last executing test programs: 3m22.192617568s ago: executing program 2 (id=1538): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) r2 = syz_init_net_socket$ax25(0x3, 0x5, 0x0) r3 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) listen(r2, 0x3) accept4(r2, 0x0, 0x0, 0x0) 3m20.708599887s ago: executing program 2 (id=1543): r0 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r0, &(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x200, 0xfffffffd}}, 0x10) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000140)={0x42, 0xf5, 0x1}, 0x10) r1 = socket$tipc(0x1e, 0x2, 0x0) bind$tipc(r1, &(0x7f0000000080)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10) r2 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r2, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10) r3 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r3, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x3, 0x4}}, 0x10) bind$tipc(r3, &(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x42, 0x2}}}, 0x10) r4 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r4, &(0x7f0000000040)=@name={0x1e, 0x2, 0x0, {{0x42, 0x3}}}, 0x10) r5 = socket$tipc(0x1e, 0x5, 0x0) sendmsg$tipc(r5, &(0x7f0000000380)={&(0x7f0000000140)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x4, 0x4}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4000884}, 0x4) 3m19.793731443s ago: executing program 2 (id=1545): socket(0x2000000000000021, 0x2, 0x10000000000002) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) r3 = mq_open(&(0x7f00000000c0)=',):\x00', 0x40, 0xf4, 0x0) lseek(r3, 0x401, 0x4) 3m18.157312833s ago: executing program 2 (id=1547): syz_mount_image$fuse(0x0, &(0x7f0000000100)='./file0\x00', 0x14002, 0x0, 0x0, 0x0, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000002c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}) syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x8, 0xd}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x4}, [@call={0x85, 0x0, 0x0, 0x8}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r1}, 0x18) syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000080)='./file0\x00', 0xa048c5, &(0x7f0000000140)={[{@utf8no}, {@shortname_winnt}, {@rodir}, {@fat=@discard}, {@utf8}, {@shortname_winnt}, {@fat=@nocase}, {@shortname_win95}, {@fat=@dos1xfloppy}, {@utf8}, {@fat=@sys_immutable}, {@fat=@flush}]}, 0x0, 0x291, &(0x7f0000000840)="$eJzs3c1qE28Ux/Ffk6YvKW2y+PMHBfGgG90MbbyCIC2IAaU2oi6EqZ1oyJiUTKxExHbn1usoLt0J6g104869uCmC4KYLMdIkY5M2YltTpzbfD5Q5nec5M8+8hTMDmWzeevGwVAicgltTbMwUk9a0JaW3o7ah9jTWjEfUaU0XJ75+OHPj9p2r2Vxudt5sLrtwKWNmU2ffPH768ty72sTNV1OvR7WRvrv5JfNx4/+NU5vfF8KlVyTXFiuVmrvoe7ZUDEqO2XXfcwPPiuXAq9aso73gV5aX6+aWlyaTy1UvCMwt163k1a1WsVq1bu59t1g2x3FsMqlBEz9wRn59ft7NHslgEIXxXjOr1awb79mYX/8bgwIAAMdLVPX/g2JgxcDKla76fm/9HxP1/9Gh/h8E2/V/sn39dqP+BwAAAAAAAAAAAAAAAAAAAADgX7DVaKQajUYqnIZ/o5LGJIX/h/1Hoh0u+uygxx8nS8cX98Yk//lKfiXfmrbaswUV5cvTdEL61jwf2lrx3JXc7LQ1pfXWX23nr67k4xoN80Pp3vkzrXzrzk8o2bn+jFL6r3d+pmf+iC6cD/MTnhyl9P6eKvK11Dyvd/KfzZhdvpbblT/e7AcAAAAAwEng2E977t+b7Y6Frw3Z1d6aufN8QKnfPB/YdX89rNPD0W03AAAAAACDJKg/Kbm+71W7gtieOSchCH//oC8L/NWuI+hbEJN02PT4nx3lz5ISOg47oa/Bp0etK2A/naP8VAIAAABwFMKifyjqgQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMMD2+/KwsP9h3j3Wsbp4NFsJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHA8/AgAA//+oMRp3") r2 = syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00') mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f00000002c0)='./file0\x00', 0x0, 0x1333404, 0x0) mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11080, 0x0) mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0) read$FUSE(r2, &(0x7f0000002140)={0x2020}, 0x2100) 3m17.891150365s ago: executing program 2 (id=1551): syz_open_procfs(0x0, &(0x7f0000000200)='uid_map\x00') clock_adjtime(0x0, &(0x7f0000000b00)={0xfd0, 0x0, 0x4, 0x0, 0xffffffffffffffff, 0x0, 0x9, 0x0, 0xfffffffffffffffd, 0x5, 0x0, 0xffffffffffffffff, 0x0, 0x41}) timer_create(0x0, 0x0, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4b, 0x0, 0x0) r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) r1 = socket$inet6(0xa, 0x806, 0x0) bind$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23}, 0x1c) listen(r1, 0x3) r2 = socket$inet_dccp(0x2, 0x6, 0x0) bind$inet(r2, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10) connect$inet(r2, &(0x7f0000772000)={0x2, 0x4e23}, 0x10) r3 = accept4(r1, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), r3) close_range(r0, r2, 0x0) 3m17.624575676s ago: executing program 2 (id=1552): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_clone(0x8000, 0x0, 0x0, 0x0, 0x0, 0x0) r4 = syz_pidfd_open(r3, 0x0) pidfd_getfd(r4, 0xffffffffffffffff, 0x0) 3m17.244011468s ago: executing program 32 (id=1552): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_clone(0x8000, 0x0, 0x0, 0x0, 0x0, 0x0) r4 = syz_pidfd_open(r3, 0x0) pidfd_getfd(r4, 0xffffffffffffffff, 0x0) 16.029636181s ago: executing program 0 (id=2039): r0 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) bind$nfc_llcp(r0, &(0x7f0000001040)={0x27, 0x0, 0xffffffffffffffff, 0x5, 0xff, 0x0, "d92984bd1ca44c226af5160e961711a077609475b78411e88509de050000e5ff00f2170e65e3f50327e422000000000000000200800000001100", 0x39}, 0x60) close(0x4) 13.794102065s ago: executing program 0 (id=2042): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = openat$proc_mixer(0xffffffffffffff9c, 0x0, 0x1, 0x0) writev(r3, &(0x7f00000028c0), 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), r4) sendmsg$L2TP_CMD_TUNNEL_GET(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r5, 0x325, 0x400, 0x0, {0x8}}, 0x14}}, 0x4800) 12.564245743s ago: executing program 0 (id=2052): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) ioctl$TIOCL_GETMOUSEREPORTING(0xffffffffffffffff, 0x5412, &(0x7f00000000c0)=0x13) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8) 11.28859755s ago: executing program 3 (id=2048): setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, 0x0, 0x0) acct(0x0) bind$alg(0xffffffffffffffff, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'sha3-224\x00'}, 0x58) sendto$inet(0xffffffffffffffff, &(0x7f0000000200)="b2", 0x1, 0x20048084, 0x0, 0x0) 10.477902575s ago: executing program 4 (id=2050): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000300)={[{@nobarrier}, {@max_batch_time={'max_batch_time', 0x3d, 0x6}}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@resgid}, {@nogrpid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x7}}, {@errors_continue}]}, 0x3, 0x59c, &(0x7f0000000940)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="640000000206010200000000000000000000000015000300686173683a69702c706f72742c6e65"], 0x64}}, 0x0) r3 = add_key$keyring(&(0x7f0000000340), &(0x7f0000000180)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff) add_key(&(0x7f0000000240)='dns_resolver\x00', &(0x7f0000000080)={'syz', 0x1}, &(0x7f0000000280)="dee7030022cf5c6c7bc31bd2599759fafa9e5e1dbac27b0426fc0299c41fb9b9dadd77c2dac894f365ae68edf335abf35ec53d6751467ebd2c187491bcab2c8d34fec505fc8a14622dba33ff9b054eb7e8a5bc4ab2719cb230328931deb95ef3fcafb1ce27743a93f4715976edec860ab49c3a4f51ab0124b50c3362201a307df03000", 0x83, r3) keyctl$search(0xa, r3, &(0x7f0000000400)='dns_resolver\x00', &(0x7f0000000140)={'syz', 0x1, 0x2e}, 0xffffffffffffffff) 10.184563147s ago: executing program 3 (id=2051): openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) fstat(r0, 0x0) mount(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)) request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x3}, &(0x7f0000001fee)='R\x10rust\xe3cusg\x91\xdedH\xe5+\xf0', 0xffffffffffffffff) 8.564591837s ago: executing program 3 (id=2054): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000070000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb7020000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) r4 = socket$phonet_pipe(0x23, 0x5, 0x2) ioctl$sock_ifreq(0xffffffffffffffff, 0x8931, &(0x7f0000000080)={'virt_wifi0\x00', @ifru_settings={0xb592, 0x6, @cisco=0x0}}) ioctl$sock_proto_private(r4, 0x8b0f, &(0x7f0000000080)) 8.558176737s ago: executing program 4 (id=2055): syz_mount_image$exfat(&(0x7f00000005c0), &(0x7f0000000240)='./file0\x00', 0x3000050, &(0x7f0000000600)=ANY=[], 0x2, 0x14fe, &(0x7f0000008900)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$tipc(&(0x7f00000003c0), 0xffffffffffffffff) sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x30, r4, 0x1, 0x0, 0x100000, {{}, {}, {0x14, 0x19, {0x2, 0x1, 0x0, 0x2000000}}}}, 0x30}, 0x1, 0x0, 0x0, 0x4008000}, 0x1004) 7.569592983s ago: executing program 3 (id=2057): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) socket$inet6_udp(0xa, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x7}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0xc, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}}, &(0x7f0000000840)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000d80)={r3, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000040)="76ea090000000000009ba56a88ca", 0x0, 0xb940, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 5.925969563s ago: executing program 4 (id=2058): r0 = gettid() timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc) connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000002c0), 0x4) setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x2, &(0x7f0000000300)=@gcm_128={{0x303}, "fc674d000000f8f7", "c5991ee20139b401046a89606ffcf92e", "2c5be7c6", "a0ca05c0707e52f4"}, 0x28) recvfrom$inet6(r2, &(0x7f00000000c0)=""/3, 0x3, 0x0, 0x0, 0x0) sched_setscheduler(0x0, 0x2, 0x0) r3 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)=0x0) timer_settime(r4, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) splice(r2, 0x0, r1, 0x0, 0x10000008ebc, 0x0) 5.839617464s ago: executing program 1 (id=2059): syz_emit_vhci(&(0x7f00000001c0)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x24}, @hci_rp_read_local_oob_data={{0x7}, {0xa4, "d3d3ee0e7fcf8c66655cda90f6160ff4", "2f3187f90136c02e4e69b48f14c5f719"}}}}, 0x27) unshare(0x2040400) r0 = eventfd(0x3) sync_file_range(r0, 0xffffffffffff0700, 0xfffffffffffffffd, 0x7) syz_emit_vhci(&(0x7f0000000340)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x0, 0x0, 0x413}}}, 0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r1, &(0x7f0000000840), 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0xd) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000001ac0)=0x1) ioctl$FIONREAD(r2, 0x541b, 0x0) 4.873534149s ago: executing program 3 (id=2060): r0 = getpid() prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002100)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r4 = syz_pidfd_open(r0, 0x0) setns(r4, 0x8020000) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x141042, 0x0) mount_setattr(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', 0x8000, &(0x7f0000001dc0)={0xf, 0x0, 0x100000}, 0x20) 4.612559161s ago: executing program 1 (id=2061): setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3) pipe2$9p(&(0x7f00000001c0), 0x0) tee(0xffffffffffffffff, 0xffffffffffffffff, 0x5, 0x4) sched_setaffinity(0x0, 0x0, 0x0) openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f000001aa40)=""/102400, 0x19000) r1 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000080)={{{@in=@broadcast, @in6=@private0, 0x0, 0x0, 0x4e22, 0x0, 0x2}, {0x0, 0x9, 0x0, 0x2}, {}, 0x0, 0x0, 0x1, 0x0, 0x3}, {{@in=@local, 0x0, 0x32}, 0x0, @in6=@rand_addr=' \x01\x00', 0x34ff, 0x4, 0x0, 0xb7}}, 0x400) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045) syz_open_procfs$namespace(0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1018e58, &(0x7f0000000380)={[{@nodioread_nolock}, {@noblock_validity}, {@data_err_ignore}, {@max_batch_time={'max_batch_time', 0x3d, 0x8c9}}, {@nodiscard}, {@inlinecrypt}, {@i_version}]}, 0x6, 0x5fc, &(0x7f0000000600)="$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") 4.436516802s ago: executing program 1 (id=2062): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0) getsockname$packet(r1, &(0x7f0000000600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r2, @ANYBLOB="f5ff0f00252155b21c0012000c000100626f6e64000000000c0002000800010001"], 0x3c}}, 0x40000) r3 = socket(0x10, 0x803, 0x0) r4 = socket(0x10, 0x803, 0x2) r5 = syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r4) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r6, @ANYRES16=r5], 0x3c}, 0x1, 0x0, 0x0, 0x40020c1}, 0x0) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r7, 0x8916, &(0x7f0000000100)={@ipv4={'\x00', '\xff\xff', @multicast2}, 0x56, r2}) r8 = socket$inet6_sctp(0xa, 0x5, 0x84) ioctl$sock_inet6_SIOCSIFADDR(r8, 0x8916, &(0x7f0000000180)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x2d, r6}) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=@newlink={0x3c, 0x10, 0x503, 0x0, 0x700, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1006}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x440b0) 4.273939983s ago: executing program 0 (id=2063): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000016c0)=@base={0x9, 0x4, 0x8, 0x8, 0x8}, 0x50) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000400)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, r4}, 0x38) 3.512665348s ago: executing program 4 (id=2064): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0) sendmsg$NFT_MSG_GETOBJ(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="34000000150a03000000000000000000020000000900020073797a310000000008000340000000010900010073797a30"], 0x34}}, 0x0) 3.16236677s ago: executing program 1 (id=2065): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000300)=ANY=[@ANYBLOB="58000000020601080000000000000000000000400500010006000000050005000200000005000400000040000900020073797a31000000000c000780080012400000000211000300686173683a69702c6d61726b000000007d4a451e1fdbe8d304550c872c81910e739c780c8086d4151c1bc90e5d07720f005ca39af6d873b915d086b4d471b807f56e56caf03ae43c51cf0473a6ef149b9af0b7efc3285bc5bf24d5e0c9b42965939d8ab1b57dad5cbdf4a190e95f1005f428048ef7b4e5bef521"], 0x58}}, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x48, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080) 3.091321711s ago: executing program 0 (id=2066): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20020008008f}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002100)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_DESTROY(r4, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x1c, 0x3, 0x6, 0x5, 0x0, 0x0, {0x0, 0x0, 0x6}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24048810}, 0x8d0) syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff) 2.068359977s ago: executing program 4 (id=2067): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) open_tree(0xffffffffffffff9c, 0x0, 0x89901) acct(&(0x7f0000000000)='./file1\x00') syz_io_uring_setup(0x49a, &(0x7f00000000c0)={0x0, 0x79af, 0x3180, 0x8000, 0x40024e}, 0x0, 0x0) write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x7, 0x4, 0x8b, 0xfffa}, 0x1d, [0x7ffe, 0xc95a, 0xfffffff3, 0x9, 0x80, 0x2, 0x3, 0x7f, 0x6, 0x4d, 0x39cc191a, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x5, 0x4, 0x8, 0x4, 0x3c5b, 0x1, 0x3, 0x9, 0x1, 0x1f461e2c, 0x0, 0xe660, 0x4, 0x7, 0x101, 0x7fff, 0x4c74, 0x80000000, 0x242, 0x3, 0xe, 0x0, 0x71, 0xfffffff8, 0x7, 0x0, 0x0, 0xd, 0x3e, 0x8f, 0x6, 0x10000006, 0x0, 0x5, 0x4, 0x8, 0x0, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0xffff, 0x134, 0x7ffe, 0x10, 0xfffffff3, 0x129432e6, 0xcb, 0xf9, 0xd, 0x2bf, 0x6c9, 0x9, 0x6, 0x3, 0x0, 0x7, 0x5, 0x0, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x4, 0x8000, 0x9, 0x400, 0x5, 0x6, 0x7, 0xff, 0x5, 0x5, 0x5f31, 0x4, 0x0, 0x2, 0x2, 0xa, 0x4, 0x9, 0x8, 0x800, 0x6, 0x7, 0x8000, 0x1, 0xfe000000, 0xff7f, 0x2, 0x7f, 0x9, 0x2, 0xffffffff, 0x9, 0x1, 0x7, 0x3, 0x9, 0x48c93690, 0x42, 0x2], [0x400, 0x4, 0x0, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x83, 0x80000003, 0x9, 0x3e7, 0x9, 0x5, 0x2, 0x2, 0xf38, 0x8, 0x4, 0x6d01, 0x5, 0x38, 0x800003, 0x200, 0x80, 0xf, 0xd, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0x53cf697b, 0x5, 0x6, 0xac8, 0xbf, 0x2, 0x3, 0x7ff, 0xfffffff9, 0x1, 0x1, 0xffff, 0x0, 0x1a, 0x1c, 0x120000, 0x3, 0x6, 0xaaed, 0x4, 0x65], [0x9, 0xbb31, 0x3, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0x5, 0xce7, 0x1ff, 0x2, 0xf58, 0x5, 0x3, 0x101, 0x10000, 0x6, 0x7ffe, 0x8, 0x200a620, 0x2, 0x5, 0x1, 0x2, 0x14c, 0x60a7, 0xe, 0x6, 0xffffffff, 0x80000000, 0x5, 0x8, 0xc8, 0xee1, 0xfffff000, 0xffff, 0x3, 0x7f, 0x100, 0x9602, 0x7, 0x2, 0x4, 0x6, 0x1, 0x10080, 0x5, 0x8, 0x30b1d693, 0xa1f, 0x8, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1c, 0x1, 0x200, 0xffbf2441, 0xfff]}, 0x45c) ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0) 1.918014668s ago: executing program 0 (id=2068): syz_io_uring_setup(0x3f, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) openat$procfs(0xffffffffffffff9c, &(0x7f0000002600)='/proc/bus/input/devices\x00', 0x0, 0x0) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) 1.910991648s ago: executing program 1 (id=2069): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0) socket$nl_route(0x10, 0x3, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=@newlink={0x4c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x300}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MODE={0x8, 0x1, 0x8}]}}}, @IFLA_LINK={0x8, 0x5, r6}, @IFLA_MASTER={0x8, 0xa, r6}]}, 0x4c}}, 0x0) r7 = socket(0x10, 0x803, 