last executing test programs: 12m24.141866233s ago: executing program 1 (id=153): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$AUTOFS_IOC_FAIL(r0, 0x4c80, 0xffffffffffffffb6) 12m22.794323131s ago: executing program 1 (id=155): r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x80) r1 = bpf$ITER_CREATE(0xb, &(0x7f00000004c0)={r0}, 0x8) close(r1) bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r0, 0x8, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) syz_clone(0x400c0000, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$MAP_LOOKUP_ELEM(0x15, 0x0, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000000)={r1, r3, 0x4, r4}, 0x10) 12m20.612224597s ago: executing program 1 (id=175): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) r3 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r3, &(0x7f0000000200)=[{&(0x7f00000000c0)="580000001500add427323b472545b4560a117fff0b0082001b59000d00ff0028925aa80020007b00090080000efffeffe809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee000000000000000002", 0x54}, {&(0x7f00000001c0)="ee641681", 0x4}], 0x2) 12m19.140629325s ago: executing program 1 (id=167): openat$sysfs(0xffffffffffffff9c, 0x0, 0x242, 0x161) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x58e, &(0x7f0000000180)={[{@oldalloc}, {@errors_remount}, {@init_itable}, {@block_validity}, {@block_validity}, {@quota}]}, 0x1, 0x451, &(0x7f0000000780)="$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") chdir(&(0x7f0000000000)='./file0\x00') syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x804810, &(0x7f0000000a40), 0x26, 0x75c, &(0x7f0000000b00)="$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") chdir(&(0x7f00000001c0)='./file0\x00') bpf$MAP_CREATE(0x0, &(0x7f0000001280)=ANY=[@ANYBLOB], 0x50) r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) r1 = open(&(0x7f0000000180)='./bus\x00', 0x14113e, 0x6ceac77f206eabb9) write$binfmt_script(r1, &(0x7f0000000080), 0x208e24b) unlink(0x0) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) 12m16.438264133s ago: executing program 1 (id=179): capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xfffffff9}) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x2002) r2 = socket$tipc(0x1e, 0x5, 0x0) setsockopt$TIPC_CONN_TIMEOUT(r2, 0x10f, 0x82, &(0x7f0000000080)=0x6, 0x4) setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000040)={0x42}, 0x10) setsockopt$TIPC_GROUP_LEAVE(r2, 0x10f, 0x88) sendmsg$tipc(r2, &(0x7f0000000c80)={&(0x7f0000000980)=@id, 0x10, 0x0}, 0x0) connect$tipc(r2, &(0x7f00000000c0)=@name, 0x10) ioctl$EVIOCGRAB(r1, 0x40044590, &(0x7f0000000080)=0xfffffffb) write$evdev(r1, &(0x7f0000000040)=[{{}, 0x0, 0x2}], 0x37) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x1f, 0xc, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x80}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x20000002}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0xa6}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x59}, 0x94) 12m14.635532078s ago: executing program 1 (id=184): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)="1400000016000b63d25a80648c2594f917240685", 0x14}], 0x1}, 0x0) 12m13.544959886s ago: executing program 32 (id=184): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)="1400000016000b63d25a80648c2594f917240685", 0x14}], 0x1}, 0x0) 16.556855141s ago: executing program 0 (id=2297): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000003840), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_REGISTER_BEACONS(r5, &(0x7f0000003900)={0x0, 0x0, &(0x7f00000038c0)={&(0x7f0000001500)={0x30, r4, 0x1, 0x70bd07, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0x64}, @val={0x8, 0x3, r6}, @val={0xc, 0x99, {0xb, 0x43}}}}}, 0x30}, 0x1, 0x0, 0x0, 0x40000a0}, 0x810) 13.476955428s ago: executing program 0 (id=2310): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window, @mss, @window, @window], 0x20000000000000e4) sched_setscheduler(0x0, 0x2, 0x0) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, 0x0, 0x0) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e8500000007000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000700), 0x4) sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0) recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25) 11.741606008s ago: executing program 5 (id=2304): r0 = socket(0x10, 0x3, 0x0) r1 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x211000, 0x1000}, 0x20) setsockopt$XDP_RX_RING(r1, 0x11b, 0x2, &(0x7f0000000040)=0x20, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) connect$rxrpc(0xffffffffffffffff, &(0x7f00000002c0)=@in4={0x21, 