last executing test programs: 6.993771056s ago: executing program 2 (id=1030): r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000a40), 0x2, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={0xffffffffffffffff, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) write$UHID_CREATE(0xffffffffffffffff, &(0x7f0000000240)={0x0, {'syz0\x00', 'syz0\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b}}, 0x120) readv(r0, &(0x7f0000002980)=[{&(0x7f0000000700)=""/163, 0xa3}], 0x2) write$UHID_DESTROY(r0, &(0x7f0000000080), 0x4) writev(r0, &(0x7f0000000380)=[{&(0x7f0000000100)='\n\x00\x00\x00', 0x4}], 0x1) 6.052719577s ago: executing program 2 (id=1041): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x5, 0x2, 0x8, 0xc}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15) 5.985534203s ago: executing program 2 (id=1042): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x78) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0) ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246) write$binfmt_aout(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="c0210100001e"], 0x20) 5.941355505s ago: executing program 2 (id=1043): r0 = socket$packet(0x11, 0x0, 0x300) r1 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed2, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc601000127a0a000600093582c137153e37080c188009ac0f000300", 0x33fe0}], 0x1}, 0x0) setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f0000000180)=@req3={0x8000, 0x7, 0x8000, 0x100}, 0x1c) r2 = syz_usb_connect(0x0, 0x24, &(0x7f0000000300)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0) syz_usb_control_io(r2, 0x0, &(0x7f00000010c0)={0x84, &(0x7f00000000c0)=ANY=[@ANYBLOB="00000100000005"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_connect(0x3, 0x24, &(0x7f00000001c0)=ANY=[@ANYRES16=r1, @ANYRESDEC=r0], 0x0) syz_usb_control_io$hid(r2, 0x0, &(0x7f0000000640)={0x2c, 0x0, &(0x7f00000004c0)={0x0, 0xa, 0x1}, &(0x7f0000000500)={0x0, 0x8, 0x1, 0x3}, 0x0, &(0x7f0000000600)={0x20, 0x3, 0x1}}) r3 = socket$inet_sctp(0x2, 0x4, 0x84) r4 = socket$inet6_sctp(0xa, 0x5, 0x84) gettid() getsockopt$inet_sctp6_SCTP_MAX_BURST(r4, 0x84, 0xc, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r4, 0x84, 0x75, &(0x7f0000000180)={r5}, &(0x7f0000000300)=0x8) r6 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_PORT_GET(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000240)={0x10, 0x1408, 0x400, 0x101, 0xfffffffd}, 0x10}, 0x1, 0x0, 0x0, 0x4004000}, 0x0) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r3, 0x84, 0x6c, &(0x7f0000000000)={r5, 0xc9, "df894d92364b233d014020729f123f3f5069bc6f2aedb75823d5eae82408bf53bf4a9dcc35955e9fab147f2ea7a3b0cafe912931e6e7481d1431de6268f3fb60931471f7f9e4b5e2c20c099a0b04a82b203222a235eff71de70e3364fe5fa727b02db8f00f6cb349c06a0a46775fa421e9a0f14898f2a1253b25d52e4353ff1a458b9491ecc30be90249a13bdff4c79104947a7ae45e93064b40c9ae05f491e679a6e4fefd1a5eb5199e483b914ae476bed588a919bc729eaff7ccb4936267f66ded2f90d8ea7e2cf0"}, &(0x7f0000000100)=0xd1) syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="043e110b07"], 0xfc) syz_usb_connect(0x0, 0x3f, &(0x7f00000004c0)=ANY=[@ANYBLOB="12010000954c53400d051b01a46f0000000109022d00010000000009040000000202ff00052406000005240000000d2402", @ANYRESHEX=0x0], 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0) 4.075113922s ago: executing program 2 (id=1063): r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f00020000000905050200de7e001009058b1e20"], 0x0) add_key(0x0, &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) r1 = syz_open_procfs(0x0, 0x0) r2 = socket$inet6(0xa, 0x0, 0x0) socket$igmp(0x2, 0x3, 0x2) ioctl$SIOCGETSGCNT_IN6(0xffffffffffffffff, 0x5411, &(0x7f0000000040)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @empty}) setsockopt$inet6_int(r2, 0x29, 0x0, &(0x7f0000000180)=0xfffffff7, 0x4) sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) r3 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) ioctl$IOCTL_VMCI_SET_NOTIFY(r3, 0x7cb, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0xec}}, 0x20000844) bind$inet6(r2, &(0x7f0000f5dfe4)={0xa, 0x0, 0x0, @private2}, 0x1c) r5 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r5, 0x29, 0x4b, &(0x7f00000005c0)=0x200b, 0x4) ioctl$SNDCTL_DSP_POST(r1, 0x5008, 0x0) bind$inet6(r5, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c) socket$inet(0x2, 0x0, 0x0) preadv(r1, &(0x7f0000000980)=[{&(0x7f00000002c0)=""/233, 0xf2}], 0x10000000000002ea, 0x14d, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) r6 = socket(0x1, 0x2, 0x0) bind$unix(0xffffffffffffffff, &(0x7f00000001c0)=@file={0x1, './file0\x00'}, 0x6e) sendmmsg$unix(r6, 0x0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000000080)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r7 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) ioctl$FS_IOC_GETVERSION(r7, 0x40045b0a, &(0x7f0000000040)) 3.806126767s ago: executing program 1 (id=1069): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) listen(r0, 0xab6) r1 = dup(r0) ioctl$USBDEVFS_GET_CAPABILITIES(r1, 0x8004551a, 0x0) 3.757331706s ago: executing program 1 (id=1070): r0 = openat$snapshot(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) fcntl$F_SET_FILE_RW_HINT(r0, 0x3, 0x0) 3.65284835s ago: executing program 4 (id=1072): close(0xffffffffffffffff) socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x1, 0x0, 0x0) r0 = openat$random(0xffffffffffffff9c, &(0x7f0000002200), 0x0, 0x0) socket$inet6_sctp(0xa, 0x801, 0x84) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)) ioctl$sock_inet6_udp_SIOCINQ(r0, 0x541b, 0x0) syz_clone(0x40224000, 0x0, 0x1bc12708986134b, &(0x7f0000000080), &(0x7f0000001640), 0x0) 3.627922966s ago: executing program 1 (id=1073): r0 = socket$packet(0x11, 0x0, 0x300) r1 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffed2, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc601000127a0a000600093582c137153e37080c188009ac0f000300", 0x33fe0}], 0x1}, 0x0) setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f0000000180)=@req3={0x8000, 0x7, 0x8000, 0x100}, 0x1c) r2 = syz_usb_connect(0x0, 0x24, &(0x7f0000000300)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0) syz_usb_control_io(r2, 0x0, &(0x7f00000010c0)={0x84, &(0x7f00000000c0)=ANY=[@ANYBLOB="00000100000005"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_connect(0x3, 0x24, &(0x7f00000001c0)=ANY=[@ANYRES16=r1, @ANYRESDEC=r0], 0x0) syz_usb_control_io$hid(r2, 0x0, &(0x7f0000000640)={0x2c, 0x0, &(0x7f00000004c0)={0x0, 0xa, 0x1}, &(0x7f0000000500)={0x0, 0x8, 0x1, 0x3}, 0x0, &(0x7f0000000600)={0x20, 0x3, 0x1}}) r3 = socket$inet_sctp(0x2, 0x4, 0x84) r4 = socket$inet6_sctp(0xa, 0x5, 0x84) gettid() getsockopt$inet_sctp6_SCTP_MAX_BURST(r4, 0x84, 0xc, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r4, 0x84, 0x75, &(0x7f0000000180)={r5}, &(0x7f0000000300)=0x8) r6 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_PORT_GET(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000240)={0x10, 0x1408, 0x400, 0x101, 0xfffffffd}, 0x10}, 0x1, 0x0, 0x0, 0x4004000}, 0x0) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r3, 0x84, 0x6c, &(0x7f0000000000)={r5, 0xc9, "df894d92364b233d014020729f123f3f5069bc6f2aedb75823d5eae82408bf53bf4a9dcc35955e9fab147f2ea7a3b0cafe912931e6e7481d1431de6268f3fb60931471f7f9e4b5e2c20c099a0b04a82b203222a235eff71de70e3364fe5fa727b02db8f00f6cb349c06a0a46775fa421e9a0f14898f2a1253b25d52e4353ff1a458b9491ecc30be90249a13bdff4c79104947a7ae45e93064b40c9ae05f491e679a6e4fefd1a5eb5199e483b914ae476bed588a919bc729eaff7ccb4936267f66ded2f90d8ea7e2cf0"}, &(0x7f0000000100)=0xd1) syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="043e110b07"], 0xfc) syz_usb_connect(0x0, 0x3f, &(0x7f00000004c0)=ANY=[@ANYBLOB="12010000954c53400d051b01a46f0000000109022d00010000000009040000000202ff00052406000005240000000d2402", @ANYRESHEX=0x0], 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0) 2.662743818s ago: executing program 4 (id=1079): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x38, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0xc, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}]}]}, @NFT_MSG_DELFLOWTABLE={0x38, 0x16, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x4}, @NFTA_FLOWTABLE_FLAGS={0x8}]}], {0x14, 0x10}}, 0xb8}}, 0x0) 2.505824746s ago: executing program 4 (id=1084): bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00'}, 0x90) 2.368202081s ago: executing program 4 (id=1085): r0 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x3) sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x78) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0) ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246) pwritev(r1, &(0x7f0000000380)=[{&(0x7f00000010c0)="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", 0xff8}], 0x1, 0x0, 0x0) 2.315418001s ago: executing program 3 (id=1087): r0 = syz_open_procfs(0x0, &(0x7f0000000000)='pagemap\x00') close_range(r0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0) ioctl$EVIOCREVOKE(r1, 0x40044591, 0x0) ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, 0x0) 2.270755122s ago: executing program 4 (id=1088): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]}) r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) mknodat$loop(r0, &(0x7f0000001600)='./file1\x00', 0x0, 0x0) chdir(&(0x7f00000003c0)='./bus\x00') link(&(0x7f0000000000)='./file1\x00', 0x0) linkat(r0, &(0x7f0000000100)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0x0) r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents(r1, &(0x7f0000001fc0)=""/184, 0xb8) 2.209195554s ago: executing program 3 (id=1090): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x78) r1 = openat$ppp(0xffffffffffffff9c, 0x0, 0x1a01, 0x0) ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246) write$binfmt_aout(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="c0210100001e"], 0x20) 2.051965863s ago: executing program 3 (id=1092): rseq(0x0, 0x0, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xfe, 0x10000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000, 0x0, 0x6}, 0x2c) 2.047357401s ago: executing program 4 (id=1093): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacct.stat\x00', 0x26e1, 0x0) close(r0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000300)={0xffffffffffffffff}) sendmsg$nl_xfrm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[], 0x33fe0}}, 0x0) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0}}, 0x0) timer_create(0x0, &(0x7f0000000180)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=0x0) timer_settime(r2, 0x0, &(0x7f00000000c0)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0) close(r1) socket$unix(0x1, 0x1, 0x0) 1.966476997s ago: executing program 3 (id=1094): syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000180)) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() socket$netlink(0x10, 0x3, 0x0) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f0000000000), 0x664, 0x0) setxattr$incfs_id(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) semctl$GETALL(0x0, 0x0, 0xd, 0x0) shmat(0x0, &(0x7f0000714000/0x1000)=nil, 0x0) r3 = syz_open_dev$vim2m(&(0x7f0000000040), 0x7, 0x2) ioctl$vim2m_VIDIOC_CREATE_BUFS(r3, 0xc100565c, &(0x7f0000000140)={0x0, 0x40, 0x2, {0x1, @win={{}, 0x0, 0x9, 0x0, 0x0, 0x0}}}) 1.725357464s ago: executing program 0 (id=1096): bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x4, 0x8, 0x8, 0x2}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000400)='jbd2_handle_stats\x00', r1}, 0x10) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) 1.611325607s ago: executing program 1 (id=1097): r0 = socket$unix(0x1, 0x1, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000003000)=@file={0x0, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) listen(0xffffffffffffffff, 0x0) connect$unix(r0, 0x0, 0x0) dup3(0xffffffffffffffff, r0, 0x0) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmmsg$inet6(r1, 0x0, 0x0, 0x0) timer_create(0x0, &(0x7f0000000080)={0x0, 0x12}, &(0x7f0000000180)) timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000140)=0x0) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$BTRFS_IOC_SNAP_CREATE_V2(r3, 0x5450, 0x0) clock_gettime(0x0, &(0x7f0000000040)={0x0, 0x0}) timer_settime(r2, 0x1, &(0x7f0000000200)={{0x0, 0x3938700}, {r4, r5+60000000}}, 0x0) timer_settime(0x0, 0x0, &(0x7f00000000c0)={{0x0, 0x3938700}, {0x0, 0x9}}, 0x0) r6 = msgget$private(0x0, 0x0) msgctl$IPC_SET(r6, 0x1, &(0x7f0000000040)={{0x0, 0x0, 0x0, 0xffffffffffffffff, 0xee00}}) r7 = dup(0xffffffffffffffff) write$eventfd(r7, &(0x7f0000000000), 0x8) r8 = dup(r7) write$FUSE_OPEN(r8, 0x0, 0x0) msgsnd(r6, &(0x7f0000000100)=ANY=[@ANYRES32], 0x8, 0x0) 1.502739835s ago: executing program 0 (id=1098): openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000100)) ioctl$PPPIOCSACTIVE(r0, 0x40107446, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6}]}) write$ppp(r0, &(0x7f0000000140)="1627", 0x2) sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x0) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0xf, &(0x7f0000000900)=@ringbuf={{0x18, 0x7}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0x31}}}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) socket$inet(0x2, 0x0, 0x84) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x6, 0x504}, 0x48) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000200), 0xa7c, r2}, 0x38) r3 = socket$packet(0x11, 0x3, 0x300) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) ioctl$FS_IOC_SETVERSION(0xffffffffffffffff, 0x40087602, 0x0) syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff) sendmsg$sock(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)="869b132bd023614380db065e0361c17ea4a123b3bb9e097016930f86e5770aad078c4c277a1395029b04e6e395582175a5a51337a9cca6caa5dbca7d39f50d3c0953ced75eb50ab4bd376a823a25e25fedb026cc0bfe050a853add29e084638e80ea15d545bc95fa88627d7655fabad382915947827999877ccda8219594061cf48fe5dab16ef146649e7e028814bfaf30cab93eb504eed401a2fb150716a6846135fbe3ed3b14696dfa17f7f4e2c25287e53088614a50682c0c2fc16acefd8d9efd4fda8c9e43260fc9fdfb1c88e806ed60f2ada4838b9121780a8f84cdbf51e94b168394c9548cf4", 0xe9}, {0x0}], 0x2}, 0x0) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFQNL_MSG_CONFIG(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000000203010400000000ffffffff000000000800010001"], 0x28}}, 0x0) sendmsg$NFQNL_MSG_CONFIG(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x2, 0x3, 0x201, 0x0, 0x0, {0x0, 0x0, 0x10}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1}}]}, 0x1c}}, 0x0) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x58, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x2c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth0_to_hsr\x00'}]}]}]}, @NFT_MSG_DELFLOWTABLE={0x50, 0x16, 0xa, 0x101, 0xb00, 0x0, {}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x1c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth0_to_hsr\x00'}]}]}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}]}], {0x14, 0x10}}, 0xf0}}, 0x0) sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000100)=ANY=[@ANYBLOB="98030000", @ANYRES16=r5, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r6, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c0900005603330080b0c000ffffffffffff080211000001"], 0x398}}, 0x0) r9 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r9, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c0000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b8005002b000300"/36], 0x3c}, 0x1, 0xffffffea}, 0x0) 1.403115492s ago: executing program 2 (id=1099): r0 = epoll_create1(0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) r2 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x20000014}) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = getpid() r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='tlb_flush\x00', r4}, 0x10) process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000000)={0xa0000001}) ppoll(&(0x7f0000000200)=[{r2, 0x1}], 0x1, 0x0, 0x0, 0x3) r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6}]}) read(0xffffffffffffffff, &(0x7f0000000000)=""/9, 0x67) close_range(r5, 0xffffffffffffffff, 0x0) 992.027321ms ago: executing program 3 (id=1100): bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={0x0, 0x0, 0x32}, 0x20) r0 = socket$kcm(0x2, 0x5, 0x84) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) close(r2) recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x0) setsockopt$sock_attach_bpf(r0, 0x84, 0x71, &(0x7f0000000000)=r3, 0x8) 904.12987ms ago: executing program 0 (id=1101): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x2a, &(0x7f0000000240)={0x3, {{0x2, 0x0, @multicast2}}}, 0x88) setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f0000000dc0)=ANY=[@ANYBLOB="020000000000000002000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000100000002"], 0x110) setsockopt$inet_group_source_req(r0, 