last executing test programs: 641.36506ms ago: executing program 2 (id=5304): r0 = syz_open_dev$media(&(0x7f00000012c0), 0x66, 0x180502) ioctl$MEDIA_IOC_G_TOPOLOGY(r0, 0xc0487c04, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, &(0x7f0000000280)=[{0x0, 0x80000000, 0x0, {0x0}}, {}, {0x0, 0x80000000, 0x0, {0x0}}, {}], 0x0, 0x0, 0x0}) ioctl$MEDIA_IOC_SETUP_LINK(r0, 0xc0347c03, &(0x7f0000000180)={{r1, r2, 0x5, [0x73c, 0x5]}, {r3, r4, 0x93b5af377af9c20f, [0x0, 0x5]}, 0x2, [0x10, 0x80000001]}) 600.678032ms ago: executing program 2 (id=5297): r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_opts(r0, 0x0, 0x200000000000c, &(0x7f0000000080)="ea00000100000000", 0x8) setsockopt$inet_opts(r0, 0x0, 0x200000000000a, &(0x7f0000000000)="ea00005c00000000", 0x1) 599.501669ms ago: executing program 2 (id=5307): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001b40), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f0000001d80)={0x0, 0x0, &(0x7f0000001d40)={&(0x7f0000001cc0)={0x2c, r1, 0x1, 0x70bd26, 0x25dfdbff, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4) 550.501004ms ago: executing program 2 (id=5306): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'sit0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r1, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x3c, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0x1}}]}}, @TCA_RATE={0x6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48801}, 0x0) 479.561838ms ago: executing program 2 (id=5311): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xd, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x2}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x0, 0x6, 0xa, 0x8, 0xfff8, 0x50}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x7, 0x0, 0xc}, {0x18, 0x2, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 478.153927ms ago: executing program 3 (id=5317): r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0) writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0x1}], 0x1) 420.800538ms ago: executing program 3 (id=5320): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)={0x1c, r1, 0x303, 0x0, 0x0, {0xa}, [@BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x1c}}, 0x0) 420.737542ms ago: executing program 2 (id=5321): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f00000005c0)=[{0x6}]}) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, &(0x7f0000000400)={0x0, 0x1, 0xffffffffffffffff, 0x6, 0xfe7}) 420.612308ms ago: executing program 3 (id=5323): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x11, &(0x7f0000000b00)=ANY=[@ANYBLOB="1802000063f9ffff00000000000000008500000041000000b7080000000000007b8af8ff00000000b7080000050000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000100000009500"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) 370.998342ms ago: executing program 3 (id=5325): bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94) r0 = socket$kcm(0xa, 0x2, 0x0) setsockopt$sock_attach_bpf(r0, 0x29, 0x1f, &(0x7f0000000040), 0xcf) 370.903876ms ago: executing program 3 (id=5326): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000002b40), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)={0x3c, r1, 0x1, 0x70bd28, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x820}, 0x20004004) 368.880631ms ago: executing program 3 (id=5329): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='ns\x00') seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0) getdents64(r0, 0x0, 0x46) 110.954088ms ago: executing program 1 (id=5339): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000000c0)='mmap_lock_acquire_returned\x00', r0}, 0x10) prctl$PR_SET_THP_DISABLE(0x29, 0x400000000000000) 110.849383ms ago: executing program 0 (id=5340): r0 = inotify_init1(0x0) r1 = dup(r0) ioctl$sock_qrtr_TIOCINQ(r1, 0x40044900, 0x0) 110.761177ms ago: executing program 1 (id=5341): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) shutdown(r0, 0x0) sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0) 110.66974ms ago: executing program 0 (id=5342): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x14, &(0x7f0000000640)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x401}}, @printk={@i, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x101}, {0x85, 0x0, 0x0, 0x2d}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x6, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000940)='tlb_flush\x00', r1}, 0x10) 50.993704ms ago: executing program 1 (id=5343): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000000c0), 0x0) ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0) 50.763956ms ago: executing program 0 (id=5344): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f00000001c0)={0x5813}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=@ipv6_getaddrlabel={0x1c, 0x1e, 0x492dfc465ae32a8d, 0xfffffffc, 0x0, {0xa, 0x0, 0x0, 0x0, 0x0, 0x1000000}}, 0x1c}}, 0x0) 50.672572ms ago: executing program 1 (id=5345): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup(r0) write$UHID_INPUT(r1, &(0x7f0000001980)={0x9, {"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", 0x1000}}, 0x1006) 50.569103ms ago: executing program 0 (id=5346): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000023c0)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0xb}, @NFTA_CT_SREG={0x8, 0x4, 0x1, 0x0, 0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x20000000) 723.083µs ago: executing program 1 (id=5347): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0xd, &(0x7f0000000080)=ANY=[@ANYBLOB="1802000000000000000000000000000085100000010000009500000000000000180100002020732500000000002020207b1af8ff00000000bfa100000000000017010000f8ffffffb7020000ffffff1fb703000000000028850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0xa}, 0x94) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xa}, 0x94) 477.144µs ago: executing program 0 (id=5348): write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000000000)={0xfc, {"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", 0xfffffffffffffca6}}, 0xfffffe64) r0 = socket$nl_crypto(0x10, 0x3, 0x15) sendmsg$nl_crypto(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f00000001200"], 0xf0}}, 0x0) 400.591µs ago: executing program 1 (id=5349): mbind(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4003, &(0x7f0000000c00)=0xc, 0x6, 0x2) r0 = syz_open_procfs(0x0, &(0x7f0000001880)='numa_maps\x00') pread64(r0, &(0x7f0000000880)=""/4086, 0xff6, 0x0) 0s ago: executing program 0 (id=5350): r0 = socket(0x10, 0x3, 0x9) setresuid(0xee01, 0xee01, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000d00)={{0x14, 0x3f8}, [@NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x5, 0x0, 0x0, {0x5, 0x0, 0x2}}], {0x14, 0x3f2, 0x1, 0x0, 0x0, {0x1}}}, 0x3c}}, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:62980' (ED25519) to the list of known hosts. [ 41.296889][ T5935] cgroup: Unknown subsys name 'net' [ 41.458427][ T5935] cgroup: Unknown subsys name 'cpuset' [ 41.462589][ T5935] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 42.350672][ T5935] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 45.485889][ T5979] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 45.485909][ T5980] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 45.491352][ T5980] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 45.494065][ T5980] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 45.494067][ T5979] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 45.494750][ T5979] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 45.495828][ T5975] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 45.496610][ T5975] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 45.497128][ T5980] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 45.497580][ T5980] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 45.497862][ T5980] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 45.498832][ T5984] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 45.499155][ T5979] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 45.502392][ T5975] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 45.503928][ T5984] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 45.506088][ T5975] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 45.508908][ T5984] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 45.510286][ T5975] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 45.513918][ T5984] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 45.530500][ T5984] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 45.783172][ T5971] chnl_net:caif_netlink_parms(): no params data found [ 45.796552][ T5970] chnl_net:caif_netlink_parms(): no params data found [ 45.810234][ T5969] chnl_net:caif_netlink_parms(): no params data found [ 45.894266][ T5981] chnl_net:caif_netlink_parms(): no params data found [ 45.988133][ T5971] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.990411][ T5971] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.992746][ T5971] bridge_slave_0: entered allmulticast mode [ 45.995645][ T5971] bridge_slave_0: entered promiscuous mode [ 46.058313][ T5969] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.060651][ T5969] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.062933][ T5969] bridge_slave_0: entered allmulticast mode [ 46.065685][ T5969] bridge_slave_0: entered promiscuous mode [ 46.068520][ T5971] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.070755][ T5971] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.073045][ T5971] bridge_slave_1: entered allmulticast mode [ 46.075984][ T5971] bridge_slave_1: entered promiscuous mode [ 46.099572][ T5970] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.101867][ T5970] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.104145][ T5970] bridge_slave_0: entered allmulticast mode [ 46.107172][ T5970] bridge_slave_0: entered promiscuous mode [ 46.110651][ T5969] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.112910][ T5969] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.115267][ T5969] bridge_slave_1: entered allmulticast mode [ 46.117995][ T5969] bridge_slave_1: entered promiscuous mode [ 46.151211][ T5971] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.157797][ T5970] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.160043][ T5970] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.162333][ T5970] bridge_slave_1: entered allmulticast mode [ 46.165239][ T5970] bridge_slave_1: entered promiscuous mode [ 46.199186][ T5969] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.203453][ T5971] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.241302][ T5970] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.246643][ T5969] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.293315][ T5970] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.327314][ T5971] team0: Port device team_slave_0 added [ 46.329429][ T5981] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.331713][ T5981] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.334060][ T5981] bridge_slave_0: entered allmulticast mode [ 46.336980][ T5981] bridge_slave_0: entered promiscuous mode [ 46.373749][ T5969] team0: Port device team_slave_0 added [ 46.376822][ T5971] team0: Port device team_slave_1 added [ 46.392954][ T5981] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.395567][ T5981] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.398497][ T5981] bridge_slave_1: entered allmulticast mode [ 46.401371][ T5981] bridge_slave_1: entered promiscuous mode [ 46.405533][ T5970] team0: Port device team_slave_0 added [ 46.408542][ T5969] team0: Port device team_slave_1 added [ 46.441077][ T5970] team0: Port device team_slave_1 added [ 46.469715][ T5971] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.471911][ T5971] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.480748][ T5971] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.513225][ T5969] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.516046][ T5969] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.526920][ T5969] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.531591][ T5971] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.533812][ T5971] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.542191][ T5971] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.547370][ T5981] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.563314][ T5969] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.566097][ T5969] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.576095][ T5969] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.590440][ T5981] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.593659][ T5970] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.596256][ T5970] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.604037][ T5970] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.608972][ T5970] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.611287][ T5970] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.619620][ T5970] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.725317][ T5981] team0: Port device team_slave_0 added [ 46.746395][ T5970] hsr_slave_0: entered promiscuous mode [ 46.748797][ T5970] hsr_slave_1: entered promiscuous mode [ 46.782067][ T5981] team0: Port device team_slave_1 added [ 46.806002][ T5971] hsr_slave_0: entered promiscuous mode [ 46.808786][ T5971] hsr_slave_1: entered promiscuous mode [ 46.810956][ T5971] debugfs: 'hsr0' already exists in 'hsr' [ 46.812839][ T5971] Cannot create hsr debugfs directory [ 46.849211][ T5969] hsr_slave_0: entered promiscuous mode [ 46.851915][ T5969] hsr_slave_1: entered promiscuous mode [ 46.854483][ T5969] debugfs: 'hsr0' already exists in 'hsr' [ 46.857183][ T5969] Cannot create hsr debugfs directory [ 46.882296][ T5981] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.884997][ T5981] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.895079][ T5981] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.951914][ T5981] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.954639][ T5981] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.965580][ T5981] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.079863][ T5981] hsr_slave_0: entered promiscuous mode [ 47.082101][ T5981] hsr_slave_1: entered promiscuous mode [ 47.084146][ T5981] debugfs: 'hsr0' already exists in 'hsr' [ 47.086877][ T5981] Cannot create hsr debugfs directory [ 47.306773][ T5970] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 47.313230][ T5970] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 47.318709][ T5970] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 47.327052][ T5970] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 47.356610][ T5971] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 47.361966][ T5971] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 47.366588][ T5971] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 47.370877][ T5971] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 47.425984][ T5969] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 47.430886][ T5969] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 47.440333][ T5969] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 47.445155][ T5969] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 47.483908][ T5970] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.511157][ T5970] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.514499][ T5981] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 47.518965][ T5981] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 47.524141][ T5981] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 