0x1, 0x2, 0x10, {0x2, 0x4e22, @multicast1}}, 0x24) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'ipvlan1\x00', 0x0}) setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4) setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4) bind$xdp(r1, &(0x7f0000000100)={0x2c, 0x0, r3}, 0x10) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x3, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20}}, &(0x7f0000000100)='GPL\x00'}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='contention_end\x00', r4}, 0x10) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) write(r0, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000003c0000000000000008000f0001000000", 0x24) r5 = socket$netlink(0x10, 0x3, 0x400000000000004) writev(r5, &(0x7f0000019440)=[{&(0x7f0000000200)="480000001400190d7ebdeb75fd0d8c562c84d8c033ed7a80ffe0090f000060000000a2bc5603ca00000f7f89000000200000004a2471083ec6991778581acb6c0101ff0000000309", 0x48}], 0x1) 11.740731648s ago: executing program 2 (id=2305): preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) dup(0xffffffffffffffff) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000a50000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32, @ANYBLOB="0000000000000000b7050000080000a8c5000000a5000000180100002020640500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b300000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x35, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 10.731328749s ago: executing program 2 (id=2309): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r1) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2) sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) close(r4) r5 = socket$unix(0x1, 0x1, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000026c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x100, 0x7, 0x6361, 0x5, 0x1, 0x6}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0) sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x80000, {0x0, 0x0, 0x0, r7, {}, {0x2, 0xb}, {0xd, 0xb}}, [@qdisc_kind_options=@q_skbprio={{0xc}, {0xfffffffffffffe5c, 0x2, 0x9}}]}, 0x38}, 0x1, 0x0, 0x0, 0x2000c061}, 0x4008000) ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"}) 10.284052484s ago: executing program 5 (id=2314): bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) socket$nl_rdma(0x10, 0x3, 0x14) setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = socket$netlink(0x10, 0x3, 0x15) writev(r2, &(0x7f0000000280)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff060000000100000045", 0x19}, {&(0x7f0000000580)="fa21bd2b5c40cc420740358ffc7f9f4b6e68fc8d1aa2597e7b484f301f11e35f22", 0x21}], 0x2) 10.224171419s ago: executing program 2 (id=2315): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0) syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000001e40)='./file1\x00', 0x1000c01, &(0x7f0000000000)=ANY=[], 0x2, 0x21a, &(0x7f00000006c0)="$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") fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f0000000140)=[{0xb1, 0x0, 0x0, 0xffeff024}, {0x6, 0x0, 0x4}]}, 0x10) sendmmsg(r4, &(0x7f0000001c00), 0x400000000000159, 0x40840) 9.187261502s ago: executing program 2 (id=2317): r0 = socket$unix(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f0000000100)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) r1 = socket$unix(0x1, 0x2, 0x0) connect$unix(r1, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) r2 = socket$kcm(0x29, 0x2, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x8080) mkdirat(0xffffffffffffff9c, 0x0, 0x0) ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f0000000040)) writev(r1, &(0x7f00000008c0)=[{&(0x7f0000000580)='`', 0x1}], 0x1) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x23, &(0x7f0000000080)=0x6, 0x26) recvmmsg(r0, &(0x7f0000000300), 0x40000000000049e, 0x1000000000fe, 0x0) 8.455268471s ago: executing program 4 (id=2319): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10) r1 = getpgrp(0x0) sched_setscheduler(r1, 0x1, &(0x7f0000000240)=0x6) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x101000, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) 8.454534301s ago: executing program 3 (id=2329): socket$tipc(0x1e, 0x5, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f00000001c0)=0x5) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) gettid() prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) r3 = io_uring_setup(0x2c93, 0x0) io_uring_enter(r3, 0x0, 0xcb, 0xf, 0x0, 0x0) mkdir(&(0x7f0000000100)='./control\x00', 0xa0) mount$afs(&(0x7f0000000080)=@cell={0x25, 'syz1:', 