last executing test programs: 6m48.277927556s ago: executing program 1 (id=293): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x4040895, 0x0, 0xfffffffffffffde8) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xf) 6m48.148719979s ago: executing program 1 (id=295): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) personality(0x8001a0ffffffff) 6m47.955695308s ago: executing program 1 (id=298): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(r0, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) io_setup(0x389d, &(0x7f0000000040)) 6m47.783267976s ago: executing program 1 (id=302): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000880)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@stripe={'stripe', 0x3d, 0x12}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x20}}, {@max_batch_time={'max_batch_time', 0x3d, 0x7}}]}, 0x3, 0x43a, &(0x7f0000000340)="$eJzs28tvG0UYAPBv13FKXySU8ugDCBRExCNp0gI9cAGBxAEkJDiUY0jSqtRtUBMkWlUQECpHVIk74ojEX8AJLgg4IXGFO6pUoVxaOBmtvZs4jp0mwY5L/ftJm8zsjjPzeXbs2Z1sAH1rJPuRROyJiN8jYqieXV1gpP7r5tLl6b+XLk8nUa2+9VdSK3dj6fJ0UbR43e48M5pGpJ8lcahFvfMXL52dqlRmL+T58YVz74/PX7z07JlzU6dnT8+enzxx4vixiReen3yuI3Fmbbpx8KO5wwdee+fqG9Mnr77787dJEX9THB0yst7BJ6rVDlfXW3sb0slADxvCppQiIuuucm38D0UpVjpvKF79tKeNA7qqWq1Wd7c/vFgF7mBJbLTk2fzzArgzFF/02fVvsW3T1OO2cP2l+gVQFvfNfKsfGYg0L1Nuur7tpJGIOLn4z1fZFt25DwEAsMr32fznmVbzvzTubyh3d742NBwR90TEvoi4NyL2R8R9EbWyD0TEg5usv3mRZO38J722pcA2KJv/vZivba2e/xWzvxgu5bm9tfjLyakzldmj+XsyGuUdWX5inTp+eOW3L9oda5z/ZVtWfzEXzNtxbWDH6tfMTC1M/ZeYG13/JOLgQKv4k+WVgCQiDkTEwS3Wceapbw63O9Yu/vJG/nAH1pmqX0c8We//xWiKv5Csvz45fldUZo+OF2fFWr/8euXNdvXfuv+7K+v/XS3P/+X4h5PG9dr5zddx5Y/P217TbPX8H0zerqUH830fTi0sXJiIGExerze6cf/kymuLfFE+i3/0SOvxvy9W3olDEZGdxA9FxMMR8Uje9kcj4rGIOLJO/D+9/Ph7W4+/u7L4ZzbV/yuJwWje0zpROvvjd6sqHd5M/Fn/H6+lRvM9G/n820i7tnY2AwAAwP9PGhF7IknHltNpOjZW/3/5/bErrczNLzx9au6D8zP1ZwSGo5wWd7qGGu6HTuSX9UV+sil/LL9v/GVpZy0/Nj1Xmel18NDndrcZ/5k/S71uHdB1nteC/mX8Q/8y/qF/Gf/Qv1qM/529aAew/Vp9/3/cg3YA269p/Fv2gz7i+h/6l/EP/cv4h740vzNu/ZC8hMSaRKS3RTMkupTo9ScTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAZ/wbAAD//9E940M=") creat(&(0x7f0000000040)='./bus\x00', 0x0) mount(&(0x7f0000000880)=@loop={'/dev/loop', 0x0}, &(0x7f0000000840)='./bus\x00', 0x0, 0x1000, 0x0) r2 = open(&(0x7f0000000180)='./bus\x00', 0x14113e, 0x6ceac77f206eabb9) write$binfmt_script(r2, &(0x7f0000000080), 0x208e24b) 6m47.321729712s ago: executing program 1 (id=306): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000700)={0x30, r4, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@ETHTOOL_A_FEATURES_WANTED={0x4}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4c004}, 0x24084084) 6m46.112029063s ago: executing program 1 (id=318): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0) pipe2$9p(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) write$P9_RLERRORu(r3, &(0x7f0000000000)=ANY=[@ANYBLOB="1c00000007ff", @ANYRES16], 0x52) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x1, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u}]}}) 6m45.926536742s ago: executing program 32 (id=318): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0) pipe2$9p(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) write$P9_RLERRORu(r3, &(0x7f0000000000)=ANY=[@ANYBLOB="1c00000007ff", @ANYRES16], 0x52) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x1, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@version_u}]}}) 2.367676412s ago: executing program 2 (id=5971): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/igmp\x00') pread64(r3, &(0x7f0000000180)=""/43, 0xfd8a, 0x3c) 2.364832542s ago: executing program 4 (id=5972): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) sendto$inet(r3, 0x0, 0x0, 0x805, 0x0, 0x0) 2.258509363s ago: executing program 4 (id=5974): r0 = socket$inet6(0xa, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) r1 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_GET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) getsockname$packet(r1, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) bpf$MAP_CREATE(0x0, 0x0, 0x48) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="19000000040000000400000002"], 0x50) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r3}, &(0x7f0000000000), &(0x7f0000000080)=r4}, 0x20) sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newlink={0x3c, 0x10, 0x437, 0x0, 0xffffffff, {0x0, 0x0, 0x0, r2, 0x5120b}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_LINK={0x8, 0x1, r2}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x48800}, 0x4000010) sendmmsg$inet(r0, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e19, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r2, @empty, @multicast1}}}], 0x20}}], 0x1, 0x0) 1.19512052s ago: executing program 2 (id=5980): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c12020", 0x44000004, 0x0}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) unshare(0x60000600) 1.19433946s ago: executing program 4 (id=5981): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003780)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) syz_usb_disconnect(r4) 935.766336ms ago: executing program 3 (id=5984): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) fcntl$setownex(r0, 0xf, &(0x7f0000000040)) 884.289751ms ago: executing program 5 (id=5985): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendto$inet(r3, 0x0, 0x0, 0x0, 0x0, 0x0) 790.631781ms ago: executing program 0 (id=5986): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000004380), 0x1814800, &(0x7f0000000380)=ANY=[@ANYBLOB=',']) 788.001121ms ago: executing program 3 (id=5987): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg(r4, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)=[{0x0}, {0x0}, {&(0x7f0000000380)="f6b2", 0x2}], 0x3}, 0x80) 779.003062ms ago: executing program 2 (id=5988): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) write(r0, 0x0, 0x0) r4 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_group_source_req(r4, 0x0, 0x2e, &(0x7f0000000080)={0x9, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @rand_addr=0x64010102}}}, 0x108) 726.007997ms ago: executing program 5 (id=5989): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0xb, 0x84) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r4, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4) setsockopt$packet_rx_ring(r4, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x0, 0x0, 0x27}, 0x1c) 711.042669ms ago: executing program 0 (id=5990): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x80) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000f6ffffffffffffff0000001811000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 644.352035ms ago: executing program 2 (id=5991): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(r0, &(0x7f0000007ac0)=[{{&(0x7f0000000100)={0xa, 0x4e20, 0x80, @private1={0xfc, 0x1, '\x00', 0x1}, 0x2}, 0x1c, 0x0}}], 0x1, 0x20004890) 632.069757ms ago: executing program 3 (id=5992): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8=0x0, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) timer_create(0x1, 0x0, &(0x7f0000000200)=0x0) timer_getoverrun(r4) 611.831439ms ago: executing program 0 (id=5993): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x2adc0, 0x1c1}, 0x18) 573.463453ms ago: executing program 5 (id=5994): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) mkdir(&(0x7f00000000c0)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x1, 0x0) 527.999677ms ago: executing program 3 (id=5995): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$TCPDIAG_GETSOCK(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="540000001200010000000000000000001d00000000004e2300000000ffffffffff0700000000000000000000000000000000000009000000", @ANYRES32=0x0, @ANYBLOB="01000000030000000000000000000000080003"], 0x54}}, 0x20004010) 521.859108ms ago: executing program 2 (id=5996): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendmmsg$inet(r2, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40040) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) getcwd(&(0x7f00000000c0)=""/184, 0xb8) 463.578654ms ago: executing program 0 (id=5997): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x2c, r4, 0x1, 0x70bd29, 0xfffffffd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x2, 0x1000056}}}}, [@NL80211_ATTR_TX_RATES={0x4, 0x10d}]}, 0x2c}, 0x1, 0x0, 0x0, 0x45}, 0x4000000) 404.911859ms ago: executing program 5 (id=5998): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r2, 0x107, 0xa, &(0x7f0000000080)=0x1, 0x4) setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x800, 0x2, 0x4}, 0x1c) r3 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', 0x0}) sendto$packet(r3, &(0x7f0000000100)="09000000e700140000007e7bfbf7", 0xe, 0x24000801, &(0x7f0000000300)={0x11, 0x8100, r4, 0x1, 0x8, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}, 0x14) 380.013032ms ago: executing program 2 (id=5999): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x601c2, 0x0) ftruncate(r3, 0x8800000) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000400)={0xffffffffffffffff}) sendfile(r4, r3, 0x0, 0x578410e9) 353.954335ms ago: executing program 4 (id=6000): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) open_by_handle_at(0xffffffffffffffff, 0x0, 0x400000) 297.27485ms ago: executing program 3 (id=6001): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32=r0, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) socketpair$unix(0x1, 0x8, 0x0, &(0x7f0000000100)) 270.937893ms ago: executing program 0 (id=6002): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000400)={0x54, 0x2d, 0x1, 0x0, 0x0, "", [@typed={0x8, 0xea, 0x0, 0x0, @fd}, @nested={0x3c, 0xcd, 0x0, 0x1, [@typed={0x36, 0x1, 0x0, 0x0, @str='@\xf6s\v\x18\xce \xd4*{,-)\x00\x00\x00\x00\x00\x00\x00\xe0\x19\xf2#\xd9\xca\x93\xf00%\xee\xa1\xa0\x98y\xcd\x8aO\xe8\xbc\xc9\x900j\xbc\x84g\x9e\x04\x05'}]}]}, 0x54}], 0x1, 0x0, 0x0, 0x40040}, 0x8016) 231.208367ms ago: executing program 5 (id=6003): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r4 = socket$tipc(0x1e, 0x5, 0x0) setsockopt$TIPC_CONN_TIMEOUT(r4, 0x10f, 0x82, &(0x7f0000000040)=0x8, 0x4) 210.705019ms ago: executing program 4 (id=6004): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) process_vm_readv(0x0, &(0x7f00000000c0)=[{&(0x7f00000001c0)=""/138, 0x8a}], 0x1, &(0x7f0000003640)=[{&(0x7f0000002440)=""/216, 0xd8}, {0x0}], 0x2, 0x0) 153.460075ms ago: executing program 3 (id=6005): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0xfcee) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x5, 0x0, 0x1}, 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000400)={r4, 0x0, 0x0}, 0x10) 86.743312ms ago: executing program 0 (id=6006): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c12020", 0x44000004, 0x0}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) clock_settime(0x0, &(0x7f0000000240)={0x77359400}) 62.622774ms ago: executing program 4 (id=6007): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0xb, 0x72, 0x6, 0x7fff}]}) 0s ago: executing program 5 (id=6008): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket(0x10, 0x3, 0x0) getsockname$packet(r4, 0x0, &(0x7f0000000100)) kernel console output (not intermixed with test programs): .1170'. [ 174.113158][ T7209] overlayfs: missing 'lowerdir' [ 174.324053][ T7218] loop2: detected capacity change from 0 to 2048 [ 174.332405][ T7221] netlink: 140 bytes leftover after parsing attributes in process `syz.5.1176'. [ 174.426898][ T3561] loop2: p1 < > p4 < > [ 174.493394][ T7218] loop2: p1 < > p4 < > [ 174.867250][ T7245] net_ratelimit: 452 callbacks suppressed [ 174.867272][ T7245] Set syz0 is full, maxelem 0 reached [ 175.779800][ T7255] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 177.567353][ T7302] overlayfs: invalid origin (0000) [ 177.819103][ T7315] netlink: 'syz.0.1219': attribute type 1 has an invalid length. [ 178.441108][ T4354] udevd[4354]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 178.441683][ T4351] udevd[4351]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 178.774332][ T4351] udevd[4351]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 178.775157][ T4354] udevd[4354]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 178.881263][ T7360] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 179.360044][ T7381] loop2: detected capacity change from 0 to 1024 [ 179.473254][ T7381] hfsplus: request for non-existent node 65536 in B*Tree [ 179.515929][ T7381] hfsplus: request for non-existent node 65536 in B*Tree [ 179.524419][ T7387] netlink: 'syz.3.1253': attribute type 4 has an invalid length. [ 179.558600][ T7381] hfsplus: failed to load root directory [ 179.932510][ T7395] loop3: detected capacity change from 0 to 1024 [ 179.957202][ T7401] loop2: detected capacity change from 0 to 512 [ 180.022679][ T7395] EXT4-fs (loop3): Ignoring removed orlov option [ 180.133757][ T7395] EXT4-fs (loop3): mounted filesystem without journal. Opts: min_batch_time=0x0000000000000009,journal_dev=0x0000000000000003,errors=continue,noquota,data_err=ignore,noblock_validity,delalloc,nolazytime,orlov,user_xattr,nodioread_nolock,nolazytime,,errors=continue. Quota mode: none. [ 180.203842][ T7401] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #16: comm syz.2.1259: corrupted inode contents [ 180.240567][ T7401] EXT4-fs error (device loop2): ext4_dirty_inode:6054: inode #16: comm syz.2.1259: mark_inode_dirty error [ 180.275982][ T7401] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #16: comm syz.2.1259: corrupted inode contents [ 180.327867][ T7401] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #16: comm syz.2.1259: mark_inode_dirty error [ 180.363410][ T7401] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #16: comm syz.2.1259: corrupted inode contents [ 180.440196][ T7401] EXT4-fs error (device loop2) in ext4_orphan_del:301: Corrupt filesystem [ 180.480065][ T7401] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #16: comm syz.2.1259: corrupted inode contents [ 180.529488][ T7401] EXT4-fs error (device loop2): ext4_truncate:4279: inode #16: comm syz.2.1259: mark_inode_dirty error [ 180.597951][ T7401] EXT4-fs error (device loop2) in ext4_process_orphan:343: Corrupt filesystem [ 180.630470][ T7401] EXT4-fs (loop2): 1 truncate cleaned up [ 180.645740][ T7401] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 180.681549][ T7401] ext4 filesystem being mounted at /272/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 180.879485][ T5587] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 181.288737][ T5587] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 181.332240][ T5587] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 181.363206][ T5587] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 181.414385][ T5587] usb 5-1: config 0 descriptor?? [ 181.480468][ T5587] pwc: Askey VC010 type 2 USB webcam detected. [ 181.669174][ T6222] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 181.806314][ T7472] loop5: detected capacity change from 0 to 1024 [ 181.857026][ T7472] EXT4-fs (loop5): Ignoring removed orlov option [ 181.893867][ T7472] EXT4-fs (loop5): mounted filesystem without journal. Opts: min_batch_time=0x0000000000000009,journal_dev=0x0000000000000003,errors=continue,noquota,data_err=ignore,noblock_validity,delalloc,nolazytime,orlov,user_xattr,nodioread_nolock,nolazytime,,errors=continue. Quota mode: none. [ 181.917552][ T6222] usb 3-1: Using ep0 maxpacket: 32 [ 181.922520][ T5587] pwc: recv_control_msg error -32 req 02 val 2b00 [ 182.007858][ T5587] pwc: recv_control_msg error -32 req 02 val 2700 [ 182.047606][ T6222] usb 3-1: config index 0 descriptor too short (expected 29220, got 36) [ 182.053909][ T5587] pwc: recv_control_msg error -32 req 02 val 2c00 [ 182.056469][ T6222] usb 3-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 182.072272][ T6222] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 182.094293][ T6222] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 182.107696][ T6222] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 182.113854][ T5587] pwc: recv_control_msg error -32 req 04 val 1000 [ 182.118194][ T6222] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 182.134393][ T6222] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0 [ 182.145083][ T6222] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 182.185318][ T6222] usb 3-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 182.198958][ T6222] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 182.204178][ T5587] pwc: recv_control_msg error -32 req 04 val 1300 [ 182.234177][ T6222] usb 3-1: config 0 descriptor?? [ 182.287539][ T5587] pwc: recv_control_msg error -32 req 04 val 1400 [ 182.340087][ T5587] pwc: recv_control_msg error -32 req 02 val 2000 [ 182.387538][ T5587] pwc: recv_control_msg error -32 req 02 val 2100 [ 182.427641][ T5587] pwc: recv_control_msg error -32 req 04 val 1500 [ 182.514014][ T6222] usblp 3-1:0.0: usblp0: USB Bidirectional printer dev 3 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 182.579333][ T6222] usb 3-1: USB disconnect, device number 3 [ 182.641131][ T6222] usblp0: removed [ 182.697570][ T5587] pwc: recv_control_msg error -71 req 02 val 2400 [ 182.717568][ T5587] pwc: recv_control_msg error -71 req 02 val 2600 [ 182.737545][ T5587] pwc: recv_control_msg error -71 req 02 val 2900 [ 182.757589][ T5587] pwc: recv_control_msg error -71 req 02 val 2800 [ 183.157566][ T6222] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 183.437471][ T6222] usb 3-1: Using ep0 maxpacket: 32 [ 183.488947][ T5587] pwc: recv_control_msg error -71 req 04 val 1100 [ 183.517478][ T5587] pwc: recv_control_msg error -71 req 04 val 1200 [ 183.529373][ T5587] pwc: Registered as video103. [ 183.539198][ T5587] input: PWC snapshot button as /devices/platform/dummy_hcd.4/usb5/5-1/input/input5 [ 183.557742][ T6222] usb 3-1: config index 0 descriptor too short (expected 29220, got 36) [ 183.569452][ T5587] usb 5-1: USB disconnect, device number 5 [ 183.597625][ T6222] usb 3-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 183.623533][ T6222] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 183.657673][ T6222] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 183.701844][ T6222] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 183.737665][ T6222] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 183.753227][ T6222] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0 [ 183.763519][ T6222] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 183.804129][ T6222] usb 3-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 183.813527][ T6222] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 183.843233][ T6222] usb 3-1: config 0 descriptor?? [ 183.891101][ T7514] loop4: detected capacity change from 0 to 1024 [ 183.968339][ T7518] overlayfs: missing 'lowerdir' [ 184.049556][ T7514] EXT4-fs (loop4): INFO: recovery required on readonly filesystem [ 184.082577][ T7514] EXT4-fs (loop4): write access will be enabled during recovery [ 184.118379][ T6222] usblp 3-1:0.0: usblp0: USB Bidirectional printer dev 4 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 184.143776][ T7514] JBD2: no valid journal superblock found [ 184.167558][ T7514] EXT4-fs (loop4): error loading journal [ 184.174577][ T6222] usb 3-1: USB disconnect, device number 4 [ 184.200179][ T6222] usblp0: removed [ 184.381621][ T7531] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1314'. [ 184.589344][ T7541] binder: 7540:7541 ioctl c0306201 2000000004c0 returned -22 [ 184.732407][ T7548] netlink: 'syz.0.1322': attribute type 8 has an invalid length. [ 184.791722][ T7550] loop4: detected capacity change from 0 to 2048 [ 184.870594][ T4354] loop4: p1 < > p4 < > [ 184.906701][ T7550] loop4: p1 < > p4 < > [ 185.112357][ T4354] udevd[4354]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 185.130668][ T4351] udevd[4351]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 185.315581][ T4354] udevd[4354]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 185.335602][ T4351] udevd[4351]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 186.466247][ T7639] netlink: 'syz.4.1365': attribute type 4 has an invalid length. [ 186.519699][ T26] kauditd_printk_skb: 20 callbacks suppressed [ 186.519715][ T26] audit: type=1326 audit(1780128652.493:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7635 comm="syz.0.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 186.631117][ T26] audit: type=1326 audit(1780128652.493:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7635 comm="syz.0.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 186.705559][ T7648] loop5: detected capacity change from 0 to 128 [ 186.732363][ T26] audit: type=1326 audit(1780128652.493:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7635 comm="syz.0.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 186.799763][ T7648] FAT-fs (loop5): bogus number of reserved sectors [ 186.806587][ T7648] FAT-fs (loop5): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero [ 186.841959][ T26] audit: type=1326 audit(1780128652.493:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7635 comm="syz.0.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 186.845136][ T7648] FAT-fs (loop5): Can't find a valid FAT filesystem [ 186.923056][ T26] audit: type=1326 audit(1780128652.493:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7635 comm="syz.0.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 187.022829][ T26] audit: type=1326 audit(1780128652.493:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7635 comm="syz.0.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 187.155875][ T26] audit: type=1326 audit(1780128652.493:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7635 comm="syz.0.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 187.240306][ T26] audit: type=1326 audit(1780128652.493:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7635 comm="syz.0.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 187.357182][ T26] audit: type=1326 audit(1780128652.493:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7635 comm="syz.0.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 187.417269][ T26] audit: type=1326 audit(1780128652.493:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7635 comm="syz.0.1364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 188.849784][ T7752] loop5: detected capacity change from 0 to 2048 [ 188.952354][ T4351] loop5: p1 < > p4 < > [ 188.965195][ T7752] loop5: p1 < > p4 < > [ 189.051218][ T7757] Cannot find set identified by id 3 to match [ 189.808138][ T4351] udevd[4351]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory [ 189.830292][ T4354] udevd[4354]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory [ 189.956687][ T4296] udevd[4296]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory [ 190.063191][ T4354] udevd[4354]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory [ 190.251030][ T7779] loop5: detected capacity change from 0 to 1024 [ 190.345753][ T7779] EXT4-fs (loop5): INFO: recovery required on readonly filesystem [ 190.367418][ T7779] EXT4-fs (loop5): write access will be enabled during recovery [ 190.375160][ T7779] JBD2: no valid journal superblock found [ 190.383296][ T7786] loop0: detected capacity change from 0 to 2048 [ 190.438105][ T7779] EXT4-fs (loop5): error loading journal [ 190.478574][ T4351] loop0: p1 < > p4 < > [ 190.510778][ T7786] loop0: p1 < > p4 < > [ 190.653258][ T7794] Unsupported ieee802154 address type: 0 [ 191.556385][ T7805] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1447'. [ 191.732455][ T7814] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=on. [ 192.825634][ T7823] loop2: detected capacity change from 0 to 1024 [ 192.933414][ T4354] udevd[4354]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 192.949188][ T7828] netlink: 188 bytes leftover after parsing attributes in process `syz.4.1455'. [ 192.959996][ T7823] EXT4-fs (loop2): INFO: recovery required on readonly filesystem [ 192.972444][ T4351] udevd[4351]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 192.991102][ T7823] EXT4-fs (loop2): write access will be enabled during recovery [ 193.036916][ T7823] JBD2: no valid journal superblock found [ 193.042796][ T7823] EXT4-fs (loop2): error loading journal [ 193.176429][ T7842] loop5: detected capacity change from 0 to 128 [ 193.297400][ T4354] udevd[4354]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 193.312519][ T4351] udevd[4351]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 193.342511][ T7842] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 193.392764][ T7842] ext4 filesystem being mounted at /221/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 193.560557][ T7864] Unsupported ieee802154 address type: 0 [ 194.607686][ T7878] netlink: 'syz.0.1475': attribute type 4 has an invalid length. [ 194.731079][ T1432] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.740278][ T1432] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.068259][ T7891] loop3: detected capacity change from 0 to 2048 [ 195.140937][ T4296] loop3: p1 < > p4 < > [ 195.180591][ T7891] loop3: p1 < > p4 < > [ 195.379192][ T4351] udevd[4351]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory [ 195.393983][ T4354] udevd[4354]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory [ 195.471436][ T7906] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1485'. [ 195.567243][ T7906] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1485'. [ 196.443131][ T7923] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1496'. [ 196.590286][ T4354] udevd[4354]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory [ 196.604197][ T4351] udevd[4351]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory [ 196.682694][ T26] kauditd_printk_skb: 21 callbacks suppressed [ 196.682710][ T26] audit: type=1326 audit(1780128662.653:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7937 comm="syz.0.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 196.806927][ T21] Bluetooth: hci2: command 0x0406 tx timeout [ 196.813576][ T21] Bluetooth: hci3: command 0x0406 tx timeout [ 196.848985][ T26] audit: type=1326 audit(1780128662.653:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7937 comm="syz.0.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 196.883627][ T21] Bluetooth: hci0: command 0x0406 tx timeout [ 196.902856][ T21] Bluetooth: hci4: command 0x0406 tx timeout [ 196.950356][ T26] audit: type=1326 audit(1780128662.653:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7937 comm="syz.0.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=191 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 197.067060][ T26] audit: type=1326 audit(1780128662.653:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7937 comm="syz.0.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 197.136179][ T26] audit: type=1326 audit(1780128662.653:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7937 comm="syz.0.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 197.240871][ T26] audit: type=1326 audit(1780128662.653:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7937 comm="syz.0.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f08a4e8af10 code=0x7ffc0000 [ 197.386475][ T26] audit: type=1326 audit(1780128662.653:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7937 comm="syz.0.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f08a4e8af10 code=0x7ffc0000 [ 197.485493][ T26] audit: type=1326 audit(1780128662.653:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7937 comm="syz.0.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 197.570574][ T26] audit: type=1326 audit(1780128662.653:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7937 comm="syz.0.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 197.631588][ T7975] loop0: detected capacity change from 0 to 2048 [ 197.702393][ T26] audit: type=1326 audit(1780128662.673:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7937 comm="syz.0.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 197.740171][ T4354] loop0: p1 < > p4 < > [ 197.783121][ T7975] loop0: p1 < > p4 < > [ 197.862092][ T3561] loop0: p1 < > p4 < > [ 198.017398][ T4354] udevd[4354]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 198.049206][ T4351] udevd[4351]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 198.137486][ T4351] udevd[4351]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 198.151143][ T4354] udevd[4354]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 198.185370][ T7999] 9pnet_virtio: no channels available for device ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 198.239378][ T4351] udevd[4351]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 198.283373][ T8003] loop0: detected capacity change from 0 to 128 [ 198.538837][ T8010] loop5: detected capacity change from 0 to 16 [ 198.551946][ T4354] udevd[4354]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 198.651377][ T8013] Cannot find set identified by id 3 to match [ 198.732524][ T8003] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 198.798262][ T8010] erofs: (device loop5): mounted with root inode @ nid 36. [ 198.935292][ T8003] ext4 filesystem being mounted at /314/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 201.418172][ T8060] ipt_CLUSTERIP: Please specify destination IP [ 202.824651][ T8102] loop3: detected capacity change from 0 to 32768 [ 202.914850][ T8102] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.1576 (8102) [ 202.948869][ T8102] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 202.958109][ T8102] BTRFS info (device loop3): using free space tree [ 202.964729][ T8102] BTRFS info (device loop3): has skinny extents [ 203.352341][ T8102] BTRFS info (device loop3): enabling ssd optimizations [ 203.966514][ T8157] netlink: 'syz.2.1590': attribute type 16 has an invalid length. [ 203.996346][ T8157] netlink: 'syz.2.1590': attribute type 2 has an invalid length. [ 204.016658][ T8157] netlink: 64086 bytes leftover after parsing attributes in process `syz.2.1590'. [ 204.473611][ T8170] loop5: detected capacity change from 0 to 512 [ 204.816716][ T8170] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm syz.5.1597: corrupted inode contents [ 204.883412][ T8170] EXT4-fs error (device loop5): ext4_dirty_inode:6054: inode #16: comm syz.5.1597: mark_inode_dirty error [ 204.936524][ T8170] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm syz.5.1597: corrupted inode contents [ 205.018773][ T8183] fuse: Bad value for 'fd' [ 205.047377][ T8170] EXT4-fs error (device loop5): __ext4_ext_dirty:183: inode #16: comm syz.5.1597: mark_inode_dirty error [ 205.086316][ T8170] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm syz.5.1597: corrupted inode contents [ 205.122247][ T8170] EXT4-fs error (device loop5) in ext4_orphan_del:301: Corrupt filesystem [ 205.146808][ T8170] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm syz.5.1597: corrupted inode contents [ 205.187316][ T8170] EXT4-fs error (device loop5): ext4_truncate:4279: inode #16: comm syz.5.1597: mark_inode_dirty error [ 205.222955][ T8170] EXT4-fs error (device loop5) in ext4_process_orphan:343: Corrupt filesystem [ 205.303930][ T8170] EXT4-fs (loop5): 1 truncate cleaned up [ 205.326294][ T8170] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 205.344412][ T8170] ext4 filesystem being mounted at /246/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 205.983616][ T8210] loop3: detected capacity change from 0 to 512 [ 206.162442][ T8210] EXT4-fs error (device loop3): ext4_ext_check_inode:501: inode #16: comm syz.3.1611: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 1, max 2052(4), depth 0(0) [ 206.182524][ T8210] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.1611: couldn't read orphan inode 16 (err -117) [ 206.195361][ T8210] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 206.207591][ T8210] ext4 filesystem being mounted at /307/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 206.551942][ T8228] loop0: detected capacity change from 0 to 512 [ 206.730891][ T8228] EXT4-fs error (device loop0): ext4_do_update_inode:5218: inode #16: comm syz.0.1617: corrupted inode contents [ 206.804566][ T8228] EXT4-fs error (device loop0): ext4_dirty_inode:6054: inode #16: comm syz.0.1617: mark_inode_dirty error [ 206.866622][ T8228] EXT4-fs error (device loop0): ext4_do_update_inode:5218: inode #16: comm syz.0.1617: corrupted inode contents [ 206.905952][ T8228] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #16: comm syz.0.1617: mark_inode_dirty error [ 206.938547][ T8228] EXT4-fs error (device loop0): ext4_do_update_inode:5218: inode #16: comm syz.0.1617: corrupted inode contents [ 206.998160][ T8228] EXT4-fs error (device loop0) in ext4_orphan_del:301: Corrupt filesystem [ 207.026822][ T8228] EXT4-fs error (device loop0): ext4_do_update_inode:5218: inode #16: comm syz.0.1617: corrupted inode contents [ 207.059880][ T8228] EXT4-fs error (device loop0): ext4_truncate:4279: inode #16: comm syz.0.1617: mark_inode_dirty error [ 207.081739][ T8228] EXT4-fs error (device loop0) in ext4_process_orphan:343: Corrupt filesystem [ 207.095720][ T8253] loop3: detected capacity change from 0 to 512 [ 207.119609][ T8228] EXT4-fs (loop0): 1 truncate cleaned up [ 207.156123][ T8228] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 207.219377][ T8228] ext4 filesystem being mounted at /320/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 207.242699][ T8253] EXT4-fs (loop3): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000001000,nodiscard,quota,,errors=continue. Quota mode: writeback. [ 207.266371][ T8253] ext4 filesystem being mounted at /312/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 207.397493][ T8253] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.1626: corrupted inode contents [ 207.428791][ T8253] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #2: comm syz.3.1626: mark_inode_dirty error [ 207.498815][ T8253] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.1626: corrupted inode contents [ 207.524240][ T8253] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.1626: mark_inode_dirty error [ 209.746232][ T8322] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1656'. [ 209.799154][ T8322] bridge0: port 2(bridge_slave_1) entered disabled state [ 210.299309][ T8350] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1671'. [ 211.477423][ T8397] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1691'. [ 213.923610][ T8449] loop2: detected capacity change from 0 to 128 [ 214.092806][ T8449] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 214.140999][ T8449] ext4 filesystem being mounted at /359/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 216.587634][ T26] kauditd_printk_skb: 16 callbacks suppressed [ 216.587652][ T26] audit: type=1326 audit(1780128682.565:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8539 comm="syz.2.