last executing test programs: 2m21.60113656s ago: executing program 3 (id=2430): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000800), r0) sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000220000000a0001007770616e3000000005002000000004000500200000000000050020000000000009001f"], 0x44}, 0x1, 0x0, 0x0, 0x4c0c0}, 0x44) 2m21.588837704s ago: executing program 3 (id=2432): madvise(&(0x7f0000122000/0x4000)=nil, 0x4000, 0x66) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) 2m21.530320469s ago: executing program 3 (id=2435): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x14, r1, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x4000844}, 0x40000) 2m21.46144593s ago: executing program 3 (id=2438): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6) setsockopt$bt_BT_RCVMTU(r0, 0x112, 0xd, 0x0, 0xe5) 2m21.398978829s ago: executing program 3 (id=2440): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8}) fstat(r0, &(0x7f0000000300)) 2m21.398232383s ago: executing program 3 (id=2443): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='numa_maps\x00') prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) lseek(r0, 0x1000000, 0x0) 2m5.558310332s ago: executing program 32 (id=2443): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='numa_maps\x00') prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) lseek(r0, 0x1000000, 0x0) 1m40.66377244s ago: executing program 1 (id=3806): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), r0) sendmsg$IPVS_CMD_GET_DEST(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000200)={0x14, r1, 0x303, 0x70bd2d, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x20000040) 1m40.630158889s ago: executing program 1 (id=3809): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000001f40), r0) sendmsg$NLBL_MGMT_C_LISTDEF(r0, &(0x7f0000002000)={0x0, 0x0, &(0x7f0000001fc0)={&(0x7f0000000000)={0x1c, r1, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@NLBL_MGMT_A_FAMILY={0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000001}, 0xc) 1m40.551914764s ago: executing program 1 (id=3814): r0 = syz_open_dev$vbi(&(0x7f00000001c0), 0x1, 0x2) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$SG_SET_COMMAND_Q(r1, 0x2271, 0x0) 1m40.510323249s ago: executing program 1 (id=3818): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x18f) mount$afs(0x0, &(0x7f0000002840)='./file0\x00', &(0x7f0000002880), 0x700, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn']) newfstatat(0xffffffffffffff9c, &(0x7f0000000540)='./file0/file0\x00', &(0x7f0000000580), 0x1000) 1m40.464420572s ago: executing program 1 (id=3822): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8}) fstat(r0, &(0x7f0000000300)) 1m40.450367515s ago: executing program 1 (id=3832): r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000100), 0xffffffffffffffff) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_GET_SEC_DEVKEY(r1, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000200)={0x20, r0, 0x329, 0xfffffffc, 0x0, {0x16}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}, 0x1, 0x0, 0x0, 0x10000860}, 0x8004) 1m25.021073895s ago: executing program 33 (id=3832): r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000100), 0xffffffffffffffff) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_GET_SEC_DEVKEY(r1, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000200)={0x20, r0, 0x329, 0xfffffffc, 0x0, {0x16}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}, 0x1, 0x0, 0x0, 0x10000860}, 0x8004) 1m20.91069417s ago: executing program 2 (id=4069): r0 = socket$inet6(0xa, 0x1, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f00000004c0)={'ip6tnl0\x00', &(0x7f0000000740)={'syztnl1\x00', 0x0, 0x29, 0x0, 0x3, 0x5, 0x4e, @dev={0xfe, 0x80, '\x00', 0x1d}, @mcast1, 0x10, 0x7, 0x4, 0x4}}) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000680)={'syztnl1\x00', 0x0}) 1m20.751411365s ago: executing program 2 (id=4075): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a80000000060a010400000000000000000a0000000900010073797a310000000054000480500001800b00010074617267657400004000028008000240000000012c0003007339f2f18e55afb9fdd672bad09dd4a7ccd2dfa8237720ff520100000000000000699c74e891a0c708000100544545000900020073797a32"], 0xa8}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840) 1m20.701050642s ago: executing program 2 (id=4078): r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2060, 0x0) fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000040), 0x0, 0x0, 0x0) llistxattr(&(0x7f00000003c0)='./file1\x00', &(0x7f00000004c0)=""/24, 0x18) 1m20.700971387s ago: executing program 2 (id=4079): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount$bind(&(0x7f0000000180)='.\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x45110, 0x0) mount$tmpfs(0x0, &(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000240), 0x0, &(0x7f0000000300)={[{@gid}]}) 1m20.640528228s ago: executing program 2 (id=4082): openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80b00, 0x0) r0 = socket(0x2, 0x80805, 0x0) getsockopt$bt_hci(r0, 0x84, 0x80, &(0x7f0000000000)=""/4103, &(0x7f0000001080)=0x1007) 1m20.303172368s ago: executing program 2 (id=4096): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000400), r0) sendmsg$NLBL_MGMT_C_REMOVEDEF(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000440)={0x14, r1, 0x1, 0x70bd29, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x48005}, 0x4) 1m20.216469178s ago: executing program 34 (id=4096): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000400), r0) sendmsg$NLBL_MGMT_C_REMOVEDEF(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000440)={0x14, r1, 0x1, 0x70bd29, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x48005}, 0x4) 1m1.476826314s ago: executing program 0 (id=4946): r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2) ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f0000000100)=0x3) ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000040)={0x0, @bt={0xa00, 0x63c, 0x1, 0x3, 0xd59f83, 0x19f2, 0x3f, 0x8, 0x3, 0x6, 0x2800, 0x2800, 0x2, 0xba2, 0x0, 0x2c, {0x8, 0xffffffff}, 0xd0, 0x9}}) 1m1.40631014s ago: executing program 0 (id=4948): r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="ad4300000000000020c015"], 0x14}}, 0x20008000) 1m1.394675805s ago: executing program 0 (id=4952): r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0) ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'pcmda12\x00', [0x4f23, 0x5, 0xe, 0x1, 0x4, 0x80000cc7, 0x8, 0xc3a, 0xa, 0x1, 0x2, 0x3a, 0x1, 0x1, 0x440b, 0x102, 0x10000, 0x1a449, 0x3, 0x8001, 0x89, 0xcaa7, 0x0, 0x20001e58, 0xb, 0xe69, 0x3c, 0x10000006, 0x10000006, 0x1, 0xfffffff8]}) ioctl$COMEDI_SETWSUBD(r0, 0x6411) 1m1.335697043s ago: executing program 0 (id=4956): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount$bind(&(0x7f0000000180)='.\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x45110, 0x0) mount$tmpfs(0x0, &(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000240), 0x0, &(0x7f0000000300)={[{@gid}]}) 1m1.326261623s ago: executing program 0 (id=4964): mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x1000006, 0x4132, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500)) 58.330853078s ago: executing program 0 (id=4961): getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@mcast2, 0x0, 0x1, 0x0, 0xd, 0x10}, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) ioctl$FS_IOC_GETFSLABEL(r0, 0x400452c8, &(0x7f0000000100)) 58.330818729s ago: executing program 35 (id=4961): getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@mcast2, 0x0, 0x1, 0x0, 0xd, 0x10}, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) ioctl$FS_IOC_GETFSLABEL(r0, 0x400452c8, &(0x7f0000000100)) 45.298614711s ago: executing program 7 (id=5457): r0 = socket(0x1e, 0x805, 0x0) connect$tipc(r0, &(0x7f0000000040)=@id={0x1e, 0x3, 0x0, {0x4e24}}, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), r0) 45.298210369s ago: executing program 7 (id=5458): mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2000, 0x3, &(0x7f0000c51000/0x2000)=nil) mmap(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x0, 0x2031, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x2000, 0x0, &(0x7f0000ffe000/0x2000)=nil) 45.242796542s ago: executing program 7 (id=5465): r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0) fcntl$setlease(r0, 0x400, 0x1) fremovexattr(r0, &(0x7f0000000040)=@known='system.posix_acl_default\x00') 45.181570959s ago: executing program 7 (id=5468): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount$bind(&(0x7f0000000180)='.\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x45110, 0x0) mount$tmpfs(0x0, &(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000240), 0x0, &(0x7f0000000300)={[{@gid}]}) 45.132215767s ago: executing program 7 (id=5472): socket$nl_netfilter(0x10, 0x3, 0xc) r0 = socket$kcm(0xa, 0x922000000003, 0x11) sendmsg$kcm(r0, &(0x7f0000000000)={&(0x7f00000007c0)=@l2tp6={0xa, 0x0, 0x8, @mcast1, 0x3, 0x4}, 0x80, 0x0}, 0x0) 44.844065528s ago: executing program 7 (id=5486): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000ac0), r0) sendmsg$NLBL_CALIPSO_C_ADD(r0, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000000)={0x24, r1, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0xc840}, 0x20020000) sendmsg$NLBL_CALIPSO_C_REMOVE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, r1, 0x1, 0x70bd25, 0x25dfdbff, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40005}, 0x8000) 44.685970156s ago: executing program 36 (id=5486): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000ac0), r0) sendmsg$NLBL_CALIPSO_C_ADD(r0, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000000)={0x24, r1, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0xc840}, 0x20020000) sendmsg$NLBL_CALIPSO_C_REMOVE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, r1, 0x1, 0x70bd25, 0x25dfdbff, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40005}, 0x8000) 945.830941ms ago: executing program 8 (id=6883): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$binfmt_aout(0xffffffffffffffff, 0x0, 0xff2e) ioctl$TCXONC(r0, 0x540a, 0x0) ioctl$TCXONC(r0, 0x540a, 0x2) 944.549241ms ago: executing program 8 (id=6884): getsockopt$sock_buf(0xffffffffffffffff, 0x6, 0x23, 0x0, &(0x7f0000000380)) r0 = socket$kcm(0x2, 0x200000000000001, 0x106) sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0xfc, 0x0}, 0x30004001) setsockopt$sock_attach_bpf(r0, 0x6, 0xd, &(0x7f0000000000), 0x4) 879.820594ms ago: executing program 8 (id=6886): r0 = fanotify_init(0x0, 0x0) r1 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) read$FUSE(r1, &(0x7f0000000a00)={0x2020}, 0x2020) close_range(r0, 0xffffffffffffffff, 0x0) 810.062939ms ago: executing program 8 (id=6888): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x200000000000011, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000940)=ANY=[@ANYBLOB="7000000010000304000080000000000000007400", @ANYRES32=r2, @ANYBLOB="0000000003120100500012800b00010062726964676500004000028008000500010000000600270000000000080006"], 0x70}, 0x1, 0x0, 0x0, 0x800}, 0x40) 730.522427ms ago: executing program 8 (id=6891): sendmsg$NL80211_CMD_DEL_PMKSA(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x400c4) r0 = socket$l2tp(0x2, 0x2, 0x73) bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10) syz_emit_ethernet(0x74, &(0x7f0000000000)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x73, 0x0, @private=0x300, @multicast1}, {0x0, 0x0, 0xfffffe9a, 0x0, @gue={{0x2}}}}}}}, 0x0) 730.048714ms ago: executing program 8 (id=6894): r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') getdents64(r0, &(0x7f0000000340)=""/79, 0x4f) exit(0x8) getdents(r0, 0x0, 0x3b) 358.926245ms ago: executing program 4 (id=6905): r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'geneve1\x00', 0x0}) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4) sendto$packet(r0, &(0x7f0000000040)="3f031c000302140006001e00890000004a1b7880610cc945000088a800008100000081000000", 0x26, 0x1, &(0x7f0000000540)={0xc9, 0x88a8, r1, 0x1, 0x7, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}, 0x14) 281.001516ms ago: executing program 5 (id=6906): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x5) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000000000000200000004000000000060000000000000001000040"]) 280.918602ms ago: executing program 4 (id=6907): r0 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2) ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000000)={0x6, 0x1, 0x1, 0x0, 0x3}) ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000040)=0x1) ppoll(&(0x7f00000005c0)=[{r0, 0x53853995d946c2cb}], 0x1, 0x0, 0x0, 0x0) 280.790932ms ago: executing program 6 (id=6908): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000000600)={0x1, 0x0, @ioapic={0x8000000, 0x1, 0x663d, 0x1, 0x0, [{0xe, 0x6, 0x9, '\x00', 0x1}, {0x15, 0x0, 0x4, '\x00', 0xa5}, {0x0, 0x8, 0x8, '\x00', 0x9}, {0x4, 0xe, 0x3, '\x00', 0x4}, {0x0, 0x3, 0x7}, {0x3, 0xca, 0x8, '\x00', 0x5}, {0x7, 0x4, 0x2a, '\x00', 0x25}, {0x5, 0xb8, 0x9, '\x00', 0xd}, {0x2, 0x6, 0x8}, {0xb, 0x9, 0x3, '\x00', 0x9d}, {0xa, 0x6, 0x3, '\x00', 0x5}, {0x58, 0x9, 0xd, '\x00', 0x9}, {0x7, 0xff, 0x0, '\x00', 0x9}, {0x81, 0x40, 0x7, '\x00', 0xf}, {0x4, 0x7, 0x7, '\x00', 0x3}, {0x8, 0x90, 0x5, '\x00', 0x6}, {0x9, 0xe2, 0x7, '\x00', 0x2}, {0x8, 0x3, 0x9, '\x00', 0x3}, {0x2, 0x7, 0x20, '\x00', 0x4}, {0x90, 0x7, 0x2a, '\x00', 0xf}, {0x1, 0x6, 0x8, '\x00', 0x4}, {0x1, 0x5, 0x1}, {0x7, 0x7, 0x3, '\x00', 0xc}, {0x4, 0x6, 0x0, '\x00', 0x6}]}}) 183.850293ms ago: executing program 5 (id=6909): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={0x2c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_TX_RATES={0x10, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0xc, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}]}]}]}, 0x2c}}, 0x0) 183.407612ms ago: executing program 5 (id=6910): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000440)={'batadv0\x00', 0x0}) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)={0x24, r1, 0x1, 0x70bd28, 0x1, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x3}]}, 0x24}}, 0x80) 100.503472ms ago: executing program 6 (id=6911): sendmsg$NLBL_MGMT_C_LISTALL(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x14}, 0x20040880) sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="44000000090601020000000000000000000000000900020073797a310000000005000100070000501c0007800c0001"], 0x44}, 0x1, 0x0, 0x0, 0x10040047}, 0x240008c4) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000003e000701feffffff00000000017c0000040042800c00018006000600800a0000200002801c000b8018"], 0x44}, 0x1, 0x0, 0x0, 0x40040c0}, 0xc000) 100.400315ms ago: executing program 4 (id=6912): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x2a, &(0x7f0000000040)=ANY=[@ANYBLOB="020000000000000002000000e0"], 0x190) setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x2a, &(0x7f0000000000)=ANY=[@ANYBLOB="020000000000000002000000e001"], 0x190) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000140)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88) 100.334222ms ago: executing program 5 (id=6913): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) umount2(&(0x7f00000001c0)='./file0\x00', 0x4) 100.256577ms ago: executing program 4 (id=6914): r0 = fsopen(&(0x7f00000001c0)='devpts\x00', 0x0) setrlimit(0x7, &(0x7f0000000400)) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) fsmount(r0, 0x0, 0xf) 100.181426ms ago: executing program 6 (id=6915): r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r1, 0x8918, &(0x7f0000000000)={'ipvlan1\x00', {0x2, 0x4e22, @empty}}) ioctl$sock_inet_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f0000000080)={'ipvlan0\x00', {0x2, 0x4e20, @empty}}) 78.182283ms ago: executing program 5 (id=6916): r0 = syz_open_dev$loop(&(0x7f0000000100), 0x8, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0x2000000000001]}}) ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r1) 77.933213ms ago: executing program 4 (id=6917): r0 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', 0x0}) connect$can_bcm(r0, &(0x7f00000000c0)={0x1d, r1}, 0x10) sendmsg$can_bcm(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x1, 0xa04, 0xfffffffc, {0x0, 0x2710}, {0x77359400}, {}, 0x1, @canfd={{0x1, 0x1, 0x1, 0x1}, 0x41, 0x2, 0x0, 0x0, "893c4a07f752aca160bbc6c6d30c66138c20424fc5fe757234d02c4dc575b7f4c9e6161d900eae371d2766ec5bc5502ffea8d6f82fcf4a65fd2e1550c4f8493b"}}, 0x80}, 0x1, 0x0, 0x0, 0x841}, 0x0) 77.047855ms ago: executing program 6 (id=6918): r0 = socket$inet6_udp(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000500)={0xa, 0x4e20, 0xffffffff, @empty, 0x4}, 0x1c) setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000240)=0x6, 0x4) syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @rand_addr=0x64010101, @dev={0xac, 0x14, 0x14, 0x21}}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0) 369.291µs ago: executing program 4 (id=6919): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8102, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_GET_MSRS_cpu(r2, 0xc008ae88, &(0x7f0000000100)={0x1, 0x0, [{0x29e, 0x0, 0x3}]}) 182.596µs ago: executing program 6 (id=6920): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@gettaction={0x3c, 0x32, 0x400, 0x70bd2a, 0x25cfdbfd, {}, [@action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x1}}, @action_gd=@TCA_ACT_TAB={0x1c, 0x1, [{0xc, 0xd, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xff}}, {0xc, 0x2, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x81f7}}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4008000}, 0x4040090) r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bond0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000001c0)=ANY=[@ANYBLOB="5c00000010000304000000000000000000000400", @ANYRES32=r1, @ANYBLOB="60bc010004a701003c00128009000100626f6e6400"], 0x5c}, 0x1, 0x0, 0x0, 0x11}, 0x4000044) 98.186µs ago: executing program 6 (id=6921): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000280)={0xa, 0x4e22, 0x9, @loopback, 0x6}, 0x1c) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0x23, @loopback, 0x23}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000980)=[{{0x0, 0x0, &(0x7f0000003640)=[{&(0x7f0000002a00)="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", 0x20e}, {&(0x7f0000000040)="d2cf4071ee038000007ad2e20539519ec6afbc0000", 0x15}], 0x2}}], 0x1, 0x4040001) 0s ago: executing program 5 (id=6922): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x80) sendmsg$nl_route(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000000)=@setlink={0x40, 0x10, 0x401, 0x0, 0xfffffffc, {}, [@IFLA_IFNAME={0x14, 0x3, 'veth0_to_bond\x00'}, @IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x1, r1}]}]}, 0x40}}, 0x0) sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[], 0xb8}}, 0x0) kernel console output (not intermixed with test programs): promiscuous mode [ 213.579153][ T7268] bridge0: port 1(bridge_slave_0) entered disabled state [ 213.903599][T14663] loop6: detected capacity change from 0 to 7 [ 213.920045][T14619] Dev loop6: unable to read RDB block 7 [ 213.922521][T14619] loop6: unable to read partition table [ 213.925059][T14619] loop6: partition table beyond EOD, truncated [ 213.944298][T14663] Dev loop6: unable to read RDB block 7 [ 213.947041][T14663] loop6: unable to read partition table [ 213.949859][T14663] loop6: partition table beyond EOD, truncated [ 213.952530][T14663] loop_reread_partitions: partition scan of loop6 (Cj̖P=ý?