0x8) sendmsg$IPVS_CMD_SET_INFO(r7, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x60, &(0x7f0000000300)={&(0x7f0000000900)=ANY=[@ANYBLOB="5c00000010001ffffcffffff0000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800b0001006772657461700000240002800800070064010100060003001008000008001500700f0d0008000700ac1414bb08000a00", @ANYRES32=r8], 0x5c}}, 0x40) 908.220724ms ago: executing program 3 (id=2070): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mount(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x10015, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d) request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x3}, &(0x7f0000001fee)='R\x10rust\xe3cusg\x91\xdeeH\xe5+\xf0', 0xffffffffffffffff) 5.11392ms ago: executing program 1 (id=2071): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000300)={[{@nobarrier}, {@max_batch_time={'max_batch_time', 0x3d, 0x6}}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@resgid}, {@nogrpid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x7}}, {@errors_continue}]}, 0x3, 0x59c, &(0x7f0000000940)="$eJzs3c9rG8ceAPDvynacny8OhPDeOxRDDk1JI8d2f6RQSHosbWiguafCVkywHAVLDrEbSHJoLr2UUCilgdI/oPceQ/+BXnvoNdAGQgmmPfSisvIqVmTJim0RK9HnA2vP7K40O7vzHc1oJRTAwBpP/+Qi/hcRXyURh5u2DUe2cXxtv9UnN2fSJYla7dM/k0iydY39k+z/gSzz34j4+YuIk7mN5VaWV+YLpVJxMctPVBeuTVSWV05dWSjMFeeKV6emp8+8PT313rvv9Kyub1z4+9tPHnx45svjq9/8+OjIvSTOxcFsW3M9duB2c2Y8xrNzMhLnWnac7EFh/STZ7QNgW4ayOB+JtA84HENZ1AOvvlsRUQMGVCL+YUA1xgGNuX2P5sEvjccfrE2ANta/8abF3vrcaP9q8szMKJ3vjvWg/PGI+OmP+/fSJbq8D3GrB+UBNNy+ExGnh4c39n9J2jft28lzn17vRDsab8kP2usP7KYH6fjnzfbjn7XY3Fv/2zr+OdAmdreje/znHvWgmI7S8d/7z45/sz7radc1NpTlDtXHfCPJ5Sul4umI+E9EnIiR0TS/2f2cM6sPa522NY//0iU9hsZYMDuOR8OjTQ8Yipgt1IZ2WO2nHt+J+P/6+DeJZ/v/+vVP2lz/9HxcWEse6lbGseL91zpt617/Zr0fAdd+iHi97fxn/Y5Wsvn9yYl6e5hotIqN/rp77JdO5W+t/r33+E59etNU/9HW+o8lzfdrK1sv4/u9/xQ7bdtq+58/m7b/amFPcrGe35Otv1GoVhcnI/YkH29cP7X++Ea+sX/a/k8c37z/a9f+04HRZ89Z/7tH73bctQ+uf8xu3v5brv/WEw8/+vy7TuU/3/V/q546ka1Jr3+3erU7nF/bHOBOzh0AAAAAAAD0m1xEHIwkl3+azuXy+bXPdxyN/blSuVI9ebm8dHU26t+VHYuRXONO9+Gmz0NMZp+HbeSnWvLTEXEkIr4e2lfP52fKpdndrjwAAAAAAAAAAAAAAAAAAAD0iQMdvv+f+r1nvzIA9C0/+Q2Dq2v89+KXnoC+5PUfBpf4h8El/mFwiX8YXOIfBpf4h8El/mFwiX8AAAAAAAAAAAAAAAAAAAAAAAAAAADoqQvnz6dLbfXJzZk0P3t9eWm+fP3UbLEyn19YmsnPlBev5efK5blSMT9TXuj2fKVy+drkVCzdmKgWK9WJyvLKpYXy0tXqpSsLhbnipeLIC6kVAAAAAAAAAAAAAAAAAAAAvFwqyyvzhVKpuNiaGI2IDpsGLXE2+uIwtp1IOl/lRgXXbKuIWi06nJ/f+qDur1ri4gsra5c7JgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABo8m8AAAD//4/DM2s=") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="640000000206010200000000000000000000000015000300686173683a69702c706f72742c6e65"], 0x64}}, 0x0) r3 = add_key$keyring(&(0x7f0000000340), &(0x7f0000000180)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff) add_key(&(0x7f0000000240)='dns_resolver\x00', &(0x7f0000000080)={'syz', 0x1}, &(0x7f0000000280)="dee7030022cf5c6c7bc31bd2599759fafa9e5e1dbac27b0426fc0299c41fb9b9dadd77c2dac894f365ae68edf335abf35ec53d6751467ebd2c187491bcab2c8d34fec505fc8a14622dba33ff9b054eb7e8a5bc4ab2719cb230328931deb95ef3fcafb1ce27743a93f4715976edec860ab49c3a4f51ab0124b50c3362201a307df03000", 0x83, r3) keyctl$search(0xa, r3, &(0x7f0000000400)='dns_resolver\x00', &(0x7f0000000140)={'syz', 0x1, 0x2e}, 0xffffffffffffffff) 0s ago: executing program 4 (id=2079): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$xdp(0x2c, 0x3, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, &(0x7f0000000140)=0x4000, 0x4) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000280)={'batadv_slave_1\x00', 0x0}) r4 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r4, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000, 0x0, 0x1}, 0x20) setsockopt$XDP_UMEM_COMPLETION_RING(r4, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4) r5 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$XDP_RX_RING(r4, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000000580)={'batadv_slave_1\x00', 0x0}) setsockopt$XDP_UMEM_FILL_RING(r4, 0x11b, 0x5, &(0x7f0000000300)=0x1, 0x4) bind$xdp(r4, &(0x7f0000000100)={0x2c, 0x8, r6}, 0x10) bind$xdp(r1, &(0x7f0000000240)={0x2c, 0x1, r3, 0x0, r4}, 0x60) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=@getchain={0x24, 0x11, 0x43d, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r3, {0xe}, {}, {0x7}}}, 0x24}}, 0x0) kernel console output (not intermixed with test programs): de number set to 2886997162 [ 157.918821][ T51] Bluetooth: hci1: ACL packet too small [ 157.946635][ T51] Bluetooth: Unexpected continuation frame (len 10) [ 158.263454][ T7072] netlink: 'syz.2.376': attribute type 12 has an invalid length. [ 160.384452][ T7100] __vm_enough_memory: pid: 7100, comm: syz.1.384, not enough memory for the allocation [ 163.285590][ T7133] netlink: 20 bytes leftover after parsing attributes in process `syz.2.398'. [ 163.537230][ T51] Bluetooth: hci2: ACL packet too small [ 163.545967][ T51] Bluetooth: Unexpected continuation frame (len 10) [ 163.611894][ T7140] loop2: detected capacity change from 0 to 256 [ 163.624963][ T7140] exfat: Deprecated parameter 'namecase' [ 163.656617][ T7140] exfat: Unknown parameter 'obj_user' [ 163.836342][ T7140] loop2: detected capacity change from 0 to 1764 [ 165.468957][ T7175] syzkaller0: entered promiscuous mode [ 165.496267][ T7175] syzkaller0: entered allmulticast mode [ 165.649463][ T7182] vxcan2: entered allmulticast mode [ 165.943254][ T7166] 9pnet: p9_errstr2errno: server reported unknown error 1844674407 [ 171.207886][ T7257] bridge_slave_0: left allmulticast mode [ 171.213971][ T7257] bridge_slave_0: left promiscuous mode [ 171.219833][ T7257] bridge0: port 1(bridge_slave_0) entered disabled state [ 171.256837][ T7257] bridge_slave_1: left allmulticast mode [ 171.292128][ T7257] bridge_slave_1: left promiscuous mode [ 171.307008][ T7257] bridge0: port 2(bridge_slave_1) entered disabled state [ 171.324971][ T7257] bond0: (slave bond_slave_0): Releasing backup interface [ 171.349958][ T7257] bond0: (slave bond_slave_1): Releasing backup interface [ 171.454913][ T7257] team0: Port device team_slave_0 removed [ 171.528913][ T7257] team0: Port device team_slave_1 removed [ 171.593772][ T7257] bond0: (slave wlan1): Releasing backup interface [ 171.688619][ T6326] tipc: Resetting bearer [ 171.741198][ T7259] team0: Mode changed to "loadbalance" [ 171.764833][ T7265] vlan0: entered promiscuous mode [ 171.841667][ T7265] team0: Port device vlan0 added [ 172.317721][ T7289] netlink: 9275 bytes leftover after parsing attributes in process `syz.0.448'. [ 172.582251][ T27] audit: type=1326 audit(1762346153.496:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7299 comm="syz.3.450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 172.622464][ T27] audit: type=1326 audit(1762346153.496:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7299 comm="syz.3.450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 172.692263][ T27] audit: type=1326 audit(1762346153.536:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7299 comm="syz.3.450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 172.784382][ T27] audit: type=1326 audit(1762346153.536:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7299 comm="syz.3.450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 172.837113][ T27] audit: type=1326 audit(1762346153.536:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7299 comm="syz.3.450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 173.030235][ T27] audit: type=1326 audit(1762346153.546:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7299 comm="syz.3.450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 173.191363][ T7311] openvswitch: netlink: Message has 4 unknown bytes. [ 173.234822][ T27] audit: type=1326 audit(1762346153.566:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7299 comm="syz.3.450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 173.709276][ T27] audit: type=1326 audit(1762346153.566:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7299 comm="syz.3.450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 173.738765][ T27] audit: type=1326 audit(1762346153.566:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7299 comm="syz.3.450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 173.771525][ T27] audit: type=1326 audit(1762346153.566:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7299 comm="syz.3.450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 174.113798][ T7320] fuse: Bad value for 'fd' [ 175.726910][ T7344] loop2: detected capacity change from 0 to 128 [ 175.754438][ T7344] FAT-fs (loop2): Unrecognized mount option "ÿÿ" or missing value [ 175.859981][ T7344] 8021q: adding VLAN 0 to HW filter on device ipvlan2 [ 177.010720][ T7327] syz.1.453 (7327) used greatest stack depth: 20136 bytes left [ 177.640209][ T7379] netlink: 132 bytes leftover after parsing attributes in process `syz.1.480'. [ 180.828334][ T9] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 180.882525][ T7444] loop2: detected capacity change from 0 to 1024 [ 181.642694][ T9] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz1] on syz0 [ 181.989300][ T7464] fido_id[7464]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 182.076641][ T27] kauditd_printk_skb: 15 callbacks suppressed [ 182.076655][ T27] audit: type=1326 audit(1762346418.997:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7467 comm="syz.1.488" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x0 [ 182.105873][ T27] audit: type=1326 audit(1762346419.007:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="syz.3.489" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 182.128255][ T27] audit: type=1326 audit(1762346419.017:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="syz.3.489" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 182.154269][ T27] audit: type=1326 audit(1762346419.027:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="syz.3.489" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 182.180456][ T27] audit: type=1326 audit(1762346419.027:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 182.224895][ T7457] hfsplus: b-tree write err: -5, ino 4 [ 182.306832][ T27] audit: type=1326 audit(1762346419.027:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 182.735334][ T27] audit: type=1326 audit(1762346419.027:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 182.791752][ T27] audit: type=1326 audit(1762346419.027:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 182.850972][ T27] audit: type=1326 audit(1762346419.027:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 182.874276][ T27] audit: type=1326 audit(1762346419.027:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 183.073583][ T7484] loop2: detected capacity change from 0 to 1024 [ 184.701827][ T7493] cgroup: fork rejected by pids controller in /syz1 [ 186.201671][ T5784] Bluetooth: hci1: command 0x0406 tx timeout [ 186.208332][ T5784] Bluetooth: hci2: command 0x0406 tx timeout [ 186.212358][ T5781] Bluetooth: hci3: command 0x0406 tx timeout [ 186.257104][ T7549] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 188.532363][ T7578] netlink: 44 bytes leftover after parsing attributes in process `syz.1.513'. [ 188.552397][ T7578] netlink: 8 bytes leftover after parsing attributes in process `syz.1.513'. [ 188.581562][ T7578] netlink: 16 bytes leftover after parsing attributes in process `syz.1.513'. [ 188.917227][ T7585] veth1_to_bond: entered allmulticast mode [ 188.943264][ T7585] netlink: 4 bytes leftover after parsing attributes in process `syz.1.517'. [ 189.639097][ T7590] ipt_ECN: cannot use operation on non-tcp rule [ 189.656376][ T7585] bond0: (slave bond_slave_1): Releasing backup interface [ 189.758548][ T7585] veth1_to_bond (unregistering): left allmulticast mode [ 190.830122][ T7616] hugetlbfs: syz.0.532 (7616): Using mlock ulimits for SHM_HUGETLB is obsolete [ 190.973675][ T7619] netlink: 'syz.0.525': attribute type 1 has an invalid length. [ 191.066232][ T7619] bond1: entered promiscuous mode [ 191.090167][ T7619] bond1: entered allmulticast mode [ 191.110120][ T7622] netlink: 24 bytes leftover after parsing attributes in process `syz.0.525'. [ 191.223281][ T7622] 8021q: adding VLAN 0 to HW filter on device bond1 [ 191.230363][ T7621] netlink: 8 bytes leftover after parsing attributes in process `syz.0.525'. [ 191.268419][ T7621] bridge2: the hash_elasticity option has been deprecated and is always 16 [ 191.290106][ T7621] bond1: (slave bridge2): making interface the new active one [ 191.301938][ T7621] bridge2: entered promiscuous mode [ 191.308992][ T7621] bridge2: entered allmulticast mode [ 191.326238][ T7621] bond1: (slave bridge2): Enslaving as an active interface with an up link [ 192.681067][ T7637] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 193.524243][ T7648] netlink: 9275 bytes leftover after parsing attributes in process `syz.2.535'. [ 194.795904][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.810962][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.924772][ T7670] netlink: 96 bytes leftover after parsing attributes in process `syz.1.542'. [ 199.579790][ T7729] mmap: syz.1.560 (7729) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 199.666810][ T7730] xt_nat: multiple ranges no longer supported [ 200.329427][ T7732] netlink: 'syz.2.561': attribute type 10 has an invalid length. [ 200.373454][ T7732] netlink: 40 bytes leftover after parsing attributes in process `syz.2.561'. [ 200.506563][ T7732] team0: Port device geneve0 added [ 203.308411][ T7778] xt_nat: multiple ranges no longer supported [ 206.391986][ T7818] netlink: 4 bytes leftover after parsing attributes in process `syz.1.584'. [ 206.433265][ T27] kauditd_printk_skb: 46 callbacks suppressed [ 206.433278][ T27] audit: type=1804 audit(1762346443.357:290): pid=7820 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.586" name="bus" dev="ramfs" ino=13966 res=1 errno=0 [ 206.463230][ T27] audit: type=1804 audit(1762346443.377:291): pid=7820 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.586" name="bus" dev="ramfs" ino=13966 res=1 errno=0 [ 212.097169][ T27] audit: type=1326 audit(1762346449.017:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7877 comm="syz.1.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x7fc00000 [ 212.163521][ T27] audit: type=1326 audit(1762346449.057:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7877 comm="syz.1.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7ff15e38f6c9 code=0x7fc00000 [ 212.190170][ T27] audit: type=1326 audit(1762346449.057:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7877 comm="syz.1.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x7fc00000 [ 212.467744][ T7890] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 213.978551][ T7913] loop2: detected capacity change from 0 to 128 [ 214.020223][ T7913] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 214.068830][ T7913] ext4 filesystem being mounted at /143/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 214.146752][ T7919] netlink: 9275 bytes leftover after parsing attributes in process `syz.1.615'. [ 214.257869][ T7913] fscrypt: Adiantum using implementation "adiantum(xchacha12-simd,aes-aesni,nhpoly1305-avx2)" [ 214.384872][ T5787] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 215.237531][ T7934] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 217.015860][ T7954] syz_tun: entered promiscuous mode [ 217.034331][ T7954] vlan3: entered promiscuous mode [ 217.336004][ T7964] netlink: 9275 bytes leftover after parsing attributes in process `syz.3.629'. [ 218.891110][ T7986] netlink: 8 bytes leftover after parsing attributes in process `syz.3.637'. [ 225.560437][ T967] IPVS: starting estimator thread 0... [ 225.782599][ T8076] IPVS: using max 17 ests per chain, 40800 per kthread [ 226.344322][ T8082] netlink: 34 bytes leftover after parsing attributes in process `syz.3.664'. [ 228.330060][ T8110] loop2: detected capacity change from 0 to 2048 [ 228.562377][ T8110] UDF-fs: error (device loop2): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 228.574637][ T8110] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 228.585966][ T8110] UDF-fs: Scanning with blocksize 512 failed [ 228.671140][ T8110] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 229.013042][ T8129] vcan0: tx drop: invalid da for name 0x0000000000000015 [ 230.104025][ T8138] bond_slave_1: entered promiscuous mode [ 230.244342][ T8138] bond_slave_1: left promiscuous mode [ 231.965221][ T27] audit: type=1326 audit(1762346468.887:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8154 comm="syz.0.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 231.992654][ T27] audit: type=1326 audit(1762346468.907:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8154 comm="syz.0.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 232.030987][ T27] audit: type=1326 audit(1762346468.907:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8154 comm="syz.0.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 232.058459][ T27] audit: type=1326 audit(1762346468.937:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8154 comm="syz.0.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 232.087012][ T27] audit: type=1326 audit(1762346468.937:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8154 comm="syz.0.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 232.124264][ T27] audit: type=1326 audit(1762346468.937:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8154 comm="syz.0.