0x0, 0x2b, &(0x7f0000000040)={0x2, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, 0x108) 811.995671ms ago: executing program 3 (id=1102): openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000100)) ioctl$PPPIOCSACTIVE(r0, 0x40107446, &(0x7f0000000080)={0x0, 0x0}) write$ppp(r0, &(0x7f0000000140)="1627", 0x2) sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x0) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0xf, &(0x7f0000000900)=@ringbuf={{0x18, 0x7}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0x31}}}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) socket$inet(0x2, 0x0, 0x84) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x6, 0x504}, 0x48) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000200), 0xa7c, r2}, 0x38) r3 = socket$packet(0x11, 0x3, 0x300) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) ioctl$FS_IOC_SETVERSION(0xffffffffffffffff, 0x40087602, 0x0) syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff) sendmsg$sock(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)="869b132bd023614380db065e0361c17ea4a123b3bb9e097016930f86e5770aad078c4c277a1395029b04e6e395582175a5a51337a9cca6caa5dbca7d39f50d3c0953ced75eb50ab4bd376a823a25e25fedb026cc0bfe050a853add29e084638e80ea15d545bc95fa88627d7655fabad382915947827999877ccda8219594061cf48fe5dab16ef146649e7e028814bfaf30cab93eb504eed401a2fb150716a6846135fbe3ed3b14696dfa17f7f4e2c25287e53088614a50682c0c2fc16acefd8d9efd4fda8c9e43260fc9fdfb1c88e806ed60f2ada4838b9121780a8f84cdbf51e94b168394c9548cf4", 0xe9}, {0x0}], 0x2}, 0x0) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFQNL_MSG_CONFIG(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000000203010400000000ff"], 0x28}}, 0x0) sendmsg$NFQNL_MSG_CONFIG(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x2, 0x3, 0x201, 0x0, 0x0, {0x0, 0x0, 0x10}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1}}]}, 0x1c}}, 0x0) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x58, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x2c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth0_to_hsr\x00'}]}]}]}, @NFT_MSG_DELFLOWTABLE={0x50, 0x16, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x1c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth0_to_hsr\x00'}]}]}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}]}], {0x14, 0x10}}, 0xf0}}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x0, 0x2c, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000003c06000018110000", @ANYRES32=r2, @ANYRES32, @ANYBLOB="000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYBLOB="0000000000000000b7020000000000008500000086000000b7080000000000007b8af8ff0000", @ANYRES32, @ANYBLOB], 0x0}, 0x90) sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000100)=ANY=[@ANYBLOB="98030000", @ANYRES16=r5, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r6, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c0900005603330080b0c000ffffffffffff080211000001"], 0x398}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c0000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b8005002b000300"/36], 0x3c}, 0x1, 0xffffffea}, 0x0) 764.174821ms ago: executing program 0 (id=1103): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x0, 0x8, 0xb}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x14, 0x0, 0x0, 0x0, 0x0, {0x0, 0x7c}}, 0x14}}, 0x0) 628.903558ms ago: executing program 1 (id=1104): rseq(0x0, 0x0, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xfe, 0x10000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000, 0x0, 0x6}, 0x2c) 614.951263ms ago: executing program 0 (id=1105): r0 = timerfd_create(0x0, 0x0) readv(r0, &(0x7f0000000640)=[{&(0x7f0000000140)=""/168, 0xa8}], 0x1) timerfd_settime(r0, 0x3, &(0x7f0000003a80)={{0x0, 0x989680}}, 0x0) clock_adjtime(0x0, &(0x7f0000000040)={0xd54, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}) 359.956394ms ago: executing program 1 (id=1106): syz_emit_ethernet(0x3e, &(0x7f0000000000)={@local, @empty, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "fca33f", 0x8, 0x0, 0x0, @dev, @local, {[@routing={0x0, 0x0, 0x0, 0x5}]}}}}}, 0x0) r0 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TCXONC(r1, 0x540a, 0x0) ioctl$TCSETA(r1, 0x5406, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x8007, 0x0, "5f730000a9003f00"}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) memfd_secret(0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_TID_CONFIG(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)={0x20, r3, 0x1, 0x0, 0x0, {{0x15}, {@val={0x8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x4, 0x146}]}, 0x20}}, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000240)={0x3, &(0x7f0000000040)=[{0x35, 0x0, 0x0, 0xffffffff}, {0x64}, {0x6}]}) socket$nl_route(0x10, 0x3, 0x0) ioctl$TIOCSISO7816(r1, 0xc0285443, &(0x7f0000000080)={0x0, 0x0, 0x2, 0x401, 0x200}) ioctl$TIOCL_GETMOUSEREPORTING(r1, 0x5412, &(0x7f00000006c0)=0x1a) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4) r4 = fsopen(&(0x7f0000000000)='nfs\x00', 0x0) r5 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000000)={'vxcan0\x00', 0x0}) connect$can_bcm(r5, &(0x7f0000000100)={0x1d, r6}, 0x10) sendmsg$can_bcm(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002180)=ANY=[], 0x48}}, 0x0) fsconfig$FSCONFIG_SET_PATH_EMPTY(r4, 0x4, &(0x7f00000000c0)='acl\x00', &(0x7f0000000080)='./file0\x00', 0xffffffffffffff9c) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0xf, &(0x7f0000000340)=0xfffffffffffffff9, 0x4) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000100)=[@in6={0xa, 0x0, 0x0, @loopback}, @in6={0xa, 0x4e21, 0x0, @private0}, @in6={0xa, 0x0, 0x0, @private1}, @in6={0xa, 0x0, 0xe83, @private1}], 0x70) r7 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r7, &(0x7f0000000600)={0x0, 0xfffffffe, &(0x7f0000000300)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x3, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0) 0s ago: executing program 0 (id=1107): r0 = socket$inet(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000340)={'gre0\x00', &(0x7f0000000480)={'erspan0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @dev}}}}) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.53' (ED25519) to the list of known hosts. [ 62.477054][ T5071] cgroup: Unknown subsys name 'net' [ 62.647086][ T5071] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 64.313569][ T5071] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 65.026316][ T53] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 65.039427][ T5089] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 65.048019][ T5089] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 65.056247][ T5089] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 65.064857][ T5089] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 65.072776][ T5089] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 65.080448][ T5090] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 65.093209][ T4477] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 65.102616][ T5093] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 65.111350][ T5093] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 65.124543][ T4477] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 65.131999][ T5097] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 65.132462][ T4477] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 65.147819][ T4477] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 65.148835][ T5099] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 65.155058][ T5098] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 65.170430][ T5099] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 65.174199][ T4477] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 65.187023][ T5098] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 65.187075][ T5099] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 65.194535][ T5098] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 65.208955][ T5098] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 65.217070][ T5098] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 65.217583][ T5099] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 65.231432][ T5099] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 65.240026][ T4477] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 65.249650][ T5098] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 65.263318][ T53] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 65.273313][ T53] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 65.281469][ T53] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 65.924591][ T5083] chnl_net:caif_netlink_parms(): no params data found [ 65.940622][ T5081] chnl_net:caif_netlink_parms(): no params data found [ 65.980703][ T5086] chnl_net:caif_netlink_parms(): no params data found [ 65.999459][ T5087] chnl_net:caif_netlink_parms(): no params data found [ 66.021779][ T5084] chnl_net:caif_netlink_parms(): no params data found [ 66.318817][ T5083] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.325989][ T5083] bridge0: port 1(bridge_slave_0) entered disabled state [ 66.334732][ T5083] bridge_slave_0: entered allmulticast mode [ 66.342155][ T5083] bridge_slave_0: entered promiscuous mode [ 66.363498][ T5081] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.370940][ T5081] bridge0: port 1(bridge_slave_0) entered disabled state [ 66.378705][ T5081] bridge_slave_0: entered allmulticast mode [ 66.385734][ T5081] bridge_slave_0: entered promiscuous mode [ 66.393629][ T5086] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.401256][ T5086] bridge0: port 1(bridge_slave_0) entered disabled state [ 66.408900][ T5086] bridge_slave_0: entered allmulticast mode [ 66.416069][ T5086] bridge_slave_0: entered promiscuous mode [ 66.424219][ T5086] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.431519][ T5086] bridge0: port 2(bridge_slave_1) entered disabled state [ 66.439136][ T5086] bridge_slave_1: entered allmulticast mode [ 66.446080][ T5086] bridge_slave_1: entered promiscuous mode [ 66.467824][ T5083] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.475001][ T5083] bridge0: port 2(bridge_slave_1) entered disabled state [ 66.483152][ T5083] bridge_slave_1: entered allmulticast mode [ 66.490588][ T5083] bridge_slave_1: entered promiscuous mode [ 66.511514][ T5087] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.518954][ T5087] bridge0: port 1(bridge_slave_0) entered disabled state [ 66.526129][ T5087] bridge_slave_0: entered allmulticast mode [ 66.534616][ T5087] bridge_slave_0: entered promiscuous mode [ 66.542229][ T5081] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.549514][ T5081] bridge0: port 2(bridge_slave_1) entered disabled state [ 66.556895][ T5081] bridge_slave_1: entered allmulticast mode [ 66.563981][ T5081] bridge_slave_1: entered promiscuous mode [ 66.583420][ T5084] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.590640][ T5084] bridge0: port 1(bridge_slave_0) entered disabled state [ 66.599012][ T5084] bridge_slave_0: entered allmulticast mode [ 66.606028][ T5084] bridge_slave_0: entered promiscuous mode [ 66.632376][ T5083] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 66.642344][ T5087] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.649908][ T5087] bridge0: port 2(bridge_slave_1) entered disabled state [ 66.657383][ T5087] bridge_slave_1: entered allmulticast mode [ 66.664407][ T5087] bridge_slave_1: entered promiscuous mode [ 66.696603][ T5084] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.703785][ T5084] bridge0: port 2(bridge_slave_1) entered disabled state [ 66.711527][ T5084] bridge_slave_1: entered allmulticast mode [ 66.719319][ T5084] bridge_slave_1: entered promiscuous mode [ 66.729647][ T5083] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 66.767985][ T5081] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 66.780554][ T5086] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 66.793257][ T5086] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 66.845584][ T5081] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 66.908625][ T5087] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 66.922345][ T5087] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 66.946084][ T5086] team0: Port device team_slave_0 added [ 66.958369][ T5084] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 66.970340][ T5083] team0: Port device team_slave_0 added [ 67.005960][ T5086] team0: Port device team_slave_1 added [ 67.014440][ T5084] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 67.038332][ T5083] team0: Port device team_slave_1 added [ 67.060541][ T5081] team0: Port device team_slave_0 added [ 67.070533][ T5081] team0: Port device team_slave_1 added [ 67.116703][ T5084] team0: Port device team_slave_0 added [ 67.138945][ T5087] team0: Port device team_slave_0 added [ 67.157822][ T5090] Bluetooth: hci0: command tx timeout [ 67.173692][ T5086] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 67.180711][ T5086] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 67.207520][ T5086] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 67.222136][ T5084] team0: Port device team_slave_1 added [ 67.236706][ T5090] Bluetooth: hci4: command tx timeout [ 67.249655][ T5087] team0: Port device team_slave_1 added [ 67.272147][ T5086] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 67.279666][ T5086] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 67.306945][ T5086] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 67.317827][ T5090] Bluetooth: hci3: command tx timeout [ 67.323651][ T5090] Bluetooth: hci2: command tx timeout [ 67.329830][ T53] Bluetooth: hci1: command tx timeout [ 67.342382][ T5083] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 67.349927][ T5083] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 67.376655][ T5083] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 67.412709][ T5081] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 67.420108][ T5081] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 67.446130][ T5081] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 67.460193][ T5081] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 67.467241][ T5081] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 67.493182][ T5081] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 67.522333][ T5084] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 67.529680][ T5084] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 67.555640][ T5084] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 67.567626][ T5083] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 67.574693][ T5083] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 67.601448][ T5083] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 67.613698][ T5087] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 67.620767][ T5087] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 67.647328][ T5087] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 67.659979][ T5087] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 67.667083][ T5087] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 67.694258][ T5087] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 67.726288][ T5084] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 67.733408][ T5084] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 67.759519][ T5084] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 67.851136][ T5087] hsr_slave_0: entered promiscuous mode [ 67.861095][ T5087] hsr_slave_1: entered promiscuous mode [ 67.885553][ T5084] hsr_slave_0: entered promiscuous mode [ 67.892782][ T5084] hsr_slave_1: entered promiscuous mode [ 67.899363][ T5084] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 67.907885][ T5084] Cannot create hsr debugfs directory [ 67.918067][ T5086] hsr_slave_0: entered promiscuous mode [ 67.924757][ T5086] hsr_slave_1: entered promiscuous mode [ 67.934655][ T5086] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 67.942327][ T5086] Cannot create hsr debugfs directory [ 68.025004][ T5081] hsr_slave_0: entered promiscuous mode [ 68.032676][ T5081] hsr_slave_1: entered promiscuous mode [ 68.039074][ T5081] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 68.047202][ T5081] Cannot create hsr debugfs directory [ 68.058447][ T5083] hsr_slave_0: entered promiscuous mode [ 68.065355][ T5083] hsr_slave_1: entered promiscuous mode [ 68.071902][ T5083] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 68.079920][ T5083] Cannot create hsr debugfs directory [ 68.638860][ T5086] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 68.664279][ T5086] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 68.676359][ T5086] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 68.692184][ T5086] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 68.773423][ T5087] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 68.788756][ T5087] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 68.800104][ T5087] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 68.826345][ T5087] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 68.898976][ T5081] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 68.913133][ T5081] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 68.930727][ T5081] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 68.944831][ T5081] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 69.077640][ T5084] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 69.089370][ T5084] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 69.101251][ T5084] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 69.119367][ T5086] 8021q: adding VLAN 0 to HW filter on device bond0 [ 69.137305][ T5084] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 69.178049][ T5086] 8021q: adding VLAN 0 to HW filter on device team0 [ 69.237008][ T5090] Bluetooth: hci0: command tx timeout [ 69.252511][ T5083] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 69.288016][ T5083] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 69.305235][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.312767][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 69.328408][ T5090] Bluetooth: hci4: command tx timeout [ 69.334116][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.341257][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 69.357349][ T5083] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 69.367767][ T5083] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 69.408006][ T5085] Bluetooth: hci1: command tx timeout [ 69.413582][ T5085] Bluetooth: hci3: command tx timeout [ 69.420665][ T5090] Bluetooth: hci2: command tx timeout [ 69.482871][ T5081] 8021q: adding VLAN 0 to HW filter on device bond0 [ 69.537545][ T5087] 8021q: adding VLAN 0 to HW filter on device bond0 [ 69.656298][ T5081] 8021q: adding VLAN 0 to HW filter on device team0 [ 69.684617][ T5087] 8021q: adding VLAN 0 to HW filter on device team0 [ 69.710654][ T5134] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.718065][ T5134] bridge0: port 1(bridge_slave_0) entered forwarding state [ 69.738739][ T5134] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.746548][ T5134] bridge0: port 1(bridge_slave_0) entered forwarding state [ 69.821368][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.828555][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 69.841280][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.848454][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 69.951109][ T5083] 8021q: adding VLAN 0 to HW filter on device bond0 [ 69.972294][ T5084] 8021q: adding VLAN 0 to HW filter on device bond0 [ 70.003535][ T5086] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 70.024794][ T5084] 8021q: adding VLAN 0 to HW filter on device team0 [ 70.091317][ T5083] 8021q: adding VLAN 0 to HW filter on device team0 [ 70.120344][ T5134] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.127541][ T5134] bridge0: port 1(bridge_slave_0) entered forwarding state [ 70.205895][ T5133] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.213154][ T5133] bridge0: port 1(bridge_slave_0) entered forwarding state [ 70.230323][ T5133] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.237544][ T5133] bridge0: port 2(bridge_slave_1) entered forwarding state [ 70.250051][ T5133] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.257261][ T5133] bridge0: port 2(bridge_slave_1) entered forwarding state [ 70.316056][ T5086] veth0_vlan: entered promiscuous mode [ 70.348170][ T5086] veth1_vlan: entered promiscuous mode [ 70.412337][ T5084] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 70.426092][ T5084] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 70.449914][ T5087] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 70.555015][ T5086] veth0_macvtap: entered promiscuous mode [ 70.596194][ T5081] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 70.617958][ T5086] veth1_macvtap: entered promiscuous mode [ 70.729728][ T5086] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 70.760136][ T5087] veth0_vlan: entered promiscuous mode [ 70.768458][ T5086] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 70.784172][ T5087] veth1_vlan: entered promiscuous mode [ 70.833766][ T5086] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.851696][ T5086] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.876599][ T5086] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.885554][ T5086] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.972526][ T5084] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 71.021693][ T5083] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 71.083081][ T5087] veth0_macvtap: entered promiscuous mode [ 71.125135][ T5087] veth1_macvtap: entered promiscuous mode [ 71.180711][ T2899] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 71.189266][ T2899] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 71.232928][ T5084] veth0_vlan: entered promiscuous mode [ 71.263933][ T5087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 71.276040][ T5087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.288227][ T5087] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 71.304656][ T5084] veth1_vlan: entered promiscuous mode [ 71.306570][ T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 71.329437][ T5085] Bluetooth: hci0: command tx timeout [ 71.345671][ T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 71.347854][ T5087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 71.364470][ T5087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.376323][ T5087] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 71.397146][ T5085] Bluetooth: hci4: command tx timeout [ 71.433342][ T5087] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.462741][ T5087] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.472205][ T5087] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.481140][ T5085] Bluetooth: hci3: command tx timeout [ 71.486673][ T5085] Bluetooth: hci2: command tx timeout [ 71.487022][ T5090] Bluetooth: hci1: command tx timeout [ 71.492354][ T5087] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.530321][ T5083] veth0_vlan: entered promiscuous mode [ 71.544698][ T5083] veth1_vlan: entered promiscuous mode [ 71.581911][ T5081] veth0_vlan: entered promiscuous mode [ 71.644074][ T1248] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.654733][ T1248] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.668467][ T5081] veth1_vlan: entered promiscuous mode [ 71.751756][ T2389] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 71.760557][ T2389] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 71.814435][ T5166] syzkaller0: entered promiscuous mode [ 71.820657][ T5166] syzkaller0: entered allmulticast mode [ 71.831290][ T5083] veth0_macvtap: entered promiscuous mode [ 71.842889][ T5083] veth1_macvtap: entered promiscuous mode [ 71.860669][ T5084] veth0_macvtap: entered promiscuous mode [ 72.670027][ T5084] veth1_macvtap: entered promiscuous mode [ 72.705215][ T5084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 72.715956][ T5084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.725912][ T5084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 72.738473][ T5084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.751136][ T5084] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 72.771910][ T5083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 72.796674][ T5083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.814390][ T5083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 72.825111][ T5083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.841124][ T5083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 72.852038][ T5083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.864071][ T5083] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 72.893665][ T5084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 72.894088][ T2423] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.911571][ T5084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.928065][ T5084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 72.936695][ T2423] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.938898][ T5084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.974971][ T5084] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 72.994619][ T5083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 73.007135][ T5083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.018893][ T5083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 73.032159][ T5083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.042076][ T5083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 73.052768][ T5083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.064572][ T5083] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 73.094888][ T5084] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.104007][ T5084] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.113910][ T5084] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.123074][ T5084] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.143526][ T5081] veth0_macvtap: entered promiscuous mode [ 73.157214][ T5083] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.166079][ T5083] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.176607][ T5083] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.186033][ T5083] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.208755][ T5081] veth1_macvtap: entered promiscuous mode [ 73.339594][ T5081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.362189][ T5081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.388425][ T5081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.409548][ T5090] Bluetooth: hci0: command tx timeout [ 73.413272][ T5081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.426276][ T5081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.443695][ T5081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.454049][ T5081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.477650][ T5090] Bluetooth: hci4: command tx timeout [ 73.488021][ T5081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.527343][ T29] audit: type=1326 audit(1719581822.496:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5178 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce65575b29 code=0x7ffc0000 [ 73.538443][ T5081] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 73.557326][ T53] Bluetooth: hci3: command tx timeout [ 73.562039][ T5085] Bluetooth: hci1: command tx timeout [ 73.563937][ T5090] Bluetooth: hci2: command tx timeout [ 73.580318][ T5081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 73.600902][ T29] audit: type=1326 audit(1719581822.506:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5178 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce65575b29 code=0x7ffc0000 [ 73.615825][ T5081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.635072][ T5081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 73.646324][ T5081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.657048][ T5081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 73.666663][ T29] audit: type=1326 audit(1719581822.546:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5178 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=111 compat=0 ip=0x7fce65575b29 code=0x7ffc0000 [ 73.667723][ T5081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.700456][ T5081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 73.714153][ T5081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.727365][ T5081] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 73.744553][ T29] audit: type=1326 audit(1719581822.546:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5178 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce65575b29 code=0x7ffc0000 [ 73.796137][ T5081] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.833416][ T5081] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.843937][ T29] audit: type=1326 audit(1719581822.546:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5178 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7fce65575b29 code=0x7ffc0000 [ 73.872287][ T5081] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.883561][ T5081] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.894852][ T29] audit: type=1326 audit(1719581822.546:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5178 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce65575b29 code=0x7ffc0000 [ 73.917222][ T29] audit: type=1326 audit(1719581822.546:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5178 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7fce65575b29 code=0x7ffc0000 [ 73.965266][ T29] audit: type=1326 audit(1719581822.546:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5178 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce65575b29 code=0x7ffc0000 [ 74.024893][ T29] audit: type=1326 audit(1719581822.576:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5178 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=140 compat=0 ip=0x7fce65575b29 code=0x7ffc0000 [ 74.078128][ T2899] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.086018][ T2899] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.106133][ T29] audit: type=1326 audit(1719581822.576:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5178 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce65575b29 code=0x7ffc0000 [ 74.212635][ T2423] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.235284][ T2423] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.423363][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.461107][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.776949][ T2389] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.953021][ T2389] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.097901][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.128721][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.237579][ T8] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 75.252162][ T2389] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.324475][ T2389] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.447023][ T8] usb 1-1: Using ep0 maxpacket: 16 [ 75.497171][ T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 75.543188][ T8] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 75.586132][ T8] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 75.609848][ T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 75.688575][ T8] usb 1-1: config 0 descriptor?? [ 75.823822][ T5207] autofs: Unknown parameter '0x0000000000000000' [ 76.145909][ T5218] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 76.178231][ T8] microsoft 0003:045E:07DA.0001: No inputs registered, leaving [ 76.221431][ T8] microsoft 0003:045E:07DA.0001: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0 [ 76.281053][ T8] microsoft 0003:045E:07DA.0001: no inputs found [ 76.297184][ T8] microsoft 0003:045E:07DA.0001: could not initialize ff, continuing anyway [ 76.576275][ T8] usb 1-1: USB disconnect, device number 2 [ 76.830276][ T5241] autofs: Unknown parameter '0x0000000000000000' [ 77.163133][ T5246] netlink: 12 bytes leftover after parsing attributes in process `syz.4.33'. [ 77.381536][ T5259] netlink: 'syz.0.37': attribute type 4 has an invalid length. [ 77.665521][ T5270] autofs: Unknown parameter '0x0000000000000000' [ 78.206637][ T5137] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 78.410291][ T5137] usb 1-1: Using ep0 maxpacket: 16 [ 78.452371][ T5137] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 78.468845][ T5292] netlink: 20 bytes leftover after parsing attributes in process `syz.4.53'. [ 78.548694][ T29] kauditd_printk_skb: 40 callbacks suppressed [ 78.548714][ T29] audit: type=1800 audit(1719581827.526:52): pid=5292 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.4.53" name="file0" dev="sda1" ino=1971 res=0 errno=0 [ 78.595089][ T5137] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 78.976559][ T5137] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 78.985753][ T5137] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 79.000049][ T5137] usb 1-1: config 0 descriptor?? [ 79.255084][ T5317] fuse: Unknown parameter '‹' [ 79.374592][ T5321] xt_addrtype: input interface limitation not valid in POSTROUTING and OUTPUT [ 79.429946][ T5137] microsoft 0003:045E:07DA.0002: No inputs registered, leaving [ 79.460606][ T5137] microsoft 0003:045E:07DA.0002: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0 [ 79.486680][ T5137] microsoft 0003:045E:07DA.0002: no inputs found [ 79.503336][ T5137] microsoft 0003:045E:07DA.0002: could not