47.525929][ T5982] Bluetooth: hci2: command tx timeout [ 47.525937][ T5984] Bluetooth: hci0: command tx timeout [ 47.532364][ T5981] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 47.541860][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.545014][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.556985][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.559989][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.567815][ T5971] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.595941][ T5982] Bluetooth: hci1: command tx timeout [ 47.597616][ T5971] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.605921][ T5982] Bluetooth: hci3: command tx timeout [ 47.619973][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.622225][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.634171][ T60] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.636452][ T60] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.643854][ T5969] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.658279][ T5969] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.676151][ T60] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.678410][ T60] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.682422][ T60] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.685498][ T60] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.725316][ T5981] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.742458][ T5981] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.760116][ T5970] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.765182][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.767498][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.778314][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.780577][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.824136][ T5970] veth0_vlan: entered promiscuous mode [ 47.831579][ T5971] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.836436][ T5970] veth1_vlan: entered promiscuous mode [ 47.858736][ T5969] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.876676][ T5970] veth0_macvtap: entered promiscuous mode [ 47.881457][ T5971] veth0_vlan: entered promiscuous mode [ 47.889594][ T5970] veth1_macvtap: entered promiscuous mode [ 47.900525][ T5970] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 47.903177][ T5971] veth1_vlan: entered promiscuous mode [ 47.912577][ T5970] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 47.931986][ T60] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.934866][ T60] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.940156][ T60] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.945002][ T5969] veth0_vlan: entered promiscuous mode [ 47.948564][ T60] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.955293][ T5981] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.967123][ T5969] veth1_vlan: entered promiscuous mode [ 47.979664][ T5971] veth0_macvtap: entered promiscuous mode [ 47.984637][ T5971] veth1_macvtap: entered promiscuous mode [ 48.017658][ T5971] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.027499][ T80] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.030047][ T80] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.031181][ T5971] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.049889][ T5981] veth0_vlan: entered promiscuous mode [ 48.052296][ T5969] veth0_macvtap: entered promiscuous mode [ 48.061364][ T102] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.064067][ T102] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.068194][ T80] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.068772][ T5969] veth1_macvtap: entered promiscuous mode [ 48.070815][ T80] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.074059][ T102] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.080203][ T102] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.093890][ T5981] veth1_vlan: entered promiscuous mode [ 48.102711][ T5969] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.108703][ T5969] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.119664][ T5970] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 48.127372][ T102] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.140283][ T1150] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.142749][ T1150] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.142896][ T5981] veth0_macvtap: entered promiscuous mode [ 48.145731][ T6034] Process accounting resumed [ 48.151205][ T102] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.155220][ T102] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.160659][ T6057] Process accounting resumed [ 48.166520][ T102] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.174722][ T5981] veth1_macvtap: entered promiscuous mode [ 48.180569][ T102] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.183129][ T102] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.195989][ T5981] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.202564][ T5981] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.220558][ T60] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.231186][ T60] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.233940][ T60] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.238872][ T1138] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.242780][ T1138] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.243064][ T60] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.246021][ T6064] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7'. [ 48.274381][ T1138] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.278234][ T1138] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.300853][ T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.303423][ T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.326205][ T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.328693][ T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.540726][ T6110] netlink: 20 bytes leftover after parsing attributes in process `syz.1.25'. [ 48.657150][ T6110] Zero length message leads to an empty skb [ 49.041556][ T6200] program syz.0.68 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 49.156202][ T6218] Driver unsupported XDP return value 0 on prog (id 9) dev N/A, expect packet loss! [ 49.248598][ T6229] No control pipe specified [ 49.344886][ T6243] sp0: Synchronizing with TNC [ 49.351011][ T6241] [U] [ 49.555787][ T6008] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 49.595695][ T5982] Bluetooth: hci2: command tx timeout [ 49.597505][ T5982] Bluetooth: hci0: command tx timeout [ 49.629533][ T6274] ip6erspan0: entered promiscuous mode [ 49.675598][ T5984] Bluetooth: hci3: command tx timeout [ 49.677333][ T5984] Bluetooth: hci1: command tx timeout [ 49.716662][ T6008] usb 6-1: Using ep0 maxpacket: 16 [ 49.720557][ T6008] usb 6-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0 [ 49.723866][ T6008] usb 6-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 0, changing to 7 [ 49.727752][ T6008] usb 6-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid wMaxPacketSize 0 [ 49.731056][ T6008] usb 6-1: config 0 interface 0 has no altsetting 0 [ 49.740471][ T6008] usb 6-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb [ 49.743356][ T6008] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 49.747153][ T6008] usb 6-1: Product: syz [ 49.748761][ T6008] usb 6-1: Manufacturer: syz [ 49.750380][ T6008] usb 6-1: SerialNumber: syz [ 49.756523][ T6008] usb 6-1: config 0 descriptor?? [ 49.838969][ T40] audit: type=1326 audit(1754607250.263:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6312 comm="syz.0.122" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 49.852394][ T40] audit: type=1326 audit(1754607250.263:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6312 comm="syz.0.122" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 49.864525][ T40] audit: type=1326 audit(1754607250.273:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6312 comm="syz.0.122" exe="/syz-executor" sig=0 arch=40000003 syscall=314 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 49.875160][ T40] audit: type=1326 audit(1754607250.273:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6312 comm="syz.0.122" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 49.881960][ T40] audit: type=1326 audit(1754607250.273:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6312 comm="syz.0.122" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 49.889020][ T40] audit: type=1326 audit(1754607250.293:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6317 comm="syz.2.125" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f95579 code=0x0 [ 49.968068][ T6008] input: syz syz as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input6 [ 49.974956][ T5368] synaptics_usb 6-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 49.978493][ T5368] synaptics_usb 6-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 49.981859][ T5368] synaptics_usb 6-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 49.985309][ T5368] synaptics_usb 6-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 50.006916][ T6184] synaptics_usb 6-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 50.010772][ T5368] synaptics_usb 6-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 50.014345][ T5368] synaptics_usb 6-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 50.019809][ T5368] synaptics_usb 6-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 50.052879][ T6343] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 50.055531][ T6343] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 50.057460][ T6344] mkiss: ax0: crc mode is auto. [ 50.058661][ T6343] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 50.062723][ T6343] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 50.065169][ T6343] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 50.067693][ T6343] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 50.070144][ T6343] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 50.072578][ T6343] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 50.075033][ T6343] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 50.077712][ T6343] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 50.187910][ T5982] Bluetooth: hci1: unexpected cc 0x040d length: 63 > 7 [ 50.236756][ T6239] synaptics_usb 6-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 50.266942][ T6044] usb 6-1: USB disconnect, device number 2 [ 50.424787][ T6372] netlink: 20 bytes leftover after parsing attributes in process `syz.3.151'. [ 50.811472][ T6412] capability: warning: `syz.3.165' uses deprecated v2 capabilities in a way that may be insecure [ 51.055228][ T6455] netlink: 8 bytes leftover after parsing attributes in process `syz.0.186'. [ 51.058129][ T6455] netlink: 4 bytes leftover after parsing attributes in process `syz.0.186'. [ 51.061340][ T6455] netlink: 'syz.0.186': attribute type 18 has an invalid length. [ 51.075790][ T6457] trusted_key: encrypted_key: key trusted:syz not found [ 51.132627][ T6467] vcan0: MTU too low for tipc bearer [ 51.137009][ T6467] tipc: Enabling of bearer rejected, failed to enable media [ 51.228750][ T6487] netlink: 'syz.3.202': attribute type 2 has an invalid length. [ 51.374255][ T6519] netlink: 'syz.1.218': attribute type 5 has an invalid length. [ 51.426655][ T6529] netlink: 8 bytes leftover after parsing attributes in process `syz.0.224'. [ 51.429925][ T6529] netlink: 4 bytes leftover after parsing attributes in process `syz.0.224'. [ 51.432717][ T6529] netlink: 'syz.0.224': attribute type 12 has an invalid length. [ 51.435146][ T6529] netlink: 'syz.0.224': attribute type 11 has an invalid length. [ 51.632146][ T6570] Bluetooth: MGMT ver 1.23 [ 51.675576][ T5982] Bluetooth: hci0: command tx timeout [ 51.677358][ T5982] Bluetooth: hci2: command tx timeout [ 51.799089][ T6598] ALSA: mixer_oss: invalid OSS volume 'Y{UDD ' [ 51.801721][ T6598] ALSA: mixer_oss: invalid OSS volume 'ߧ4cT󯆩"m!lT.Π' [ 51.805557][ T6598] ALSA: mixer_oss: invalid OSS volume 'lg' [ 51.807525][ T6598] ALSA: mixer_oss: invalid OSS volume ')nkKi,rWY\ZV?J`G' [ 51.810412][ T6598] ALSA: mixer_oss: invalid OSS volume 'kO0$g{pl{y;_ARW' [ 51.813310][ T6598] ALSA: mixer_oss: invalid OSS volume '' [ 51.815154][ T6598] ALSA: mixer_oss: invalid OSS volume 'sv Fu{Qby>h%w]' [ 51.818251][ T6598] ALSA: mixer_oss: invalid OSS volume 'E= v?@48@hL' [ 51.821316][ T6598] ALSA: mixer_oss: invalid OSS volume '+?>3Iq0:iq|UDř' [ 51.827101][ T6598] ALSA: mixer_oss: invalid OSS volume 'vӷ*xrN0ܗcAdh' [ 51.829716][ T6598] ALSA: mixer_oss: invalid OSS volume 'JM %HJ[~S' [ 51.885155][ T6617] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 51.999369][ T6634] overlayfs: conflicting lowerdir path [ 52.220161][ T6655] netlink: 212388 bytes leftover after parsing attributes in process `syz.1.282'. [ 52.314573][ T6668] netlink: 'syz.3.289': attribute type 1 has an invalid length. [ 52.339086][ T6671] netlink: 8 bytes leftover after parsing attributes in process `syz.3.291'. [ 52.341864][ T6671] netlink: 4 bytes leftover after parsing attributes in process `syz.3.291'. [ 52.344607][ T6671] netlink: 'syz.3.291': attribute type 14 has an invalid length. [ 52.347655][ T6671] netlink: 'syz.3.291': attribute type 13 has an invalid length. [ 52.381972][ T40] audit: type=1326 audit(1754607252.813:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6674 comm="syz.1.292" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f68579 code=0x0 [ 52.460427][ T6682] dummy0: entered promiscuous mode [ 52.462275][ T6682] macsec1: entered promiscuous mode [ 52.469071][ T6682] dummy0: left promiscuous mode [ 52.706221][ T6695] sp0: Synchronizing with TNC [ 52.711676][ T6695] sp0: Found TNC [ 52.783184][ T6702] process 'syz.0.305' launched '/dev/fd/3' with NULL argv: empty string added [ 53.294708][ T6756] Bluetooth: MGMT ver 1.23 [ 53.454107][ T24] IPVS: starting estimator thread 0... [ 53.557038][ T6769] IPVS: using max 42 ests per chain, 100800 per kthread [ 53.653077][ T6783] (unnamed net_device) (uninitialized): invalid ARP target 0.0.0.0 specified for addition [ 53.656412][ T6783] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (0) [ 53.660369][ T6783] (unnamed net_device) (uninitialized): invalid ARP target 0.0.0.0 specified for addition [ 53.663572][ T6783] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (0) [ 53.766188][ T5982] Bluetooth: hci2: command tx timeout [ 53.768003][ T5982] Bluetooth: hci0: command tx timeout [ 53.835213][ T6805] __nla_validate_parse: 6 callbacks suppressed [ 53.835224][ T6805] netlink: 4 bytes leftover after parsing attributes in process `syz.3.355'. [ 53.920367][ T6820] netlink: 8 bytes leftover after parsing attributes in process `syz.1.360'. [ 54.018080][ T6840] netlink: 8 bytes leftover after parsing attributes in process `syz.3.368'. [ 54.177786][ T6875] ALSA: seq fatal error: cannot create timer (-22) [ 54.239460][ T5982] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 54.242837][ T5982] Bluetooth: hci1: Injecting HCI hardware error event [ 54.246365][ T5982] Bluetooth: hci1: hardware error 0x00 [ 54.318785][ T40] audit: type=1326 audit(1754607254.753:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6906 comm="syz.0.402" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 54.325288][ T40] audit: type=1326 audit(1754607254.753:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6906 comm="syz.0.402" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 54.332629][ T40] audit: type=1326 audit(1754607254.763:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6906 