'syz1', '.readonly'}, &(0x7f00000000c0)='./control\x00', &(0x7f0000000000), 0x200000, 0x0) 4.912358066s ago: executing program 3 (id=2320): preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) dup(0xffffffffffffffff) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000a50000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7050000080000a8c5000000a5000000180100002020640500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b300000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x35, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 4.910206916s ago: executing program 4 (id=2321): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xa, 0x4, 0x7fe2, 0x1}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x17, 0x2000000000000111, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x40}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18) request_key(&(0x7f0000000300)='user\x00', &(0x7f0000000480)={'syz', 0x2}, &(0x7f00000004c0)='/:&\x00', 0xfffffffffffffffc) 4.879303018s ago: executing program 0 (id=2322): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = gettid() r4 = epoll_create(0x20003fd) r5 = eventfd(0x0) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r5, &(0x7f0000000000)={0x2}) kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, r5, &(0x7f0000000080)={r4, r5}) 3.572247003s ago: executing program 3 (id=2323): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x1c3301, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000880)={0x0, 0x0, @pic={0x2a, 0xc0, 0x7, 0x6, 0xfb, 0x0, 0xf, 0x4, 0x3, 0x0, 0x3, 0x58, 0x9e, 0x6, 0x6, 0x7f}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0x0, 0x180, 0x4, 0x14, 0xf1, 0x0, 0x7fffffffffffe, 0x5, 0x5, 0x6, 0x0, 0x45, 0x4, 0xbdb], 0x1, 0x1c4213}) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r5 = dup(r4) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil}) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) 3.409965166s ago: executing program 4 (id=2324): openat$sw_sync_info(0xffffff9c, &(0x7f0000000140), 0x400080, 0x0) sched_setscheduler(0x0, 0x2, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="50000000020601080000000000000000000000080c00078008000640200000000500010006000000050005000a00000005000400000000000900020073797a31000000000c000300686173683a6970"], 0x50}}, 0x20040000) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, 0x0, 0xc000) openat$tun(0xffffffffffffff9c, 0x0, 0x40241, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, 0x0, 0x0) r3 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r3, 0x8914, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPSET_CMD_ADD(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="44000000090601020000000000000000000000000900020073797a310000000005000100070000001c0007801800018014000240"], 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084) 2.726169671s ago: executing program 0 (id=2325): r0 = socket(0x10, 0x3, 0x0) r1 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x211000, 0x1000}, 0x20) setsockopt$XDP_RX_RING(r1, 0x11b, 0x2, &(0x7f0000000040)=0x20, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) connect$rxrpc(0xffffffffffffffff, &(0x7f00000002c0)=@in4={0x21, 0x1, 0x2, 0x10, {0x2, 0x4e22, @multicast1}}, 0x24) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'ipvlan1\x00', 0x0}) setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4) setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4) bind$xdp(r1, &(0x7f0000000100)={0x2c, 0x0, r3}, 0x10) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x3, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20}}, &(0x7f0000000100)='GPL\x00'}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='contention_end\x00', r4}, 0x10) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) write(r0, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000003c0000000000000008000f0001000000", 0x24) r5 = socket$netlink(0x10, 0x3, 0x400000000000004) writev(r5, &(0x7f0000019440)=[{&(0x7f0000000200)="480000001400190d7ebdeb75fd0d8c562c84d8c033ed7a80ffe0090f000060000000a2bc5603ca00000f7f89000000200000004a2471083ec6991778581acb6c0101ff0000000309", 0x48}], 0x1) 2.725991011s ago: executing program 5 (id=2326): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x0, 0x20}, 0xc) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000080)={0x5, 0x1000086}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x4002) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r2, 0x0, 0x0) sendmsg$IPSET_CMD_FLUSH(0xffffffffffffffff, 0x0, 0x1) socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet6(r0, &(0x7f0000000180)="1a", 