initialize ff, continuing anyway [ 79.643712][ T29] audit: type=1326 audit(1719581828.616:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5326 comm="syz.2.67" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce65575b29 code=0x7ffc0000 [ 79.675064][ T29] audit: type=1326 audit(1719581828.616:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5326 comm="syz.2.67" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce65575b29 code=0x7ffc0000 [ 79.710736][ T29] audit: type=1326 audit(1719581828.686:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5326 comm="syz.2.67" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce65575b29 code=0x7ffc0000 [ 79.774395][ T29] audit: type=1326 audit(1719581828.686:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5326 comm="syz.2.67" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce65575b29 code=0x7ffc0000 [ 79.802310][ T5137] usb 1-1: USB disconnect, device number 3 [ 79.856631][ T29] audit: type=1326 audit(1719581828.686:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5326 comm="syz.2.67" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce65575b29 code=0x7ffc0000 [ 79.910425][ T29] audit: type=1326 audit(1719581828.706:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5326 comm="syz.2.67" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce65575b29 code=0x7ffc0000 [ 79.948290][ T29] audit: type=1326 audit(1719581828.706:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5326 comm="syz.2.67" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce65575b29 code=0x7ffc0000 [ 79.976337][ T29] audit: type=1326 audit(1719581828.716:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5326 comm="syz.2.67" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fce6556cba7 code=0x7ffc0000 [ 80.048739][ T29] audit: type=1326 audit(1719581828.716:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5326 comm="syz.2.67" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fce65511559 code=0x7ffc0000 [ 80.772873][ T5361] Zero length message leads to an empty skb [ 81.135803][ T5376] netlink: 'syz.3.84': attribute type 10 has an invalid length. [ 81.201262][ T5376] team0: Failed to send options change via netlink (err -105) [ 81.212092][ T5376] team0: Port device netdevsim0 added [ 81.220822][ T5137] team0: Failed to send port change of device netdevsim0 via netlink (err -105) [ 81.624269][ T5388] netlink: 4 bytes leftover after parsing attributes in process `syz.4.92'. [ 81.859096][ T5397] netlink: 'syz.0.96': attribute type 4 has an invalid length. [ 82.135937][ T5406] fuse: Bad value for 'user_id' [ 82.246125][ T5412] : renamed from bond0 (while UP) [ 83.698946][ T5436] netlink: 4 bytes leftover after parsing attributes in process `syz.2.114'. [ 83.735052][ T5436] team0: entered promiscuous mode [ 83.765547][ T5436] team_slave_0: entered promiscuous mode [ 83.780374][ T5436] team_slave_1: entered promiscuous mode [ 83.834548][ T5436] team_slave_0: entered allmulticast mode [ 83.922845][ T5436] team0: Port device team_slave_0 removed [ 83.980754][ T5434] team0: left promiscuous mode [ 83.985940][ T5434] team_slave_1: left promiscuous mode [ 84.193321][ T5448] : renamed from bond0 (while UP) [ 84.245709][ T29] kauditd_printk_skb: 72 callbacks suppressed [ 84.245727][ T29] audit: type=1326 audit(1719581833.216:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5449 comm="syz.3.119" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3e3bf75b29 code=0x0 [ 84.335773][ T5452] netlink: 'syz.3.119': attribute type 10 has an invalid length. [ 84.520216][ T5460] netlink: 12 bytes leftover after parsing attributes in process `syz.4.121'. [ 84.544895][ T5460] netlink: 'syz.4.121': attribute type 7 has an invalid length. [ 85.025954][ T5474] netlink: 4 bytes leftover after parsing attributes in process `syz.0.129'. [ 85.043459][ T5474] team0: entered promiscuous mode [ 85.050886][ T5474] team_slave_0: entered promiscuous mode [ 85.066731][ T5474] team_slave_1: entered promiscuous mode [ 85.079371][ T5474] team_slave_0: entered allmulticast mode [ 85.110000][ T5474] team0: Port device team_slave_0 removed [ 85.129670][ T5473] team0: left promiscuous mode [ 85.134588][ T5473] team_slave_1: left promiscuous mode [ 85.502239][ T5492] IPv6: NLM_F_REPLACE set, but no existing node found! [ 85.566528][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 85.575709][ T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!! [ 85.584358][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 85.893181][ T5501] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 86.372744][ T29] audit: type=1326 audit(1719581835.346:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5508 comm="syz.4.146" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe355b75b29 code=0x0 [ 86.472156][ T5514] netlink: 4 bytes leftover after parsing attributes in process `syz.3.147'. [ 86.511089][ T5514] team0: entered promiscuous mode [ 86.520672][ T5514] team_slave_0: entered promiscuous mode [ 86.533931][ T5514] team_slave_1: entered promiscuous mode [ 86.547929][ T5514] netdevsim netdevsim3 netdevsim0: entered promiscuous mode [ 86.578265][ T5514] team_slave_0: entered allmulticast mode [ 86.648683][ T5514] team0: Port device team_slave_0 removed [ 86.666879][ T5085] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 86.679134][ T5512] team0: left promiscuous mode [ 86.683925][ T5085] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 86.697166][ T5085] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 86.708727][ T5519] overlayfs: failed to resolve './file1': -2 [ 86.713967][ T5085] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 86.715009][ T5512] team_slave_1: left promiscuous mode [ 86.733950][ T5085] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 86.741572][ T5085] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 86.771877][ T5512] netdevsim netdevsim3 netdevsim0: left promiscuous mode [ 87.012142][ T58] cfg80211: failed to load regulatory.db [ 87.280292][ T5535] netlink: 40 bytes leftover after parsing attributes in process `syz.3.153'. [ 87.501761][ T5516] chnl_net:caif_netlink_parms(): no params data found [ 87.586294][ T5544] overlayfs: failed to resolve './file0': -2 [ 87.816282][ T5516] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.835781][ T5516] bridge0: port 1(bridge_slave_0) entered disabled state [ 87.842631][ T5561] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 87.848290][ T5516] bridge_slave_0: entered allmulticast mode [ 87.866133][ T5516] bridge_slave_0: entered promiscuous mode [ 87.876179][ T5516] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.891821][ T5516] bridge0: port 2(bridge_slave_1) entered disabled state [ 87.899791][ T5516] bridge_slave_1: entered allmulticast mode [ 87.910106][ T5516] bridge_slave_1: entered promiscuous mode [ 88.024338][ T5516] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 88.051841][ T5516] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 88.160655][ T5516] team0: Port device team_slave_0 added [ 88.188909][ T5516] team0: Port device team_slave_1 added [ 88.413183][ T5516] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 88.467753][ T5516] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 88.516541][ T5516] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 88.532382][ T5516] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 88.542102][ T5516] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 88.596942][ T5516] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 88.837600][ T5090] Bluetooth: hci5: command tx timeout [ 89.476257][ T5516] hsr_slave_0: entered promiscuous mode [ 89.554045][ T5516] hsr_slave_1: entered promiscuous mode [ 89.613758][ T5516] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 89.638862][ T5516] Cannot create hsr debugfs directory [ 89.980293][ T5516] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 90.019116][ T5607] sctp: [Deprecated]: syz.2.185 (pid 5607) Use of struct sctp_assoc_value in delayed_ack socket option. [ 90.019116][ T5607] Use struct sctp_sack_info instead [ 90.108988][ T29] audit: type=1326 audit(1719581839.086:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5610 comm="syz.3.183" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3e3bf75b29 code=0x0 [ 90.134781][ T5516] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 90.222239][ T5614] netlink: 'syz.3.183': attribute type 10 has an invalid length. [ 90.357620][ T5516] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 90.692277][ T5516] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 90.916608][ T5090] Bluetooth: hci5: command tx timeout [ 91.158237][ T5628] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 91.196911][ T0] NOHZ tick-stop error: local softirq work is pending, handler #300!!! [ 91.230651][ T5632] netlink: 4 bytes leftover after parsing attributes in process `syz.2.194'. [ 91.386891][ T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!! [ 91.418448][ T5639] sctp: [Deprecated]: syz.3.196 (pid 5639) Use of struct sctp_assoc_value in delayed_ack socket option. [ 91.418448][ T5639] Use struct sctp_sack_info instead [ 91.493711][ T5516] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 91.525039][ T5516] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 91.563061][ T5516] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 91.599452][ T5645] netlink: 12 bytes leftover after parsing attributes in process `syz.3.199'. [ 91.610116][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 91.610665][ T5516] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 91.873270][ T29] audit: type=1326 audit(1719581840.846:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5643 comm="syz.2.198" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fce65575b29 code=0x0 [ 91.912385][ T5516] 8021q: adding VLAN 0 to HW filter on device bond0 [ 91.987851][ T5516] 8021q: adding VLAN 0 to HW filter on device team0 [ 92.042208][ T8] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.049363][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state [ 92.090297][ T8] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.097588][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state [ 92.272050][ T29] audit: type=1326 audit(1719581841.246:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5653 comm="syz.4.202" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe355b75b29 code=0x0 [ 92.359708][ T5516] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 92.390785][ T5659] netlink: 'syz.4.202': attribute type 10 has an invalid length. [ 92.567201][ T5659] team0: Failed to send options change via netlink (err -105) [ 92.580413][ T5659] team0: Port device netdevsim0 added [ 92.663614][ T8] team0: Failed to send port change of device netdevsim0 via netlink (err -105) [ 92.966771][ T35] Ignoring NSS change in VHT Operating Mode Notification from 08:02:11:00:00:00 with invalid nss 2 [ 92.996568][ T5090] Bluetooth: hci5: command tx timeout [ 93.092502][ T5516] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 93.115206][ T5679] sctp: [Deprecated]: syz.4.208 (pid 5679) Use of struct sctp_assoc_value in delayed_ack socket option. [ 93.115206][ T5679] Use struct sctp_sack_info instead [ 93.199357][ T5516] veth0_vlan: entered promiscuous mode [ 93.254368][ T5516] veth1_vlan: entered promiscuous mode [ 93.318396][ T5682] netlink: 12 bytes leftover after parsing attributes in process `syz.2.209'. [ 93.428873][ T5516] veth0_macvtap: entered promiscuous mode [ 93.460496][ T5516] veth1_macvtap: entered promiscuous mode [ 93.538794][ T5516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 93.576230][ T5516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.597677][ T5516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 93.597701][ T5516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.597713][ T5516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 93.597728][ T5516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.597740][ T5516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 93.597755][ T5516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.597765][ T5516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 93.597779][ T5516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.603123][ T5516] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 93.617093][ T5516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.617117][ T5516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.617128][ T5516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.617141][ T5516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.617151][ T5516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.617163][ T5516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.617174][ T5516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.617186][ T5516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.617203][ T5516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.617220][ T5516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.620329][ T5516] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 93.641307][ T5516] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.859877][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 93.871294][ T5516] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.885251][ T5516] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.895028][ T5516] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.241607][ T5703] netlink: 40 bytes leftover after parsing attributes in process `syz.3.217'. [ 94.263147][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.286006][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.366585][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.405783][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.546982][ T29] audit: type=1326 audit(1719581843.516:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5699 comm="syz.2.216" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fce65575b29 code=0x0 [ 94.725201][ T5723] netlink: 8 bytes leftover after parsing attributes in process `syz.3.221'. [ 94.754193][ T5721] netlink: 12 bytes leftover after parsing attributes in process `syz.0.223'. [ 95.000008][ T5727] netlink: 'syz.0.224': attribute type 39 has an invalid length. [ 95.076980][ T5090] Bluetooth: hci5: command tx timeout [ 95.088448][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 95.983910][ T5756] Illegal XDP return value 4294967274 on prog (id 94) dev syz_tun, expect packet loss! [ 96.004157][ T5760] netlink: 24 bytes leftover after parsing attributes in process `syz.1.237'. [ 96.176567][ T8] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 96.184855][ T5769] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 96.199204][ T5771] netlink: 8 bytes leftover after parsing attributes in process `syz.0.240'. [ 96.356706][ T8] usb 4-1: Using ep0 maxpacket: 16 [ 96.369438][ T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 96.377417][ T58] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 96.396760][ T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 96.417280][ T8] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 96.456783][ T8] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 96.476132][ T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 96.496166][ T8] usb 4-1: config 0 descriptor?? [ 96.610345][ T58] usb 3-1: config 0 has no interfaces? [ 96.622634][ T58] usb 3-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00 [ 96.649418][ T58] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 96.670039][ T58] usb 3-1: config 0 descriptor?? [ 96.888836][ T5763] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 96.889956][ T5799] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 96.917071][ T5798] netlink: 12 bytes leftover after parsing attributes in process `syz.1.252'. [ 96.941419][ T8] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 96.952702][ T8] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 96.957425][ T5798] netlink: 4 bytes leftover after parsing attributes in process `syz.1.252'. [ 96.964750][ T8] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 96.984519][ T8] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 96.993537][ T8] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 97.008462][ T8] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.0003/input/input7 [ 97.081895][ T29] audit: type=1326 audit(1719582358.056:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5804 comm="syz.4.254" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe355b75b29 code=0x0 [ 97.088088][ T8] microsoft 0003:045E:07DA.0003: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0 [ 97.161315][ T5088] usb 4-1: USB disconnect, device number 2 [ 97.169262][ T5807] netlink: 'syz.4.254': attribute type 10 has an invalid