comm="syz.0.402" exe="/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 54.460421][ T6932] netlink: 32 bytes leftover after parsing attributes in process `syz.1.414'. [ 54.683627][ T6976] netlink: 161716 bytes leftover after parsing attributes in process `syz.3.435'. [ 54.701664][ T6978] netlink: 4 bytes leftover after parsing attributes in process `syz.0.436'. [ 54.708946][ T6978] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.716415][ T6980] fuse: blksize only supported for fuseblk [ 54.769100][ T6978] bridge_slave_0 (unregistering): left allmulticast mode [ 54.771360][ T6978] bridge_slave_0 (unregistering): left promiscuous mode [ 54.773662][ T6978] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.795491][ T5975] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 54.798139][ T5975] Bluetooth: hci3: Injecting HCI hardware error event [ 54.800873][ T5975] Bluetooth: hci3: hardware error 0x00 [ 54.828644][ T6994] (unnamed net_device) (uninitialized): (slave veth1_to_batadv): Device is not bonding slave [ 54.831861][ T6994] (unnamed net_device) (uninitialized): option active_slave: invalid value (veth1_to_batadv) [ 55.012436][ T7030] netlink: 24 bytes leftover after parsing attributes in process `syz.0.462'. [ 55.014918][ T40] kauditd_printk_skb: 5 callbacks suppressed [ 55.014928][ T40] audit: type=1326 audit(1754607255.443:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7031 comm="syz.1.463" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f68579 code=0x0 [ 55.138575][ T7048] netlink: 12 bytes leftover after parsing attributes in process `syz.0.470'. [ 55.365577][ T5984] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 55.571250][ T7079] netlink: 'syz.0.485': attribute type 2 has an invalid length. [ 55.574343][ T7079] netlink: 784 bytes leftover after parsing attributes in process `syz.0.485'. [ 55.828927][ T40] audit: type=1326 audit(1754607256.263:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7025 comm="syz.3.460" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7fc00000 [ 55.835500][ T5984] Bluetooth: hci0: command 0x0c1a tx timeout [ 55.925041][ T7100] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 56.141982][ T7134] net_ratelimit: 49 callbacks suppressed [ 56.141993][ T7134] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1303 [ 56.212590][ T40] audit: type=1326 audit(1754607256.643:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7148 comm="syz.3.518" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 56.221019][ T40] audit: type=1326 audit(1754607256.643:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7148 comm="syz.3.518" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 56.231775][ T7151] xt_policy: too many policy elements [ 56.233854][ T40] audit: type=1326 audit(1754607256.643:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7148 comm="syz.3.518" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 56.242032][ T40] audit: type=1326 audit(1754607256.643:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7148 comm="syz.3.518" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 56.252373][ T40] audit: type=1326 audit(1754607256.643:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7148 comm="syz.3.518" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 56.261053][ T40] audit: type=1326 audit(1754607256.643:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7148 comm="syz.3.518" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 56.268011][ T40] audit: type=1326 audit(1754607256.653:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7148 comm="syz.3.518" exe="/syz-executor" sig=0 arch=40000003 syscall=378 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 56.274918][ T40] audit: type=1326 audit(1754607256.653:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7148 comm="syz.3.518" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 56.316229][ T5982] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 56.397034][ T7173] nbd: socks must be embedded in a SOCK_ITEM attr [ 56.435813][ T7179] Invalid source name [ 56.437125][ T7179] UBIFS error (pid: 7179): cannot open "usrquota", error -22 [ 56.551604][ T7198] ======================================================= [ 56.551604][ T7198] WARNING: The mand mount option has been deprecated and [ 56.551604][ T7198] and is ignored by this kernel. Remove the mand [ 56.551604][ T7198] option from the mount to silence this warning. [ 56.551604][ T7198] ======================================================= [ 56.570822][ T7198] overlay: filesystem on ./file0 is read-only [ 56.714795][ T7223] sch_tbf: peakrate 8 is lower than or equals to rate 12 ! [ 56.800080][ T7237] overlay: filesystem on ./file0 is read-only [ 56.830734][ T7241] sch_tbf: peakrate 8 is lower than or equals to rate 12 ! [ 56.876460][ T5975] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 57.074377][ T7278] Invalid source name [ 57.075894][ T7278] UBIFS error (pid: 7278): cannot open "usrquota", error -22 [ 57.116948][ T5333] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 57.117663][ T5975] Bluetooth: hci4: command 0x1003 tx timeout [ 57.149463][ T7287] nbd: socks must be embedded in a SOCK_ITEM attr [ 57.308520][ T7314] xt_policy: too many policy elements [ 57.368606][ T7327] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1303 [ 58.594535][ T7381] ceph: No mds server is up or the cluster is laggy [ 58.802533][ T1325] libceph: connect (1)[c::]:6789 error -101 [ 58.804716][ T1325] libceph: mon0 (1)[c::]:6789 connect error [ 59.066508][ T9] libceph: connect (1)[c::]:6789 error -101 [ 59.068478][ T9] libceph: mon0 (1)[c::]:6789 connect error [ 59.576312][ T9] libceph: connect (1)[c::]:6789 error -101 [ 59.578355][ T9] libceph: mon0 (1)[c::]:6789 connect error [ 59.632816][ T7439] ceph: No mds server is up or the cluster is laggy [ 59.784294][ T7481] (unnamed net_device) (uninitialized): (slave veth1_to_batadv): Device is not bonding slave [ 59.787650][ T7481] (unnamed net_device) (uninitialized): option active_slave: invalid value (veth1_to_batadv) [ 59.818323][ T1325] libceph: connect (1)[c::]:6789 error -13 [ 59.820596][ T1325] libceph: mon0 (1)[c::]:6789 connect error [ 60.076333][ T29] libceph: connect (1)[c::]:6789 error -13 [ 60.078274][ T29] libceph: mon0 (1)[c::]:6789 connect error [ 60.316947][ T7494] netlink: 4 bytes leftover after parsing attributes in process `syz.3.683'. [ 60.325915][ T7494] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.371384][ T7494] bridge_slave_0 (unregistering): left allmulticast mode [ 60.374287][ T7494] bridge_slave_0 (unregistering): left promiscuous mode [ 60.377720][ T7494] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.527191][ T7513] fuse: blksize only supported for fuseblk [ 60.569700][ T7521] netlink: 32 bytes leftover after parsing attributes in process `syz.0.690'. [ 60.577747][ T7525] netlink: 4 bytes leftover after parsing attributes in process `syz.2.691'. [ 60.584066][ T7525] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.588369][ T29] libceph: connect (1)[c::]:6789 error -13 [ 60.590312][ T29] libceph: mon0 (1)[c::]:6789 connect error [ 60.633746][ T7525] bridge_slave_0 (unregistering): left allmulticast mode [ 60.638626][ T7525] bridge_slave_0 (unregistering): left promiscuous mode [ 60.641061][ T7525] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.647575][ T7485] ceph: No mds server is up or the cluster is laggy [ 60.860202][ T6034] libceph: connect (1)[c::]:6789 error -101 [ 60.862336][ T6034] libceph: mon0 (1)[c::]:6789 connect error [ 60.912298][ T7567] netlink: 8 bytes leftover after parsing attributes in process `syz.1.708'. [ 60.915248][ T7567] netlink: 4 bytes leftover after parsing attributes in process `syz.1.708'. [ 60.940239][ T40] kauditd_printk_skb: 11 callbacks suppressed [ 60.940250][ T40] audit: type=1400 audit(1754607262.376:38): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name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vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 60.992568][ T7574] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 60.996317][ T7574] vhci_hcd vhci_hcd.0: Device attached [ 61.115771][ T6034] libceph: connect (1)[c::]:6789 error -101 [ 61.117802][ T6034] libceph: mon0 (1)[c::]:6789 connect error [ 61.185476][ T1325] vhci_hcd: vhci_device speed not set [ 61.235456][ T7200] usb 5-1: new low-speed USB device number 2 using dummy_hcd [ 61.255564][ T1325] usb 37-1: new full-speed USB device number 2 using vhci_hcd [ 61.386715][ T7200] usb 5-1: config 0 has no interfaces? [ 61.388541][ T7200] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 61.391394][ T7200] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 61.395542][ T7200] usb 5-1: config 0 descriptor?? [ 61.521909][ T7582] netlink: 'syz.3.716': attribute type 5 has an invalid length. [ 61.604485][ T7200] usb 5-1: USB disconnect, device number 2 [ 61.609109][ T7575] vhci_hcd: connection reset by peer [ 61.612245][ T80] vhci_hcd: stop threads [ 61.613855][ T80] vhci_hcd: release socket [ 61.615819][ T80] vhci_hcd: disconnect device [ 61.625796][ T24] libceph: connect (1)[c::]:6789 error -101 [ 61.627767][ T24] libceph: mon0 (1)[c::]:6789 connect error [ 61.666121][ T1325] vhci_hcd: vhci_device speed not set [ 61.689129][ T7558] ceph: No mds server is up or the cluster is laggy [ 61.725262][ T7586] netlink: 20 bytes leftover after parsing attributes in process `syz.2.719'. [ 61.904597][ T7600] netlink: 4 bytes leftover after parsing attributes in process `syz.1.725'. [ 61.945041][ T7607] netlink: 4 bytes leftover after parsing attributes in process `syz.2.728'. [ 61.950889][ T7607] netlink: 277 bytes leftover after parsing attributes in process `syz.2.728'. [ 61.953751][ T7607] netlink: 277 bytes leftover after parsing attributes in process `syz.2.728'. [ 61.963420][ T7609] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 61.967276][ T24] kernel write not supported for file /audio (pid: 24 comm: kworker/2:0) [ 62.210888][ T7635] devpts: Bad value for 'max' [ 62.217740][ T7637] No buffer was provided with the request [ 62.427534][ T7658] dummy0: entered promiscuous mode [ 62.429262][ T7658] macsec1: entered promiscuous mode [ 62.432360][ T7658] dummy0: left promiscuous mode [ 62.484252][ T40] audit: type=1326 audit(1754607263.916:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7660 comm="syz.3.754" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf704e579 code=0x0 [ 63.480091][ T5333] Bluetooth: hci2: unexpected cc 0x040d length: 63 > 7 [ 63.626754][ T40] audit: type=1326 audit(1754607265.066:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7737 comm="syz.3.789" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf704e579 code=0x0 [ 63.638445][ T7740] program syz.2.790 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 64.537948][ T40] audit: type=1326 audit(1754607265.976:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7750 comm="syz.0.801" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf706e579 code=0x0 [ 66.135499][ T7921] netlink: 20 bytes leftover after parsing attributes in process `syz.2.874'. [ 66.410086][ T40] audit: type=1326 audit(1754607267.846:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7946 comm="syz.0.891" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf706e579 code=0x0 [ 66.587081][ T7962] netlink: 20 bytes leftover after parsing attributes in process `syz.3.888'. [ 66.776795][ T7983] netlink: 12 bytes leftover after parsing attributes in process `syz.1.901'. [ 66.966901][ T5344] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 67.145908][ T5344] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 67.149296][ T5344] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 67.152292][ T5344] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 67.155044][ T5344] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 67.162236][ T7977] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 67.170666][ T5344] usb 7-1: Quirk or no altset; falling back to MIDI 1.0 [ 67.276071][ T8011] netlink: 20 bytes leftover after parsing attributes in process `syz.0.909'. [ 67.299365][ T8013] netlink: 8 bytes leftover after parsing attributes in process `syz.3.912'. [ 67.402144][ T40] audit: type=1326 audit(1754607268.836:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8022 comm="syz.1.918" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f68579 code=0x0 [ 67.408609][ T5344] usb 7-1: USB disconnect, device number 2 [ 67.525938][ T5333] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 67.527147][ T8036] netlink: 256 bytes leftover after parsing attributes in process `syz.3.922'. [ 67.528695][ T5333] Bluetooth: hci2: Injecting HCI hardware error event [ 67.531516][ T8036] netlink: 24 bytes leftover after parsing attributes in process `syz.3.922'. [ 67.537511][ T5333] Bluetooth: hci2: hardware error 0x00 [ 68.098512][ T8075] netlink: 8 bytes leftover after parsing attributes in process `syz.0.939'. [ 68.195984][ T7200] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 68.233055][ T5344] kernel write not supported for file /slabinfo (pid: 5344 comm: kworker/3:2) [ 68.357629][ T7200] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 68.361038][ T7200] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 68.364102][ T7200] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 68.367469][ T7200] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 68.374352][ T8071] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 68.385831][ T7200] usb 8-1: Quirk or no altset; falling back to MIDI 1.0 [ 68.460157][ T40] audit: type=1326 audit(1754607269.896:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8106 comm="syz.2.953" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f95579 code=0x0 [ 68.490065][ T8111] netlink: 'syz.1.955': attribute type 10 has an invalid length. [ 68.742750][ T24] usb 8-1: USB disconnect, device number 2 [ 69.281654][ T40] audit: type=1326 audit(1754607270.716:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8124 comm="syz.3.960" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf704e579 code=0x0 [ 69.510149][ T8158] binder: 8157:8158 ioctl 541b 0 returned -22 [ 69.567784][ T8170] hpfs: hpfs_map_sector(): read error [ 69.596730][ T5333] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 69.621299][ T8183] binder: 8181:8183 ioctl 541b 0 returned -22 [ 69.747530][ T8210] hpfs: hpfs_map_sector(): read error [ 69.808454][ T8222] binder: 8221:8222 ioctl 541b 0 returned -22 [ 69.948426][ T8244] hpfs: hpfs_map_sector(): read error [ 69.948432][ T8246] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1019'. [ 70.158697][ T8263] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1031'. [ 70.190666][ T8269] hpfs: hpfs_map_sector(): read error [ 70.541088][ T8323] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 70.882907][ T1417] ieee802154 phy0 wpan0: encryption failed: -22 [ 70.884993][ T1417] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.106554][ T8371] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 71.227684][ T8379] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 71.439047][ T8398] __nla_validate_parse: 2 callbacks suppressed [ 71.439058][ T8398] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1092'. [ 71.701599][ T40] audit: type=1326 audit(1754607273.136:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8411 comm="syz.0.1101" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf706e579 code=0x0 [ 72.189746][ T8425] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1106'. [ 72.218818][ T8429] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1115'. [ 72.475924][ T8447] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1117'. [ 72.795543][ T1325] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 72.831254][ T8490] tipc: Started in network mode [ 72.832925][ T8490] tipc: Node identity , cluster identity 4711 [ 72.834923][ T8490] tipc: Failed to set node id, please configure manually [ 72.837463][ T8490] tipc: Enabling of bearer rejected, failed to enable media [ 72.947036][ T1325] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 72.950452][ T1325] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 72.953477][ T1325] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 72.956591][ T1325] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 72.961140][ T8456] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 72.965606][ T1325] usb 5-1: Quirk or no altset; falling back to MIDI 1.0 [ 73.198406][ T24] usb 5-1: USB disconnect, device number 3 [ 73.945073][ T8574] netlink: 248 bytes leftover after parsing attributes in process `syz.0.1178'. [ 73.948352][ T8574] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1178'. [ 74.002271][ T8578] team_slave_0: entered promiscuous mode [ 74.004245][ T8578] team_slave_1: entered promiscuous mode [ 74.006941][ T8578] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 74.009448][ T8578] team0: Device macvtap1 is already an upper device of the team interface [ 74.012883][ T8578] team_slave_0: left promiscuous mode [ 74.014668][ T8578] team_slave_1: left promiscuous mode [ 74.125487][ T9] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 74.276684][ T9] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 74.280128][ T9] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 74.283225][ T9] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 74.286313][ T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 74.290584][ T8570] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 74.294543][ T9] usb 6-1: Quirk or no altset; falling back to MIDI 1.0 [ 74.375933][ T8599] delete_channel: no stack [ 74.527471][ T7200] usb 6-1: USB disconnect, device number 3 [ 74.866552][ T8617] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 74.869021][ T8617] team0: Device macvtap1 is already an upper device of the team interface [ 75.223614][ T8645] usb usb4: usbfs: process 8645 (syz.1.1214) did not claim interface 0 before use [ 76.077538][ T8710] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1244'. [ 76.080428][ T8710] openvswitch: netlink: nsh attr 5 is out of range max 3 [ 76.082547][ T8710] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 76.210354][ T8729] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 76.372868][ T8768] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 76.499831][ T40] audit: type=1326 audit(1754607277.936:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8784 comm="syz.2.1280" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x0 [ 76.714159][ T34] kernel write not supported for file /uhid (pid: 34 comm: kworker/3:0) [ 77.311741][ T8804] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 77.477452][ T8823] usb usb4: usbfs: process 8823 (syz.3.1298) did not claim interface 0 before use [ 77.601648][ T8835] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1301'. [ 77.982914][ T8867] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1317'. [ 78.155528][ T6044] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 78.308190][ T6044] usb 5-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 78.311035][ T6044] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 78.313545][ T6044] usb 5-1: Product: syz [ 78.314868][ T6044] usb 5-1: Manufacturer: syz [ 78.316659][ T6044] usb 5-1: SerialNumber: syz [ 78.319891][ T6044] usb 5-1: config 0 descriptor?? [ 78.350678][ T6044] kernel write not supported for file /uhid (pid: 6044 comm: kworker/1:3) [ 78.529292][ T7200] usb 5-1: USB disconnect, device number 4 [ 79.083777][ T8890] overlay: ./file0 is not a directory [ 79.112141][ T8895] program syz.3.1330 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 79.243619][ T8917] overlay: ./file0 is not a directory [ 79.339074][ T8929] warning: `syz.2.1347' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 79.395827][ T7200] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 79.469497][ T8939] overlay: ./file0 is not a directory [ 79.580824][ T7200] usb 8-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 79.585066][ T7200] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 79.588504][ T7200] usb 8-1: Product: syz [ 79.590139][ T7200] usb 8-1: Manufacturer: syz [ 79.591950][ T7200] usb 8-1: SerialNumber: syz [ 79.597282][ T7200] usb 8-1: config 0 descriptor?? [ 79.767171][ T7200] libceph: connect (1)[c::]:6789 error -13 [ 79.769561][ T7200] libceph: mon0 (1)[c::]:6789 connect error [ 79.808214][ T54] usb 8-1: USB disconnect, device number 3 [ 80.025713][ T7200] libceph: connect (1)[c::]:6789 error -13 [ 80.028336][ T7200] libceph: mon0 (1)[c::]:6789 connect error [ 80.334347][ T40] audit: type=1326 audit(1754607281.766:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8999 comm="syz.3.1380" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x0 [ 80.535727][ T7200] libceph: connect (1)[c::]:6789 error -13 [ 80.538238][ T7200] libceph: mon0 (1)[c::]:6789 connect error [ 80.578346][ T8974] ceph: No mds server is up or the cluster is laggy [ 81.116935][ T61] cfg80211: failed to load regulatory.db [ 81.425596][ T2073] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 81.576061][ T2073] usb 6-1: too many configurations: 9, using maximum allowed: 8 [ 81.579475][ T2073] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 81.582474][ T2073] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 81.586245][ T2073] usb 6-1: config 0 interface 0 has no altsetting 0 [ 81.590012][ T2073] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 81.615435][ T2073] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 81.618840][ T2073] usb 6-1: config 0 interface 0 has no altsetting 0 [ 81.636787][ T2073] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 81.639561][ T2073] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 81.643202][ T2073] usb 6-1: config 0 interface 0 has no altsetting 0 [ 81.655833][ T2073] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 81.658592][ T2073] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 81.661899][ T2073] usb 6-1: config 0 interface 0 has no altsetting 0 [ 81.666047][ T2073] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 81.668799][ T2073] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 81.672049][ T2073] usb 6-1: config 0 interface 0 has no altsetting 0 [ 81.676811][ T2073] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 81.679671][ T2073] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 81.683369][ T2073] usb 6-1: config 0 interface 0 has no altsetting 0 [ 81.686986][ T2073] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 81.695479][ T2073] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 81.698864][ T2073] usb 6-1: config 0 interface 0 has no altsetting 0 [ 81.706736][ T2073] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 81.709790][ T2073] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 81.713422][ T2073] usb 6-1: config 0 interface 0 has no altsetting 0 [ 81.734631][ T2073] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 81.771501][ T2073] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 81.774223][ T2073] usb 6-1: Product: syz [ 81.775624][ T2073] usb 6-1: Manufacturer: syz [ 81.777168][ T2073] usb 6-1: SerialNumber: syz [ 81.780824][ T2073] usb 6-1: config 0 descriptor?? [ 81.790364][ T2073] yurex 6-1:0.0: USB YUREX device now attached to Yurex #0 [ 81.924598][ T9142] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1449'. [ 81.990913][ T54] usb 6-1: USB disconnect, device number 4 [ 81.997590][ T54] yurex 6-1:0.0: USB YUREX #0 now disconnected [ 82.055534][ T9159] netlink: 'syz.0.1457': attribute type 1 has an invalid length. [ 82.088120][ T9166] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0 [ 82.090243][ T9165] IPVS: stopping master sync thread 9166 ... [ 82.518967][ T9190] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1466'. [ 82.697169][ T9226] netlink: 'syz.1.1485': attribute type 1 has an invalid length. [ 82.777629][ T9242] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1491'. [ 83.093908][ T9294] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1516'. [ 83.257337][ T9320] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1530'. [ 83.429050][ T9344] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 83.431078][ T9344] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 83.433928][ T9344] vhci_hcd vhci_hcd.0: Device attached [ 83.439823][ T9345] vhci_hcd: connection closed [ 83.440536][ T1138] vhci_hcd: stop threads [ 83.443424][ T1138] vhci_hcd: release socket [ 83.444846][ T1138] vhci_hcd: disconnect device [ 83.600638][ T9354] netlink: 168 bytes leftover after parsing attributes in process `syz.0.1553'. [ 84.369566][ T9464] capability: warning: `syz.2.1592' uses 32-bit capabilities (legacy support in use) [ 84.617446][ T9522] netlink: 'syz.0.1621': attribute type 1 has an invalid length. [ 84.619926][ T9522] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1621'. [ 84.621984][ T9527] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 84.887838][ T9591] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1649'. [ 84.911480][ T9599] [U] 1WT`8H$09\ [ 84.913285][ T9599] [U] ;2}UGVĥ#O9ե>-ߴSݢP [ 84.937898][ T9607] hugetlbfs: Bad value 'g' for mount option 'nr_inodes' [ 84.937898][ T9607] [ 84.957038][ T9612] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1659'. [ 84.959836][ T9612] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1659'. [ 84.963966][ T9612] netlink: 'syz.1.1659': attribute type 20 has an invalid length. [ 84.990627][ T9624] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1664'. [ 85.014235][ T9628] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1667'. [ 85.044116][ T9638] batadv_slave_1: entered promiscuous mode [ 85.189461][ T9673] netlink: 'syz.1.1689': attribute type 1 has an invalid length. [ 85.192008][ T9673] netlink: 'syz.1.1689': attribute type 1 has an invalid length. [ 85.222592][ T40] audit: type=1326 audit(1754607286.656:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9680 comm="syz.3.1693" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x0 [ 85.291595][ T40] audit: type=1326 audit(1754607286.726:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9692 comm="syz.2.1698" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 85.300038][ T40] audit: type=1326 audit(1754607286.726:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9692 comm="syz.2.1698" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 85.308643][ T40] audit: type=1326 audit(1754607286.726:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9692 comm="syz.2.1698" exe="/syz-executor" sig=0 arch=40000003 syscall=247 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 85.352152][ T40] audit: type=1326 audit(1754607286.786:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9692 comm="syz.2.1698" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 85.358897][ T40] audit: type=1326 audit(1754607286.786:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9692 comm="syz.2.1698" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 85.388371][ T9704] devtmpfs: Cannot enable quota on remount [ 85.587407][ T9717] ieee802154 phy0 wpan0: encryption failed: -22 [ 85.779401][ T9749] sp0: Synchronizing with TNC [ 85.782782][ T9748] [U] [ 86.324362][ T40] audit: type=1800 audit(1754607287.756:55): pid=9838 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1769" name="file0" dev="9p" ino=35913824 res=0 errno=0 [ 86.362049][ T9842] genirq: Flags mismatch irq 4. 00200000 (pcl818) vs. 00200080 (ttyS0) [ 86.433397][ T9856] netlink: 'syz.1.1779': attribute type 2 has an invalid length. [ 86.586070][ T9891] tipc: Started in network mode [ 86.587667][ T9891] tipc: Node identity aaaaaaaaaa32, cluster identity 4711 [ 86.591421][ T9891] tipc: Enabled bearer , priority 10 [ 86.708361][ T9918] vlan3: entered allmulticast mode [ 86.710069][ T9918] vlan1: entered allmulticast mode [ 86.711698][ T9918] veth0_vlan: entered allmulticast mode [ 86.715102][ T9921] openvswitch: netlink: nsh attribute has 2338 unknown bytes. [ 86.720109][ T9921] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 87.079972][ T9985] input input13: cannot allocate more than FF_MAX_EFFECTS effects [ 87.104496][ T9991] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 87.106976][ T9991] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 87.112277][ T9991] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 87.114741][ T9991] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 87.146794][ T24] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 87.208864][T10011] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 87.295445][ T24] usb 7-1: Using ep0 maxpacket: 8 [ 87.299060][ T24] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 87.301714][ T24] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 87.305127][ T24] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 87.309409][ T24] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 87.312818][ T24] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 87.317950][ T24] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 87.320297][ T24] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 87.323763][ T24] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 87.327861][ T24] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 87.329626][T10027] netlink: 'syz.1.1857': attribute type 1 has an invalid length. [ 87.331277][ T24] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 87.337966][ T24] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 87.340295][ T24] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 87.343739][ T24] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 87.347506][ T24] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 87.350950][ T24] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 87.357986][ T24] usb 7-1: string descriptor 0 read error: -22 [ 87.360309][ T24] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 87.363102][ T24] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 87.373395][ T24] adutux 7-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 87.606728][ T9] tipc: Node number set to 10005162 [ 88.235514][ T5333] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 88.235620][ T5975] Bluetooth: hci0: command 0x0c1a tx timeout [ 90.377471][T10083] input input14: cannot allocate more than FF_MAX_EFFECTS effects [ 90.726583][T10147] __nla_validate_parse: 7 callbacks suppressed [ 90.726595][T10147] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1917'. [ 90.804278][T10160] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1916'. [ 90.807143][T10160] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1916'. [ 90.809927][T10160] netlink: 'syz.0.1916': attribute type 20 has an invalid length. [ 90.879362][T10174] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1923'. [ 90.881623][T10177] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1922'. [ 90.882038][T10178] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1924'. [ 90.913402][T10183] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1935'. [ 90.955657][T10190] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1929'. [ 