last executing test programs: 18.255878055s ago: executing program 4 (id=1743): sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) socketpair(0x1e, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff}) sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000001440)={&(0x7f0000001200), 0xc, &(0x7f0000001400)={0x0, 0x124}}, 0x0) sendmmsg$alg(r3, &(0x7f0000001340)=[{0x0, 0x0, 0x0}], 0x7, 0x0) 14.703907041s ago: executing program 4 (id=1755): socket$nl_generic(0x10, 0x3, 0x10) socket$netlink(0x10, 0x3, 0x4) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000480)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, &(0x7f0000000080)=0x1000) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="60000000020601160000000000000000000000001c0007800500140007000400080012400005000008000840000000000900020073797a300000002005000100070000000c000300686173683a697000050005000a000000050004"], 0x60}}, 0x0) 11.900830681s ago: executing program 1 (id=1765): sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) socketpair(0x1e, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff}) sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000001440)={&(0x7f0000001200), 0xc, &(0x7f0000001400)={0x0, 0x124}}, 0x0) sendmmsg$alg(r3, &(0x7f0000001340)=[{0x0, 0x0, 0x0}], 0x7, 0x0) 10.32805933s ago: executing program 3 (id=1767): sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x126}}, 0x0) r0 = syz_io_uring_setup(0x24fa, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x1, 0x2c3}, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8'], 0x38}}, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r3, &(0x7f0000000180)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0) syz_io_uring_submit(r1, r2, 0x0) io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0) 9.518320895s ago: executing program 3 (id=1769): io_uring_setup(0x310f, &(0x7f0000000280)={0x0, 0x32a7, 0x8000, 0xfffffffe, 0x2000}) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) socket(0x10, 0x3, 0x0) socket$packet(0x11, 0x3, 0x300) socketpair$unix(0x1, 0x2, 0x0, 0x0) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000180), 0x4) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) socketpair$unix(0x1, 0x5, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) ptrace$peeksig(0x4209, 0x0, 0x0, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) close(r0) r2 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r2, 0xfffffffc) r3 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) sendto$inet(r3, &(0x7f00000000c0)="1c", 0x10002, 0x0, 0x0, 0x0) dup(0xffffffffffffffff) 9.14298928s ago: executing program 4 (id=1771): socket$inet_udp(0x2, 0x2, 0x0) socket$packet(0x11, 0x3, 0x300) socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)) syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) socket$rds(0x15, 0x5, 0x0) openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x41, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba5d8200000af74591b1ffccc2ffffff00"}) syz_open_pts(r0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) socket$packet(0x11, 0x3, 0x300) socket$nl_xfrm(0x10, 0x3, 0x6) socket$nl_route(0x10, 0x3, 0x0) socket(0x1, 0x803, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r3 = syz_open_dev$sg(&(0x7f0000000440), 0x0, 0x181801) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000100)) ioctl$SCSI_IOCTL_SEND_COMMAND(r3, 0x1, &(0x7f0000000000)=ANY=[@ANYRES64=r3, @ANYRES16=r3]) 8.801764157s ago: executing program 3 (id=1774): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000340)=ANY=[@ANYBLOB="1200000002000000080000000200000000000000", @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000c7", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc6f, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000400)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) setsockopt$bt_l2cap_L2CAP_OPTIONS(r4, 0x6, 0x1, &(0x7f00000000c0)={0x0, 0x6, 0x4, 0x9, 0xfb, 0x8, 0x501}, 0xc) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r5}, 0x10) pipe2$watch_queue(&(0x7f0000001180)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) r8 = add_key(&(0x7f0000000000)='id_resolver\x00', &(0x7f0000000100)={'syz', 0x3}, &(0x7f0000000080)="f8", 0x1, 0xfffffffffffffffe) keyctl$KEYCTL_WATCH_KEY(0x20, r8, r6, 0x0) pipe2$watch_queue(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) keyctl$KEYCTL_WATCH_KEY(0x20, r8, r9, 0x81) keyctl$KEYCTL_WATCH_KEY(0x20, r8, r7, 0xffffffffffffffff) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) r10 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_inet_SIOCSIFFLAGS(r10, 0x8914, &(0x7f0000000100)={'nr0\x00', 0x2}) connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000100), 0x4) close_range(r10, r7, 0x2) socket$nl_netfilter(0x10, 0x3, 0xc) 8.108217293s ago: executing program 4 (id=1776): r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002078316e00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000006000000850000000500000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x8d41, 0x43) flock(r2, 0x5) r3 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0) flock(r3, 0x2) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) 7.217945771s ago: executing program 3 (id=1777): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0, 0x0, 0xfffffffffffffffe}, 0x18) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7) r1 = getpid() sendmsg$AUDIT_USER(0xffffffffffffffff, 0x0, 0x10000000) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r4 = syz_init_net_socket$x25(0x9, 0x5, 0x0) listen(r4, 0x0) ioctl$SIOCX25SDTEFACILITIES(r4, 0x89eb, &(0x7f0000000180)={0xfffd, 0x101, 0x100, 0x0, 0x4, 0x18, 0x36, "e75867a0aa45de1500", "39e8799918f836f17fc65c8b001f00"}) 6.897927289s ago: executing program 2 (id=1780): socket$inet_tcp(0x2, 0x1, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x40000006) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002) ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f00000000c0)={0xc}) ioctl$IOMMU_IOAS_UNMAP$ALL(0xffffffffffffffff, 0x3b86, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x10, 0x4, 0x8, 0x7, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000e00)={{r2}, &(0x7f0000000d80), &(0x7f0000000dc0)=r3}, 0x20) 6.255784939s ago: executing program 4 (id=1781): socket$nl_generic(0x10, 0x3, 0x10) socket$netlink(0x10, 0x3, 0x4) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000480)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) getpid() socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, &(0x7f0000000080)=0x1000) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="60000000020601160000000000000000000000001c0007800500140007000400080012400005000008000840000000000900020073797a300000002005000100070000000c000300686173683a697000050005000a000000050004"], 0x60}}, 0x0) 4.875861019s ago: executing program 1 (id=1784): io_uring_setup(0x310f, &(0x7f0000000280)={0x0, 0x32a7, 0x8000, 0xfffffffe, 0x2000}) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) socket(0x10, 0x3, 0x0) socket$packet(0x11, 0x3, 0x300) socketpair$unix(0x1, 0x2, 0x0, 0x0) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000180), 0x4) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) socketpair$unix(0x1, 0x5, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) ptrace$peeksig(0x4209, 0x0, 0x0, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) close(r0) r2 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r2, 0xfffffffc) r3 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) sendto$inet(r3, &(0x7f00000000c0)="1c", 0x10002, 0x0, 0x0, 0x0) dup(0xffffffffffffffff) 4.816066604s ago: executing program 0 (id=1785): r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002) r1 = fcntl$dupfd(r0, 0x406, r0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000400)={0x53, 0xfffffffffffffffd, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="672d6a44b036", 0x0, 0x0, 0x0, 0x0, 0x0}) write$tun(r1, &(0x7f0000000400)=ANY=[], 0xa2) readv(r1, &(0x7f0000003680)=[{&(0x7f0000001500)=""/215, 0xd7}], 0x3f) 4.797861316s ago: executing program 2 (id=1786): socket$inet_udp(0x2, 0x2, 0x0) socket$packet(0x11, 0x3, 0x300) socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)) syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) socket$rds(0x15, 0x5, 0x0) openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x41, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba5d8200000af74591b1ffccc2ffffff00"}) syz_open_pts(r0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) socket$packet(0x11, 0x3, 0x300) socket$nl_xfrm(0x10, 0x3, 0x6) socket$nl_route(0x10, 0x3, 0x0) socket(0x1, 0x803, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r3 = syz_open_dev$sg(&(0x7f0000000440), 0x0, 0x181801) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000100)) ioctl$SCSI_IOCTL_SEND_COMMAND(r3, 0x1, &(0x7f0000000000)=ANY=[@ANYRES64=r3, @ANYRES16=r3]) 4.457253434s ago: executing program 0 (id=1787): socket$nl_route(0x10, 0x3, 0x0) r0 = socket(0x10, 0x803, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0xffffffffffffff34, &(0x7f0000000080)={0x0, 0xb8}}, 0x0) getsockname$packet(r0, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x3c) sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r2, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0) r3 = socket$inet(0x2, 0x3, 0x2) setsockopt$inet_mreqsrc(r3, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local}, 0xc) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x10, 0x803, 0x4) sendmsg$nl_route(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20088814}, 0x0) r6 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VIDIOC_DQBUF(r6, 0xc0585611, &(0x7f0000000140)=@multiplanar_userptr={0x200, 0x0, 0x4, 0x2, 0x5c, {0x0, 0x2710}, {0x5, 0x2, 0x7, 0x58, 0x29, 0x9, "4be82c3e"}, 0x8, 0x2, {0x0}, 0xc7}) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14) sendmsg$nl_route_sched(r4, &(0x7f0000000280)={0x0, 0x7400, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r7}}, 0x24}}, 0x0) 4.055258553s ago: executing program 1 (id=1788): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000340)=ANY=[@ANYBLOB="1200000002000000080000000200000000000000", @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000c7", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc6f, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000400)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) setsockopt$bt_l2cap_L2CAP_OPTIONS(r5, 0x6, 0x1, &(0x7f00000000c0)={0x0, 0x6, 0x4, 0x9, 0xfb, 0x8, 0x501}, 0xc) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r6}, 0x10) pipe2$watch_queue(&(0x7f0000001180)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) r9 = add_key(&(0x7f0000000000)='id_resolver\x00', &(0x7f0000000100)={'syz', 0x3}, &(0x7f0000000080)="f8", 0x1, 0xfffffffffffffffe) keyctl$KEYCTL_WATCH_KEY(0x20, r9, r7, 0x0) pipe2$watch_queue(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) keyctl$KEYCTL_WATCH_KEY(0x20, r9, r10, 0x81) keyctl$KEYCTL_WATCH_KEY(0x20, r9, r8, 0xffffffffffffffff) setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) r11 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_inet_SIOCSIFFLAGS(r11, 0x8914, &(0x7f0000000100)={'nr0\x00', 0x2}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000000c0)={r0, &(0x7f0000000440)="8e22d859282e8a9ebd7618ffd07b7709e6f3e74934bf05e1d97bfd8de85f063efd0cbf29238c0463cef3fd1a0431bc9269de5147a99c4a9637b277edd1b2dd9398e3130aae9d5518c3b4e038c7eb36a324251c1909d056d4651e838e866c5303f2f0f927c8d39543669913777524a89baa0dc752785a213f6f75e7909d892b8039a27404e26ad41808cd2e02c0704eab5f4893b7732326047fcf06e6afab1dd6f834672fdb501b9affc941fef7baf16c971a88f3d8223abd698253625722afd3e14c843443f12142b1da7790d1a3c107c1501b5ce9263d", &(0x7f0000000300)=@udp6=r8}, 0x20) setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000100), 0x4) close_range(r11, r8, 0x2) socket$nl_netfilter(0x10, 0x3, 0xc) 3.879239031s ago: executing program 2 (id=1789): socket$inet6_sctp(0xa, 0x1, 0x84) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000200)=0x0) sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x2) sched_setaffinity(0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) poll(&(0x7f0000000040)=[{}], 0x1, 0x9) r2 = syz_open_procfs(0x0, &(0x7f00000023c0)='net/tcp\x00') read$FUSE(r2, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) 2.935969993s ago: executing program 2 (id=1790): bpf$PROG_LOAD(0x5, 0x0, 0x0) fchdir(0xffffffffffffffff) openat$dir(0xffffffffffffff9c, 0x0, 0x40, 0x0) r0 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) bind$inet(0xffffffffffffffff, &(0x7f0000000340)={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10) write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0) r3 = fsopen(&(0x7f00000000c0)='nilfs2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r3, 0x8, 0x0, 0x0, 0x0) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={0xffffffffffffffff, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x20ffc000, 0x0, 0x1}}, 0x3c) ioctl$NBD_SET_SOCK(r0, 0xab00, 0xffffffffffffffff) inotify_init1(0x0) inotify_init1(0x0) 2.897565285s ago: executing program 1 (id=1791): r0 = syz_init_net_socket$llc(0x1a, 0x801, 0x0) bind$llc(r0, &(0x7f0000000000)={0x1a, 0x100, 0x0, 0x0, 0x81, 0x42}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r2, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6) write$sysctl(0xffffffffffffffff, &(0x7f0000000000)='1\x00', 0x2) write$binfmt_misc(r2, &(0x7f0000000000), 0xd) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0) mount(&(0x7f0000000100)=@nullb, &(0x7f0000000040)='./file1\x00', &(0x7f00000001c0)='gfs2\x00', 0x0, 0x0) connect$llc(r0, 0x0, 0x0) bind$llc(0xffffffffffffffff, 0x0, 0x0) r3 = socket$inet6_sctp(0xa, 0x1, 0x84) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0) sendmsg$NFT_BATCH(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[], 0x88}}, 0x4000) setsockopt(r3, 0x84, 0x80, &(0x7f00000002c0), 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x4, &(0x7f0000000000), 0x0) 2.792821348s ago: executing program 3 (id=1792): r0 = socket$kcm(0x1e, 0x5, 0x0) r1 = socket(0x10, 0x80803, 0x0) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=ANY=[@ANYBLOB="1c0000005e00010200000000", @ANYRES32=0x0, @ANYRESOCT], 0x1c}, 0x1, 0x0, 0x0, 0x90}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) r3 = syz_io_uring_setup(0x497, &(0x7f0000000400)={0x0, 0x7079, 0x0, 0x4, 0x316}, &(0x7f0000000340)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0xe99463fa92bd03a8, 0x0, 0x0, 0x4) syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}) io_uring_enter(r3, 0x3516, 0x0, 0x0, 0x0, 0x0) r6 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000380), 0x1, 0x0) ioctl$PPPIOCNEWUNIT(r6, 0xc004743e, &(0x7f00000003c0)) recvmmsg(r1, &(0x7f0000001bc0)=[{{0x0, 0x0, 0x0}}], 0x7, 0x0, 0x0) sendmsg$kcm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000300)="80", 0x1}], 0x1}, 0x24800) ioctl$EVIOCGPROP(0xffffffffffffffff, 0x80404509, &(0x7f0000000040)=""/49) unshare(0x8040600) r7 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000084102, 0x0) fadvise64(r7, 0x8000000000000604, 0x1000000, 0x4) 2.73574732s ago: executing program 0 (id=1793): sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) fsopen(0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002) setsockopt$CAIFSO_REQ_PARAM(0xffffffffffffffff, 0x116, 0x80, &(0x7f0000000040), 0x0) epoll_create(0x207ffd) lseek(0xffffffffffffffff, 0x7fffffffffffffff, 0x0) accept4$vsock_stream(r1, &(0x7f00000003c0)={0x28, 0x0, 0x2710, @local}, 0x10, 0x80800) r3 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382) r4 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15) r2 = dup(r1) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8000000, @void, @value}, 0x94) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENTPLUS(r2, &(0x7f0000000400)=ANY=[@ANYBLOB="b0000000000000ab"], 0xb0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}}) 1.23973403s ago: executing program 0 (id=1795): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r0, &(0x7f0000000200), 0x806000) socket$netlink(0x10, 0x3, 0x14) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) socket$kcm(0xa, 0x5, 0x0) r2 = socket$inet_dccp(0x2, 0x6, 0x0) setsockopt(r2, 0x800000010d, 0x2, &(0x7f0000000080)="922b22c06d1ff7de1259c2df5ae341dbac30653a130057a4cddc7c7e153f6c8fa49896613e0dbe5e8183be97ea9486821fa12ed926f35a8b42e55079654448773f4dff0000000000000000", 0x13) getsockopt$inet_int(r2, 0x10d, 0x2, &(0x7f0000000200), &(0x7f0000000280)=0x1c) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b70200"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) ioctl$IMCTRLREQ(r4, 0x80044945, &(0x7f00000001c0)={0x0, 0xa, 0x7, 0x17d2}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r4}, 0x18) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[], 0x0, 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x5, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1004c, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffb5, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x43, @value}, 0x90) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.sectors\x00', 0x26e1, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) r6 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), 0xffffffffffffffff) sendmsg$NLBL_CIPSOV4_C_LIST(r1, &(0x7f0000000180)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f0000000c00)={0xac, r6, 0x800, 0x70bd2c, 0x25dfdbfe, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x4}, @NLBL_CIPSOV4_A_TAGLST={0x34, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x6}, {0x5, 0x3, 0x5}, {0x5}, {0x5, 0x3, 0x5}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x1}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x20, 0x8, 0x0, 0x1, [{0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5bdf9356}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x3c}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4c9a8059}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MLSCATLST={0x30, 0xc, 0x0, 