length. [ 97.192167][ T5136] usb 3-1: USB disconnect, device number 2 [ 97.316919][ T5090] Bluetooth: hci5: command tx timeout [ 97.680564][ T5829] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 97.889012][ T5088] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 98.138249][ T29] audit: type=1800 audit(1719582359.106:141): pid=5842 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.2.271" name="bus" dev="sda1" ino=1964 res=0 errno=0 [ 98.435862][ T5850] netlink: 12 bytes leftover after parsing attributes in process `syz.0.275'. [ 98.780322][ T5858] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 98.896245][ T5862] netlink: 20 bytes leftover after parsing attributes in process `syz.2.277'. [ 98.977509][ T5862] netlink: 4 bytes leftover after parsing attributes in process `syz.2.277'. [ 99.015739][ T5862] netlink: 24 bytes leftover after parsing attributes in process `syz.2.277'. [ 99.018656][ T29] audit: type=1326 audit(1719582359.986:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5867 comm="syz.3.280" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3e3bf75b29 code=0x0 [ 99.045483][ C1] vkms_vblank_simulate: vblank timer overrun [ 99.066876][ T5871] netlink: 'syz.3.280': attribute type 10 has an invalid length. [ 100.256720][ T29] audit: type=1800 audit(1719582361.226:143): pid=5886 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.2.287" name="file0" dev="sda1" ino=1963 res=0 errno=0 [ 100.276412][ C1] vkms_vblank_simulate: vblank timer overrun [ 100.372076][ T29] audit: type=1800 audit(1719582361.346:144): pid=5889 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.288" name="bus" dev="sda1" ino=1978 res=0 errno=0 [ 100.765704][ T5892] netlink: 12 bytes leftover after parsing attributes in process `syz.3.289'. [ 100.848337][ T5894] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 101.159112][ T29] audit: type=1326 audit(1719582362.126:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5902 comm="syz.4.295" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe355b75b29 code=0x0 [ 101.223521][ T5910] netlink: 'syz.4.295': attribute type 10 has an invalid length. [ 101.366923][ T29] audit: type=1800 audit(1719582362.326:146): pid=5919 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.1.300" name="bus" dev="sda1" ino=1971 res=0 errno=0 [ 102.535022][ T5937] netlink: 4 bytes leftover after parsing attributes in process `syz.1.307'. [ 103.024265][ T2899] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 103.214276][ T5085] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 103.407682][ T5085] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 103.418985][ T5085] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 103.444105][ T5085] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 103.458812][ T5085] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 103.470559][ T5085] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 103.714196][ T2899] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 104.040660][ T2899] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 104.129355][ T29] audit: type=1800 audit(1719582365.096:147): pid=5961 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.2.314" name="bus" dev="sda1" ino=1958 res=0 errno=0 [ 104.173963][ T2899] team0: Port device netdevsim0 removed [ 104.222108][ T2899] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 104.609089][ T2899] bridge_slave_1: left allmulticast mode [ 104.627407][ T2899] bridge_slave_1: left promiscuous mode [ 104.634662][ T2899] bridge0: port 2(bridge_slave_1) entered disabled state [ 104.654647][ T5969] tipc: Can't bind to reserved service type 0 [ 104.707363][ T2899] bridge_slave_0: left allmulticast mode [ 104.713110][ T2899] bridge_slave_0: left promiscuous mode [ 104.729030][ T2899] bridge0: port 1(bridge_slave_0) entered disabled state [ 104.893972][ T5975] syz.3.319[5975] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 104.898149][ T5975] syz.3.319[5975] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 105.141612][ T5984] blktrace: Concurrent blktraces are not allowed on sg0 [ 105.517440][ T29] audit: type=1326 audit(1719582366.496:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5993 comm="syz.2.327" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fce65575b29 code=0x0 [ 105.627058][ T2899] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 105.638288][ T5085] Bluetooth: hci0: command tx timeout [ 105.658698][ T2899] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 105.689996][ T2899] bond0 (unregistering): Released all slaves [ 105.846712][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 105.927126][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 106.265112][ T6013] netlink: 'syz.3.333': attribute type 10 has an invalid length. [ 106.473713][ T6013] team0: Port device wlan1 added [ 106.528329][ T5949] chnl_net:caif_netlink_parms(): no params data found [ 106.650416][ T6025] blktrace: Concurrent blktraces are not allowed on sg0 [ 106.863382][ T6033] netlink: 892 bytes leftover after parsing attributes in process `syz.2.339'. [ 106.987126][ T2899] hsr_slave_0: left promiscuous mode [ 107.008222][ T2899] hsr_slave_1: left promiscuous mode [ 107.026744][ T2899] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 107.038332][ T2899] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 107.050017][ T2899] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 107.057656][ T2899] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 107.090017][ T2899] veth1_macvtap: left promiscuous mode [ 107.096170][ T2899] veth0_macvtap: left promiscuous mode [ 107.102153][ T2899] veth1_vlan: left promiscuous mode [ 107.108019][ T2899] veth0_vlan: left promiscuous mode [ 107.248203][ T5183] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 107.446516][ T5183] usb 4-1: Using ep0 maxpacket: 16 [ 107.456376][ T5183] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0 [ 107.494931][ T5183] usb 4-1: New USB device found, idVendor=085a, idProduct=0008, bcdDevice=56.88 [ 107.524677][ T5183] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 107.555098][ T5183] usb 4-1: Product: syz [ 107.562500][ T5183] usb 4-1: Manufacturer: syz [ 107.575811][ T5183] usb 4-1: SerialNumber: syz [ 107.595044][ T5183] usb 4-1: config 0 descriptor?? [ 107.716675][ T5085] Bluetooth: hci0: command tx timeout [ 107.825383][ T5183] kaweth 4-1:0.0: Firmware present in device. [ 108.010096][ T2899] team0 (unregistering): Port device team_slave_1 removed [ 108.020352][ T5183] kaweth 4-1:0.0: Error reading configuration (-71), no net device created [ 108.044216][ T5183] kaweth 4-1:0.0: probe with driver kaweth failed with error -5 [ 108.074730][ T5183] usb 4-1: USB disconnect, device number 3 [ 108.111786][ T2899] team0 (unregistering): Port device team_slave_0 removed [ 108.285373][ T29] audit: type=1326 audit(1719582369.256:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6052 comm="syz.0.344" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efd9cb75b29 code=0x0 [ 109.796703][ T5085] Bluetooth: hci0: command tx timeout [ 110.215924][ T6074] blktrace: Concurrent blktraces are not allowed on sg0 [ 110.430133][ T5949] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.485761][ T5949] bridge0: port 1(bridge_slave_0) entered disabled state [ 110.540736][ T5949] bridge_slave_0: entered allmulticast mode [ 110.573085][ T5949] bridge_slave_0: entered promiscuous mode [ 110.595151][ T5949] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.696620][ T5949] bridge0: port 2(bridge_slave_1) entered disabled state [ 110.811664][ T5949] bridge_slave_1: entered allmulticast mode [ 110.938065][ T5949] bridge_slave_1: entered promiscuous mode [ 111.335988][ T5949] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 111.427568][ T5949] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 111.534068][ T5949] team0: Port device team_slave_0 added [ 111.579250][ T5949] team0: Port device team_slave_1 added [ 111.661770][ T5949] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 111.677760][ T5949] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 111.716142][ T5949] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 111.719632][ T6105] blktrace: Concurrent blktraces are not allowed on sg0 [ 111.737414][ T5949] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 111.747924][ T5949] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 111.797227][ T5134] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 111.807169][ T5949] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 111.877482][ T5085] Bluetooth: hci0: command tx timeout [ 111.950511][ T5949] hsr_slave_0: entered promiscuous mode [ 111.973001][ T5949] hsr_slave_1: entered promiscuous mode [ 111.980661][ T5949] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 111.990966][ T5949] Cannot create hsr debugfs directory [ 111.996736][ T5134] usb 2-1: Using ep0 maxpacket: 16 [ 112.011438][ T5134] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 112.038437][ T5134] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 112.056704][ T5134] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 112.066140][ T5134] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 112.089386][ T5134] usb 2-1: config 0 descriptor?? [ 112.153054][ T6109] syzkaller0: entered promiscuous mode [ 112.166657][ T6109] syzkaller0: entered allmulticast mode [ 112.512946][ T5134] microsoft 0003:045E:07DA.0004: No inputs registered, leaving [ 112.542318][ T5134] microsoft 0003:045E:07DA.0004: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0 [ 112.566146][ T5134] microsoft 0003:045E:07DA.0004: no inputs found [ 112.574358][ T5134] microsoft 0003:045E:07DA.0004: could not initialize ff, continuing anyway [ 112.914063][ T5134] usb 2-1: USB disconnect, device number 3 [ 115.039059][ T6138] blktrace: Concurrent blktraces are not allowed on sg0 [ 117.553190][ T6171] syzkaller0: entered promiscuous mode [ 117.586775][ T6171] syzkaller0: entered allmulticast mode [ 117.846371][ T5085] Bluetooth: hci5: unexpected event 0x09 length: 10 > 3 [ 118.000837][ T5085] Bluetooth: hci5: SCO packet for unknown connection handle 1039 [ 119.048731][ T6196] overlayfs: failed to resolve './file0': -2 [ 120.832195][ T6219] overlayfs: failed to resolve './file0': -2 [ 121.061187][ T6178] netlink: 12 bytes leftover after parsing attributes in process `syz.0.385'. [ 121.282047][ T5949] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 121.330553][ T5949] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 121.380865][ T5949] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 121.447284][ T6235] –eth0_vlan: renamed from bridge_slave_1 (while UP) [ 121.503979][ T5949] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 121.515894][ T6246] 9pnet_fd: Insufficient options for proto=fd [ 121.715717][ T5949] 8021q: adding VLAN 0 to HW filter on device bond0 [ 121.778437][ T5949] 8021q: adding VLAN 0 to HW filter on device team0 [ 121.810141][ T5136] bridge0: port 1(bridge_slave_0) entered blocking state [ 121.817409][ T5136] bridge0: port 1(bridge_slave_0) entered forwarding state [ 121.830283][ T5137] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 121.855274][ T5136] bridge0: port 2(bridge_slave_1) entered blocking state [ 121.862578][ T5136] bridge0: port 2(bridge_slave_1) entered forwarding state [ 122.004072][ T6265] blktrace: Concurrent blktraces are not allowed on sg0 [ 122.046915][ T5137] usb 1-1: Using ep0 maxpacket: 8 [ 122.059595][ T5137] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 122.083092][ T5137] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 122.120426][ T5137] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 122.153164][ T5137] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 122.203756][ T5137] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 122.219417][ T5137] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 122.381090][ T5085] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 122.482365][ T5949] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 122.558757][ T6293] netlink: 12 bytes leftover after parsing attributes in process `syz.0.414'. [ 122.656367][ T6288] sctp: [Deprecated]: syz.1.426 (pid 6288) Use of int in max_burst socket option deprecated. [ 122.656367][ T6288] Use struct sctp_assoc_value instead [ 123.167657][ T5137] usb 1-1: GET_CAPABILITIES returned 0 [ 123.213405][ T5137] usbtmc 1-1:16.0: can't read capabilities [ 123.317969][ T6312] blktrace: Concurrent blktraces are not allowed on sg0 [ 123.390804][ T5137] usb 1-1: USB disconnect, device number 4 [ 123.522759][ T5949] veth0_vlan: entered promiscuous mode [ 123.596203][ T6322] –eth0_vlan: renamed from bridge_slave_1 (while UP) [ 123.622262][ T5949] veth1_vlan: entered promiscuous mode [ 123.735105][ T5949] veth0_macvtap: entered promiscuous mode [ 123.768325][ T5949] veth1_macvtap: entered promiscuous mode [ 123.815048][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 123.833945][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 123.844098][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 123.861842][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 123.890118][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 123.910075][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 123.924106][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 123.942545][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 123.954198][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 123.968691][ T5137] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 124.017905][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 124.062833][ T5949] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 124.098570][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 124.139710][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 124.163020][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 124.189416][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 124.212499][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 124.240087][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 124.258206][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 124.278695][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 124.322529][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 124.348219][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 124.380501][ T5949] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 124.405703][ T5949] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 124.455757][ T5949] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 124.486507][ T5949] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 124.495285][ T5949] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 125.370212][ T51] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.380182][ T51] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.497939][ T51] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.518542][ T51] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.777601][ T6363] –eth0_vlan: renamed from bridge_slave_1 (while UP) [ 126.617862][ T29] audit: type=1800 audit(1719582387.596:150): pid=6381 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.2.462" name="bus" dev="sda1" ino=1971 res=0 errno=0 [ 127.006154][ T6401] netlink: 12 bytes leftover after parsing attributes in process `syz.3.468'. [ 127.068100][ T6395] netlink: 4 bytes leftover after parsing attributes in process `syz.3.468'. [ 127.166564][ T29] audit: type=1800 audit(1719582388.136:151): pid=6412 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.4.474" name="bus" dev="sda1" ino=1978 res=0 errno=0 [ 127.769309][ T6445] netlink: 180 bytes leftover after parsing attributes in process `syz.1.489'. [ 127.874721][ T6451] netlink: 12 bytes leftover after parsing attributes in process `syz.3.487'. [ 127.988862][ T6463] netlink: 4 bytes leftover after parsing attributes in process `syz.3.487'. [ 127.994290][ T29] audit: type=1800 audit(1719582388.966:152): pid=6459 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.1.493" name="bus" dev="sda1" ino=1978 res=0 errno=0 [ 128.033984][ T6455] netlink: 12 bytes leftover after parsing attributes in process `syz.2.491'. [ 128.100824][ T6455] netlink: 4 bytes leftover after parsing attributes in process `syz.2.491'. [ 128.119472][ T6450] netlink: 24 bytes leftover after parsing attributes in process `syz.2.491'. [ 128.292797][ T6469] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 128.331513][ T6477] netlink: 4 bytes leftover after parsing attributes in process `syz.0.498'. [ 129.257547][ T6487] overlayfs: missing 'workdir' [ 129.377434][ T6492] netlink: 180 bytes leftover after parsing attributes in process `syz.1.503'. [ 129.471351][ T29] audit: type=1800 audit(1719582390.446:153): pid=6497 