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab8dd406c9 code=0x7ffc0000 [ 216.712321][ T26] audit: type=1326 audit(1780128682.595:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8539 comm="syz.2.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fab8dd406c9 code=0x7ffc0000 [ 216.812268][ T26] audit: type=1326 audit(1780128682.595:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8539 comm="syz.2.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab8dd406c9 code=0x7ffc0000 [ 216.865904][ T8555] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1760'. [ 216.886213][ T26] audit: type=1326 audit(1780128682.605:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8539 comm="syz.2.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fab8dd406c9 code=0x7ffc0000 [ 216.963287][ T8555] netlink: 'syz.3.1760': attribute type 4 has an invalid length. [ 216.978029][ T26] audit: type=1326 audit(1780128682.605:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8539 comm="syz.2.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab8dd406c9 code=0x7ffc0000 [ 217.011301][ T8557] loop3: detected capacity change from 0 to 16 [ 217.040240][ T26] audit: type=1326 audit(1780128682.605:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8539 comm="syz.2.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fab8dd406c9 code=0x7ffc0000 [ 217.071436][ T8557] erofs: (device loop3): check_layout_compatibility: unidentified incompatible feature f8, please upgrade kernel version [ 217.093764][ T26] audit: type=1326 audit(1780128682.605:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8539 comm="syz.2.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab8dd406c9 code=0x7ffc0000 [ 217.122833][ T26] audit: type=1326 audit(1780128682.605:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8539 comm="syz.2.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fab8dd406c9 code=0x7ffc0000 [ 217.189410][ T26] audit: type=1326 audit(1780128682.605:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8539 comm="syz.2.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab8dd406c9 code=0x7ffc0000 [ 217.226392][ T26] audit: type=1326 audit(1780128682.605:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8539 comm="syz.2.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fab8dd406c9 code=0x7ffc0000 [ 219.880466][ T8649] netlink: 'syz.0.1813': attribute type 21 has an invalid length. [ 220.073966][ T8649] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1813'. [ 220.339725][ T8649] netlink: 'syz.0.1813': attribute type 1 has an invalid length. [ 220.406501][ T8649] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1813'. [ 220.451386][ T8649] bridge_slave_0: vlans aren't supported yet for dev_uc|mc_add() [ 222.321237][ T8691] fuse: Bad value for 'group_id' [ 222.799501][ T8719] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1835'. [ 223.082423][ T8735] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1843'. [ 224.295751][ T8769] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1857'. [ 226.081926][ T8791] befs: (nullb0): invalid magic header [ 227.516007][ T8844] device sit0 entered promiscuous mode [ 227.543755][ T8844] netlink: 'syz.0.1890': attribute type 1 has an invalid length. [ 227.602935][ T8844] netlink: 9 bytes leftover after parsing attributes in process `syz.0.1890'. [ 227.986577][ T8863] netlink: 160 bytes leftover after parsing attributes in process `syz.4.1900'. [ 228.047171][ T8863] A link change request failed with some changes committed already. Interface ip6_vti0 may have been left with an inconsistent configuration, please check. [ 228.094152][ T8868] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1902'. [ 228.206826][ T8876] loop2: detected capacity change from 0 to 512 [ 228.334974][ T8876] EXT4-fs (loop2): Ignoring removed orlov option [ 228.375208][ T8876] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 228.474825][ T8876] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002] [ 228.528035][ T8876] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2229: inode #15: comm syz.2.1904: corrupted in-inode xattr [ 228.610771][ T8876] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.1904: couldn't read orphan inode 15 (err -117) [ 228.665443][ T8876] EXT4-fs (loop2): mounted filesystem without journal. Opts: jqfmt=vfsold,orlov,debug,noload,nombcache,noblock_validity,init_itable=0x0000000000000601,inode_readahead_blks=0x0000000000008000,,errors=continue. Quota mode: none. [ 229.294391][ T8918] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1922'. [ 229.607172][ T8934] loop5: detected capacity change from 0 to 7 [ 229.652722][ T8934] Dev loop5: unable to read RDB block 7 [ 229.675490][ T8934] loop5: unable to read partition table [ 229.701856][ T8934] loop5: partition table beyond EOD, truncated [ 229.742200][ T8934] loop_reread_partitions: partition scan of loop5 () failed (rc=-5) [ 229.779863][ T3561] Dev loop5: unable to read RDB block 7 [ 229.816762][ T3561] loop5: unable to read partition table [ 229.906089][ T3561] loop5: partition table beyond EOD, truncated [ 231.610450][ T8972] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1947'. [ 231.671496][ T8972] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1947'. [ 231.918759][ T8982] loop0: detected capacity change from 0 to 512 [ 232.016320][ T8982] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a803c02c, mo2=0002] [ 232.019568][ T8990] overlayfs: missing 'lowerdir' [ 232.024374][ T8982] System zones: 1-12 [ 232.135522][ T8982] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.1951: error while reading EA inode 32 err=-116 [ 232.206784][ T8982] EXT4-fs (loop0): Remounting filesystem read-only [ 232.244077][ T8982] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.1951: error while reading EA inode 32 err=-116 [ 232.402227][ T8982] EXT4-fs (loop0): Remounting filesystem read-only [ 232.427452][ T8982] EXT4-fs (loop0): 1 orphan inode deleted [ 232.433356][ T8982] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,debug,debug_want_extra_isize=0x000000000000005e,noauto_da_alloc,bsddf,jqfmt=vfsv1,grpid,. Quota mode: none. [ 233.364905][ T6222] Bluetooth: hci1: command 0x0406 tx timeout [ 233.541941][ T9017] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1967'. [ 234.080306][ T9040] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1978'. [ 234.857919][ T26] kauditd_printk_skb: 14 callbacks suppressed [ 234.857934][ T26] audit: type=1326 audit(1780128700.836:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9081 comm="syz.3.1997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 234.939541][ T9073] ipt_CLUSTERIP: Please specify destination IP [ 235.033552][ T26] audit: type=1326 audit(1780128700.836:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9081 comm="syz.3.1997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 235.097190][ T26] audit: type=1326 audit(1780128700.836:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9081 comm="syz.3.1997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 235.219705][ T26] audit: type=1326 audit(1780128700.836:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9081 comm="syz.3.1997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 235.251725][ T26] audit: type=1326 audit(1780128700.836:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9081 comm="syz.3.1997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 235.428405][ T26] audit: type=1326 audit(1780128700.836:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9081 comm="syz.3.1997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 235.451328][ T26] audit: type=1326 audit(1780128700.836:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9081 comm="syz.3.1997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 235.474059][ T26] audit: type=1326 audit(1780128700.836:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9081 comm="syz.3.1997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 236.299469][ T9108] loop3: detected capacity change from 0 to 128 [ 236.417229][ T9108] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 236.483653][ T9108] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 237.418678][ T9150] loop5: detected capacity change from 0 to 512 [ 237.540353][ T9150] EXT4-fs (loop5): Invalid log block size: 4294967295 [ 239.412062][ T9150] loop5: detected capacity change from 0 to 32768 [ 239.645006][ T9150] XFS (loop5): Mounting V5 Filesystem [ 239.844239][ T9150] XFS (loop5): Ending clean mount [ 239.873669][ T9150] XFS (loop5): Quotacheck needed: Please wait. [ 240.060822][ T9150] XFS (loop5): Quotacheck: Done. [ 240.664018][ T9224] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.2057' sets config #0 [ 240.946083][ T5042] XFS (loop5): Unmounting Filesystem [ 241.117490][ T9246] loop2: detected capacity change from 0 to 512 [ 241.272256][ T9246] EXT4-fs (loop2): Mount option "nodioread_nolock" incompatible with ext2 [ 242.426376][ T9260] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2074'. [ 242.504045][ T9264] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 242.712579][ T9273] loop2: detected capacity change from 0 to 2048 [ 242.839895][ T9273] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found! [ 243.066703][ T9273] UDF-fs: warning (device loop2): udf_fill_super: No partition found (2) [ 243.737406][ T9290] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2087'. [ 244.076376][ T9308] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2095'. [ 245.162283][ T9326] loop0: detected capacity change from 0 to 2048 [ 245.369331][ T9326] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 245.407473][ T9326] ext4 filesystem being mounted at /425/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 245.480944][ T9326] fs-verity: sha512 using implementation "sha512-avx2" [ 245.761381][ T9363] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2120'. [ 245.770841][ T4967] Bluetooth: hci1: command 0x0405 tx timeout [ 249.174567][ T9430] bridge0: port 2(bridge_slave_1) entered disabled state [ 249.182682][ T9430] bridge0: port 1(bridge_slave_0) entered disabled state [ 249.277992][ T9434] device bridge_slave_1 left promiscuous mode [ 249.315380][ T9434] bridge0: port 2(bridge_slave_1) entered disabled state [ 249.350311][ T9436] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2150'. [ 249.390679][ T9434] device bridge_slave_0 left promiscuous mode [ 249.397736][ T9434] bridge0: port 1(bridge_slave_0) entered disabled state [ 252.041684][ T9523] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 252.051061][ T9523] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 252.060026][ T9523] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 252.068865][ T9523] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 252.252837][ T9533] netlink: 'syz.2.2190': attribute type 13 has an invalid length. [ 252.304446][ T9533] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 252.366892][ T9533] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 252.399660][ T9533] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 256.165978][ T1432] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.172693][ T1432] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.451277][ T9619] netlink: 'syz.3.2228': attribute type 13 has an invalid length. [ 256.494667][ T9621] 9pnet: p9_errstr2errno: server reported unknown error [ 256.560393][ T9619] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 256.619474][ T9619] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 256.634434][ T9619] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 256.769564][ T9627] tipc: Started in network mode [ 256.787261][ T9627] tipc: Node identity 4, cluster identity 4711 [ 256.833533][ T9627] tipc: Node number set to 4 [ 257.143220][ T4970] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 257.162910][ T9645] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2249'. [ 257.513414][ T4970] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 257.533918][ T4970] usb 3-1: config 0 has no interfaces? [ 257.564315][ T4970] usb 3-1: New USB device found, idVendor=1b96, idProduct=000b, bcdDevice= 0.00 [ 257.588873][ T4970] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 257.626103][ T4970] usb 3-1: config 0 descriptor?? [ 258.670018][ T5585] usb 3-1: USB disconnect, device number 5 [ 259.670393][ T9687] netlink: 156 bytes leftover after parsing attributes in process `syz.5.2255'. [ 261.510308][ T9736] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2274'. [ 261.843683][ T9751] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2279'. [ 262.032054][ T9757] 9pnet: p9_errstr2errno: server reported unknown error 1844674 [ 262.197330][ T9768] binder: Bad value for 'max' [ 264.049293][ T9822] syz.4.2313 (9822): attempted to duplicate a private mapping with mremap. This is not supported. [ 264.299872][ T9836] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2320'. [ 264.582626][ T9852] netlink: 'syz.5.2328': attribute type 13 has an invalid length. [ 264.669181][ T9852] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 264.716008][ T9852] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 264.729042][ T9862] 9pnet: Could not find request transport: 0xffffffffffffffff [ 264.737162][ T9852] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 266.531113][ T9908] sg_write: data in/out 16514940/1 bytes for SCSI command 0x1c-- guessing data in; [ 266.531113][ T9908] program syz.0.2347 not setting count and/or reply_len properly [ 267.260304][ T9911] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2353'. [ 267.429559][ T9911] team0 (unregistering): Port device team_slave_0 removed [ 267.516318][ T9911] team0 (unregistering): Port device team_slave_1 removed [ 267.853948][ T9921] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2358'. [ 267.950904][ T9924] xt_CHECKSUM: unsupported CHECKSUM operation 68 [ 268.073131][ T9921] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2358'. [ 268.180910][ T9921] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2358'. [ 268.391882][ T9921] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2358'. [ 268.852387][ T9933] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2362'. [ 269.139586][ T9950] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2371'. [ 269.263292][ T9948] syz.3.2370 (9948) used greatest stack depth: 17960 bytes left [ 269.310028][ T9956] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2374'. [ 269.360825][ T9956] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2374'. [ 269.403305][ T9956] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2374'. [ 269.441564][ T9956] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2374'. [ 269.500047][ T9968] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2380'. [ 269.741414][ T9980] netlink: 108 