0x1, [{0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6aff5695}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1b6b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3c54d652}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7705cfa2}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x462c}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}]}, 0xac}, 0x1, 0x0, 0x0, 0x2004811}, 0x40000) r7 = syz_init_net_socket$rose(0xb, 0x5, 0x0) pselect6(0x40, &(0x7f0000000240)={0x3ff, 0x4, 0x1, 0x0, 0x5, 0xffffffff, 0x2}, &(0x7f0000000300)={0x4de, 0x7, 0x0, 0x2, 0x5, 0x2, 0x3, 0xaf7}, &(0x7f00000003c0)={0x1, 0x8, 0xb6, 0x735, 0x6, 0x0, 0x9, 0x4}, &(0x7f0000000400)={0x77359400}, &(0x7f0000000780)={&(0x7f0000000740)={[0x3]}, 0x8}) ioctl$sock_rose_SIOCADDRT(r7, 0x890b, &(0x7f0000000000)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x7, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bpq0, 0x7, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}) ioctl$FS_IOC_RESVSP(r0, 0x40305829, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x9ffffc}) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, 0xffffffffffffffff, 0x7ca8e000) writev(r0, &(0x7f0000000080)=[{0x0}], 0x1) 941.222214ms ago: executing program 4 (id=1796): sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) socketpair(0x1e, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff}) sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000001440)={&(0x7f0000001200), 0xc, &(0x7f0000001400)={0x0, 0x124}}, 0x0) sendmmsg$alg(r3, &(0x7f0000001340)=[{0x0, 0x0, 0x0}], 0x7, 0x0) 835.800388ms ago: executing program 1 (id=1797): r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002) r1 = fcntl$dupfd(r0, 0x406, r0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000400)={0x53, 0xfffffffffffffffd, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="672d6a44b036", 0x0, 0x0, 0x0, 0x0, 0x0}) write$tun(r1, &(0x7f0000000400)=ANY=[], 0xa2) readv(r1, &(0x7f0000003680)=[{&(0x7f0000001500)=""/215, 0xd7}], 0x3f) 834.119876ms ago: executing program 2 (id=1798): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) fremovexattr(0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(0x0, 0x0, 0x0) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) syz_usb_disconnect(r0) add_key(&(0x7f0000000280)='rxrpc\x00', 0x0, 0x0, 0x0, 0xffffffffffffffff) r2 = syz_usb_connect(0x5, 0x24, &(0x7f0000000740)={{0x12, 0x1, 0x0, 0xed, 0x3e, 0xc9, 0x8, 0xccd, 0xb3, 0x2dee, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xb0, 0x87, 0x1d}}]}}]}}, 0x0) ioctl$EVIOCRMFF(r0, 0x550c, 0x0) gettid() syz_usb_control_io$uac1(r2, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r2, 0x0, &(0x7f0000000140)={0x1c, &(0x7f0000000100)=ANY=[@ANYRES16=r1], 0x0, 0x0}) syz_usb_control_io(r2, 0x0, &(0x7f0000000900)={0x84, &(0x7f0000000040)=ANY=[@ANYBLOB="001600080000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001340)=ANY=[], 0xbc}}, 0x0) 703.94996ms ago: executing program 3 (id=1799): r0 = socket$inet6(0xa, 0x3, 0x1) r1 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000080), 0x2800, 0x0) ioctl$SNDCTL_DSP_SYNC(r1, 0x5001, 0x0) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) pipe(0x0) close(0xffffffffffffffff) socket$inet6(0xa, 0x3, 0x26) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(0xffffffffffffffff, 0xc0045540, &(0x7f0000000000)=0x7) socket$kcm(0x29, 0x2, 0x0) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) connect$bt_l2cap(r2, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe) r3 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6) ioctl$sock_bt_hidp_HIDPCONNADD(r3, 0x400448c8, 0x0) syz_io_uring_setup(0x3d0b, &(0x7f0000001240)={0x0, 0x978b, 0x1000, 0x0, 0x296}, &(0x7f0000000140), 0x0) mq_open(&(0x7f0000001bc0)='security.selinux\x00', 0x8c0, 0x1, 0x0) r4 = syz_io_uring_setup(0x66e, &(0x7f0000000240)={0x0, 0x0, 0x10100}, &(0x7f0000000380)=0x0, &(0x7f0000000200)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27}) io_uring_enter(r4, 0x567, 0x0, 0x0, 0x0, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000340)={{{@in=@local, @in=@rand_addr=0x64010101, 0xfffe, 0x0, 0xfffd, 0x400, 0xa}, {0x4, 0x0, 0xfffffffffffffffc, 0x0, 0xfffffffffffffffc, 0x0, 0x200000000000000}, {0xfffffffffffffffe, 0xfffffffffffffffd}, 0x40000, 0x0, 0x1}, {{@in=@dev={0xac, 0x14, 0x14, 0x33}, 0xfffffffd, 0x33}, 0x0, @in6=@dev={0xfe, 0x80, '\x00', 0x6}, 0x3501, 0x4, 0x0, 0x9}}, 0xe4) socket$kcm(0x29, 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000040)=0x8) 703.253048ms ago: executing program 0 (id=1800): socket$inet6_sctp(0xa, 0x1, 0x84) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000200)=0x0) sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x2) sched_setaffinity(0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) poll(&(0x7f0000000040)=[{}], 0x1, 0x9) r2 = syz_open_procfs(0x0, &(0x7f00000023c0)='net/tcp\x00') read$FUSE(r2, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) 123.773448ms ago: executing program 1 (id=1801): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000340)=ANY=[@ANYBLOB="1200000002000000080000000200000000000000", @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000c7", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc6f, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000400)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) setsockopt$bt_l2cap_L2CAP_OPTIONS(r5, 0x6, 0x1, &(0x7f00000000c0)={0x0, 0x6, 0x4, 0x9, 0xfb, 0x8, 0x501}, 0xc) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r6}, 0x10) pipe2$watch_queue(&(0x7f0000001180)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) r9 = add_key(&(0x7f0000000000)='id_resolver\x00', &(0x7f0000000100)={'syz', 0x3}, &(0x7f0000000080)="f8", 0x1, 0xfffffffffffffffe) keyctl$KEYCTL_WATCH_KEY(0x20, r9, r7, 0x0) pipe2$watch_queue(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) keyctl$KEYCTL_WATCH_KEY(0x20, r9, r10, 0x81) keyctl$KEYCTL_WATCH_KEY(0x20, r9, r8, 0xffffffffffffffff) setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) r11 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_inet_SIOCSIFFLAGS(r11, 0x8914, &(0x7f0000000100)={'nr0\x00', 0x2}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000000c0)={r0, &(0x7f0000000440)="8e22d859282e8a9ebd7618ffd07b7709e6f3e74934bf05e1d97bfd8de85f063efd0cbf29238c0463cef3fd1a0431bc9269de5147a99c4a9637b277edd1b2dd9398e3130aae9d5518c3b4e038c7eb36a324251c1909d056d4651e838e866c5303f2f0f927c8d39543669913777524a89baa0dc752785a213f6f75e7909d892b8039a27404e26ad41808cd2e02c0704eab5f4893b7732326047fcf06e6afab1dd6f834672fdb501b9affc941fef7baf16c971a88f3d8223abd698253625722afd3e14c843443f12142b1da7790d1a3c107c1501b5ce9263d", &(0x7f0000000300)=@udp6=r8}, 0x20) setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000100), 0x4) close_range(r11, r8, 0x2) socket$nl_netfilter(0x10, 0x3, 0xc) 0s ago: executing program 0 (id=1802): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7) r0 = getpid() sendmsg$AUDIT_USER(0xffffffffffffffff, 0x0, 0x10000000) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = syz_init_net_socket$x25(0x9, 0x5, 0x0) listen(r3, 0x0) ioctl$SIOCX25SDTEFACILITIES(r3, 0x89eb, &(0x7f0000000180)={0xfffd, 0x101, 0x100, 0x0, 0x4, 0x18, 0x36, "e75867a0aa45de1500", "39e8799918f836f17fc65c8b001f00"}) kernel console output (not intermixed with test programs): yz.1.492': attribute type 2 has an invalid length. [ 264.118392][ T5887] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 264.605681][ T5887] usb 2-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 264.617283][ T5887] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 264.625841][ T5887] usb 2-1: Product: syz [ 264.634647][ T5887] usb 2-1: Manufacturer: syz [ 264.640415][ T5887] usb 2-1: SerialNumber: syz [ 264.665140][ T5887] usb 2-1: config 0 descriptor?? [ 265.248365][ T29] audit: type=1326 audit(1738903325.194:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7483 comm="syz.4.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e5f58cde9 code=0x7ffc0000 [ 265.429432][ T5887] usb 2-1: USB disconnect, device number 4 [ 265.816133][ T29] audit: type=1326 audit(1738903325.194:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7483 comm="syz.4.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e5f58cde9 code=0x7ffc0000 [ 265.862779][ T29] audit: type=1326 audit(1738903325.204:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7483 comm="syz.4.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f6e5f58cde9 code=0x7ffc0000 [ 265.902663][ T29] audit: type=1326 audit(1738903325.204:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7483 comm="syz.4.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e5f58cde9 code=0x7ffc0000 [ 265.988112][ T29] audit: type=1326 audit(1738903325.204:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7483 comm="syz.4.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e5f58cde9 code=0x7ffc0000 [ 266.025060][ T29] audit: type=1326 audit(1738903325.204:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7483 comm="syz.4.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=300 compat=0 ip=0x7f6e5f58cde9 code=0x7ffc0000 [ 266.103108][ T29] audit: type=1326 audit(1738903325.204:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7483 comm="syz.4.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e5f58cde9 code=0x7ffc0000 [ 266.144015][ T7492] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies. [ 266.171422][ T7495] netlink: 8 bytes leftover after parsing attributes in process `syz.1.501'. [ 266.193185][ T29] audit: type=1326 audit(1738903325.204:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7483 comm="syz.4.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e5f58cde9 code=0x7ffc0000 [ 266.230308][ T7495] netlink: 8 bytes leftover after parsing attributes in process `syz.1.501'. [ 266.255280][ T29] audit: type=1326 audit(1738903325.204:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7483 comm="syz.4.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6e5f58cde9 code=0x7ffc0000 [ 266.294670][ T29] audit: type=1326 audit(1738903325.204:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7483 comm="syz.4.497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e5f58cde9 code=0x7ffc0000 [ 266.633072][ T7503] netlink: 'syz.4.503': attribute type 2 has an invalid length. [ 266.652441][ T7503] f: entered promiscuous mode [ 268.134146][ T7521] IPv6: NLM_F_REPLACE set, but no existing node found! [ 269.334887][ T7535] netlink: 8 bytes leftover after parsing attributes in process `syz.2.513'. [ 269.370038][ T7535] netlink: 8 bytes leftover after parsing attributes in process `syz.2.513'. [ 272.408156][ T7557] IPv6: NLM_F_REPLACE set, but no existing node found! [ 273.308670][ T7567] netlink: 8 bytes leftover after parsing attributes in process `syz.2.526'. [ 273.375024][ T7567] netlink: 8 bytes leftover after parsing attributes in process `syz.2.526'. [ 274.658870][ T29] kauditd_printk_skb: 32 callbacks suppressed [ 274.658889][ T29] audit: type=1326 audit(1738903334.604:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz.1.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 275.348296][ T29] audit: type=1326 audit(1738903334.604:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz.1.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 275.575651][ T29] audit: type=1326 audit(1738903334.704:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz.1.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 275.714652][ T29] audit: type=1326 audit(1738903334.704:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz.1.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 275.868940][ T29] audit: type=1326 audit(1738903334.704:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz.1.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 275.898352][ T29] audit: type=1326 audit(1738903334.804:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz.1.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=300 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 277.202413][ T29] audit: type=1326 audit(1738903334.804:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz.1.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 277.294829][ T29] audit: type=1326 audit(1738903334.804:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz.1.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 278.400622][ T7597] IPv6: NLM_F_REPLACE set, but no existing node found! [ 279.677641][ T7621] xt_NFQUEUE: number of queues (65532) out of range (got 66665) [ 286.786413][ T9] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 287.087013][ T9] usb 5-1: device descriptor read/64, error -71 [ 287.244269][ T7677] netlink: 4 bytes leftover after parsing attributes in process `syz.1.558'. [ 287.430940][ T9] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 287.659394][ T7680] netlink: 20 bytes leftover after parsing attributes in process `syz.0.559'. [ 287.672315][ T7680] bridge0: port 2(bridge_slave_1) entered disabled state [ 287.681673][ T7680] bridge0: port 1(bridge_slave_0) entered disabled state [ 287.758331][ T9] usb 5-1: device descriptor read/64, error -71 [ 287.902290][ T9] usb usb5-port1: attempt power cycle [ 291.936633][ T7725] netlink: 4 bytes leftover after parsing attributes in process `syz.3.572'. [ 293.320473][ T7736] xt_HMARK: spi-set and port-set can't be combined [ 297.171686][ T7768] netlink: 72 bytes leftover after parsing attributes in process `syz.3.587'. [ 298.353215][ T7782] netlink: 'syz.1.589': attribute type 1 has an invalid length. [ 298.368885][ T7782] netlink: 84 bytes leftover after parsing attributes in process `syz.1.589'. [ 300.052268][ T7779] ntfs3(nullb0): Primary boot signature is not NTFS. [ 300.063773][ T7779] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00 [ 300.468329][ T29] audit: type=1800 audit(1738903360.523:148): pid=7798 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.595" name="bus" dev="tmpfs" ino=2 res=0 errno=0 [ 303.065729][ T7823] xt_HMARK: spi-set and port-set can't be combined [ 303.112725][ T7815] netlink: 72 bytes leftover after parsing attributes in process `syz.4.601'. [ 303.229563][ T7825] fuse: Unknown parameter '0xffffffffffffffff00000000000000000000' [ 305.974374][ T29] audit: type=1800 audit(1738903366.003:149): pid=7849 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.612" name="bus" dev="tmpfs" ino=2 res=0 errno=0 [ 306.704712][ T7855] netlink: 12 bytes leftover after parsing attributes in process `syz.1.616'. [ 308.028443][ T7870] xt_HMARK: spi-set and port-set can't be combined [ 308.072777][ T7872] netlink: 60 bytes leftover after parsing attributes in process `syz.3.621'. [ 308.120212][ T7872] netlink: 60 bytes leftover after parsing attributes in process `syz.3.621'. [ 308.919500][ T29] audit: type=1800 audit(1738903368.973:150): pid=7885 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.626" name="bus" dev="tmpfs" ino=2 res=0 errno=0 [ 310.383382][ T7894] netlink: 12 bytes leftover after parsing attributes in process `syz.3.628'. [ 310.401645][ T7896] netlink: 8 bytes leftover after parsing attributes in process `syz.2.629'. [ 311.699536][ T7909] netlink: 60 bytes leftover after parsing attributes in process `syz.4.633'. [ 311.724438][ T7909] netlink: 60 bytes leftover after parsing attributes in process `syz.4.633'. [ 312.999573][ T7927] netlink: 12 bytes leftover after parsing attributes in process `syz.0.641'. [ 313.068945][ T7930] netlink: 'syz.2.640': attribute type 2 has an invalid length. [ 313.275310][ T7932] netlink: 8 bytes leftover after parsing attributes in process `syz.0.642'. [ 313.313050][ T7930] f: entered promiscuous mode [ 314.702123][ T7942] netlink: 60 bytes leftover after parsing attributes in process `syz.0.645'. [ 314.713710][ T7942] netlink: 60 bytes leftover after parsing attributes in process `syz.0.645'. [ 315.575109][ T7950] netlink: 4 bytes leftover after parsing attributes in process `syz.0.646'. [ 316.319038][ T7962] netlink: 8 bytes leftover after parsing attributes in process `syz.3.655'. [ 317.532287][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.540095][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 319.705825][ T8000] netlink: 4 bytes leftover after parsing attributes in process `syz.3.664'. [ 320.303962][ T29] audit: type=1326 audit(1738903379.883:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8003 comm="syz.2.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4e38cde9 code=0x7ffc0000 [ 320.326159][ C0] vkms_vblank_simulate: vblank timer overrun [ 320.341408][ T29] audit: type=1326 audit(1738903379.883:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8003 comm="syz.2.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4e38cde9 code=0x7ffc0000 [ 320.363565][ C0] vkms_vblank_simulate: vblank timer overrun [ 320.378732][ T29] audit: type=1326 audit(1738903379.883:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8003 comm="syz.2.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fca4e38cde9 code=0x7ffc0000 [ 320.401410][ T29] audit: type=1326 audit(1738903379.883:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8003 comm="syz.2.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4e38cde9 code=0x7ffc0000 [ 320.426509][ T29] audit: type=1326 audit(1738903379.883:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8003 comm="syz.2.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4e38cde9 code=0x7ffc0000 [ 320.450796][ T29] audit: type=1326 audit(1738903379.883:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8003 comm="syz.2.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=300 compat=0 ip=0x7fca4e38cde9 code=0x7ffc0000 [ 320.486851][ T29] audit: type=1326 audit(1738903379.883:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8003 comm="syz.2.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4e38cde9 code=0x7ffc0000 [ 320.509069][ C0] vkms_vblank_simulate: vblank timer overrun [ 320.938685][ T29] audit: type=1326 audit(1738903379.883:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8003 comm="syz.2.