90.958541][T10190] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1929'. [ 90.961350][T10190] netlink: 'syz.3.1929': attribute type 20 has an invalid length. [ 91.053029][T10209] batadv_slave_1: entered promiscuous mode [ 91.254840][T10232] netlink: 'syz.3.1950': attribute type 1 has an invalid length. [ 91.257995][T10232] netlink: 204 bytes leftover after parsing attributes in process `syz.3.1950'. [ 91.263297][T10232] netlink: 'syz.3.1950': attribute type 1 has an invalid length. [ 91.695687][ T61] usb 7-1: USB disconnect, device number 3 [ 91.708418][T10261] netlink: 'syz.2.1962': attribute type 1 has an invalid length. [ 91.710955][T10261] netlink: 'syz.2.1962': attribute type 1 has an invalid length. [ 91.765296][ T40] audit: type=1326 audit(1754607293.196:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10267 comm="syz.1.1967" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000 [ 91.772228][ T40] audit: type=1326 audit(1754607293.196:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10267 comm="syz.1.1967" exe="/syz-executor" sig=0 arch=40000003 syscall=247 compat=1 ip=0xf7f68579 code=0x7ffc0000 [ 91.831828][ T40] audit: type=1326 audit(1754607293.266:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10267 comm="syz.1.1967" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000 [ 91.839899][ T40] audit: type=1326 audit(1754607293.266:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10267 comm="syz.1.1967" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000 [ 92.189134][T10314] sp0: Synchronizing with TNC [ 92.194013][T10311] [U] [ 92.215446][ T61] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 92.376988][ T61] usb 7-1: too many configurations: 9, using maximum allowed: 8 [ 92.379925][ T61] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 92.382440][ T61] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 92.386426][ T61] usb 7-1: config 0 interface 0 has no altsetting 0 [ 92.389026][ T61] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 92.391521][ T61] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 92.394532][ T61] usb 7-1: config 0 interface 0 has no altsetting 0 [ 92.397613][ T61] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 92.400116][ T61] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 92.403148][ T61] usb 7-1: config 0 interface 0 has no altsetting 0 [ 92.405860][ T61] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 92.408429][ T61] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 92.411499][ T61] usb 7-1: config 0 interface 0 has no altsetting 0 [ 92.414088][ T61] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 92.417588][ T61] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 92.421221][ T61] usb 7-1: config 0 interface 0 has no altsetting 0 [ 92.424204][ T61] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 92.427025][ T61] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 92.430058][ T61] usb 7-1: config 0 interface 0 has no altsetting 0 [ 92.432657][ T61] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 92.435192][ T61] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 92.438475][ T61] usb 7-1: config 0 interface 0 has no altsetting 0 [ 92.441078][ T61] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 92.443606][ T61] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 92.447485][ T61] usb 7-1: config 0 interface 0 has no altsetting 0 [ 92.451137][ T61] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 92.453782][ T61] usb 7-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 92.457429][ T61] usb 7-1: Product: syz [ 92.458858][ T61] usb 7-1: Manufacturer: syz [ 92.460194][ T61] usb 7-1: SerialNumber: syz [ 92.465787][ T61] usb 7-1: config 0 descriptor?? [ 92.470542][ T61] yurex 7-1:0.0: USB YUREX device now attached to Yurex #0 [ 92.683053][ T6044] usb 7-1: USB disconnect, device number 4 [ 92.687395][ T6044] yurex 7-1:0.0: USB YUREX #0 now disconnected [ 93.103783][T10382] genirq: Flags mismatch irq 4. 00200000 (pcl818) vs. 00200080 (ttyS0) [ 93.303916][T10404] genirq: Flags mismatch irq 4. 00200000 (pcl818) vs. 00200080 (ttyS0) [ 93.448822][T10419] genirq: Flags mismatch irq 4. 00200000 (pcl818) vs. 00200080 (ttyS0) [ 93.452888][T10421] tipc: Started in network mode [ 93.454553][T10421] tipc: Node identity aaaaaaaaaa32, cluster identity 4711 [ 93.457011][T10421] tipc: Enabled bearer , priority 10 [ 93.542747][T10439] tipc: Started in network mode [ 93.544695][T10439] tipc: Node identity aaaaaaaaaa32, cluster identity 4711 [ 93.547407][T10439] tipc: Enabled bearer , priority 10 [ 93.811426][T10475] vlan3: entered allmulticast mode [ 93.813435][T10475] vlan1: entered allmulticast mode [ 93.817510][T10475] veth0_vlan: entered allmulticast mode [ 93.819514][T10477] openvswitch: netlink: nsh attribute has 2338 unknown bytes. [ 93.822063][T10477] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 94.006268][T10500] openvswitch: netlink: nsh attribute has 2338 unknown bytes. [ 94.008698][T10500] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 94.038739][T10502] vlan3: entered allmulticast mode [ 94.040434][T10502] vlan1: entered allmulticast mode [ 94.042075][T10502] veth0_vlan: entered allmulticast mode [ 94.545470][ T6044] tipc: Node number set to 10005162 [ 94.588131][ T54] tipc: Node number set to 10005162 [ 94.884643][T10599] input input15: cannot allocate more than FF_MAX_EFFECTS effects [ 95.147424][T10631] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 95.150082][T10631] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 95.157568][T10631] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 95.159898][T10631] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 95.469888][T10687] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 95.472542][T10687] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 95.477109][T10687] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 95.479753][T10687] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 96.067838][T10733] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 96.067995][T10734] vivid-007: disconnect [ 96.070437][T10733] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 96.076379][T10733] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 96.077099][T10730] vivid-007: reconnect [ 96.078765][T10733] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 96.126266][T10746] can0: slcan on pty26. [ 96.128638][T10748] __nla_validate_parse: 10 callbacks suppressed [ 96.128648][T10748] netlink: 84 bytes leftover after parsing attributes in process `syz.1.2201'. [ 96.171309][T10750] syz.2.2202 (10750) used greatest stack depth: 19736 bytes left [ 96.196709][T10745] can0 (unregistered): slcan off pty26. [ 96.246776][T10764] netlink: 'syz.3.2209': attribute type 1 has an invalid length. [ 96.295742][T10771] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2212'. [ 96.295776][T10771] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2212'. [ 96.439961][T10787] netlink: 'syz.0.2219': attribute type 1 has an invalid length. [ 96.604937][T10814] netlink: 'syz.2.2230': attribute type 1 has an invalid length. [ 96.691464][T10829] netlink: 84 bytes leftover after parsing attributes in process `syz.0.2237'. [ 96.742925][T10839] vivid-007: disconnect [ 96.743328][T10838] vivid-007: reconnect [ 96.744195][T10837] can0: slcan on pty20. [ 96.806887][T10836] can0 (unregistered): slcan off pty20. [ 97.155539][T10861] netlink: 84 bytes leftover after parsing attributes in process `syz.2.2248'. [ 97.254364][T10882] netlink: 'syz.2.2258': attribute type 1 has an invalid length. [ 97.368383][T10911] netlink: 'syz.3.2273': attribute type 1 has an invalid length. [ 97.539787][T10949] vivid-007: disconnect [ 97.542109][T10948] vivid-007: reconnect [ 98.020274][T10983] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2307'. [ 98.023170][T10983] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2307'. [ 98.043422][T10988] netlink: 'syz.3.2308': attribute type 1 has an invalid length. [ 98.130853][T10999] netlink: 'syz.1.2322': attribute type 1 has an invalid length. [ 98.163760][T11007] netlink: 160 bytes leftover after parsing attributes in process `syz.1.2318'. [ 98.177386][T11012] netlink: 'syz.0.2320': attribute type 1 has an invalid length. [ 98.179858][T11012] netlink: 'syz.0.2320': attribute type 2 has an invalid length. [ 98.182321][T11012] netlink: 1172 bytes leftover after parsing attributes in process `syz.0.2320'. [ 98.214182][T11020] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2328'. [ 98.263600][ T9] kernel write not supported for file /input/mouse0 (pid: 9 comm: kworker/0:0) [ 98.305555][T11036] netlink: 'syz.2.2334': attribute type 1 has an invalid length. [ 98.331346][T11040] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 98.340719][T11040] CIFS: Unable to determine destination address [ 98.789675][T11101] program syz.0.2364 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 99.031571][T11134] usb usb9: usbfs: process 11134 (syz.2.2380) did not claim interface 60 before use [ 99.066573][T11144] program syz.1.2384 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 99.100447][ T9] kernel write not supported for file /input/mouse0 (pid: 9 comm: kworker/0:0) [ 99.117152][T11155] program syz.2.2395 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 99.828239][T11177] usb usb9: usbfs: process 11177 (syz.1.2398) did not claim interface 60 before use [ 99.931937][T11197] trusted_key: encrypted_key: hex blob is missing [ 99.973281][T11204] usb usb9: usbfs: process 11204 (syz.0.2411) did not claim interface 60 before use [ 101.279107][T11290] __nla_validate_parse: 9 callbacks suppressed [ 101.279118][T11290] netlink: 35 bytes leftover after parsing attributes in process `syz.3.2454'. [ 101.312161][T11293] vimc link validate: Sensor B:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 1:snk:640x480 (0x33424752, 8, 0, 0, 0) [ 101.874317][T11368] mkiss: ax0: crc mode is auto. [ 101.968743][T11377] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 102.036371][T11377] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 102.098105][T11377] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 102.156174][T11377] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 102.230458][ T46] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.241393][ T46] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.249180][ T46] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.256195][ T46] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.454039][T11435] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2526'. [ 102.911135][T11513] validate_nla: 3 callbacks suppressed [ 102.911147][T11513] netlink: 'syz.1.2564': attribute type 3 has an invalid length. [ 102.915702][T11513] netlink: 'syz.1.2564': attribute type 1 has an invalid length. [ 102.918457][T11513] netlink: 192 bytes leftover after parsing attributes in process `syz.1.2564'. [ 102.921428][T11513] NCSI netlink: No device for ifindex 0 [ 103.058157][T11542] virtio-fs: tag not found [ 103.082735][T11549] netlink: 'syz.0.2582': attribute type 4 has an invalid length. [ 103.085204][T11549] netlink: 17 bytes leftover after parsing attributes in process `syz.0.2582'. [ 103.307738][ T40] audit: type=1326 audit(1754607304.746:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11603 comm="syz.2.2607" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x0 [ 103.403750][ T40] audit: type=1326 audit(1754607304.836:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11608 comm="syz.1.2609" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000 [ 103.411081][ T40] audit: type=1326 audit(1754607304.836:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11608 comm="syz.1.2609" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000 [ 103.419667][ T40] audit: type=1326 audit(1754607304.836:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11608 comm="syz.1.2609" exe="/syz-executor" sig=0 arch=40000003 syscall=329 compat=1 ip=0xf7f68579 code=0x7ffc0000 [ 103.427680][ T40] audit: type=1326 audit(1754607304.836:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11608 comm="syz.1.2609" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000 [ 103.434322][ T40] audit: type=1326 audit(1754607304.836:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11608 comm="syz.1.2609" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000 [ 103.438561][T11612] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2610'. [ 103.441531][ T40] audit: type=1326 audit(1754607304.836:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11608 comm="syz.1.2609" exe="/syz-executor" sig=0 arch=40000003 syscall=256 compat=1 ip=0xf7f68579 code=0x7ffc0000 [ 103.452131][ T40] audit: type=1326 audit(1754607304.836:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11608 comm="syz.1.2609" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000 [ 103.459027][ T40] audit: type=1326 audit(1754607304.836:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11608 comm="syz.1.2609" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000 [ 103.815510][ T1325] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 103.976132][ T1325] usb 6-1: Using ep0 maxpacket: 8 [ 103.978970][ T1325] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 103.981439][ T1325] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 103.985023][ T1325] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 103.988775][ T1325] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 103.992273][ T1325] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 103.996617][ T1325] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 103.999225][ T1325] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 104.002835][ T1325] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 104.006659][ T1325] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 104.010137][ T1325] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 104.014456][ T1325] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 104.016943][ T1325] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 104.020465][ T1325] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 104.024154][ T1325] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 104.027763][ T1325] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 104.034370][ T1325] usb 6-1: string descriptor 0 read error: -22 [ 104.036579][ T1325] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 104.039576][ T1325] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 104.047916][ T1325] adutux 6-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 104.343380][T11686] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2644'. [ 108.399448][ T29] usb 6-1: USB disconnect, device number 5 [ 108.440167][T11777] mkiss: ax0: crc mode is auto. [ 108.563218][T11795] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 108.662629][T11795] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 108.703969][T11795] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 108.755461][ T9] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 108.771040][T11795] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 108.874588][ T60] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.886298][ T60] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.893898][ T60] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.902177][ T60] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 108.905528][ T9] usb 5-1: Using ep0 maxpacket: 8 [ 108.909041][ T9] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 108.911998][ T9] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 