}X %`ր{֐ȵ4FLQk݊) failed (rc=-5) [ 213.994845][ T7268] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 214.001663][ T7268] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 214.006726][ T7268] bond0 (unregistering): Released all slaves [ 214.114866][ T7268] tipc: Left network mode [ 214.415508][T14699] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4019'. [ 214.420578][T14699] openvswitch: netlink: push_nsh: missing base or metadata attributes [ 214.424199][T14699] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 214.426947][T14615] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 214.453607][ T7268] hsr_slave_0: left promiscuous mode [ 214.469107][ T7268] hsr_slave_1: left promiscuous mode [ 214.472175][ T7268] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 214.475294][ T7268] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 214.481299][ T7268] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 214.483602][ T7268] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 214.506455][ T7268] veth1_macvtap: left promiscuous mode [ 214.508353][ T7268] veth0_macvtap: left promiscuous mode [ 214.510531][ T7268] veth1_vlan: left promiscuous mode [ 214.512323][ T7268] veth0_vlan: left promiscuous mode [ 214.861349][ T5334] Bluetooth: hci4: command tx timeout [ 215.078758][ T7268] team0 (unregistering): Port device team_slave_1 removed [ 215.150046][ T7268] team0 (unregistering): Port device team_slave_0 removed [ 215.649639][T14615] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 215.656957][T14615] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 215.664506][T14615] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 215.735364][T14615] 8021q: adding VLAN 0 to HW filter on device bond0 [ 215.762662][T14615] 8021q: adding VLAN 0 to HW filter on device team0 [ 215.783668][ T7320] bridge0: port 1(bridge_slave_0) entered blocking state [ 215.786714][ T7320] bridge0: port 1(bridge_slave_0) entered forwarding state [ 215.802587][ T7281] bridge0: port 2(bridge_slave_1) entered blocking state [ 215.805939][ T7281] bridge0: port 2(bridge_slave_1) entered forwarding state [ 215.940929][ T40] audit: type=1400 audit(2000000078.579:533): avc: denied { connect } for pid=14746 comm="syz.0.4033" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 216.019274][T14615] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 216.059517][ T7268] IPVS: stop unused estimator thread 0... [ 216.104141][T14767] No control pipe specified [ 216.192768][T14615] veth0_vlan: entered promiscuous mode [ 216.198220][T14615] veth1_vlan: entered promiscuous mode [ 216.214625][T14615] veth0_macvtap: entered promiscuous mode [ 216.219415][T14615] veth1_macvtap: entered promiscuous mode [ 216.231775][T14615] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 216.237436][T14615] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 216.245637][ T72] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 216.248412][ T72] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 216.254226][ T72] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 216.257068][ T72] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 216.291058][T14793] kernel profiling enabled (shift: 34) [ 216.292992][T14793] profiling shift: 34 too large [ 216.321511][ T72] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 216.325283][ T72] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 216.346845][ T7268] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 216.350569][ T7268] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 216.565190][ T40] audit: type=1400 audit(2000000079.199:534): avc: denied { connect } for pid=14819 comm="syz.0.4062" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 216.578242][ T40] audit: type=1400 audit(2000000079.209:535): avc: denied { write } for pid=14819 comm="syz.0.4062" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 216.613438][ T40] audit: type=1400 audit(2000000079.249:536): avc: denied { remount } for pid=14824 comm="syz.4.4064" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 216.760643][T14841] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes. [ 216.873222][T14852] syz_tun: refused to change device tx_queue_len [ 216.925736][T14859] new mount options do not match the existing superblock, will be ignored [ 216.934016][T14859] cgroup: option or name mismatch, new: 0x4 "", old: 0x0 "" [ 216.942677][ T5334] Bluetooth: hci4: command tx timeout [ 217.032940][T14863] Illegal XDP return value 4294967274 on prog (id 159) dev N/A, expect packet loss! [ 217.046092][T14865] xt_l2tp: wrong L2TP version: 0 [ 217.086850][ T40] audit: type=1400 audit(2000000079.719:537): avc: denied { ioctl } for pid=14868 comm="syz.0.4087" path="socket:[44021]" dev="sockfs" ino=44021 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 217.277382][T14887] openvswitch: netlink: Tunnel attr 9 has unexpected len 0 expected 2 [ 217.278773][ T42] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 217.419037][ T42] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 217.523217][T14899] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 217.523217][T14899] program syz.0.4103 not setting count and/or reply_len properly [ 217.528298][ T42] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 217.568653][ T5992] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 217.572790][ T5992] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 217.577258][ T5992] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 217.581698][ T5992] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 217.585332][ T5992] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 217.614440][ T42] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 217.739015][T14903] chnl_net:caif_netlink_parms(): no params data found [ 217.781378][T14914] netlink: 'syz.4.4108': attribute type 4 has an invalid length. [ 217.783938][T14914] netlink: 17 bytes leftover after parsing attributes in process `syz.4.4108'. [ 217.821998][ T42] bridge_slave_1: left allmulticast mode [ 217.824019][ T42] bridge_slave_1: left promiscuous mode [ 217.825993][ T42] bridge0: port 2(bridge_slave_1) entered disabled state [ 217.831273][ T42] bridge_slave_0: left allmulticast mode [ 217.833185][ T42] bridge_slave_0: left promiscuous mode [ 217.835805][ T42] bridge0: port 1(bridge_slave_0) entered disabled state [ 218.202471][ T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 218.207134][ T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 218.211915][ T42] bond0 (unregistering): (slave wlan1): Releasing backup interface [ 218.216871][ T42] bond0 (unregistering): Released all slaves [ 218.311575][ T42] tipc: Disabling bearer [ 218.316037][ T42] tipc: Left network mode [ 218.316563][T14903] bridge0: port 1(bridge_slave_0) entered blocking state [ 218.321971][T14903] bridge0: port 1(bridge_slave_0) entered disabled state [ 218.324695][T14903] bridge_slave_0: entered allmulticast mode [ 218.330611][T14903] bridge_slave_0: entered promiscuous mode [ 218.336382][T14903] bridge0: port 2(bridge_slave_1) entered blocking state [ 218.340628][T14903] bridge0: port 2(bridge_slave_1) entered disabled state [ 218.343653][T14903] bridge_slave_1: entered allmulticast mode [ 218.347486][T14903] bridge_slave_1: entered promiscuous mode [ 218.375144][T14939] QAT: Invalid ioctl -2144835806 [ 218.415974][T14903] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 218.421948][T14903] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 218.482468][T14903] team0: Port device team_slave_0 added [ 218.493004][T14943] bridge0: port 1(bridge_slave_0) entered disabled state [ 218.501675][T14903] team0: Port device team_slave_1 added [ 218.596200][T14903] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 218.600254][T14903] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 218.612873][T14903] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 218.619605][T14903] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 218.622547][T14903] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 218.634285][T14903] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 218.641353][ T40] audit: type=1400 audit(2000000081.279:538): avc: denied { connect } for pid=14955 comm="syz.0.4125" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 218.667503][ T42] hsr_slave_0: left promiscuous mode [ 218.669877][ T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 218.672175][ T42] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 218.676025][ T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 218.678700][ T42] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 218.688279][T14961] QAT: Invalid ioctl -2144835806 [ 218.720378][ T42] veth1_macvtap: left promiscuous mode [ 218.722617][ T42] veth0_macvtap: left promiscuous mode [ 218.724747][ T42] veth1_vlan: left promiscuous mode [ 218.726526][ T42] veth0_vlan: left promiscuous mode [ 218.804646][ T42] pimreg3 (unregistering): left allmulticast mode [ 218.815409][ T42] pim6reg (unregistering): left allmulticast mode [ 218.847926][ T40] audit: type=1400 audit(2000000081.479:539): avc: denied { mounton } for pid=14970 comm="syz.0.4133" path="/1000/file0" dev="hugetlbfs" ino=47267 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=dir permissive=1 [ 218.848661][T14971] overlayfs: maximum fs stacking depth exceeded [ 219.029274][ T5334] Bluetooth: hci4: command tx timeout [ 219.352144][ T42] team0 (unregistering): Port device team_slave_1 removed [ 219.420346][ T42] team0 (unregistering): Port device team_slave_0 removed [ 219.660571][ T5334] Bluetooth: hci2: command tx timeout [ 219.880761][T14963] kthread_run failed with err -4 [ 219.928128][ T40] audit: type=1400 audit(2000000082.559:540): avc: denied { bind } for pid=14992 comm="syz.4.4143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 219.946707][ T40] audit: type=1400 audit(2000000082.579:541): avc: denied { connect } for pid=14994 comm="syz.0.4144" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1 [ 220.014304][T14903] hsr_slave_0: entered promiscuous mode [ 220.017168][T14903] hsr_slave_1: entered promiscuous mode [ 220.019786][T14903] debugfs: 'hsr0' already exists in 'hsr' [ 220.021608][T14903] Cannot create hsr debugfs directory [ 220.023177][ T40] audit: type=1400 audit(2000000082.649:542): avc: denied { bind } for pid=15002 comm="syz.4.4148" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 220.153405][T15016] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4154'. [ 220.287867][T14903] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 220.300481][T14903] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 220.310489][T14903] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 220.316603][T14903] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 220.354773][T15040] genirq: Flags mismatch irq 4. 00200000 (pcl812) vs. 00200080 (ttyS0) [ 220.377584][ T42] IPVS: stop unused estimator thread 0... [ 220.391022][T14903] 8021q: adding VLAN 0 to HW filter on device bond0 [ 220.412029][T14903] 8021q: adding VLAN 0 to HW filter on device team0 [ 220.420583][ T72] bridge0: port 1(bridge_slave_0) entered blocking state [ 220.423658][ T72] bridge0: port 1(bridge_slave_0) entered forwarding state [ 220.440216][ T72] bridge0: port 2(bridge_slave_1) entered blocking state [ 220.442609][ T72] bridge0: port 2(bridge_slave_1) entered forwarding state [ 220.451415][T15047] ALSA: mixer_oss: invalid OSS volume '' [ 220.529208][T15061] digital: digital_start_poll: Unknown protocol [ 220.616065][T14903] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 220.801670][T15100] SELinux: security_context_str_to_sid (5] S9q#) failed with errno=-22 [ 220.841092][T14903] veth0_vlan: entered promiscuous mode [ 220.848602][T14903] veth1_vlan: entered promiscuous mode [ 220.885558][T14903] veth0_macvtap: entered promiscuous mode [ 220.897596][T14903] veth1_macvtap: entered promiscuous mode [ 220.915035][T14903] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 220.925942][T14903] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 220.940420][ T7276] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.943777][ T7276] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.951630][ T7276] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.954532][ T7276] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 221.003390][ T7276] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 221.006163][ T7276] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 221.037225][ T72] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 221.040685][ T72] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 221.062887][T15127] netlink: 212364 bytes leftover after parsing attributes in process `syz.0.4201'. [ 221.066194][T15127] openvswitch: netlink: Message has 5 unknown bytes. [ 221.099230][ T5334] Bluetooth: hci4: command tx timeout [ 221.102735][ T40] kauditd_printk_skb: 1 callbacks suppressed [ 221.102748][ T40] audit: type=1400 audit(2000000083.739:544): avc: denied { map } for pid=15129 comm="syz.6.4099" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 221.115586][ T40] audit: type=1400 audit(2000000083.739:545): avc: denied { execute } for pid=15129 comm="syz.6.4099" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 221.353755][T15159] use of bytesused == 0 is deprecated and will be removed in the future, [ 221.356700][T15159] use the actual size instead. [ 221.543991][T15184] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4229'. [ 221.599949][T15192] SELinux: security_context_str_to_sid (5] S9q#) failed with errno=-22 [ 221.749859][ T5334] Bluetooth: hci2: command tx timeout [ 221.759764][T15213] digital: digital_start_poll: Unknown protocol [ 221.768130][ T40] audit: type=1400 audit(2000000084.399:546): avc: denied { mounton } for pid=15214 comm="syz.6.4244" path="mnt:[4026532872]" dev="nsfs" ino=4026532872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 221.803764][T15217] No control pipe specified [ 221.861979][T15225] fuse: Bad value for 'group_id' [ 221.863974][T15225] fuse: Bad value for 'group_id' [ 221.907492][T15230] netlink: 212364 bytes leftover after parsing attributes in process `syz.5.4249'. [ 221.911222][T15230] openvswitch: netlink: Message has 5 unknown bytes. [ 222.082675][T15260] openvswitch: netlink: Tunnel attr 9 has unexpected len 0 expected 2 [ 222.353889][ T40] audit: type=1326 audit(2000000084.989:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15292 comm="syz.6.4280" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f37caf8eba9 code=0x0 [ 222.759859][T15344] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -11 0 [ 222.768513][ T40] audit: type=1400 audit(2000000085.399:548): avc: denied { read } for pid=15343 comm="syz.5.4304" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 222.976583][T15369] bridge0: entered promiscuous mode [ 222.978903][T15369] macsec1: entered promiscuous mode [ 223.239110][ T40] audit: type=1400 audit(2000000085.869:549): avc: denied { setopt } for pid=15401 comm="syz.6.4331" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 223.247224][ T40] audit: type=1400 audit(2000000085.879:550): avc: denied { getopt } for pid=15401 comm="syz.6.4331" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 223.281167][T15407] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4335'. [ 223.667589][T15468] netlink: 212388 bytes leftover after parsing attributes in process `syz.5.4363'. [ 223.671632][T15468] openvswitch: netlink: Message has 5 unknown bytes. [ 223.709199][ T5663] usb 9-1: new high-speed USB device number 3 using dummy_hcd [ 223.767738][T15483] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 223.770610][T15483] IPv6: NLM_F_CREATE should be set when creating new route [ 223.773060][T15483] IPv6: NLM_F_CREATE should be set when creating new route [ 223.777209][T15483] IPv6: NLM_F_CREATE should be set when creating new route [ 223.782368][T15483] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 223.819280][ T5334] Bluetooth: hci2: command tx timeout [ 223.881328][ T5663] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 223.886932][ T5663] usb 9-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 223.890634][ T5663] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 223.893864][ T5663] usb 9-1: Product: syz [ 223.895222][ T5663] usb 9-1: Manufacturer: syz [ 223.896794][ T5663] usb 9-1: SerialNumber: syz [ 223.904395][ T5663] usb 9-1: config 0 descriptor?? [ 223.936176][T15508] [U] v3f"S/4:XTzWtlW= [ 223.938607][T15508] [U] J"e:" [ 224.079809][T15534] binder: 15533:15534 ioctl 40046205 0 returned -22 [ 224.083353][T15534] binder: 15533:15534 ioctl c0306201 2000000013c0 returned -11 [ 224.085281][ T40] audit: type=1400 audit(2000000086.719:551): avc: denied { connect } for pid=15535 comm="syz.0.4398" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 224.315628][ T6068] usb 9-1: USB disconnect, device number 3 [ 224.454881][ T40] audit: type=1400 audit(2000000087.089:552): avc: denied { read write } for pid=15586 comm="syz.0.4419" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1 [ 224.456798][T15585] mkiss: ax0: crc mode is auto. [ 224.462471][ T40] audit: type=1400 audit(2000000087.089:553): avc: denied { open } for pid=15586 comm="syz.0.4419" path="/dev/cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1 [ 224.537126][T15593] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0) [ 224.540097][T15593] SELinux: failed to load policy [ 224.640037][T15607] random: crng reseeded on system resumption [ 224.868527][T15623] netlink: set zone limit has 4 unknown bytes [ 224.962262][T15640] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=512 sclass=netlink_route_socket pid=15640 comm=syz.0.4445 [ 225.000237][T15646] atomic_op ffff888058af8198 conn xmit_atomic 0000000000000000 [ 225.098131][T15659] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 2621 [ 225.131299][T15662] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=45 sclass=netlink_audit_socket pid=15662 comm=syz.5.4455 [ 225.909333][ T5334] Bluetooth: hci2: command tx timeout [ 226.023594][T15719] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4482'. [ 226.066374][T15723] openvswitch: netlink: IPv6 tunnel dst address is zero [ 226.456694][ T40] kauditd_printk_skb: 5 callbacks suppressed [ 226.456708][ T40] audit: type=1400 audit(2000000089.089:559): avc: denied { create } for pid=15752 comm="syz.6.4498" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=netlink_route_socket permissive=1 [ 226.595454][T15765] tipc: Enabling of bearer rejected, media not registered [ 226.647344][T15771] tipc: Enabled bearer , priority 4 [ 226.664242][ T40] audit: type=1400 audit(2000000089.299:560): avc: denied { lock } for pid=15772 comm="syz.6.4508" path="socket:[51214]" dev="sockfs" ino=51214 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 227.094400][T15820] rtc_cmos 00:05: Alarms can be up to one day in the future [ 227.272017][T15834] loop7: detected capacity change from 0 to 7 [ 227.319489][T15554] Dev loop7: unable to read RDB block 7 [ 227.322119][T15554] loop7: unable to read partition table [ 227.324069][T15554] loop7: partition table beyond EOD, truncated [ 227.345683][ T842] rtc_cmos 00:05: Alarms can be up to one day in the future [ 227.351192][ T842] rtc_cmos 00:05: Alarms can be up to one day in the future [ 227.355490][ T842] rtc_cmos 00:05: Alarms can be up to one day in the future [ 227.360573][ T842] rtc_cmos 00:05: Alarms can be up to one day in the future [ 227.364181][ T842] rtc rtc0: __rtc_set_alarm: err=-22 [ 227.378207][T15834] Dev loop7: unable to read RDB block 7 [ 227.380135][T15834] loop7: unable to read partition table [ 227.382094][T15834] loop7: partition table beyond EOD, truncated [ 227.385433][T15834] loop_reread_partitions: partition scan of loop7 (Cj̖P=ý?}X %`ր{֐ȵ4FLQk݊) failed (rc=-5) [ 227.507721][ T40] audit: type=1400 audit(2000000090.139:561): avc: denied { write } for pid=15843 comm="syz.0.4542" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 227.517055][ T40] audit: type=1400 audit(2000000090.139:562): avc: denied { ioctl } for pid=15843 comm="syz.0.4542" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 ioctlcmd=0x63a1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 227.559277][ T54] usb 10-1: new high-speed USB device number 2 using dummy_hcd [ 227.732845][ T54] usb 10-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 227.736748][ T54] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 227.741200][ T54] usb 10-1: Product: syz [ 227.743083][ T54] usb 10-1: Manufacturer: syz [ 227.745038][ T54] usb 10-1: SerialNumber: syz [ 227.751272][ T54] usb 10-1: config 0 descriptor?? [ 227.959481][ T5663] usb 10-1: USB disconnect, device number 2 [ 228.015081][T15872] CIFS mount error: No usable UNC path provided in device string! [ 228.015081][T15872] [ 228.020475][T15872] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 228.062489][T15876] xt_l2tp: wrong L2TP version: 0 [ 228.113741][ T40] audit: type=1400 audit(2000000090.749:563): avc: denied { listen } for pid=15879 comm="syz.4.4560" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 228.221157][T15892] tipc: Enabled bearer , priority 10 [ 228.262621][T15897] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4569'. [ 228.265555][T15897] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4569'. [ 228.330951][ T54] hid-generic 000C:0007:000C.0005: unknown main item tag 0x0 [ 228.333339][ T54] hid-generic 000C:0007:000C.0005: unknown main item tag 0x0 [ 228.335636][ T54] hid-generic 000C:0007:000C.0005: unknown main item tag 0x0 [ 228.337936][ T54] hid-generic 000C:0007:000C.0005: unknown main item tag 0x0 [ 228.341140][ T54] hid-generic 000C:0007:000C.0005: unknown main item tag 0x0 [ 228.343722][ T54] hid-generic 000C:0007:000C.0005: unknown main item tag 0x0 [ 228.346443][ T54] hid-generic 000C:0007:000C.0005: unknown main item tag 0x0 [ 228.348928][ T54] hid-generic 000C:0007:000C.0005: unknown main item tag 0x0 [ 228.352665][ T54] hid-generic 000C:0007:000C.0005: unknown main item tag 0x0 [ 228.354873][ T54] hid-generic 000C:0007:000C.0005: unknown main item tag 0x0 [ 228.361072][ T54] hid-generic 000C:0007:000C.0005: hidraw1: HID v14.24 Device [syz1] on syz0 [ 228.418052][T15913] fido_id[15913]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 228.441630][T15920] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4585'. [ 228.444663][T15920] netlink: 60 bytes leftover after parsing attributes in process `syz.0.4585'. [ 228.514936][T15929] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4582'. [ 228.600532][ T40] audit: type=1400 audit(2000000091.239:564): avc: denied { read } for pid=15941 comm="syz.6.4587" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 228.650161][T15946] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 228.650161][T15946] program syz.5.4589 not setting count and/or reply_len properly [ 228.670136][T15942] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 228.672227][T15942] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 228.724833][T15942] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 228.727612][T15942] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 228.753819][T15942] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 228.758314][T15942] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 228.761191][T15959] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method [ 228.765670][T15942] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 228.770390][T15942] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 228.927658][ T40] audit: type=1400 audit(2000000091.559:565): avc: denied { bind } for pid=15972 comm="syz.5.4603" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 228.935212][ T40] audit: type=1400 audit(2000000091.559:566): avc: denied { name_bind } for pid=15972 comm="syz.5.4603" src=128 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1 [ 228.947038][ T40] audit: type=1400 audit(2000000091.559:567): avc: denied { node_bind } for pid=15972 comm="syz.5.4603" saddr=172.20.20.18 src=128 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1 [ 229.060117][ T54] hid-generic 0000:0000:0000.0006: hidraw1: HID v0.03 Device [syz1] on syz1 [ 229.065374][ T40] audit: type=1400 audit(2000000091.689:568): avc: denied { firmware_load } for pid=15986 comm="syz.4.4610" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1 [ 229.102423][T15987] syz.4.4610 (15987) used greatest stack depth: 18712 bytes left [ 229.137790][T15990] fido_id[15990]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 229.143772][T15994] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4612'. [ 229.274087][T16004] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4617'. [ 229.399764][T16016] netlink: 'syz.5.4623': attribute type 4 has an invalid length. [ 229.410448][T16016] netlink: 'syz.5.4623': attribute type 4 has an invalid length. [ 229.949254][ T842] usb 9-1: new high-speed USB device number 4 using dummy_hcd [ 230.101726][ T842] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 230.105141][ T842] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 230.108232][ T842] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 230.111416][ T842] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 230.116444][T16028] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 230.123504][ T842] usb 9-1: Quirk or no altset; falling back to MIDI 1.0 [ 230.134937][T16060] x_tables: ip_tables: HMARK.0 target: invalid size 64 (kernel) != (user) 72 [ 230.148450][T16062] support for cryptoloop has been removed. Use dm-crypt instead. [ 230.280094][T16076] 9pnet_fd: p9_fd_create_unix (16076): problem connecting socket: qY3aK: -91 [ 230.374516][ T842] usb 9-1: USB disconnect, device number 4 [ 230.468185][T16102] program syz.6.4664 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 230.490626][ T5663] hid-generic 0005:00B6:0009.0007: hidraw1: BLUETOOTH HID v1ade12.f3 Device [syz0] on syz1 [ 230.523913][T16109] fido_id[16109]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 230.527275][T16111] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4668'. [ 230.534116][T16111] openvswitch: netlink: nsh attribute has 2338 unknown bytes. [ 230.536799][T16111] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 230.593698][T16123] overlayfs: maximum fs stacking depth exceeded [ 230.699612][ T5992] Bluetooth: hci1: command 0x0406 tx timeout [ 230.782044][ T5992] Bluetooth: hci2: command 0x0c1a tx timeout [ 230.783067][ T5995] Bluetooth: hci4: command 0x0c1a tx timeout [ 230.833998][T16159] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4692'. [ 231.032457][T16187] program syz.6.4705 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 231.117164][T16202] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4712'. [ 231.359525][ T842] usb 10-1: new high-speed USB device number 3 using dummy_hcd [ 231.512802][ T842] usb 10-1: config 1 has an invalid interface number: 7 but max is 0 [ 231.522402][ T842] usb 10-1: config 1 has no interface number 0 [ 231.524728][ T842] usb 10-1: config 1 interface 7 altsetting 0 has an endpoint descriptor with address 0xDB, changing to 0x8B [ 231.528739][ T842] usb 10-1: config 1 interface 7 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64 [ 231.532467][ T842] usb 10-1: config 1 interface 7 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 231.538330][ T842] usb 10-1: New USB device found, idVendor=1199, idProduct=68a3, bcdDevice= 0.00 [ 231.542314][ T842] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 231.545028][ T842] usb 10-1: Product: syz [ 231.546379][ T842] usb 10-1: Manufacturer: syz [ 231.547938][ T842] usb 10-1: SerialNumber: syz [ 231.552736][T16203] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 231.568044][T16272] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4739'. [ 231.570935][T16272] openvswitch: netlink: push_nsh: missing base or metadata attributes [ 231.573462][T16272] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 231.690521][T16280] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4743'. [ 231.758958][T16203] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 231.972919][ T842] sierra_net 10-1:1.7 wwan0: register 'sierra_net' at usb-dummy_hcd.5-1, Sierra Wireless USB-to-WWAN Modem, 00:00:00:00:01:07 [ 232.163629][ T842] sierra_net 10-1:1.7 wwan0: Submit SYNC failed -71 [ 232.165864][ T842] sierra_net 10-1:1.7 wwan0: Send SYNC failed, status -71 [ 232.168424][ T842] sierra_net 10-1:1.7 wwan0: Submit SYNC failed -71 [ 232.170639][ T842] sierra_net 10-1:1.7 wwan0: Send SYNC failed, status -71 [ 232.174556][ T842] usb 10-1: USB disconnect, device number 3 [ 232.177983][ T842] sierra_net 10-1:1.7 wwan0: unregister 'sierra_net' usb-dummy_hcd.5-1, Sierra Wireless USB-to-WWAN Modem [ 232.259661][ T842] sierra_net 10-1:1.7 wwan0 (unregistered): usb_control_msg failed, status -19 [ 232.448921][ T40] kauditd_printk_skb: 11 callbacks suppressed [ 232.448932][ T40] audit: type=1400 audit(2000000095.079:580): avc: denied { mount } for pid=16301 comm="syz.0.4753" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 232.458073][ T40] audit: type=1400 audit(2000000095.089:581): avc: denied { remount } for pid=16301 comm="syz.0.4753" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 232.467535][ T40] audit: type=1400 audit(2000000095.099:582): avc: denied { unmount } for pid=5979 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 232.546135][T16312] ALSA: mixer_oss: invalid OSS volume '' [ 232.750834][T16335] netlink: 'syz.5.4775': attribute type 10 has an invalid length. [ 232.756713][T16335] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 232.761005][T16335] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 232.766670][T16335] netlink: 'syz.5.4775': attribute type 10 has an invalid length. [ 232.769801][T16335] netlink: 40 bytes leftover after parsing attributes in process `syz.5.4775'. [ 232.773332][T16335] batadv0: entered promiscuous mode [ 232.775513][T16335] batadv0: entered allmulticast mode [ 232.779213][ T5995] Bluetooth: hci1: command 0x0406 tx timeout [ 232.783716][T16335] bond0: (slave batadv0): Releasing backup interface [ 232.788764][T16335] bridge0: port 3(batadv0) entered blocking state [ 232.791811][T16335] bridge0: port 3(batadv0) entered disabled state [ 232.793840][ T40] audit: type=1804 audit(2000000095.429:583): pid=16339 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.4.4770" name="/newroot/539/file0" dev="tmpfs" ino=2744 res=1 errno=0 [ 232.860104][ T5995] Bluetooth: hci2: command 0x0c1a tx timeout [ 232.860740][ T5992] Bluetooth: hci4: command 0x0c1a tx timeout [ 232.892569][T16352] netlink: 'syz.0.4777': attribute type 10 has an invalid length. [ 232.903813][T16352] hsr_slave_0: left promiscuous mode [ 232.906958][T16352] hsr_slave_1: left promiscuous mode [ 232.955295][T16359] genirq: Flags mismatch irq 4. 00200000 (pcl812) vs. 00200080 (ttyS0) [ 233.019317][ T7299] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 233.023437][ T7299] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 233.094708][T16374] SELinux: failure in selinux_parse_skb(), unable to parse packet [ 233.128511][T16378] netlink: 'syz.4.4790': attribute type 1 has an invalid length. [ 233.132931][T16378] netlink: 144 bytes leftover after parsing attributes in process `syz.4.4790'. [ 233.136277][T16378] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4790'. [ 233.215109][ T40] audit: type=1400 audit(2000000095.849:584): avc: denied { name_bind } for pid=16385 comm="syz.4.4794" src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1 [ 233.320326][ T842] usb 10-1: new full-speed USB device number 4 using dummy_hcd [ 233.496514][ T842] usb 10-1: unable to get BOS descriptor or descriptor too short [ 233.502904][ T842] usb 10-1: no configurations [ 233.505205][ T842] usb 10-1: can't read configurations, error -22 [ 233.512585][T16414] mkiss: ax0: crc mode is auto. [ 234.035783][T16424] genirq: Flags mismatch irq 4. 00200000 (pcl812) vs. 00200080 (ttyS0) [ 234.332811][T16463] genirq: Flags mismatch irq 4. 