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4e38cde9 code=0x7ffc0000 [ 321.736141][ T29] audit: type=1326 audit(1738903379.893:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8003 comm="syz.2.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fca4e38cde9 code=0x7ffc0000 [ 322.124258][ T29] audit: type=1326 audit(1738903379.893:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8003 comm="syz.2.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4e38cde9 code=0x7ffc0000 [ 322.337490][ T8023] overlayfs: failed to resolve './file0': -2 [ 324.509478][ T8056] overlayfs: failed to resolve './file0': -2 [ 325.498789][ T8067] netlink: 4 bytes leftover after parsing attributes in process `syz.1.684'. [ 328.209063][ T8099] netlink: 'syz.0.695': attribute type 2 has an invalid length. [ 328.247314][ T8101] overlayfs: failed to resolve './file0': -2 [ 328.301716][ T8099] f: entered promiscuous mode [ 328.337895][ T29] kauditd_printk_skb: 72 callbacks suppressed [ 328.337911][ T29] audit: type=1326 audit(1738903388.393:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8102 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 328.445608][ T29] audit: type=1326 audit(1738903388.393:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8102 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 328.918443][ T29] audit: type=1326 audit(1738903388.403:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8102 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 328.949024][ T29] audit: type=1326 audit(1738903388.403:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8102 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 329.008872][ T29] audit: type=1326 audit(1738903388.403:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8102 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 329.048403][ T5883] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 329.539097][ T29] audit: type=1326 audit(1738903388.403:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8102 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 329.579758][ T29] audit: type=1326 audit(1738903388.403:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8102 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 329.618537][ T29] audit: type=1326 audit(1738903388.403:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8102 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 329.672812][ T29] audit: type=1326 audit(1738903388.403:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8102 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 329.712420][ T29] audit: type=1326 audit(1738903388.403:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8102 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 329.742516][ T5883] usb 5-1: Using ep0 maxpacket: 8 [ 329.763697][ T5883] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 329.773620][ T5883] usb 5-1: New USB device found, idVendor=0bda, idProduct=0139, bcdDevice=db.d0 [ 329.793051][ T5883] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 329.830531][ T5883] usb 5-1: config 0 descriptor?? [ 329.983371][ T8120] netlink: 'syz.2.704': attribute type 30 has an invalid length. [ 330.019089][ T8120] Bluetooth: MGMT ver 1.23 [ 330.210011][ T5883] rtsx_usb 5-1:0.0: probe with driver rtsx_usb failed with error -8 [ 330.346837][ T8122] netlink: 4 bytes leftover after parsing attributes in process `syz.1.702'. [ 330.421346][ T5883] usb 5-1: USB disconnect, device number 12 [ 333.546314][ T8157] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1 [ 333.568987][ T8157] batman_adv: batadv0: Adding interface: gretap1 [ 333.575397][ T8157] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 333.600961][ T8157] batman_adv: batadv0: Not using interface gretap1 (retrying later): interface not active [ 334.596590][ T8167] fuse: Bad value for 'fd' [ 334.861090][ T8175] netlink: 4 bytes leftover after parsing attributes in process `syz.1.719'. [ 336.702076][ T8187] netlink: 'syz.0.717': attribute type 2 has an invalid length. [ 337.127730][ T29] kauditd_printk_skb: 50 callbacks suppressed [ 337.127746][ T29] audit: type=1326 audit(1738903397.183:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8190 comm="syz.1.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 337.156389][ C0] vkms_vblank_simulate: vblank timer overrun [ 337.404152][ T29] audit: type=1326 audit(1738903397.223:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8190 comm="syz.1.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 337.450510][ T8196] capability: warning: `syz.1.727' uses deprecated v2 capabilities in a way that may be insecure [ 337.479566][ T8196] program syz.1.727 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 337.750072][ T29] audit: type=1326 audit(1738903397.223:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8190 comm="syz.1.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 337.788472][ T29] audit: type=1326 audit(1738903397.223:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8190 comm="syz.1.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 337.956756][ T29] audit: type=1326 audit(1738903397.223:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8190 comm="syz.1.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 338.453753][ T29] audit: type=1326 audit(1738903397.223:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8190 comm="syz.1.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 338.541970][ T29] audit: type=1326 audit(1738903397.223:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8190 comm="syz.1.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 338.591937][ T29] audit: type=1326 audit(1738903397.223:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8190 comm="syz.1.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 338.614557][ T29] audit: type=1326 audit(1738903397.223:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8190 comm="syz.1.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 338.639234][ T29] audit: type=1326 audit(1738903397.223:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8190 comm="syz.1.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 338.919762][ T5886] usb 1-1: new full-speed USB device number 4 using dummy_hcd [ 339.450120][ T5886] usb 1-1: New USB device found, idVendor=2040, idProduct=9301, bcdDevice=5b.81 [ 339.463238][ T5886] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 339.488454][ T5886] usb 1-1: config 0 descriptor?? [ 339.530431][ T5886] dvb-usb: found a 'Hauppauge WinTV-NOVA-T usb2' in warm state. [ 339.550486][ T5886] dvb-usb: bulk message failed: -22 (3/0) [ 339.584308][ T5886] dvb-usb: will use the device's hardware PID filter (table count: 32). [ 339.604997][ T5886] dvbdev: DVB: registering new adapter (Hauppauge WinTV-NOVA-T usb2) [ 339.630816][ T5886] usb 1-1: media controller created [ 339.644232][ T5886] dvb-usb: bulk message failed: -22 (5/0) [ 339.656180][ T5886] dvb-usb: MAC address reading failed. [ 339.682185][ T5886] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 339.713996][ T5886] dvb-usb: bulk message failed: -22 (6/0) [ 339.750443][ T5886] dvb-usb: bulk message failed: -22 (6/0) [ 339.757451][ T5886] dvb-usb: no frontend was attached by 'Hauppauge WinTV-NOVA-T usb2' [ 339.803094][ T5886] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb1/1-1/input/input6 [ 339.875926][ T5886] dvb-usb: schedule remote query interval to 100 msecs. [ 339.886589][ T5886] dvb-usb: Hauppauge WinTV-NOVA-T usb2 successfully initialized and connected. [ 339.913271][ T5886] usb 1-1: USB disconnect, device number 4 [ 339.985724][ T5886] dvb-usb: Hauppauge WinTV-NOVA-T usb2 successfully deinitialized and disconnected. [ 341.577090][ T8225] netlink: 4 bytes leftover after parsing attributes in process `syz.1.735'. [ 343.577045][ T8251] netlink: 'syz.4.739': attribute type 2 has an invalid length. [ 349.728491][ T46] usb 3-1: new high-speed USB device number 16 using dummy_hcd [ 349.946497][ T46] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 349.996994][ T46] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 350.086681][ T46] usb 3-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 350.154826][ T46] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 350.298294][ T46] usb 3-1: config 0 descriptor?? [ 350.833406][ T46] cm6533_jd 0003:0D8C:0022.0003: unknown main item tag 0x0 [ 350.852258][ T46] cm6533_jd 0003:0D8C:0022.0003: unknown main item tag 0x0 [ 351.608762][ T46] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:0D8C:0022.0003/input/input7 [ 351.751879][ T46] cm6533_jd 0003:0D8C:0022.0003: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.2-1/input0 [ 351.840377][ T46] usb 3-1: USB disconnect, device number 16 [ 352.940610][ T8338] netlink: 8 bytes leftover after parsing attributes in process `syz.3.772'. [ 353.425650][ T8346] program syz.2.776 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 354.308502][ T29] kauditd_printk_skb: 24 callbacks suppressed [ 354.308519][ T29] audit: type=1326 audit(1738903414.363:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8347 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 354.336816][ C0] vkms_vblank_simulate: vblank timer overrun [ 354.398166][ T8353] overlayfs: failed to resolve './file1': -2 [ 354.433490][ T29] audit: type=1326 audit(1738903414.403:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8347 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 354.455683][ C0] vkms_vblank_simulate: vblank timer overrun [ 354.556055][ T29] audit: type=1326 audit(1738903414.403:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8347 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 354.658330][ T29] audit: type=1326 audit(1738903414.403:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8347 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 354.681131][ T29] audit: type=1326 audit(1738903414.403:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8347 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 354.703275][ C0] vkms_vblank_simulate: vblank timer overrun [ 354.709707][ T29] audit: type=1326 audit(1738903414.403:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8347 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 354.748293][ T29] audit: type=1326 audit(1738903414.403:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8347 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 354.770455][ C0] vkms_vblank_simulate: vblank timer overrun [ 354.782144][ T29] audit: type=1326 audit(1738903414.423:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8347 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 354.804211][ C0] vkms_vblank_simulate: vblank timer overrun [ 354.821085][ T29] audit: type=1326 audit(1738903414.423:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8347 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 354.844192][ T29] audit: type=1326 audit(1738903414.423:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8347 comm="syz.0.775" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 356.358755][ T8376] netlink: 'syz.2.780': attribute type 2 has an invalid length. [ 357.532337][ T5947] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 357.720869][ T5947] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 357.749584][ T5947] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 357.895274][ T5947] usb 2-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 357.986344][ T5947] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 358.269926][ T5947] usb 2-1: config 0 descriptor?? [ 358.363782][ T8390] netlink: 8 bytes leftover after parsing attributes in process `syz.0.789'. [ 358.702035][ T5947] cm6533_jd 0003:0D8C:0022.0004: unknown main item tag 0x0 [ 358.751883][ T5947] cm6533_jd 0003:0D8C:0022.0004: unknown main item tag 0x0 [ 358.800899][ T5947] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0D8C:0022.0004/input/input8 [ 358.859961][ T8394] program syz.4.790 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 358.919973][ T5947] cm6533_jd 0003:0D8C:0022.0004: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.1-1/input0 [ 358.995373][ T5947] usb 2-1: USB disconnect, device number 5 [ 359.733407][ T8408] No control pipe specified [ 360.730602][ T8414] F2FS-fs (loop5): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 360.748092][ T8414] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 360.774802][ T8414] F2FS-fs (loop5): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 360.804665][ T8414] F2FS-fs (loop5): Can't find valid F2FS filesystem in 2th superblock [ 362.775002][ T8435] program syz.1.804 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 362.924157][ T8439] netlink: 8 bytes leftover after parsing attributes in process `syz.4.805'. [ 363.188536][ T29] kauditd_printk_skb: 55 callbacks suppressed [ 363.188552][ T29] audit: type=1326 audit(1738903423.223:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8444 comm="syz.1.808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 363.249294][ T29] audit: type=1326 audit(1738903423.223:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8444 comm="syz.1.808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 363.271452][ C0] vkms_vblank_simulate: vblank timer overrun [ 363.278431][ T29] audit: type=1326 audit(1738903423.223:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8444 comm="syz.1.808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 363.301465][ T29] audit: type=1326 audit(1738903423.223:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8444 comm="syz.1.808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 363.323547][ C0] vkms_vblank_simulate: vblank timer overrun [ 363.603944][ T29] audit: type=1326 audit(1738903423.223:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8444 comm="syz.1.808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 364.115071][ T29] audit: type=1326 audit(1738903423.223:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8444 comm="syz.1.808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 364.197647][ T29] audit: type=1326 audit(1738903423.223:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8444 comm="syz.1.808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 364.221481][ T29] audit: type=1326 audit(1738903423.223:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8444 comm="syz.1.808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 364.246024][ T29] audit: type=1326 audit(1738903423.223:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8444 comm="syz.1.808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 364.896671][ T8461] capability: warning: `syz.1.812' uses 32-bit capabilities (legacy support in use) [ 364.928457][ T29] audit: type=1326 audit(1738903423.223:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8444 comm="syz.1.808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 366.135052][ T8442] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 367.302164][ T8479] program syz.2.818 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 368.255727][ T29] kauditd_printk_skb: 29 callbacks suppressed [ 368.255746][ T29] audit: type=1326 audit(1738903427.753:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8481 comm="syz.4.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e5f58cde9 code=0x7ffc0000 [ 368.293027][ T29] audit: type=1326 audit(1738903427.753:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8481 comm="syz.4.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e5f58cde9 code=0x7ffc0000 [ 368.326925][ T29] audit: type=1326 audit(1738903427.753:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8481 comm="syz.4.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f6e5f58cde9 code=0x7ffc0000 [ 368.532904][ T29] audit: type=1326 audit(1738903427.753:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8481 comm="syz.4.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e5f58cde9 code=0x7ffc0000 [ 368.587516][ T29] audit: type=1326 audit(1738903427.753:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8481 comm="syz.4.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e5f58cde9 code=0x7ffc0000 [ 368.678356][ T29] audit: type=1326 audit(1738903427.753:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8481 comm="syz.4.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=300 compat=0 ip=0x7f6e5f58cde9 code=0x7ffc0000 [ 368.756630][ T8498] netlink: 8 bytes leftover after parsing attributes in process `syz.1.821'. [ 368.991593][ T29] audit: type=1326 audit(1738903427.753:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8481 comm="syz.4.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e5f58cde9 code=0x7ffc0000 [ 369.250583][ T29] audit: type=1326 audit(1738903427.763:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8481 comm="syz.4.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e5f58cde9 code=0x7ffc0000 [ 369.310117][ T29] audit: type=1326 audit(1738903427.763:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8481 comm="syz.4.