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 232.180249][ T27] audit: type=1326 audit(1762346468.937:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8154 comm="syz.0.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 232.205782][ T27] audit: type=1326 audit(1762346468.937:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8154 comm="syz.0.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 232.230267][ T27] audit: type=1326 audit(1762346468.937:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8154 comm="syz.0.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 232.319370][ T27] audit: type=1326 audit(1762346468.937:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8154 comm="syz.0.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 233.344694][ T8180] batadv_slave_1: entered promiscuous mode [ 233.429135][ T8180] netlink: 16 bytes leftover after parsing attributes in process `syz.0.695'. [ 233.621167][ T8179] batadv_slave_1: left promiscuous mode [ 235.885588][ T8217] netlink: 4 bytes leftover after parsing attributes in process `syz.3.705'. [ 236.060348][ T8226] netlink: 'syz.0.717': attribute type 1 has an invalid length. [ 236.109619][ T8226] 8021q: adding VLAN 0 to HW filter on device bond2 [ 236.141426][ T8230] 8021q: adding VLAN 0 to HW filter on device bond2 [ 236.153532][ T8230] bond2: (slave vti0): The slave device specified does not support setting the MAC address [ 236.165382][ T8230] bond2: (slave vti0): Error -95 calling set_mac_address [ 237.086754][ T8226] bond2: (slave gretap2): making interface the new active one [ 237.109950][ T8226] bond2: (slave gretap2): Enslaving as an active interface with an up link [ 237.229377][ T8226] syz.0.717 (8226) used greatest stack depth: 19528 bytes left [ 238.068639][ T8243] loop2: detected capacity change from 0 to 16 [ 238.118197][ T8243] erofs: (device loop2): mounted with root inode @ nid 36. [ 238.512814][ T8248] erofs: (device loop2): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36 [ 238.523606][ T8248] syz.2.713: attempt to access beyond end of device [ 238.523606][ T8248] loop2: rw=524288, sector=34359738360, nr_sectors = 1976 limit=16 [ 239.133095][ T8247] netlink: 12 bytes leftover after parsing attributes in process `syz.0.712'. [ 239.171472][ T8247] xfrm1: entered promiscuous mode [ 239.190940][ T8247] xfrm1: entered allmulticast mode [ 239.212760][ T8247] netlink: 12 bytes leftover after parsing attributes in process `syz.0.712'. [ 241.741658][ T8280] vlan0: entered promiscuous mode [ 241.753554][ T8280] vlan0: entered allmulticast mode [ 241.758856][ T8280] hsr_slave_1: entered allmulticast mode [ 241.822448][ T8280] netlink: 4 bytes leftover after parsing attributes in process `syz.2.724'. [ 242.879021][ T8298] loop2: detected capacity change from 0 to 128 [ 242.932222][ T8298] FAT-fs (loop2): bogus number of FAT sectors [ 242.957108][ T8298] FAT-fs (loop2): Can't find a valid FAT filesystem [ 243.030692][ T8298] netlink: 20 bytes leftover after parsing attributes in process `syz.2.732'. [ 244.122652][ T8298] netlink: 16 bytes leftover after parsing attributes in process `syz.2.732'. [ 245.376816][ T8313] netlink: 24 bytes leftover after parsing attributes in process `syz.2.735'. [ 246.889315][ T27] kauditd_printk_skb: 10 callbacks suppressed [ 246.889330][ T27] audit: type=1326 audit(1762346483.807:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8332 comm="syz.0.743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 246.959684][ T27] audit: type=1326 audit(1762346483.807:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8332 comm="syz.0.743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 247.012315][ T27] audit: type=1326 audit(1762346483.817:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8332 comm="syz.0.743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 247.065397][ T27] audit: type=1326 audit(1762346483.817:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8332 comm="syz.0.743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 247.110791][ T27] audit: type=1326 audit(1762346483.817:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8332 comm="syz.0.743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 247.136448][ T27] audit: type=1326 audit(1762346483.817:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8332 comm="syz.0.743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 247.162510][ T27] audit: type=1326 audit(1762346483.817:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8332 comm="syz.0.743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 247.252365][ T27] audit: type=1326 audit(1762346483.817:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8332 comm="syz.0.743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 247.311177][ T27] audit: type=1326 audit(1762346483.817:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8332 comm="syz.0.743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 247.369711][ T27] audit: type=1326 audit(1762346483.817:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8332 comm="syz.0.743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 248.260241][ T8354] netlink: 'syz.2.748': attribute type 12 has an invalid length. [ 248.647772][ T8361] netlink: 20 bytes leftover after parsing attributes in process `syz.0.752'. [ 248.872503][ T8364] loop2: detected capacity change from 0 to 2048 [ 249.101413][ T8364] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none. [ 249.202630][ T8385] xt_CHECKSUM: unsupported CHECKSUM operation 68 [ 249.963215][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000900. [ 250.154946][ T8394] netlink: 12 bytes leftover after parsing attributes in process `syz.2.757'. [ 250.206751][ T8394] veth1: entered promiscuous mode [ 250.215150][ T8394] bridge1: entered promiscuous mode [ 250.230826][ T8394] hsr1: Slave A (veth1) is not up; please bring it up to get a fully working HSR network [ 250.241177][ T8394] hsr1: entered promiscuous mode [ 250.488667][ T8404] netlink: 'syz.2.763': attribute type 10 has an invalid length. [ 250.801232][ T8404] 8021q: adding VLAN 0 to HW filter on device team0 [ 251.105349][ T8404] bond0: (slave team0): Enslaving as an active interface with an up link [ 251.172350][ T8406] netlink: 'syz.2.763': attribute type 10 has an invalid length. [ 251.266614][ T8407] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 251.301183][ T8407] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 253.311306][ T8444] sctp: [Deprecated]: syz.3.774 (pid 8444) Use of struct sctp_assoc_value in delayed_ack socket option. [ 253.311306][ T8444] Use struct sctp_sack_info instead [ 253.524244][ T8446] syzkaller0: entered promiscuous mode [ 253.561403][ T8446] syzkaller0: entered allmulticast mode [ 254.258850][ T8459] macsec0: entered promiscuous mode [ 254.265207][ T8459] macsec0: entered allmulticast mode [ 254.270563][ T8459] veth1_macvtap: entered allmulticast mode [ 254.946370][ T8461] Set syz0 is full, maxelem 0 reached [ 255.131750][ T8474] netlink: 'syz.0.784': attribute type 4 has an invalid length. [ 255.796058][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.803409][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.277645][ T8486] fuse: Bad value for 'fd' [ 256.293682][ T8484] team0: Device bond0 is already an upper device of the team interface [ 256.983377][ T27] kauditd_printk_skb: 56 callbacks suppressed [ 256.983392][ T27] audit: type=1326 audit(1762346493.907:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8492 comm="syz.1.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 257.028241][ T27] audit: type=1326 audit(1762346493.937:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8492 comm="syz.1.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 257.062965][ T27] audit: type=1326 audit(1762346493.937:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8492 comm="syz.1.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 257.115955][ T27] audit: type=1326 audit(1762346493.937:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8492 comm="syz.1.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 257.141751][ T27] audit: type=1326 audit(1762346493.937:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8492 comm="syz.1.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 257.164514][ T8496] netlink: 8 bytes leftover after parsing attributes in process `syz.3.791'. [ 257.209867][ T27] audit: type=1326 audit(1762346493.947:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8492 comm="syz.1.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 257.252347][ T27] audit: type=1326 audit(1762346493.947:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8492 comm="syz.1.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 257.312335][ T8500] vlan0: entered promiscuous mode [ 257.327874][ T8500] vlan0: entered allmulticast mode [ 257.333535][ T27] audit: type=1326 audit(1762346493.947:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8492 comm="syz.1.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 257.367377][ T8500] hsr_slave_1: entered allmulticast mode [ 257.381781][ T8504] fuse: Bad value for 'fd' [ 257.389478][ T8503] netlink: 4 bytes leftover after parsing attributes in process `syz.0.793'. [ 257.413975][ T27] audit: type=1326 audit(1762346493.947:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8492 comm="syz.1.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 257.437676][ T27] audit: type=1326 audit(1762346493.947:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8492 comm="syz.1.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 259.677423][ T8526] loop2: detected capacity change from 0 to 256 [ 259.709133][ T8526] exFAT-fs (loop2): bogus data start sector [ 259.727909][ T8526] exFAT-fs (loop2): failed to read boot sector [ 259.738665][ T8526] exFAT-fs (loop2): failed to recognize exfat type [ 260.306155][ T8538] netlink: 12 bytes leftover after parsing attributes in process `syz.2.803'. [ 262.082663][ T8549] sctp: [Deprecated]: syz.2.806 (pid 8549) Use of struct sctp_assoc_value in delayed_ack socket option. [ 262.082663][ T8549] Use struct sctp_sack_info instead [ 263.427030][ T8573] bond_slave_1: entered promiscuous mode [ 263.444342][ T8573] bond_slave_1: left promiscuous mode [ 264.662531][ T8579] netlink: 'syz.1.815': attribute type 12 has an invalid length. [ 265.883213][ T8593] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -14123, delta: 1 [ 265.947418][ T8593] ref_ctr increment failed for inode: 0x470 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff88801786b900 [ 265.990527][ T8596] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -14123, delta: -1 [ 266.085820][ T8596] ref_ctr decrement failed for inode: 0x470 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff88801786b900 [ 266.735085][ T8600] team_slave_0: left promiscuous mode [ 266.745558][ T8600] team_slave_0: left allmulticast mode [ 266.754895][ T27] kauditd_printk_skb: 14 callbacks suppressed [ 266.754908][ T27] audit: type=1326 audit(1762346503.667:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8602 comm="syz.0.822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 266.836870][ T8600] team0: Port device team_slave_0 removed [ 266.840593][ T27] audit: type=1326 audit(1762346503.667:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8602 comm="syz.0.822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 266.843661][ T8600] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check. [ 266.882101][ T27] audit: type=1326 audit(1762346503.667:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8602 comm="syz.0.822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 266.922422][ T27] audit: type=1326 audit(1762346503.667:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8602 comm="syz.0.822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 266.961828][ T27] audit: type=1326 audit(1762346503.667:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8602 comm="syz.0.822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 266.986802][ T27] audit: type=1326 audit(1762346503.667:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8602 comm="syz.0.822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 267.009927][ T27] audit: type=1326 audit(1762346503.667:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8602 comm="syz.0.822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 267.033205][ T27] audit: type=1326 audit(1762346503.667:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8602 comm="syz.0.822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 267.057449][ T27] audit: type=1326 audit(1762346503.677:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8602 comm="syz.0.822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 267.080980][ T27] audit: type=1326 audit(1762346503.677:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8602 comm="syz.0.822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 268.025425][ T8628] debugfs: Directory 'netdev:nicvf0' with parent 'phy3' already present! [ 269.189811][ T8648] netlink: 'syz.3.837': attribute type 10 has an invalid length. [ 269.205169][ T8648] tipc: Resetting bearer [ 269.235365][ T8648] tipc: Resetting bearer [ 269.263776][ T8648] 8021q: adding VLAN 0 to HW filter on device team0 [ 269.285839][ T8648] bond0: (slave team0): Enslaving as an active interface with an up link [ 269.302272][ T8649] netlink: 'syz.3.837': attribute type 10 has an invalid length. [ 269.380838][ T8648] siw: device registration error -23 [ 269.386244][ T8649] bond0: (slave syz_tun): Enslaving as an active interface with an up link [ 269.411422][ T8652] vlan0: entered promiscuous mode [ 269.420040][ T8652] bond0: entered promiscuous mode [ 269.425664][ T8652] mac80211_hwsim hwsim7 wlan1: entered promiscuous mode [ 269.435646][ T8652] team0: entered promiscuous mode [ 269.440807][ T8652] geneve0: entered promiscuous mode [ 269.447528][ T8652] vlan0: entered allmulticast mode [ 269.453320][ T8652] bond0: entered allmulticast mode [ 269.458809][ T8652] mac80211_hwsim hwsim7 wlan1: entered allmulticast mode [ 269.466549][ T8652] team0: entered allmulticast mode [ 269.471858][ T8652] geneve0: entered allmulticast mode [ 274.230757][ T8711] netlink: 'syz.2.857': attribute type 3 has an invalid length. [ 274.273438][ T8711] netlink: 'syz.2.857': attribute type 3 has an invalid length. [ 274.320353][ T8714] xfrm0: entered promiscuous mode [ 274.336548][ T8714] xfrm0: entered allmulticast mode [ 275.525107][ T8723] loop2: detected capacity change from 0 to 1024 [ 275.542700][ T8723] EXT4-fs: Ignoring removed nomblk_io_submit option [ 275.616401][ T8723] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 275.826018][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 278.373291][ T8770] team0: Device bond0 is already an upper device of the team interface [ 278.442604][ T8770] tipc: Resetting bearer [ 278.449742][ T8770] tipc: Resetting bearer [ 278.688105][ T3463] tipc: Resetting bearer [ 279.019160][ T8783] netlink: 24 bytes leftover after parsing attributes in process `syz.0.875'. [ 280.106942][ T8790] netlink: 'syz.2.880': attribute type 3 has an invalid length. [ 284.000948][ T8827] bond0: (slave team0): Releasing backup interface [ 284.011038][ T8827] team0: left promiscuous mode [ 284.018493][ T8827] geneve0: left promiscuous mode [ 284.026946][ T8827] team0: left allmulticast mode [ 284.031926][ T8827] geneve0: left allmulticast mode [ 285.579118][ T8827] team0: Port device geneve0 removed [ 285.588097][ T8827] bond0: (slave wlan1): Releasing backup interface [ 285.590719][ T8827] mac80211_hwsim hwsim7 wlan1: left promiscuous mode [ 285.590873][ T8827] mac80211_hwsim hwsim7 wlan1: left allmulticast mode [ 285.647130][ T8833] team0: Failed to send options change via netlink (err -105) [ 285.656354][ T8833] team0: Mode changed to "loadbalance" [ 289.782160][ C0] hrtimer: interrupt took 42826 ns [ 290.005429][ T8897] siw: device registration error -23 [ 291.516302][ T8917] netlink: 'syz.1.915': attribute type 2 has an invalid length. [ 294.256429][ T8959] netlink: 'syz.3.930': attribute type 2 has an invalid length. [ 294.917495][ T8967] netlink: 12 bytes leftover after parsing attributes in process `syz.2.931'. [ 294.926764][ T8967] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 296.329724][ T8985] syzkaller0: entered promiscuous mode [ 296.336824][ T8985] syzkaller0: entered allmulticast mode [ 296.688170][ T8989] netlink: 'syz.2.939': attribute type 1 has an invalid length. [ 296.725431][ T8989] 8021q: adding VLAN 0 to HW filter on device bond1 [ 297.495665][ T8989] bond1: entered allmulticast mode [ 297.547356][ T8989] bond1: (slave ip6gretap1): making interface the new active one [ 297.555715][ T8989] ip6gretap1: entered allmulticast mode [ 297.564542][ T8989] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link [ 297.606306][ T8999] 8021q: adding VLAN 0 to HW filter on device bond0 [ 297.615315][ T8999] team0: Port device bond0 added [ 297.634763][ T9001] bridge0: port 1(bridge_slave_0) entered disabled state [ 297.676265][ T9001] bridge0: port 2(bridge_slave_1) entered disabled state [ 298.015962][ T9022] siw: device registration error -23 [ 299.314536][ T9044] gtp0: entered promiscuous mode [ 300.865097][ T9060] netlink: 16 bytes leftover after parsing attributes in process `syz.2.958'. [ 301.403599][ T9062] team0: left