00200000 (pcl812) vs. 00200080 (ttyS0) [ 234.353555][T16465] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4831'. [ 234.468559][T16484] fuse: Bad value for 'group_id' [ 234.472654][T16484] fuse: Bad value for 'group_id' [ 234.563545][T16495] blktrace: Concurrent blktraces are not allowed on loop4 [ 234.618086][T16503] mkiss: ax0: crc mode is auto. [ 234.635298][ T5992] Bluetooth: hci2: unexpected event 0x03 length: 6 < 11 [ 234.741989][T16513] openvswitch: netlink: IPv4 tunnel dst address is zero [ 234.852026][ T40] audit: type=1400 audit(2000000097.489:585): avc: denied { accept } for pid=16522 comm="syz.4.4862" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 234.860271][ T40] audit: type=1400 audit(2000000097.489:586): avc: denied { write } for pid=16522 comm="syz.4.4862" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 234.939156][ T5992] Bluetooth: hci2: command 0x0c1a tx timeout [ 234.939663][ T5995] Bluetooth: hci4: command 0x0c1a tx timeout [ 234.945432][T16536] netlink: 268 bytes leftover after parsing attributes in process `syz.6.4865'. [ 235.001663][ T40] audit: type=1400 audit(2000000097.639:587): avc: denied { remount } for pid=16540 comm="syz.4.4869" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 235.019657][ T40] audit: type=1400 audit(2000000097.649:588): avc: denied { ioctl } for pid=16544 comm="syz.5.4871" path="socket:[50898]" dev="sockfs" ino=50898 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 235.331811][T16599] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -11 0 [ 235.365625][T16608] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4901'. [ 235.550648][T16633] macsec2: entered promiscuous mode [ 235.554019][T16633] bridge0: port 4(macsec2) entered blocking state [ 235.556100][T16633] bridge0: port 4(macsec2) entered disabled state [ 235.558644][T16633] macsec2: entered allmulticast mode [ 235.561114][T16633] bridge0: entered allmulticast mode [ 235.567528][T16633] macsec2: left allmulticast mode [ 235.569203][T16633] bridge0: left allmulticast mode [ 235.597887][T16638] bridge0: entered promiscuous mode [ 235.600687][T16638] macsec1: entered promiscuous mode [ 235.626311][T16642] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes. [ 235.871312][T16670] openvswitch: netlink: IPv4 tunnel dst address is zero [ 235.900484][T16672] macsec2: entered promiscuous mode [ 235.905388][T16672] bridge0: port 3(macsec2) entered blocking state [ 235.908031][T16672] bridge0: port 3(macsec2) entered disabled state [ 235.911371][T16672] macsec2: entered allmulticast mode [ 235.913669][T16672] bridge0: entered allmulticast mode [ 235.918791][T16672] macsec2: left allmulticast mode [ 235.921680][T16672] bridge0: left allmulticast mode [ 235.941859][T16680] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4935'. [ 236.177551][T16708] openvswitch: netlink: VXLAN extension 0 has unexpected len 4 expected 0 [ 236.246314][T16720] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4955'. [ 236.394519][T16720] team0 (unregistering): Port device team_slave_0 removed [ 236.399672][T16720] team0 (unregistering): Port device team_slave_1 removed [ 236.600159][ T5663] e1000 0000:00:06.0 eth0: Reset adapter [ 236.719577][ T5663] e1000 0000:00:06.0 eth0: Reset adapter [ 236.813945][ T5992] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 236.825650][ T5992] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 236.829548][ T5663] e1000 0000:00:06.0 eth0: Reset adapter [ 236.829988][ T5992] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 236.836617][ T5992] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 236.840699][ T5992] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 237.019341][ T5995] Bluetooth: hci2: command 0x0c1a tx timeout [ 237.063959][T16749] chnl_net:caif_netlink_parms(): no params data found [ 237.175470][T16749] bridge0: port 1(bridge_slave_0) entered blocking state [ 237.178565][T16749] bridge0: port 1(bridge_slave_0) entered disabled state [ 237.183130][T16749] bridge_slave_0: entered allmulticast mode [ 237.187061][T16749] bridge_slave_0: entered promiscuous mode [ 237.192102][T16749] bridge0: port 2(bridge_slave_1) entered blocking state [ 237.196114][T16749] bridge0: port 2(bridge_slave_1) entered disabled state [ 237.199249][T16749] bridge_slave_1: entered allmulticast mode [ 237.203127][T16749] bridge_slave_1: entered promiscuous mode [ 237.242714][T16749] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 237.248306][T16749] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 237.285918][T16749] team0: Port device team_slave_0 added [ 237.289278][T16749] team0: Port device team_slave_1 added [ 237.317929][T16749] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 237.321940][T16749] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 237.329924][T16749] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 237.334282][T16749] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 237.336452][T16749] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 237.345433][T16749] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 237.382506][T16749] hsr_slave_0: entered promiscuous mode [ 237.385445][T16749] hsr_slave_1: entered promiscuous mode [ 237.588334][T16749] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 237.594767][T16749] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 237.601248][T16749] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 237.607586][T16749] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 237.628297][T16749] bridge0: port 2(bridge_slave_1) entered blocking state [ 237.631731][T16749] bridge0: port 2(bridge_slave_1) entered forwarding state [ 237.634198][T16749] bridge0: port 1(bridge_slave_0) entered blocking state [ 237.636710][T16749] bridge0: port 1(bridge_slave_0) entered forwarding state [ 237.665888][T16749] 8021q: adding VLAN 0 to HW filter on device bond0 [ 237.674001][ T7268] bridge0: port 1(bridge_slave_0) entered disabled state [ 237.677874][ T7268] bridge0: port 2(bridge_slave_1) entered disabled state [ 237.692068][T16749] 8021q: adding VLAN 0 to HW filter on device team0 [ 237.699022][ T7281] bridge0: port 1(bridge_slave_0) entered blocking state [ 237.701674][ T7281] bridge0: port 1(bridge_slave_0) entered forwarding state [ 237.712906][ T72] bridge0: port 2(bridge_slave_1) entered blocking state [ 237.715659][ T72] bridge0: port 2(bridge_slave_1) entered forwarding state [ 237.857767][T16749] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 238.005412][T16749] veth0_vlan: entered promiscuous mode [ 238.014560][T16749] veth1_vlan: entered promiscuous mode [ 238.037544][T16749] veth0_macvtap: entered promiscuous mode [ 238.043550][T16749] veth1_macvtap: entered promiscuous mode [ 238.060397][T16749] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 238.070228][T16749] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 238.078918][ T7268] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 238.081725][ T7268] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 238.085998][ T7268] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 238.090661][ T7299] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 238.132345][ T7281] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 238.135591][ T7281] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 238.151554][ T7268] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 238.154858][ T7268] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 238.164774][ T40] audit: type=1400 audit(2000000100.799:589): avc: denied { mounton } for pid=16749 comm="syz-executor" path="/syzkaller.b5xqxw/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=55720 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 238.209944][ T40] audit: type=1400 audit(2000000100.849:590): avc: denied { read } for pid=16773 comm="syz.7.4965" path="socket:[53637]" dev="sockfs" ino=53637 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 238.859440][ T5995] Bluetooth: hci0: command tx timeout [ 238.940730][ T5663] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX [ 239.467340][T16805] openvswitch: netlink: IPv6 tunnel dst address is zero [ 239.547485][T16812] tipc: Enabling of bearer rejected, media not registered [ 239.615037][T16821] loop7: detected capacity change from 0 to 7 [ 239.677398][T16821] Dev loop7: unable to read RDB block 7 [ 239.682223][T16821] loop7: unable to read partition table [ 239.684734][T16821] loop7: partition table beyond EOD, truncated [ 239.685554][T16831] binder: 16830:16831 ioctl 40046205 0 returned -22 [ 239.687199][T16821] loop_reread_partitions: partition scan of loop7 (Cj̖P=ý?}X %`ր{֐ȵ4FLQk݊) failed (rc=-5) [ 239.692587][T16831] binder: 16830:16831 ioctl c0306201 2000000013c0 returned -11 [ 239.722213][T16835] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 239.725249][T16835] IPv6: NLM_F_CREATE should be set when creating new route [ 239.728680][T16835] IPv6: NLM_F_CREATE should be set when creating new route [ 239.731661][T16835] IPv6: NLM_F_CREATE should be set when creating new route [ 239.745096][T16835] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 239.754880][ T5384] Dev loop7: unable to read RDB block 7 [ 239.757195][ T5384] loop7: unable to read partition table [ 239.760924][ T5384] loop7: partition table beyond EOD, truncated [ 239.861024][ T5663] IPVS: starting estimator thread 0... [ 239.924971][T16863] 9pnet_fd: p9_fd_create_unix (16863): problem connecting socket: qY3aK: -91 [ 239.926539][ T40] audit: type=1326 audit(2000000102.559:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16864 comm="syz.7.5011" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa21c38eba9 code=0x0 [ 239.960409][T16854] IPVS: using max 42 ests per chain, 100800 per kthread [ 240.233422][T16891] CIFS mount error: No usable UNC path provided in device string! [ 240.233422][T16891] [ 240.237270][T16891] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 240.711930][T16915] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5036'. [ 240.715572][T16915] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5036'. [ 240.721121][T16917] netlink: 28 bytes leftover after parsing attributes in process `syz.6.5043'. [ 240.724683][T16917] netlink: 60 bytes leftover after parsing attributes in process `syz.6.5043'. [ 240.787236][T16925] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5041'. [ 240.796626][T16927] netlink: 'syz.7.5040': attribute type 10 has an invalid length. [ 240.800275][T16924] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5039'. [ 240.805187][T16927] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 240.810836][T16927] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 240.817812][T16927] netlink: 'syz.7.5040': attribute type 10 has an invalid length. [ 240.821188][T16927] netlink: 40 bytes leftover after parsing attributes in process `syz.7.5040'. [ 240.823850][T16927] batadv0: entered promiscuous mode [ 240.825437][T16927] batadv0: entered allmulticast mode [ 240.828237][T16927] bond0: (slave batadv0): Releasing backup interface [ 240.834230][T16927] bridge0: port 3(batadv0) entered blocking state [ 240.836312][T16927] bridge0: port 3(batadv0) entered disabled state [ 240.939404][ T5995] Bluetooth: hci0: command tx timeout [ 240.987100][T16949] netlink: 'syz.6.5052': attribute type 4 has an invalid length. [ 240.989874][T16949] netlink: 17 bytes leftover after parsing attributes in process `syz.6.5052'. [ 240.993401][ T40] audit: type=1326 audit(2000000103.629:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16950 comm="syz.4.5050" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1b8618eba9 code=0x0 [ 241.120094][T16964] netlink: 108 bytes leftover after parsing attributes in process `syz.6.5058'. [ 241.190938][ T7281] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 241.194596][ T7281] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 241.462448][T16982] netlink: 'syz.7.5067': attribute type 12 has an invalid length. [ 241.465712][T16982] netlink: 'syz.7.5067': attribute type 29 has an invalid length. [ 241.468924][T16982] __nla_validate_parse: 1 callbacks suppressed [ 241.468936][T16982] netlink: 148 bytes leftover after parsing attributes in process `syz.7.5067'. [ 241.599192][ T5663] usb 11-1: new full-speed USB device number 2 using dummy_hcd [ 241.764322][ T5663] usb 11-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 241.767503][ T5663] usb 11-1: config 0 has 0 interfaces, different from the descriptor's value: 2 [ 241.772994][ T5663] usb 11-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 241.775981][ T5663] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 241.778364][ T5663] usb 11-1: Product: syz [ 241.780071][ T5663] usb 11-1: Manufacturer: syz [ 241.781622][ T5663] usb 11-1: SerialNumber: syz [ 241.784580][ T5663] usb 11-1: config 0 descriptor?? [ 241.845772][T17003] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5077'. [ 241.962160][T17018] netlink: 16 bytes leftover after parsing attributes in process `syz.7.5084'. [ 241.991308][ T8756] usb 11-1: USB disconnect, device number 2 [ 242.025778][ T54] hid_parser_main: 4400 callbacks suppressed [ 242.025792][ T54] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 242.031446][ T54] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 242.033657][ T54] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 242.035911][ T54] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 242.038110][ T54] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 242.042109][ T54] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 242.044246][ T54] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 242.046422][ T54] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 242.048638][ T54] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 242.051264][ T54] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 242.054978][ T54] hid-generic 0000:0000:0000.0008: hidraw1: HID v0.03 Device [syz1] on syz1 [ 242.097184][T17032] fido_id[17032]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 242.140938][T17040] rtc_cmos 00:05: Alarms can be up to one day in the future [ 242.281870][T17051] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5098'. [ 242.285218][T17051] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5098'. [ 242.343476][ T5663] rtc_cmos 00:05: Alarms can be up to one day in the future [ 242.346758][ T5663] rtc_cmos 00:05: Alarms can be up to one day in the future [ 242.350503][ T5663] rtc_cmos 00:05: Alarms can be up to one day in the future [ 242.353574][ T5663] rtc_cmos 00:05: Alarms can be up to one day in the future [ 242.355866][ T5663] rtc rtc0: __rtc_set_alarm: err=-22 [ 242.533608][ T40] audit: type=1400 audit(2000000105.169:593): avc: denied { read } for pid=17063 comm="syz.7.5104" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 242.571188][T17069] Bluetooth: MGMT ver 1.23 [ 242.715579][T17078] Attempt to restore checkpoint with obsolete wellknown handles [ 243.004569][T17105] netlink: 'syz.6.5123': attribute type 12 has an invalid length. [ 243.007878][T17105] netlink: 120 bytes leftover after parsing attributes in process `syz.6.5123'. [ 243.019866][ T5995] Bluetooth: hci0: command tx timeout [ 243.289203][ T8756] usb 12-1: new high-speed USB device number 2 using dummy_hcd [ 243.449115][ T8756] usb 12-1: Using ep0 maxpacket: 8 [ 243.452556][ T8756] usb 12-1: config index 0 descriptor too short (expected 301, got 45) [ 243.456018][ T8756] usb 12-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 243.460543][ T8756] usb 12-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 243.464713][ T8756] usb 12-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 243.468894][ T8756] usb 12-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 243.474381][ T8756] usb 12-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 243.478164][ T8756] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 243.690929][ T8756] usb 12-1: usb_control_msg returned -71 [ 243.693453][ T8756] usbtmc 12-1:16.0: can't read capabilities [ 243.700736][ T8756] usb 12-1: USB disconnect, device number 2 [ 244.230099][T17128] support for cryptoloop has been removed. Use dm-crypt instead. [ 244.296113][ T40] audit: type=1800 audit(2000000106.929:594): pid=17132 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.6.5137" name="SYSV00000000" dev="hugetlbfs" ino=2 res=0 errno=0 [ 244.472417][ T40] audit: type=1326 audit(2000000107.109:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17120 comm="syz.4.5131" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b8618eba9 code=0x7fc00000 [ 244.521525][T17154] netlink: 16 bytes leftover after parsing attributes in process `syz.6.5146'. [ 244.662942][ T840] hid-generic 0005:00B6:0009.0009: hidraw1: BLUETOOTH HID v1ade12.f3 Device [syz0] on syz1 [ 244.702549][T17163] fido_id[17163]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 244.764480][T17171] x_tables: ip_tables: HMARK.0 target: invalid size 64 (kernel) != (user) 72 [ 245.050208][ T40] audit: type=1400 audit(2000000107.689:596): avc: denied { read } for pid=17194 comm="syz.6.5164" laddr=::1 lport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 245.099456][ T5995] Bluetooth: hci0: command tx timeout [ 245.758795][T17248] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5190'. [ 245.764025][T17248] netlink: 32 bytes leftover after parsing attributes in process `syz.7.5190'. [ 246.042598][T17265] SELinux: ebitmap: truncated map [ 246.047896][T17265] SELinux: failed to load policy [ 246.236699][T17277] could not open pipe file descriptor [ 246.429546][ T840] usb 12-1: new high-speed USB device number 3 using dummy_hcd [ 246.429796][T17297] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5212'. [ 246.481147][T17303] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5214'. [ 246.505477][T17305] netem: incorrect ge model size [ 246.507542][T17305] netem: change failed [ 246.526856][T17309] overlayfs: lowerdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 246.535945][T17309] overlayfs: overlapping lowerdir path [ 246.609482][ T840] usb 12-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 246.613647][ T840] usb 12-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 246.617977][ T840] usb 12-1: Product: syz [ 246.623717][ T840] usb 12-1: Manufacturer: syz [ 246.625807][ T840] usb 12-1: SerialNumber: syz [ 246.639812][ T840] usb 12-1: config 0 descriptor?? [ 246.857487][ T54] usb 12-1: USB disconnect, device number 3 [ 246.896540][ T40] audit: type=1804 audit(2000000109.529:597): pid=17357 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.6.5231" name="/newroot/260/file0" dev="tmpfs" ino=1334 res=1 errno=0 [ 247.010439][T17371] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5238'. [ 247.033910][T17375] program syz.5.5239 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 247.489476][ T29] usb 10-1: new high-speed USB device number 6 using dummy_hcd [ 247.651753][ T29] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 247.656822][ T29] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 247.664418][ T29] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 247.668102][ T29] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 247.679660][T17401] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 247.684975][ T29] usb 10-1: Quirk or no altset; falling back to MIDI 1.0 [ 247.685143][T17431] netlink: 'syz.4.5268': attribute type 10 has an invalid length. [ 247.694297][T17431] hsr_slave_0: left promiscuous mode [ 247.697572][T17431] hsr_slave_1: left promiscuous mode [ 247.801517][T17438] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5270'. [ 247.805187][T17438] openvswitch: netlink: nsh attribute has 2338 unknown bytes. [ 247.807905][T17438] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 247.825557][T17440] program syz.4.5271 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 247.922342][ T1466] usb 10-1: USB disconnect, device number 6 [ 247.926598][T17450] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method [ 247.982762][T17448] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 247.987036][T17448] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 247.989781][T17448] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 248.003127][T17448] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 248.005747][T17448] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 248.012263][T17448] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 248.286174][T17479] netlink: 'syz.7.5290': attribute type 1 has an invalid length. [ 248.289684][T17479] netlink: 144 bytes leftover after parsing attributes in process `syz.7.5290'. [ 248.292833][T17479] netlink: 28 bytes leftover