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6e5f58cde9 code=0x7ffc0000 [ 369.374261][ T29] audit: type=1326 audit(1738903427.763:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8481 comm="syz.4.820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e5f58cde9 code=0x7ffc0000 [ 372.072165][ T8530] program syz.4.834 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 373.384630][ T8543] netlink: 8 bytes leftover after parsing attributes in process `syz.1.839'. [ 374.000742][ T8553] overlayfs: failed to resolve './file0': -2 [ 376.818424][ T5884] usb 3-1: new high-speed USB device number 17 using dummy_hcd [ 376.933639][ T8592] netlink: 8 bytes leftover after parsing attributes in process `syz.4.855'. [ 377.010731][ T5884] usb 3-1: New USB device found, idVendor=077b, idProduct=2226, bcdDevice=ca.8b [ 377.022796][ T5884] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 377.035798][ T8594] overlayfs: failed to resolve './file0': -2 [ 377.094014][ T5884] usb 3-1: config 0 descriptor?? [ 378.956587][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.964178][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.423406][ T5884] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 379.530874][ T5884] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to write RX_CTL mode to 0x0080: ffffffb9 [ 379.649905][ T5884] asix 3-1:0.0: probe with driver asix failed with error -71 [ 379.733144][ T5884] usb 3-1: USB disconnect, device number 17 [ 380.319166][ T8626] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 380.333764][ T8626] Bluetooth: hci0: Error when powering off device on rfkill (-4) [ 380.388779][ T8626] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 380.406372][ T8626] Bluetooth: hci1: Error when powering off device on rfkill (-4) [ 380.419543][ T8634] overlayfs: failed to resolve './file0': -2 [ 380.437294][ T8626] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 380.456904][ T8626] Bluetooth: hci2: Error when powering off device on rfkill (-4) [ 380.513799][ T8626] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 380.536430][ T8626] Bluetooth: hci3: Error when powering off device on rfkill (-4) [ 380.644588][ T8626] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 380.657378][ T8626] Bluetooth: hci4: Error when powering off device on rfkill (-4) [ 388.129658][ T8700] program syz.0.889 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 393.088786][ T8744] program syz.4.904 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 394.600855][ T1148] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 394.787968][ T1148] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 394.982060][ T1148] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 396.701197][ T1148] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 398.200577][ T1148] bridge_slave_1: left allmulticast mode [ 398.267571][ T1148] bridge_slave_1: left promiscuous mode [ 398.308254][ T1148] bridge0: port 2(bridge_slave_1) entered disabled state [ 398.395077][ T1148] bridge_slave_0: left allmulticast mode [ 398.419025][ T1148] bridge_slave_0: left promiscuous mode [ 398.592425][ T1148] bridge0: port 1(bridge_slave_0) entered disabled state [ 398.765697][ T5846] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 398.777554][ T5846] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 398.786423][ T5846] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 398.796558][ T5846] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 398.808043][ T5846] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 398.820498][ T5846] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 398.860160][ T5832] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 398.882931][ T5832] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 398.904150][ T5832] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 398.916548][ T5832] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 398.924646][ T5832] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 398.932329][ T5832] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 400.660201][ T29] kauditd_printk_skb: 11 callbacks suppressed [ 400.660222][ T29] audit: type=1326 audit(1738903460.713:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8801 comm="syz.0.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7fc00000 [ 400.744613][ T29] audit: type=1326 audit(1738903460.713:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8801 comm="syz.0.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb6e418cde9 code=0x7fc00000 [ 400.773117][ T29] audit: type=1326 audit(1738903460.713:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8801 comm="syz.0.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7fc00000 [ 400.828358][ T29] audit: type=1326 audit(1738903460.713:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8801 comm="syz.0.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7fc00000 [ 400.853253][ T29] audit: type=1326 audit(1738903460.713:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8801 comm="syz.0.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7fc00000 [ 400.885544][ T29] audit: type=1326 audit(1738903460.713:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8801 comm="syz.0.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7fc00000 [ 400.921373][ T29] audit: type=1326 audit(1738903460.713:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8801 comm="syz.0.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7fc00000 [ 400.960103][ T29] audit: type=1326 audit(1738903460.713:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8801 comm="syz.0.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7fc00000 [ 400.996828][ T29] audit: type=1326 audit(1738903460.773:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8801 comm="syz.0.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7fc00000 [ 401.033503][ T5846] Bluetooth: hci3: command tx timeout [ 401.072037][ T29] audit: type=1326 audit(1738903460.773:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8801 comm="syz.0.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7fc00000 [ 401.757760][ T1148] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 401.815692][ T1148] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 401.845982][ T1148] bond0 (unregistering): Released all slaves [ 402.778372][ T1148] f: left promiscuous mode [ 403.108575][ T5846] Bluetooth: hci3: command tx timeout [ 403.970514][ T8833] netlink: 'syz.4.926': attribute type 2 has an invalid length. [ 405.188527][ T5846] Bluetooth: hci3: command tx timeout [ 407.279828][ T5846] Bluetooth: hci3: command tx timeout [ 407.318796][ T29] kauditd_printk_skb: 57 callbacks suppressed [ 407.318814][ T29] audit: type=1326 audit(1738903466.833:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8867 comm="syz.0.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 408.039019][ T8791] chnl_net:caif_netlink_parms(): no params data found [ 408.201322][ T29] audit: type=1326 audit(1738903466.833:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8867 comm="syz.0.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 408.223940][ T29] audit: type=1326 audit(1738903466.833:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8867 comm="syz.0.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 408.501700][ T29] audit: type=1326 audit(1738903466.833:522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8867 comm="syz.0.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 408.533621][ T8890] 9p: Unknown access argument 18446744073709551615: -34 [ 408.534605][ T29] audit: type=1326 audit(1738903466.833:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8867 comm="syz.0.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 408.632316][ T8892] netlink: 'syz.1.939': attribute type 2 has an invalid length. [ 408.773100][ T29] audit: type=1326 audit(1738903466.833:524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8867 comm="syz.0.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=300 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 409.152142][ T1148] hsr_slave_0: left promiscuous mode [ 409.269225][ T1148] hsr_slave_1: left promiscuous mode [ 409.288382][ T29] audit: type=1326 audit(1738903466.833:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8867 comm="syz.0.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 409.312101][ T1148] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 409.336646][ T1148] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 409.358378][ T1148] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 409.366229][ T29] audit: type=1326 audit(1738903466.843:526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8867 comm="syz.0.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 409.388673][ T1148] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 409.403425][ T29] audit: type=1326 audit(1738903466.843:527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8867 comm="syz.0.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 409.430460][ T29] audit: type=1326 audit(1738903466.843:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8867 comm="syz.0.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 409.472724][ T1148] veth1_macvtap: left promiscuous mode [ 409.528952][ T1148] veth0_macvtap: left promiscuous mode [ 409.534740][ T1148] veth1_vlan: left promiscuous mode [ 409.546728][ T1148] veth0_vlan: left promiscuous mode [ 411.388538][ T25] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 411.527116][ T1148] team0 (unregistering): Port device team_slave_1 removed [ 411.538502][ T25] usb 4-1: Using ep0 maxpacket: 8 [ 411.558911][ T25] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 411.573643][ T25] usb 4-1: New USB device found, idVendor=0bda, idProduct=0139, bcdDevice=db.d0 [ 411.585985][ T25] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 411.595989][ T1148] team0 (unregistering): Port device team_slave_0 removed [ 411.604900][ T25] usb 4-1: config 0 descriptor?? [ 411.737365][ T25] rtsx_usb 4-1:0.0: probe with driver rtsx_usb failed with error -8 [ 411.833992][ T25] usb 4-1: USB disconnect, device number 7 [ 413.278116][ T8791] bridge0: port 1(bridge_slave_0) entered blocking state [ 413.344384][ T8936] netlink: 'syz.1.953': attribute type 1 has an invalid length. [ 413.477899][ T29] kauditd_printk_skb: 2 callbacks suppressed [ 413.477937][ T29] audit: type=1326 audit(1738903473.523:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8929 comm="syz.3.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 413.928453][ T8791] bridge0: port 1(bridge_slave_0) entered disabled state [ 413.935737][ T8791] bridge_slave_0: entered allmulticast mode [ 413.958437][ T8936] netlink: 84 bytes leftover after parsing attributes in process `syz.1.953'. [ 413.969581][ T8791] bridge_slave_0: entered promiscuous mode [ 414.032204][ T8791] bridge0: port 2(bridge_slave_1) entered blocking state [ 414.035392][ T29] audit: type=1326 audit(1738903473.523:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8929 comm="syz.3.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 414.043866][ T8791] bridge0: port 2(bridge_slave_1) entered disabled state [ 414.112203][ T8791] bridge_slave_1: entered allmulticast mode [ 414.137564][ T8791] bridge_slave_1: entered promiscuous mode [ 414.354028][ T29] audit: type=1326 audit(1738903473.523:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8929 comm="syz.3.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 414.698296][ T29] audit: type=1326 audit(1738903473.523:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8929 comm="syz.3.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 414.758383][ T29] audit: type=1326 audit(1738903473.523:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8929 comm="syz.3.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 414.804799][ T8791] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 414.834625][ T29] audit: type=1326 audit(1738903473.523:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8929 comm="syz.3.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=300 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 414.842260][ T8791] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 415.017422][ T29] audit: type=1326 audit(1738903473.523:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8929 comm="syz.3.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 415.143845][ T29] audit: type=1326 audit(1738903473.523:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8929 comm="syz.3.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 415.222144][ T29] audit: type=1326 audit(1738903473.533:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8929 comm="syz.3.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 415.854335][ T8791] team0: Port device team_slave_0 added [ 415.888447][ T29] audit: type=1326 audit(1738903473.533:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8929 comm="syz.3.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 415.893115][ T8791] team0: Port device team_slave_1 added [ 416.129004][ T8791] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 416.158419][ T8791] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 416.319220][ T8791] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 416.786440][ T8791] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 416.857794][ T8791] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 416.953577][ T8791] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 417.262867][ T5832] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 417.282937][ T5832] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 417.295968][ T5832] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 417.561625][ T5832] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 417.570026][ T5832] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 417.599944][ T5832] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 418.315828][ T1148] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 418.354739][ T1148] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 419.166305][ T8791] hsr_slave_0: entered promiscuous mode [ 419.203504][ T8791] hsr_slave_1: entered promiscuous mode [ 419.360339][ T1148] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 419.390906][ T1148] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 419.907693][ T29] kauditd_printk_skb: 2 callbacks suppressed [ 419.907732][ T29] audit: type=1326 audit(1738903479.943:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8993 comm="syz.0.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 420.328453][ T5832] Bluetooth: hci4: command tx timeout [ 420.473758][ T29] audit: type=1326 audit(1738903479.953:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8993 comm="syz.0.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 420.579415][ T29] audit: type=1326 audit(1738903479.953:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8993 comm="syz.0.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 420.620743][ T29] audit: type=1326 audit(1738903479.953:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8993 comm="syz.0.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 420.911488][ T1148] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 420.923827][ T29] audit: type=1326 audit(1738903479.953:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8993 comm="syz.0.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 420.934753][ T1148] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 420.971344][ T29] audit: type=1326 audit(1738903479.953:548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8993 comm="syz.0.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=300 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 421.046911][ T29] audit: type=1326 audit(1738903479.963:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8993 comm="syz.0.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 421.107625][ T29] audit: type=1326 audit(1738903479.963:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8993 comm="syz.0.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 421.197721][ T1148] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 421.198294][ T29] audit: type=1326 audit(1738903479.963:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8993 comm="syz.0.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 421.223599][ T1148] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 421.278604][ T29] audit: type=1326 audit(1738903479.963:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8993 comm="syz.0.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 422.389460][ T5832] Bluetooth: hci4: command tx timeout [ 423.821104][ T1148] bridge_slave_1: left allmulticast mode [ 423.827116][ T1148] bridge_slave_1: left promiscuous mode [ 423.837367][ T1148] bridge0: port 2(bridge_slave_1) entered disabled state [ 423.865484][ T1148] bridge_slave_0: left allmulticast mode [ 423.872086][ T1148] bridge_slave_0: left promiscuous mode [ 423.879119][ T1148] bridge0: port 1(bridge_slave_0) entered disabled state [ 424.479550][ T5832] Bluetooth: hci4: command tx timeout [ 426.131326][ T9065] netlink: 'syz.1.980': attribute type 2 has an invalid length. [ 426.558595][ T5832] Bluetooth: hci4: command tx timeout [ 426.614912][ T1148] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 426.632784][ T1148] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 426.647475][ T1148] bond0 (unregistering): Released all slaves [ 426.907331][ T1148] f: left promiscuous mode [ 427.688167][ T8974] chnl_net:caif_netlink_parms(): no params data found [ 428.549287][ T9088] 9pnet_fd: Insufficient options for proto=fd [ 429.230426][ T8974] bridge0: port 1(bridge_slave_0) entered blocking state [ 429.237682][ T8974] bridge0: port 1(bridge_slave_0) entered disabled state [ 429.275786][ T8974] bridge_slave_0: entered allmulticast mode [ 429.284485][ T8974] bridge_slave_0: entered promiscuous mode [ 429.356969][ T8974] bridge0: port 2(bridge_slave_1) entered blocking state [ 429.388535][ T8974] bridge0: port 2(bridge_slave_1) entered disabled state [ 429.395810][ T8974] bridge_slave_1: entered allmulticast mode [ 429.430264][ T8974] bridge_slave_1: entered promiscuous mode [ 429.723264][ T8974] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 429.813421][ T8974] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 429.883580][ T8791] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 429.936025][ T1148] hsr_slave_0: left promiscuous mode [ 429.952243][ T1148] hsr_slave_1: left promiscuous mode [ 430.005781][ T1148] veth1_macvtap: left promiscuous mode [ 430.022539][ T1148] veth0_macvtap: left promiscuous mode [ 430.035050][ T1148] veth1_vlan: left promiscuous mode [ 430.042337][ T1148] veth0_vlan: left promiscuous mode [ 430.580199][ T29] kauditd_printk_skb: 2 callbacks suppressed [ 430.580215][ T29] audit: type=1326 audit(1738903490.643:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9117 comm="syz.0.