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.505" name="bus" dev="sda1" ino=1981 res=0 errno=0 [ 129.996557][ T29] audit: type=1326 audit(1719582390.956:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6501 comm="syz.0.509" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efd9cb75b29 code=0x0 [ 130.152801][ T29] audit: type=1800 audit(1719582391.126:155): pid=6531 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.515" name="file0" dev="sda1" ino=1978 res=0 errno=0 [ 130.467348][ T6538] overlayfs: missing 'workdir' [ 130.816278][ T29] audit: type=1800 audit(1719582391.786:156): pid=6540 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.2.518" name="memory.events" dev="sda1" ino=1973 res=0 errno=0 [ 130.887719][ T29] audit: type=1804 audit(1719582391.816:157): pid=6540 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.2.518" name="/root/syzkaller.HVBbpi/130/memory.events" dev="sda1" ino=1973 res=1 errno=0 [ 131.214356][ T29] audit: type=1800 audit(1719582392.186:158): pid=6549 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.522" name="bus" dev="sda1" ino=1979 res=0 errno=0 [ 131.567501][ T6560] overlayfs: missing 'workdir' [ 132.551048][ T6596] __nla_validate_parse: 7 callbacks suppressed [ 132.551072][ T6596] netlink: 25 bytes leftover after parsing attributes in process `syz.2.535'. [ 132.692322][ T6596] netlink: 'syz.2.535': attribute type 10 has an invalid length. [ 132.700269][ T6596] netlink: 40 bytes leftover after parsing attributes in process `syz.2.535'. [ 132.713469][ T6596] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 133.099658][ T1248] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.992728][ T6612] netlink: 180 bytes leftover after parsing attributes in process `syz.1.545'. [ 133.997532][ T6610] 9pnet_fd: Insufficient options for proto=fd [ 134.225715][ T6619] fuse: Unknown parameter '0x0000000000000004' [ 134.268173][ T29] audit: type=1804 audit(1719582395.246:159): pid=6619 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.4.547" name="/root/syzkaller.SSus7p/16/file0" dev="sda1" ino=1978 res=1 errno=0 [ 134.361912][ T6626] netlink: 4 bytes leftover after parsing attributes in process `syz.3.551'. [ 135.014759][ T29] audit: type=1800 audit(1719582395.986:160): pid=6637 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.4.554" name="/" dev="fuse" ino=1 res=0 errno=0 [ 135.062423][ T6639] 9pnet_fd: Insufficient options for proto=fd [ 135.212464][ T6643] netlink: 180 bytes leftover after parsing attributes in process `syz.3.558'. [ 135.400361][ T6653] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 0, id = 0 [ 135.411205][ T6651] IPVS: stopping master sync thread 6653 ... [ 135.420494][ T6654] netlink: 32 bytes leftover after parsing attributes in process `syz.3.563'. [ 135.462726][ T6654] netlink: 36 bytes leftover after parsing attributes in process `syz.3.563'. [ 135.498231][ T6654] netlink: 28 bytes leftover after parsing attributes in process `syz.3.563'. [ 135.526275][ T6654] netlink: 4 bytes leftover after parsing attributes in process `syz.3.563'. [ 135.557940][ T6654] netlink: 112 bytes leftover after parsing attributes in process `syz.3.563'. [ 135.577031][ T6654] tipc: Started in network mode [ 135.592427][ T6654] tipc: Node identity aaaaaaaaaa0c, cluster identity 4711 [ 135.610995][ T6654] tipc: Enabled bearer , priority 16 [ 135.663855][ T6663] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 135.866698][ T5088] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 136.256584][ T5088] usb 5-1: Using ep0 maxpacket: 16 [ 136.264499][ T5088] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 136.306779][ T5088] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 136.696642][ T5088] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 136.716645][ T5088] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 136.729363][ T5134] tipc: Node number set to 10922666 [ 136.764098][ T5088] usb 5-1: config 0 descriptor?? [ 137.198804][ T5088] microsoft 0003:045E:07DA.0005: No inputs registered, leaving [ 137.265109][ T5088] microsoft 0003:045E:07DA.0005: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0 [ 137.296080][ T5088] microsoft 0003:045E:07DA.0005: no inputs found [ 137.309988][ T5088] microsoft 0003:045E:07DA.0005: could not initialize ff, continuing anyway [ 137.401173][ T6689] tipc: Enabling of bearer rejected, already enabled [ 137.506719][ T784] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 137.628427][ T6693] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 137.709871][ T784] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 137.740208][ T784] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 137.764899][ T784] usb 2-1: config 0 descriptor?? [ 137.779572][ T784] cp210x 2-1:0.0: cp210x converter detected [ 137.871193][ T6697] __nla_validate_parse: 8 callbacks suppressed [ 137.871215][ T6697] netlink: 4 bytes leftover after parsing attributes in process `syz.3.580'. [ 138.220001][ T6685] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 138.258981][ T6685] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 138.565496][ T5085] Bluetooth: hci5: unknown advertising packet type: 0x34 [ 138.565615][ T5085] Bluetooth: hci5: unknown advertising packet type: 0x35 [ 138.567106][ T6709] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 138.615112][ T6709] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 138.770070][ T784] cp210x 2-1:0.0: failed to get vendor val 0x3711 size 2: -71 [ 138.789443][ T5183] usb 5-1: USB disconnect, device number 2 [ 138.803071][ T784] cp210x 2-1:0.0: GPIO initialisation failed: -71 [ 138.834106][ T784] usb 2-1: cp210x converter now attached to ttyUSB0 [ 138.913122][ T784] usb 2-1: USB disconnect, device number 4 [ 138.973154][ T784] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 138.994918][ T784] cp210x 2-1:0.0: device disconnected [ 139.416795][ T5183] usb 5-1: new full-speed USB device number 3 using dummy_hcd [ 139.736033][ T6727] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 139.757399][ T5183] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 139.805092][ T5183] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 139.844971][ T5183] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 1023, setting to 64 [ 139.876758][ T5183] usb 5-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 25 [ 139.904323][ T5183] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 139.921747][ T5183] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 139.930136][ T5183] usb 5-1: SerialNumber: syz [ 139.942189][ T6719] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 139.946954][ T5088] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 139.952053][ T6719] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 139.974346][ T5085] Bluetooth: hci4: command tx timeout [ 139.984961][ T5183] cdc_acm 5-1:1.0: Control and data interfaces are not separated! [ 140.236755][ T5183] cdc_acm 5-1:1.0: ttyACM0: USB ACM device [ 140.284236][ T5183] usb 5-1: USB disconnect, device number 3 [ 140.352393][ T5088] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 140.532271][ T5088] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 140.638700][ T5088] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 140.742857][ T5088] usb 4-1: Product: syz [ 140.799270][ T5088] usb 4-1: Manufacturer: syz [ 141.037774][ T5088] usb 4-1: SerialNumber: syz [ 141.122714][ T5088] hub 4-1:1.0: bad descriptor, ignoring hub [ 141.129415][ T5088] hub 4-1:1.0: probe with driver hub failed with error -5 [ 141.951654][ T6768] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 142.960056][ T5088] cdc_ncm 4-1:1.0: failed to get mac address [ 142.967946][ T5088] cdc_ncm 4-1:1.0: bind() failure [ 142.986597][ T5088] hub 4-1:1.1: probe with driver hub failed with error -71 [ 142.997573][ T5088] cdc_ncm 4-1:1.1: probe with driver cdc_ncm failed with error -71 [ 143.023388][ T5088] cdc_mbim 4-1:1.1: probe with driver cdc_mbim failed with error -71 [ 143.046942][ T5088] usbtest 4-1:1.1: probe with driver usbtest failed with error -71 [ 143.120743][ T5088] usb 4-1: USB disconnect, device number 5 [ 143.143625][ T6780] netlink: 12 bytes leftover after parsing attributes in process `syz.0.605'. [ 143.185344][ T6780] netlink: 4 bytes leftover after parsing attributes in process `syz.0.605'. [ 143.231786][ T6780] netlink: 24 bytes leftover after parsing attributes in process `syz.0.605'. [ 143.754302][ T6794] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 145.228582][ T6826] team_slave_0: entered promiscuous mode [ 145.234823][ T6826] team_slave_1: entered promiscuous mode [ 145.654568][ T6826] macsec1: entered promiscuous mode [ 145.996574][ T6826] team0: entered promiscuous mode [ 146.042604][ T6826] macsec1: entered allmulticast mode [ 146.050233][ T6826] team0: entered allmulticast mode [ 146.055935][ T6826] team_slave_0: entered allmulticast mode [ 146.066525][ T6826] team_slave_1: entered allmulticast mode [ 146.489330][ T6839] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 147.022088][ T6858] team_slave_0: entered promiscuous mode [ 147.027903][ T6858] team_slave_1: entered promiscuous mode [ 147.063860][ T6858] macsec1: entered promiscuous mode [ 147.084307][ T6858] team0: entered promiscuous mode [ 147.115517][ T6858] macsec1: entered allmulticast mode [ 147.135669][ T6858] team0: entered allmulticast mode [ 147.154435][ T6858] team_slave_0: entered allmulticast mode [ 147.178375][ T6858] team_slave_1: entered allmulticast mode [ 147.432781][ T6869] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 147.497287][ T6876] IPv6: NLM_F_REPLACE set, but no existing node found! [ 147.525596][ T29] audit: type=1326 audit(1719582408.486:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6871 comm="syz.2.644" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fce65575b29 code=0x0 [ 147.588217][ T6880] netlink: 'syz.2.644': attribute type 10 has an invalid length. [ 147.635555][ T6880] team0: Port device netdevsim0 added [ 147.770331][ T6889] netlink: 180 bytes leftover after parsing attributes in process `syz.1.647'. [ 147.809578][ T5085] Bluetooth: hci0: unexpected subevent 0x19 length: 32 > 28 [ 147.817334][ T5085] Bluetooth: hci0: Unable to find connection with handle 0x3270 [ 147.827401][ T6892] netlink: 4 bytes leftover after parsing attributes in process `syz.0.651'. [ 149.097652][ T6915] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 149.319206][ T5085] Bluetooth: hci0: unexpected subevent 0x19 length: 32 > 28 [ 149.327064][ T5085] Bluetooth: hci0: Unable to find connection with handle 0x3270 [ 149.758379][ T6938] netlink: 24 bytes leftover after parsing attributes in process `syz.2.668'. [ 151.349926][ T6965] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 151.893872][ T5085] Bluetooth: hci0: unexpected cc 0x2002 length: 1 < 4 [ 152.079134][ T6983] netlink: 12 bytes leftover after parsing attributes in process `syz.0.679'. [ 152.120632][ T6983] netlink: 4 bytes leftover after parsing attributes in process `syz.0.679'. [ 152.131420][ T29] audit: type=1800 audit(1719582413.106:162): pid=6990 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.4.682" name="bus" dev="sda1" ino=1974 res=0 errno=0 [ 152.156654][ T6989] netlink: 32 bytes leftover after parsing attributes in process `syz.3.681'. [ 152.172536][ T6984] netlink: 24 bytes leftover after parsing attributes in process `syz.0.679'. [ 152.234490][ T6992] netlink: 28 bytes leftover after parsing attributes in process `syz.1.680'. [ 152.318530][ T6989] netlink: 36 bytes leftover after parsing attributes in process `syz.3.681'. [ 152.337472][ T6994] netlink: 28 bytes leftover after parsing attributes in process `syz.3.681'. [ 152.364753][ T6989] netlink: 4 bytes leftover after parsing attributes in process `syz.3.681'. [ 152.410951][ T6998] blktrace: Concurrent blktraces are not allowed on sg0 [ 152.568403][ T7007] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 152.646978][ T784] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 152.869856][ T784] usb 5-1: Using ep0 maxpacket: 16 [ 152.902185][ T784] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 152.935479][ T784] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 152.971297][ T784] usb 5-1: Product: syz [ 152.982721][ T784] usb 5-1: Manufacturer: syz [ 152.995378][ T784] usb 5-1: SerialNumber: syz [ 153.013169][ T784] r8152-cfgselector 5-1: Unknown version 0x0000 [ 153.038443][ T784] r8152-cfgselector 5-1: config 0 descriptor?? [ 153.141635][ T29] audit: type=1800 audit(1719582414.116:163): pid=7021 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.0.693" name="bus" dev="sda1" ino=1966 res=0 errno=0 [ 153.281586][ T7025] netlink: 32 bytes leftover after parsing attributes in process `syz.0.695'. [ 153.497209][ T7031] blktrace: Concurrent blktraces are not allowed on sg0 [ 153.564450][ T5088] r8152-cfgselector 5-1: USB disconnect, device number 4 [ 154.158218][ T7050] syzkaller0: entered promiscuous mode [ 154.164052][ T7050] syzkaller0: entered allmulticast mode [ 154.202432][ T29] audit: type=1800 audit(1719582415.176:164): pid=7057 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.2.705" name="bus" dev="sda1" ino=1950 res=0 errno=0 [ 154.358537][ T7064] blktrace: Concurrent blktraces are not allowed on sg0 [ 155.958695][ T5085] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 155.968508][ T5085] Bluetooth: hci0: Injecting HCI hardware error event [ 155.977943][ T5090] Bluetooth: hci0: hardware error 0x00 [ 157.127454][ T7104] blktrace: Concurrent blktraces are not allowed on sg0 [ 158.047832][ T5090] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 158.490233][ T7125] __nla_validate_parse: 8 callbacks suppressed [ 158.490255][ T7125] netlink: 4 bytes leftover after parsing attributes in process `syz.4.727'. [ 158.523421][ T7063] netlink: 36 bytes leftover after parsing attributes in process `syz.3.707'. [ 158.533211][ T7067] netlink: 28 bytes leftover after parsing attributes in process `syz.3.707'. [ 158.542898][ T7071] netlink: 4 bytes leftover after parsing attributes in process `syz.3.707'. [ 158.552416][ T7072] netlink: 28 bytes leftover after parsing attributes in process `syz.2.710'. [ 158.563856][ T7124] netlink: 4 bytes leftover after parsing attributes in process `syz.0.728'. [ 158.743737][ T7133] blktrace: Concurrent blktraces are not allowed on sg0 [ 158.896321][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 158.915222][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 158.930936][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 158.942387][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 158.950968][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 158.958702][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 158.967229][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 158.974862][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 158.982725][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 158.993897][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.001460][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.009345][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.016928][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.025116][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.045398][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.053129][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.061708][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.069362][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.077093][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.084678][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.101346][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.109007][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.116647][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.124105][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.132189][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.139721][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.147609][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.155058][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.164711][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.173864][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.181569][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.189245][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.200796][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.208505][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.242114][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.259948][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.269280][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.278382][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.286049][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.304577][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.312270][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.321484][ T5134] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 159.329383][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.340053][ T5088] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 159.357576][ T5088] hid-generic 0000:0000:0000.0006: hidraw0: HID v0.00 Device [syz0] on syz0 [ 159.569051][ T5134] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 159.572782][ T7159] syzkaller0: entered promiscuous mode [ 159.587684][ T5134] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 159.611000][ T5134] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 159.619525][ T7159] syzkaller0: entered allmulticast mode [ 159.625970][ T5134] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 159.645002][ T7155] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 159.650734][ T7161] netlink: 4 bytes leftover after parsing attributes in process `syz.4.742'. [ 159.879600][ T7170] blktrace: Concurrent blktraces are not allowed on sg0 [ 160.550405][ T7187] netlink: 4 bytes leftover after parsing attributes in process `syz.3.750'. [ 162.018711][ T5183] usb 2-1: USB disconnect, device number 5 [ 162.324923][ T7191] netlink: 12 bytes leftover after parsing attributes in process `syz.1.751'. [ 162.345081][ T7191] netlink: 4 bytes leftover after parsing attributes in process `syz.1.751'. [ 162.977945][ T5088] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 163.179328][ T5088] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 163.197218][ T5088] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 163.209330][ T5088] usb 1-1: config 0 descriptor?? [ 163.226239][ T5088] cp210x 1-1:0.0: cp210x converter detected [ 163.577969][ T7257] __nla_validate_parse: 5 callbacks suppressed [ 163.577989][ T7257] netlink: 8 bytes leftover after parsing attributes in process `syz.4.777'. [ 163.600929][ T7259] netlink: 12 bytes leftover after parsing attributes in process `syz.2.776'. [ 163.621726][ T7211] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 163.646827][ T7211] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 163.731791][ T7261] netlink: 4 bytes leftover after parsing attributes in process `syz.1.775'. [ 163.780072][ T7261] netlink: 24 bytes leftover after parsing attributes in process `syz.1.775'. [ 163.828907][ T5090] Bluetooth: hci1: unexpected event 0x09 length: 10 > 3 [ 163.843698][ T5090] Bluetooth: hci1: SCO packet for unknown connection handle 1039 [ 163.952012][ T5090] Bluetooth: hci4: unknown advertising packet type: 0x34 [ 163.961516][ T5090] Bluetooth: hci4: unknown advertising packet type: 0x35 [ 163.979310][ T7215] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 164.007467][ T7215] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 164.088520][ T5088] cp210x 1-1:0.0: failed to get vendor val 0x3711 size 2: -71 [ 164.100105][ T5088] cp210x 1-1:0.0: GPIO initialisation failed: -71 [ 164.115729][ T5088] usb 1-1: cp210x converter now attached to ttyUSB0 [ 164.136639][ T5088] usb 1-1: USB disconnect, device number 5 [ 164.149129][ T5088] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 164.161386][ T5088] cp210x 1-1:0.0: device disconnected [ 164.557954][ T7299] netlink: 4 bytes leftover after parsing attributes in process `syz.1.789'. [ 164.658137][ T29] audit: type=1326 audit(1719582425.626:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7295 comm="syz.3.788" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3e3bf75b29 code=0x0 [ 164.979917][ T29] audit: type=1326 audit(1719582425.956:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7309 comm="syz.0.793" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efd9cb75b29 code=0x0 [ 165.083794][ T7316] netlink: 'syz.0.793': attribute type 10 has an invalid length. [ 165.160799][ T7316] team0: Port device netdevsim0 added [ 165.865780][ T5090] Bluetooth: hci5: unexpected event 0x09 length: 10 > 3 [ 165.874404][ T5090] Bluetooth: hci5: SCO packet for unknown connection handle 1039 [ 165.875915][ T7345] netlink: 40 bytes leftover after parsing attributes in process `syz.2.802'. [ 165.881752][ T5136] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 165.918926][ T29] audit: type=1800 audit(1719582426.886:167): pid=7344 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.0.804" name="bus" dev="sda1" ino=1977 res=0 errno=0 [ 166.096657][ T5136] usb 5-1: Using ep0 maxpacket: 16 [ 166.104471][ T5136] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 166.122422][ T5136] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 166.134769][ T5136] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 166.173374][ T5136] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 166.194926][ T5136] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 166.226331][ T5136] usb 5-1: config 0 descriptor?? [ 166.545146][ T5136] usbhid 5-1:0.0: can't add hid device: -71 [ 166.564864][ T5136] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 166.588831][ T5136] usb 5-1: USB disconnect, device number 5 [ 167.345639][ T29] audit: type=1800 audit(1719582428.316:168): pid=7379 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.0.814" name="bus" dev="sda1" ino=1977 res=0 errno=0 [ 167.537525][ T29] audit: type=1326 audit(1719582428.506:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7367 comm="syz.4.811" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f22c3d75b29 code=0x0 [ 167.968343][ T7399] netlink: 12 bytes leftover after parsing attributes in process `syz.2.817'. [ 168.468264][ T7404] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 168.504862][ T7404] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 168.545192][ T5090] Bluetooth: hci5: unexpected event 0x09 length: 10 > 3 [ 168.548411][ T5090] Bluetooth: hci5: SCO packet for unknown connection handle 1039 [ 168.763215][ T29] audit: type=1800 audit(1719582429.736:170): pid=7382 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.0.814" name="bus" dev="sda1" ino=1977 res=0 errno=0 [ 168.994330][ T7382] syz.0.814 (7382) used greatest stack depth: 17848 bytes left [ 169.026545][ T5136] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 169.141321][ T7429] –eth0_vlan: renamed from bridge_slave_1 (while UP) [ 169.238368][ T5136] usb 3-1: Using ep0 maxpacket: 16 [ 169.261813][ T5136] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 169.282048][ T5136] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 169.296030][ T5136] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 169.316265][ T5136] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 169.327326][ T5136] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 169.342500][ T5136] usb 3-1: config 0 descriptor?? [ 169.514061][ T5090] Bluetooth: hci4: unexpected subevent 0x19 length: 32 > 28 [ 169.522061][ T5090] Bluetooth: hci4: Invalid connection link type handle 0x0000 [ 169.598374][ T5136] usbhid 3-1:0.0: can't add hid device: -71 [ 169.608786][ T5136] usbhid 3-1:0.0: probe with driver usbhid failed with error -71 [ 169.634669][ T5136] usb 3-1: USB disconnect, device number 3 [ 170.148684][ T7471] netlink: 'syz.4.841': attribute type 8 has an invalid length. [ 170.217058][ T5183] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 170.431486][ T5183] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 170.472176][ T5183] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 170.510970][ T5090] Bluetooth: hci3: unexpected subevent 0x19 length: 32 > 28 [ 170.519138][ T5090] Bluetooth: hci3: Unable to find connection with handle 0x0000 [ 170.536586][ T5090] Bluetooth: hci1: command tx timeout [ 170.542206][ T5183] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 170.552576][ T5183] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 170.583119][ T7467] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 170.916776][ T7487] syzkaller0: entered promiscuous mode [ 170.933195][ T7487] syzkaller0: entered allmulticast mode [ 172.826047][ T5136] usb 1-1: USB disconnect, device number 6 [ 173.176817][ T5085] Bluetooth: hci5: unexpected subevent 0x19 length: 32 > 28 [ 173.184215][ T5085] Bluetooth: hci5: Invalid connection link type handle 0x0000 [ 173.343503][ T7523] netlink: 4 bytes leftover after parsing attributes in process `syz.0.859'. [ 173.796759][ T8] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 173.996600][ T8] usb 2-1: Using ep0 maxpacket: 16 [ 174.015827][ T8] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9 [ 174.042088][ T8] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 174.051746][ T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 174.062521][ T8] usb 2-1: config 0 descriptor?? [ 174.072805][ T8] usbhid 2-1:0.0: couldn't find an input interrupt endpoint [ 174.310053][ T8] usb 2-1: USB disconnect, device number 6 [ 174.959562][ T7534] syz.1.866 uses obsolete (PF_INET,SOCK_PACKET) [ 175.182135][ T7532] team0: Port device team_slave_0 removed [ 175.373165][ T7550] netlink: 4 bytes leftover after parsing attributes in process `syz.3.872'. [ 175.399231][ T7550] netlink: 'syz.3.872': attribute type 1 has an invalid length. [ 175.436820][ T7550] netlink: 112860 bytes leftover after parsing attributes in process `syz.3.872'. [ 175.477208][ T5134] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 175.676752][ T5134] usb 1-1: Using ep0 maxpacket: 16 [ 175.686720][ T5134] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 175.708580][ T5134] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9 [ 175.731229][ T5134] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 175.739210][ T7568] netlink: 4 bytes leftover after parsing attributes in process `syz.3.877'. [ 175.746595][ T5134] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 175.768095][ T5134] usb 1-1: config 0 descriptor?? [ 175.788472][ T5134] usbhid 1-1:0.0: couldn't find an input interrupt endpoint [ 175.814254][ T7563] evm: overlay not supported [ 176.203676][ T7569] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 176.226819][ T7569] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 176.864131][ T7583] netlink: 4 bytes leftover after parsing attributes in process `syz.2.882'. [ 176.891741][ T7583] team0: entered promiscuous mode [ 176.900508][ T7583] team_slave_1: entered promiscuous mode [ 176.913690][ T7583] netdevsim netdevsim2 netdevsim0: entered promiscuous mode [ 176.949926][ T7582] team0: left promiscuous mode [ 176.969420][ T7582] team_slave_1: left promiscuous mode [ 176.983080][ T7582] netdevsim netdevsim2 netdevsim0: left promiscuous mode [ 177.029510][ T5183] usb 1-1: USB disconnect, device number 7 [ 177.343376][ T7596] netlink: 4 bytes leftover after parsing attributes in process `syz.2.888'. [ 177.652187][ T7607] netlink: 4 bytes leftover after parsing attributes in process `syz.3.891'. [ 177.760660][ T7609] netlink: 'syz.4.892': attribute type 9 has an invalid length. [ 177.803242][ T7609] netlink: 209836 bytes leftover after parsing attributes in process `syz.4.892'. [ 177.908359][ T7610] netlink: 'syz.4.892': attribute type 9 has an invalid length. [ 177.926208][ T7610] netlink: 209836 bytes leftover after parsing attributes in process `syz.4.892'. [ 178.163521][ T7619] netlink: 4 bytes leftover after parsing attributes in process `syz.0.895'. [ 178.199382][ T7619] team0: entered promiscuous mode [ 178.204548][ T7619] team_slave_1: entered promiscuous mode [ 178.225094][ T7619] netdevsim netdevsim0 netdevsim0: entered promiscuous mode [ 178.239563][ T7618] team0: left promiscuous mode [ 178.244505][ T7618] team_slave_1: left promiscuous mode [ 178.250170][ T7618] netdevsim netdevsim0 netdevsim0: left promiscuous mode [ 178.568041][ T7636] netlink: 'syz.0.903': attribute type 9 has an invalid length. [ 178.607965][ T7636] __nla_validate_parse: 1 callbacks suppressed [ 178.607981][ T7636] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.903'. [ 179.276534][ T7641] netlink: 'syz.0.903': attribute type 9 has an invalid length. [ 179.321111][ T7641] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.903'. [ 179.528937][ T7653] netlink: 4 bytes leftover after parsing attributes in process `syz.1.909'. [ 179.673959][ T7653] team0: Port device team_slave_0 removed [ 179.703700][ T7661] netlink: 60 bytes leftover after parsing attributes in process `syz.0.912'. [ 181.026487][ T7692] netlink: 'syz.3.924': attribute type 8 has an invalid length. [ 181.220487][ T7701] netlink: 4 bytes leftover after parsing attributes in process `syz.2.922'. [ 182.503118][ T7699] netlink: 60 bytes leftover after parsing attributes in process `syz.1.926'. [ 182.612687][ T7721] netlink: 256 bytes leftover after parsing attributes in process `syz.0.933'. [ 182.636535][ T5183] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 182.888636][ T5183] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 182.974633][ T5183] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 183.130874][ T5183] usb 4-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 183.266231][ T5183] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 183.439279][ T5183] usb 4-1: config 0 descriptor?? [ 183.665518][ T7740] netlink: 60 bytes leftover after parsing attributes in process `syz.2.941'. [ 183.689674][ T5085] Bluetooth: hci5: unexpected subevent 0x19 length: 32 > 28 [ 183.697229][ T5085] Bluetooth: hci5: Invalid connection link type handle 0x0000 [ 183.762622][ T7747] netlink: 256 bytes leftover after parsing attributes in process `syz.1.945'. [ 183.870681][ T5183] keytouch 0003:0926:3333.0007: fixing up Keytouch IEC report descriptor [ 183.915612][ T5183] input: HID 0926:3333 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:0926:3333.0007/input/input10 [ 184.008270][ T7762] netlink: 4 bytes leftover after parsing attributes in process `syz.0.951'. [ 184.069136][ T7715] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 184.093895][ T7715] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 184.251764][ T5183] keytouch 0003:0926:3333.0007: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.3-1/input0 [ 184.271156][ T5183] usb 4-1: USB disconnect, device number 6 [ 185.257231][ T5085] Bluetooth: hci1: unexpected subevent 0x19 length: 32 > 28 [ 185.266752][ T5085] Bluetooth: hci1: Invalid connection link type handle 0x0000 [ 186.340787][ T7767] team0: entered promiscuous mode [ 186.348940][ T7767] team_slave_1: entered promiscuous mode [ 186.354931][ T7767] netdevsim netdevsim0 netdevsim0: entered promiscuous mode [ 186.367239][ T7772] netlink: 60 bytes leftover after parsing attributes in process `syz.1.953'. [ 186.386760][ T7767] team0: left promiscuous mode [ 186.403871][ T7767] team_slave_1: left promiscuous mode [ 186.416029][ T7767] netdevsim netdevsim0 netdevsim0: left promiscuous mode [ 186.577606][ T7794] netlink: 4 bytes leftover after parsing attributes in process `syz.1.959'. [ 186.608031][ T7794] netlink: 24 bytes leftover after parsing attributes in process `syz.1.959'. [ 186.687332][ T7800] netlink: 12 bytes leftover after parsing attributes in process `syz.2.964'. [ 186.703372][ T5085] Bluetooth: hci1: unexpected subevent 0x19 length: 32 > 28 [ 186.716529][ T5085] Bluetooth: hci1: Invalid connection link type handle 0x0000 [ 186.802758][ T7809] netlink: 60 bytes leftover after parsing attributes in process `syz.3.969'. [ 186.929052][ T7812] netlink: 4 bytes leftover after parsing attributes in process `syz.4.967'. [ 187.265873][ T7837] netlink: 40 bytes leftover after parsing attributes in process `syz.4.981'. [ 188.711089][ T7910] __nla_validate_parse: 1 callbacks suppressed [ 188.711110][ T7910] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1009'. [ 189.224200][ T7933] serio: Serial port pts0 [ 190.088836][ T7965] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1035'. [ 190.737193][ T7983] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.1043'. [ 191.060920][ T5134] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 191.274469][ T5134] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 191.295417][ T5134] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 191.315749][ T5134] usb 3-1: config 0 descriptor?? [ 191.326773][ T5134] cp210x 3-1:0.0: cp210x converter detected [ 191.449820][ T8000] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1048'. [ 191.477270][ T5085] Bluetooth: hci3: command 0x0406 tx timeout [ 191.484110][ T4477] Bluetooth: hci4: command 0x0406 tx timeout [ 191.485737][ T8000] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1048'. [ 191.492023][ T4477] Bluetooth: hci2: command 0x0406 tx timeout [ 191.687488][ T53] Bluetooth: hci4: unexpected subevent 0x19 length: 32 > 28 [ 191.695003][ T53] Bluetooth: hci4: Invalid connection link type handle 0x0000 [ 191.728486][ T7983] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 191.756019][ T7983] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 191.796605][ T5134] cp210x 3-1:0.0: failed to get vendor val 0x000e size 3: -32 [ 191.851016][ T53] Bluetooth: hci3: unknown advertising packet type: 0x34 [ 191.851045][ T53] Bluetooth: hci3: unknown advertising packet type: 0x35 [ 191.862739][ T8014] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 191.886280][ T8014] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 191.937300][ T8016] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1054'. [ 192.007810][ T5134] cp210x 3-1:0.0: failed to get vendor val 0x3711 size 2: -71 [ 192.022308][ T5134] cp210x 3-1:0.0: GPIO initialisation failed: -71 [ 192.032240][ T5134] usb 3-1: cp210x converter now attached to ttyUSB0 [ 192.041313][ T5134] usb 3-1: USB disconnect, device number 4 [ 192.054187][ T5134] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 192.066174][ T5134] cp210x 3-1:0.0: device disconnected [ 192.137097][ T8022] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1056'. [ 192.935667][ T5183] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 193.070817][ T8067] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.1073'. [ 193.136530][ T5183] usb 3-1: Using ep0 maxpacket: 8 [ 193.145860][ T5183] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 193.161895][ T5183] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 193.185980][ T5183] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 193.203533][ T5183] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 193.224248][ T5183] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 193.235762][ T5183] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 193.335370][ T8075] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1076'. [ 193.396581][ T5134] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 193.530905][ T8078] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1063'. [ 193.607521][ T5134] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 193.632937][ T5134] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 193.665073][ T5134] usb 2-1: config 0 descriptor?? [ 193.685773][ T5134] cp210x 2-1:0.0: cp210x converter detected [ 193.955943][ T5183] usb 3-1: GET_CAPABILITIES returned 0 [ 193.965185][ T5183] usbtmc 3-1:16.0: can't read capabilities [ 194.095560][ T8067] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 194.126724][ T8067] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 194.149623][ T5134] cp210x 2-1:0.0: failed to get vendor val 0x000e size 3: -32 [ 194.189735][ T5183] usb 3-1: USB disconnect, device number 5 [ 194.202834][ T8068] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 194.214554][ T53] Bluetooth: hci5: unknown advertising packet type: 0x34 [ 194.214580][ T53] Bluetooth: hci5: unknown advertising packet type: 0x35 [ 194.249536][ T8068] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 194.445024][ T5134] cp210x 2-1:0.0: failed to get vendor val 0x3711 size 2: -71 [ 194.463437][ T5134] cp210x 2-1:0.0: GPIO initialisation failed: -71 [ 194.489338][ T5134] usb 2-1: cp210x converter now attached to ttyUSB0 [ 194.507903][ T5134] usb 2-1: USB disconnect, device number 7 [ 194.531534][ T1248] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.539015][ T5134] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 194.554208][ T5134] cp210x 2-1:0.0: device disconnected [ 195.483070][ T8131] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1098'. [ 195.512213][ T8131] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1098'. [ 195.529105][ T8127] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1098'. [ 195.792476][ T29] audit: type=1326 audit(1719582456.766:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8128 comm="syz.2.1099" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fce65575b29 code=0x0 [ 196.035815][ T8146] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1102'. [ 196.103515][ T8144] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1102'. [ 301.306350][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 301.313477][ C0] rcu: 1-...!: (1 GPs behind) idle=cc14/1/0x4000000000000000 softirq=17897/17898 fqs=22 [ 301.324606][ C0] rcu: (detected by 0, t=10502 jiffies, g=27013, q=293 ncpus=2) [ 301.332372][ C0] Sending NMI from CPU 0 to CPUs 1: [ 301.337627][ C1] NMI backtrace for cpu 1 [ 301.337647][ C1] CPU: 1 PID: 8128 Comm: syz.2.1099 Not tainted 6.10.0-rc5-syzkaller-00200-g5bbd9b249880 #0 [ 301.337663][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 301.337676][ C1] RIP: 0010:__hrtimer_run_queues+0x43a/0xd50 [ 301.337715][ C1] Code: 00 e8 3a a8 12 00 bb fe ff ff ff 44 89 e9 d3 c3 49 83 c7 44 4c 89 f8 48 c1 e8 03 49 bd 00 00 00 00 00 fc ff df 42 0f b6 04 28 <84> c0 0f 85 4e 05 00 00 41 21 1f 49 8d 5e 28 48 89 d8 48 c1 e8 03 [ 301.337727][ C1] RSP: 0018:ffffc90000a18d60 EFLAGS: 00000807 [ 301.337747][ C1] RAX: 0000000000000000 RBX: 00000000fffffffd RCX: 0000000000000001 [ 301.337758][ C1] RDX: 0000000080010002 RSI: 0000000000000001 RDI: 0000000000000020 [ 301.337768][ C1] RBP: ffffc90000a18ea8 R08: ffffffff81838107 R09: 1ffffffff1f58485 [ 301.337780][ C1] R10: dffffc0000000000 R11: fffffbfff1f58486 R12: 1ffff110172a593b [ 301.337792][ C1] R13: dffffc0000000000 R14: ffff888060dc1340 R15: ffff8880b952c8c4 [ 301.337804][ C1] FS: 0000000000000000(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 [ 301.337817][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 301.337828][ C1] CR2: 00007f03ef8ce2d8 CR3: 000000006bece000 CR4: 00000000003506f0 [ 301.337841][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 301.337851][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 301.337860][ C1] Call Trace: [ 301.337868][ C1] [ 301.337876][ C1] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 301.337901][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 301.337919][ C1] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 301.337936][ C1] ? nmi_handle+0x2a/0x5a0 [ 301.337968][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 301.337987][ C1] ? nmi_handle+0x14f/0x5a0 [ 301.338010][ C1] ? nmi_handle+0x2a/0x5a0 [ 301.338033][ C1] ? __hrtimer_run_queues+0x43a/0xd50 [ 301.338054][ C1] ? default_do_nmi+0x63/0x160 [ 301.338072][ C1] ? exc_nmi+0x123/0x1f0 [ 301.338089][ C1] ? end_repeat_nmi+0xf/0x53 [ 301.338134][ C1] ? __hrtimer_run_queues+0x407/0xd50 [ 301.338159][ C1] ? __hrtimer_run_queues+0x43a/0xd50 [ 301.338182][ C1] ? __hrtimer_run_queues+0x43a/0xd50 [ 301.338207][ C1] ? __hrtimer_run_queues+0x43a/0xd50 [ 301.338231][ C1] [ 301.338236][ C1] [ 301.338242][ C1] ? ktime_get_update_offsets_now+0x3c/0x250 [ 301.338271][ C1] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 301.338295][ C1] ? ktime_get_update_offsets_now+0x22d/0x250 [ 301.338317][ C1] hrtimer_interrupt+0x396/0x990 [ 301.338354][ C1] __sysvec_apic_timer_interrupt+0x110/0x3f0 [ 301.338382][ C1] sysvec_apic_timer_interrupt+0xa1/0xc0 [ 301.338405][ C1] [ 301.338410][ C1] [ 301.338416][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 301.338441][ C1] RIP: 0010:check_preemption_disabled+0x4/0x120 [ 301.338468][ C1] Code: 8c 48 c7 c6 60 17 1f 8c eb 1c 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 41 57 41 56 <41> 54 53 48 83 ec 10 65 48 8b 04 25 28 00 00 00 48 89 44 24 08 65 [ 301.338481][ C1] RSP: 0018:ffffc90015b3fc90 EFLAGS: 00000282 [ 301.338494][ C1] RAX: 0000000000000001 RBX: ffff88807d1f4010 RCX: ffff888028a59e00 [ 301.338506][ C1] RDX: dffffc0000000000 RSI: ffffffff8c1f1760 RDI: ffffffff8c1f1720 [ 301.338523][ C1] RBP: ffff88807d1f4010 R08: ffffffff92f71587 R09: 1ffffffff25ee2b0 [ 301.338536][ C1] R10: dffffc0000000000 R11: fffffbfff25ee2b1 R12: 1ffffd40000e9fcf [ 301.338548][ C1] R13: dffffc0000000000 R14: ffffffff82014429 R15: ffffea000074fe78 [ 301.338561][ C1] ? percpu_ref_put+0x19/0x180 [ 301.338589][ C1] ? percpu_ref_put+0x19/0x180 [ 301.338607][ C1] rcu_is_watching+0x15/0xb0 [ 301.338625][ C1] ? percpu_ref_put+0x19/0x180 [ 301.338643][ C1] percpu_ref_put+0xb6/0x180 [ 301.338664][ C1] __memcg_kmem_uncharge_page+0x141/0x310 [ 301.338694][ C1] do_exit+0x1cfa/0x27e0 [ 301.338721][ C1] ? __pfx_do_exit+0x10/0x10 [ 301.338748][ C1] ? preempt_schedule_thunk+0x1a/0x30 [ 301.338771][ C1] do_group_exit+0x207/0x2c0 [ 301.338796][ C1] __x64_sys_exit_group+0x3f/0x40 [ 301.338818][ C1] do_syscall_64+0xf3/0x230 [ 301.338844][ C1] ? clear_bhb_loop+0x35/0x90 [ 301.338870][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 301.338894][ C1] RIP: 0033:0x7fce65575b29 [ 301.338911][ C1] Code: Unable to access opcode bytes at 0x7fce65575aff. [ 301.338919][ C1] RSP: 002b:00007ffee3fc03f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 301.338935][ C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fce65575b29 [ 301.338947][ C1] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000 [ 301.338956][ C1] RBP: 0000000000000001 R08: 0000000fe3fc050f R09: 0000000000001388 [ 301.338967][ C1] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000032 [ 301.338977][ C1] R13: 0000000000001388 R14: 00007ffee3fc04d0 R15: 00007ffee3fc04d0 [ 301.338998][ C1] [ 301.339623][ C0] rcu: rcu_preempt kthread starved for 10458 jiffies! g27013 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 301.821193][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 301.831174][ C0] rcu: RCU grace-period kthread stack dump: [ 301.837068][ C0] task:rcu_preempt state:R running task stack:25560 pid:17 tgid:17 ppid:2 flags:0x00004000 [ 301.848830][ C0] Call Trace: [ 301.852122][ C0] [ 301.855073][ C0] __schedule+0x1796/0x49d0 [ 301.859621][ C0] ? __pfx___schedule+0x10/0x10 [ 301.864490][ C0] ? __pfx_lock_release+0x10/0x10 [ 301.869525][ C0] ? __asan_memset+0x23/0x50 [ 301.874246][ C0] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 301.880069][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 301.886418][ C0] ? schedule+0x90/0x320 [ 301.890674][ C0] schedule+0x14b/0x320 [ 301.894844][ C0] schedule_timeout+0x1be/0x310 [ 301.899713][ C0] ? __pfx_schedule_timeout+0x10/0x10 [ 301.905112][ C0] ? __pfx_process_timeout+0x10/0x10 [ 301.910421][ C0] ? prepare_to_swait_event+0x32e/0x350 [ 301.916000][ C0] rcu_gp_fqs_loop+0x2df/0x1330 [ 301.920885][ C0] ? __pfx_rcu_implicit_dynticks_qs+0x10/0x10 [ 301.927004][ C0] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 301.932313][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 301.938256][ C0] ? finish_swait+0xd4/0x1e0 [ 301.942958][ C0] rcu_gp_kthread+0xa7/0x3b0 [ 301.947576][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 301.952803][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 301.958735][ C0] ? __kthread_parkme+0x169/0x1d0 [ 301.963783][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 301.969000][ C0] kthread+0x2f0/0x390 [ 301.973087][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 301.978301][ C0] ? __pfx_kthread+0x10/0x10 [ 301.982908][ C0] ret_from_fork+0x4b/0x80 [ 301.987350][ C0] ? __pfx_kthread+0x10/0x10 [ 301.991950][ C0] ret_from_fork_asm+0x1a/0x30 [ 301.996746][ C0] [ 301.999771][ C0] rcu: Stack dump where RCU GP kthread last ran: [ 302.006096][ C0] CPU: 0 PID: 8130 Comm: syz.2.1099 Not tainted 6.10.0-rc5-syzkaller-00200-g5bbd9b249880 #0 [ 302.016168][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 302.026233][ C0] RIP: 0010:smp_call_function_many_cond+0x1860/0x29d0 [ 302.033026][ C0] Code: 45 8b 65 00 44 89 e6 83 e6 01 31 ff e8 c9 0c 0c 00 41 83 e4 01 49 bc 00 00 00 00 00 fc ff df 75 07 e8 74 08 0c 00 eb 38 f3 90 <42> 0f b6 04 23 84 c0 75 11 41 f7 45 00 01 00 00 00 74 1e e8 58 08 [ 302.052651][ C0] RSP: 0018:ffffc9000cbdf460 EFLAGS: 00000293 [ 302.058747][ C0] RAX: ffffffff818a20f8 RBX: 1ffff110172a8891 RCX: ffff88802b33da00 [ 302.066740][ C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 302.074736][ C0] RBP: ffffc9000cbdf640 R08: ffffffff818a20c7 R09: 1ffffffff1f58485 [ 302.082731][ C0] R10: dffffc0000000000 R11: 0000000000000000 R12: dffffc0000000000 [ 302.090721][ C0] R13: ffff8880b9544488 R14: ffff8880b943f880 R15: 0000000000000001 [ 302.098701][ C0] FS: 0000000000000000(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000 [ 302.107642][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 302.114232][ C0] CR2: 00007ffc676f0c88 CR3: 0000000022a8c000 CR4: 00000000003506f0 [ 302.122217][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 302.130199][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 302.138175][ C0] Call Trace: [ 302.141463][ C0] [ 302.144319][ C0] ? rcu_check_gp_kthread_starvation+0x278/0x310 [ 302.150664][ C0] ? print_other_cpu_stall+0x1470/0x15a0 [ 302.156322][ C0] ? __pfx_print_other_cpu_stall+0x10/0x10 [ 302.162146][ C0] ? __pfx_lock_release+0x10/0x10 [ 302.167243][ C0] ? kvm_check_and_clear_guest_paused+0x6a/0xd0 [ 302.173511][ C0] ? rcu_sched_clock_irq+0x9f4/0x10a0 [ 302.178916][ C0] ? __pfx_rcu_sched_clock_irq+0x10/0x10 [ 302.184568][ C0] ? hrtimer_run_queues+0x16c/0x460 [ 302.189784][ C0] ? acct_account_cputime+0x207/0x210 [ 302.195171][ C0] ? update_process_times+0x1ce/0x230 [ 302.200560][ C0] ? tick_nohz_handler+0x37c/0x500 [ 302.205706][ C0] ? __pfx_tick_nohz_handler+0x10/0x10 [ 302.211198][ C0] ? __hrtimer_run_queues+0x551/0xd50 [ 302.216595][ C0] ? ktime_get_update_offsets_now+0x3c/0x250 [ 302.222638][ C0] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 302.228392][ C0] ? ktime_get_update_offsets_now+0x22d/0x250 [ 302.234487][ C0] ? hrtimer_interrupt+0x396/0x990 [ 302.239647][ C0] ? __sysvec_apic_timer_interrupt+0x110/0x3f0 [ 302.245829][ C0] ? sysvec_apic_timer_interrupt+0xa1/0xc0 [ 302.251658][ C0] [ 302.254600][ C0] [ 302.257536][ C0] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 302.263812][ C0] ? smp_call_function_many_cond+0x1847/0x29d0 [ 302.269978][ C0] ? smp_call_function_many_cond+0x1878/0x29d0 [ 302.276149][ C0] ? smp_call_function_many_cond+0x1860/0x29d0 [ 302.282482][ C0] ? lruvec_stat_sub_folio+0x1d2/0x3c0 [ 302.288113][ C0] ? __pfx_flush_tlb_func+0x10/0x10 [ 302.293345][ C0] ? __pfx_lruvec_stat_sub_folio+0x10/0x10 [ 302.299208][ C0] ? native_tlb_remove_table+0x3d/0x50 [ 302.304707][ C0] ? ___pud_free_tlb+0x114/0x190 [ 302.309674][ C0] ? __pfx_smp_call_function_many_cond+0x10/0x10 [ 302.316113][ C0] ? free_pgd_range+0xd57/0xdd0 [ 302.320994][ C0] ? rcu_is_watching+0x15/0xb0 [ 302.325777][ C0] ? __pfx_flush_tlb_func+0x10/0x10 [ 302.331083][ C0] on_each_cpu_cond_mask+0x3f/0x80 [ 302.336219][ C0] flush_tlb_mm_range+0x329/0x5c0 [ 302.341279][ C0] ? __pfx_flush_tlb_mm_range+0x10/0x10 [ 302.346852][ C0] ? unlink_anon_vmas+0x5d4/0x5f0 [ 302.351900][ C0] tlb_flush_mmu+0x1aa/0x680 [ 302.356536][ C0] tlb_finish_mmu+0xd4/0x200 [ 302.361141][ C0] exit_mmap+0x44f/0xc80 [ 302.365418][ C0] ? __pfx_exit_mmap+0x10/0x10 [ 302.370199][ C0] ? __asan_memset+0x23/0x50 [ 302.374832][ C0] ? uprobe_clear_state+0x277/0x290 [ 302.380049][ C0] ? mm_update_next_owner+0x53c/0x650 [ 302.385444][ C0] __mmput+0x115/0x3c0 [ 302.389527][ C0] exit_mm+0x220/0x310 [ 302.393620][ C0] ? __pfx_exit_mm+0x10/0x10 [ 302.398284][ C0] ? taskstats_exit+0x348/0xa70 [ 302.403166][ C0] ? tty_audit_exit+0x155/0x200 [ 302.408063][ C0] do_exit+0x9aa/0x27e0 [ 302.412279][ C0] ? __pfx_do_exit+0x10/0x10 [ 302.416926][ C0] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 302.422359][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 302.428366][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 302.434712][ C0] ? _raw_spin_lock_irq+0xdf/0x120 [ 302.439857][ C0] do_group_exit+0x207/0x2c0 [ 302.444465][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 302.449701][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 302.454918][ C0] get_signal+0x16a1/0x1740 [ 302.459463][ C0] ? __pfx_get_signal+0x10/0x10 [ 302.464362][ C0] arch_do_signal_or_restart+0x96/0x860 [ 302.469935][ C0] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 302.476211][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 302.482232][ C0] ? syscall_exit_to_user_mode+0xa3/0x370 [ 302.487999][ C0] syscall_exit_to_user_mode+0xc9/0x370 [ 302.493583][ C0] do_syscall_64+0x100/0x230 [ 302.498214][ C0] ? clear_bhb_loop+0x35/0x90 [ 302.502926][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 302.508848][ C0] RIP: 0033:0x7fce65575b29 [ 302.513282][ C0] Code: Unable to access opcode bytes at 0x7fce65575aff. [ 302.520317][ C0] RSP: 002b:00007fce663310f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 302.528749][ C0] RAX: fffffffffffffe00 RBX: 00007fce65703fa8 RCX: 00007fce65575b29 [ 302.536737][ C0] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fce65703fa8 [ 302.544719][ C0] RBP: 00007fce65703fa0 R08: 00007fce663316c0 R09: 00007fce663316c0 [ 302.552708][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fce65703fac [ 302.560695][ C0] R13: 000000000000000b R14: 00007ffee3fc0030 R15: 00007ffee3fc0118 [ 302.568705][ C0]