allmulticast mode [ 301.417015][ T9062] team_slave_1: left allmulticast mode [ 301.434267][ T9062] team0: left promiscuous mode [ 301.741166][ T9062] team_slave_1: left promiscuous mode [ 301.748323][ T9062] bridge0: port 3(team0) entered disabled state [ 301.763161][ T9062] bridge_slave_0: left allmulticast mode [ 301.769078][ T9062] bridge_slave_0: left promiscuous mode [ 301.775587][ T9062] bridge0: port 1(bridge_slave_0) entered disabled state [ 302.374860][ T9062] bond0: (slave bridge_slave_1): Releasing backup interface [ 302.411446][ T9062] bond0: (slave bond_slave_0): Releasing backup interface [ 302.510608][ T9062] team0: Failed to send options change via netlink (err -105) [ 302.569844][ T9062] team0: Failed to send port change of device team_slave_1 via netlink (err -105) [ 302.580496][ T9062] team0: Port device team_slave_1 removed [ 302.591096][ T9062] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 302.607172][ T9062] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 302.641565][ T9062] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 302.671469][ T9062] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 302.721147][ T9062] bond0: (slave wlan1): Releasing backup interface [ 302.752661][ T9062] team0: Failed to send options change via netlink (err -105) [ 302.780811][ T9062] team0: Failed to send port change of device bridge1 via netlink (err -105) [ 302.791999][ T9062] team0: Port device bridge1 removed [ 303.556578][ T9070] team0: Mode changed to "loadbalance" [ 303.730222][ T9097] bridge3: entered allmulticast mode [ 306.691118][ T9124] bond0: (slave syz_tun): Releasing backup interface [ 306.718777][ T9124] bond0: (slave team0): Releasing backup interface [ 306.733466][ T9124] tipc: Resetting bearer [ 306.754426][ T9124] tipc: Resetting bearer [ 306.795085][ T9124] team0: Failed to send options change via netlink (err -105) [ 306.812475][ T9124] team0: Failed to send port change of device vlan0 via netlink (err -105) [ 306.830376][ T9124] team0: Port device vlan0 removed [ 306.844416][ T9126] team0: Unable to change to the same mode the team is in [ 313.612401][ T51] Bluetooth: hci1: unexpected event for opcode 0x0c20 [ 317.237992][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.245198][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.245409][ T9249] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1012'. [ 319.290783][ T9265] 8021q: adding VLAN 0 to HW filter on device bond0 [ 319.319703][ T9265] team0: Port device bond0 added [ 320.381249][ T9277] bridge2: entered allmulticast mode [ 320.599817][ T9282] dvmrp0: entered allmulticast mode [ 320.711518][ T9282] dvmrp0: left allmulticast mode [ 322.840253][ T27] kauditd_printk_skb: 55 callbacks suppressed [ 322.840268][ T27] audit: type=1326 audit(1762346559.757:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9314 comm="syz.0.1038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 322.901963][ T27] audit: type=1326 audit(1762346559.757:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9314 comm="syz.0.1038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 322.956607][ T27] audit: type=1326 audit(1762346559.807:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9314 comm="syz.0.1038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 322.992275][ T27] audit: type=1326 audit(1762346559.807:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9314 comm="syz.0.1038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 323.028772][ T27] audit: type=1326 audit(1762346559.807:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9314 comm="syz.0.1038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 323.099429][ T27] audit: type=1326 audit(1762346559.807:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9314 comm="syz.0.1038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 323.124653][ T27] audit: type=1326 audit(1762346559.807:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9314 comm="syz.0.1038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 323.149034][ T27] audit: type=1326 audit(1762346559.807:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9314 comm="syz.0.1038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 323.174514][ T27] audit: type=1326 audit(1762346559.807:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9314 comm="syz.0.1038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 323.199931][ T27] audit: type=1326 audit(1762346559.807:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9314 comm="syz.0.1038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 323.354239][ T9322] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1032'. [ 324.726216][ T9335] team0: Port device bond0 removed [ 324.751826][ T9335] bridge_slave_0: left allmulticast mode [ 324.774943][ T9335] bridge_slave_0: left promiscuous mode [ 324.781383][ T9335] bridge0: port 1(bridge_slave_0) entered disabled state [ 324.799755][ T9335] bridge_slave_1: left allmulticast mode [ 324.806823][ T9335] bridge_slave_1: left promiscuous mode [ 324.815371][ T9335] bridge0: port 2(bridge_slave_1) entered disabled state [ 324.844698][ T9335] bond0: (slave bond_slave_0): Releasing backup interface [ 324.864898][ T9335] bond0: (slave bond_slave_1): Releasing backup interface [ 324.889866][ T9335] team0: Failed to send options change via netlink (err -105) [ 324.907554][ T9335] team0: Failed to send port change of device team_slave_0 via netlink (err -105) [ 324.918631][ T9335] team0: Port device team_slave_0 removed [ 324.936380][ T9335] team0: Failed to send options change via netlink (err -105) [ 324.944363][ T9335] team0: Failed to send port change of device team_slave_1 via netlink (err -105) [ 324.954647][ T9335] team0: Port device team_slave_1 removed [ 324.961208][ T9335] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 324.970205][ T9335] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 324.979245][ T9335] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 324.986951][ T9335] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 325.003379][ T9335] bond1: (slave bridge2): Releasing active interface [ 325.010109][ T9335] bridge2: left promiscuous mode [ 325.016935][ T9335] bridge2: left allmulticast mode [ 325.031677][ T9335] bond2: (slave gretap2): Releasing active interface [ 325.077703][ T9346] team0: Failed to send options change via netlink (err -105) [ 325.094315][ T9346] team0: Mode changed to "loadbalance" [ 327.566122][ T9384] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1050'. [ 327.921512][ T9391] af_packet: tpacket_rcv: packet too big, clamped from 42 to 4294967286. macoff=82 [ 328.462577][ T9389] team0: Unable to change to the same mode the team is in [ 329.036765][ T9415] x_tables: ip6_tables: mh match: only valid for protocol 135 [ 330.562367][ T9421] openvswitch: netlink: push_nsh: missing base or metadata attributes [ 330.570571][ T9421] openvswitch: netlink: Actions may not be safe on all matching packets [ 334.743504][ T9437] syz.2.1073 uses obsolete (PF_INET,SOCK_PACKET) [ 334.978392][ T9446] overlayfs: failed to get index nlink (file1/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa, err=-61) [ 335.433540][ T9459] 0: reclassify loop, rule prio 0, protocol 800 [ 335.792656][ T5772] 0: reclassify loop, rule prio 0, protocol 800 [ 336.463123][ T5874] 0: reclassify loop, rule prio 0, protocol 800 [ 336.471695][ T12] 0: reclassify loop, rule prio 0, protocol 800 [ 340.231105][ T9488] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1080'. [ 340.261796][ T9488] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1080'. [ 341.022639][ T9501] xt_TCPMSS: Only works on TCP SYN packets [ 343.447970][ T5772] 0: reclassify loop, rule prio 0, protocol 800 [ 343.494732][ T6326] 0: reclassify loop, rule prio 0, protocol 800 [ 344.659258][ T9520] 0: reclassify loop, rule prio 0, protocol 800 [ 345.712641][ C1] 0: reclassify loop, rule prio 0, protocol 800 [ 347.953748][ T5842] 0: reclassify loop, rule prio 0, protocol 800 [ 348.188890][ T9557] tipc: Enabling of bearer rejected, failed to enable media [ 348.237117][ T9557] tipc: Enabling of bearer rejected, failed to enable media [ 348.276686][ T9563] bridge0: entered allmulticast mode [ 348.594674][ T6326] 0: reclassify loop, rule prio 0, protocol 800 [ 349.309636][ T27] kauditd_printk_skb: 28 callbacks suppressed [ 349.309646][ T27] audit: type=1800 audit(1762346586.227:508): pid=9549 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1097" name="bus" dev="ramfs" ino=18750 res=0 errno=0 [ 349.569045][ T9582] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 349.577056][ T9582] IPv6: NLM_F_CREATE should be set when creating new route [ 349.597426][ T9576] lo: entered allmulticast mode [ 349.642792][ T9576] tunl0: entered allmulticast mode [ 349.666043][ T9576] gre0: entered allmulticast mode [ 349.762950][ T9576] gretap0: entered allmulticast mode [ 349.804331][ T9576] erspan0: entered allmulticast mode [ 349.849323][ T9576] ip_vti0: entered allmulticast mode [ 349.878307][ T9576] ip6_vti0: entered allmulticast mode [ 349.909477][ T9576] sit0: entered allmulticast mode [ 349.966064][ T9576] ip6tnl0: entered allmulticast mode [ 350.092914][ T9576] ip6gre0: entered allmulticast mode [ 350.107921][ T9576] syz_tun: entered allmulticast mode [ 350.124197][ T9576] ip6gretap0: entered allmulticast mode [ 350.500747][ T9576] vcan0: entered allmulticast mode [ 350.519055][ T967] 0: reclassify loop, rule prio 0, protocol 800 [ 350.638096][ T9576] bond0: entered allmulticast mode [ 350.744433][ T9576] team0: entered allmulticast mode [ 350.854036][ T9576] dummy0: entered allmulticast mode [ 350.899756][ T9576] nlmon0: entered allmulticast mode [ 350.916371][ T9576] caif0: entered allmulticast mode [ 350.927464][ T9576] vxcan0: entered allmulticast mode [ 350.937885][ T9576] vxcan1: entered allmulticast mode [ 350.949325][ T9576] veth0: entered allmulticast mode [ 350.969180][ T9576] veth1: entered allmulticast mode [ 350.989543][ T9576] wg0: entered allmulticast mode [ 351.001753][ T9576] wg1: entered allmulticast mode [ 351.022721][ T9576] wg2: entered allmulticast mode [ 351.045373][ T9576] veth0_to_bridge: entered allmulticast mode [ 351.090689][ T9576] bridge_slave_0: entered allmulticast mode [ 351.362340][ T9576] veth1_to_bridge: entered allmulticast mode [ 351.387700][ T9576] bridge_slave_1: entered allmulticast mode [ 351.398885][ T9576] veth0_to_bond: entered allmulticast mode [ 351.415974][ T9576] bond_slave_0: entered allmulticast mode [ 351.423056][ T9576] veth1_to_bond: entered allmulticast mode [ 351.438704][ T9576] bond_slave_1: entered allmulticast mode [ 351.477498][ T9576] veth0_to_team: entered allmulticast mode [ 351.622754][ T9576] team_slave_0: entered allmulticast mode [ 351.658906][ T9576] veth1_to_team: entered allmulticast mode [ 351.741050][ T9576] team_slave_1: entered allmulticast mode [ 351.793045][ T9576] veth0_to_batadv: entered allmulticast mode [ 351.892563][ T9576] batadv_slave_0: entered allmulticast mode [ 352.017884][ T9576] veth1_to_batadv: entered allmulticast mode [ 352.033823][ T9576] batadv_slave_1: entered allmulticast mode [ 352.053681][ T9576] xfrm0: entered allmulticast mode [ 352.067887][ T9576] veth0_to_hsr: entered allmulticast mode [ 352.079568][ T9576] hsr_slave_0: entered allmulticast mode [ 352.097176][ T9576] veth1_to_hsr: entered allmulticast mode [ 352.109898][ T9576] hsr_slave_1: entered allmulticast mode [ 352.125351][ T9576] hsr0: entered allmulticast mode [ 352.137157][ T9576] veth1_virt_wifi: entered allmulticast mode [ 352.149653][ T9576] veth0_virt_wifi: entered allmulticast mode [ 352.163039][ T9576] net veth1_virt_wifi virt_wifi0: entered allmulticast mode [ 352.172504][ T9576] veth1_vlan: entered allmulticast mode [ 352.255716][ T9576] veth0_vlan: entered allmulticast mode [ 352.277832][ T9576] vlan0: left promiscuous mode [ 352.284769][ T9576] vlan0: entered allmulticast mode [ 352.290057][ T9576] vlan1: entered allmulticast mode [ 352.296816][ T9576] macvlan0: entered allmulticast mode [ 352.316388][ T9576] macvlan1: entered allmulticast mode [ 352.327432][ T9576] ipvlan0: entered allmulticast mode [ 352.338547][ T9576] veth1_macvtap: entered allmulticast mode [ 352.358438][ T9576] veth0_macvtap: entered allmulticast mode [ 352.372546][ T9576] macvtap0: entered allmulticast mode [ 352.398593][ T9576] macsec0: entered allmulticast mode [ 352.417901][ T9576] geneve0: entered allmulticast mode [ 352.438231][ T9576] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 352.447337][ T9576] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 352.456772][ T9576] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 352.466009][ T9576] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 352.475327][ T9576] geneve1: entered allmulticast mode [ 352.487311][ T9576] netdevsim netdevsim3 netdevsim0: entered allmulticast mode [ 352.506273][ T9576] netdevsim netdevsim3 netdevsim1: entered allmulticast mode [ 352.526469][ T9576] netdevsim netdevsim3 netdevsim2: entered allmulticast mode [ 352.547343][ T9576] netdevsim netdevsim3 netdevsim3: entered allmulticast mode [ 352.560501][ T9576] mac80211_hwsim hwsim6 wlan0: entered allmulticast mode [ 352.575283][ T9576] vlan2: entered allmulticast mode [ 352.590457][ T9576] gtp0: left promiscuous mode [ 352.598352][ T9576] gtp0: entered allmulticast mode [ 352.605906][ T9576] syztnl1: entered allmulticast mode [ 352.611365][ T9576] syztnl0: entered allmulticast mode [ 352.672233][ T9630] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1118'. [ 355.045725][ T3463] 0: reclassify loop, rule prio 0, protocol 800 [ 357.609596][ T9599] 0: reclassify loop, rule prio 0, protocol 800 [ 360.786552][ T249] 0: reclassify loop, rule prio 0, protocol 800 [ 360.985138][ T5842] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 361.003594][ T5842] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on syz0 [ 365.468923][ T9604] 0: reclassify loop, rule prio 0, protocol 800 [ 366.513391][ T7453] 0: reclassify loop, rule prio 0, protocol 800 [ 367.775396][ T9780] team0: Mode "" not found [ 371.498385][ T9822] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1170'. [ 371.578279][ T9822] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1170'. [ 371.643793][ T7453] 0: reclassify loop, rule prio 0, protocol 800 [ 372.635171][ T9834] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1175'. [ 372.710252][ T9840] overlayfs: failed to clone upperpath [ 372.912531][ T9600] 0: reclassify loop, rule prio 0, protocol 800 [ 375.168927][ T9887] 9pnet: p9_errstr2errno: server reported unknown error aaaaaaaaa [ 375.182442][ T27] audit: type=1326 audit(1762346612.097:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9884 comm="syz.0.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 375.207482][ T9890] 0: reclassify loop, rule prio 0, protocol 800 [ 375.219734][ T27] audit: type=1326 audit(1762346612.097:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9884 comm="syz.0.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 375.434460][ T27] audit: type=1326 audit(1762346612.137:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9884 comm="syz.0.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 375.760453][ T27] audit: type=1326 audit(1762346612.137:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9884 comm="syz.0.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 375.844169][ T27] audit: type=1326 audit(1762346612.137:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9884 comm="syz.0.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 375.882331][ T27] audit: type=1326 audit(1762346612.137:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9884 comm="syz.0.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 375.913108][ T27] audit: type=1326 audit(1762346612.167:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9884 comm="syz.0.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 375.936173][ T27] audit: type=1326 audit(1762346612.167:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9884 comm="syz.0.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 375.959214][ T27] audit: type=1326 audit(1762346612.167:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9884 comm="syz.0.