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 430.636679][ T29] audit: type=1326 audit(1738903490.643:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9117 comm="syz.0.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 430.713294][ T29] audit: type=1326 audit(1738903490.643:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9117 comm="syz.0.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 430.743723][ T29] audit: type=1326 audit(1738903490.643:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9117 comm="syz.0.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 430.774337][ T29] audit: type=1326 audit(1738903490.643:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9117 comm="syz.0.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 430.799315][ T29] audit: type=1326 audit(1738903490.643:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9117 comm="syz.0.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb6e418b750 code=0x7ffc0000 [ 430.822226][ T29] audit: type=1326 audit(1738903490.643:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9117 comm="syz.0.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fb6e418e617 code=0x7ffc0000 [ 430.845480][ T29] audit: type=1326 audit(1738903490.643:562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9117 comm="syz.0.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb6e418cde9 code=0x7ffc0000 [ 430.927740][ T29] audit: type=1326 audit(1738903490.643:563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9117 comm="syz.0.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fb6e418e617 code=0x7ffc0000 [ 430.956417][ T29] audit: type=1326 audit(1738903490.643:564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9117 comm="syz.0.997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fb6e418ba4a code=0x7ffc0000 [ 431.379057][ T9125] 9pnet_fd: Insufficient options for proto=fd [ 432.687116][ T1148] team0 (unregistering): Port device team_slave_1 removed [ 432.741496][ T1148] team0 (unregistering): Port device team_slave_0 removed [ 432.751135][ T9135] netlink: 'syz.3.1000': attribute type 2 has an invalid length. [ 433.427145][ T8791] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 433.474830][ T9135] f: entered promiscuous mode [ 433.514706][ T8974] team0: Port device team_slave_0 added [ 433.523590][ T9132] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 433.533316][ T9132] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 433.554487][ T8974] team0: Port device team_slave_1 added [ 433.589486][ T8791] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 433.629530][ T8791] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 433.834345][ T8974] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 433.848286][ T8974] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 433.918359][ T8974] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 433.981902][ T8974] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 434.015399][ T8974] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 434.050820][ T8974] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 434.332962][ T8974] hsr_slave_0: entered promiscuous mode [ 434.345954][ T8974] hsr_slave_1: entered promiscuous mode [ 434.355471][ T8974] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 434.372455][ T8974] Cannot create hsr debugfs directory [ 434.466084][ T9155] 9pnet_fd: Insufficient options for proto=fd [ 434.606219][ T9157] 9pnet_fd: Insufficient options for proto=fd [ 436.094150][ T8791] 8021q: adding VLAN 0 to HW filter on device bond0 [ 436.144335][ T9175] overlayfs: missing 'lowerdir' [ 436.275882][ T8791] 8021q: adding VLAN 0 to HW filter on device team0 [ 436.571911][ T1148] bridge0: port 1(bridge_slave_0) entered blocking state [ 436.579310][ T1148] bridge0: port 1(bridge_slave_0) entered forwarding state [ 436.729492][ T9191] netlink: 'syz.0.1014': attribute type 2 has an invalid length. [ 436.997948][ T6395] bridge0: port 2(bridge_slave_1) entered blocking state [ 437.005229][ T6395] bridge0: port 2(bridge_slave_1) entered forwarding state [ 437.650427][ T8974] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 437.704239][ T8974] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 437.739770][ T8974] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 438.244708][ T8974] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 438.462237][ T9225] overlayfs: missing 'lowerdir' [ 438.522796][ T8791] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 438.700398][ T9232] netlink: 188 bytes leftover after parsing attributes in process `syz.0.1027'. [ 439.346080][ T8791] veth0_vlan: entered promiscuous mode [ 439.420593][ T8791] veth1_vlan: entered promiscuous mode [ 439.534033][ T8974] 8021q: adding VLAN 0 to HW filter on device bond0 [ 439.607793][ T8791] veth0_macvtap: entered promiscuous mode [ 439.664425][ T8791] veth1_macvtap: entered promiscuous mode [ 439.707278][ T8974] 8021q: adding VLAN 0 to HW filter on device team0 [ 439.783275][ T9250] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1031'. [ 440.263973][ T6395] bridge0: port 1(bridge_slave_0) entered blocking state [ 440.271259][ T6395] bridge0: port 1(bridge_slave_0) entered forwarding state [ 440.396437][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.410020][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.412597][ T1148] bridge0: port 2(bridge_slave_1) entered blocking state [ 440.423511][ T1148] bridge0: port 2(bridge_slave_1) entered forwarding state [ 440.544955][ T8791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 440.577511][ T8791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 440.589879][ T8791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 440.604979][ T8791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 440.626229][ T8791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 440.650277][ T8791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 440.663323][ T8791] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 440.682650][ T8791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 440.695082][ T8791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 440.742892][ T8791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 440.754429][ T8791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 440.765008][ T8791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 440.783896][ T8791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 440.794963][ T9263] ubi31: attaching mtd0 [ 440.796569][ T8791] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 440.851219][ T9263] ubi31: scanning is finished [ 440.857366][ T8791] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 440.874105][ T9263] ubi31: empty MTD device detected [ 440.880662][ T8791] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 440.920303][ T8791] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 440.945154][ T8791] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 441.130103][ T9263] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB) [ 441.174715][ T9263] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 441.221366][ T9263] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 441.239596][ T9263] ubi31: VID header offset: 64 (aligned 64), data offset: 128 [ 441.305927][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 441.314455][ T9263] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 441.324274][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 441.337634][ T9263] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 441.374035][ T9263] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 1502889102 [ 441.519128][ T9263] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 441.610534][ T9268] ubi31: background thread "ubi_bgt31d" started, PID 9268 [ 441.703718][ T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 441.782193][ T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 442.134475][ T9286] dccp_invalid_packet: P.Data Offset(80) too large [ 442.417854][ T9288] netlink: 188 bytes leftover after parsing attributes in process `syz.3.1041'. [ 443.336999][ T8974] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 443.538850][ T9308] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1045'. [ 445.222694][ T9333] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1051'. [ 445.990714][ T8974] veth0_vlan: entered promiscuous mode [ 446.282379][ T9345] netlink: 188 bytes leftover after parsing attributes in process `syz.2.1054'. [ 446.329696][ T8974] veth1_vlan: entered promiscuous mode [ 446.834962][ T9358] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1058'. [ 447.358000][ T8974] veth0_macvtap: entered promiscuous mode [ 447.411015][ T8974] veth1_macvtap: entered promiscuous mode [ 447.574796][ T8974] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 447.604861][ T8974] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 447.619674][ T8974] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 447.631112][ T8974] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 447.641090][ T8974] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 447.651978][ T8974] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 447.662155][ T8974] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 447.672843][ T8974] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 447.793631][ T9362] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1061'. [ 448.074075][ T8974] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 448.102127][ T8974] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 448.823920][ T8974] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 448.834404][ T8974] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 448.845315][ T8974] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 448.855489][ T8974] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 448.866296][ T8974] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 448.876524][ T8974] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 448.887379][ T8974] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 448.903256][ T8974] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 448.920660][ T8974] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 448.931184][ T8974] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 448.940633][ T8974] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 448.951047][ T8974] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 449.886413][ T9384] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1064'. [ 449.959395][ T6395] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 450.036935][ T6395] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 450.305762][ T6395] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 450.351912][ T6395] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 456.124823][ T9455] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1077'. [ 456.190907][ T9455] bridge0: port 2(bridge_slave_1) entered disabled state [ 456.198359][ T9455] bridge0: port 1(bridge_slave_0) entered disabled state [ 469.634734][ T29] kauditd_printk_skb: 4 callbacks suppressed [ 469.634765][ T29] audit: type=1326 audit(1738903529.693:569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9536 comm="syz.3.1086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 469.829352][ T29] audit: type=1326 audit(1738903529.723:570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9536 comm="syz.3.1086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 469.878451][ T29] audit: type=1326 audit(1738903529.723:571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9536 comm="syz.3.1086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 469.905440][ T29] audit: type=1326 audit(1738903529.723:572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9536 comm="syz.3.1086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 469.933826][ T29] audit: type=1326 audit(1738903529.723:573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9536 comm="syz.3.1086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 469.957123][ T29] audit: type=1326 audit(1738903529.733:574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9536 comm="syz.3.1086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 470.247438][ T9539] program syz.1.1084 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 470.282038][ T29] audit: type=1326 audit(1738903529.733:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9536 comm="syz.3.1086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 470.308061][ T29] audit: type=1326 audit(1738903529.733:576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9536 comm="syz.3.1086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 470.399286][ T29] audit: type=1326 audit(1738903529.733:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9536 comm="syz.3.1086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 470.428323][ T29] audit: type=1326 audit(1738903529.733:578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9536 comm="syz.3.1086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7ffc0000 [ 471.501726][ T9560] netlink: 'syz.3.1092': attribute type 2 has an invalid length. [ 471.828557][ T975] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 471.898383][ T25] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 472.020726][ T975] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 472.078392][ T975] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 472.080488][ T25] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 472.126031][ T975] usb 2-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 472.148336][ T975] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 472.152997][ T25] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 472.169867][ T975] usb 2-1: config 0 descriptor?? [ 472.215630][ T25] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 472.258512][ T25] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 472.293379][ T9566] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22 [ 472.315785][ T25] usb 1-1: Quirk or no altset; falling back to MIDI 1.0 [ 473.315912][ T5883] usb 1-1: USB disconnect, device number 5 [ 473.664099][ T9592] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1105'. [ 473.724546][ T9589] program syz.4.1103 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 474.757217][ T9] usb 2-1: USB disconnect, device number 6 [ 475.140078][ T9606] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1107'. [ 475.403421][ T29] kauditd_printk_skb: 65 callbacks suppressed [ 475.403438][ T29] audit: type=1326 audit(1738903535.463:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9604 comm="syz.1.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 475.528491][ T29] audit: type=1326 audit(1738903535.463:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9604 comm="syz.1.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 475.608120][ T29] audit: type=1326 audit(1738903535.493:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9604 comm="syz.1.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 475.760664][ T29] audit: type=1326 audit(1738903535.493:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9604 comm="syz.1.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 475.803410][ T29] audit: type=1326 audit(1738903535.493:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9604 comm="syz.1.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 475.827164][ T29] audit: type=1326 audit(1738903535.493:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9604 comm="syz.1.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 475.991737][ T29] audit: type=1326 audit(1738903535.493:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9604 comm="syz.1.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 476.294362][ T29] audit: type=1326 audit(1738903535.493:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9604 comm="syz.1.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 476.317074][ T29] audit: type=1326 audit(1738903535.493:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9604 comm="syz.1.