108.916516][ T9] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 108.921267][ T9] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 108.925687][ T9] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 108.930985][ T9] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 108.934096][ T9] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 108.938568][ T9] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 108.943136][ T9] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 108.947618][ T9] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 108.958161][ T9] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 108.960679][ T9] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 108.964118][ T9] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 108.967870][ T9] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 108.971235][ T9] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 108.973490][T11823] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2709'. [ 108.977546][ T9] usb 5-1: string descriptor 0 read error: -22 [ 108.977615][ T9] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 108.977628][ T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 108.992690][ T9] adutux 5-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 109.234591][T11841] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 109.300039][T11841] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 109.387562][T11841] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 109.469059][T11841] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 109.543486][ T102] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.552043][ T102] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.559987][ T102] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.567058][ T102] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.784984][T11890] netlink: 'syz.1.2743': attribute type 4 has an invalid length. [ 109.785058][T11888] virtio-fs: tag not found [ 109.788112][T11890] netlink: 17 bytes leftover after parsing attributes in process `syz.1.2743'. [ 111.196112][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 113.282343][ T29] usb 5-1: USB disconnect, device number 5 [ 114.405696][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 115.491130][T12137] mmap: syz.2.2862 (12137) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 115.579522][T12169] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4) [ 115.581704][T12169] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 115.584446][T12169] vhci_hcd vhci_hcd.0: Device attached [ 115.588839][T12170] vhci_hcd: connection closed [ 115.589108][ T60] vhci_hcd: stop threads [ 115.592032][ T60] vhci_hcd: release socket [ 115.593487][ T60] vhci_hcd: disconnect device [ 116.162361][T12192] netlink: 'syz.2.2887': attribute type 29 has an invalid length. [ 116.167219][ T5333] Bluetooth: hci0: command 0x0c1a tx timeout [ 116.173594][T12194] netlink: 806 bytes leftover after parsing attributes in process `syz.0.2888'. [ 116.232799][ T60] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 116.239253][ T60] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 116.242025][ T60] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 116.245222][ T60] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 116.558365][T12271] sp0: Synchronizing with TNC [ 116.562408][T12270] [U] [ 116.982078][T12330] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2952'. [ 116.984924][T12330] netlink: 'syz.2.2952': attribute type 30 has an invalid length. [ 116.987443][T12330] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2952'. [ 117.108028][T12345] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2959'. [ 117.235177][T12364] genirq: Flags mismatch irq 4. 00200000 (pcl812) vs. 00200080 (ttyS0) [ 117.567326][T12414] genirq: Flags mismatch irq 4. 00200000 (pcl812) vs. 00200080 (ttyS0) [ 117.730009][T12432] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3009'. [ 117.829878][T12444] genirq: Flags mismatch irq 4. 00200000 (pcl812) vs. 00200080 (ttyS0) [ 117.894842][T12459] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3015'. [ 117.898324][T12459] netlink: 'syz.1.3015': attribute type 30 has an invalid length. [ 117.900805][T12459] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3015'. [ 117.959682][T12471] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3020'. [ 118.020441][T12487] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3027'. [ 118.023282][T12487] netlink: 'syz.0.3027': attribute type 30 has an invalid length. [ 118.025873][T12487] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3027'. [ 118.374624][T12553] sp0: Synchronizing with TNC [ 118.381379][T12552] [U] [ 118.621898][ T60] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 118.624591][ T60] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 118.628221][ T60] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 118.630803][ T60] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 118.716146][T12604] netlink: 'syz.1.3080': attribute type 29 has an invalid length. [ 118.899741][T12636] netlink: 'syz.3.3095': attribute type 29 has an invalid length. [ 119.399368][T12698] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4) [ 119.401463][T12698] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 119.403882][T12698] vhci_hcd vhci_hcd.0: Device attached [ 119.409510][T12700] vhci_hcd: connection closed [ 119.409733][ T102] vhci_hcd: stop threads [ 119.412851][ T102] vhci_hcd: release socket [ 119.414288][ T102] vhci_hcd: disconnect device [ 119.973162][T12734] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4) [ 119.975266][T12734] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 119.977818][T12734] vhci_hcd vhci_hcd.0: Device attached [ 119.981835][T12736] vhci_hcd: connection closed [ 119.982603][ T102] vhci_hcd: stop threads [ 119.985695][ T102] vhci_hcd: release socket [ 119.987115][ T102] vhci_hcd: disconnect device [ 120.667131][T12808] netlink: 'syz.3.3175': attribute type 1 has an invalid length. [ 120.939633][ T5975] Bluetooth: hci0: Invalid handle: 0x10a7 > 0x0eff [ 120.966445][T12877] tipc: Enabling of bearer rejected, media not registered [ 121.216831][T12920] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 121.419833][T12942] netlink: 'syz.0.3242': attribute type 1 has an invalid length. [ 121.422344][T12942] __nla_validate_parse: 4 callbacks suppressed [ 121.422351][T12942] netlink: 228 bytes leftover after parsing attributes in process `syz.0.3242'. [ 121.427275][T12942] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3242'. [ 121.549558][T12967] netlink: 'syz.1.3255': attribute type 1 has an invalid length. [ 121.552044][T12967] netlink: 228 bytes leftover after parsing attributes in process `syz.1.3255'. [ 121.554895][T12967] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3255'. [ 121.632284][T12981] tipc: Enabling of bearer rejected, media not registered [ 122.139666][T13006] tipc: Enabling of bearer rejected, media not registered [ 122.245231][T13028] nbd: must specify an index to disconnect [ 122.291967][T13036] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 122.291967][T13036] program syz.2.3289 not setting count and/or reply_len properly [ 122.297741][T13038] binder: 13037:13038 ioctl c00c620f 80000680 returned -22 [ 122.430877][ T9] hid-generic 0000:0004:0009.0002: unknown main item tag 0x0 [ 122.434470][ T9] hid-generic 0000:0004:0009.0002: unknown main item tag 0x0 [ 122.445474][ T9] hid-generic 0000:0004:0009.0002: unknown main item tag 0x0 [ 122.451257][ T9] hid-generic 0000:0004:0009.0002: hidraw1: HID v0.04 Device [syz0] on syz1 [ 122.518558][T13056] fido_id[13056]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 122.527961][T13068] binder: 13067:13068 ioctl c00c620f 80000680 returned -22 [ 122.571389][T13078] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 122.571389][T13078] program syz.0.3309 not setting count and/or reply_len properly [ 123.074458][ T5344] kernel write not supported for file /bluetooth/6lowpan_control (pid: 5344 comm: kworker/3:2) [ 123.074685][T13098] binder: 13095:13098 ioctl c00c620f 80000680 returned -22 [ 123.107397][T13104] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 123.107397][T13104] program syz.1.3321 not setting count and/or reply_len properly [ 123.187073][T13119] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 123.187073][T13119] program syz.3.3334 not setting count and/or reply_len properly [ 123.193902][ T5344] kernel write not supported for file /bluetooth/6lowpan_control (pid: 5344 comm: kworker/3:2) [ 123.207183][ T1325] hid-generic 0000:0004:0009.0003: unknown main item tag 0x0 [ 123.210369][ T1325] hid-generic 0000:0004:0009.0003: unknown main item tag 0x0 [ 123.214198][ T1325] hid-generic 0000:0004:0009.0003: unknown main item tag 0x0 [ 123.220340][ T1325] hid-generic 0000:0004:0009.0003: hidraw1: HID v0.04 Device [syz0] on syz1 [ 123.245074][T13127] fido_id[13127]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 123.316114][ T54] kernel write not supported for file /bluetooth/6lowpan_control (pid: 54 comm: kworker/2:1) [ 124.711989][T13311] netlink: 'syz.1.3423': attribute type 62 has an invalid length. [ 125.039848][ T40] audit: type=1326 audit(1754607326.476:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13367 comm="syz.2.3445" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f95579 code=0x0 [ 125.290138][ T40] audit: type=1326 audit(1754607326.726:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13404 comm="syz.3.3463" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x0 [ 126.083827][T13449] use of bytesused == 0 is deprecated and will be removed in the future, [ 126.091048][T13449] use the actual size instead. [ 127.098725][T13560] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3543'. [ 127.174888][ T40] audit: type=1326 audit(1754607328.606:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13575 comm="syz.1.3542" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f68579 code=0x0 [ 127.259793][T13592] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3557'. [ 128.060818][T13607] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3559'. [ 128.064394][T13607] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3559'. [ 128.253679][ T40] audit: type=1326 audit(1754607329.686:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13630 comm="syz.0.3571" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x0 [ 128.526327][ T40] audit: type=1326 audit(1754607329.966:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13677 comm="syz.2.3600" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x0 [ 128.662052][T13709] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3) [ 128.664156][T13709] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 128.667852][T13709] vhci_hcd vhci_hcd.0: Device attached [ 128.671336][T13710] vhci_hcd: connection closed [ 128.672654][ T46] vhci_hcd: stop threads [ 128.675971][ T46] vhci_hcd: release socket [ 128.677469][ T46] vhci_hcd: disconnect device [ 128.962424][T13744] netlink: 'syz.2.3625': attribute type 1 has an invalid length. [ 128.964918][T13744] netlink: 144 bytes leftover after parsing attributes in process `syz.2.3625'. [ 128.967883][T13744] netlink: 'syz.2.3625': attribute type 1 has an invalid length. [ 128.970425][T13744] netlink: 'syz.2.3625': attribute type 2 has an invalid length. [ 128.972868][T13744] netlink: 64 bytes leftover after parsing attributes in process `syz.2.3625'. [ 128.973567][ T40] audit: type=1326 audit(1754607330.406:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13733 comm="syz.1.3619" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x0 [ 129.204728][T13762] netlink: 200 bytes leftover after parsing attributes in process `syz.1.3632'. [ 129.257171][T13774] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3638'. [ 129.260606][T13774] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3638'. [ 129.391970][T13801] netlink: 'syz.1.3652': attribute type 1 has an invalid length. [ 129.394433][T13801] netlink: 144 bytes leftover after parsing attributes in process `syz.1.3652'. [ 129.397497][T13801] netlink: 'syz.1.3652': attribute type 1 has an invalid length. [ 129.400413][T13801] netlink: 'syz.1.3652': attribute type 2 has an invalid length. [ 129.577825][ T40] audit: type=1326 audit(1754607331.016:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13832 comm="syz.1.3668" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000 [ 129.584782][ T40] audit: type=1326 audit(1754607331.016:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13832 comm="syz.1.3668" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000 [ 129.592280][ T40] audit: type=1326 audit(1754607331.016:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13832 comm="syz.1.3668" exe="/syz-executor" sig=0 arch=40000003 syscall=356 compat=1 ip=0xf7f68579 code=0x7ffc0000 [ 129.599521][ T40] audit: type=1326 audit(1754607331.016:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13832 comm="syz.1.3668" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000 [ 129.606839][T13838] IPVS: ip_vs_edit_dest(): server weight less than zero [ 129.607129][ T9] IPVS: starting estimator thread 0... [ 129.634981][T13843] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 129.696346][T13839] IPVS: using max 42 ests per chain, 100800 per kthread [ 129.764717][T13859] pimreg3: entered allmulticast mode [ 129.853238][T13873] pimreg3: entered allmulticast mode [ 129.995060][T13901] pimreg3: entered allmulticast mode [ 130.000152][T13904] IPVS: ip_vs_edit_dest(): server weight less than zero [ 130.002397][ T29] IPVS: starting estimator thread 0... [ 130.095464][T13906] IPVS: using max 42 ests per chain, 100800 per kthread [ 130.241655][T13933] IPVS: ip_vs_edit_dest(): server weight less than zero [ 131.739930][T14138] overlayfs: failed to resolve '': -2 [ 132.021341][T14183] overlayfs: failed to resolve '': -2 [ 132.113588][T14196] sp0: Synchronizing with TNC [ 132.117743][T14195] [U] [ 132.317684][ T1417] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.320237][ T1417] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.548159][T14207] __nla_validate_parse: 1 callbacks suppressed [ 132.548169][T14207] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3851'. [ 132.601469][ T40] kauditd_printk_skb: 16 callbacks suppressed [ 132.601481][ T40] audit: type=1326 audit(1754607334.036:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14216 comm="syz.1.3848" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000 [ 132.611149][ T40] audit: type=1326 audit(1754607334.036:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14216 comm="syz.1.3848" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7f68579 code=0x7ffc0000 [ 132.617992][ T40] audit: type=1326 audit(1754607334.036:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14216 comm="syz.1.3848" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000 [ 132.624585][ T40] audit: type=1326 audit(1754607334.036:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14216 comm="syz.1.3848" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000 [ 132.632786][ T40] audit: type=1326 audit(1754607334.036:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14216 comm="syz.1.3848" exe="/syz-executor" sig=0 arch=40000003 syscall=265 compat=1 ip=0xf7f68579 code=0x7ffc0000 [ 132.640407][ T40] audit: type=1326 audit(1754607334.036:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14216 comm="syz.1.3848" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000 [ 