bytes leftover after parsing attributes in process `syz.4.2385'. [ 269.780609][ T9980] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2385'. [ 270.023978][ T9996] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 270.267809][T10009] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2396'. [ 270.558509][T10020] netlink: 140 bytes leftover after parsing attributes in process `syz.0.2401'. [ 270.570737][ T26] audit: type=1326 audit(1780128736.548:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10019 comm="syz.4.2402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb7b9696c9 code=0x7ffc0000 [ 270.646815][ T26] audit: type=1326 audit(1780128736.588:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10019 comm="syz.4.2402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb7b9696c9 code=0x7ffc0000 [ 270.763778][ T26] audit: type=1326 audit(1780128736.588:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10019 comm="syz.4.2402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7ffb7b9696c9 code=0x7ffc0000 [ 270.853287][ T26] audit: type=1326 audit(1780128736.588:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10019 comm="syz.4.2402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ffb7b969703 code=0x7ffc0000 [ 270.960178][ T26] audit: type=1326 audit(1780128736.598:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10019 comm="syz.4.2402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7ffb7b96817f code=0x7ffc0000 [ 271.057959][ T26] audit: type=1326 audit(1780128736.598:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10019 comm="syz.4.2402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7ffb7b969757 code=0x7ffc0000 [ 271.104770][ T26] audit: type=1326 audit(1780128736.598:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10019 comm="syz.4.2402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ffb7b967f10 code=0x7ffc0000 [ 271.128928][ T26] audit: type=1326 audit(1780128736.598:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10019 comm="syz.4.2402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7ffb7b96832a code=0x7ffc0000 [ 271.162463][ T26] audit: type=1326 audit(1780128736.598:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10019 comm="syz.4.2402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb7b9696c9 code=0x7ffc0000 [ 271.312977][T10050] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2412'. [ 271.413841][T10052] netlink: 'syz.4.2415': attribute type 4 has an invalid length. [ 271.421803][T10052] netlink: 'syz.4.2415': attribute type 5 has an invalid length. [ 274.750827][T10169] __nla_validate_parse: 2 callbacks suppressed [ 274.750846][T10169] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2466'. [ 274.801362][T10176] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2473'. [ 274.971858][T10176] team0 (unregistering): Port device team_slave_0 removed [ 275.029466][T10176] team0 (unregistering): Port device team_slave_1 removed [ 275.253764][T10191] loop2: detected capacity change from 0 to 256 [ 277.518387][T10265] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2511'. [ 278.614189][T10306] TCP: TCP_TX_DELAY enabled [ 279.599073][T10314] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2533'. [ 279.652113][T10314] netlink: 59 bytes leftover after parsing attributes in process `syz.2.2533'. [ 279.682289][T10314] netlink: 59 bytes leftover after parsing attributes in process `syz.2.2533'. [ 279.920289][T10327] overlayfs: missing 'lowerdir' [ 280.018662][T10294] loop0: detected capacity change from 0 to 40427 [ 280.155084][T10294] F2FS-fs (loop0): Found nat_bits in checkpoint [ 280.383817][T10294] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 280.663741][ T4192] attempt to access beyond end of device [ 280.663741][ T4192] loop0: rw=2049, want=45112, limit=40427 [ 280.939500][T10368] overlayfs: failed to clone upperpath [ 281.379071][T10384] lo: Caught tx_queue_len zero misconfig [ 282.997487][T10424] A link change request failed with some changes committed already. Interface ip_vti0 may have been left with an inconsistent configuration, please check. [ 283.034988][T10429] netlink: 'syz.4.2588': attribute type 5 has an invalid length. [ 283.042172][ T26] audit: type=1326 audit(1780128749.018:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.3.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 283.102193][ T26] audit: type=1326 audit(1780128749.018:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.3.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 283.240163][ T26] audit: type=1326 audit(1780128749.018:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.3.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 283.285668][T10437] netlink: 72 bytes leftover after parsing attributes in process `syz.4.2592'. [ 283.362952][ T26] audit: type=1326 audit(1780128749.028:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.3.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 283.475377][ T26] audit: type=1326 audit(1780128749.028:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.3.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 283.571739][ T26] audit: type=1326 audit(1780128749.028:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.3.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 283.671730][ T26] audit: type=1326 audit(1780128749.028:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.3.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 283.775076][ T26] audit: type=1326 audit(1780128749.028:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.3.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 283.841250][ T26] audit: type=1326 audit(1780128749.028:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.3.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 284.829689][ T26] audit: type=1326 audit(1780128749.028:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.3.2587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 284.922225][T10483] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 285.102131][ T8179] usb 3-1: new full-speed USB device number 6 using dummy_hcd [ 285.365941][T10503] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2620'. [ 285.369980][T10506] loop3: detected capacity change from 0 to 16 [ 285.437155][T10506] erofs: (device loop3): mounted with root inode @ nid 36. [ 285.527790][ T8179] usb 3-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xB3, skipping [ 285.557742][ T8179] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 285.600846][ T8179] usb 3-1: New USB device found, idVendor=172f, idProduct=0037, bcdDevice= 0.00 [ 285.633494][ T8179] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 285.676608][ T8179] usb 3-1: config 0 descriptor?? [ 285.734244][ T8179] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 285.958426][ T5585] usb 3-1: USB disconnect, device number 6 [ 286.329843][T10542] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2637'. [ 287.289476][T10590] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2661'. [ 287.324879][T10589] capability: warning: `syz.0.2662' uses 32-bit capabilities (legacy support in use) [ 287.399335][T10593] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2661'. [ 288.537520][T10600] fuse: Invalid rootmode [ 289.076069][T10648] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2688'. [ 289.121558][T10648] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2688'. [ 289.699227][T10673] fuse: Bad value for 'group_id' [ 290.769114][ T26] kauditd_printk_skb: 10 callbacks suppressed [ 290.769132][ T26] audit: type=1326 audit(1780128756.749:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10717 comm="syz.3.2722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 290.911878][ T26] audit: type=1326 audit(1780128756.789:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10717 comm="syz.3.2722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 290.947083][T10726] netlink: 72 bytes leftover after parsing attributes in process `syz.4.2726'. [ 290.994097][ T26] audit: type=1326 audit(1780128756.789:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10717 comm="syz.3.2722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 291.020828][T10728] netlink: 'syz.0.2727': attribute type 15 has an invalid length. [ 291.069477][T10728] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2727'. [ 291.091320][ T26] audit: type=1326 audit(1780128756.789:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10717 comm="syz.3.2722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 291.183991][ T26] audit: type=1326 audit(1780128756.789:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10717 comm="syz.3.2722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 291.251778][ T26] audit: type=1326 audit(1780128756.789:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10717 comm="syz.3.2722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 291.360296][ T26] audit: type=1326 audit(1780128756.789:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10717 comm="syz.3.2722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 291.487567][ T26] audit: type=1326 audit(1780128756.789:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10717 comm="syz.3.2722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 291.578505][ T26] audit: type=1326 audit(1780128756.799:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10717 comm="syz.3.2722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 291.677026][ T26] audit: type=1326 audit(1780128756.809:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10717 comm="syz.3.2722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 292.076689][T10775] fuse: Bad value for 'group_id' [ 292.671261][ T4967] usb 3-1: new full-speed USB device number 7 using dummy_hcd [ 292.879065][T10817] loop3: detected capacity change from 0 to 128 [ 293.081374][ T4967] usb 3-1: unable to get BOS descriptor or descriptor too short [ 293.121562][ T4967] usb 3-1: not running at top speed; connect to a high speed hub [ 293.341303][ T4967] usb 3-1: config 1 has an invalid interface number: 138 but max is 0 [ 293.349556][ T4967] usb 3-1: config 1 has no interface number 0 [ 293.387474][ T4967] usb 3-1: config 1 interface 138 has no altsetting 0 [ 293.469765][T10832] loop3: detected capacity change from 0 to 256 [ 293.594685][T10832] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 293.605860][T10832] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 293.659707][T10832] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d) [ 294.331521][ T4967] usb 3-1: New USB device found, idVendor=0cb8, idProduct=c90b, bcdDevice= d.ae [ 294.387794][ T4967] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 294.457540][ T4967] usb 3-1: Product: syz [ 294.488732][ T4967] usb 3-1: Manufacturer: syz [ 294.510515][ T4967] usb 3-1: SerialNumber: syz [ 295.160769][ T4967] usb 3-1: USB disconnect, device number 7 [ 295.522912][ T5425] udevd[5425]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.138/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 296.103385][T10876] device pim6reg1 entered promiscuous mode [ 296.310223][T10888] binder: 10885:10888 ioctl c0306201 0 returned -14 [ 297.602735][T10913] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2811'. [ 298.464991][T10959] netlink: 92 bytes leftover after parsing attributes in process `syz.3.2831'. [ 298.966076][ T4812] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 299.331261][ T4812] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 299.354817][ T4812] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 299.384380][ T4812] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 299.405619][ T4812] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 299.511297][ T4812] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 299.525161][ T4812] usb 1-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 299.549302][ T4812] usb 1-1: Manufacturer: syz [ 299.563824][ T4812] usb 1-1: config 0 descriptor?? [ 299.889847][T11012] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2856'. [ 299.935038][T11018] netlink: 68 bytes leftover after parsing attributes in process `syz.4.2859'. [ 299.997496][T11020] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2860'. [ 300.044962][T10968] udc-core: couldn't find an available UDC or it's busy [ 300.066359][T10968] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 300.137615][ T4812] appleir 0003:05AC:8243.0001: unknown main item tag 0x0 [ 300.169645][ T4812] appleir 0003:05AC:8243.0001: No inputs registered, leaving [ 300.258144][ T4812] appleir 0003:05AC:8243.0001: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0 [ 300.336808][T11035] loop5: detected capacity change from 0 to 1024 [ 300.396144][T11041] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2869'. [ 300.411199][T11035] EXT4-fs (loop5): Ignoring removed nobh option [ 300.551524][T11035] EXT4-fs error (device loop5): ext4_ext_check_inode:501: inode #11: comm syz.5.2866: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 300.595718][T11055] loop2: detected capacity change from 0 to 512 [ 300.672647][T11035] EXT4-fs error (device loop5): ext4_orphan_get:1406: comm syz.5.2866: couldn't read orphan inode 11 (err -117) [ 300.933431][T11035] EXT4-fs (loop5): mounted filesystem without journal. Opts: sysvgroups,noload,nobh,noload,journal_dev=0x0000000000000004,norecovery,errors=continue,quota,,errors=continue. Quota mode: writeback. [ 301.247686][ T5585] usb 1-1: USB disconnect, device number 2 [ 301.909168][ T26] kauditd_printk_skb: 32 callbacks suppressed [ 301.909188][ T26] audit: type=1326 audit(1780128767.892:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11061 comm="syz.3.2878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 302.017228][ T26] audit: type=1326 audit(1780128767.892:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11061 comm="syz.3.2878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 302.112005][ T26] audit: type=1326 audit(1780128767.902:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11061 comm="syz.3.2878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 302.201072][ T26] audit: type=1326 audit(1780128767.912:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11061 comm="syz.3.2878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 302.267057][T11088] 9pnet: p9_errstr2errno: server reported unknown error 1844674 [ 302.293458][ T26] audit: type=1326 audit(1780128767.922:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11061 comm="syz.3.2878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 302.394819][ T26] audit: type=1326 audit(1780128767.922:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11073 comm="syz.3.2878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f8e49ef3f85 code=0x7ffc0000 [ 302.458938][T11095] lo: Caught tx_queue_len zero misconfig [ 302.474986][ T26] audit: type=1326 audit(1780128768.062:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11080 comm="syz.2.2885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab8dd406c9 code=0x7ffc0000 [ 302.578031][ T26] audit: type=1326 audit(1780128768.062:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11080 comm="syz.2.2885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab8dd406c9 code=0x7ffc0000 [ 302.657160][ T26] audit: type=1326 audit(1780128768.062:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11080 comm="syz.2.2885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab8dd406c9 code=0x7ffc0000 [ 302.739524][ T26] audit: type=1326 audit(1780128768.062:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11080 comm="syz.2.2885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab8dd406c9 code=0x7ffc0000 [ 302.848247][T11117] netlink: 224 bytes leftover after parsing attributes in process `syz.5.2902'. [ 302.977983][T11126] netlink: 84 bytes leftover after parsing attributes in process `syz.0.2907'. [ 305.802154][T11242] netlink: 165 bytes leftover after parsing attributes in process `syz.0.2961'. [ 305.912478][T11248] 9pnet: Could not find request transport: 0xffffffffffffffff [ 306.355129][T11277] netlink: 68 bytes leftover after parsing attributes in process `syz.0.2976'. [ 306.399376][T11281] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2978'. [ 306.409167][T11281] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2978'. [ 306.423605][T11281] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2978'. [ 306.432887][T11278] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 306.435088][T11281] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2978'. [ 