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 375.990673][ T27] audit: type=1326 audit(1762346612.167:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9884 comm="syz.0.1185" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 376.211515][ T9903] netlink: 'syz.2.1191': attribute type 1 has an invalid length. [ 376.805294][ T9903] 8021q: adding VLAN 0 to HW filter on device bond2 [ 376.941711][ T9906] veth7: entered promiscuous mode [ 376.970016][ T9906] bond2: (slave veth7): Enslaving as an active interface with a down link [ 377.008156][ T9907] veth9: entered promiscuous mode [ 377.029307][ T9907] bond2: (slave veth9): Enslaving as an active interface with a down link [ 377.392816][ T7457] 0: reclassify loop, rule prio 0, protocol 800 [ 377.837140][ T9922] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 377.850688][ T9922] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING [ 378.445834][ T9914] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 378.453155][ T9914] IPv6: NLM_F_CREATE should be set when creating new route [ 378.635348][ T9924] lo: entered allmulticast mode [ 378.659760][ T9924] tunl0: entered allmulticast mode [ 378.675409][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.718024][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.862064][ T9924] gre0: entered allmulticast mode [ 379.783956][ T9924] gretap0: entered allmulticast mode [ 379.817111][ T9924] erspan0: entered allmulticast mode [ 379.881112][ T9924] ip_vti0: entered allmulticast mode [ 379.929005][ T9924] ip6_vti0: entered allmulticast mode [ 379.979118][ T9924] sit0: entered allmulticast mode [ 380.734588][ T9924] ip6tnl0: entered allmulticast mode [ 380.759641][ T9924] ip6gre0: entered allmulticast mode [ 380.793518][ T9924] ip6gretap0: entered allmulticast mode [ 380.818750][ T9924] bridge0: entered allmulticast mode [ 380.842957][ T9924] vcan0: entered allmulticast mode [ 380.869566][ T9924] team0: entered allmulticast mode [ 380.877478][ T9924] dummy0: entered allmulticast mode [ 380.936908][ T9924] nlmon0: entered allmulticast mode [ 380.957588][ T9924] caif0: entered allmulticast mode [ 380.991995][ T9924] batadv0: entered allmulticast mode [ 381.019583][ T9924] vxcan0: entered allmulticast mode [ 381.037356][ T9924] vxcan1: entered allmulticast mode [ 381.137686][ T9924] veth0: entered allmulticast mode [ 381.530011][ T9924] veth1: entered allmulticast mode [ 381.690439][ T9924] wg0: entered allmulticast mode [ 381.733682][ T9924] wg1: entered allmulticast mode [ 381.774818][ T9924] wg2: entered allmulticast mode [ 381.825339][ T9924] veth0_to_bridge: entered allmulticast mode [ 381.846687][ T9924] bridge_slave_0: entered allmulticast mode [ 381.865871][ T9924] veth1_to_bridge: entered allmulticast mode [ 381.903108][ T9924] bridge_slave_1: entered allmulticast mode [ 381.944413][ T9924] veth0_to_bond: entered allmulticast mode [ 381.955701][ T9924] bond_slave_0: entered allmulticast mode [ 381.992618][ T9924] veth1_to_bond: entered allmulticast mode [ 382.011801][ T9924] bond_slave_1: entered allmulticast mode [ 382.027197][ T9924] veth0_to_team: entered allmulticast mode [ 382.045626][ T9924] team_slave_0: entered allmulticast mode [ 382.082328][ T9924] veth1_to_team: entered allmulticast mode [ 382.112023][ T9924] team_slave_1: entered allmulticast mode [ 382.127580][ T9924] veth0_to_batadv: entered allmulticast mode [ 382.173346][ T9924] batadv_slave_0: entered allmulticast mode [ 382.198876][ T9924] veth1_to_batadv: entered allmulticast mode [ 382.232674][ T9924] batadv_slave_1: entered allmulticast mode [ 382.275608][ T9924] xfrm0: entered allmulticast mode [ 382.310208][ T9924] veth0_to_hsr: entered allmulticast mode [ 382.353657][ T9924] hsr_slave_0: entered allmulticast mode [ 382.379139][ T9924] hsr0: entered allmulticast mode [ 382.424470][ T9924] veth1_virt_wifi: entered allmulticast mode [ 382.461672][ T9924] veth0_virt_wifi: entered allmulticast mode [ 382.484853][ T9924] net veth1_virt_wifi virt_wifi0: entered allmulticast mode [ 382.517698][ T9924] veth1_macvtap: entered allmulticast mode [ 382.562400][ T9924] veth0_macvtap: entered allmulticast mode [ 382.596962][ T9924] macvtap0: entered allmulticast mode [ 382.627415][ T9924] macsec0: entered allmulticast mode [ 382.645091][ T9924] geneve0: entered allmulticast mode [ 382.668662][ T9924] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 382.712235][ T9924] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 382.731060][ T9924] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 382.741228][ T9924] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 382.753182][ T9924] geneve1: entered allmulticast mode [ 382.785671][ T9924] mac80211_hwsim hwsim4 wlan0: entered allmulticast mode [ 382.804935][ T9924] bridge0.257: entered allmulticast mode [ 382.810809][ T9924] ~ÿ: entered allmulticast mode [ 382.832463][ T9924] veth2: entered allmulticast mode [ 382.837806][ T9924] veth3: entered allmulticast mode [ 382.851729][ T9924] netdevsim netdevsim2 eth0: entered allmulticast mode [ 382.859307][ T9924] netdevsim netdevsim2 eth1: entered allmulticast mode [ 382.866777][ T9924] netdevsim netdevsim2 eth2: entered allmulticast mode [ 382.878371][ T9924] netdevsim netdevsim2 eth3: entered allmulticast mode [ 382.887194][ T9924] ipvlan2: entered allmulticast mode [ 382.903911][ T9924] veth4: entered allmulticast mode [ 382.918975][ T9924] veth5: entered allmulticast mode [ 382.925742][ T9924] bridge1: entered allmulticast mode [ 382.950954][ T9924] hsr1: left promiscuous mode [ 382.960280][ T9924] hsr1: entered allmulticast mode [ 382.998742][ T9924] ip6tnl1: entered allmulticast mode [ 383.039410][ T9924] bridge3: entered allmulticast mode [ 383.075546][ T9924] bond2: entered allmulticast mode [ 383.090969][ T9924] veth6: entered allmulticast mode [ 383.097697][ T9924] veth7: left promiscuous mode [ 383.107260][ T9924] veth7: entered allmulticast mode [ 383.118806][ T9924] veth8: entered allmulticast mode [ 383.129235][ T9924] veth9: left promiscuous mode [ 383.134377][ T9924] veth9: entered allmulticast mode [ 383.169534][ T9937] 8021q: adding VLAN 0 to HW filter on device bond0 [ 383.196326][ T9937] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 384.534900][ T27] kauditd_printk_skb: 17 callbacks suppressed [ 384.534915][ T27] audit: type=1326 audit(1762346621.457:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9987 comm="syz.3.1214" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9cb2b8f6c9 code=0x0 [ 385.388127][ T9994] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1216'. [ 385.411014][ T9994] bond0: option lp_interval: invalid value (0) [ 385.425575][ T9994] bond0: option lp_interval: allowed values 1 - 2147483647 [ 388.867823][T10040] loop2: detected capacity change from 0 to 512 [ 389.004922][T10040] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #16: comm syz.2.1227: corrupted inode contents [ 389.053316][T10040] EXT4-fs (loop2): Remounting filesystem read-only [ 389.061794][T10040] EXT4-fs (loop2): 1 truncate cleaned up [ 389.083289][ T12] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 389.115832][T10040] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 389.135638][ T12] Quota error (device loop2): write_blk: dquota write failed [ 389.143516][T10040] ext4 filesystem being mounted at /294/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 389.144676][ T12] Quota error (device loop2): remove_free_dqentry: Can't write block (5) with free entries [ 389.172177][ T12] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 389.192172][ T12] Quota error (device loop2): write_blk: dquota write failed [ 389.199595][ T12] Quota error (device loop2): free_dqentry: Can't move quota data block (5) to free list [ 389.235796][ T12] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started [ 389.256653][ T12] Quota error (device loop2): v2_write_file_info: Can't write info structure [ 389.287022][ T12] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 390.066866][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 394.687904][T10117] fuse: Bad value for 'fd' [ 399.770394][T10173] netlink: 'syz.1.1263': attribute type 1 has an invalid length. [ 400.270458][T10173] 8021q: adding VLAN 0 to HW filter on device bond1 [ 400.371766][T10177] veth5: entered promiscuous mode [ 400.381057][T10177] bond1: (slave veth5): Enslaving as an active interface with a down link [ 400.539789][T10178] veth7: entered promiscuous mode [ 400.569687][T10178] bond1: (slave veth7): Enslaving as an active interface with a down link [ 400.758334][T10184] bridge3: entered allmulticast mode [ 401.559123][T10199] ecryptfs_parse_options: eCryptfs: unrecognized option [³(] [ 401.566807][T10199] ecryptfs_parse_options: eCryptfs: unrecognized option [{\)] [ 401.574512][T10199] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 401.589946][T10199] Error parsing options; rc = [-22] [ 403.498973][T10218] netlink: 'syz.1.1276': attribute type 10 has an invalid length. [ 403.507102][T10218] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1276'. [ 403.752914][T10218] team0: Port device geneve0 added [ 409.824721][T10255] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1286'. [ 409.939972][T10256] Cannot find add_set index 65532 as target [ 410.423856][T10255] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1286'. [ 411.509832][T10269] loop2: detected capacity change from 0 to 1024 [ 411.674371][T10269] EXT4-fs: Ignoring removed nomblk_io_submit option [ 414.590096][T10269] EXT4-fs warning (device loop2): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop2. [ 414.998732][ T51] Bluetooth: hci3: ACL packet for unknown connection handle 200 [ 416.607867][T10299] netlink: 'syz.1.1298': attribute type 1 has an invalid length. [ 419.592568][ T5102] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 419.601551][ T5102] Bluetooth: hci3: Injecting HCI hardware error event [ 419.612619][ T5785] Bluetooth: hci3: hardware error 0x00 [ 422.993107][ T5785] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 423.942720][T10342] ecryptfs_parse_options: eCryptfs: unrecognized option [³(] [ 423.950161][T10342] ecryptfs_parse_options: eCryptfs: unrecognized option [{\)] [ 423.957774][T10342] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 423.970909][T10342] Error parsing options; rc = [-22] [ 424.909487][ T27] audit: type=1326 audit(1762346661.827:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.2.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa88d98f6c9 code=0x7ffc0000 [ 424.977424][ T27] audit: type=1326 audit(1762346661.827:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.2.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa88d98f6c9 code=0x7ffc0000 [ 425.106537][ T27] audit: type=1326 audit(1762346661.857:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.2.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa88d98f6c9 code=0x7ffc0000 [ 425.202951][ T27] audit: type=1326 audit(1762346661.857:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.2.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa88d98f6c9 code=0x7ffc0000 [ 425.256445][T10353] netlink: 'syz.1.1320': attribute type 11 has an invalid length. [ 425.262328][ T27] audit: type=1326 audit(1762346661.857:541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.2.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa88d98f6c9 code=0x7ffc0000 [ 425.307345][ T27] audit: type=1326 audit(1762346661.857:542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.2.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa88d98f6c9 code=0x7ffc0000 [ 425.365523][ T27] audit: type=1326 audit(1762346661.857:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.2.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa88d98f6c9 code=0x7ffc0000 [ 425.412166][ T27] audit: type=1326 audit(1762346661.867:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.2.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7fa88d98f6c9 code=0x7ffc0000 [ 425.457783][ T27] audit: type=1326 audit(1762346661.867:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.2.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa88d98f6c9 code=0x7ffc0000 [ 425.577081][ T27] audit: type=1326 audit(1762346661.867:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.2.1318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa88d98f6c9 code=0x7ffc0000 [ 426.933559][T10381] netlink: 'syz.2.1319': attribute type 1 has an invalid length. [ 426.949982][T10381] netlink: 'syz.2.1319': attribute type 4 has an invalid length. [ 426.970205][T10381] netlink: 15334 bytes leftover after parsing attributes in process `syz.2.1319'. [ 429.254658][ T9623] IPVS: starting estimator thread 0... [ 429.352220][T10404] IPVS: using max 20 ests per chain, 48000 per kthread [ 430.376846][T10424] netlink: zone id is out of range [ 430.385138][T10424] netlink: zone id is out of range [ 430.390679][T10424] netlink: zone id is out of range [ 430.396646][T10424] netlink: zone id is out of range [ 430.402320][T10424] netlink: zone id is out of range [ 430.407799][T10424] netlink: zone id is out of range [ 430.414899][T10424] netlink: zone id is out of range [ 430.420492][T10424] netlink: zone id is out of range [ 430.429949][T10424] netlink: zone id is out of range [ 430.437035][T10424] netlink: zone id is out of range [ 433.436788][T10467] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1347'. [ 436.482582][T10509] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 436.518305][T10507] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1360'. [ 436.750229][T10516] netlink: 'syz.0.1362': attribute type 1 has an invalid length. [ 436.805748][T10516] bond3: (slave ip6gretap1): Enslaving as a backup interface with an up link [ 436.828435][ T60] net_ratelimit: 23 callbacks suppressed [ 436.828451][ T60] bond3: Warning: No 802.3ad response from the link partner for any adapters in the bond [ 436.831120][T10516] 8021q: adding VLAN 0 to HW filter on device bond3 [ 436.943689][ T3463] bond3: Warning: No 802.3ad response from the link partner for any adapters in the bond [ 437.090706][T10522] loop2: detected capacity change from 0 to 128 [ 437.243663][T10522] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 437.310277][T10522] ext4 filesystem being mounted at /322/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 438.470111][ T5787] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 439.957999][T10553] (null): rxe_set_mtu: Set mtu to 1024 [ 440.152350][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.176513][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.302416][T10553] infiniband syz0: set down [ 440.311069][T10553] infiniband syz0: added bond0 [ 440.470734][ T27] kauditd_printk_skb: 17 callbacks suppressed [ 440.470748][ T27] audit: type=1326 audit(1762346677.307:564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10560 comm="syz.1.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 440.579506][ T27] audit: type=1326 audit(1762346677.307:565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10560 comm="syz.1.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 440.607646][ T27] audit: type=1326 audit(1762346677.387:566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10560 comm="syz.1.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 440.631946][T10553] RDS/IB: syz0: added [ 440.639612][T10553] smc: adding ib device syz0 with port count 1 [ 440.651380][T10553] smc: ib device syz0 port 1 has pnetid [ 440.700736][ T27] audit: type=1326 audit(1762346677.387:567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10560 comm="syz.1.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 440.724238][ T27] audit: type=1326 audit(1762346677.387:568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10560 comm="syz.1.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 440.747242][ T27] audit: type=1326 audit(1762346677.387:569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10560 comm="syz.1.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 440.771455][ T27] audit: type=1326 audit(1762346677.387:570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10560 comm="syz.1.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 440.805070][ T27] audit: type=1326 audit(1762346677.387:571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10560 comm="syz.1.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 440.859693][ T27] audit: type=1326 audit(1762346677.387:572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10560 comm="syz.1.1374" exe="/root/syz-executor" sig=0 arch=40000003 syscall=247 compat=1 ip=0x200000000006 code=0x7ffc0000 [ 440.912437][ T27] audit: type=1326 audit(1762346677.387:573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10560 comm="syz.1.