after parsing attributes in process `syz.7.5290'. [ 248.669193][T17543] atomic_op ffff88805749a998 conn xmit_atomic 0000000000000000 [ 248.676153][T17545] fuse: Bad value for 'group_id' [ 248.678072][T17545] fuse: Bad value for 'group_id' [ 248.777002][T17563] blktrace: Concurrent blktraces are not allowed on loop4 [ 248.884660][T17581] random: crng reseeded on system resumption [ 248.991201][T17599] netlink: 'syz.4.5349': attribute type 4 has an invalid length. [ 249.009061][T17599] netlink: 'syz.4.5349': attribute type 4 has an invalid length. [ 249.051759][T17605] mkiss: ax0: crc mode is auto. [ 249.183602][T17623] netlink: 36 bytes leftover after parsing attributes in process `syz.6.5357'. [ 249.219426][T17629] netlink: 6032 bytes leftover after parsing attributes in process `syz.7.5361'. [ 249.299650][T17639] netlink: 'syz.7.5364': attribute type 4 has an invalid length. [ 249.316147][T17639] netlink: 'syz.7.5364': attribute type 4 has an invalid length. [ 250.069264][ T5992] Bluetooth: hci2: command 0x0c1a tx timeout [ 250.069328][ T5334] Bluetooth: hci4: command 0x0c1a tx timeout [ 250.069364][ T5988] Bluetooth: hci1: command 0x0406 tx timeout [ 250.070154][ T5995] Bluetooth: hci0: command 0x0c1a tx timeout [ 250.281492][T17669] netlink: 'syz.6.5379': attribute type 4 has an invalid length. [ 250.294190][T17669] netlink: 'syz.6.5379': attribute type 4 has an invalid length. [ 250.579395][T17707] (unnamed net_device) (uninitialized): invalid ARP target 0.0.0.0 specified for addition [ 250.583003][T17707] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (0) [ 250.809308][ T8756] usb 9-1: new full-speed USB device number 5 using dummy_hcd [ 250.887242][T17731] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes. [ 250.975111][ T8756] usb 9-1: unable to get BOS descriptor or descriptor too short [ 250.978448][ T8756] usb 9-1: no configurations [ 250.980125][ T8756] usb 9-1: can't read configurations, error -22 [ 251.022329][T17742] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5415'. [ 251.149170][ T29] usb 11-1: new high-speed USB device number 3 using dummy_hcd [ 251.299312][ T29] usb 11-1: Using ep0 maxpacket: 16 [ 251.303202][ T29] usb 11-1: config 0 has an invalid interface number: 8 but max is 0 [ 251.306666][ T29] usb 11-1: config 0 has no interface number 0 [ 251.310142][ T29] usb 11-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 251.314795][ T29] usb 11-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 251.320488][ T29] usb 11-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 251.324773][ T29] usb 11-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 251.328382][ T29] usb 11-1: Product: syz [ 251.330847][ T29] usb 11-1: SerialNumber: syz [ 251.335920][ T29] usb 11-1: config 0 descriptor?? [ 251.340989][ T29] cm109 11-1:0.8: invalid payload size 0, expected 4 [ 251.345834][ T29] input: CM109 USB driver as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.8/input/input19 [ 251.546733][ C1] cm109 11-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90 [ 251.583386][T17758] macsec2: entered promiscuous mode [ 251.659625][T17766] mkiss: ax0: crc mode is auto. [ 251.663376][T17768] [U] v3f"S/4:XTzWtlW= [ 251.665802][T17768] [U] J"e:" [ 251.667357][ T5334] Bluetooth: hci1: unexpected event 0x03 length: 6 < 11 [ 251.759729][ C0] cm109 11-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 251.764103][ C0] cm109 11-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 251.767139][ C0] cm109 11-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 251.772010][ C0] cm109 11-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 251.774911][ C0] cm109 11-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 251.777641][ C0] cm109 11-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 251.780752][ T6068] usb 11-1: USB disconnect, device number 3 [ 251.783861][ C0] cm109 11-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 251.786939][ C0] cm109 11-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 251.793627][ T6068] cm109 11-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 252.199211][T17823] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5454'. [ 252.361375][T17842] syz_tun: refused to change device tx_queue_len [ 252.424328][T17854] netlink: 212388 bytes leftover after parsing attributes in process `syz.6.5470'. [ 252.428302][T17854] openvswitch: netlink: Message has 5 unknown bytes. [ 252.759608][T17884] netlink: 'syz.5.5485': attribute type 1 has an invalid length. [ 252.762888][T17884] netlink: 144 bytes leftover after parsing attributes in process `syz.5.5485'. [ 252.766717][T17884] netlink: 28 bytes leftover after parsing attributes in process `syz.5.5485'. [ 252.800563][ T72] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 252.896778][ T72] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 252.933236][T17893] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5491'. [ 252.938349][T17893] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5491'. [ 252.982962][ T72] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 253.080088][ T5992] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 253.084195][ T5992] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 253.087375][ T5992] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 253.090697][ T5992] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 253.093637][ T5992] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 253.105727][ T72] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 253.117695][T17913] netlink: 'syz.4.5500': attribute type 12 has an invalid length. [ 253.123026][T17913] netlink: 120 bytes leftover after parsing attributes in process `syz.4.5500'. [ 253.317293][ T72] bridge0: port 3(batadv0) entered disabled state [ 253.322868][ T72] bridge_slave_1: left allmulticast mode [ 253.325257][ T72] bridge_slave_1: left promiscuous mode [ 253.327761][ T72] bridge0: port 2(bridge_slave_1) entered disabled state [ 253.336244][ T72] bridge_slave_0: left allmulticast mode [ 253.338232][ T72] bridge_slave_0: left promiscuous mode [ 253.341083][ T72] bridge0: port 1(bridge_slave_0) entered disabled state [ 253.668630][ T72] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 253.673825][ T72] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 253.678344][ T72] bond0 (unregistering): Released all slaves [ 253.688440][ T72] bond1 (unregistering): Released all slaves [ 253.706498][T17908] chnl_net:caif_netlink_parms(): no params data found [ 253.820741][T17908] bridge0: port 1(bridge_slave_0) entered blocking state [ 253.823917][T17908] bridge0: port 1(bridge_slave_0) entered disabled state [ 253.827067][T17908] bridge_slave_0: entered allmulticast mode [ 253.831376][T17908] bridge_slave_0: entered promiscuous mode [ 253.855323][T17908] bridge0: port 2(bridge_slave_1) entered blocking state [ 253.858181][T17908] bridge0: port 2(bridge_slave_1) entered disabled state [ 253.861227][T17908] bridge_slave_1: entered allmulticast mode [ 253.864770][T17908] bridge_slave_1: entered promiscuous mode [ 253.919471][T17908] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 253.936128][T17908] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 254.014051][T17908] team0: Port device team_slave_0 added [ 254.020033][ T72] hsr_slave_0: left promiscuous mode [ 254.022026][ T72] hsr_slave_1: left promiscuous mode [ 254.024045][ T72] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 254.026324][ T72] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 254.029005][ T72] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 254.031464][ T72] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 254.056072][ T72] veth1_macvtap: left promiscuous mode [ 254.058393][ T72] veth0_macvtap: left promiscuous mode [ 254.062190][ T72] veth1_vlan: left promiscuous mode [ 254.064102][ T72] veth0_vlan: left promiscuous mode [ 254.228349][T17947] Attempt to restore checkpoint with obsolete wellknown handles [ 254.312201][ T40] audit: type=1326 audit(2000000116.949:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17929 comm="syz.6.5505" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f37caf8eba9 code=0x7fc00000 [ 254.659328][ T29] usb 10-1: new high-speed USB device number 7 using dummy_hcd [ 254.767605][ T72] team0 (unregistering): Port device team_slave_1 removed [ 254.819131][ T29] usb 10-1: Using ep0 maxpacket: 8 [ 254.822872][ T29] usb 10-1: config index 0 descriptor too short (expected 301, got 45) [ 254.826756][ T29] usb 10-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 254.832155][ T29] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 254.836193][ T29] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 254.840493][ T29] usb 10-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 254.845853][ T29] usb 10-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 254.849523][ T29] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 254.860761][ T72] team0 (unregistering): Port device team_slave_0 removed [ 255.063355][ T29] usb 10-1: usb_control_msg returned -32 [ 255.065174][ T29] usbtmc 10-1:16.0: can't read capabilities [ 255.074563][ T29] usb 10-1: USB disconnect, device number 7 [ 255.182084][ T5992] Bluetooth: hci0: command tx timeout [ 255.384889][T17908] team0: Port device team_slave_1 added [ 255.464554][T17908] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 255.467494][T17908] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 255.479379][T17908] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 255.485305][T17908] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 255.488575][T17908] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 255.497850][T17959] netlink: 108 bytes leftover after parsing attributes in process `syz.4.5516'. [ 255.499787][T17908] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 255.515113][T17959] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5516'. [ 255.682999][T17908] hsr_slave_0: entered promiscuous mode [ 255.685437][T17908] hsr_slave_1: entered promiscuous mode [ 255.687979][T17963] netlink: 'syz.4.5517': attribute type 12 has an invalid length. [ 255.693717][T17963] netlink: 'syz.4.5517': attribute type 29 has an invalid length. [ 255.696983][T17963] netlink: 148 bytes leftover after parsing attributes in process `syz.4.5517'. [ 255.777165][T17972] overlayfs: lowerdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 255.785022][T17972] overlayfs: overlapping lowerdir path [ 255.938422][T17908] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 255.961349][T17908] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 255.966336][T17908] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 255.976284][T17908] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 256.053659][T17908] 8021q: adding VLAN 0 to HW filter on device bond0 [ 256.071104][T17908] 8021q: adding VLAN 0 to HW filter on device team0 [ 256.073389][T18016] tipc: Enabling of bearer rejected, media not registered [ 256.080457][ T7299] bridge0: port 1(bridge_slave_0) entered blocking state [ 256.082761][ T7299] bridge0: port 1(bridge_slave_0) entered forwarding state [ 256.097175][ T7299] bridge0: port 2(bridge_slave_1) entered blocking state [ 256.100433][ T7299] bridge0: port 2(bridge_slave_1) entered forwarding state [ 256.265655][T18045] openvswitch: netlink: IPv6 tunnel dst address is zero [ 256.281632][T17908] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 256.481552][T17908] veth0_vlan: entered promiscuous mode [ 256.489204][T17908] veth1_vlan: entered promiscuous mode [ 256.508358][T17908] veth0_macvtap: entered promiscuous mode [ 256.513133][T17908] veth1_macvtap: entered promiscuous mode [ 256.522256][T17908] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 256.526406][T17908] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 256.538663][ T42] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 256.545094][ T42] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 256.553322][ T42] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 256.556909][ T42] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 256.615785][ T7281] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 256.623678][ T7281] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 256.646552][T18083] mkiss: ax0: crc mode is auto. [ 256.658229][ T7281] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 256.664236][ T7281] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 256.768140][T18090] SELinux: failure in selinux_parse_skb(), unable to parse packet [ 257.260005][ T5992] Bluetooth: hci0: command tx timeout [ 257.271805][T18151] __nla_validate_parse: 3 callbacks suppressed [ 257.271821][T18151] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5604'. [ 257.276590][T18150] pim6reg1: tun_chr_ioctl cmd 1074025675 [ 257.280694][T18150] pim6reg1: persist disabled [ 257.326621][T18155] batadv_slave_1: entered promiscuous mode [ 257.331581][T18154] batadv_slave_1: left promiscuous mode [ 257.412488][T18167] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5610'. [ 257.541313][T18184] netlink: 16 bytes leftover after parsing attributes in process `syz.8.5620'. [ 257.654954][T18196] netlink: 'syz.4.5625': attribute type 27 has an invalid length. [ 257.695647][T18199] Bluetooth: MGMT ver 1.23 [ 257.706386][T18196] bridge0: port 2(bridge_slave_1) entered disabled state [ 257.711689][ T29] usb 11-1: new high-speed USB device number 4 using dummy_hcd [ 257.821843][T18196] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 257.837861][T18196] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 257.891178][ T29] usb 11-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 257.895679][ T29] usb 11-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 257.898906][ T29] usb 11-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 257.902265][ T29] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 257.907780][T18171] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 257.916406][ T29] usb 11-1: Quirk or no altset; falling back to MIDI 1.0 [ 257.985473][T18196] macsec1: left promiscuous mode [ 258.020893][T18196] macsec2: left promiscuous mode [ 258.054364][T18202] bridge0: left promiscuous mode [ 258.058181][T18202] 8021q: adding VLAN 0 to HW filter on device bond0 [ 258.062429][T18202] 8021q: adding VLAN 0 to HW filter on device team0 [ 258.066857][T18202] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 258.075915][ T7281] netdevsim netdevsim4 eth0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 258.079033][ T7281] netdevsim netdevsim4 eth1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 258.091367][ T7281] netdevsim netdevsim4 eth2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 258.099389][ T7281] netdevsim netdevsim4 eth3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 258.123482][ T842] usb 11-1: USB disconnect, device number 4 [ 258.599241][ T34] usb 9-1: new high-speed USB device number 7 using dummy_hcd [ 258.679029][T18259] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5659'. [ 258.746266][ T40] audit: type=1400 audit(2000000121.379:599): avc: denied { map } for pid=18266 comm="syz.8.5658" path="socket:[62018]" dev="sockfs" ino=62018 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 258.767089][T18269] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5660'. [ 258.772387][T18271] bridge0: port 3(syz_tun) entered blocking state [ 258.775601][T18271] bridge0: port 3(syz_tun) entered disabled state [ 258.777919][T18271] syz_tun: entered allmulticast mode [ 258.779812][ T34] usb 9-1: Using ep0 maxpacket: 8 [ 258.781951][ T34] usb 9-1: config index 0 descriptor too short (expected 301, got 45) [ 258.783478][T18271] syz_tun: entered promiscuous mode [ 258.785928][ T34] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 258.788775][T18271] bridge0: port 3(syz_tun) entered blocking state [ 258.793711][ T34] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 258.796099][T18271] bridge0: port 3(syz_tun) entered forwarding state [ 258.801999][ T34] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 258.808329][ T34] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 258.813669][ T34] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 258.817290][ T34] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 258.863502][ T5992] Bluetooth: hci4: ACL packet for unknown connection handle 201 [ 258.900563][T18284] trusted_key: encrypted_key: keyword 'load' not allowed when called from .update method [ 258.920727][T18286] netlink: 68 bytes leftover after parsing attributes in process `syz.8.5668'. [ 258.988123][T18291] netlink: 8 bytes leftover after parsing attributes in process `syz.8.5671'. [ 259.044711][ T34] usb 9-1: usb_control_msg returned -32 [ 259.048530][ T34] usbtmc 9-1:16.0: can't read capabilities [ 259.064601][ T34] usb 9-1: USB disconnect, device number 7 [ 259.219200][T18306] nbd0: detected capacity change from 0 to 127 [ 259.224177][ T5992] block nbd0: Receive control failed (result -32) [ 259.225928][T15554] block nbd0: Send control failed (result -32) [ 259.230795][T15554] block nbd0: Request send failed, requeueing [ 259.236614][ T151] block nbd0: Dead connection, failed to find a fallback [ 259.240232][ T151] block nbd0: shutting down sockets [ 259.240383][T15554] I/O error, dev nbd0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 259.242498][ T151] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 259.242659][ T151] Buffer I/O error on dev nbd0, logical block 0, async page read [ 259.246456][T15554] Buffer I/O error on dev nbd0, logical block 1, async page read [ 259.257185][T15554] I/O error, dev nbd0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 259.261546][T15554] Buffer I/O error on dev nbd0, logical block 2, async page read [ 259.264962][T15554] I/O error, dev nbd0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 259.268232][T15554] Buffer I/O error on dev nbd0, logical block 3, async page read [ 259.271587][T15554] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 259.275044][T15554] Buffer I/O error