306.457510][T11278] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 307.813471][T11309] tmpfs: Bad value for 'mpol' [ 308.033000][T11324] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2998'. [ 308.125363][T11329] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3000'. [ 308.256680][ T26] kauditd_printk_skb: 14 callbacks suppressed [ 308.256699][ T26] audit: type=1326 audit(1780128774.242:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11331 comm="syz.0.3002" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x0 [ 309.146235][T11375] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3023'. [ 309.362662][ T26] audit: type=1326 audit(1780128775.352:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11385 comm="syz.5.3030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 309.469073][ T26] audit: type=1326 audit(1780128775.372:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11385 comm="syz.5.3030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 309.540247][T11396] binder: 11395:11396 ioctl 4018620d 0 returned -22 [ 309.606414][ T26] audit: type=1326 audit(1780128775.392:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11385 comm="syz.5.3030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 309.654485][T11403] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3036'. [ 309.700479][T11403] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3036'. [ 309.704871][ T26] audit: type=1326 audit(1780128775.402:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11385 comm="syz.5.3030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 309.782666][ T26] audit: type=1326 audit(1780128775.402:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11385 comm="syz.5.3030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 309.818042][ T26] audit: type=1326 audit(1780128775.402:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11385 comm="syz.5.3030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=155 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 309.851652][T11406] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3038'. [ 309.870544][ T26] audit: type=1326 audit(1780128775.402:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11385 comm="syz.5.3030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 309.893513][T11411] netlink: 'syz.2.3041': attribute type 17 has an invalid length. [ 309.932049][ T26] audit: type=1326 audit(1780128775.402:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11385 comm="syz.5.3030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 310.092575][ T26] audit: type=1326 audit(1780128776.082:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11419 comm="syz.3.3045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 310.388227][T11437] netlink: 172 bytes leftover after parsing attributes in process `syz.0.3052'. [ 310.439312][T11437] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3052'. [ 310.478398][T11437] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3052'. [ 312.753307][T11532] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3100'. [ 314.385740][T11577] loop2: detected capacity change from 0 to 3 [ 314.430929][T11577] squashfs: Unknown parameter '' [ 314.628623][T11585] netlink: 128 bytes leftover after parsing attributes in process `syz.5.3121'. [ 314.670978][T11585] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3121'. [ 314.713061][T11585] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3121'. [ 314.733464][T11591] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3125'. [ 314.951426][T11602] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3129'. [ 315.648414][T11638] netlink: 92 bytes leftover after parsing attributes in process `syz.2.3142'. [ 315.769060][T11643] loop0: detected capacity change from 0 to 1024 [ 316.022403][T11659] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 317.603121][ T1432] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.609825][ T1432] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.677684][ T26] kauditd_printk_skb: 5 callbacks suppressed [ 317.677699][ T26] audit: type=1326 audit(1780128783.662:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11745 comm="syz.5.3194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 317.781214][ T8179] usb 1-1: new full-speed USB device number 3 using dummy_hcd [ 317.795942][ T26] audit: type=1326 audit(1780128783.702:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11745 comm="syz.5.3194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 317.849406][ T26] audit: type=1326 audit(1780128783.702:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11745 comm="syz.5.3194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 317.917227][ T26] audit: type=1326 audit(1780128783.702:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11745 comm="syz.5.3194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 318.020900][ T26] audit: type=1326 audit(1780128783.702:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11745 comm="syz.5.3194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 318.114494][ T26] audit: type=1326 audit(1780128783.702:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11745 comm="syz.5.3194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 318.216161][ T26] audit: type=1326 audit(1780128783.712:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11745 comm="syz.5.3194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 318.276965][ T8179] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 318.319971][ T26] audit: type=1326 audit(1780128783.712:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11745 comm="syz.5.3194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 318.324087][ T8179] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 318.420608][ T26] audit: type=1326 audit(1780128783.712:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11745 comm="syz.5.3194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 318.499778][ T26] audit: type=1326 audit(1780128783.712:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11745 comm="syz.5.3194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 318.522384][T11782] netlink: 5 bytes leftover after parsing attributes in process `syz.4.3211'. [ 318.535678][ T8179] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00 [ 318.565775][ T8179] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 318.633079][ T8179] usb 1-1: SerialNumber: syz [ 318.734935][ T8179] usb 1-1: 0:2 : does not exist [ 318.753779][T11789] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3214'. [ 319.468994][T11820] binder: Bad value for 'max' [ 320.499142][ T8179] usb 1-1: USB disconnect, device number 3 [ 320.753105][ T4354] udevd[4354]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 322.266077][T11891] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3260'. [ 322.437855][T11897] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3264'. [ 322.989409][T11930] 9pnet: p9_errstr2errno: server reported unknown error [ 323.263337][T11941] device bridge1 entered promiscuous mode [ 323.315297][T11941] team0: Port device bridge1 added [ 323.338656][T11946] netlink: 288 bytes leftover after parsing attributes in process `syz.2.3286'. [ 323.395094][T11947] bridge0: port 3(team0) entered blocking state [ 323.404566][T11951] overlayfs: unrecognized mount option "/" or missing value [ 323.443044][T11947] bridge0: port 3(team0) entered disabled state [ 323.493544][T11947] device team0 entered promiscuous mode [ 323.499153][T11947] device team_slave_0 entered promiscuous mode [ 323.587302][T11947] device team_slave_1 entered promiscuous mode [ 323.642838][T11947] bridge0: port 3(team0) entered blocking state [ 323.649245][T11947] bridge0: port 3(team0) entered forwarding state [ 323.690414][T11941] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3284'. [ 323.759298][T11941] device team0 left promiscuous mode [ 323.791229][T11941] device team_slave_0 left promiscuous mode [ 323.808013][T11941] device team_slave_1 left promiscuous mode [ 323.830871][T11941] bridge0: port 3(team0) entered disabled state [ 323.884507][T11941] device bridge_slave_1 left promiscuous mode [ 323.907705][T11941] bridge0: port 2(bridge_slave_1) entered disabled state [ 323.927114][T11941] device bridge_slave_0 left promiscuous mode [ 323.941694][T11941] bridge0: port 1(bridge_slave_0) entered disabled state [ 324.079945][T11981] loop0: detected capacity change from 0 to 512 [ 324.235086][T11981] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a806e02c, mo2=0002] [ 324.247562][T11981] System zones: 1-12 [ 324.256068][T11981] EXT4-fs error (device loop0): dx_probe:823: inode #2: comm syz.0.3303: Directory hole found for htree index block 0 [ 324.301309][T11981] EXT4-fs (loop0): Remounting filesystem read-only [ 324.308386][T11981] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -117 [ 324.367548][T11981] EXT4-fs error (device loop0): dx_probe:823: inode #2: comm syz.0.3303: Directory hole found for htree index block 0 [ 324.393104][T11981] EXT4-fs (loop0): Remounting filesystem read-only [ 324.399814][T11981] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117 [ 324.420530][T11981] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpjquota=Jdebug,jqfmt=vfsold,noquota,bsdgroups,usrjquota="nojournal_checksum,errors=remount-ro,,. Quota mode: writeback. [ 324.520452][T11981] EXT4-fs (loop0): Unrecognized mount option "r$H3b\$iSP4|7' $}4_;T[?W [ 324.520452][T11981] :non~b!r x dhuNjTes2r8Έ!Q2#c@zO&r\vUA;#}l2cJcDdV#ks=a?=" or missing value [ 325.526567][T12047] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 325.540059][T12047] Cannot find add_set index 0 as target [ 326.900326][ T26] kauditd_printk_skb: 15 callbacks suppressed [ 326.900343][ T26] audit: type=1326 audit(1780129048.873:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12079 comm="syz.0.3348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 327.021600][ T26] audit: type=1326 audit(1780129048.873:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12079 comm="syz.0.3348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 327.133641][ T26] audit: type=1326 audit(1780129048.873:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12079 comm="syz.0.3348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 327.225385][ T26] audit: type=1326 audit(1780129048.873:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12079 comm="syz.0.3348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 327.384355][ T26] audit: type=1326 audit(1780129048.873:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12079 comm="syz.0.3348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 327.418667][ T26] audit: type=1326 audit(1780129048.873:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12079 comm="syz.0.3348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 328.014464][ T26] audit: type=1326 audit(1780129048.873:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12079 comm="syz.0.3348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 328.384660][ T26] audit: type=1326 audit(1780129048.873:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12079 comm="syz.0.3348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 328.407374][ T26] audit: type=1326 audit(1780129048.873:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12079 comm="syz.0.3348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 328.544268][T12108] sctp: [Deprecated]: syz.0.3358 (pid 12108) Use of int in max_burst socket option. [ 328.544268][T12108] Use struct sctp_assoc_value instead [ 328.581124][ T26] audit: type=1326 audit(1780129048.873:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12079 comm="syz.0.3348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 330.444765][T12166] wg2: Caught tx_queue_len zero misconfig [ 330.694311][T12174] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3386'. [ 330.744477][T12174] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 330.777142][T12174] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 330.819924][T12174] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 330.850696][T12174] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 331.022939][T12191] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3394'. [ 332.483845][T12226] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3409'. [ 332.493135][T12217] input: syz1 as /devices/virtual/input/input6 [ 332.516763][T12226] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 332.541138][T12226] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 332.548768][ T26] kauditd_printk_skb: 18 callbacks suppressed [ 332.548785][ T26] audit: type=1326 audit(1780129054.523:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12218 comm="syz.4.3406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb7b9696c9 code=0x50000 [ 332.578913][T12226] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 332.616298][T12226] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 332.690735][ T26] audit: type=1326 audit(1780129054.563:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12218 comm="syz.4.3406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb7b9696c9 code=0x50000 [ 332.749535][ T26] audit: type=1326 audit(1780129054.563:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12218 comm="syz.4.3406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb7b9696c9 code=0x50000 [ 332.827672][ T26] audit: type=1326 audit(1780129054.563:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12218 comm="syz.4.3406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb7b9696c9 code=0x50000 [ 332.895757][ T26] audit: type=1326 audit(1780129054.563:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12218 comm="syz.4.3406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb7b9696c9 code=0x50000 [ 332.998125][ T26] audit: type=1326 audit(1780129054.563:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12218 comm="syz.4.3406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb7b9696c9 code=0x50000 [ 333.111299][ T26] audit: type=1326 audit(1780129054.563:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12218 comm="syz.4.3406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb7b9696c9 code=0x50000 [ 333.216922][ T26] audit: type=1326 audit(1780129054.563:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12218 comm="syz.4.3406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb7b9696c9 code=0x50000 [ 333.307338][ T26] audit: type=1326 audit(1780129054.563:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12218 comm="syz.4.3406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb7b9696c9 code=0x50000 [ 333.457956][ T26] audit: type=1326 audit(1780129054.583:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12218 comm="syz.4.3406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb7b9696c9 code=0x50000 [ 334.716233][T12298] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3442'. [ 334.759833][T12298] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3442'. [ 334.820460][T12298] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3442'. [ 334.840002][T12298] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3442'. [ 334.978032][T12304] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3445'. [ 336.087935][T12346] netlink: 132 bytes leftover after parsing attributes in process `syz.5.3463'. [ 336.620268][T12364] 9pnet: p9_errstr2errno: server reported unknown error aaaaaaaaa [ 339.767170][T12458] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3512'. [ 339.909795][T12470] overlayfs: overlapping lowerdir path [ 340.056349][T12479] tmpfs: Unknown parameter 'no' [ 340.242741][T12492] overlayfs: failed to resolve '/ [ 340.242741][T12492] MO"': -2 [ 340.345093][ T26] kauditd_printk_skb: 60 callbacks suppressed [ 340.345109][ T26] audit: type=1326 audit(1780129062.323:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12495 comm="syz.3.3533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x50000 [ 340.397632][T12501] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3534'. [ 340.416514][ T26] audit: type=1326 audit(1780129062.363:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12495 comm="syz.3.3533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x50000 [ 340.439374][ T26] audit: type=1326 audit(1780129062.363:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12495 comm="syz.3.3533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x50000 [ 340.464587][ T26] audit: type=1326 audit(1780129062.363:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12495 