208000c0074fe 039a80020a080000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff8963f2ad ffffffff8964532f ffffffff89645516 ffffffff897d4336 ZMM25=59d710f259d710f2 59d710f259d710f2 59d710f259d710f2 59d710f259d710f2 59d710f259d710f2 59d710f259d710f2 59d710f259d710f2 59d710f259d710f2 ZMM26=4cc234f24cc234f2 4cc234f24cc234f2 4cc234f24cc234f2 4cc234f24cc234f2 4cc234f24cc234f2 4cc234f24cc234f2 4cc234f24cc234f2 4cc234f24cc234f2 ZMM27=d6c63fa5d6c63fa5 d6c63fa5d6c63fa5 d6c63fa5d6c63fa5 d6c63fa5d6c63fa5 d6c63fa5d6c63fa5 d6c63fa5d6c63fa5 d6c63fa5d6c63fa5 d6c63fa5d6c63fa5 ZMM28=000001a00000019f 0000019e0000019d 0000019c0000019b 0000019a00000199 0000019800000197 0000019600000195 0000019400000193 0000019200000191 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=a46a0000a46a0000 a46a0000a46a0000 a46a0000a46a0000 a46a0000a46a0000 a46a0000a46a0000 a46a0000a46a0000 a46a0000a46a0000 a46a0000a46a0000 info registers vcpu 3 CPU#3 RAX=0000000000000003 RBX=ffffffff8e7e7760 RCX=ffffffff9188b301 RDX=0000000000000000 RSI=ffffffff81b7c2fe RDI=ffffffff8e7e7760 RBP=ffffffff81b7c2fe RSP=ffffc900042bf2c8 R8 =0000000000000001 R9 =0000000000000007 R10=0000000000000200 R11=0000000000018653 R12=ffffc900042bf3d0 R13=ffffc900042bf380 R14=ffffc900042bfa80 R15=ffffc900042bf3b4 RIP=ffffffff81e47880 RFL=00000297 [--S-APC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fb7d115f880 ffffffff 00c00000 GS =0000 ffff888097440000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f741a58c CR3=0000000023ffe000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000feffc400 Opmask01=0000000000000000 Opmask02=000000000101001f Opmask03=0000000002082001 Opmask04=00000000fffff7ff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 44455a494c414954 494e495f43455355 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 44455a494c414954 494e495f43455355 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000559555916320 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000559555916220 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb7d0bf1b20 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1f115c435d431610 120300161e121d5c ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 431d1c1a1416015c 43000611171d5c43 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 312d382f38627375 2f332e6463685f79 6d6d75642f6d726f 6674616c702f7365 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 005600051f40494c 43055c5155484005 424b4c55554c4e53 004057005b1a0f00 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000081 0000000000000000 000033647261632f 646e756f732f302e ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7766736c6d612c38 2c312c30722c4339 312c3739312c3938 312c3838312c3538 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 312c3937312c3136 312c3131312c3031 312c32452c34442c 30442c45412c3841 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2c34412c42382c30 382c33372c32372c 31376b2c34312c32 2c312c30652d3032 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4631653134303070 3243353176333030 30623a7475706e69 3d5341494c41444f ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 323032302c313032 302c394631302c32 4331302c38423130 2c464131302c4541 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000