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 476.368875][ T29] audit: type=1326 audit(1738903535.493:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9604 comm="syz.1.1109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 476.386958][ T9629] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1116'. [ 476.702262][ T9633] netlink: 'syz.1.1115': attribute type 2 has an invalid length. [ 477.638648][ T46] usb 3-1: new high-speed USB device number 18 using dummy_hcd [ 478.317335][ T46] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 478.347884][ T46] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 478.497536][ T46] usb 3-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 478.513209][ T46] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 478.549712][ T46] usb 3-1: config 0 descriptor?? [ 478.604746][ T9648] program syz.3.1121 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 479.341962][ T9652] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1122'. [ 480.749252][ T5947] usb 3-1: USB disconnect, device number 18 [ 481.608958][ T9] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 481.760555][ T29] kauditd_printk_skb: 96 callbacks suppressed [ 481.760573][ T29] audit: type=1326 audit(1738903541.803:750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9664 comm="syz.2.1128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f882d18cde9 code=0x7fc00000 [ 482.652195][ T29] audit: type=1326 audit(1738903541.803:751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9664 comm="syz.2.1128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f882d18cde9 code=0x7fc00000 [ 482.674778][ T9] usb 5-1: Using ep0 maxpacket: 32 [ 482.692503][ T9] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 482.733260][ T9] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 482.760810][ T29] audit: type=1326 audit(1738903541.803:752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9664 comm="syz.2.1128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f882d18cde9 code=0x7fc00000 [ 482.783273][ T975] usb 4-1: new full-speed USB device number 8 using dummy_hcd [ 482.924644][ T9] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 483.308475][ T9] usb 5-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0 [ 483.327549][ T975] usb 4-1: config 201 has an invalid descriptor of length 0, skipping remainder of the config [ 483.348316][ T29] audit: type=1326 audit(1738903541.803:753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9664 comm="syz.2.1128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f882d18cde9 code=0x7fc00000 [ 483.397817][ T9] usb 5-1: Product: syz [ 483.402704][ T9] usb 5-1: Manufacturer: syz [ 483.413420][ T975] usb 4-1: New USB device found, idVendor=04da, idProduct=390d, bcdDevice=fa.df [ 483.424377][ T975] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 483.459086][ T29] audit: type=1326 audit(1738903541.803:754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9664 comm="syz.2.1128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f882d18cde9 code=0x7fc00000 [ 483.487109][ T975] usb 4-1: Product: syz [ 483.491555][ T975] usb 4-1: Manufacturer: syz [ 483.509307][ T9] hub 5-1:4.0: USB hub found [ 483.515448][ T975] usb 4-1: SerialNumber: syz [ 483.536548][ T29] audit: type=1326 audit(1738903541.803:755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9664 comm="syz.2.1128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f882d18cde9 code=0x7fc00000 [ 483.846372][ T9] hub 5-1:4.0: config failed, hub has too many ports! (err -19) [ 483.858665][ T29] audit: type=1326 audit(1738903541.803:756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9664 comm="syz.2.1128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f882d18cde9 code=0x7fc00000 [ 484.093567][ T9] usb 5-1: USB disconnect, device number 13 [ 484.232780][ T29] audit: type=1326 audit(1738903541.803:757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9664 comm="syz.2.1128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f882d18cde9 code=0x7fc00000 [ 484.256826][ T29] audit: type=1326 audit(1738903541.803:758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9664 comm="syz.2.1128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f882d18cde9 code=0x7fc00000 [ 484.288744][ T29] audit: type=1326 audit(1738903541.803:759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9664 comm="syz.2.1128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f882d18cde9 code=0x7fc00000 [ 484.482387][ T9679] netlink: 'syz.3.1131': attribute type 10 has an invalid length. [ 484.490372][ T9679] netlink: 55 bytes leftover after parsing attributes in process `syz.3.1131'. [ 484.755199][ T975] ath6kl: Failed to submit usb control message: -71 [ 484.765521][ T975] ath6kl: unable to send the bmi data to the device: -71 [ 484.778395][ T975] ath6kl: Unable to send get target info: -71 [ 484.939138][ T975] ath6kl: Failed to init ath6kl core: -71 [ 484.945611][ T975] ath6kl_usb 4-1:201.0: probe with driver ath6kl_usb failed with error -71 [ 485.012952][ T975] usb 4-1: USB disconnect, device number 8 [ 485.110923][ T9699] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1135'. [ 485.156439][ T9699] bridge0: port 2(bridge_slave_1) entered disabled state [ 485.164813][ T9699] bridge0: port 1(bridge_slave_0) entered disabled state [ 485.678842][ T975] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 485.857908][ T9708] dccp_invalid_packet: P.Data Offset(0) too small [ 485.921283][ T975] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 485.997884][ T975] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 486.037708][ T975] usb 2-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 486.078381][ T975] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 486.118036][ T975] usb 2-1: config 0 descriptor?? [ 486.507386][ T9714] netlink: 'syz.3.1142': attribute type 2 has an invalid length. [ 488.318523][ T975] usb 2-1: USB disconnect, device number 7 [ 489.293653][ T29] kauditd_printk_skb: 58 callbacks suppressed [ 489.293671][ T29] audit: type=1326 audit(1738903549.333:818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9725 comm="syz.1.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7fc00000 [ 489.388379][ T29] audit: type=1326 audit(1738903549.333:819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9725 comm="syz.1.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f6f94f8cde9 code=0x7fc00000 [ 489.462571][ T29] audit: type=1326 audit(1738903549.333:820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9725 comm="syz.1.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7fc00000 [ 490.022904][ T29] audit: type=1326 audit(1738903549.333:821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9725 comm="syz.1.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7fc00000 [ 490.098413][ T29] audit: type=1326 audit(1738903549.333:822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9725 comm="syz.1.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7fc00000 [ 490.176214][ T29] audit: type=1326 audit(1738903549.333:823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9725 comm="syz.1.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7fc00000 [ 490.309528][ T29] audit: type=1326 audit(1738903549.333:824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9725 comm="syz.1.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7fc00000 [ 490.407611][ T29] audit: type=1326 audit(1738903549.343:825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9725 comm="syz.1.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7fc00000 [ 491.225053][ T29] audit: type=1326 audit(1738903549.343:826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9725 comm="syz.1.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7fc00000 [ 491.297970][ T29] audit: type=1326 audit(1738903549.343:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9725 comm="syz.1.1145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7fc00000 [ 491.886789][ T9751] netlink: 'syz.3.1152': attribute type 30 has an invalid length. [ 491.943132][ T9754] netlink: 'syz.1.1154': attribute type 1 has an invalid length. [ 491.956239][ T9754] netlink: 84 bytes leftover after parsing attributes in process `syz.1.1154'. [ 493.342027][ T9768] program syz.4.1156 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 494.824826][ T9786] fuse: Bad value for 'rootmode' [ 495.725294][ T9790] netlink: 'syz.3.1166': attribute type 30 has an invalid length. [ 499.017633][ T9822] ubi: mtd0 is already attached to ubi31 [ 499.280947][ T9827] program syz.2.1178 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 499.447840][ T9831] netlink: 'syz.3.1180': attribute type 30 has an invalid length. [ 499.862989][ T9833] netlink: 'syz.2.1181': attribute type 2 has an invalid length. [ 499.878129][ T9833] f: entered promiscuous mode [ 500.493355][ T9850] ubi: mtd0 is already attached to ubi31 [ 501.855112][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.861934][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 501.963018][ T1148] Bluetooth: (null): Invalid header checksum [ 502.008881][ T1148] Bluetooth: (null): Invalid header checksum [ 502.089664][ T1148] Bluetooth: (null): Invalid header checksum [ 502.167807][ T9869] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1194'. [ 503.836214][ T9881] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1198'. [ 505.084071][ T9891] netlink: 'syz.1.1202': attribute type 10 has an invalid length. [ 505.102197][ T9891] netlink: 55 bytes leftover after parsing attributes in process `syz.1.1202'. [ 507.643680][ T9919] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1210'. [ 507.720403][ T9925] dccp_invalid_packet: P.Data Offset(80) too large [ 507.727435][ T9923] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1211'. [ 508.157843][ T9937] netlink: 'syz.3.1215': attribute type 2 has an invalid length. [ 509.641358][ T9956] netlink: 'syz.3.1221': attribute type 1 has an invalid length. [ 509.702867][ T9956] netlink: 84 bytes leftover after parsing attributes in process `syz.3.1221'. [ 513.331138][ T9972] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1226'. [ 514.306615][ T29] kauditd_printk_skb: 57 callbacks suppressed [ 514.306632][ T29] audit: type=1326 audit(1738903574.353:885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9988 comm="syz.1.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 514.582141][ T29] audit: type=1326 audit(1738903574.353:886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9988 comm="syz.1.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 514.952011][ T29] audit: type=1326 audit(1738903574.353:887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9988 comm="syz.1.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 514.976211][ T29] audit: type=1326 audit(1738903574.353:888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9988 comm="syz.1.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 515.055516][ T29] audit: type=1326 audit(1738903574.353:889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9988 comm="syz.1.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 515.514322][ T29] audit: type=1326 audit(1738903574.353:890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9988 comm="syz.1.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 515.632277][ T29] audit: type=1326 audit(1738903574.353:891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9988 comm="syz.1.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 515.797023][ T29] audit: type=1326 audit(1738903574.353:892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9988 comm="syz.1.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 515.846406][ T29] audit: type=1326 audit(1738903574.353:893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9988 comm="syz.1.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 515.922064][ T29] audit: type=1326 audit(1738903574.353:894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9988 comm="syz.1.1231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 516.016925][T10002] 9pnet_fd: Insufficient options for proto=fd [ 519.528495][T10042] program syz.2.1249 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 519.544053][T10011] netlink: 'syz.4.1239': attribute type 10 has an invalid length. [ 519.552084][T10011] netlink: 55 bytes leftover after parsing attributes in process `syz.4.1239'. [ 519.567315][T10044] netlink: 1752 bytes leftover after parsing attributes in process `syz.1.1250'. [ 521.048545][ T29] kauditd_printk_skb: 56 callbacks suppressed [ 521.048558][ T29] audit: type=1326 audit(1738903581.093:951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10059 comm="syz.4.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddac78cde9 code=0x7ffc0000 [ 521.137467][T10062] netlink: 'syz.0.1257': attribute type 1 has an invalid length. [ 521.145799][T10062] netlink: 84 bytes leftover after parsing attributes in process `syz.0.1257'. [ 521.223648][ T29] audit: type=1326 audit(1738903581.093:952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10059 comm="syz.4.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddac78cde9 code=0x7ffc0000 [ 521.247438][T10064] netlink: 'syz.3.1259': attribute type 30 has an invalid length. [ 521.286008][ T29] audit: type=1326 audit(1738903581.093:953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10059 comm="syz.4.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7fddac78cde9 code=0x7ffc0000 [ 521.318534][ T29] audit: type=1326 audit(1738903581.093:954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10059 comm="syz.4.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddac78cde9 code=0x7ffc0000 [ 521.528148][ T29] audit: type=1326 audit(1738903581.093:955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10059 comm="syz.4.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddac78cde9 code=0x7ffc0000 [ 521.553008][ T29] audit: type=1326 audit(1738903581.093:956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10059 comm="syz.4.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7fddac78cde9 code=0x7ffc0000 [ 521.646967][ T29] audit: type=1326 audit(1738903581.093:957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10059 comm="syz.4.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddac78cde9 code=0x7ffc0000 [ 522.360692][ T29] audit: type=1326 audit(1738903581.093:958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10059 comm="syz.4.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddac78cde9 code=0x7ffc0000 [ 522.392180][ T29] audit: type=1326 audit(1738903581.093:959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10059 comm="syz.4.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7fddac78cde9 code=0x7ffc0000 [ 522.422100][ T29] audit: type=1326 audit(1738903581.093:960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10059 comm="syz.4.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddac78cde9 code=0x7ffc0000 [ 524.394070][T10081] Bluetooth: hci3: command 0x0406 tx timeout [ 524.458561][T10107] netlink: 'syz.3.1272': attribute type 30 has an invalid length. [ 526.108886][ T5886] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 526.297267][T10126] dccp_invalid_packet: P.Data Offset(144) too large [ 526.344481][ T5886] usb 4-1: Using ep0 maxpacket: 32 [ 526.374821][ T5886] usb 4-1: New USB device found, idVendor=0cf2, idProduct=6250, bcdDevice=10.ae [ 526.385370][ T5886] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 526.412081][ T5886] usb 4-1: Product: syz [ 526.426684][ T5886] usb 4-1: Manufacturer: syz [ 526.441740][ T5886] usb 4-1: SerialNumber: syz [ 526.478355][ T5886] usb 4-1: config 0 descriptor?? [ 526.497693][ T5886] ums_eneub6250 4-1:0.0: USB Mass Storage device detected [ 526.636877][T10132] netlink: 'syz.2.1278': attribute type 1 has an invalid length. [ 526.803861][ T5886] usb 4-1: USB disconnect, device number 9 [ 527.643330][T10139] netlink: 84 bytes leftover after parsing attributes in process `syz.2.1278'. [ 529.676097][T10149] netlink: 'syz.3.1284': attribute type 30 has an invalid length. [ 529.725189][T10156] overlayfs: failed to resolve './file1': -2 [ 532.384003][T10170] netlink: 'syz.4.1291': attribute type 10 has an invalid length. [ 532.417195][T10170] netlink: 55 bytes leftover after parsing attributes in process `syz.4.1291'. [ 532.508401][ T5883] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 532.679172][ T5883] usb 4-1: Using ep0 maxpacket: 32 [ 532.781064][ T5883] usb 4-1: New USB device found, idVendor=0cf2, idProduct=6250, bcdDevice=10.ae [ 532.793912][ T5883] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 532.808628][ T5883] usb 4-1: Product: syz [ 532.813390][ T5883] usb 4-1: Manufacturer: syz [ 532.820807][ T5883] usb 4-1: SerialNumber: syz [ 532.833821][ T5883] usb 4-1: config 0 descriptor?? [ 533.280475][ T5883] ums_eneub6250 4-1:0.0: USB Mass Storage device detected [ 533.523963][ T5883] usb 4-1: USB disconnect, device number 10 [ 533.624522][T10190] dccp_invalid_packet: P.Data Offset(144) too large [ 534.590735][T10200] netlink: 'syz.1.1299': attribute type 30 has an invalid length. [ 535.231309][ T29] kauditd_printk_skb: 59 callbacks suppressed [ 535.231326][ T29] audit: type=1326 audit(1738903595.293:1020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10202 comm="syz.4.1301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddac78cde9 code=0x7ffc0000 [ 535.826852][ T29] audit: type=1326 audit(1738903595.293:1021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10202 comm="syz.4.1301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7fddac78cde9 code=0x7ffc0000 [ 537.090265][ T29] audit: type=1326 audit(1738903595.293:1022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10202 comm="syz.4.1301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddac78cde9 code=0x7ffc0000 [ 537.134268][ T29] audit: type=1326 audit(1738903595.293:1023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10202 comm="syz.4.1301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7fddac78cde9 code=0x7ffc0000 [ 537.230519][ T29] audit: type=1326 audit(1738903595.293:1024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10202 comm="syz.4.1301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddac78cde9 code=0x7ffc0000 [ 537.340921][ T29] audit: type=1326 audit(1738903595.293:1025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10202 comm="syz.4.1301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7fddac78cde9 code=0x7ffc0000 [ 537.818985][ T29] audit: type=1326 audit(1738903595.293:1026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10202 comm="syz.4.1301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddac78cde9 code=0x7ffc0000 [ 537.842475][ T29] audit: type=1326 audit(1738903595.293:1027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10202 comm="syz.4.1301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fddac78cde9 code=0x7ffc0000 [ 538.307492][ T29] audit: type=1326 audit(1738903595.293:1028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10202 comm="syz.4.1301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddac78cde9 code=0x7ffc0000 [ 538.333758][ T29] audit: type=1326 audit(1738903595.293:1029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10202 comm="syz.4.1301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fddac78cde9 code=0x7ffc0000 [ 538.599187][T10233] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1310'. [ 539.096429][T10237] netlink: 'syz.2.1312': attribute type 30 has an invalid length. [ 541.942478][T10250] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1315'. [ 543.558980][T10266] netlink: 'syz.0.1318': attribute type 2 has an invalid length. [ 544.492000][T10280] netlink: 'syz.0.1326': attribute type 30 has an invalid length. [ 544.879928][T10081] Bluetooth: hci4: command 