0x34000, 0x0, &(0x7f0000000480)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendmmsg$sock(r0, &(0x7f0000000340)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000280)}], 0x1}}, {{0x0, 0x0, &(0x7f0000000040)=[{0x0}], 0x1}}], 0x2, 0x40448c0) shutdown(r0, 0x1) 2.660070286s ago: executing program 3 (id=2327): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) openat$audio(0xffffff9c, 0x0, 0x402, 0x0) connect$unix(r0, 0x0, 0x0) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg(r1, 0x0, 0x0) sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)='4', 0x1}], 0x1) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xc) r2 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0) write$sysctl(r2, &(0x7f0000000580)='1\x00', 0x2) write$sysctl(r2, &(0x7f00000000c0)='2\x00', 0x2) 2.564514144s ago: executing program 5 (id=2328): r0 = socket$packet(0x11, 0x2, 0x300) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) ioctl$SIOCGSTAMPNS(0xffffffffffffffff, 0x8907, 0x0) setsockopt$packet_int(r0, 0x107, 0xe, &(0x7f0000000080)=0x100, 0x4) 2.329329143s ago: executing program 0 (id=2330): r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x141, 0x48, 0x13, 0x44, 0x20, 0x424, 0x7500, 0x69ee, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0xb8, 0x7, 0x2, 0x96, 0xd1, 0xca, 0x0, [], [{{0x9, 0x5, 0x6, 0x2, 0x200, 0xd, 0x0, 0x6}}, {{0x9, 0x5, 0x82, 0x2, 0x200, 0x0, 0x1, 0x10}}]}}]}}]}}, 0x0) syz_usb_control_io$uac1(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000900)={0x84, &(0x7f00000003c0)={0x0, 0x17, 0x4, "abe763a8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000740)={0x44, &(0x7f0000000180)=ANY=[@ANYBLOB="601004000000cf"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f0000000300)={0x1c, &(0x7f0000001480)=ANY=[@ANYBLOB="200104"], 0x0, 0x0}) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io$uac1(r0, 0x0, &(0x7f00000013c0)={0x44, &(0x7f00000011c0)=ANY=[@ANYBLOB="201405"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000fc0)={0x84, &(0x7f0000000c80)={0x20, 0x0, 0x4, "f670e000"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$uac1(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000001200)={0x84, &(0x7f0000000f00)={0x0, 0x14, 0x4, "42467af9"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000500)={0x2c, &(0x7f0000000200)={0x0, 0x14, 0x4, "1df73cc1"}, 0x0, 0x0, 0x0, 0x0}) 1.576645393s ago: executing program 5 (id=2331): bind$bt_sco(0xffffffffffffffff, 0x0, 0x0) r0 = socket$vsock_stream(0x28, 0x1, 0x0) bind$vsock_stream(r0, &(0x7f0000000440), 0x10) r1 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000c}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10) getpgrp(0x0) listen(r0, 0x0) r3 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r3, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10) r4 = accept4$unix(r0, 0x0, 0x0, 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r4, 0x0, r5, 0x0, 0x20000008, 0x0) 1.568439464s ago: executing program 4 (id=2332): socket$inet_udp(0x2, 0x2, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$smc(&(0x7f0000000200), r0) sendmsg$SMC_PNETID_GET(r0, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x20040800) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000440)={'wlan0\x00'}) sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r0, 0x0, 0x4000080) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20004015}, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0xd, 0x20000000000000bb, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb714000008"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x3, 0x0, 0x0, 0x0, 0x2000004, 0x0, 0x0, 0x1f00, 0x39, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x2, 0x200008, 0x5, 0x20000}, 0x10}, 0x94) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000300000000001c00090008000000", @ANYRES32=r1], 0x4c}}, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="2800000010000108000000000000000002000000", @ANYRES32=0x0, @ANYBLOB="b40200000000000008001b"], 0x28}}, 0x0) 1.127729379s ago: executing program 4 (id=2333): r0 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0) syz_open_dev$sndctrl(0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$MSR(&(0x7f0000000080), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) bpf$PROG_LOAD(0x5, 0x0, 0x0) r2 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_user\x00', 0x275a, 0x0) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000000206010200000000000000000100000005fa0300000000000900020073797a31"], 0x28}}, 0x0) write$binfmt_misc(r3, &(0x7f0000000040), 