on dev nbd0, logical block 0, async page read [ 259.278257][T15554] I/O error, dev nbd0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 259.282788][T15554] Buffer I/O error on dev nbd0, logical block 1, async page read [ 259.286067][T15554] I/O error, dev nbd0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 259.290979][T15554] Buffer I/O error on dev nbd0, logical block 2, async page read [ 259.294339][T15554] I/O error, dev nbd0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 259.298369][T15554] Buffer I/O error on dev nbd0, logical block 3, async page read [ 259.301964][T15554] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 259.305588][T15554] Buffer I/O error on dev nbd0, logical block 0, async page read [ 259.309529][T15554] I/O error, dev nbd0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 259.313398][T15554] Buffer I/O error on dev nbd0, logical block 1, async page read [ 259.320848][T15554] ldm_validate_partition_table(): Disk read failed. [ 259.324914][T15554] Dev nbd0: unable to read RDB block 0 [ 259.329335][T15554] nbd0: unable to read partition table [ 259.339423][ T5992] Bluetooth: hci0: command tx timeout [ 259.342680][T15554] ldm_validate_partition_table(): Disk read failed. [ 259.343280][ T29] hid_parser_main: 4169 callbacks suppressed [ 259.343291][ T29] hid-generic 0005:00B6:0009.000A: unknown main item tag 0x0 [ 259.345664][T15554] Dev nbd0: unable to read RDB block 0 [ 259.346954][ T29] hid-generic 0005:00B6:0009.000A: unknown main item tag 0x0 [ 259.350503][T15554] nbd0: unable to read partition table [ 259.352660][ T29] hid-generic 0005:00B6:0009.000A: unknown main item tag 0x0 [ 259.360540][ T29] hid-generic 0005:00B6:0009.000A: unknown main item tag 0x0 [ 259.365055][ T29] hid-generic 0005:00B6:0009.000A: unknown main item tag 0x0 [ 259.367568][ T29] hid-generic 0005:00B6:0009.000A: unknown main item tag 0x0 [ 259.369952][ T29] hid-generic 0005:00B6:0009.000A: unknown main item tag 0x0 [ 259.372173][ T29] hid-generic 0005:00B6:0009.000A: unknown main item tag 0x0 [ 259.374438][ T29] hid-generic 0005:00B6:0009.000A: unknown main item tag 0x0 [ 259.376658][ T29] hid-generic 0005:00B6:0009.000A: unknown main item tag 0x0 [ 259.395795][ T29] hid-generic 0005:00B6:0009.000A: hidraw1: BLUETOOTH HID v1ade12.f3 Device [syz0] on syz1 [ 259.428809][ T40] audit: type=1800 audit(2000000122.059:600): pid=18333 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.8.5688" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 259.432981][T18329] fido_id[18329]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 259.491924][T18339] batadv_slave_1: entered promiscuous mode [ 259.494938][T18338] batadv_slave_1: left promiscuous mode [ 260.013240][ T5992] Bluetooth: hci1: Ignoring connect complete event for invalid link type [ 260.486337][T18390] dvmrp17: entered allmulticast mode [ 260.490885][T18390] dvmrp17: left allmulticast mode [ 260.739981][T18420] macvtap1: entered promiscuous mode [ 260.741858][T18420] team0: Device macvtap1 is already an upper device of the team interface [ 260.761210][T18422] netlink: 72 bytes leftover after parsing attributes in process `syz.4.5732'. [ 260.801708][T18426] CUSE: unknown device info "" [ 260.803893][T18426] CUSE: zero length info key specified [ 261.117438][ T42] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 261.208731][ T42] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 261.246000][T18462] netlink: 'syz.6.5752': attribute type 29 has an invalid length. [ 261.306541][ T42] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 261.363286][ T40] audit: type=1326 audit(2000000123.999:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18473 comm="syz.6.5759" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f37caf8eba9 code=0x0 [ 261.385325][ T5334] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 261.391449][ T5334] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 261.394986][ T5334] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 261.399818][ T5334] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 261.402279][ T5334] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 261.413364][ T42] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 261.493366][ T841] IPVS: starting estimator thread 0... [ 261.496180][T18494] IPVS: fo: FWM 3 0x00000003 - no destination available [ 261.529293][T18478] chnl_net:caif_netlink_parms(): no params data found [ 261.578960][ T42] bridge_slave_1: left allmulticast mode [ 261.582311][ T42] bridge_slave_1: left promiscuous mode [ 261.584831][ T42] bridge0: port 2(bridge_slave_1) entered disabled state [ 261.594259][ T42] bridge_slave_0: left allmulticast mode [ 261.596180][ T42] bridge_slave_0: left promiscuous mode [ 261.598101][ T42] bridge0: port 1(bridge_slave_0) entered disabled state [ 261.609221][T18495] IPVS: using max 42 ests per chain, 100800 per kthread [ 261.718836][T18508] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5771'. [ 261.722312][T18508] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5771'. [ 261.882204][ T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 261.886471][ T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 261.892171][ T42] bond0 (unregistering): Released all slaves [ 261.958673][T18478] bridge0: port 1(bridge_slave_0) entered blocking state [ 261.961737][T18478] bridge0: port 1(bridge_slave_0) entered disabled state [ 261.964773][T18478] bridge_slave_0: entered allmulticast mode [ 261.968800][T18478] bridge_slave_0: entered promiscuous mode [ 261.975696][T18478] bridge0: port 2(bridge_slave_1) entered blocking state [ 261.978554][T18478] bridge0: port 2(bridge_slave_1) entered disabled state [ 261.981675][T18478] bridge_slave_1: entered allmulticast mode [ 261.985545][T18478] bridge_slave_1: entered promiscuous mode [ 262.057214][T18478] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 262.064155][T18478] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 262.114614][T18478] team0: Port device team_slave_0 added [ 262.127670][T18478] team0: Port device team_slave_1 added [ 262.188976][T18478] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 262.191959][T18478] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 262.204750][T18478] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 262.213036][T18478] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 262.215953][T18478] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 262.226176][T18478] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 262.281364][T18478] hsr_slave_0: entered promiscuous mode [ 262.283692][T18478] hsr_slave_1: entered promiscuous mode [ 262.285769][T18478] debugfs: 'hsr0' already exists in 'hsr' [ 262.291031][T18478] Cannot create hsr debugfs directory [ 262.301038][ T42] hsr_slave_0: left promiscuous mode [ 262.303870][ T42] hsr_slave_1: left promiscuous mode [ 262.306732][ T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 262.310606][ T42] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 262.313309][ T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 262.315659][ T42] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 262.343910][ T42] veth1_macvtap: left promiscuous mode [ 262.345716][ T42] veth0_macvtap: left promiscuous mode [ 262.347876][ T42] veth1_vlan: left promiscuous mode [ 262.350446][ T42] veth0_vlan: left promiscuous mode [ 262.489309][ T6068] usb 9-1: new high-speed USB device number 8 using dummy_hcd [ 262.641032][ T6068] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 262.645550][ T6068] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 262.649809][ T6068] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 262.653702][ T6068] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 262.659515][T18527] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 262.674301][ T6068] usb 9-1: Quirk or no altset; falling back to MIDI 1.0 [ 262.875695][ T29] usb 9-1: USB disconnect, device number 8 [ 263.127624][ T42] team0 (unregistering): Port device team_slave_1 removed [ 263.200762][ T42] team0 (unregistering): Port device team_slave_0 removed [ 263.509270][ T5334] Bluetooth: hci0: command tx timeout [ 263.895430][T18541] batadv_slave_1: entered promiscuous mode [ 263.900310][T18539] batadv_slave_1: left promiscuous mode [ 264.073321][T18553] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5791'. [ 264.078230][T18553] netlink: 3 bytes leftover after parsing attributes in process `syz.6.5791'. [ 264.300094][T18585] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5796'. [ 264.314720][T18587] program syz.4.5797 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 264.599304][ T29] usb 11-1: new high-speed USB device number 5 using dummy_hcd [ 264.645390][T18478] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 264.651982][T18478] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 264.659193][T18478] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 264.665045][T18478] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 264.732837][T18478] 8021q: adding VLAN 0 to HW filter on device bond0 [ 264.747702][T18478] 8021q: adding VLAN 0 to HW filter on device team0 [ 264.751091][ T29] usb 11-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 264.755971][ T72] bridge0: port 1(bridge_slave_0) entered blocking state [ 264.756039][ T29] usb 11-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 264.759166][ T72] bridge0: port 1(bridge_slave_0) entered forwarding state [ 264.763255][ T29] usb 11-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 264.763279][ T29] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 264.772956][ T7299] bridge0: port 2(bridge_slave_1) entered blocking state [ 264.776103][ T7299] bridge0: port 2(bridge_slave_1) entered forwarding state [ 264.779468][T18590] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 264.784198][ T29] usb 11-1: Quirk or no altset; falling back to MIDI 1.0 [ 264.935378][T18478] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 265.140735][T18478] veth0_vlan: entered promiscuous mode [ 265.141577][ T840] usb 11-1: USB disconnect, device number 5 [ 265.150581][T18478] veth1_vlan: entered promiscuous mode [ 265.174850][T18478] veth0_macvtap: entered promiscuous mode [ 265.180866][T18478] veth1_macvtap: entered promiscuous mode [ 265.198025][T18478] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 265.208318][T18478] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 265.218218][ T72] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.222415][ T72] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.227108][ T72] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.231044][ T72] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.271557][ T7299] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 265.274616][ T7299] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 265.291668][ T7299] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 265.295292][ T7299] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 265.328449][T18614] misc userio: Can't change port type on an already running userio instance [ 265.579667][ T5334] Bluetooth: hci0: command tx timeout [ 265.600631][T18620] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5813'. [ 265.934948][T18652] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5829'. [ 265.938737][T18652] netlink: 28 bytes leftover after parsing attributes in process `syz.5.5829'. [ 265.986193][T18656] CUSE: unknown device info "" [ 265.988461][T18656] CUSE: zero length info key specified [ 265.992361][T18650] nbd1: detected capacity change from 0 to 127 [ 265.999683][ T5334] block nbd1: Receive control failed (result -104) [ 266.024259][T18658] macvtap1: entered promiscuous mode [ 266.027022][T18658] team0: Device macvtap1 is already an upper device of the team interface [ 266.464005][ T40] audit: type=1400 audit(2000000129.099:602): avc: denied { mounton } for pid=18702 comm="syz.8.5848" path="/15/file0" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:devpts_t tclass=dir permissive=1 [ 266.527956][T18713] netlink: 'syz.8.5851': attribute type 29 has an invalid length. [ 266.625624][ T1419] ieee802154 phy0 wpan0: encryption failed: -22 [ 266.644264][T18731] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 266.698568][T18735] Bluetooth: MGMT ver 1.23 [ 266.742964][T18743] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5866'. [ 266.748239][T18743] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5866'. [ 266.908838][T18767] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5877'. [ 266.932972][T18771] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5879'. [ 267.117869][T18798] [U] v3f"S/4:XTzWtlW= [ 267.120353][T18798] [U] J"e:" [ 267.201675][ T6060] hid_parser_main: 4086 callbacks suppressed [ 267.201692][ T6060] hid-generic 000C:0007:000C.000B: unknown main item tag 0x0 [ 267.206299][ T6060] hid-generic 000C:0007:000C.000B: unknown main item tag 0x0 [ 267.208768][ T6060] hid-generic 000C:0007:000C.000B: unknown main item tag 0x0 [ 267.213459][ T6060] hid-generic 000C:0007:000C.000B: unknown main item tag 0x0 [ 267.215890][ T6060] hid-generic 000C:0007:000C.000B: unknown main item tag 0x0 [ 267.221425][ T6060] hid-generic 000C:0007:000C.000B: unknown main item tag 0x0 [ 267.223831][ T6060] hid-generic 000C:0007:000C.000B: unknown main item tag 0x0 [ 267.226208][ T6060] hid-generic 000C:0007:000C.000B: unknown main item tag 0x0 [ 267.228514][ T6060] hid-generic 000C:0007:000C.000B: unknown main item tag 0x0 [ 267.231055][ T6060] hid-generic 000C:0007:000C.000B: unknown main item tag 0x0 [ 267.239998][ T6060] hid-generic 000C:0007:000C.000B: hidraw1: HID v14.24 Device [syz1] on syz0 [ 267.275356][T18821] fido_id[18821]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 267.320651][ T29] e1000 0000:00:06.0 eth0: Reset adapter [ 267.422675][T18837] mkiss: ax0: crc mode is auto. [ 267.430122][ T5334] Bluetooth: hci4: unexpected event 0x03 length: 6 < 11 [ 267.659400][ T5334] Bluetooth: hci0: command tx timeout [ 269.500197][ T842] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX [ 269.739218][ T5334] Bluetooth: hci0: command tx timeout [ 270.687208][ T40] audit: type=1400 audit(2000000133.319:603): avc: denied { bind } for pid=18861 comm="syz.8.5923" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 270.805167][T18874] A link change request failed with some changes committed already. Interface macsec0 may have been left with an inconsistent configuration, please check. [ 270.852321][T18882] __nla_validate_parse: 2 callbacks suppressed [ 270.852333][T18882] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5929'. [ 271.355789][T18881] syz_tun: entered allmulticast mode [ 271.526567][T18904] bridge0: port 3(syz_tun) entered disabled state [ 271.531295][T18904] bridge0: port 2(bridge_slave_1) entered disabled state [ 271.534864][T18904] bridge0: port 1(bridge_slave_0) entered disabled state [ 271.667168][T18913] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5947'. [ 271.741396][T18922] netlink: 28 bytes leftover after parsing attributes in process `syz.5.5952'. [ 271.744872][T18922] netlink: 32 bytes leftover after parsing attributes in process `syz.5.5952'. [ 271.748148][T18922] netlink: 28 bytes leftover after parsing attributes in process `syz.5.5952'. [ 271.751643][T18922] netlink: 32 bytes leftover after parsing attributes in process `syz.5.5952'. [ 272.143110][T18972] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 272.207874][T18980] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5979'. [ 272.485829][ T40] audit: type=1400 audit(2000000135.119:604): avc: denied { bind } for pid=19013 comm="syz.5.5995" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 272.494010][ T40] audit: type=1400 audit(2000000135.119:605): avc: denied { listen } for pid=19013 comm="syz.5.5995" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 272.511308][ T40] audit: type=1400 audit(2000000135.149:606): avc: denied { read } for pid=19017 comm="syz.4.5996" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 272.560980][T19026] netlink: 24 bytes leftover after parsing attributes in process `syz.5.6000'. [ 272.583971][ T42] wlan1: BSS 50:50:50:50:50:50 switches to unsupported channel (0 MHz), disconnecting [ 272.591199][T19030] netlink: 244 bytes leftover after parsing attributes in process `syz.4.6002'. [ 272.605108][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 272.608274][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 272.745476][T19054] openvswitch: netlink: IP tunnel TTL not specified. [ 273.179167][ C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 273.466879][T19123] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes. [ 273.494572][T19125] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=512 sclass=netlink_route_socket pid=19125 comm=syz.6.6047 [ 273.713503][T19145] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 273.756334][T19150] netlink: 24 bytes leftover after parsing attributes in process `syz.6.6059'. [ 273.898228][ T40] audit: type=1400 audit(2000000136.529:607): avc: denied { accept } for pid=19166 comm="syz.6.6067" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 274.219134][ C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 274.635839][T19197] trusted_key: encrypted_key: keyword 'load' not allowed when called from .update method [ 274.762518][ T5334] Bluetooth: hci2: Ignoring connect complete event for invalid link type [ 275.186527][ T7268] bond0: (slave bond_slave_0): interface is now down [ 275.191365][ T7268] bond0: (slave bond_slave_1): interface is now down [ 275.197487][ T7268] bond0: now running without any active interface! [ 275.375141][T19313] 9p: Unknown access argument 18446744073709551615: -34 [ 275.657203][T19332] dvmrp17: entered allmulticast mode [ 275.663770][T19332] dvmrp17: left allmulticast mode [ 276.123288][T19350] __nla_validate_parse: 7 callbacks suppressed [ 276.123305][T19350] netlink: 104 bytes leftover after parsing attributes in process `syz.8.6152'. [ 276.626897][T19399] netlink: 36 bytes leftover