0x0406 tx timeout [ 550.226100][T10320] netlink: 'syz.0.1340': attribute type 30 has an invalid length. [ 550.240899][ T29] kauditd_printk_skb: 22 callbacks suppressed [ 550.240922][ T29] audit: type=1326 audit(1738903610.303:1052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.1.1334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7fc00000 [ 550.338529][ T29] audit: type=1326 audit(1738903610.303:1053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.1.1334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f6f94f8cde9 code=0x7fc00000 [ 550.377013][ T29] audit: type=1326 audit(1738903610.303:1054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.1.1334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7fc00000 [ 550.416985][ T29] audit: type=1326 audit(1738903610.303:1055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.1.1334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7fc00000 [ 550.444734][ T29] audit: type=1326 audit(1738903610.303:1056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.1.1334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7fc00000 [ 550.485152][ T29] audit: type=1326 audit(1738903610.303:1057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.1.1334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7fc00000 [ 550.517187][ T29] audit: type=1326 audit(1738903610.303:1058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.1.1334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7fc00000 [ 550.623844][ T29] audit: type=1326 audit(1738903610.313:1059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.1.1334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7fc00000 [ 550.653658][ T29] audit: type=1326 audit(1738903610.313:1060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.1.1334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7fc00000 [ 550.725483][ T29] audit: type=1326 audit(1738903610.313:1061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.1.1334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7fc00000 [ 554.043923][T10354] netlink: 'syz.4.1351': attribute type 30 has an invalid length. [ 554.935484][T10368] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1355'. [ 555.079562][T10370] 9pnet_fd: Insufficient options for proto=fd [ 556.440707][T10381] program syz.2.1358 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 558.534904][T10407] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1367'. [ 558.728573][T10402] netlink: 'syz.4.1366': attribute type 30 has an invalid length. [ 558.911568][T10411] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1370'. [ 560.223443][T10423] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 561.799488][T10442] netlink: 'syz.3.1381': attribute type 30 has an invalid length. [ 562.005215][T10447] program syz.2.1379 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 563.319012][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.325351][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 564.944120][T10486] program syz.1.1396 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 565.420637][ T5883] usb 3-1: new high-speed USB device number 19 using dummy_hcd [ 566.875850][ T5883] usb 3-1: Using ep0 maxpacket: 32 [ 567.229095][ T5883] usb 3-1: config 0 has no interfaces? [ 567.428615][ T5883] usb 3-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f [ 567.446672][ T5883] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 567.482362][ T5883] usb 3-1: Product: syz [ 567.488693][ T5883] usb 3-1: Manufacturer: syz [ 567.493318][ T5883] usb 3-1: SerialNumber: syz [ 567.540304][ T5883] usb 3-1: config 0 descriptor?? [ 567.658939][ T5883] usb 3-1: USB disconnect, device number 19 [ 567.751850][T10509] netlink: 'syz.4.1404': attribute type 72 has an invalid length. [ 567.792521][T10513] overlayfs: missing 'lowerdir' [ 567.909817][T10516] random: crng reseeded on system resumption [ 569.157178][ T29] kauditd_printk_skb: 229 callbacks suppressed [ 569.157195][ T29] audit: type=1326 audit(1738903629.213:1291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10522 comm="syz.1.1410" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7fc00000 [ 571.360520][T10554] netlink: 'syz.2.1417': attribute type 72 has an invalid length. [ 573.222138][T10574] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1423'. [ 574.538342][ T29] audit: type=1326 audit(1738903634.563:1292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10576 comm="syz.4.1424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddac78cde9 code=0x7fc00000 [ 574.621762][ T29] audit: type=1326 audit(1738903634.583:1293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10576 comm="syz.4.1424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fddac78cde9 code=0x7fc00000 [ 574.689114][ T29] audit: type=1326 audit(1738903634.583:1294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10576 comm="syz.4.1424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddac78cde9 code=0x7fc00000 [ 574.745807][ T29] audit: type=1326 audit(1738903634.583:1295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10576 comm="syz.4.1424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddac78cde9 code=0x7fc00000 [ 574.814384][ T29] audit: type=1326 audit(1738903634.583:1296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10576 comm="syz.4.1424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddac78cde9 code=0x7fc00000 [ 574.884250][ T29] audit: type=1326 audit(1738903634.583:1297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10576 comm="syz.4.1424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddac78cde9 code=0x7fc00000 [ 574.931134][ T29] audit: type=1326 audit(1738903634.583:1298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10576 comm="syz.4.1424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddac78cde9 code=0x7fc00000 [ 574.995845][ T29] audit: type=1326 audit(1738903634.583:1299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10576 comm="syz.4.1424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddac78cde9 code=0x7fc00000 [ 575.040668][ T29] audit: type=1326 audit(1738903634.583:1300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10576 comm="syz.4.1424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddac78cde9 code=0x7fc00000 [ 575.093143][ T29] audit: type=1326 audit(1738903634.583:1301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10576 comm="syz.4.1424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fddac78cde9 code=0x7fc00000 [ 582.116053][T10676] program syz.2.1455 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 582.129818][T10673] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 583.313480][T10686] warning: `syz.2.1458' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 584.892942][ T9966] Bluetooth: (null): Invalid header checksum [ 584.926463][ T9966] Bluetooth: (null): Invalid header checksum [ 585.001735][ T6481] Bluetooth: (null): Invalid header checksum [ 585.109884][ T6481] Bluetooth: (null): Invalid header checksum [ 585.228672][ T58] Bluetooth: (null): Invalid header checksum [ 586.133299][T10725] xt_TPROXY: Can be used only with -p tcp or -p udp [ 589.168487][ T29] kauditd_printk_skb: 336 callbacks suppressed [ 589.168504][ T29] audit: type=1326 audit(1738903649.223:1638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10736 comm="syz.3.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7fc00000 [ 589.658400][ T29] audit: type=1326 audit(1738903649.223:1639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10736 comm="syz.3.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2be8d8cde9 code=0x7fc00000 [ 589.732388][ T29] audit: type=1326 audit(1738903649.223:1640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10736 comm="syz.3.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7fc00000 [ 589.787151][ T29] audit: type=1326 audit(1738903649.223:1641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10736 comm="syz.3.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7fc00000 [ 589.833439][ T29] audit: type=1326 audit(1738903649.223:1642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10736 comm="syz.3.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7fc00000 [ 590.107836][ T29] audit: type=1326 audit(1738903649.223:1643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10736 comm="syz.3.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7fc00000 [ 590.133092][ T29] audit: type=1326 audit(1738903649.223:1644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10736 comm="syz.3.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7fc00000 [ 590.161821][ T29] audit: type=1326 audit(1738903649.233:1645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10736 comm="syz.3.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7fc00000 [ 590.859972][ T29] audit: type=1326 audit(1738903649.273:1646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10736 comm="syz.3.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7fc00000 [ 590.906987][ T29] audit: type=1326 audit(1738903649.283:1647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10736 comm="syz.3.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be8d8cde9 code=0x7fc00000 [ 591.156069][T10766] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1480'. [ 593.273916][T10787] netlink: 'syz.4.1488': attribute type 1 has an invalid length. [ 593.303501][T10787] netlink: 84 bytes leftover after parsing attributes in process `syz.4.1488'. [ 595.444647][T10797] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3 [ 595.555733][T10803] Process accounting resumed [ 597.603244][T10825] xt_HMARK: spi-set and port-set can't be combined [ 598.501413][T10829] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1501'. [ 599.084762][T10833] netlink: 1624 bytes leftover after parsing attributes in process `syz.2.1503'. [ 599.182769][T10835] netlink: 240 bytes leftover after parsing attributes in process `syz.1.1504'. [ 599.929181][ T29] kauditd_printk_skb: 58 callbacks suppressed [ 599.929197][ T29] audit: type=1326 audit(1738903659.963:1706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10840 comm="syz.2.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f882d18cde9 code=0x7ffc0000 [ 599.972964][ T29] audit: type=1326 audit(1738903659.963:1707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10840 comm="syz.2.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7f882d18cde9 code=0x7ffc0000 [ 600.498307][ T29] audit: type=1326 audit(1738903659.963:1708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10840 comm="syz.2.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f882d18cde9 code=0x7ffc0000 [ 600.525827][ T29] audit: type=1326 audit(1738903659.963:1709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10840 comm="syz.2.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f882d18cde9 code=0x7ffc0000 [ 600.555619][ T29] audit: type=1326 audit(1738903659.963:1710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10840 comm="syz.2.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f882d18cde9 code=0x7ffc0000 [ 601.146466][ T29] audit: type=1326 audit(1738903659.963:1711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10840 comm="syz.2.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f882d18cde9 code=0x7ffc0000 [ 601.173487][ T29] audit: type=1326 audit(1738903659.963:1712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10840 comm="syz.2.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f882d18cde9 code=0x7ffc0000 [ 601.198576][ T29] audit: type=1326 audit(1738903659.963:1713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10840 comm="syz.2.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f882d18cde9 code=0x7ffc0000 [ 601.221428][ T29] audit: type=1326 audit(1738903659.963:1714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10840 comm="syz.2.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f882d18cde9 code=0x7ffc0000 [ 601.259018][ T29] audit: type=1326 audit(1738903659.963:1715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10840 comm="syz.2.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f882d18cde9 code=0x7ffc0000 [ 602.102327][T10865] netlink: 1624 bytes leftover after parsing attributes in process `syz.2.1515'. [ 604.498509][T10894] program syz.4.1523 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 605.108360][T10901] netlink: 1624 bytes leftover after parsing attributes in process `syz.1.1527'. [ 605.170893][T10903] ubi: mtd0 is already attached to ubi31 [ 605.473303][ T29] kauditd_printk_skb: 63 callbacks suppressed [ 605.473317][ T29] audit: type=1326 audit(1738903665.533:1779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10908 comm="syz.1.1533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 605.536021][ T29] audit: type=1326 audit(1738903665.563:1780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10908 comm="syz.1.1533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 605.566079][ T29] audit: type=1326 audit(1738903665.563:1781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10908 comm="syz.1.1533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 605.643230][ T29] audit: type=1326 audit(1738903665.563:1782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10908 comm="syz.1.1533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 605.746273][ T29] audit: type=1326 audit(1738903665.563:1783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10908 comm="syz.1.1533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 605.796543][ T29] audit: type=1326 audit(1738903665.563:1784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10908 comm="syz.1.1533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 605.904004][ T29] audit: type=1326 audit(1738903665.563:1785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10908 comm="syz.1.1533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 606.392696][ T29] audit: type=1326 audit(1738903665.563:1786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10908 comm="syz.1.1533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 606.456845][ T29] audit: type=1326 audit(1738903665.563:1787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10908 comm="syz.1.1533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 606.490061][ T29] audit: type=1326 audit(1738903665.563:1788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10908 comm="syz.1.1533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f94f8cde9 code=0x7ffc0000 [ 607.069200][T10931] netlink: 260 bytes leftover after parsing attributes in process `syz.0.1538'. [ 608.451031][T10947] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1541'. [ 608.463292][T10947] bridge0: port 2(bridge_slave_1) entered disabled state [ 608.471595][T10947] bridge0: port 1(bridge_slave_0) entered disabled state [ 610.393765][T10967] netlink: 260 bytes leftover after parsing attributes in process `syz.0.1549'. [ 614.749349][T11014] netlink: 260 bytes leftover after parsing attributes in process `syz.4.1564'. [ 615.511830][T11018] netlink: 'syz.0.1567': attribute type 10 has an invalid length. [ 615.520157][T11018] netlink: 55 bytes leftover after parsing attributes in process `syz.0.1567'. [ 618.306658][T11048] overlayfs: missing 'workdir' [ 619.011973][T11058] ptrace attach of "./syz-executor exec"[8974] was attempted by "  eth0 #uu0*iƇ޿_k.\x22#p/yLa~+>3l{@!2!9k\x0b8I$Q=r\x09/vӧJ#KT_$A=z/XmOX)s޾_N)6m\x0a\x0b뻑z|d\x1byx\x1bLTrw|0\x09\x5c[ ]V:Þ\x07x.TTϿa%QCuTYZy!Ѧ7vs\x07j*I{]*5JtsĪ~0fۮG:Q\x1b㣤}`eL\x0dyg1\x09i/!,u~)\x1b2jNTh\x1bo:\x0bq7SHLBq([aF*q v ANTeL+u^\x07sha 넙LD7DQ2!8,%$֜yKƴ%:0dLWՐl\x1b\x0bh=m.