132.647447][ T40] audit: type=1326 audit(1754607334.036:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14216 comm="syz.1.3848" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000 [ 132.685621][T14229] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3856'. [ 132.860886][T14267] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3874'. [ 133.081351][T14294] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3886'. [ 133.200971][T14320] netlink: 'syz.0.3904': attribute type 6 has an invalid length. [ 133.204165][T14320] netlink: 'syz.0.3904': attribute type 6 has an invalid length. [ 133.236832][T14322] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3901'. [ 133.680430][T14355] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3914'. [ 134.344479][ T40] audit: type=1800 audit(1754607335.776:102): pid=14463 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm=77DEA305FF07 name="file0" dev="tmpfs" ino=5193 res=0 errno=0 [ 134.485440][ T10] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 134.656640][ T10] usb 7-1: config 0 has no interfaces? [ 134.658909][ T10] usb 7-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 134.662179][ T10] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 134.665907][ T10] usb 7-1: config 0 descriptor?? [ 134.869833][ T1325] usb 7-1: USB disconnect, device number 5 [ 135.288175][T14492] netlink: 'syz.3.3989': attribute type 5 has an invalid length. [ 136.155883][ T102] IPVS: sh: FWM 3 0x00000003 - no destination available [ 136.257994][T14516] netlink: 'syz.1.3993': attribute type 5 has an invalid length. [ 136.496227][T14554] ieee802154 phy0 wpan0: encryption failed: -22 [ 136.872160][T14615] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4040'. [ 137.021496][T14647] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4054'. [ 137.324114][T14681] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4072'. [ 137.927247][T14772] ieee802154 phy0 wpan0: encryption failed: -22 [ 138.052664][T14800] ieee802154 phy0 wpan0: encryption failed: -22 [ 138.234882][T14836] syz.3.4143 (14836) used obsolete PPPIOCDETACH ioctl [ 138.716623][ T1138] IPVS: sh: FWM 3 0x00000003 - no destination available [ 139.078843][T14922] ieee802154 phy0 wpan0: encryption failed: -22 [ 139.268249][T14961] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb [ 139.271153][T14961] tipc: Enabled bearer , priority 10 [ 139.273195][T14962] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4209'. [ 139.478630][T14972] netlink: 188 bytes leftover after parsing attributes in process `syz.0.4204'. [ 139.760078][T15002] hid-generic 0003:0627:0001.0001: pid 15002 passed too short report [ 139.851904][T15041] 9pnet_fd: p9_fd_create_tcp (15041): problem binding to privport [ 139.892912][T15049] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4242'. [ 139.896098][T15049] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4242'. [ 139.944916][T15063] netlink: 'syz.0.4249': attribute type 30 has an invalid length. [ 140.182710][T15107] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4269'. [ 140.187275][T15107] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4269'. [ 140.254840][T15121] netlink: 'syz.3.4277': attribute type 30 has an invalid length. [ 140.328750][T15139] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4283'. [ 140.331552][T15139] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4283'. [ 140.355450][ T54] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 140.416107][T15155] netlink: 'syz.1.4292': attribute type 30 has an invalid length. [ 140.474576][T15167] 9pnet_fd: p9_fd_create_tcp (15167): problem binding to privport [ 140.527554][ T54] usb 5-1: config 0 has no interfaces? [ 140.529335][ T54] usb 5-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 140.532120][ T54] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 140.535763][ T54] usb 5-1: config 0 descriptor?? [ 140.745193][ T5344] usb 5-1: USB disconnect, device number 6 [ 140.851659][T15227] netlink: 188 bytes leftover after parsing attributes in process `syz.1.4335'. [ 140.935215][T15214] hid-generic 0003:0627:0001.0001: pid 15214 passed too short report [ 141.048402][T15251] netlink: 188 bytes leftover after parsing attributes in process `syz.3.4340'. [ 141.077658][T15256] tipc: Started in network mode [ 141.079481][T15256] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 141.082344][T15256] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb [ 141.085261][T15256] tipc: Enabled bearer , priority 10 [ 141.286546][ T13] IPVS: sh: FWM 3 0x00000003 - no destination available [ 141.579612][T15311] hid-generic 0003:0627:0001.0001: pid 15311 passed too short report [ 141.941674][T15370] hid-generic 0003:0627:0001.0001: pid 15370 passed too short report [ 142.085550][ T34] tipc: Node number set to 1 [ 142.538594][T15453] hid-generic 0003:0627:0001.0001: pid 15453 passed too short report [ 143.845853][ T80] IPVS: sh: FWM 3 0x00000003 - no destination available [ 144.945895][T15468] tmpfs: Bad value for 'grpquota_inode_hardlimit' [ 145.149644][ T40] audit: type=1326 audit(1754607346.586:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15514 comm="syz.2.4465" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f95579 code=0x0 [ 145.156092][T15517] __nla_validate_parse: 7 callbacks suppressed [ 145.156104][T15517] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4464'. [ 145.156113][T15517] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4464'. [ 145.156185][T15517] netlink: 'syz.3.4464': attribute type 12 has an invalid length. [ 145.234792][ T40] audit: type=1326 audit(1754607346.666:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15533 comm="syz.0.4473" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 145.242042][ T40] audit: type=1326 audit(1754607346.666:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15533 comm="syz.0.4473" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 145.249743][ T40] audit: type=1326 audit(1754607346.666:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15533 comm="syz.0.4473" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 145.258348][ T40] audit: type=1326 audit(1754607346.666:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15533 comm="syz.0.4473" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 145.265025][ T40] audit: type=1326 audit(1754607346.666:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15533 comm="syz.0.4473" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 145.272138][ T40] audit: type=1326 audit(1754607346.666:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15533 comm="syz.0.4473" exe="/syz-executor" sig=0 arch=40000003 syscall=220 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 145.279018][ T40] audit: type=1326 audit(1754607346.666:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15533 comm="syz.0.4473" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 145.286034][ T40] audit: type=1326 audit(1754607346.666:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15533 comm="syz.0.4473" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 145.325788][T15546] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4478'. [ 145.328568][T15547] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4479'. [ 145.757008][ T9] IPVS: sh: FWM 3 0x00000003 - no destination available [ 145.821446][T15633] vivid-000: disconnect [ 145.823553][T15632] vivid-000: reconnect [ 146.112354][T15674] netlink: 'syz.0.4540': attribute type 10 has an invalid length. [ 146.136308][T15679] openvswitch: netlink: IPv6 tunnel dst address is zero [ 146.245477][T15702] netlink: 'syz.2.4554': attribute type 9 has an invalid length. [ 146.297484][T15707] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 146.399925][T15726] bridge: RTM_NEWNEIGH with unconfigured vlan 4 on bridge0 [ 146.438287][T15732] netlink: 'syz.0.4568': attribute type 2 has an invalid length. [ 146.441392][T15732] netlink: 'syz.0.4568': attribute type 2 has an invalid length. [ 146.714762][T15758] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4581'. [ 146.719635][T15758] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4581'. [ 146.886513][T15791] sg_write: process 2408 (syz.1.4597) changed security contexts after opening file descriptor, this is not allowed. [ 147.419452][T15897] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 147.484693][T15911] openvswitch: netlink: IPv6 tunnel dst address is zero [ 148.188320][T16007] netlink: 32 bytes leftover after parsing attributes in process `syz.1.4709'. [ 148.317564][ T2073] IPVS: sh: FWM 3 0x00000003 - no destination available [ 148.382574][T16034] netlink: 32 bytes leftover after parsing attributes in process `syz.2.4714'. [ 148.628848][T16056] tmpfs: Bad value for 'grpquota_inode_hardlimit' [ 148.998200][T16123] [U] v3f"S/4:XTzWtlW= [ 149.000136][T16123] [U] J"e:" [ 149.114964][T16150] [U] v3f"S/4:XTzWtlW= [ 149.117190][T16150] [U] J"e:" [ 149.190122][T16163] [U] v3f"S/4:XTzWtlW= [ 149.192074][T16163] [U] J"e:" [ 149.789792][T16199] netlink: 'syz.0.4793': attribute type 11 has an invalid length. [ 149.879817][T16220] netlink: 'syz.2.4803': attribute type 1 has an invalid length. [ 149.906303][T16223] netlink: 'syz.1.4804': attribute type 11 has an invalid length. [ 149.994971][T16248] netlink: 'syz.3.4816': attribute type 11 has an invalid length. [ 150.020593][T16252] netlink: 'syz.0.4817': attribute type 1 has an invalid length. [ 150.210144][T16282] netlink: 'syz.3.4828': attribute type 1 has an invalid length. [ 150.534542][T16336] netlink: 'syz.3.4859': attribute type 21 has an invalid length. [ 150.660688][T16356] CIFS mount error: No usable UNC path provided in device string! [ 150.660688][T16356] [ 150.664046][T16356] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 151.026302][ T40] audit: type=1400 audit(1754607352.456:112): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=16408 comm="syz.3.4894" [ 151.080692][T16425] openvswitch: netlink: Missing key (keys=40, expected=200000) [ 151.323993][ T40] audit: type=1400 audit(1754607352.756:113): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=16469 comm="syz.1.4923" [ 151.339283][T16473] input: syz1 as /devices/virtual/input/input16 [ 151.344705][T16475] openvswitch: netlink: Missing key (keys=40, expected=200000) [ 151.476297][T16496] openvswitch: netlink: Missing key (keys=40, expected=200000) [ 151.505695][T16500] input: syz1 as /devices/virtual/input/input17 [ 151.517514][ T6044] IPVS: sh: FWM 3 0x00000003 - no destination available [ 151.899882][T16548] netlink: 'syz.0.4961': attribute type 5 has an invalid length. [ 152.943294][T16743] Option ' ' to dns_resolver key: bad/missing value [ 153.251507][T16759] netlink: 'syz.2.5060': attribute type 5 has an invalid length. [ 153.494544][T16783] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0) [ 153.839354][T16823] Option ' ' to dns_resolver key: bad/missing value [ 154.076280][ T29] IPVS: sh: FWM 3 0x00000003 - no destination available [ 154.295756][T16902] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5130'. [ 154.323148][T16906] pim6reg9: entered allmulticast mode [ 155.637836][T16912] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5136'. [ 155.640635][T16912] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5136'. [ 156.787760][T16975] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5165'. [ 156.791487][T16975] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5165'. [ 156.833382][T16982] pim6reg9: entered allmulticast mode [ 156.960854][T17007] pim6reg9: entered allmulticast mode [ 157.286845][ T54] IPVS: sh: FWM 3 0x00000003 - no destination available [ 157.443552][T17113] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5234'. [ 157.514511][T17123] sp0: Synchronizing with TNC [ 158.898200][T17243] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5305'. [ 158.983366][T17263] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5306'. [ 159.088226][ T40] audit: type=1326 audit(1754607360.526:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17289 comm="syz.2.5321" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x0 [ 159.176808][ T40] audit: type=1326 audit(1754607360.616:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17304 comm="syz.3.5329" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf704e579 code=0x0 [ 159.495316][T17346] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5348'. [ 159.522689][ C3] ================================================================== [ 159.525257][ C3] BUG: KASAN: slab-use-after-free in __xfrm_state_delete+0x9e5/0xa30 [ 159.528206][ C3] Write of size 8 at addr ffff88804f448030 by task syz.1.5349/17348 [ 159.531612][ C3] [ 159.532679][ C3] CPU: 3 UID: 0 PID: 17348 Comm: syz.1.5349 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 159.532693][ C3] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 159.532699][ C3] Call Trace: [ 159.532703][ C3] [ 159.532707][ C3] dump_stack_lvl+0x116/0x1f0 [ 159.532722][ C3] print_report+0xcd/0x630 [ 159.532735][ C3] ? __virt_addr_valid+0x81/0x610 [ 159.532748][ C3] ? __phys_addr+0xe8/0x180 [ 159.532759][ C3] ? __xfrm_state_delete+0x9e5/0xa30 [ 159.532768][ C3] kasan_report+0xe0/0x110 [ 159.532780][ C3] ? __xfrm_state_delete+0x9e5/0xa30 [ 159.532795][ C3] __xfrm_state_delete+0x9e5/0xa30 [ 159.532805][ C3] xfrm_timer_handler+0x86c/0xf10 [ 159.532813][ C3] ? __pfx_debug_object_deactivate+0x10/0x10 [ 159.532830][ C3] ? __pfx_xfrm_timer_handler+0x10/0x10 [ 159.532840][ C3] ? __pfx_xfrm_timer_handler+0x10/0x10 [ 159.532848][ C3] ? mark_held_locks+0x49/0x80 [ 159.532860][ C3] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 159.532871][ C3] ? __pfx_xfrm_timer_handler+0x10/0x10 [ 159.532880][ C3] __hrtimer_run_queues+0x202/0xad0 [ 159.532892][ C3] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 159.532900][ C3] ? read_tsc+0x9/0x20 [ 159.532914][ C3] hrtimer_run_softirq+0x17d/0x350 [ 159.532924][ C3] handle_softirqs+0x219/0x8e0 [ 159.532936][ C3] ? __pfx_handle_softirqs+0x10/0x10 [ 159.532948][ C3] __irq_exit_rcu+0x109/0x170 [ 159.532958][ C3] irq_exit_rcu+0x9/0x30 [ 159.532968][ C3] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 159.532979][ C3] [ 159.532982][ C3] [ 159.532986][ C3] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 159.532997][ C3] RIP: 0010:__sanitizer_cov_trace_pc+0x66/0x70 [ 159.533013][ C3] Code: 82 18 16 00 00 83 f8 02 75 20 48 8b 8a 20 16 00 00 8b 92 1c 16 00 00 48 8b 01 48 83 c0 01 48 39 d0 73 07 48 89 01 48 89 34 c1 cc cc cc cc 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 [ 159.533023][ C3] RSP: 0018:ffffc900030a75e8 EFLAGS: 00000293 [ 159.533031][ C3] RAX: 0000000000000000 RBX: 800000006572b007 RCX: ffffffff8205c255 [ 159.533038][ C3] RDX: ffff888027fe0000 RSI: ffffffff8205c34b RDI: 0000000000000007 [ 159.533044][ C3] RBP: 000000000000002b R08: 0000000000000007 R09: 0000000000000000 [ 159.533050][ C3] R10: 800000006572b007 R11: 0000000000000000 R12: 00000000f61d5000 [ 159.533056][ C3] R13: ffff88804b965ea8 R14: dffffc0000000000 R15: 000000000000002b [ 159.533064][ C3] ? unmap_page_range+0xb75/0x42c0 [ 159.533077][ C3] ? unmap_page_range+0xc6b/0x42c0 [ 159.533092][ C3] unmap_page_range+0xc6b/0x42c0 [ 159.533110][ C3] ? __pfx_unmap_page_range+0x10/0x10 [ 159.533123][ C3] ? mas_next_slot+0x12d3/0x21b0 [ 159.533136][ C3] ? uprobe_munmap+0x20/0x5c0 [ 159.533150][ C3] unmap_single_vma.constprop.0+0x153/0x240 [ 159.533165][ C3] unmap_vmas+0x218/0x470 [ 159.533178][ C3] ? __pfx_unmap_vmas+0x10/0x10 [ 159.533196][ C3] exit_mmap+0x1b9/0xb90 [ 159.533211][ C3] ? __pfx_exit_mmap+0x10/0x10 [ 159.533226][ C3] ? __lock_acquire+0xb97/0x1ce0 [ 159.533242][ C3] __mmput+0x12a/0x410 [ 159.533254][ C3] mmput+0x62/0x70 [ 159.533264][ C3] do_exit+0x7c7/0x2bf0 [ 159.533278][ C3] ? __pfx_do_exit+0x10/0x10 [ 159.533291][ C3] ? do_raw_spin_lock+0x12c/0x2b0 [ 159.533305][ C3] ? find_held_lock+0x2b/0x80 [ 159.533315][ C3] do_group_exit+0xd3/0x2a0 [ 159.533328][ C3] get_signal+0x2673/0x26d0 [ 159.533341][ C3] ? vfs_read+0x23b/0xc60 [ 159.533352][ C3] ? __pfx_get_signal+0x10/0x10 [ 159.533363][ C3] ? do_futex+0x122/0x350 [ 159.533375][ C3] ? __pfx_do_futex+0x10/0x10 [ 159.533387][ C3] arch_do_signal_or_restart+0x8f/0x790 [ 159.533400][ C3] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 159.533414][ C3] ? __pfx_ksys_pread64+0x10/0x10 [ 159.533426][ C3] exit_to_user_mode_loop+0x84/0x110 [ 159.533441][ C3] __do_fast_syscall_32+0x2ac/0x3a0 [ 159.533453][ C3] do_fast_syscall_32+0x32/0x80 [ 159.533464][ C3] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 159.533475][ C3] RIP: 0023:0xf7f68579 [ 159.533482][ C3] Code: Unable to access opcode bytes at 0xf7f6854f. [ 159.533487][ C3] RSP: 002b:00000000f548660c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0 [ 159.533495][ C3] RAX: fffffffffffffe00 RBX: 00000000f7424f88 RCX: 0000000000000080 [ 159.533501][ C3] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000f7424f8c [ 159.533507][ C3] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000 [ 159.533513][ C3] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 159.533518][ C3] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 159.533527][ C3] [ 159.533530][ C3] [ 159.674208][ C3] Allocated by task 13607: [ 159.675572][ C3] kasan_save_stack+0x33/0x60 [ 159.677039][ C3] kasan_save_track+0x14/0x30 [ 159.678472][ C3] __kasan_slab_alloc+0x89/0x90 [ 159.679992][ C3] kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 159.681675][ C3] xfrm_state_alloc+0x23/0x5c0 [ 159.683160][ C3] __find_acq_core+0xb59/0x2900 [ 159.684705][ C3] xfrm_find_acq+0x7b/0xa0 [ 159.686114][ C3] xfrm_alloc_userspi+0x58e/0xbb0 [ 159.687647][ C3] xfrm_user_rcv_msg+0x4fe/0xb60 [ 159.689187][ C3] netlink_rcv_skb+0x155/0x420 [ 159.690698][ C3] xfrm_netlink_rcv+0x71/0x90 [ 159.692156][ C3] netlink_unicast+0x5aa/0x870 [ 159.693673][ C3] netlink_sendmsg+0x8d1/0xdd0 [ 159.695149][ C3] ____sys_sendmsg+0xa95/0xc70 [ 159.696646][ C3] ___sys_sendmsg+0x134/0x1d0 [ 159.698092][ C3] __sys_sendmsg+0x16d/0x220 [ 159.699531][ C3] __do_fast_syscall_32+0x7c/0x3a0 [ 159.701115][ C3] do_fast_syscall_32+0x32/0x80 [ 159.702595][ C3] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 159.704552][ C3] [ 159.705300][ C3] Freed by task 2073: [ 159.706556][ C3] kasan_save_stack+0x33/0x60 [ 159.708056][ C3] kasan_save_track+0x14/0x30 [ 159.709524][ C3] kasan_save_free_info+0x3b/0x60 [ 159.711085][ C3] __kasan_slab_free+0x60/0x70 [ 159.712580][ C3] kmem_cache_free+0x2d1/0x4d0 [ 159.714087][ C3] xfrm_state_gc_task+0x50a/0x770 [ 159.715656][ C3] process_one_work+0x9cc/0x1b70 [ 159.717232][ C3] worker_thread+0x6c8/0xf10 [ 159.718663][ C3] kthread+0x3c5/0x780 [ 159.719941][ C3] ret_from_fork+0x5d7/0x6f0 [ 159.721380][ C3] ret_from_fork_asm+0x1a/0x30 [ 159.722871][ C3] [ 159.723624][ C3] The buggy address belongs to the object at ffff88804f448000 [ 159.723624][ C3] which belongs to the cache xfrm_state of size 928 [ 159.727775][ C3] The buggy address is located 48 bytes inside of [ 159.727775][ C3] freed 928-byte region [ffff88804f448000, ffff88804f4483a0) [ 159.731850][ C3] [ 159.732613][ C3] The buggy address belongs to the physical page: [ 159.734560][ C3] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4f448 [ 159.737223][ C3] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 159.739790][ C3] flags: 0x4fff00000000040(head|node=1|zone=1|lastcpupid=0x7ff) [ 159.742133][ C3] page_type: f5(slab) [ 159.743378][ C3] raw: 04fff00000000040 ffff88801da932c0 dead000000000122 0000000000000000 [ 159.746014][ C3] raw: 0000000000000000 00000000801e001e 00000000f5000000 0000000000000000 [ 159.748638][ C3] head: 04fff00000000040 ffff88801da932c0 dead000000000122 0000000000000000 [ 159.751240][ C3] head: 0000000000000000 00000000801e001e 00000000f5000000 0000000000000000 [ 159.753822][ C3] head: 04fff00000000003 ffffea00013d1201 00000000ffffffff 00000000ffffffff [ 159.756366][ C3] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 159.758875][ C3] page dumped because: kasan: bad access detected [ 159.760798][ C3] page_owner tracks the page as allocated [ 159.762518][ C3] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 13607, tgid 13606 (syz.2.3559), ts 128063818550, free_ts 128058072920 [ 159.768147][ C3] post_alloc_hook+0x1c0/0x230 [ 159.769641][ C3] get_page_from_freelist+0x132b/0x38e0 [ 159.771279][ C3] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 159.773119][ C3] alloc_pages_mpol+0x1fb/0x550 [ 159.774612][ C3] new_slab+0x247/0x330 [ 159.775877][ C3] ___slab_alloc+0xcf2/0x1740 [ 159.777325][ C3] __slab_alloc.constprop.0+0x56/0xb0 [ 159.778964][ C3] kmem_cache_alloc_noprof+0xef/0x3b0 [ 159.780626][ C3] xfrm_state_alloc+0x23/0x5c0 [ 159.782115][ C3] __find_acq_core+0xb59/0x2900 [ 159.783637][ C3] xfrm_find_acq+0x7b/0xa0 [ 159.785018][ C3] xfrm_alloc_userspi+0x58e/0xbb0 [ 159.786572][ C3] xfrm_user_rcv_msg+0x4fe/0xb60 [ 159.788106][ C3] netlink_rcv_skb+0x155/0x420 [ 159.789593][ C3] xfrm_netlink_rcv+0x71/0x90 [ 159.791064][ C3] netlink_unicast+0x5aa/0x870 [ 159.792562][ C3] page last free pid 13606 tgid 13606 stack trace: [ 159.794610][ C3] __free_frozen_pages+0x7d5/0x10f0 [ 159.796236][ C3] __put_partials+0x165/0x1c0 [ 159.797699][ C3] qlist_free_all+0x4d/0x120 [ 159.799153][ C3] kasan_quarantine_reduce+0x195/0x1e0 [ 159.800874][ C3] __kasan_slab_alloc+0x69/0x90 [ 159.802383][ C3] __kmalloc_noprof+0x1d4/0x510 [ 159.803928][ C3] tomoyo_encode2+0x100/0x3e0 [ 159.805405][ C3] tomoyo_encode+0x29/0x50 [ 159.806808][ C3] tomoyo_path_perm+0x3a5/0x460 [ 159.808364][ C3] tomoyo_path_symlink+0x97/0xe0 [ 159.809932][ C3] security_path_symlink+0x152/0x2e0 [ 159.811559][ C3] do_symlinkat+0x10d/0x310 [ 159.813046][ C3] __ia32_sys_symlinkat+0x93/0xc0 [ 159.814630][ C3] __do_fast_syscall_32+0x7c/0x3a0 [ 159.816209][ C3] do_fast_syscall_32+0x32/0x80 [ 159.817720][ C3] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 159.819704][ C3] [ 159.820478][ C3] Memory state around the buggy address: [ 159.822208][ C3] ffff88804f447f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 159.824682][ C3] ffff88804f447f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 159.827130][ C3] >ffff88804f448000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 159.829705][ C3] ^ [ 159.831415][ C3] ffff88804f448080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 159.833845][ C3] ffff88804f448100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 159.836290][ C3] ================================================================== [ 159.837975][ T54] IPVS: sh: FWM 3 0x00000003 - no destination available [ 159.838823][ C3] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 159.838833][ C3] CPU: 3 UID: 0 PID: 17348 Comm: syz.1.5349 Not tainted 6.16.0-syzkaller-11952-g6e64f4580381 #0 PREEMPT(full) [ 159.838846][ C3] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 159.838853][ C3] Call Trace: [ 159.838857][ C3] [ 159.838861][ C3] dump_stack_lvl+0x3d/0x1f0 [ 159.838876][ C3] vpanic+0x6e8/0x7a0 [ 159.838891][ C3] ? __pfx_vpanic+0x10/0x10 [ 159.838906][ C3] ? __xfrm_state_delete+0x9e5/0xa30 [ 159.838916][ C3] panic+0xca/0xd0 [ 159.838928][ C3] ? __pfx_panic+0x10/0x10 [ 159.838943][ C3] ? check_panic_on_warn+0x1f/0xb0 [ 159.838957][ C3] check_panic_on_warn+0xab/0xb0 [ 159.838971][ C3] end_report+0x107/0x170 [ 159.838984][ C3] kasan_report+0xee/0x110 [ 159.838996][ C3] ? __xfrm_state_delete+0x9e5/0xa30 [ 159.839007][ C3] __xfrm_state_delete+0x9e5/0xa30 [ 159.839016][ C3] xfrm_timer_handler+0x86c/0xf10 [ 159.839026][ C3] ? __pfx_debug_object_deactivate+0x10/0x10 [ 159.839042][ C3] ? __pfx_xfrm_timer_handler+0x10/0x10 [ 159.839052][ C3] ? __pfx_xfrm_timer_handler+0x10/0x10 [ 159.839060][ C3] ? mark_held_locks+0x49/0x80 [ 159.839073][ C3] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 159.839084][ C3] ? __pfx_xfrm_timer_handler+0x10/0x10 [ 159.839093][ C3] __hrtimer_run_queues+0x202/0xad0 [ 159.839104][ C3] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 159.839113][ C3] ? read_tsc+0x9/0x20 [ 159.839127][ C3] hrtimer_run_softirq+0x17d/0x350 [ 159.839137][ C3] handle_softirqs+0x219/0x8e0 [ 159.839149][ C3] ? __pfx_handle_softirqs+0x10/0x10 [ 159.839161][ C3] __irq_exit_rcu+0x109/0x170 [ 159.839172][ C3] irq_exit_rcu+0x9/0x30 [ 159.839182][ C3] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 159.839193][ C3] [ 159.839196][ C3] [ 159.839200][ C3] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 159.839211][ C3] RIP: 0010:__sanitizer_cov_trace_pc+0x66/0x70 [ 159.839226][ C3] Code: 82 18 16 00 00 83 f8 02 75 20 48 8b 8a 20 16 00 00 8b 92 1c 16 00 00 48 8b 01 48 83 c0 01 48 39 d0 73 07 48 89 01 48 89 34 c1 cc cc cc cc 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 [ 159.839236][ C3] RSP: 0018:ffffc900030a75e8 EFLAGS: 00000293 [ 159.839245][ C3] RAX: 0000000000000000 RBX: 800000006572b007 RCX: ffffffff8205c255 [ 159.839252][ C3] RDX: ffff888027fe0000 RSI: ffffffff8205c34b RDI: 0000000000000007 [ 159.839258][ C3] RBP: 000000000000002b R08: 0000000000000007 R09: 0000000000000000 [ 159.839264][ C3] R10: 800000006572b007 R11: 0000000000000000 R12: 00000000f61d5000 [ 159.839270][ C3] R13: ffff88804b965ea8 R14: dffffc0000000000 R15: 000000000000002b [ 159.839278][ C3] ? unmap_page_range+0xb75/0x42c0 [ 159.839292][ C3] ? unmap_page_range+0xc6b/0x42c0 [ 159.839306][ C3] unmap_page_range+0xc6b/0x42c0 [ 159.839324][ C3] ? __pfx_unmap_page_range+0x10/0x10 [ 159.839343][ C3] ? mas_next_slot+0x12d3/0x21b0 [ 159.839362][ C3] ? uprobe_munmap+0x20/0x5c0 [ 159.839384][ C3] unmap_single_vma.constprop.0+0x153/0x240 [ 159.839400][ C3] unmap_vmas+0x218/0x470 [ 159.839414][ C3] ? __pfx_unmap_vmas+0x10/0x10 [ 159.839431][ C3] exit_mmap+0x1b9/0xb90 [ 159.839446][ C3] ? __pfx_exit_mmap+0x10/0x10 [ 159.839462][ C3] ? __lock_acquire+0xb97/0x1ce0 [ 159.839478][ C3] __mmput+0x12a/0x410 [ 159.839489][ C3] mmput+0x62/0x70 [ 159.839499][ C3] do_exit+0x7c7/0x2bf0 [ 159.839514][ C3] ? __pfx_do_exit+0x10/0x10 [ 159.839527][ C3] ? do_raw_spin_lock+0x12c/0x2b0 [ 159.839541][ C3] ? find_held_lock+0x2b/0x80 [ 159.839551][ C3] do_group_exit+0xd3/0x2a0 [ 159.839565][ C3] get_signal+0x2673/0x26d0 [ 159.839577][ C3] ? vfs_read+0x23b/0xc60 [ 159.839589][ C3] ? __pfx_get_signal+0x10/0x10 [ 159.839599][ C3] ? do_futex+0x122/0x350 [ 159.839611][ C3] ? __pfx_do_futex+0x10/0x10 [ 159.839624][ C3] arch_do_signal_or_restart+0x8f/0x790 [ 159.839637][ C3] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 159.839651][ C3] ? __pfx_ksys_pread64+0x10/0x10 [ 159.839664][ C3] exit_to_user_mode_loop+0x84/0x110 [ 159.839678][ C3] __do_fast_syscall_32+0x2ac/0x3a0 [ 159.839690][ C3] do_fast_syscall_32+0x32/0x80 [ 159.839701][ C3] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 159.839713][ C3] RIP: 0023:0xf7f68579 [ 159.839721][ C3] Code: Unable to access opcode bytes at 0xf7f6854f. [ 159.839725][ C3] RSP: 002b:00000000f548660c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0 [ 159.839734][ C3] RAX: fffffffffffffe00 RBX: 00000000f7424f88 RCX: 0000000000000080 [ 159.839741][ C3] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000f7424f8c [ 159.839746][ C3] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000 [ 159.839752][ C3] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 159.839758][ C3] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 159.839767][ C3] [ 159.842145][ C3] Kernel Offset: disabled VM DIAGNOSIS: 22:56:00 Registers: info registers vcpu 0 CPU#0 RAX=000000000017a1a5 RBX=0000000000000000 RCX=ffffffff8b8f9bf9 RDX=0000000000000000 RSI=ffffffff8de4901c RDI=ffffffff8c161580 RBP=fffffbfff1c52ef8 RSP=ffffffff8e207e08 R8 =0000000000000001 R9 =ffffed1005646655 R10=ffff88802b2332ab R11=0000000000000000 R12=0000000000000000 R13=ffffffff8e2977c0 R14=ffffffff90ab3590 R15=0000000000000000 RIP=ffffffff8b8f875f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880974cc000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f7173b10 CR3=0000000028763000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000000 RBX=ffffc90003407320 RCX=ffffffff84e82a22 RDX=ffff888024998000 RSI=00000000000004d8 RDI=0000000000000006 RBP=0000000000000004 RSP=ffffc90003407110 R8 =0000000000000006 R9 =00000000000004d8 R10=00000000000004d8 R11=0000000000000000 R12=0000000000000004 R13=00000000000004d8 R14=00000000000004d4 R15=00000000000004d8 RIP=ffffffff81bb0982 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007faa1893f300 ffffffff 00c00000 GS =0000 ffff8880975cc000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000558dc0888000 CR3=0000000049c43000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12 0000003400000012 0004000000080024 0028000000300038 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000002000000000 0000000000000000 0000000000000017 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0408000600718006 0000005600000002 0000000100000002 00000000000014ec ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0004000000080024 0000000000280030 0012010000000018 0000000800040009 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000a000800000000 000000100000008c 0000010808003c80 0264080000080001 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000008060a016d a41080808008003c 8003080800018002 3208000208000100 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000008060a016aec 0031677701ffffff fffffffffff70801 8003000800040800 ZMM24=a3ce4b4ea3ce4b4e a3ce4b4ea3ce4b4e a3ce4b4ea3ce4b4e a3ce4b4ea3ce4b4e a3ce4b4ea3ce4b4e a3ce4b4ea3ce4b4e a3ce4b4ea3ce4b4e a3ce4b4ea3ce4b4e ZMM25=f92ca200f92ca200 f92ca200f92ca200 f92ca200f92ca200 f92ca200f92ca200 f92ca200f92ca200 f92ca200f92ca200 f92ca200f92ca200 f92ca200f92ca200 ZMM26=4cb5db3c4cb5db3c 4cb5db3c4cb5db3c 4cb5db3c4cb5db3c 4cb5db3c4cb5db3c 4cb5db3c4cb5db3c 4cb5db3c4cb5db3c 4cb5db3c4cb5db3c 4cb5db3c4cb5db3c ZMM27=3fae5c9d3fae5c9d 3fae5c9d3fae5c9d 3fae5c9d3fae5c9d 3fae5c9d3fae5c9d 3fae5c9d3fae5c9d 3fae5c9d3fae5c9d 3fae5c9d3fae5c9d 3fae5c9d3fae5c9d ZMM28=00000200000001ff 000001fe000001fd 000001fc000001fb 000001fa000001f9 000001f8000001f7 000001f6000001f5 000001f4000001f3 000001f2000001f1 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=611e0000611e0000 611e0000611e0000 611e0000611e0000 611e0000611e0000 611e0000611e0000 611e0000611e0000 611e0000611e0000 611e0000611e0000 info registers vcpu 2 CPU#2 RAX=0000000000000000 RBX=ffff88802021d370 RCX=ffffc900021dfa84 RDX=0000000000000001 RSI=ffffffff8e75b240 RDI=ffff88802021d370 RBP=0000000000000000 RSP=ffffc900021dfa38 R8 =47c5e41b354ffe3f R9 =0000000000000001 R10=0000000000000001 R11=0000000000000000 R12=ffffffff8e75b240 R13=ffffc900021dfa84 R14=0000000000000001 R15=0000000000000001 RIP=ffffffff8b8f8f5f RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880976cc000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f7f355c0 CR3=0000000065dd3000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff85609b90 RDI=ffffffff9b0f07c0 RBP=ffffffff9b0f0780 RSP=ffffc900005e86f8 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3430383838666657 R12=0000000000000000 R13=0000000000000020 R14=fffffbfff361e14a R15=dffffc0000000000 RIP=ffffffff85609bb7 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880977cc000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f5485e7c CR3=0000000066336000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000