after parsing attributes in process `syz.8.6177'. [ 276.915394][ T40] audit: type=1400 audit(2000000139.549:608): avc: denied { setopt } for pid=19431 comm="syz.5.6193" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 276.974552][ T40] audit: type=1400 audit(2000000139.609:609): avc: denied { bind } for pid=19438 comm="syz.5.6197" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 276.999173][ T6068] usb 11-1: new high-speed USB device number 6 using dummy_hcd [ 277.106525][T19456] input: syz1 as /devices/virtual/input/input22 [ 277.108725][T19456] input: failed to attach handler leds to device input22, error: -6 [ 277.132525][T19458] netlink: 104 bytes leftover after parsing attributes in process `syz.5.6206'. [ 277.150424][ T6068] usb 11-1: Using ep0 maxpacket: 8 [ 277.153336][ T6068] usb 11-1: config 0 has an invalid interface number: 1 but max is 0 [ 277.155988][ T6068] usb 11-1: config 0 has no interface number 0 [ 277.157971][ T6068] usb 11-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 277.162170][ T6068] usb 11-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 277.165383][ T6068] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 277.169623][ T6068] usb 11-1: config 0 descriptor?? [ 277.176984][ T6068] iowarrior 11-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 277.380550][ T840] usb 11-1: USB disconnect, device number 6 [ 278.086305][T19533] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19533 comm=syz.8.6238 [ 278.416224][T19556] veth1_to_batadv: entered promiscuous mode [ 278.457280][ T40] audit: type=1400 audit(2000000141.089:610): avc: denied { read } for pid=19558 comm="syz.5.6250" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 278.523244][T19570] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6251'. [ 279.036691][T19621] Bluetooth: hci0: load_link_keys: expected 51203 bytes, got 7 bytes [ 279.192209][T19635] netlink: 28 bytes leftover after parsing attributes in process `syz.5.6281'. [ 279.221308][T19640] netlink: 36 bytes leftover after parsing attributes in process `syz.5.6285'. [ 279.498876][T19678] netlink: 28 bytes leftover after parsing attributes in process `syz.8.6302'. [ 279.542521][T19682] Context (ID=0x4e2) not attached to queue pair (handle=0x4e3:0x0) [ 279.740347][T19695] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6318'. [ 279.981597][T19717] A link change request failed with some changes committed already. Interface macsec0 may have been left with an inconsistent configuration, please check. [ 280.025088][T19723] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6324'. [ 280.028342][T19723] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6324'. [ 280.075273][T19727] mkiss: ax0: crc mode is auto. [ 280.325968][T19743] Bluetooth: hci0: load_link_keys: expected 51203 bytes, got 7 bytes [ 280.720071][T19785] mkiss: ax0: crc mode is auto. [ 280.742573][T19787] vxcan1: tx address claim with dlc 0 [ 280.919526][ T29] e1000 0000:00:06.0 eth0: Reset adapter [ 281.029423][ T29] e1000 0000:00:06.0 eth0: Reset adapter [ 283.180895][ T29] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX [ 283.685570][ T40] audit: type=1400 audit(2000000146.319:611): avc: denied { create } for pid=19833 comm="syz.5.6376" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 283.688784][T19834] tmpfs: Invalid gid '0x00000000ffffffff' [ 283.694274][ T40] audit: type=1400 audit(2000000146.319:612): avc: denied { getopt } for pid=19833 comm="syz.5.6376" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 283.810346][ T841] usb 9-1: new high-speed USB device number 9 using dummy_hcd [ 283.935432][T19865] overlayfs: missing 'workdir' [ 283.979968][ T841] usb 9-1: Using ep0 maxpacket: 16 [ 283.987137][ T841] usb 9-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6 [ 283.992304][ T841] usb 9-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3 [ 283.996388][ T841] usb 9-1: Product: syz [ 283.998335][ T841] usb 9-1: Manufacturer: syz [ 284.001943][ T841] usb 9-1: SerialNumber: syz [ 284.006018][ T841] usb 9-1: config 0 descriptor?? [ 284.049883][T19879] __nla_validate_parse: 3 callbacks suppressed [ 284.049900][T19879] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6398'. [ 284.183193][T19892] vxcan1: entered allmulticast mode [ 284.195635][T19892] vxcan1: left allmulticast mode [ 284.216831][ T841] usb 9-1: USB disconnect, device number 9 [ 284.268951][ T40] audit: type=1400 audit(2000000146.899:613): avc: denied { mounton } for pid=19900 comm="syz.6.6409" path="/536/file0" dev="tmpfs" ino=2730 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1 [ 284.327405][ T40] audit: type=1400 audit(2000000146.959:614): avc: denied { ioctl } for pid=19910 comm="syz.6.6413" path="socket:[68473]" dev="sockfs" ino=68473 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 284.689843][T19952] bond0: entered promiscuous mode [ 284.691504][T19952] bond_slave_0: entered promiscuous mode [ 284.693576][T19952] bond_slave_1: entered promiscuous mode [ 284.702400][T19952] bond0: left promiscuous mode [ 284.704473][T19952] bond_slave_0: left promiscuous mode [ 284.707299][T19952] bond_slave_1: left promiscuous mode [ 284.877923][T19974] netlink: 36 bytes leftover after parsing attributes in process `syz.6.6445'. [ 284.923078][T19979] netlink: 'syz.5.6446': attribute type 1 has an invalid length. [ 284.927213][T19979] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 284.973944][ T40] audit: type=1326 audit(2000000147.609:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19981 comm="syz.5.6449" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f36f258eba9 code=0x0 [ 285.160037][T19993] netlink: 28 bytes leftover after parsing attributes in process `syz.6.6453'. [ 285.250203][T20002] netlink: 28 bytes leftover after parsing attributes in process `syz.6.6457'. [ 285.253868][T20002] netem: change failed [ 285.292590][T20006] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6459'. [ 285.296064][T20006] netlink: 12 bytes leftover after parsing attributes in process `syz.6.6459'. [ 285.331671][T20008] openvswitch: netlink: Multiple metadata blocks provided [ 285.434716][ T40] audit: type=1400 audit(2000000148.069:616): avc: denied { create } for pid=20015 comm="syz.6.6464" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1 [ 285.448083][ T40] audit: type=1400 audit(2000000148.079:617): avc: denied { sys_admin } for pid=20015 comm="syz.6.6464" capability=21 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1 [ 285.889137][ T841] usb 13-1: new high-speed USB device number 2 using dummy_hcd [ 285.895757][T20043] netlink: 24 bytes leftover after parsing attributes in process `syz.6.6476'. [ 285.899708][T20043] bond0: Removing last arp target with arp_interval on [ 286.059904][ T54] usb 9-1: new low-speed USB device number 10 using dummy_hcd [ 286.075377][ T841] usb 13-1: config 0 has no interfaces? [ 286.078049][ T841] usb 13-1: New USB device found, idVendor=046d, idProduct=c087, bcdDevice= 0.00 [ 286.081858][ T841] usb 13-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 286.095333][ T841] usb 13-1: config 0 descriptor?? [ 286.220503][ T54] usb 9-1: config 168 descriptor has 1 excess byte, ignoring [ 286.223027][ T54] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 286.226519][ T54] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 286.237217][ T54] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 286.245395][ T54] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 286.252927][ T54] usb 9-1: config 168 descriptor has 1 excess byte, ignoring [ 286.256077][ T54] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 286.264531][ T54] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 286.270271][ T54] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 286.275169][ T54] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 286.290082][ T54] usb 9-1: config 168 descriptor has 1 excess byte, ignoring [ 286.293141][ T54] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 286.298134][ T54] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 286.304747][ T54] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 286.305074][ T29] usb 13-1: USB disconnect, device number 2 [ 286.309614][ T54] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 286.323157][ T54] usb 9-1: string descriptor 0 read error: -22 [ 286.325765][ T54] usb 9-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 286.329782][ T54] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 286.342639][ T54] adutux 9-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 286.505529][T20082] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported [ 286.543649][ T54] usb 9-1: USB disconnect, device number 10 [ 286.590150][T20089] A link change request failed with some changes committed already. Interface sit0 may have been left with an inconsistent configuration, please check. [ 286.590512][T20090] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6497'. [ 286.601665][T20090] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 286.603969][T20090] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 286.606721][T20090] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 286.608768][T20090] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 286.618340][T20090] bridge0: port 3(batadv0) entered disabled state [ 286.925087][ T7320] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 286.951058][T20104] netlink: 165 bytes leftover after parsing attributes in process `syz.6.6504'. [ 287.075989][T20118] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6511'. [ 287.121597][T20125] __vm_enough_memory: pid: 20125, comm: syz.5.6514, bytes: 21200619872256 not enough memory for the allocation [ 287.143730][ T5334] Bluetooth: hci2: unexpected cc 0x0402 length: 4 > 1 [ 287.146731][ T5334] Bluetooth: hci2: unexpected event for opcode 0x0402 [ 287.177840][ T40] audit: type=1400 audit(2000000149.809:618): avc: denied { execmod } for pid=20128 comm="syz.6.6516" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=72733 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 287.324434][T20150] binder: BC_ACQUIRE_RESULT not supported [ 287.326305][T20150] binder: 20148:20150 ioctl c0306201 2000000003c0 returned -22 [ 287.681376][ T40] audit: type=1400 audit(2000000150.319:619): avc: denied { setopt } for pid=20192 comm="syz.5.6545" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1 [ 287.874921][T20205] netlink: 'syz.4.6551': attribute type 1 has an invalid length. [ 288.090239][ T841] usb 10-1: new high-speed USB device number 8 using dummy_hcd [ 288.091521][ T40] audit: type=1400 audit(2000000150.729:620): avc: denied { read } for pid=20219 comm="syz.8.6558" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 288.177625][T20227] IPv6: NLM_F_CREATE should be specified when creating new route [ 288.181485][T20227] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 288.184677][T20227] IPv6: NLM_F_CREATE should be set when creating new route [ 288.251375][ T841] usb 10-1: Using ep0 maxpacket: 16 [ 288.256220][ T841] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0xD has an invalid bInterval 0, changing to 7 [ 288.267174][ T841] usb 10-1: New USB device found, idVendor=4752, idProduct=0011, bcdDevice=32.4f [ 288.273031][ T841] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 288.276532][ T841] usb 10-1: Product: syz [ 288.278409][ T841] usb 10-1: Manufacturer: syz [ 288.284009][ T841] usb 10-1: SerialNumber: syz [ 288.288314][ T841] usb 10-1: config 0 descriptor?? [ 288.292936][ T841] hub 10-1:0.0: bad descriptor, ignoring hub [ 288.295526][ T841] hub 10-1:0.0: probe with driver hub failed with error -5 [ 288.301437][ T841] usb 10-1: Quirk or no altset; falling back to MIDI 1.0 [ 288.553817][ T842] usb 10-1: USB disconnect, device number 8 [ 288.729677][T20267] Falling back ldisc for ttyS3. [ 289.054969][ T40] kauditd_printk_skb: 1 callbacks suppressed [ 289.054984][ T40] audit: type=1400 audit(2000000151.689:622): avc: denied { add_name } for pid=20276 comm="syz.6.6584" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 289.066521][ T40] audit: type=1400 audit(2000000151.689:623): avc: denied { create } for pid=20276 comm="syz.6.6584" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 289.076356][ T40] audit: type=1400 audit(2000000151.689:624): avc: denied { associate } for pid=20276 comm="syz.6.6584" name="file0" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 289.193049][ T40] audit: type=1400 audit(2000000151.829:625): avc: denied { create } for pid=20282 comm="syz.6.6587" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=blk_file permissive=1 [ 289.228680][T20288] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=20288 comm=syz.4.6589 [ 289.578564][T20328] __nla_validate_parse: 1 callbacks suppressed [ 289.578574][T20328] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6605'. [ 289.662994][T20337] erspan0: entered promiscuous mode [ 289.758583][T20345] program syz.4.6615 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 289.829031][T20353] loop7: detected capacity change from 0 to 7 [ 289.833435][ C3] blk_print_req_error: 138 callbacks suppressed [ 289.833445][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 289.838707][ C3] buffer_io_error: 138 callbacks suppressed [ 289.838716][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 289.845618][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 289.849573][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 289.856757][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 289.860839][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 289.864966][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 289.868687][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 289.873363][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 289.877401][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 289.886629][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 289.891108][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 289.899874][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 289.903989][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 289.908648][T20353] ldm_validate_partition_table(): Disk read failed. [ 289.912319][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 289.916404][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 289.926178][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 289.930450][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 289.933886][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 289.937198][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 289.940411][T20353] Dev loop7: unable to read RDB block 0 [ 289.943183][T20353] loop7: unable to read partition table [ 289.947952][T20353] loop7: partition table beyond EOD, truncated [ 289.952535][T20353] loop_reread_partitions: partition scan of loop7 (Cj̖P=ý?}X %`ր{֐ȵ4FLQk݊) failed (rc=-5) [ 290.012299][T20366] netlink: 'syz.5.6626': attribute type 27 has an invalid length. [ 290.115605][T20366] bridge0: port 2(bridge_slave_1) entered disabled state [ 290.119348][T20366] bridge0: port 1(bridge_slave_0) entered disabled state [ 290.435738][T20366] macsec1: left promiscuous mode [ 290.454854][T20369] erspan0: left promiscuous mode [ 290.472955][T20369] bridge0: left promiscuous mode [ 290.479604][T20369] 8021q: adding VLAN 0 to HW filter on device bond0 [ 290.484275][T20369] 8021q: adding VLAN 0 to HW filter on device team0 [ 290.491459][T20369] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 290.527570][ T7268] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 290.531840][ T7268] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 290.535755][ T7268] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 290.544544][ T7268] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 290.696015][T20388] block device autoloading is deprecated and will be removed. [ 291.102539][T20413] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0) [ 291.160352][T20415] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6647'. [ 291.199313][ T840] usb 11-1: new high-speed USB device number 7 using dummy_hcd [ 291.234597][ T40] audit: type=1326 audit(2000000153.869:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20374 comm="syz.8.6628" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a1f38eba9 code=0x7fc00000 [ 291.362934][ T840] usb 11-1: Using ep0 maxpacket: 8 [ 291.367930][ T840] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 291.372485][ T840] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 291.376628][ T840] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 291.381167][ T840] usb 11-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 291.386711][ T840] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 291.390870][ T840] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 291.512283][T20437] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6656'. [ 291.515880][T20437] netlink: 'syz.4.6656': attribute type 30 has an invalid length. [ 291.521153][T20437] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6656'. [ 291.582924][ T5334] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 291.589787][ T5334] Bluetooth: hci0: Injecting HCI hardware error event [ 291.593929][ T5334] Bluetooth: hci0: hardware error 0x00 [ 291.603712][ T840] usb 11-1: GET_CAPABILITIES returned 0 [ 291.606399][ T840] usbtmc 11-1:16.0: can't read capabilities [ 291.807307][ T840] usb 11-1: USB disconnect, device number 7 [ 292.662552][ T40] audit: type=1400 audit(2000000155.299:627): avc: denied { append } for pid=20478 comm="syz.5.6674" path="/677/file0/blkio.throttle.io_serviced" dev="9p" ino=71827653 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 292.738754][T20485] vxcan1: tx address claim with dlc 0 [ 292.954628][ T5992] block nbd2: Receive control failed (result -11) [ 293.265414][T20541] tmpfs: Invalid gid '0x00000000ffffffff' [ 293.548071][T20575] overlayfs: missing 'workdir' [ 293.601548][T20583] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6723'. [ 293.659025][ T40] audit: type=1400 