\x0bhQ}8/P+:E\x5cԬטլCRr^gQ(>⺨=\x0c04*@vTځg:hzW6s)x\x [ 620.626693][T11068] xt_TPROXY: Can be used only with -p tcp or -p udp [ 624.714857][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.723502][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 627.007851][T11118] ubi: mtd0 is already attached to ubi31 [ 627.663354][T11127] xt_TPROXY: Can be used only with -p tcp or -p udp [ 629.627990][T11145] netlink: 'syz.1.1605': attribute type 1 has an invalid length. [ 629.662490][T11145] netlink: 84 bytes leftover after parsing attributes in process `syz.1.1605'. [ 630.309709][ T6361] Bluetooth: (null): Invalid header checksum [ 630.543611][ T6361] Bluetooth: (null): Invalid header checksum [ 630.982301][T11154] netlink: 'syz.1.1610': attribute type 5 has an invalid length. [ 631.753637][T11161] ubi: mtd0 is already attached to ubi31 [ 632.042304][T11165] xt_TPROXY: Can be used only with -p tcp or -p udp [ 635.175036][T11211] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1629'. [ 635.368333][ T5883] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 635.542561][ T5883] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 635.562508][ T5883] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 635.582035][ T5883] usb 1-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 635.688479][ T5883] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 636.069053][ T5883] usb 1-1: config 0 descriptor?? [ 636.293155][T11219] tmpfs: Unknown parameter 'usbquota_block_hardlimi' [ 636.323407][T11219] block device autoloading is deprecated and will be removed. [ 636.332547][T11219] syz.2.1632: attempt to access beyond end of device [ 636.332547][T11219] md2: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 636.605143][T11230] fuse: Bad value for 'group_id' [ 636.610637][T11230] fuse: Bad value for 'group_id' [ 636.740418][ T5883] usbhid 1-1:0.0: can't add hid device: -71 [ 636.748770][ T5883] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 636.889505][ T5883] usb 1-1: USB disconnect, device number 6 [ 638.565276][T11259] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1641'. [ 638.730931][T11256] syz.1.1640 (11256) used greatest stack depth: 17744 bytes left [ 641.358311][ T5883] usb 3-1: new high-speed USB device number 20 using dummy_hcd [ 641.557955][T11297] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1653'. [ 641.846016][ T5883] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 641.888446][ T5883] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 642.508314][ T5883] usb 3-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 642.517402][ T5883] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 642.554347][ T5883] usb 3-1: config 0 descriptor?? [ 644.128390][ T5883] usbhid 3-1:0.0: can't add hid device: -71 [ 644.141456][ T5883] usbhid 3-1:0.0: probe with driver usbhid failed with error -71 [ 644.213403][ T5883] usb 3-1: USB disconnect, device number 20 [ 645.729592][T11346] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 646.004193][T11350] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1670'. [ 647.472758][ T46] usb 3-1: new high-speed USB device number 21 using dummy_hcd [ 647.900730][ T46] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 647.923273][ T46] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 647.953710][ T46] usb 3-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 647.978118][ T46] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 648.056823][ T46] usb 3-1: config 0 descriptor?? [ 648.694887][T11381] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 648.927990][T11389] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1683'. [ 649.155169][ T46] usbhid 3-1:0.0: can't add hid device: -71 [ 649.285595][ T46] usbhid 3-1:0.0: probe with driver usbhid failed with error -71 [ 649.581399][T11391] ALSA: mixer_oss: invalid OSS volume 'u' [ 649.638431][ T46] usb 3-1: USB disconnect, device number 21 [ 649.939782][T11404] xt_TPROXY: Can be used only with -p tcp or -p udp [ 652.210263][T11435] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 652.218891][T11434] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1697'. [ 655.028517][ T975] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 655.710840][ T975] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 655.728503][ T975] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 655.738981][ T975] usb 5-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 655.757028][ T975] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 655.777837][ T975] usb 5-1: config 0 descriptor?? [ 656.403670][ T975] usbhid 5-1:0.0: can't add hid device: -71 [ 656.433382][ T975] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 656.483567][ T975] usb 5-1: USB disconnect, device number 14 [ 658.732529][T11506] netlink: 'syz.2.1718': attribute type 10 has an invalid length. [ 658.775143][T11506] syz_tun: entered promiscuous mode [ 658.829530][T11506] bond0: (slave syz_tun): Enslaving as an active interface with an up link [ 660.779774][T11524] netlink: 188 bytes leftover after parsing attributes in process `syz.2.1725'. [ 661.244959][T11524] netlink: 'syz.2.1725': attribute type 1 has an invalid length. [ 664.042133][T11549] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3 [ 664.122421][T11544] Process accounting resumed [ 665.044411][T11558] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1734'. [ 665.330323][T11568] ptrace attach of "./syz-executor exec"[5833] was attempted by "./syz-executor exec"[11568] [ 666.129477][T11563] program syz.0.1736 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 666.688707][T11572] netlink: 'syz.1.1738': attribute type 10 has an invalid length. [ 666.696570][T11572] netlink: 55 bytes leftover after parsing attributes in process `syz.1.1738'. [ 667.659762][ T29] kauditd_printk_skb: 22 callbacks suppressed [ 667.659779][ T29] audit: type=1326 audit(1738903727.713:1811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11585 comm="syz.2.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f882d18cde9 code=0x7fc00000 [ 667.780610][ T29] audit: type=1326 audit(1738903727.713:1812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11585 comm="syz.2.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f882d18cde9 code=0x7fc00000 [ 667.833186][ T29] audit: type=1326 audit(1738903727.713:1813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11585 comm="syz.2.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f882d18cde9 code=0x7fc00000 [ 667.898335][ T29] audit: type=1326 audit(1738903727.713:1814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11585 comm="syz.2.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f882d18cde9 code=0x7fc00000 [ 667.960200][ T29] audit: type=1326 audit(1738903727.713:1815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11585 comm="syz.2.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f882d18cde9 code=0x7fc00000 [ 668.018420][ T29] audit: type=1326 audit(1738903727.713:1816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11585 comm="syz.2.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f882d18cde9 code=0x7fc00000 [ 668.118318][ T29] audit: type=1326 audit(1738903727.713:1817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11585 comm="syz.2.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f882d18cde9 code=0x7fc00000 [ 668.188487][ T29] audit: type=1326 audit(1738903727.713:1818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11585 comm="syz.2.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f882d18cde9 code=0x7fc00000 [ 668.258619][ T29] audit: type=1326 audit(1738903727.713:1819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11585 comm="syz.2.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f882d18cde9 code=0x7fc00000 [ 668.318458][ T29] audit: type=1326 audit(1738903727.713:1820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11585 comm="syz.2.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f882d18cde9 code=0x7fc00000 [ 669.209339][T11608] ptrace attach of "./syz-executor exec"[5829] was attempted by "./syz-executor exec"[11608] [ 669.921783][T11609] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1750'. [ 671.481350][T11626] netlink: 'syz.0.1757': attribute type 10 has an invalid length. [ 671.489268][T11626] netlink: 55 bytes leftover after parsing attributes in process `syz.0.1757'. [ 672.169553][T11638] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1761'. [ 673.076369][T11646] ptrace attach of "./syz-executor exec"[5829] was attempted by "./syz-executor exec"[11646] [ 674.071410][T11650] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 676.086944][T11669] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1772'. [ 676.106259][T11667] program syz.4.1771 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 680.706176][T11714] program syz.2.1786 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 680.823403][T11719] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1787'. [ 680.937553][T11723] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1787'. [ 682.643785][T11733] gfs2: not a GFS2 filesystem [ 682.836249][T11739] loop7: detected capacity change from 0 to 16384 [ 683.499428][T11739] loop7: detected capacity change from 16384 to 16383 [ 684.858340][ T5886] usb 3-1: new high-speed USB device number 22 using dummy_hcd [ 685.132854][T11756] ================================================================== [ 685.140965][T11756] BUG: KASAN: slab-use-after-free in hci_chan_del+0x3b/0x1b0 [ 685.148371][T11756] Read of size 8 at addr ffff8880270c2a18 by task syz.3.1799/11756 [ 685.156262][T11756] [ 685.158604][T11756] CPU: 1 UID: 0 PID: 11756 Comm: syz.3.1799 Not tainted 6.14.0-rc1-next-20250206-syzkaller #0 [ 685.158625][T11756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 685.158636][T11756] Call Trace: [ 685.158643][T11756] [ 685.158649][T11756] dump_stack_lvl+0x241/0x360 [ 685.158673][T11756] ? __pfx_dump_stack_lvl+0x10/0x10 [ 685.158689][T11756] ? __pfx__printk+0x10/0x10 [ 685.158714][T11756] ? _printk+0xd5/0x120 [ 685.158738][T11756] ? __virt_addr_valid+0x183/0x530 [ 685.158760][T11756] ? __virt_addr_valid+0x183/0x530 [ 685.158782][T11756] print_report+0x169/0x550 [ 685.158799][T11756] ? __virt_addr_valid+0x183/0x530 [ 685.158821][T11756] ? __virt_addr_valid+0x183/0x530 [ 685.158843][T11756] ? __virt_addr_valid+0x45f/0x530 [ 685.158870][T11756] ? __phys_addr+0xba/0x170 [ 685.158893][T11756] ? hci_chan_del+0x3b/0x1b0 [ 685.158914][T11756] kasan_report+0x143/0x180 [ 685.158932][T11756] ? hci_chan_del+0x3b/0x1b0 [ 685.158957][T11756] hci_chan_del+0x3b/0x1b0 [ 685.158979][T11756] l2cap_conn_put+0x70/0xe0 [ 685.159002][T11756] l2cap_sock_shutdown+0xa8a/0x1020 [ 685.159028][T11756] ? l2cap_sock_release+0x6c/0x1d0 [ 685.159046][T11756] ? __pfx_lock_release+0x10/0x10 [ 685.159067][T11756] ? __pfx_l2cap_sock_shutdown+0x10/0x10 [ 685.159087][T11756] ? bt_accept_dequeue+0x3ac/0x570 [ 685.159110][T11756] l2cap_sock_release+0x79/0x1d0 [ 685.159131][T11756] sock_close+0xbc/0x240 [ 685.159148][T11756] ? __pfx_sock_close+0x10/0x10 [ 685.159164][T11756] __fput+0x3e9/0x9f0 [ 685.159186][T11756] task_work_run+0x24f/0x310 [ 685.159214][T11756] ? __pfx_task_work_run+0x10/0x10 [ 685.159240][T11756] get_signal+0x15f7/0x1750 [ 685.159259][T11756] ? __pfx_task_work_add+0x10/0x10 [ 685.159282][T11756] ? __pfx_l2cap_sock_connect+0x10/0x10 [ 685.159301][T11756] ? __pfx_get_signal+0x10/0x10 [ 685.159323][T11756] arch_do_signal_or_restart+0x96/0x860 [ 685.159342][T11756] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 685.159358][T11756] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 685.159386][T11756] ? syscall_exit_to_user_mode+0xa3/0x340 [ 685.159407][T11756] syscall_exit_to_user_mode+0xce/0x340 [ 685.159428][T11756] do_syscall_64+0x100/0x230 [ 685.159447][T11756] ? clear_bhb_loop+0x35/0x90 [ 685.159470][T11756] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 685.159501][T11756] RIP: 0033:0x7f2be8d8cde9 [ 685.159520][T11756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 685.159535][T11756] RSP: 002b:00007f2be9b2a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 685.159559][T11756] RAX: fffffffffffffffc RBX: 00007f2be8fa5fa0 RCX: 00007f2be8d8cde9 [ 685.159571][T11756] RDX: 000000000000000e RSI: 0000200000000080 RDI: 0000000000000008 [ 685.159581][T11756] RBP: 00007f2be8e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 685.159591][T11756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 685.159601][T11756] R13: 0000000000000000 R14: 00007f2be8fa5fa0 R15: 00007fff26b8f9e8 [ 685.159623][T11756] [ 685.159629][T11756] [ 685.456499][T11756] Allocated by task 11756: [ 685.460903][T11756] kasan_save_track+0x3f/0x80 [ 685.465579][T11756] __kasan_kmalloc+0x98/0xb0 [ 685.470172][T11756] __kmalloc_cache_noprof+0x243/0x390 [ 685.475540][T11756] hci_chan_create+0xc8/0x310 [ 685.480212][T11756] l2cap_conn_add+0x69/0x8e0 [ 685.484799][T11756] l2cap_chan_connect+0x623/0xeb0 [ 685.489827][T11756] l2cap_sock_connect+0x5c9/0x800 [ 685.494841][T11756] __sys_connect+0x288/0x2d0 [ 685.499420][T11756] __x64_sys_connect+0x7a/0x90 [ 685.504173][T11756] do_syscall_64+0xf3/0x230 [ 685.508664][T11756] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 685.514548][T11756] [ 685.516857][T11756] Freed by task 5832: [ 685.520906][T11756] kasan_save_track+0x3f/0x80 [ 685.525576][T11756] kasan_save_free_info+0x40/0x50 [ 685.530679][T11756] __kasan_slab_free+0x59/0x70 [ 685.535437][T11756] kfree+0x196/0x430 [ 685.539327][T11756] hci_conn_del+0x4b5/0xc40 [ 685.543822][T11756] hci_conn_failed+0x319/0x400 [ 685.548660][T11756] hci_abort_conn_sync+0x56c/0x11f0 [ 685.553850][T11756] hci_cmd_sync_work+0x22b/0x400 [ 685.558774][T11756] process_scheduled_works+0xa66/0x1840 [ 685.564314][T11756] worker_thread+0x870/0xd30 [ 685.568896][T11756] kthread+0x7a9/0x920 [ 685.572956][T11756] ret_from_fork+0x4b/0x80 [ 685.577362][T11756] ret_from_fork_asm+0x1a/0x30 [ 685.582118][T11756] [ 685.584431][T11756] The buggy address belongs to the object at ffff8880270c2a00 [ 685.584431][T11756] which belongs to the cache kmalloc-128 of size 128 [ 685.598472][T11756] The buggy address is located 24 bytes inside of [ 685.598472][T11756] freed 128-byte region [ffff8880270c2a00, ffff8880270c2a80) [ 685.612169][T11756] [ 685.614484][T11756] The buggy address belongs to the physical page: [ 685.620881][T11756] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x270c2 [ 685.629627][T11756] anon flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 685.637156][T11756] page_type: f5(slab) [ 685.641122][T11756] raw: 00fff00000000000 ffff88801ac41a00 0000000000000000 dead000000000001 [ 685.649690][T11756] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000 [ 685.658254][T11756] page dumped because: kasan: bad access detected [ 685.664659][T11756] page_owner tracks the page as allocated [ 685.670355][T11756] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5208, tgid 5208 (udevd), ts 34931181570, free_ts 34896461378 [ 685.689011][T11756] post_alloc_hook+0x1f4/0x240 [ 685.693771][T11756] get_page_from_freelist+0x365c/0x37a0 [ 685.699316][T11756] __alloc_frozen_pages_noprof+0x292/0x710 [ 685.705113][T11756] alloc_pages_mpol+0x311/0x660 [ 685.709955][T11756] allocate_slab+0x8f/0x3a0 [ 685.714449][T11756] ___slab_alloc+0xc27/0x14a0 [ 685.719114][T11756] __slab_alloc+0x58/0xa0 [ 685.723441][T11756] __kmalloc_cache_noprof+0x27b/0x390 [ 685.728806][T11756] kernfs_fop_open+0x826/0xd10 [ 685.733559][T11756] do_dentry_open+0xdec/0x1960 [ 685.738310][T11756] vfs_open+0x3b/0x370 [ 685.742365][T11756] path_openat+0x2c81/0x3590 [ 685.746943][T11756] do_filp_open+0x27f/0x4e0 [ 685.751434][T11756] do_sys_openat2+0x13d/0x1c0 [ 685.756095][T11756] __x64_sys_openat+0x247/0x2a0 [ 685.760949][T11756] do_syscall_64+0xf3/0x230 [ 685.765455][T11756] page last free pid 5203 tgid 5203 stack trace: [ 685.771774][T11756] free_frozen_pages+0xe0d/0x10e0 [ 685.776801][T11756] __slab_free+0x2c2/0x380 [ 685.781221][T11756] qlist_free_all+0x9a/0x140 [ 685.785809][T11756] kasan_quarantine_reduce+0x14f/0x170 [ 685.791264][T11756] __kasan_slab_alloc+0x23/0x80 [ 685.796109][T11756] kmem_cache_alloc_noprof+0x1d9/0x380 [ 685.801556][T11756] getname_flags+0xb7/0x540 [ 685.806067][T11756] do_sys_openat2+0xcf/0x1c0 [ 685.810656][T11756] __x64_sys_openat+0x247/0x2a0 [ 685.815495][T11756] do_syscall_64+0xf3/0x230 [ 685.819991][T11756] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 685.825883][T11756] [ 685.828198][T11756] Memory state around the buggy address: [ 685.833818][T11756] ffff8880270c2900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 685.841870][T11756] ffff8880270c2980: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 685.849920][T11756] >ffff8880270c2a00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 685.857967][T11756] ^ [ 685.862892][T11756] ffff8880270c2a80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 685.870940][T11756] ffff8880270c2b00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 685.878993][T11756] ================================================================== [ 685.951032][T11756] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 685.958254][T11756] CPU: 0 UID: 0 PID: 11756 Comm: syz.3.1799 Not tainted 6.14.0-rc1-next-20250206-syzkaller #0 [ 685.968491][T11756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 685.978552][T11756] Call Trace: [ 685.981827][T11756] [ 685.984749][T11756] dump_stack_lvl+0x241/0x360 [ 685.989437][T11756] ? __pfx_dump_stack_lvl+0x10/0x10 [ 685.994632][T11756] ? __pfx__printk+0x10/0x10 [ 685.999235][T11756] ? preempt_schedule+0xe1/0xf0 [ 686.004090][T11756] ? vscnprintf+0x5d/0x90 [ 686.008513][T11756] panic+0x349/0x880 [ 686.012584][T11756] ? check_panic_on_warn+0x21/0xb0 [ 686.017694][T11756] ? __pfx_panic+0x10/0x10 [ 686.022118][T11756] ? _raw_spin_unlock_irqrestore+0x130/0x140 [ 686.028097][T11756] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 686.034414][T11756] ? print_report+0x502/0x550 [ 686.039260][T11756] check_panic_on_warn+0x86/0xb0 [ 686.044193][T11756] ? hci_chan_del+0x3b/0x1b0 [ 686.048777][T11756] end_report+0x77/0x160 [ 686.053009][T11756] kasan_report+0x154/0x180 [ 686.057504][T11756] ? hci_chan_del+0x3b/0x1b0 [ 686.062107][T11756] hci_chan_del+0x3b/0x1b0 [ 686.066528][T11756] l2cap_conn_put+0x70/0xe0 [ 686.071032][T11756] l2cap_sock_shutdown+0xa8a/0x1020 [ 686.076231][T11756] ? l2cap_sock_release+0x6c/0x1d0 [ 686.081339][T11756] ? __pfx_lock_release+0x10/0x10 [ 686.086363][T11756] ? __pfx_l2cap_sock_shutdown+0x10/0x10 [ 686.091993][T11756] ? bt_accept_dequeue+0x3ac/0x570 [ 686.097103][T11756] l2cap_sock_release+0x79/0x1d0 [ 686.102033][T11756] sock_close+0xbc/0x240 [ 686.106268][T11756] ? __pfx_sock_close+0x10/0x10 [ 686.111111][T11756] __fput+0x3e9/0x9f0 [ 686.115101][T11756] task_work_run+0x24f/0x310 [ 686.119698][T11756] ? __pfx_task_work_run+0x10/0x10 [ 686.124810][T11756] get_signal+0x15f7/0x1750 [ 686.129310][T11756] ? __pfx_task_work_add+0x10/0x10 [ 686.134416][T11756] ? __pfx_l2cap_sock_connect+0x10/0x10 [ 686.139959][T11756] ? __pfx_get_signal+0x10/0x10 [ 686.144802][T11756] arch_do_signal_or_restart+0x96/0x860 [ 686.150350][T11756] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 686.156518][T11756] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 686.162506][T11756] ? syscall_exit_to_user_mode+0xa3/0x340 [ 686.168231][T11756] syscall_exit_to_user_mode+0xce/0x340 [ 686.173779][T11756] do_syscall_64+0x100/0x230 [ 686.178372][T11756] ? clear_bhb_loop+0x35/0x90 [ 686.183050][T11756] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 686.188948][T11756] RIP: 0033:0x7f2be8d8cde9 [ 686.193361][T11756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 686.212959][T11756] RSP: 002b:00007f2be9b2a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 686.221365][T11756] RAX: fffffffffffffffc RBX: 00007f2be8fa5fa0 RCX: 00007f2be8d8cde9 [ 686.229329][T11756] RDX: 000000000000000e RSI: 0000200000000080 RDI: 0000000000000008 [ 686.237292][T11756] RBP: 00007f2be8e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 686.245250][T11756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 686.253208][T11756] R13: 0000000000000000 R14: 00007f2be8fa5fa0 R15: 00007fff26b8f9e8 [ 686.261178][T11756] [ 686.264437][T11756] Kernel Offset: disabled [ 686.268752][T11756] Rebooting in 86400 seconds..