comm="syz.3.3533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x50000 [ 340.518912][ T26] audit: type=1326 audit(1780129062.363:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12495 comm="syz.3.3533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x50000 [ 340.560608][ T26] audit: type=1326 audit(1780129062.363:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12495 comm="syz.3.3533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x50000 [ 340.632234][ T26] audit: type=1326 audit(1780129062.363:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12495 comm="syz.3.3533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x50000 [ 340.741478][ T26] audit: type=1326 audit(1780129062.363:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12495 comm="syz.3.3533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x50000 [ 340.782498][ T26] audit: type=1326 audit(1780129062.363:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12495 comm="syz.3.3533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x50000 [ 340.815601][ T26] audit: type=1326 audit(1780129062.363:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12495 comm="syz.3.3533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x50000 [ 340.843808][T12518] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3542'. [ 340.874334][T12518] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 340.930178][T12518] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 340.959409][T12518] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 340.982759][T12518] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 341.199697][T12533] tap1: tun_chr_ioctl cmd 1074025675 [ 341.214342][T12533] tap1: persist enabled [ 342.794548][T12584] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3571'. [ 342.811803][T12584] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 342.863482][T12584] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 342.874640][T12584] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 342.894609][T12584] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 343.206160][T12605] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3583'. [ 343.600673][T12627] overlayfs: workdir and upperdir must reside under the same mount [ 344.551508][T12647] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3603'. [ 344.570600][T12647] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3603'. [ 344.580520][T12647] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3603'. [ 344.597332][T12647] A link change request failed with some changes committed already. Interface ip6tnl0 may have been left with an inconsistent configuration, please check. [ 345.063680][T12683] loop3: detected capacity change from 0 to 2048 [ 345.441628][T12707] netlink: 'syz.2.3633': attribute type 1 has an invalid length. [ 345.557298][T12707] 8021q: adding VLAN 0 to HW filter on device bond1 [ 345.572206][T12707] bond0: (slave bond1): making interface the new active one [ 345.580404][T12707] bond0: (slave bond1): Enslaving as an active interface with an up link [ 345.590715][T12720] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3633'. [ 345.663861][T12720] 8021q: adding VLAN 0 to HW filter on device bond0 [ 346.083363][T12748] loop2: detected capacity change from 0 to 512 [ 346.132373][T12748] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 346.197513][T12748] EXT4-fs (loop2): 1 truncate cleaned up [ 346.220280][T12748] EXT4-fs (loop2): mounted filesystem without journal. Opts: debug_want_extra_isize=0x000000000000002e,min_batch_time=0x0000000000000fff,inode_readahead_blks=0x0000000000000080,stripe=0x0000000000000012,inode_readahead_blks=0x0000000000000020,max_batch_time=0x0000000000000007,,errors=continue. Quota mode: none. [ 346.473563][T12771] loop0: detected capacity change from 0 to 256 [ 346.488596][ T4537] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 346.562138][T12771] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18d7c, utbl_chksum : 0xe619d30d) [ 346.898724][T12788] netlink: 172 bytes leftover after parsing attributes in process `syz.2.3666'. [ 346.908480][T12788] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3666'. [ 346.935551][T12788] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3666'. [ 348.911383][T12858] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3697'. [ 349.252666][T12875] fuse: Unknown parameter '&' [ 349.413104][T12883] netlink: 56 bytes leftover after parsing attributes in process `syz.0.3709'. [ 349.864118][T12910] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3723'. [ 352.046281][T12990] lo: Caught tx_queue_len zero misconfig [ 352.223549][T12999] xt_CT: You must specify a L4 protocol and not use inversions on it [ 352.450639][T13010] netlink: 72 bytes leftover after parsing attributes in process `syz.0.3770'. [ 353.474792][T13059] device batadv_slave_1 entered promiscuous mode [ 353.535523][T13055] device batadv_slave_1 left promiscuous mode [ 354.048981][T13082] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3805'. [ 354.081537][T13082] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3805'. [ 356.737931][T13139] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 357.569468][ T26] kauditd_printk_skb: 73 callbacks suppressed [ 357.569485][ T26] audit: type=1326 audit(1780129079.543:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13178 comm="syz.0.3853" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x0 [ 358.260246][T13217] netlink: 44 bytes leftover after parsing attributes in process `syz.5.3866'. [ 359.717205][T13235] loop0: detected capacity change from 0 to 128 [ 359.833708][T13235] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 359.933712][T13235] ext4 filesystem being mounted at /752/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 360.428812][T13257] futex_wake_op: syz.3.3881 tries to shift op by 32; fix this program [ 363.281845][T13381] netlink: 36 bytes leftover after parsing attributes in process `syz.5.3939'. [ 363.563274][T13396] netlink: 'syz.2.3947': attribute type 1 has an invalid length. [ 363.799304][T13398] bond2: (slave gretap0): making interface the new active one [ 363.846330][T13398] bond2: (slave gretap0): Enslaving as an active interface with an up link [ 363.873614][T13404] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3947'. [ 363.943110][T13404] 8021q: adding VLAN 0 to HW filter on device bond2 [ 364.358993][T13427] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it. [ 364.456901][T13427] overlayfs: missing 'lowerdir' [ 365.543494][T13483] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3987'. [ 365.818714][T13496] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3993'. [ 366.150667][T13507] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3999'. [ 366.579120][T13515] loop3: detected capacity change from 0 to 512 [ 368.294759][T13515] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 368.566462][T13515] EXT4-fs (loop3): 1 truncate cleaned up [ 368.572303][T13515] EXT4-fs (loop3): mounted filesystem without journal. Opts: nogrpid,min_batch_time=0x0000000000000004,debug_want_extra_isize=0x0000000000000068,errors=remount-ro,nodiscard,quota,. Quota mode: writeback. [ 369.869650][T13562] netlink: 388 bytes leftover after parsing attributes in process `syz.5.4024'. [ 370.109455][T13574] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4021'. [ 371.066136][T13583] 9pnet: p9_fd_create_tcp (13583): problem connecting socket to 127.0.0.1 [ 371.897880][T13595] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4036'. [ 371.945899][T13595] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4036'. [ 372.134054][T13612] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4043'. [ 372.143374][ T26] audit: type=1326 audit(1780129094.113:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13604 comm="syz.0.4039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7fc00000 [ 372.204566][ T26] audit: type=1326 audit(1780129094.173:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13604 comm="syz.0.4039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7fc00000 [ 372.226521][T13620] 9pnet: Insufficient options for proto=fd [ 372.299809][ T26] audit: type=1326 audit(1780129094.243:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13604 comm="syz.0.4039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7fc00000 [ 372.349412][ T26] audit: type=1326 audit(1780129094.293:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13604 comm="syz.0.4039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7fc00000 [ 372.383145][ T26] audit: type=1326 audit(1780129094.353:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13604 comm="syz.0.4039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7fc00000 [ 372.471721][ T26] audit: type=1326 audit(1780129094.453:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13624 comm="syz.2.4047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab8dd406c9 code=0x7ffc0000 [ 372.515157][ T26] audit: type=1326 audit(1780129094.473:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13624 comm="syz.2.4047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab8dd406c9 code=0x7ffc0000 [ 372.584534][ T26] audit: type=1326 audit(1780129094.473:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13624 comm="syz.2.4047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fab8dd406c9 code=0x7ffc0000 [ 372.668383][ T26] audit: type=1326 audit(1780129094.473:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13624 comm="syz.2.4047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab8dd406c9 code=0x7ffc0000 [ 372.714191][ T26] audit: type=1326 audit(1780129094.473:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13624 comm="syz.2.4047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab8dd406c9 code=0x7ffc0000 [ 372.931976][T13654] netlink: 68 bytes leftover after parsing attributes in process `syz.3.4061'. [ 373.156930][T13662] 8021q: adding VLAN 0 to HW filter on device bond0 [ 373.223598][T13662] team0: Failed to send options change via netlink (err -105) [ 373.237671][T13662] team0: Port device bond0 added [ 373.244544][ T4535] team0: Failed to send port change of device bond0 via netlink (err -105) [ 375.376754][T13760] netlink: 536 bytes leftover after parsing attributes in process `syz.2.4110'. [ 375.406522][T13760] netlink: 52 bytes leftover after parsing attributes in process `syz.2.4110'. [ 375.411268][T13763] loop0: detected capacity change from 0 to 512 [ 375.586570][T13763] EXT4-fs (loop0): Ignoring removed mblk_io_submit option [ 375.607338][T13763] EXT4-fs (loop0): inline encryption not supported [ 375.658116][T13763] EXT4-fs (loop0): Test dummy encryption mode enabled [ 375.733922][T13763] EXT4-fs (loop0): Ignoring removed mblk_io_submit option [ 375.851255][T13763] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 376.421371][T13763] EXT4-fs (loop0): 1 truncate cleaned up [ 376.427140][T13763] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,mblk_io_submit,inlinecrypt,test_dummy_encryption=v1,barrier,mblk_io_submit,nogrpid,. Quota mode: none. [ 376.607230][T13789] 9pnet: Insufficient options for proto=fd [ 378.583176][T13850] netlink: 'syz.4.4145': attribute type 8 has an invalid length. [ 378.605975][T13850] netlink: 60 bytes leftover after parsing attributes in process `syz.4.4145'. [ 378.849314][T13857] netlink: 44 bytes leftover after parsing attributes in process `syz.5.4149'. [ 378.908606][T13857] netlink: 59 bytes leftover after parsing attributes in process `syz.5.4149'. [ 379.062718][ T1432] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.069376][ T1432] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.492337][T13857] netlink: 59 bytes leftover after parsing attributes in process `syz.5.4149'. [ 379.631404][T13857] Cannot find set identified by id 0 to match [ 380.124342][T13882] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4159'. [ 380.537925][T13896] netlink: 36 bytes leftover after parsing attributes in process `syz.5.4165'. [ 383.728524][T13975] overlayfs: missing 'workdir' [ 384.713642][T14018] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4223'. [ 386.313084][T14060] netlink: 'syz.4.4244': attribute type 4 has an invalid length. [ 386.413555][T14065] loop2: detected capacity change from 0 to 1024 [ 386.466712][T14065] EXT4-fs (loop2): Ignoring removed nobh option [ 386.480156][T14065] EXT4-fs (loop2): Ignoring removed bh option [ 386.521214][T14065] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 386.622054][T14065] EXT4-fs (loop2): mounted filesystem without journal. Opts: resuid=0x0000000000000000,data_err=abort,barrier=0x0000000000000001,dioread_nolock,grpjquota=,quota,data_err=ignore,grpquota,nobh,user_xattr,bh,minixdf,,errors=continue. Quota mode: writeback. [ 386.653132][T14078] loop5: detected capacity change from 0 to 128 [ 388.054016][T14116] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4268'. [ 389.057037][T14159] overlayfs: missing 'lowerdir' [ 389.497232][T14166] bridge0: port 2(bridge_slave_1) entered disabled state [ 389.706380][T14169] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4291'. [ 389.721287][T14169] device erspan0 entered promiscuous mode [ 390.837574][T14182] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4290'. [ 390.891405][T14189] netlink: 92 bytes leftover after parsing attributes in process `syz.4.4298'. [ 391.302291][ T21] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 392.301772][ T21] usb 6-1: Using ep0 maxpacket: 8 [ 392.421055][ T21] usb 6-1: unable to get BOS descriptor or descriptor too short [ 392.653656][ T21] usb 6-1: unable to read config index 0 descriptor/start: -71 [ 392.661846][ T21] usb 6-1: can't read configurations, error -71 [ 394.073452][T14245] netlink: 68 bytes leftover after parsing attributes in process `syz.2.4315'. [ 395.520727][T14268] 9pnet: Insufficient options for proto=fd [ 395.826315][T14283] loop3: detected capacity change from 0 to 164 [ 397.640919][T14335] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8) [ 397.647508][T14335] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 397.706253][T14335] vhci_hcd vhci_hcd.0: Device attached [ 397.725644][T14337] vhci_hcd: connection closed [ 397.728899][ T4537] vhci_hcd: stop threads [ 397.739050][ T4537] vhci_hcd: release socket [ 397.750938][ T4537] vhci_hcd: disconnect device [ 397.957272][T14354] device syzkaller0 entered promiscuous mode [ 398.114344][T14363] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 400.302156][T14466] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4420'. [ 400.921910][T14491] loop2: detected capacity change from 0 to 512 [ 401.037932][T14491] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 401.220446][T14491] EXT4-fs (loop2): 1 truncate cleaned up [ 401.226373][T14491] EXT4-fs (loop2): mounted filesystem without journal. Opts: nogrpid,min_batch_time=0x0000000000000004,debug_want_extra_isize=0x0000000000000068,errors=remount-ro,nodiscard,quota,. Quota mode: writeback. [ 402.848259][T14512] netlink: 'syz.3.4439': attribute type 4 has an invalid length. [ 402.898557][T14512] netlink: 3657 bytes leftover after parsing attributes in process `syz.3.4439'. [ 403.718758][T14546] netlink: 'syz.0.4451': attribute type 10 has an invalid length. [ 403.753985][T14546] device veth1_macvtap left promiscuous mode [ 404.265528][T14581] loop0: detected capacity change from 0 to 256 [ 405.520308][T14648] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4500'. [ 407.368542][T14701] loop0: detected capacity change from 0 to 512 [ 407.472943][T14701] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 407.719362][T14701] EXT4-fs (loop0): 1 truncate cleaned up [ 407.725403][T14701] EXT4-fs (loop0): mounted filesystem without journal. Opts: nogrpid,min_batch_time=0x0000000000000004,debug_want_extra_isize=0x0000000000000068,errors=remount-ro,nodiscard,quota,. Quota mode: writeback. [ 409.196284][T14707] tmpfs: Unknown parameter 'noswap' [ 409.632968][ T26] kauditd_printk_skb: 91 callbacks suppressed [ 409.632985][ T26] audit: type=1326 audit(1780129131.613:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14722 comm="syz.3.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 409.751959][ T26] audit: type=1326 audit(1780129131.643:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14722 comm="syz.3.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 409.845638][ T26] audit: type=1326 audit(1780129131.653:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14722 comm="syz.3.