audit(2000000156.289:628): avc: denied { map } for pid=20590 comm="syz.5.6727" path="socket:[74638]" dev="sockfs" ino=74638 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 293.659369][ T5334] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 293.748016][T20603] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6730'. [ 293.997024][ T40] audit: type=1400 audit(2000000156.629:629): avc: denied { read } for pid=20622 comm="syz.5.6742" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 294.009283][ T1466] usb 11-1: new high-speed USB device number 8 using dummy_hcd [ 294.088091][T20631] netlink: 'syz.4.6745': attribute type 1 has an invalid length. [ 294.091066][T20631] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 294.156498][T20637] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6748'. [ 294.159172][ T1466] usb 11-1: Using ep0 maxpacket: 32 [ 294.163595][ T1466] usb 11-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024 [ 294.171269][ T1466] usb 11-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 294.174818][ T1466] usb 11-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 294.178157][ T1466] usb 11-1: Product: syz [ 294.179995][ T1466] usb 11-1: Manufacturer: syz [ 294.182046][ T1466] usb 11-1: SerialNumber: syz [ 294.185925][ T1466] usb 11-1: config 0 descriptor?? [ 294.188585][T20605] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 294.340543][T20657] netlink: 'syz.8.6757': attribute type 8 has an invalid length. [ 294.355831][ T40] audit: type=1400 audit(2000000156.989:630): avc: denied { setopt } for pid=20652 comm="syz.5.6755" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 294.383618][T20662] openvswitch: netlink: Multiple metadata blocks provided [ 294.398012][ T6068] usb 11-1: USB disconnect, device number 8 [ 294.471377][T20668] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6762'. [ 294.547568][ T40] audit: type=1400 audit(2000000157.179:631): avc: denied { ioctl } for pid=20676 comm="syz.5.6768" path="socket:[73260]" dev="sockfs" ino=73260 ioctlcmd=0x4947 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 294.942593][T20722] bond0: entered promiscuous mode [ 294.945760][T20722] bond_slave_0: entered promiscuous mode [ 294.948719][T20724] netlink: 24 bytes leftover after parsing attributes in process `syz.4.6789'. [ 294.948827][T20722] bond_slave_1: entered promiscuous mode [ 294.956040][T20722] batadv0: entered promiscuous mode [ 294.958943][T20722] 8021q: adding VLAN 0 to HW filter on device hsr1 [ 294.962954][T20722] bond0: left promiscuous mode [ 294.964706][T20722] bond_slave_0: left promiscuous mode [ 294.967223][T20722] bond_slave_1: left promiscuous mode [ 294.972365][T20722] batadv0: left promiscuous mode [ 295.026320][T20730] netlink: 28 bytes leftover after parsing attributes in process `syz.5.6790'. [ 295.435007][T20793] netlink: 'syz.8.6822': attribute type 25 has an invalid length. [ 295.439319][T20793] netlink: 'syz.8.6822': attribute type 28 has an invalid length. [ 295.571811][T20812] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6832'. [ 295.576587][T20812] netlink: 36 bytes leftover after parsing attributes in process `syz.8.6832'. [ 295.653395][T20822] netlink: 24 bytes leftover after parsing attributes in process `syz.5.6835'. [ 295.841589][ T40] audit: type=1400 audit(2000000158.479:632): avc: denied { read } for pid=5369 comm="acpid" name="mouse9" dev="devtmpfs" ino=3239 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1 [ 295.855226][T20842] 9pnet_rdma: rdma_create_trans (20842): problem binding to privport: 13 [ 295.861814][ T40] audit: type=1400 audit(2000000158.479:633): avc: denied { open } for pid=5369 comm="acpid" path="/dev/input/mouse9" dev="devtmpfs" ino=3239 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1 [ 295.874743][ T40] audit: type=1400 audit(2000000158.479:634): avc: denied { ioctl } for pid=5369 comm="acpid" path="/dev/input/mouse9" dev="devtmpfs" ino=3239 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1 [ 296.028411][T20864] netlink: 'syz.5.6855': attribute type 1 has an invalid length. [ 296.064020][ T120] block nbd1: Possible stuck request ffff888027b9e000: control (read@0,1024B). Runtime 30 seconds [ 296.069370][ T120] block nbd1: Possible stuck request ffff888027b9e1c0: control (read@1024,1024B). Runtime 30 seconds [ 296.074139][ T120] block nbd1: Possible stuck request ffff888027b9e380: control (read@2048,1024B). Runtime 30 seconds [ 296.078749][ T120] block nbd1: Possible stuck request ffff888027b9e540: control (read@3072,1024B). Runtime 30 seconds [ 296.457889][T20908] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6874'. [ 296.700170][ T40] audit: type=1400 audit(2000000159.339:635): avc: denied { sendto } for pid=6060 comm="kworker/0:4" saddr=fe80::1c daddr=ff02::2 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:node_t tclass=node permissive=1 [ 296.768538][T20941] netlink: 'syz.8.6888': attribute type 6 has an invalid length. [ 296.771931][T20941] netlink: 36 bytes leftover after parsing attributes in process `syz.8.6888'. [ 296.778031][T20941] bridge0: port 2(bridge_slave_1) entered disabled state [ 296.782870][T20941] bridge0: port 1(bridge_slave_0) entered disabled state [ 296.801411][ T5992] block nbd3: Receive control failed (result -32) [ 297.118532][T20964] sp0: Synchronizing with TNC [ 297.455957][T20991] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 297.490700][ C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 297.557994][T21007] netlink: 32 bytes leftover after parsing attributes in process `syz.6.6920'. [ 297.569414][ C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 297.590850][ T7299] ------------[ cut here ]------------ [ 297.593444][ T7299] RTNL: assertion failed at ./include/net/netdev_lock.h (72) [ 297.597151][ T7299] WARNING: CPU: 2 PID: 7299 at ./include/net/netdev_lock.h:72 __linkwatch_sync_dev+0x1ed/0x230 [ 297.601104][ T7299] Modules linked in: SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 297.603040][ T7299] CPU: 2 UID: 0 PID: 7299 Comm: kworker/u32:46 Not tainted syzkaller #0 PREEMPT(full) [ 297.608908][ T7299] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 297.613275][ T7299] Workqueue: bond0 bond_mii_monitor [ 297.615213][ T7299] RIP: 0010:__linkwatch_sync_dev+0x1ed/0x230 [ 297.617187][ T7299] Code: 05 ff ff ff e8 54 54 43 f8 c6 05 e1 8e 1b 07 01 90 ba 48 00 00 00 48 c7 c6 a0 08 e6 8c 48 c7 c7 40 08 e6 8c e8 a4 f8 01 f8 90 <0f> 0b 90 90 e9 d6 fe ff ff 48 c7 c7 54 a6 ab 90 e8 fe bb a9 f8 e9 [ 297.623689][ T7299] RSP: 0018:ffffc900040f79f0 EFLAGS: 00010286 [ 297.625585][ T7299] RAX: 0000000000000000 RBX: ffff88802a946000 RCX: ffffffff817a4388 [ 297.628048][ T7299] RDX: ffff88802e4d2440 RSI: ffffffff817a4395 RDI: 0000000000000001 [ 297.630599][ T7299] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 297.633146][ T7299] R10: 0000000000000001 R11: 0000000000000000 R12: 1ffff9200081ef48 [ 297.635768][ T7299] R13: ffff88802a946cc1 R14: ffffffff8c59e740 R15: ffffffff89b17350 [ 297.638246][ T7299] FS: 0000000000000000(0000) GS:ffff8880d68b2000(0000) knlGS:0000000000000000 [ 297.641540][ T7299] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 297.643831][ T7299] CR2: 00007f36f33056c0 CR3: 0000000061761000 CR4: 0000000000352ef0 [ 297.646395][ T7299] Call Trace: [ 297.647547][ T7299] [ 297.648549][ T7299] ethtool_op_get_link+0x1d/0x70 [ 297.650481][ T7299] bond_check_dev_link+0x3fc/0x710 [ 297.652124][ T7299] ? __pfx_bond_check_dev_link+0x10/0x10 [ 297.653926][ T7299] bond_mii_monitor+0x3c0/0x2dc0 [ 297.655534][ T7299] ? __pfx_bond_mii_monitor+0x10/0x10 [ 297.657240][ T7299] ? rcu_is_watching+0x12/0xc0 [ 297.658796][ T7299] process_one_work+0x9cc/0x1b70 [ 297.660539][ T7299] ? __pfx_batadv_iv_send_outstanding_bat_ogm_packet+0x10/0x10 [ 297.662996][ T7299] ? __pfx_process_one_work+0x10/0x10 [ 297.664724][ T7299] ? assign_work+0x1a0/0x250 [ 297.666215][ T7299] worker_thread+0x6c8/0xf10 [ 297.667704][ T7299] ? __pfx_worker_thread+0x10/0x10 [ 297.669386][ T7299] kthread+0x3c2/0x780 [ 297.670718][ T7299] ? __pfx_kthread+0x10/0x10 [ 297.672337][ T7299] ? rcu_is_watching+0x12/0xc0 [ 297.674291][ T7299] ? __pfx_kthread+0x10/0x10 [ 297.676129][ T7299] ret_from_fork+0x56a/0x730 [ 297.677784][ T7299] ? __pfx_kthread+0x10/0x10 [ 297.679516][ T7299] ret_from_fork_asm+0x1a/0x30 [ 297.681070][ T7299] [ 297.682058][ T7299] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 297.684345][ T7299] CPU: 2 UID: 0 PID: 7299 Comm: kworker/u32:46 Not tainted syzkaller #0 PREEMPT(full) [ 297.687498][ T7299] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 297.690940][ T7299] Workqueue: bond0 bond_mii_monitor [ 297.692571][ T7299] Call Trace: [ 297.693645][ T7299] [ 297.694612][ T7299] dump_stack_lvl+0x3d/0x1f0 [ 297.696090][ T7299] vpanic+0x6e8/0x7a0 [ 297.697417][ T7299] ? __pfx_vpanic+0x10/0x10 [ 297.698978][ T7299] ? __linkwatch_sync_dev+0x1ed/0x230 [ 297.700783][ T7299] panic+0xca/0xd0 [ 297.701990][ T7299] ? __pfx_panic+0x10/0x10 [ 297.703444][ T7299] ? check_panic_on_warn+0x1f/0xb0 [ 297.705076][ T7299] check_panic_on_warn+0xab/0xb0 [ 297.706699][ T7299] __warn+0xf6/0x3c0 [ 297.707975][ T7299] ? preempt_schedule_notrace+0x62/0xe0 [ 297.709762][ T7299] ? __linkwatch_sync_dev+0x1ed/0x230 [ 297.711455][ T7299] report_bug+0x3c3/0x580 [ 297.712817][ T7299] ? __linkwatch_sync_dev+0x1ed/0x230 [ 297.714515][ T7299] handle_bug+0x184/0x210 [ 297.715943][ T7299] exc_invalid_op+0x17/0x50 [ 297.717406][ T7299] asm_exc_invalid_op+0x1a/0x20 [ 297.719011][ T7299] RIP: 0010:__linkwatch_sync_dev+0x1ed/0x230 [ 297.721025][ T7299] Code: 05 ff ff ff e8 54 54 43 f8 c6 05 e1 8e 1b 07 01 90 ba 48 00 00 00 48 c7 c6 a0 08 e6 8c 48 c7 c7 40 08 e6 8c e8 a4 f8 01 f8 90 <0f> 0b 90 90 e9 d6 fe ff ff 48 c7 c7 54 a6 ab 90 e8 fe bb a9 f8 e9 [ 297.727062][ T7299] RSP: 0018:ffffc900040f79f0 EFLAGS: 00010286 [ 297.728971][ T7299] RAX: 0000000000000000 RBX: ffff88802a946000 RCX: ffffffff817a4388 [ 297.731468][ T7299] RDX: ffff88802e4d2440 RSI: ffffffff817a4395 RDI: 0000000000000001 [ 297.733939][ T7299] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 297.736433][ T7299] R10: 0000000000000001 R11: 0000000000000000 R12: 1ffff9200081ef48 [ 297.738973][ T7299] R13: ffff88802a946cc1 R14: ffffffff8c59e740 R15: ffffffff89b17350 [ 297.741556][ T7299] ? __pfx_ethtool_op_get_link+0x10/0x10 [ 297.743356][ T7299] ? __warn_printk+0x198/0x350 [ 297.744885][ T7299] ? __warn_printk+0x1a5/0x350 [ 297.746738][ T7299] ethtool_op_get_link+0x1d/0x70 [ 297.748559][ T7299] bond_check_dev_link+0x3fc/0x710 [ 297.750198][ T7299] ? __pfx_bond_check_dev_link+0x10/0x10 [ 297.751966][ T7299] bond_mii_monitor+0x3c0/0x2dc0 [ 297.753573][ T7299] ? __pfx_bond_mii_monitor+0x10/0x10 [ 297.755349][ T7299] ? rcu_is_watching+0x12/0xc0 [ 297.756880][ T7299] process_one_work+0x9cc/0x1b70 [ 297.758463][ T7299] ? __pfx_batadv_iv_send_outstanding_bat_ogm_packet+0x10/0x10 [ 297.760818][ T7299] ? __pfx_process_one_work+0x10/0x10 [ 297.762528][ T7299] ? assign_work+0x1a0/0x250 [ 297.764087][ T7299] worker_thread+0x6c8/0xf10 [ 297.765612][ T7299] ? __pfx_worker_thread+0x10/0x10 [ 297.767250][ T7299] kthread+0x3c2/0x780 [ 297.768542][ T7299] ? __pfx_kthread+0x10/0x10 [ 297.770026][ T7299] ? rcu_is_watching+0x12/0xc0 [ 297.771547][ T7299] ? __pfx_kthread+0x10/0x10 [ 297.773000][ T7299] ret_from_fork+0x56a/0x730 [ 297.774515][ T7299] ? __pfx_kthread+0x10/0x10 [ 297.776010][ T7299] ret_from_fork_asm+0x1a/0x30 [ 297.777529][ T7299] [ 297.779397][ T7299] Kernel Offset: disabled [ 297.780885][ T7299] Rebooting in 86400 seconds.. VM DIAGNOSIS: 22:12:08 Registers: info registers vcpu 0 CPU#0 RAX=1ffffffff2280086 RBX=0000000000000001 RCX=ffffffff91400430 RDX=dffffc0000000000 RSI=0000000000000001 RDI=ffffffff91400432 RBP=ffffc90003677138 RSP=ffffc90003677030 R8 =ffffffff91400434 R9 =0000000000000000 R10=0000000000000001 R11=00000000000061ee R12=ffffc90003677140 R13=ffffc900036770f0 R14=ffffc90003677190 R15=ffffc90003677124 RIP=ffffffff816b0a10 RFL=00000a02 [-O-----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d66b2000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ff9dad07d60 CR3=000000002a760000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff9da1a76c3 00007ff9da1a76c3 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd74e4c680 0000003000000010 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555565e7a5c 00005555565e79d0 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555565dff83 00005555565dff10 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0302100003b00302 f010000290030004 02800302800403a0 030008000390030f ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0100100003800401 0000000806060168 e600080003e00300 100003d003001000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 03c00302100003b0 0302f01000029003 0004028003028004 03a0030008000390 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 030fffffffffffff 040380030010001d 8004010000000806 060168e00008001d ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 e0030010001dd003 0010001dc0030210 001db00301801000 1890030100000208 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=ffffc90006140000 RBX=ffff8881066a8000 RCX=ffffffff819bfc67 RDX=1ffff11020cd525a RSI=ffffffff86b405af RDI=0000000000000016 RBP=0000000000000083 RSP=ffffc900006a0eb0 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000 R12=ffffffff90ab71a0 R13=dffffc0000000000 R14=ffff8881066a92d0 R15=0000000000000000 RIP=ffffffff86b405d7 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f36f07f66c0 ffffffff 00c00000 GS =0000 ffff8880d67b2000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000110c2b83f6 CR3=000000004bcae000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000008001 Opmask01=0000000020080810 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdbf29e5e6 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdbf29e5e6 00007ffdbf29e5ec ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f36f2612e46 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f36f2612e53 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f36f2612e4d ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f36f2612e61 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f36f2612ee7 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f36f2612fc5 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f36f27a74a8 00007f36f27a74a0 00007f36f27a7498 00007f36f27a7470 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f36f330d100 00007f36f27a7460 00007f36f27a7478 00007f36f27a74c0 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f36f27a74b8 00007f36f27a74b0 00007f36f27a74a8 00007f36f27a74a0 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8564c115 RDI=ffffffff9b118160 RBP=ffffffff9b118120 RSP=ffffc900040f7360 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=0000000000000020 R14=ffffffff9b118120 R15=ffffffff8564c0b0 RIP=ffffffff8564c13f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d68b2000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f36f33056c0 CR3=0000000061761000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000080040001 Opmask01=0000000002fefc20 Opmask02=0000000002fefcfe Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcb34d2340 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcb34d24c6 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcb34d24c6 00007ffcb34d24cc ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1b86212e46 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1b86212e53 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1b86212e4d ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1b86212e61 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1b86212ee7 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1b86212fc5 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=00000000001603fd RBX=0000000000000003 RCX=ffffffff8b94cb49 RDX=0000000000000000 RSI=ffffffff8de52d31 RDI=ffffffff8c163380 RBP=ffffed1003bdd000 RSP=ffffc90000197df8 R8 =0000000000000001 R9 =ffffed100d4e6655 R10=ffff88806a7332ab R11=0000000000000000 R12=0000000000000003 R13=ffff88801dee8000 R14=ffffffff90ab7490 R15=0000000000000000 RIP=ffffffff8b94b68f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d69b2000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f37cb1d7dac CR3=000000002c54b000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000010000000 Opmask04=0000000000000000 Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=c1900601e0be5606 98301da7b12f66d3 c1900601e0be5606 98301da7b12f66d3 c1900601e0be5606 98301da7b12f66d3 c1900601e0be5606 98301da7b12f66d3 ZMM18=c4bc38d35060b8b4 04cae68802131efb c4bc38d35060b8b4 04cae68802131efb c4bc38d35060b8b4 04cae68802131efb c4bc38d35060b8b4 04cae68802131efb ZMM19=c625000000000000 0000000000000005 c625000000000000 0000000000000004 c625000000000000 0000000000000003 c625000000000000 0000000000000002 ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 041ba0030008001b 90030fffffffffff ff041b80030815a0 040515800404a4e6 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0800010000020806 06013bea00000000 0000000000000030 6e616c7701ffffff ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffdf0815 8003200800061000 2010000602719a01 08000f8004040073 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0480030480044580 0345800446a00300 08004690030fffff ffffffff04468003 ZMM25=04cae68804cae688 04cae68804cae688 04cae68804cae688 04cae68804cae688 04cae68804cae688 04cae68804cae688 04cae68804cae688 04cae68804cae688 ZMM26=5060b8b45060b8b4 5060b8b45060b8b4 5060b8b45060b8b4 5060b8b45060b8b4 5060b8b45060b8b4 5060b8b45060b8b4 5060b8b45060b8b4 5060b8b45060b8b4 ZMM27=c4bc38d3c4bc38d3 c4bc38d3c4bc38d3 c4bc38d3c4bc38d3 c4bc38d3c4bc38d3 c4bc38d3c4bc38d3 c4bc38d3c4bc38d3 c4bc38d3c4bc38d3 c4bc38d3c4bc38d3 ZMM28=000000200000001f 0000001e0000001d 0000001c0000001b 0000001a00000019 0000001800000017 0000001600000015 0000001400000013 0000001200000011 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=c5250000c5250000 c5250000c5250000 c5250000c5250000 c5250000c5250000 c5250000c5250000 c5250000c5250000 c5250000c5250000 c5250000c5250000