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 441.275781][T10580] netlink: 'syz.3.1380': attribute type 1 has an invalid length. [ 442.405257][T10591] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1385'. [ 442.436047][T10591] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1385'. [ 442.499510][T10600] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 442.588768][T10602] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1390'. [ 442.687600][T10602] netlink: 'syz.2.1390': attribute type 5 has an invalid length. [ 442.697795][T10602] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1390'. [ 442.714930][T10602] netlink: 'syz.2.1390': attribute type 5 has an invalid length. [ 442.725432][T10602] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1390'. [ 442.798823][T10604] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 442.825272][T10604] bond1: (slave macvlan2): Enslaving as an active interface with a down link [ 442.864384][T10608] (null): rxe_set_mtu: Set mtu to 1024 [ 442.892330][T10608] rdma_rxe: rxe_newlink: failed to add bond0 [ 443.982609][T10618] syz.3.1395 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 445.241275][ T5785] Bluetooth: hci1: unexpected event for opcode 0x0804 [ 446.404193][T10644] (null): rxe_set_mtu: Set mtu to 1024 [ 446.410195][T10644] rdma_rxe: rxe_newlink: failed to add bond0 [ 450.233746][T10679] overlayfs: failed to clone upperpath [ 451.182572][T10698] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1417'. [ 451.605429][T10700] overlayfs: failed to clone upperpath [ 452.110457][T10709] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1419'. [ 452.214488][T10709] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1419'. [ 452.522039][T10728] loop2: detected capacity change from 0 to 512 [ 453.645591][T10728] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 455.356364][T10728] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 455.369385][T10728] ext4 filesystem being mounted at /334/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 455.826280][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 460.896323][ T27] kauditd_printk_skb: 1 callbacks suppressed [ 460.896337][ T27] audit: type=1326 audit(1762346697.817:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10768 comm="syz.1.1436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 460.925654][ T27] audit: type=1326 audit(1762346697.817:576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10768 comm="syz.1.1436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 460.952839][ T27] audit: type=1326 audit(1762346697.817:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10768 comm="syz.1.1436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 460.976385][ T27] audit: type=1326 audit(1762346697.827:578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10768 comm="syz.1.1436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 461.001512][ T27] audit: type=1326 audit(1762346697.827:579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10768 comm="syz.1.1436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 461.035055][ T27] audit: type=1326 audit(1762346697.827:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10768 comm="syz.1.1436" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x0 [ 462.011883][T10783] netlink: 'syz.1.1439': attribute type 9 has an invalid length. [ 462.194772][T10786] loop2: detected capacity change from 0 to 512 [ 462.628252][T10786] EXT4-fs (loop2): orphan cleanup on readonly fs [ 462.638009][T10786] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -13 [ 462.646557][T10786] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 462.671027][T10786] EXT4-fs error (device loop2): ext4_clear_blocks:883: inode #13: comm syz.2.1440: attempt to clear invalid blocks 2 len 1 [ 462.687657][T10786] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.1440: invalid indirect mapped block 1819239214 (level 0) [ 462.706300][T10786] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.1440: invalid indirect mapped block 1819239214 (level 1) [ 462.725380][T10786] EXT4-fs (loop2): 1 truncate cleaned up [ 462.731917][T10786] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 462.773591][T10786] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended [ 462.789519][T10786] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 463.099393][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 463.231149][T10806] xt_CT: You must specify a L4 protocol and not use inversions on it [ 464.891355][T10826] netlink: 'syz.3.1454': attribute type 2 has an invalid length. [ 467.768600][T10858] kvm: emulating exchange as write [ 467.879887][T10864] netlink: 'syz.1.1464': attribute type 4 has an invalid length. [ 469.287506][T10887] Cannot find add_set index 65532 as target [ 474.278720][T10926] fuse: Bad value for 'fd' [ 475.262106][ T27] audit: type=1804 audit(1762346712.177:581): pid=10932 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1482" name="bus" dev="ramfs" ino=23248 res=1 errno=0 [ 475.391920][ T27] audit: type=1804 audit(1762346712.177:582): pid=10932 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1482" name="bus" dev="ramfs" ino=23248 res=1 errno=0 [ 477.046643][ T27] audit: type=1326 audit(3909830361.962:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10955 comm="syz.3.1488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 477.069281][ T27] audit: type=1326 audit(3909830361.962:584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10955 comm="syz.3.1488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 477.093981][ T27] audit: type=1326 audit(3909830361.962:585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10955 comm="syz.3.1488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 477.116829][ T27] audit: type=1326 audit(3909830361.962:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10955 comm="syz.3.1488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 477.162896][ T27] audit: type=1326 audit(3909830361.962:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10955 comm="syz.3.1488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 477.164258][T10957] Cannot find add_set index 65532 as target [ 477.224671][ T27] audit: type=1326 audit(3909830361.962:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10955 comm="syz.3.1488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 477.255493][ T27] audit: type=1326 audit(3909830361.962:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10955 comm="syz.3.1488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 477.383984][ T27] audit: type=1326 audit(3909830361.962:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10955 comm="syz.3.1488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 481.262262][ T9602] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 482.150039][ T9602] usb 3-1: Using ep0 maxpacket: 8 [ 482.278879][ T9602] usb 3-1: unable to get BOS descriptor or descriptor too short [ 482.292559][ T9602] usb 3-1: config 246 has an invalid interface number: 233 but max is 0 [ 482.312231][ T9602] usb 3-1: config 246 has no interface number 0 [ 482.323281][ T9602] usb 3-1: config 246 interface 233 has no altsetting 0 [ 482.345244][ T9602] usb 3-1: New USB device found, idVendor=0b05, idProduct=18f0, bcdDevice=af.9c [ 482.368543][ T9602] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 482.382223][ T9602] usb 3-1: Product: syz [ 482.386513][ T9602] usb 3-1: Manufacturer: à Œ [ 482.401359][ T9602] usb 3-1: SerialNumber: syz [ 483.124177][ T9602] usb 3-1: USB disconnect, device number 4 [ 483.255634][T11028] loop2: detected capacity change from 0 to 128 [ 483.275267][T11028] vfat filesystem being mounted at /353/file0 supports timestamps until 2107-12-31 (0x10391447e) [ 483.318620][T11028] syz.2.1510: attempt to access beyond end of device [ 483.318620][T11028] loop2: rw=2049, sector=145, nr_sectors = 89 limit=128 [ 483.616723][T11028] syz.2.1510: attempt to access beyond end of device [ 483.616723][T11028] loop2: rw=2049, sector=241, nr_sectors = 800 limit=128 [ 484.202836][T11032] xt_cluster: node mask cannot exceed total number of nodes [ 485.352613][T11028] syz.2.1510: attempt to access beyond end of device [ 485.352613][T11028] loop2: rw=524288, sector=241, nr_sectors = 256 limit=128 [ 485.371081][T11044] syz.2.1510: attempt to access beyond end of device [ 485.371081][T11044] loop2: rw=0, sector=241, nr_sectors = 1 limit=128 [ 485.471828][T11048] xt_cgroup: invalid path, errno=-2 [ 486.161777][T11028] syz.2.1510: attempt to access beyond end of device [ 486.161777][T11028] loop2: rw=0, sector=241, nr_sectors = 1 limit=128 [ 486.183815][T11028] Buffer I/O error on dev loop2, logical block 241, async page read [ 486.225515][T11028] syz.2.1510: attempt to access beyond end of device [ 486.225515][T11028] loop2: rw=0, sector=242, nr_sectors = 1 limit=128 [ 486.257664][T11028] Buffer I/O error on dev loop2, logical block 242, async page read [ 486.342203][T11028] syz.2.1510: attempt to access beyond end of device [ 486.342203][T11028] loop2: rw=0, sector=243, nr_sectors = 1 limit=128 [ 486.355967][T11028] Buffer I/O error on dev loop2, logical block 243, async page read [ 486.364115][T11028] syz.2.1510: attempt to access beyond end of device [ 486.364115][T11028] loop2: rw=0, sector=244, nr_sectors = 1 limit=128 [ 486.378958][T11028] Buffer I/O error on dev loop2, logical block 244, async page read [ 486.498224][T11028] syz.2.1510: attempt to access beyond end of device [ 486.498224][T11028] loop2: rw=0, sector=245, nr_sectors = 1 limit=128 [ 486.512658][T11028] Buffer I/O error on dev loop2, logical block 245, async page read [ 486.521260][T11028] syz.2.1510: attempt to access beyond end of device [ 486.521260][T11028] loop2: rw=0, sector=246, nr_sectors = 1 limit=128 [ 486.540889][T11028] Buffer I/O error on dev loop2, logical block 246, async page read [ 486.563961][T11028] Buffer I/O error on dev loop2, logical block 247, async page read [ 486.575715][T11028] Buffer I/O error on dev loop2, logical block 248, async page read [ 486.926485][T11028] Buffer I/O error on dev loop2, logical block 241, async page read [ 486.965873][T11028] Buffer I/O error on dev loop2, logical block 242, async page read [ 488.096602][T11069] loop2: detected capacity change from 0 to 256 [ 488.207579][T11069] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 488.218618][T11069] exFAT-fs (loop2): Medium has reported failures. Some data may be lost. [ 488.277926][T11069] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x44ede5da, utbl_chksum : 0xe619d30d) [ 488.301493][T11069] exfat filesystem being mounted at /354/bus supports timestamps until 2107-12-31 (0x10391447f) [ 489.620423][T11079] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1520'. [ 492.350707][T11100] CIFS: Unable to determine destination address [ 492.359813][T11100] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1526'. [ 493.303523][T11110] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1528'. [ 494.705346][T11129] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1535'. [ 494.727257][T11129] team0: entered promiscuous mode [ 494.735578][T11129] 8021q: adding VLAN 0 to HW filter on device macvlan3 [ 494.895866][T11129] team0: left promiscuous mode [ 495.761146][T11144] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1540'. [ 497.687110][T11162] tipc: Enabling of bearer rejected, failed to enable media [ 499.476748][T11183] loop2: detected capacity change from 0 to 128 [ 500.639751][ T42] ~ÿ: left promiscuous mode [ 501.478269][ T42] bond1: (slave ip6gretap1): Releasing active interface [ 501.528957][T11206] 9p filesystem being mounted at /408/file0 supports timestamps until 2106-02-07 (0xffffffff) [ 501.559187][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.565743][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 502.075059][ T5102] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 502.088075][ T5102] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 502.102511][ T5102] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 502.142505][ T5102] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 502.164749][ T5102] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 502.174822][ T5102] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 503.650982][ T27] kauditd_printk_skb: 9 callbacks suppressed [ 503.650997][ T27] audit: type=1326 audit(3909830388.562:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11236 comm="syz.0.1560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 503.689355][T11237] overlayfs: failed to clone upperpath [ 503.695931][ T27] audit: type=1326 audit(3909830388.562:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11236 comm="syz.0.1560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 503.755330][ T27] audit: type=1326 audit(3909830388.562:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11236 comm="syz.0.1560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 503.915822][ T27] audit: type=1326 audit(3909830388.562:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11236 comm="syz.0.1560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 503.938666][ T27] audit: type=1326 audit(3909830388.602:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11236 comm="syz.0.1560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 503.979860][T11242] CIFS: Unable to determine destination address [ 503.992559][T11242] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1562'. [ 504.212782][ T27] audit: type=1326 audit(3909830388.602:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11236 comm="syz.0.1560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 504.274354][ T5785] Bluetooth: hci2: command tx timeout [ 504.588970][ T27] audit: type=1326 audit(3909830388.602:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11236 comm="syz.0.1560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 504.662413][ T27] audit: type=1326 audit(3909830388.602:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11236 comm="syz.0.1560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 504.717320][ T27] audit: type=1326 audit(3909830388.602:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11236 comm="syz.0.1560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 504.792811][ T27] audit: type=1326 audit(3909830388.602:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11236 comm="syz.0.1560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7ffc0000 [ 505.396917][T11252] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1563'. [ 505.598863][ T42] veth1: left promiscuous mode [ 505.610029][ T42] bridge1: left promiscuous mode [ 505.650652][ T42] hsr_slave_0: left promiscuous mode [ 506.115496][ T42] bond3 (unregistering): Released all slaves [ 507.264066][ T5785] Bluetooth: hci2: command tx timeout [ 507.405808][ T42] bond2 (unregistering): (slave veth9): Releasing active interface [ 507.663791][ T42] bond2 (unregistering): (slave veth7): Releasing active interface [ 508.917261][ T42] bond2 (unregistering): Released all slaves [ 509.156686][ T42] bond1 (unregistering): Released all slaves [ 509.319653][ T5785] Bluetooth: hci2: command tx timeout [ 510.124128][ T42] bond0 (unregistering): Released all slaves [ 510.135540][ T3463] smc: removing ib device syz0 [ 511.462499][ T5785] Bluetooth: hci2: command tx timeout [ 511.468552][T11217] chnl_net:caif_netlink_parms(): no params data found [ 511.649907][T11319] CIFS: Unable to determine destination address [ 511.660212][T11319] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1572'. [ 513.096310][T11217] bridge0: port 1(bridge_slave_0) entered blocking state [ 513.122232][T11217] bridge0: port 1(bridge_slave_0) entered disabled state [ 513.129494][T11217] bridge_slave_0: entered allmulticast mode [ 513.921744][T11217] bridge_slave_0: entered promiscuous mode [ 514.049340][T11217] bridge0: port 2(bridge_slave_1) entered blocking state [ 514.057314][T11217] bridge0: port 2(bridge_slave_1) entered disabled state [ 514.143692][T11217] bridge_slave_1: entered allmulticast mode [ 514.340104][T11217] bridge_slave_1: entered promiscuous mode [ 514.687221][T11350] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1579'. [ 515.260413][T11345] tipc: Enabling of bearer rejected, failed to enable media [ 515.358830][T11217] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 515.435119][T11217] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 515.609959][ T42] IPVS: stop unused estimator thread 0... [ 515.918491][T11217] team0: Port device team_slave_0 added [ 516.075854][T11217] team0: Port device team_slave_1 added [ 516.169975][T11217] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 516.196609][T11217] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 516.251243][T11217] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 516.264093][T11217] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 516.271070][T11217] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 516.297134][T11217] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 516.346959][T11217] hsr_slave_0: entered promiscuous mode [ 516.354710][T11217] hsr_slave_1: entered promiscuous mode [ 516.360995][T11217] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 516.369204][T11217] Cannot create hsr debugfs directory [ 516.595841][T11217] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 516.607529][T11217] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 516.618768][T11217] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 516.636909][T11217] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 516.731382][T11217] 8021q: adding VLAN 0 to HW filter on device bond0 [ 516.755213][T11217] 8021q: adding VLAN 0 to HW filter on device team0 [ 516.770124][ T3463] bridge0: port 1(bridge_slave_0) entered blocking state [ 516.777292][ T3463] bridge0: port 1(bridge_slave_0) entered forwarding state [ 516.797218][ T249] bridge0: port 2(bridge_slave_1) entered blocking state [ 516.804378][ T249] bridge0: port 2(bridge_slave_1) entered forwarding state [ 517.065720][T11217] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 517.403362][T11217] veth0_vlan: entered promiscuous mode [ 517.423592][T11217] veth1_vlan: entered promiscuous mode [ 517.474810][T11217] veth0_macvtap: entered promiscuous mode [ 517.490064][T11217] veth1_macvtap: entered promiscuous mode [ 517.513112][T11217] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 517.536889][T11217] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 517.549896][T11217] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 517.559165][T11217] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 517.570205][T11217] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 517.579277][T11217] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 517.699014][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 517.726796][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 517.748203][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 517.758121][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 