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 409.944696][ T26] audit: type=1326 audit(1780129131.653:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14722 comm="syz.3.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 409.998883][ T26] audit: type=1326 audit(1780129131.653:596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14722 comm="syz.3.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 410.113603][T14743] 9pnet: Could not find request transport: 0xffffffffffffffff [ 410.140872][ T26] audit: type=1326 audit(1780129131.653:597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14722 comm="syz.3.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8e49ebff10 code=0x7ffc0000 [ 410.210916][ T26] audit: type=1326 audit(1780129131.653:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14722 comm="syz.3.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8e49ebff10 code=0x7ffc0000 [ 410.346828][ T26] audit: type=1326 audit(1780129131.653:599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14722 comm="syz.3.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 410.405759][ T26] audit: type=1326 audit(1780129131.653:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14722 comm="syz.3.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 410.484552][T14757] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4550'. [ 410.504837][ T26] audit: type=1326 audit(1780129131.653:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14722 comm="syz.3.4534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8e49ec16c9 code=0x7ffc0000 [ 411.410430][T14796] netlink: 165 bytes leftover after parsing attributes in process `syz.0.4567'. [ 412.744526][T14867] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4596'. [ 412.753674][T14867] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4596'. [ 414.332794][T14915] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4616'. [ 414.342129][T14915] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4616'. [ 415.052453][T14890] DRBG: could not allocate digest TFM handle: hmac(sha512) [ 417.967285][T15005] 9pnet: Insufficient options for proto=fd [ 418.197709][T15013] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4652'. [ 418.207001][T15013] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4652'. [ 419.792364][T15052] netlink: 'syz.3.4674': attribute type 4 has an invalid length. [ 419.820599][T15052] netlink: 'syz.3.4674': attribute type 5 has an invalid length. [ 419.859381][T15052] netlink: 3657 bytes leftover after parsing attributes in process `syz.3.4674'. [ 419.965795][T15054] loop2: detected capacity change from 0 to 512 [ 420.055158][T15054] EXT4-fs (loop2): Ignoring removed mblk_io_submit option [ 420.106181][T15054] EXT4-fs (loop2): inline encryption not supported [ 420.137814][T15054] EXT4-fs (loop2): Test dummy encryption mode enabled [ 420.158755][T15054] EXT4-fs (loop2): Ignoring removed mblk_io_submit option [ 420.198277][T15054] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 420.263099][T15054] EXT4-fs (loop2): 1 truncate cleaned up [ 420.268936][T15054] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,mblk_io_submit,inlinecrypt,test_dummy_encryption=v1,barrier,mblk_io_submit,nogrpid,. Quota mode: none. [ 420.432398][T15077] netlink: 'syz.0.4684': attribute type 3 has an invalid length. [ 420.605878][T15054] fscrypt: AES-256-XTS using implementation "xts-aes-aesni" [ 423.008186][T15165] binder: 15161:15165 ioctl c0306201 0 returned -14 [ 423.153935][T15171] loop5: detected capacity change from 0 to 512 [ 424.764754][T15171] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 425.249537][T15171] EXT4-fs (loop5): 1 truncate cleaned up [ 425.255454][T15171] EXT4-fs (loop5): mounted filesystem without journal. Opts: nogrpid,min_batch_time=0x0000000000000004,debug_want_extra_isize=0x0000000000000068,errors=remount-ro,nodiscard,quota,. Quota mode: writeback. [ 426.324830][T15200] A link change request failed with some changes committed already. Interface ip_vti0 may have been left with an inconsistent configuration, please check. [ 426.525552][T15210] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4739'. [ 426.676816][T15219] netlink: 44 bytes leftover after parsing attributes in process `syz.5.4744'. [ 427.212132][T15260] 9pnet: Insufficient options for proto=fd [ 428.968829][T15304] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4782'. [ 429.396796][T15327] loop0: detected capacity change from 0 to 1024 [ 429.643263][T15327] EXT4-fs (loop0): orphan cleanup on readonly fs [ 429.678287][T15327] EXT4-fs (loop0): 1 truncate cleaned up [ 429.698154][T15327] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 435.647943][T15479] netlink: 96 bytes leftover after parsing attributes in process `syz.2.4861'. [ 435.899673][T15499] loop5: detected capacity change from 0 to 128 [ 435.963480][T15499] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 436.366589][T15512] 9p: Unknown access argument a [ 438.447861][T15567] overlayfs: missing 'workdir' [ 438.682834][T15580] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready [ 440.422246][T15631] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4928'. [ 440.483566][ T1432] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.490108][ T1432] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.762309][T15650] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4939'. [ 441.757602][T15692] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4957'. [ 441.788548][T15694] device syzkaller0 entered promiscuous mode [ 442.716087][T15732] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4976'. [ 443.750294][T15775] netlink: 96 bytes leftover after parsing attributes in process `syz.4.4996'. [ 443.989587][T15791] netlink: 140 bytes leftover after parsing attributes in process `syz.2.5003'. [ 445.510910][ T4970] usb 3-1: new full-speed USB device number 8 using dummy_hcd [ 445.892402][ T4970] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 445.920941][ T4970] usb 3-1: New USB device found, idVendor=056a, idProduct=005b, bcdDevice= 0.00 [ 445.952458][ T4970] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 445.983375][ T4970] usb 3-1: config 0 descriptor?? [ 446.001238][T15838] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 446.229113][T15838] udc-core: couldn't find an available UDC or it's busy [ 446.251220][T15838] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 446.361043][ T4970] usbhid 3-1:0.0: can't add hid device: -71 [ 446.367110][ T4970] usbhid: probe of 3-1:0.0 failed with error -71 [ 446.406629][ T4970] usb 3-1: USB disconnect, device number 8 [ 446.900516][T15894] netlink: 20 bytes leftover after parsing attributes in process `syz.2.5053'. [ 447.261262][T15915] 9pnet: Insufficient options for proto=fd [ 448.262280][ T154] tipc: Subscription rejected, illegal request [ 449.129396][T16001] loop2: detected capacity change from 0 to 512 [ 449.206605][T16001] EXT4-fs (loop2): mounted filesystem without journal. Opts: init_itable=0x0000000000000003,stripe=0x0000000000000005,,errors=continue. Quota mode: writeback. [ 449.232515][T16001] ext4 filesystem being mounted at /1042/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 449.731685][ T4535] tipc: Subscription rejected, illegal request [ 450.020080][T16036] loop2: detected capacity change from 0 to 2048 [ 450.119675][T16036] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 450.139949][T16036] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 450.722421][ T26] kauditd_printk_skb: 8 callbacks suppressed [ 450.722437][ T26] audit: type=1326 audit(1780129173.711:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16066 comm="syz.5.5134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d50226c9 code=0x7fc00000 [ 450.787343][ T26] audit: type=1326 audit(1780129173.711:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16066 comm="syz.5.5134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d50226c9 code=0x7fc00000 [ 450.813323][T16072] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 450.832570][ T26] audit: type=1326 audit(1780129173.711:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16066 comm="syz.5.5134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d50226c9 code=0x7fc00000 [ 450.871208][T16072] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 451.172327][T16091] netlink: 'syz.3.5146': attribute type 4 has an invalid length. [ 451.201438][T16091] netlink: 'syz.3.5146': attribute type 5 has an invalid length. [ 451.204723][T16094] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it. [ 451.221250][T16094] overlayfs: missing 'lowerdir' [ 451.228490][T16091] netlink: 3657 bytes leftover after parsing attributes in process `syz.3.5146'. [ 451.907294][ T26] audit: type=1326 audit(1780129174.891:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16127 comm="syz.0.5162" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x0 [ 452.322440][T16148] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 452.337297][T16148] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 452.727838][T16168] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5180'. [ 452.761290][T16172] netlink: 188 bytes leftover after parsing attributes in process `syz.0.5183'. [ 452.847131][T16176] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 452.870879][T16176] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 454.168682][T16227] netlink: 'syz.0.5207': attribute type 4 has an invalid length. [ 454.200969][T16227] netlink: 'syz.0.5207': attribute type 5 has an invalid length. [ 454.224939][T16227] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.5207'. [ 454.603152][T16246] netlink: 72 bytes leftover after parsing attributes in process `syz.4.5216'. [ 454.904527][T16261] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5223'. [ 454.926138][T16260] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5231'. [ 455.151456][ T26] audit: type=1326 audit(1780129178.131:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16270 comm="syz.0.5227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7fc00000 [ 455.195254][ T26] audit: type=1326 audit(1780129178.131:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16270 comm="syz.0.5227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7fc00000 [ 455.320880][ T26] audit: type=1326 audit(1780129178.131:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16270 comm="syz.0.5227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7fc00000 [ 455.414007][ T26] audit: type=1326 audit(1780129178.141:617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16270 comm="syz.0.5227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7fc00000 [ 455.458109][ T26] audit: type=1326 audit(1780129178.141:618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16270 comm="syz.0.5227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7fc00000 [ 455.584136][T16292] tmpfs: Unknown parameter 'n' [ 455.834203][ T8179] usb 6-1: new full-speed USB device number 5 using dummy_hcd [ 456.198941][ T26] audit: type=1326 audit(1780129179.181:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16303 comm="syz.3.5242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e49ec16c9 code=0x7fc00000 [ 457.052391][ T8179] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 457.079694][ T8179] usb 6-1: New USB device found, idVendor=056a, idProduct=005b, bcdDevice= 0.00 [ 457.091655][ T8179] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 457.122428][ T8179] usb 6-1: config 0 descriptor?? [ 457.135642][T16322] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5248'. [ 457.151750][T16290] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 457.369991][ T26] audit: type=1326 audit(1780129180.351:620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16331 comm="syz.4.5256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb7b9696c9 code=0x7ffc0000 [ 457.403619][T16290] udc-core: couldn't find an available UDC or it's busy [ 457.410654][T16290] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 457.461911][ T26] audit: type=1326 audit(1780129180.421:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16331 comm="syz.4.5256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb7b9696c9 code=0x7ffc0000 [ 457.487520][T16337] overlayfs: missing 'lowerdir' [ 457.572300][ T8179] usbhid 6-1:0.0: can't add hid device: -71 [ 457.578435][ T8179] usbhid: probe of 6-1:0.0 failed with error -71 [ 457.623460][ T8179] usb 6-1: USB disconnect, device number 5 [ 458.294583][ T26] audit: type=1326 audit(1780129181.281:622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16388 comm="syz.0.5283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 458.380616][ T26] audit: type=1326 audit(1780129181.301:623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16388 comm="syz.0.5283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=103 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 458.462127][ T26] audit: type=1326 audit(1780129181.421:624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16388 comm="syz.0.5283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 458.560708][ T26] audit: type=1326 audit(1780129181.421:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16388 comm="syz.0.5283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08a4e8c6c9 code=0x7ffc0000 [ 459.156777][T16446] netlink: 108 bytes leftover after parsing attributes in process `syz.2.5309'. [ 460.765855][T16480] netlink: 'syz.2.5325': attribute type 4 has an invalid length. [ 460.938238][T16486] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5328'. [ 461.157289][T16494] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5332'. [ 461.168773][T16492] loop0: detected capacity change from 0 to 512 [ 461.704726][T16527] netlink: 56 bytes leftover after parsing attributes in process `syz.5.5347'. [ 461.797837][T16531] netlink: 44 bytes leftover after parsing attributes in process `syz.4.5349'. [ 463.340630][T16571] netlink: 56 bytes leftover after parsing attributes in process `syz.0.5364'. [ 464.420101][T16589] fuse: Unknown parameter 'g' [ 465.145576][T16616] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5381'. [ 465.948504][ T4967] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 466.017012][ T4967] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on syz0 [ 466.814824][T16676] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5410'. [ 467.409505][T16696] loop2: detected capacity change from 0 to 512 [ 467.435774][T16696] EXT4-fs (loop2): couldn't mount as ext3 due to feature incompatibilities [ 467.441920][T16699] 9pnet: Could not find request transport: 0xffffffffffffffff [ 468.976133][T16719] netlink: 44 bytes leftover after parsing attributes in process `syz.5.5424'. [ 469.228791][T16732] fuse: Unknown parameter 'g' [ 470.301704][T16751] loop5: detected capacity change from 0 to 512 [ 470.465189][T16751] EXT4-fs (loop5): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000001000,nodiscard,quota,,errors=continue. Quota mode: writeback. [ 470.491704][T16751] ext4 filesystem being mounted at /947/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 470.628610][T16767] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 470.700879][T16767] overlayfs: missing 'lowerdir' [ 473.506024][T16907] loop3: detected capacity change from 0 to 2048 [ 473.606677][T16907] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 473.654336][T16907] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 474.113284][T16934] loop2: detected capacity change from 0 to 256 [ 475.305450][T16951] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 477.533694][ T1111] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 477.859356][T17042] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5570'. [ 478.121167][ T1111] usb 1-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00 [ 478.154023][ T1111] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 478.180883][ T1111] usb 1-1: Product: syz [ 478.187033][ T1111] usb 1-1: Manufacturer: syz [ 478.192263][ T1111] usb 1-1: SerialNumber: syz [ 478.792588][T17072] netlink: 'syz.4.5584': attribute type 7 has an invalid length. [ 480.463835][T17121] 9pnet: Could not find request transport: f [ 480.775829][T17138] loop0: detected capacity change from 0 to 128 [ 481.022702][T17150] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5620'. [ 481.346463][ T26] audit: type=1326 audit(1780129204.331:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17171 comm="syz.5.5628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 481.410105][ T26] audit: type=1326 audit(1780129204.351:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17171 comm="syz.5.5628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd8d5019567 code=0x7ffc0000 [ 481.576391][ T26] audit: type=1326 audit(1780129204.351:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17171 comm="syz.5.5628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd8d4fbe789 code=0x7ffc0000 [ 481.634732][ T26] audit: type=1326 audit(1780129204.351:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17171 comm="syz.5.5628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 482.734805][ T26] audit: type=1326 audit(1780129204.351:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17171 comm="syz.5.5628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=71 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 482.824267][ T26] audit: type=1326 audit(1780129204.351:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17171 comm="syz.5.5628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 482.852339][ T1111] rtl8150 1-1:1.0: couldn't reset the device [ 482.858547][ T1111] rtl8150: probe of 1-1:1.0 failed with error -5 [ 482.861750][ T26] audit: type=1326 audit(1780129204.351:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17171 comm="syz.5.5628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 482.928631][ T1111] usb 1-1: USB disconnect, device number 4 [ 482.960949][ T26] audit: type=1326 audit(1780129204.361:633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17171 comm="syz.5.5628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd8d5019567 code=0x7ffc0000 [ 483.063257][ T26] audit: type=1326 audit(1780129204.361:634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17171 comm="syz.5.5628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd8d4fbe789 code=0x7ffc0000 [ 483.117623][T17200] loop5: detected capacity change from 0 to 256 [ 483.418632][ T26] audit: type=1326 audit(1780129204.361:635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17171 comm="syz.5.5628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d50226c9 code=0x7ffc0000 [ 484.581642][T17237] overlayfs: missing 'workdir' [ 484.754016][T17249] loop0: detected capacity change from 0 to 256 [ 485.785226][T17257] overlayfs: overlapping lowerdir path [ 486.121085][T17271] fuse: Unknown parameter 'g' [ 487.381028][ T21] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 487.621041][ T21] usb 4-1: Using ep0 maxpacket: 16 [ 487.751947][ T21] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 487.842072][ T21] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 488.036066][ T21] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 488.080837][ T21] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 488.132101][ T21] usb 4-1: config 0 descriptor?? [ 488.443212][ T21] usb 4-1: USB disconnect, device number 5 [ 488.695858][T17316] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5683'. [ 492.829575][T17411] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5716'. [ 493.133125][T17431] overlayfs: overlapping lowerdir path [ 493.431215][T17447] loop3: detected capacity change from 0 to 256 [ 494.877285][T17479] 9pnet_virtio: no channels available for device syz [ 495.433557][T17500] loop0: detected capacity change from 0 to 512 [ 496.540471][T17500] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000001000,nodiscard,quota,,errors=continue. Quota mode: writeback. [ 496.600907][T17500] ext4 filesystem being mounted at /1133/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 496.656714][T17500] EXT4-fs error (device loop0): ext4_do_update_inode:5218: inode #2: comm syz.0.5750: corrupted inode contents [ 496.675742][T17500] EXT4-fs error (device loop0): ext4_dirty_inode:6054: inode #2: comm syz.0.5750: mark_inode_dirty error [ 496.696549][T17500] EXT4-fs error (device loop0): ext4_do_update_inode:5218: inode #2: comm syz.0.5750: corrupted inode contents [ 496.729554][T17500] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #2: comm syz.0.5750: mark_inode_dirty error [ 497.291181][T17556] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5772'. [ 497.647936][T17574] xt_socket: unknown flags 0x50 [ 499.278831][T17632] overlayfs: missing 'lowerdir' [ 500.936689][T17658] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability [ 500.980759][T17658] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16 [ 501.017372][T17664] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability [ 501.051808][T17664] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16 [ 501.744991][T17705] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5835'. [ 501.977038][ T1432] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.983496][ T1432] ieee802154 phy1 wpan1: encryption failed: -22 [ 502.057751][T17718] netlink: 'syz.3.5841': attribute type 1 has an invalid length. [ 502.076035][T17718] netlink: 76 bytes leftover after parsing attributes in process `syz.3.5841'. [ 502.257055][T17726] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 502.304787][T17726] overlayfs: missing 'lowerdir' [ 504.822673][T17811] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5882'. [ 505.081542][T17828] netlink: 'syz.5.5890': attribute type 6 has an invalid length. [ 505.209289][T17836] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 505.347398][T17836] overlayfs: missing 'lowerdir' [ 506.787737][T17879] netlink: 32 bytes leftover after parsing attributes in process `syz.2.5914'. [ 507.471897][T17926] netlink: 188 bytes leftover after parsing attributes in process `syz.0.5933'. [ 508.876462][T17986] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 511.029650][T18055] overlayfs: missing 'lowerdir' [ 511.337394][T18072] netlink: 48 bytes leftover after parsing attributes in process `syz.0.6002'. [ 616.536740][ C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 616.543750][ C1] rcu: 0-...!: (1 GPs behind) idle=823/1/0x4000000000000000 softirq=54411/54417 fqs=5 [ 616.555636][ C1] (detected by 1, t=10502 jiffies, g=69525, q=149) [ 616.562265][ C1] Sending NMI from CPU 1 to CPUs 0: [ 616.567500][ C0] NMI backtrace for cpu 0 [ 616.567513][ C0] CPU: 0 PID: 18079 Comm: syz.0.6006 Not tainted syzkaller #0 [ 616.567530][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 616.567550][ C0] RIP: 0010:__lock_acquire+0xe1/0x7c60 [ 616.567590][ C0] Code: d0 69 8d 48 c1 e8 03 42 0f b6 04 00 84 c0 0f 85 2f 65 00 00 83 3d d2 d0 0d 0c 00 0f 84 a8 27 00 00 83 3d a1 b9 a2 0a 00 74 29 <48> 89 d8 48 c1 e8 03 42 80 3c 00 00 74 12 48 89 df e8 19 34 60 00 [ 616.567606][ C0] RSP: 0018:ffffc90000007860 EFLAGS: 00000002 [ 616.567620][ C0] RAX: 0000000000000000 RBX: ffffffff96350d98 RCX: 1ffff92000000f30 [ 616.567634][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff96350d98 [ 616.567645][ C0] RBP: ffffc90000007ab0 R08: dffffc0000000000 R09: 0000000000000001 [ 616.567657][ C0] R10: fffffbfff1ad33a6 R11: 1ffffffff1ad33a5 R12: 0000000000000001 [ 616.567669][ C0] R13: ffff88805b3e1dc0 R14: 0000000000000000 R15: 0000000000000001 [ 616.567680][ C0] FS: 00005555642ea500(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000 [ 616.567696][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 616.567708][ C0] CR2: 0000001b3241aff8 CR3: 0000000029160000 CR4: 00000000003506f0 [ 616.567723][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 616.567733][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 616.567743][ C0] Call Trace: [ 616.567750][ C0] [ 616.567760][ C0] ? mark_lock+0x94/0x320 [ 616.567780][ C0] ? mark_lock+0x94/0x320 [ 616.567799][ C0] ? __lock_acquire+0x13ad/0x7c60 [ 616.567824][ C0] ? verify_lock_unused+0x140/0x140 [ 616.567843][ C0] ? try_to_wake_up+0x69d/0x1050 [ 616.567865][ C0] ? verify_lock_unused+0x140/0x140 [ 616.567884][ C0] ? verify_lock_unused+0x140/0x140 [ 616.567908][ C0] lock_acquire+0x197/0x3f0 [ 616.567926][ C0] ? debug_object_activate+0x65/0x480 [ 616.567953][ C0] ? read_lock_is_recursive+0x10/0x10 [ 616.567975][ C0] ? do_raw_spin_lock+0x11d/0x280 [ 616.567993][ C0] _raw_spin_lock_irqsave+0xa4/0xf0 [ 616.568012][ C0] ? debug_object_activate+0x65/0x480 [ 616.568031][ C0] ? _raw_spin_lock+0x40/0x40 [ 616.568051][ C0] debug_object_activate+0x65/0x480 [ 616.568070][ C0] ? _raw_spin_lock_irqsave+0xf0/0xf0 [ 616.568088][ C0] enqueue_hrtimer+0x30/0x370 [ 616.568110][ C0] __hrtimer_run_queues+0x65a/0xc40 [ 616.568133][ C0] ? taprio_free_sched_cb+0x190/0x190 [ 616.568159][ C0] ? hrtimer_interrupt+0x8d0/0x8d0 [ 616.568178][ C0] ? ktime_get_update_offsets_now+0x3ce/0x3e0 [ 616.568199][ C0] hrtimer_interrupt+0x3bb/0x8d0 [ 616.568228][ C0] __sysvec_apic_timer_interrupt+0x137/0x4a0 [ 616.568247][ C0] sysvec_apic_timer_interrupt+0x9b/0xc0 [ 616.568269][ C0] [ 616.568273][ C0] [ 616.568278][ C0] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 616.568303][ C0] RIP: 0010:__sanitizer_cov_trace_cmp8+0x32/0x80 [ 616.568322][ C0] Code: c4 a1 8a 7e 65 8b 15 c5 a1 8a 7e 81 e2 00 01 ff 00 74 11 81 fa 00 01 00 00 75 57 83 b9 34 16 00 00 00 74 4e 8b 91 10 16 00 00 <83> fa 03 75 43 48 8b 91 18 16 00 00 44 8b 89 14 16 00 00 49 c1 e1 [ 616.568336][ C0] RSP: 0018:ffffc9000338fca8 EFLAGS: 00000246 [ 616.568351][ C0] RAX: ffffffff81356757 RBX: 000000002a433c00 RCX: ffff88805b3e1dc0 [ 616.568363][ C0] RDX: 0000000000000000 RSI: ffff8880aa433c00 RDI: 000000002a433c00 [ 616.568375][ C0] RBP: dffffc0000000000 R08: dffffc0000000000 R09: fffffbfff1ff7c2e [ 616.568388][ C0] R10: fffffbfff1ff7c2e R11: 1ffffffff1ff7c2d R12: ffff8881429bba00 [ 616.568400][ C0] R13: ffff88802a433c00 R14: ffff8880aa433c00 R15: ffff8881429bba00 [ 616.568417][ C0] ? __phys_addr+0x47/0x170 [ 616.568436][ C0] __phys_addr+0x47/0x170 [ 616.568451][ C0] kmem_cache_free+0x38/0x210 [ 616.568471][ C0] __sk_destruct+0x569/0x840 [ 616.568491][ C0] inet_release+0x139/0x180 [ 616.568513][ C0] sock_close+0xd5/0x240 [ 616.568533][ C0] ? sock_mmap+0x90/0x90 [ 616.568550][ C0] __fput+0x234/0x930 [ 616.568574][ C0] task_work_run+0x125/0x1a0 [ 616.568597][ C0] exit_to_user_mode_loop+0x10f/0x130 [ 616.568619][ C0] exit_to_user_mode_prepare+0xee/0x180 [ 616.568639][ C0] syscall_exit_to_user_mode+0x16/0x40 [ 616.568657][ C0] do_syscall_64+0x58/0xa0 [ 616.568673][ C0] ? clear_bhb_loop+0x30/0x80 [ 616.568689][ C0] ? clear_bhb_loop+0x30/0x80 [ 616.568706][ C0] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 616.568723][ C0] RIP: 0033:0x7f08a4e8c6c9 [ 616.568743][ C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 616.568756][ C0] RSP: 002b:00007fffdf949088 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 616.568773][ C0] RAX: 0000000000000000 RBX: 000000000007cd67 RCX: 00007f08a4e8c6c9 [ 616.568784][ C0] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 616.568794][ C0] RBP: 00007f08a50e4da0 R08: 0000000000000001 R09: 0000000ddf94937f [ 616.568805][ C0] R10: 0000001b31220000 R11: 0000000000000246 R12: 00007f08a50e2fac [ 616.568817][ C0] R13: 00007f08a50e2fa0 R14: ffffffffffffffff R15: 00007fffdf9491a0 [ 616.568836][ C0] [ 616.569494][ C1] rcu: rcu_preempt kthread starved for 10492 jiffies! g69525 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 617.077076][ C1] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 617.087057][ C1] rcu: RCU grace-period kthread stack dump: [ 617.092965][ C1] task:rcu_preempt state:R running task stack:27584 pid: 15 ppid: 2 flags:0x00004000 [ 617.103856][ C1] Call Trace: [ 617.107148][ C1] [ 617.110104][ C1] __schedule+0x11bb/0x4390 [ 617.114646][ C1] ? _raw_spin_lock_irqsave+0x7f/0xf0 [ 617.120043][ C1] ? _raw_spin_unlock_irqrestore+0x82/0x100 [ 617.125957][ C1] ? _raw_spin_unlock_irqrestore+0xaa/0x100 [ 617.131873][ C1] ? _raw_spin_unlock+0x40/0x40 [ 617.136752][ C1] ? rcu_is_watching+0x11/0xa0 [ 617.141531][ C1] ? release_firmware_map_entry+0x190/0x190 [ 617.147462][ C1] schedule+0x11b/0x1e0 [ 617.151639][ C1] schedule_timeout+0x15c/0x280 [ 617.156509][ C1] ? console_conditional_schedule+0x40/0x40 [ 617.162424][ C1] ? _raw_spin_unlock_irqrestore+0x82/0x100 [ 617.168459][ C1] ? update_process_times+0x200/0x200 [ 617.173873][ C1] ? prepare_to_swait_event+0x331/0x350 [ 617.179462][ C1] rcu_gp_fqs_loop+0x29e/0x11b0 [ 617.184342][ C1] ? dyntick_save_progress_counter+0x230/0x230 [ 617.190522][ C1] ? rcu_gp_init+0x10e0/0x10e0 [ 617.195835][ C1] ? _raw_spin_unlock_irq+0x1f/0x40 [ 617.201059][ C1] ? lockdep_hardirqs_on+0x94/0x140 [ 617.206280][ C1] rcu_gp_kthread+0x98/0x350 [ 617.210898][ C1] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 617.216055][ C1] ? _raw_spin_unlock_irqrestore+0xaa/0x100 [ 617.221971][ C1] ? __kthread_parkme+0x157/0x1b0 [ 617.227021][ C1] kthread+0x436/0x520 [ 617.231107][ C1] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 617.236242][ C1] ? kthread_blkcg+0xd0/0xd0 [ 617.240851][ C1] ret_from_fork+0x1f/0x30 [ 617.245310][ C1] [ 617.248339][ C1] rcu: Stack dump where RCU GP kthread last ran: [ 617.254668][ C1] NMI backtrace for cpu 1 [ 617.259006][ C1] CPU: 1 PID: 21 Comm: kworker/1:0 Not tainted syzkaller #0 [ 617.266300][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 617.276370][ C1] Workqueue: events fqdir_free_fn [ 617.281430][ C1] Call Trace: [ 617.284734][ C1] [ 617.287600][ C1] dump_stack_lvl+0x168/0x230 [ 617.292326][ C1] ? show_regs_print_info+0x20/0x20 [ 617.297564][ C1] ? load_image+0x3b0/0x3b0 [ 617.302127][ C1] ? irq_work_queue+0xbf/0x140 [ 617.307032][ C1] nmi_cpu_backtrace+0x397/0x3d0 [ 617.312002][ C1] ? nmi_trigger_cpumask_backtrace+0x280/0x280 [ 617.318178][ C1] ? _printk+0xcc/0x110 [ 617.322354][ C1] ? cpu_online+0x1d/0x30 [ 617.326701][ C1] ? load_image+0x3b0/0x3b0 [ 617.331224][ C1] ? arch_trigger_cpumask_backtrace+0x10/0x10 [ 617.337312][ C1] nmi_trigger_cpumask_backtrace+0x163/0x280 [ 617.343312][ C1] rcu_check_gp_kthread_starvation+0x1cd/0x250 [ 617.349570][ C1] print_other_cpu_stall+0x10c8/0x1220 [ 617.355055][ C1] ? print_cpu_stall+0x5f0/0x5f0 [ 617.360006][ C1] ? timekeeping_advance+0x7f6/0xac0 [ 617.365315][ C1] ? __lock_acquire+0x7c60/0x7c60 [ 617.370369][ C1] rcu_sched_clock_irq+0x831/0x1110 [ 617.375593][ C1] ? rcutree_dead_cpu+0x20/0x20 [ 617.380465][ C1] ? account_process_tick+0x227/0x3a0 [ 617.385863][ C1] update_process_times+0x193/0x200 [ 617.391085][ C1] tick_sched_timer+0x37d/0x560 [ 617.395975][ C1] __hrtimer_run_queues+0x4fe/0xc40 [ 617.401202][ C1] ? tick_setup_sched_timer+0x2c0/0x2c0 [ 617.406781][ C1] ? hrtimer_interrupt+0x8d0/0x8d0 [ 617.411910][ C1] ? ktime_get_update_offsets_now+0x3ce/0x3e0 [ 617.418017][ C1] hrtimer_interrupt+0x3bb/0x8d0 [ 617.423124][ C1] __sysvec_apic_timer_interrupt+0x137/0x4a0 [ 617.429142][ C1] sysvec_apic_timer_interrupt+0x9b/0xc0 [ 617.434803][ C1] [ 617.437750][ C1] [ 617.440695][ C1] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 617.446708][ C1] RIP: 0010:smp_call_function_single+0x212/0x490 [ 617.453067][ C1] Code: 48 44 89 f6 83 e6 01 31 ff e8 ca 5e 0b 00 41 83 e6 01 49 bc 00 00 00 00 00 fc ff df 75 0a e8 55 5b 0b 00 e9 a3 00 00 00 f3 90 44 24 48 01 00 00 00 0f 84 8e 00 00 00 e8 3b 5b 0b 00 eb e9 e8 [ 617.472690][ C1] RSP: 0018:ffffc90000db7a40 EFLAGS: 00000293 [ 617.478864][ C1] RAX: ffffffff816c70d5 RBX: 0000000000000000 RCX: ffff888016a81dc0 [ 617.486854][ C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 617.494834][ C1] RBP: ffffc90000db7b30 R08: dffffc0000000000 R09: ffffed1017207681 [ 617.502824][ C1] R10: ffffed1017207681 R11: 1ffff11017207680 R12: dffffc0000000000 [ 617.510810][ C1] R13: 0000000000000001 R14: 0000000000000001 R15: 1ffff920001b6f4c [ 617.518802][ C1] ? smp_call_function_single+0x225/0x490 [ 617.524550][ C1] ? rcu_rdp_is_offloaded+0x180/0x180 [ 617.529938][ C1] ? flush_smp_call_function_from_idle+0x230/0x230 [ 617.536462][ C1] ? rcu_rdp_is_offloaded+0x180/0x180 [ 617.541852][ C1] ? rcu_read_lock_bh_held+0xe0/0xe0 [ 617.547167][ C1] rcu_barrier+0x25d/0x4b0 [ 617.551604][ C1] ? cond_synchronize_rcu+0x20/0x20 [ 617.556817][ C1] ? read_lock_is_recursive+0x10/0x10 [ 617.562205][ C1] ? _raw_spin_unlock_irqrestore+0xaa/0x100 [ 617.568116][ C1] ? _raw_spin_unlock+0x40/0x40 [ 617.572987][ C1] fqdir_free_fn+0x2f/0x130 [ 617.577516][ C1] process_one_work+0x863/0x1000 [ 617.582484][ C1] ? worker_detach_from_pool+0x240/0x240 [ 617.588132][ C1] ? lockdep_hardirqs_off+0x70/0x100 [ 617.593964][ C1] ? _raw_spin_lock_irq+0xab/0xe0 [ 617.599066][ C1] ? _raw_spin_lock_irqsave+0xf0/0xf0 [ 617.604458][ C1] ? wq_worker_running+0x97/0x170 [ 617.609590][ C1] worker_thread+0xaa8/0x12a0 [ 617.614309][ C1] kthread+0x436/0x520 [ 617.618389][ C1] ? rcu_lock_release+0x20/0x20 [ 617.623250][ C1] ? kthread_blkcg+0xd0/0xd0 [ 617.627857][ C1] ret_from_fork+0x1f/0x30 [ 617.632317][ C1]