517.976651][T11431] loop4: detected capacity change from 0 to 128 [ 518.527695][T11431] vfat filesystem being mounted at /0/file0 supports timestamps until 2107-12-31 (0x10391447e) [ 518.599911][T11431] bio_check_eod: 10 callbacks suppressed [ 518.599928][T11431] syz.4.1553: attempt to access beyond end of device [ 518.599928][T11431] loop4: rw=2049, sector=145, nr_sectors = 89 limit=128 [ 518.722719][T11431] syz.4.1553: attempt to access beyond end of device [ 518.722719][T11431] loop4: rw=2049, sector=241, nr_sectors = 800 limit=128 [ 518.924029][T11431] syz.4.1553: attempt to access beyond end of device [ 518.924029][T11431] loop4: rw=524288, sector=241, nr_sectors = 256 limit=128 [ 518.940320][T11431] syz.4.1553: attempt to access beyond end of device [ 518.940320][T11431] loop4: rw=0, sector=241, nr_sectors = 8 limit=128 [ 518.955237][T11431] syz.4.1553: attempt to access beyond end of device [ 518.955237][T11431] loop4: rw=0, sector=241, nr_sectors = 8 limit=128 [ 518.969950][T11431] syz.4.1553: attempt to access beyond end of device [ 518.969950][T11431] loop4: rw=0, sector=241, nr_sectors = 8 limit=128 [ 518.984232][T11431] syz.4.1553: attempt to access beyond end of device [ 518.984232][T11431] loop4: rw=0, sector=241, nr_sectors = 8 limit=128 [ 519.005310][T11431] syz.4.1553: attempt to access beyond end of device [ 519.005310][T11431] loop4: rw=0, sector=241, nr_sectors = 8 limit=128 [ 519.019862][T11431] syz.4.1553: attempt to access beyond end of device [ 519.019862][T11431] loop4: rw=0, sector=241, nr_sectors = 8 limit=128 [ 519.033955][T11441] syz.4.1553: attempt to access beyond end of device [ 519.033955][T11441] loop4: rw=0, sector=241, nr_sectors = 1 limit=128 [ 519.050996][T11431] buffer_io_error: 6 callbacks suppressed [ 519.051012][T11431] Buffer I/O error on dev loop4, logical block 241, async page read [ 519.067815][T11431] Buffer I/O error on dev loop4, logical block 242, async page read [ 519.078442][T11431] Buffer I/O error on dev loop4, logical block 243, async page read [ 519.088425][T11431] Buffer I/O error on dev loop4, logical block 244, async page read [ 519.100241][T11431] Buffer I/O error on dev loop4, logical block 245, async page read [ 519.110232][T11431] Buffer I/O error on dev loop4, logical block 246, async page read [ 519.123461][T11431] Buffer I/O error on dev loop4, logical block 247, async page read [ 519.131617][T11431] Buffer I/O error on dev loop4, logical block 248, async page read [ 519.144833][T11431] Buffer I/O error on dev loop4, logical block 241, async page read [ 519.156099][T11431] Buffer I/O error on dev loop4, logical block 242, async page read [ 519.528337][T11455] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1594'. [ 519.620511][T11458] loop4: detected capacity change from 0 to 128 [ 519.904867][T11462] xt_connbytes: Forcing CT accounting to be enabled [ 519.911821][T11462] set match dimension is over the limit! [ 520.293698][T11458] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 520.350825][T11458] ext4 filesystem being mounted at /1/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 522.396924][T11486] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1589'. [ 522.407170][T11486] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1589'. [ 523.404385][T11217] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 524.686060][T11518] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1601'. [ 524.766677][T11518] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 524.776235][T11518] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 524.785317][T11518] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 524.794083][T11518] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 524.811775][T11518] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1601'. [ 524.993042][T11531] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1604'. [ 526.138472][T11550] netlink: 'syz.1.1609': attribute type 1 has an invalid length. [ 526.246922][T11550] 8021q: adding VLAN 0 to HW filter on device bond3 [ 526.264243][T11554] loop4: detected capacity change from 0 to 128 [ 526.289528][T11554] vfat filesystem being mounted at /5/file0 supports timestamps until 2107-12-31 (0x10391447e) [ 526.415027][T11550] veth9: entered promiscuous mode [ 526.469820][T11550] bond3: (slave veth9): Enslaving as an active interface with a down link [ 526.527314][T11554] loop4: detected capacity change from 0 to 2048 [ 526.539661][T11556] bond3: (slave vlan0): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened) [ 526.595106][T11554] loop4: p1 < > p2 p3 < p5 p6 > p4 [ 526.600498][T11554] loop4: partition table partially beyond EOD, truncated [ 526.608742][T11554] loop4: p1 start 4278190080 is beyond EOD, truncated [ 526.616327][T11554] loop4: p2 start 16908800 is beyond EOD, truncated [ 526.631847][T11554] loop4: p4 start 11326 is beyond EOD, truncated [ 526.641057][T11554] loop4: p5 start 16908800 is beyond EOD, truncated [ 526.648956][T11554] loop4: p6 start 11326 is beyond EOD, truncated [ 528.431188][T11591] loop4: detected capacity change from 0 to 1024 [ 530.565469][ T5785] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 530.575767][ T5785] Bluetooth: hci2: Injecting HCI hardware error event [ 530.597309][ T5785] Bluetooth: hci2: hardware error 0x00 [ 530.600452][T11611] fuse: Bad value for 'fd' [ 533.916303][ T5785] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 535.527232][T11661] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 539.981777][ T27] kauditd_printk_skb: 10 callbacks suppressed [ 539.981793][ T27] audit: type=1326 audit(3909830424.892:620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11696 comm="syz.4.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f743df8f6c9 code=0x7ffc0000 [ 540.087589][ T27] audit: type=1326 audit(3909830424.892:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11696 comm="syz.4.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f743df8f6c9 code=0x7ffc0000 [ 540.152109][ T27] audit: type=1326 audit(3909830424.892:622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11696 comm="syz.4.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f743df8f6c9 code=0x7ffc0000 [ 540.283307][ T27] audit: type=1326 audit(3909830424.892:623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11696 comm="syz.4.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f743df8f6c9 code=0x7ffc0000 [ 540.418222][ T27] audit: type=1326 audit(3909830424.892:624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11696 comm="syz.4.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f743df8f6c9 code=0x7ffc0000 [ 540.546180][ T27] audit: type=1326 audit(3909830424.892:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11696 comm="syz.4.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f743df8f6c9 code=0x7ffc0000 [ 540.569560][ T27] audit: type=1326 audit(3909830424.892:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11696 comm="syz.4.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f743df8f6c9 code=0x7ffc0000 [ 540.627417][ T27] audit: type=1326 audit(3909830424.892:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11696 comm="syz.4.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f743df8f6c9 code=0x7ffc0000 [ 540.963270][ T27] audit: type=1326 audit(3909830424.892:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11696 comm="syz.4.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f743df8f6c9 code=0x7ffc0000 [ 541.292225][ T27] audit: type=1326 audit(3909830424.902:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11696 comm="syz.4.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f743df8f6c9 code=0x7ffc0000 [ 543.068402][T11745] netlink: 'syz.3.1657': attribute type 1 has an invalid length. [ 543.146526][T11745] 8021q: adding VLAN 0 to HW filter on device bond2 [ 543.225924][T11756] bond2: (slave ip6gretap1): making interface the new active one [ 543.292349][T11756] bond2: (slave ip6gretap1): Enslaving as an active interface with an up link [ 543.549880][T11745] veth3: entered promiscuous mode [ 543.591546][T11745] bond2: (slave veth3): Enslaving as an active interface with a down link [ 543.629178][T11756] bond2: (slave vlan3): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened) [ 545.934681][T11794] tipc: Started in network mode [ 545.947452][T11794] tipc: Node identity 2697381ba87f, cluster identity 4711 [ 545.958289][T11794] tipc: Enabled bearer , priority 0 [ 546.093132][T11795] syzkaller0: entered promiscuous mode [ 546.236347][T11795] syzkaller0: entered allmulticast mode [ 546.616806][T11795] tipc: Resetting bearer [ 546.677950][T11793] tipc: Resetting bearer [ 546.767551][T11793] tipc: Disabling bearer [ 547.000029][T11814] netlink: 'syz.4.1669': attribute type 1 has an invalid length. [ 547.168345][T11814] veth3: entered promiscuous mode [ 547.940405][ T27] kauditd_printk_skb: 25 callbacks suppressed [ 547.940419][ T27] audit: type=1326 audit(3909830432.852:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11827 comm="syz.1.1672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 547.996740][ T27] audit: type=1326 audit(3909830432.902:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11827 comm="syz.1.1672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 548.019378][ T27] audit: type=1326 audit(3909830432.902:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11827 comm="syz.1.1672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 548.140909][ T27] audit: type=1326 audit(3909830432.902:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11827 comm="syz.1.1672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 548.163291][ C1] vkms_vblank_simulate: vblank timer overrun [ 548.170849][ T27] audit: type=1326 audit(3909830432.902:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11827 comm="syz.1.1672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 549.575456][ T27] audit: type=1326 audit(3909830432.902:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11827 comm="syz.1.1672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 549.749584][ T27] audit: type=1326 audit(3909830432.902:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11827 comm="syz.1.1672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=207 compat=0 ip=0x7ff15e38f6c9 code=0x7ffc0000 [ 550.600798][T11850] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1678'. [ 552.136723][T11872] loop4: detected capacity change from 0 to 1024 [ 552.216356][T11872] ext4: Unknown parameter 'uid<00000000000000000000' [ 553.652847][T11906] xt_connbytes: Forcing CT accounting to be enabled [ 553.660160][T11906] Cannot find set identified by id 0 to match [ 553.985353][T11907] netlink: 'syz.4.1688': attribute type 10 has an invalid length. [ 554.636223][T11907] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 554.813392][ T27] audit: type=1326 audit(3909830439.722:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11919 comm="syz.4.1692" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f743df8f6c9 code=0x0 [ 561.125864][T12003] loop4: detected capacity change from 0 to 8192 [ 561.182178][T12003] vfat filesystem being mounted at /25/file0 supports timestamps until 2107-12-31 (0x10391447e) [ 563.114104][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.120455][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 563.281183][T12025] netlink: 201392 bytes leftover after parsing attributes in process `syz.3.1710'. [ 563.567763][T12031] loop4: detected capacity change from 0 to 128 [ 563.761426][T12031] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 565.113254][T12062] netlink: 'syz.0.1720': attribute type 1 has an invalid length. [ 565.215405][T12068] 8021q: adding VLAN 0 to HW filter on device bond5 [ 565.392494][T12062] veth3: entered promiscuous mode [ 565.416450][T12062] bond5: (slave veth3): Enslaving as a backup interface with a down link [ 565.613232][ T5842] IPVS: starting estimator thread 0... [ 565.732924][T12080] IPVS: using max 17 ests per chain, 40800 per kthread [ 566.011583][T12087] loop4: detected capacity change from 0 to 1024 [ 566.601978][T12087] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 566.616499][T12087] ext4 filesystem being mounted at /28/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 567.222655][T11217] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 567.491648][T12113] bond0: entered allmulticast mode [ 569.172677][T12151] netlink: 'syz.1.1737': attribute type 3 has an invalid length. [ 569.492702][ T5842] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 570.592203][ T5842] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 571.225538][ T5842] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 571.282096][ T5842] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 571.319358][ T5842] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 571.356847][ T5842] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 571.414604][ T5842] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 571.432107][ T5842] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 571.440150][ T5842] usb 5-1: Product: syz [ 571.463604][ T5842] usb 5-1: Manufacturer: syz [ 571.490549][ T5842] cdc_wdm 5-1:1.0: skipping garbage [ 571.519472][ T5842] cdc_wdm 5-1:1.0: skipping garbage [ 571.594969][ T5842] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device [ 571.600985][ T5842] cdc_wdm 5-1:1.0: Unknown control protocol [ 571.947598][ C1] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 571.954537][ C1] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 571.962307][ C1] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 571.968933][ C1] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 571.976202][ C1] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 571.982822][ C1] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 571.989210][ C1] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 571.995821][ C1] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 572.002360][ C1] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 572.008967][ C1] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 572.021191][ C1] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 572.027830][ C1] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 572.034514][ C1] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 572.041124][ C1] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 572.047470][ C1] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 572.054077][ C1] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 572.060380][ C1] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 572.066999][ C1] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 572.073575][ C1] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 572.080186][ C1] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 572.087464][ T9599] usb 5-1: USB disconnect, device number 2 [ 572.087524][ C1] cdc_wdm 5-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19 [ 573.475185][T12200] netlink: 'syz.3.1749': attribute type 10 has an invalid length. [ 573.502226][T12200] netdevsim netdevsim3 netdevsim0: left allmulticast mode [ 573.759534][T12204] xt_connbytes: Forcing CT accounting to be enabled [ 573.766270][T12204] set match dimension is over the limit! [ 574.089017][T12200] netdevsim netdevsim3 netdevsim0: entered allmulticast mode [ 574.166528][T12200] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 578.402224][T12252] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1761'. [ 578.435535][T12253] syz_tun: entered allmulticast mode [ 578.481907][T12250] syz_tun: left allmulticast mode [ 578.762282][T12252] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1761'. [ 580.024172][T12261] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1764'. [ 581.373231][T12275] (null): rxe_set_mtu: Set mtu to 256 [ 581.387144][T12275] vcan0 speed is unknown, defaulting to 1000 [ 581.409367][T12275] vcan0 speed is unknown, defaulting to 1000 [ 581.461499][T12275] vcan0 speed is unknown, defaulting to 1000 [ 582.721428][ T5842] vcan0 speed is unknown, defaulting to 1000 [ 582.893203][T12275] infiniband syz1: set active [ 582.939388][T12275] infiniband syz1: added vcan0 [ 583.146792][T12275] syz1: rxe_create_cq: returned err = -12 [ 583.170259][T12275] infiniband syz1: Couldn't create ib_mad CQ [ 583.178082][T12275] infiniband syz1: Couldn't open port 1 [ 583.264069][T12275] RDS/IB: syz1: added [ 583.418326][T12275] smc: adding ib device syz1 with port count 1 [ 583.443105][T12275] smc: ib device syz1 port 1 has pnetid [ 583.449837][ T9603] vcan0 speed is unknown, defaulting to 1000 [ 583.458031][T12275] vcan0 speed is unknown, defaulting to 1000 [ 585.113702][T12305] netlink: 'syz.1.1776': attribute type 10 has an invalid length. [ 585.142457][T12305] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1776'. [ 585.288698][T12275] vcan0 speed is unknown, defaulting to 1000 [ 586.218261][T12275] vcan0 speed is unknown, defaulting to 1000 [ 587.224636][T12275] vcan0 speed is unknown, defaulting to 1000 [ 588.296682][T12275] vcan0 speed is unknown, defaulting to 1000 [ 590.975154][T12367] syz_tun: entered allmulticast mode [ 591.040437][T12364] syz_tun: left allmulticast mode [ 591.767469][T12387] tipc: New replicast peer: 255.255.255.255 [ 591.851172][T12387] tipc: Enabled bearer , priority 10 [ 593.551027][T12403] xt_socket: unknown flags 0x50 [ 594.192406][ T9599] IPVS: starting estimator thread 0... [ 594.352643][T12411] IPVS: using max 16 ests per chain, 38400 per kthread [ 594.946415][T12420] vcan0 speed is unknown, defaulting to 1000 [ 600.919440][ T27] audit: type=1326 audit(3909830485.832:663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12478 comm="syz.1.1822" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff15e38f6c9 code=0x0 [ 603.269758][T12509] netlink: 'syz.0.1838': attribute type 21 has an invalid length. [ 603.284125][T12509] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1838'. [ 603.875753][T12531] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1834'. [ 608.913657][T12554] Illegal XDP return value 812752937 on prog (id 537) dev N/A, expect packet loss! [ 609.081136][T12564] trusted_key: syz.0.1844 sent an empty control message without MSG_MORE. [ 611.296617][ T27] audit: type=1326 audit(3909830497.212:664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12590 comm="syz.4.1854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f743df8f6c9 code=0x7fc00000 [ 611.363848][ T27] audit: type=1326 audit(3909830497.242:665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12590 comm="syz.4.1854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f743df8f6c9 code=0x7fc00000 [ 611.386684][ T27] audit: type=1326 audit(3909830497.242:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12590 comm="syz.4.1854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f743df8f6c9 code=0x7fc00000 [ 611.746367][T12607] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1856'. [ 612.558110][T12612] netlink: 'syz.4.1860': attribute type 1 has an invalid length. [ 612.944172][T12615] 8021q: adding VLAN 0 to HW filter on device bond2 [ 612.970358][T12615] bond1: (slave bond2): making interface the new active one [ 612.985475][T12615] bond1: (slave bond2): Enslaving as an active interface with an up link [ 613.058892][T12612] bond1: (slave gretap1): Enslaving as a backup interface with an up link [ 613.109704][T12621] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1860'. [ 613.128230][T12621] 8021q: adding VLAN 0 to HW filter on device bond1 [ 613.254317][T12627] vcan0 speed is unknown, defaulting to 1000 [ 614.684478][T12641] loop4: detected capacity change from 0 to 1024 [ 614.728035][T12641] ext4: Unknown parameter 'hash' [ 614.797089][T12550] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 616.509551][T12659] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1879'. [ 617.963337][T12666] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1871'. [ 621.650635][T12708] vcan0 speed is unknown, defaulting to 1000 [ 623.583326][T12720] loop4: detected capacity change from 0 to 2048 [ 623.615932][T12720] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 624.438499][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.445438][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 624.857058][ T27] audit: type=1326 audit(3909830510.622:667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12732 comm="syz.0.1895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7fc00000 [ 625.331700][ T27] audit: type=1326 audit(3909830510.862:668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12732 comm="syz.0.1895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7fc00000 [ 625.428149][ T3463] bio_check_eod: 16 callbacks suppressed [ 625.428166][ T3463] kworker/u4:8: attempt to access beyond end of device [ 625.428166][ T3463] loop4: rw=1, sector=2048, nr_sectors = 1 limit=2048 [ 625.467508][ T27] audit: type=1326 audit(3909830510.932:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12732 comm="syz.0.1895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7fc00000 [ 625.560592][ T3463] buffer_io_error: 6 callbacks suppressed [ 625.560608][ T3463] Buffer I/O error on dev loop4, logical block 2048, lost async page write [ 625.568432][ T27] audit: type=1326 audit(3909830510.952:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12732 comm="syz.0.1895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7fc00000 [ 625.603418][ T27] audit: type=1326 audit(3909830511.442:671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12732 comm="syz.0.1895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32e38f6c9 code=0x7fc00000 [ 625.626325][ T3463] kworker/u4:8: attempt to access beyond end of device [ 625.626325][ T3463] loop4: rw=1, sector=2048, nr_sectors = 1 limit=2048 [ 625.640501][ T3463] Buffer I/O error on dev loop4, logical block 2048, lost async page write [ 625.649421][ T3463] kworker/u4:8: attempt to access beyond end of device [ 625.649421][ T3463] loop4: rw=1, sector=2048, nr_sectors = 1 limit=2048 [ 626.039827][T12751] loop4: detected capacity change from 0 to 16 [ 626.048526][T12751] erofs: (device loop4): mounted with root inode @ nid 36. [ 626.410709][T12751] erofs: (device loop4): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36 [ 626.694800][T12751] erofs: (device loop4): z_erofs_lz4_decompress_mem: failed to decompress -3 in[47, 4049] out[1851] [ 626.753045][T12751] erofs: (device loop4): z_erofs_read_folio: read error -117 @ 43 of nid 36 [ 626.801698][T12755] erofs: (device loop4): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36 [ 626.825052][T12755] erofs: (device loop4): z_erofs_lz4_decompress_mem: failed to decompress -3 in[47, 4049] out[1851] [ 626.837075][T12755] erofs: (device loop4): z_erofs_read_folio: read error -117 @ 43 of nid 36 [ 627.584087][T12770] ptrace attach of ""[12772] was attempted by "./syz-executor exec"[12770] [ 629.502137][T12790] netlink: 'syz.4.1908': attribute type 5 has an invalid length. [ 629.509934][T12790] netlink: 3657 bytes leftover after parsing attributes in process `syz.4.1908'. [ 630.573267][T12806] loop4: detected capacity change from 0 to 128 [ 630.703271][T12806] msdos filesystem being mounted at /67/file1 supports timestamps until 2107-12-31 (0x10391447e) [ 633.675850][ T27] audit: type=1326 audit(3909830519.562:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12819 comm="syz.1.1915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x7fc00000 [ 633.761160][ T27] audit: type=1326 audit(3909830519.562:673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12819 comm="syz.1.1915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7ff15e38f6c9 code=0x7fc00000 [ 633.834013][ T27] audit: type=1326 audit(3909830519.562:674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12819 comm="syz.1.1915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff15e38f6c9 code=0x7fc00000 [ 633.984889][T12829] netlink: 'syz.0.1918': attribute type 1 has an invalid length. [ 634.083656][T12835] overlayfs: fs on './bus' does not support file handles, falling back to index=off,nfs_export=off. [ 634.096309][T12835] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 634.189927][T12834] 8021q: adding VLAN 0 to HW filter on device bond7 [ 634.246496][T12834] bond6: (slave bond7): making interface the new active one [ 634.266521][T12834] bond6: (slave bond7): Enslaving as an active interface with an up link [ 634.302927][T12831] sit0: entered promiscuous mode [ 634.326359][T12831] netlink: 21 bytes leftover after parsing attributes in process `syz.1.1919'. [ 634.396086][T12834] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1918'. [ 634.437315][T12834] 8021q: adding VLAN 0 to HW filter on device bond6 [ 638.786767][T12867] overlayfs: failed to clone upperpath [ 638.819576][T12867] overlayfs: failed to clone upperpath [ 639.941127][ T27] audit: type=1326 audit(3909830525.822:675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12874 comm="syz.3.1932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 640.032047][ T27] audit: type=1326 audit(3909830525.822:676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12874 comm="syz.3.1932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cb2b8f6c9 code=0x7ffc0000 [ 642.225549][T12906] sit0: entered promiscuous mode [ 642.261196][T12906] netlink: 21 bytes leftover after parsing attributes in process `syz.4.1939'. [ 648.364336][T12952] vcan0 speed is unknown, defaulting to 1000 [ 648.610484][T12956] loop4: detected capacity change from 0 to 512 [ 650.344916][T12956] EXT4-fs warning (device loop4): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop4. [ 662.765073][T13079] loop4: detected capacity change from 0 to 128 [ 662.828345][T13079] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 662.855944][T13079] ext4 filesystem being mounted at /83/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 663.843548][T11217] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 663.878279][T13095] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1988'. [ 663.939713][T13095] IPv6: sit1: Disabled Multicast RS [ 663.951666][T13095] sit1: entered allmulticast mode [ 664.252733][T13104] ipt_REJECT: ECHOREPLY no longer supported. [ 664.545322][T13104] loop4: detected capacity change from 0 to 512 [ 664.966799][T13104] EXT4-fs error (device loop4): ext4_quota_enable:7124: comm syz.4.1990: inode #50331648: comm syz.4.1990: iget: illegal inode # [ 665.050279][T13104] EXT4-fs (loop4): Remounting filesystem read-only [ 665.057394][T13104] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=50331648). Please run e2fsck to fix. [ 665.077253][T13104] EXT4-fs (loop4): mount failed [ 667.707721][T13135] 9pnet: p9_errstr2errno: server reported unknown error 184467440737095 [ 668.208906][T13146] netlink: 27 bytes leftover after parsing attributes in process `syz.1.2001'. [ 670.773526][T13171] ipt_REJECT: ECHOREPLY no longer supported. [ 679.714954][T13216] Set syz1 is full, maxelem 65536 reached [ 679.878556][T13260] xt_CT: No such helper "netbios-ns" [ 684.100861][T13300] netlink: 'syz.3.2043': attribute type 1 has an invalid length. [ 684.755403][T13303] bond3: (slave vxcan3): The slave device specified does not support setting the MAC address [ 684.808011][T13303] bond3: (slave vxcan3): Error -95 calling set_mac_address [ 684.893003][T13304] bond3: (slave bridge1): Enslaving as an active interface with a down link [ 684.919919][T13305] bond3: (slave gretap1): making interface the new active one [ 684.935588][T13305] bond3: (slave gretap1): Enslaving as an active interface with an up link [ 685.369091][T13321] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2045'. [ 685.897593][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 685.904050][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 687.992912][T13347] loop4: detected capacity change from 0 to 1024 [ 688.011796][T13347] EXT4-fs: Invalid want_extra_isize 7 [ 689.727298][T13363] loop4: detected capacity change from 0 to 256 [ 689.736865][T13363] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 689.775964][T13363] exFAT-fs (loop4): Medium has reported failures. Some data may be lost. [ 689.863776][T13363] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 689.926527][T13363] exfat filesystem being mounted at /96/file0 supports timestamps until 2107-12-31 (0x10391447f) [ 693.133197][T13384] netlink: 'syz.1.2062': attribute type 1 has an invalid length. [ 693.291896][T13384] bond4: entered promiscuous mode [ 693.321030][T13384] 8021q: adding VLAN 0 to HW filter on device bond4 [ 693.355582][T13386] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2062'. [ 693.387983][T13386] bond4: entered allmulticast mode [ 693.478604][T13384] bond4: (slave bridge8): making interface the new active one [ 693.512941][T13384] bridge8: entered promiscuous mode [ 693.531363][T13384] bridge8: entered allmulticast mode [ 693.551609][T13384] bond4: (slave bridge8): Enslaving as an active interface with an up link [ 695.806411][T13419] netlink: 'syz.1.2069': attribute type 1 has an invalid length. [ 696.215771][T13419] 8021q: adding VLAN 0 to HW filter on device bond5 [ 696.483890][T13419] macvlan0: entered promiscuous mode [ 696.489249][T13419] macvlan0: entered allmulticast mode [ 696.589404][T13419] bond5: entered promiscuous mode [ 696.628453][T13419] 8021q: adding VLAN 0 to HW filter on device macvlan0 [ 696.661778][T13419] bond5: left promiscuous mode [ 696.953448][T13427] bond5: (slave gretap1): making interface the new active one [ 696.971566][T13427] bond5: (slave gretap1): Enslaving as an active interface with an up link [ 697.819153][T13436] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2079'. [ 697.838258][T13436] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 698.115688][T13436] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 698.163944][ T12] ------------[ cut here ]------------ [ 698.170121][ T12] WARNING: CPU: 0 PID: 12 at io_uring/io_uring.c:3214 io_ring_exit_work+0x39e/0x7e0 [ 698.179845][ T12] Modules linked in: [ 698.183835][ T12] CPU: 0 PID: 12 Comm: kworker/u4:1 Not tainted syzkaller #0 [ 698.191215][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 698.201401][ T12] Workqueue: iou_exit io_ring_exit_work [ 698.207137][ T12] RIP: 0010:io_ring_exit_work+0x39e/0x7e0 [ 698.212915][ T12] Code: e8 07 28 1f f7 48 89 df 48 c7 c6 a0 5a 66 8a 4c 8b 24 24 4c 89 e2 b9 01 00 00 00 e8 8c b4 b4 f9 e9 64 ff ff ff e8 e2 27 1f f7 <0f> 0b b8 70 17 00 00 48 89 44 24 08 eb a6 89 d9 80 e1 07 80 c1 03 [ 698.232619][ T12] RSP: 0018:ffffc90000117a40 EFLAGS: 00010293 [ 698.238710][ T12] RAX: ffffffff8a6667ae RBX: 0000000100009acd RCX: ffff888019e7da00 [ 698.246745][ T12] RDX: 0000000000000000 RSI: fffffffffffffffe RDI: 0000000000000000 [ 698.255050][ T12] RBP: ffffc90000117bb0 R08: ffffc900001179c7 R09: 1ffff92000022f38 [ 698.263295][ T12] R10: dffffc0000000000 R11: fffff52000022f39 R12: 0000000100009acb [ 698.271296][ T12] R13: ffff88805c0a4288 R14: ffff88805c0a4510 R15: dffffc0000000000 [ 698.279469][ T12] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 698.288448][ T12] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 698.295145][ T12] CR2: 0000001b2e317ff8 CR3: 00000000785b5000 CR4: 00000000003506f0 [ 698.303247][ T12] Call Trace: [ 698.306535][ T12] [ 698.309493][ T12] ? io_ring_ctx_wait_and_kill+0x2a0/0x2a0 [ 698.315381][ T12] ? _raw_spin_unlock_irq+0x23/0x50 [ 698.320689][ T12] ? process_scheduled_works+0x957/0x15b0 [ 698.326517][ T12] ? process_scheduled_works+0x957/0x15b0 [ 698.332389][ T12] process_scheduled_works+0xa45/0x15b0 [ 698.337981][ T12] ? assign_work+0x400/0x400 [ 698.342624][ T12] ? assign_work+0x39e/0x400 [ 698.347234][ T12] worker_thread+0xa55/0xfc0 [ 698.351869][ T12] kthread+0x2fa/0x390 [ 698.356003][ T12] ? pr_cont_work+0x560/0x560 [ 698.360692][ T12] ? kthread_blkcg+0xd0/0xd0 [ 698.365320][ T12] ret_from_fork+0x48/0x80 [ 698.369774][ T12] ? kthread_blkcg+0xd0/0xd0 [ 698.374429][ T12] ret_from_fork_asm+0x11/0x20 [ 698.379247][ T12] [ 698.382461][ T12] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 698.389737][ T12] CPU: 0 PID: 12 Comm: kworker/u4:1 Not tainted syzkaller #0 [ 698.397106][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 698.407145][ T12] Workqueue: iou_exit io_ring_exit_work [ 698.412687][ T12] Call Trace: [ 698.415999][ T12] [ 698.418942][ T12] dump_stack_lvl+0x16c/0x230 [ 698.423719][ T12] ? show_regs_print_info+0x20/0x20 [ 698.428940][ T12] ? load_image+0x3b0/0x3b0 [ 698.433497][ T12] panic+0x2c0/0x710 [ 698.437394][ T12] ? bpf_jit_dump+0xd0/0xd0 [ 698.441896][ T12] ? ret_from_fork_asm+0x11/0x20 [ 698.446830][ T12] __warn+0x2e0/0x470 [ 698.450797][ T12] ? io_ring_exit_work+0x39e/0x7e0 [ 698.455898][ T12] ? io_ring_exit_work+0x39e/0x7e0 [ 698.460998][ T12] report_bug+0x2be/0x4f0 [ 698.465392][ T12] ? io_ring_exit_work+0x39e/0x7e0 [ 698.470488][ T12] ? io_ring_exit_work+0x39e/0x7e0 [ 698.475586][ T12] ? io_ring_exit_work+0x3a0/0x7e0 [ 698.480768][ T12] handle_bug+0xcf/0x120 [ 698.485002][ T12] exc_invalid_op+0x1a/0x50 [ 698.489489][ T12] asm_exc_invalid_op+0x1a/0x20 [ 698.494391][ T12] RIP: 0010:io_ring_exit_work+0x39e/0x7e0 [ 698.500096][ T12] Code: e8 07 28 1f f7 48 89 df 48 c7 c6 a0 5a 66 8a 4c 8b 24 24 4c 89 e2 b9 01 00 00 00 e8 8c b4 b4 f9 e9 64 ff ff ff e8 e2 27 1f f7 <0f> 0b b8 70 17 00 00 48 89 44 24 08 eb a6 89 d9 80 e1 07 80 c1 03 [ 698.519871][ T12] RSP: 0018:ffffc90000117a40 EFLAGS: 00010293 [ 698.525925][ T12] RAX: ffffffff8a6667ae RBX: 0000000100009acd RCX: ffff888019e7da00 [ 698.533886][ T12] RDX: 0000000000000000 RSI: fffffffffffffffe RDI: 0000000000000000 [ 698.541842][ T12] RBP: ffffc90000117bb0 R08: ffffc900001179c7 R09: 1ffff92000022f38 [ 698.549801][ T12] R10: dffffc0000000000 R11: fffff52000022f39 R12: 0000000100009acb [ 698.557761][ T12] R13: ffff88805c0a4288 R14: ffff88805c0a4510 R15: dffffc0000000000 [ 698.565752][ T12] ? io_ring_exit_work+0x39e/0x7e0 [ 698.570870][ T12] ? io_ring_ctx_wait_and_kill+0x2a0/0x2a0 [ 698.576719][ T12] ? _raw_spin_unlock_irq+0x23/0x50 [ 698.581910][ T12] ? process_scheduled_works+0x957/0x15b0 [ 698.587621][ T12] ? process_scheduled_works+0x957/0x15b0 [ 698.593334][ T12] process_scheduled_works+0xa45/0x15b0 [ 698.598882][ T12] ? assign_work+0x400/0x400 [ 698.603466][ T12] ? assign_work+0x39e/0x400 [ 698.608141][ T12] worker_thread+0xa55/0xfc0 [ 698.612745][ T12] kthread+0x2fa/0x390 [ 698.616796][ T12] ? pr_cont_work+0x560/0x560 [ 698.621454][ T12] ? kthread_blkcg+0xd0/0xd0 [ 698.626208][ T12] ret_from_fork+0x48/0x80 [ 698.630612][ T12] ? kthread_blkcg+0xd0/0xd0 [ 698.635186][ T12] ret_from_fork_asm+0x11/0x20 [ 698.639945][ T12] [ 698.643252][ T12] Kernel Offset: disabled [ 698.647758][ T12] Rebooting in 86400 seconds..