0xe09) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000000500)={{0x1, 0x1, 0x18, r0, {0x0}}, './file1\x00'}) quotactl_fd$Q_QUOTAOFF(r1, 0xffffffff80000301, r4, 0x0) ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f00000002c0)={r3, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1d, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd0007003219002bfd000000000000000000af1e4ccfb7b3cad800000800", [0x0, 0x2000000000001]}}) 1.078265473s ago: executing program 2 (id=2334): preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) dup(0xffffffffffffffff) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000a50000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7050000080000a8c5000000a5000000180100002020640500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b300000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x35, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.025642217s ago: executing program 3 (id=2335): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000001a300)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) setsockopt$MRT6_PIM(0xffffffffffffffff, 0x29, 0xcf, 0x0, 0x0) r4 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c0000005e007f0a7eed1168379a3601ffc4910700004f78d4"], 0x1c}}, 0x0) recvmmsg$unix(r4, &(0x7f0000002380)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) 864.778071ms ago: executing program 0 (id=2336): mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002380)=ANY=[]) read$FUSE(r0, 0x0, 0x0) write$FUSE_INIT(r0, &(0x7f00000002c0)={0x50, 0x0, 0x0, {0x7, 0x9, 0xffffffff, 0x8695c3811e9a4f1d, 0xfffd, 0xfffd, 0x4, 0xb6d}}, 0x50) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000300)=@abs, 0x6e) r3 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x88002, 0x0) sendmmsg$unix(r3, &(0x7f0000001700)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001680), 0x0, 0x20000051}}], 0x1, 0x0) sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r4 = syz_io_uring_setup(0x10d, &(0x7f0000000380)={0x0, 0x5885, 0x100, 0x0, 0xffeffc03}, &(0x7f0000000340)=0x0, &(0x7f0000000240)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_CONNECT={0x10, 0x40, 0x0, r1, 0x80, &(0x7f00000000c0)=@un=@file={0x0, './file0\x00'}, 0x0, 0x0, 0x0, {0x0, r7}}) io_uring_enter(r4, 0x351e, 0x483, 0x0, 0x0, 0x0) 110.288211ms ago: executing program 5 (id=2337): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000780)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10) mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x2014800, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r4 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0) mq_timedsend(r4, &(0x7f0000000600)="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", 0xfd1, 0x6, 0x0) mq_timedreceive(r4, &(0x7f0000004600)=""/102381, 0xfffffceb, 0x0, 0x0) 105.173162ms ago: executing program 2 (id=2338): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r1) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2) sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) close(r4) r5 = socket$unix(0x1, 0x1, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x8000000, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x28, 0x2, {{0x100, 0x7, 0x6361, 0x5, 0xfffffffd, 0x6}, [@TCA_NETEM_LATENCY64={0xc, 0xa, 0x7}]}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x20000001}, 0x0) sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r7, {0x0, 0x11}, {0xffe6, 0xb}, {0xb, 0xc}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x14, 0x2, [@TCA_FQ_CODEL_FLOWS={0x8, 0x5, 0x3}, @TCA_FQ_CODEL_LIMIT={0x8, 0x2, 0x1}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x2000c061}, 0x4000000) ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"}) 87.844743ms ago: executing program 4 (id=2339): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff) mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) madvise(&(0x7f000042f000/0x800000)=nil, 0x80fd00, 0x15) 0s ago: executing program 3 (id=2340): userfaultfd(0x80001) creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x8400, 0x0) r0 = socket(0x15, 0x5, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x20001000) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x3) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000140), 0xffffffffffffffff) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000001300)=""/102392, 0x18ff8) r2 = fsopen(&(0x7f0000000180)='proc\x00', 0x1) fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r2, 0x7, 0x0, 0x0, 0x0) connect$inet6(r0, 0x0, 0x0) kernel console output (not intermixed with test programs): 3 length: 249 > 9 [ 150.567235][ T22] gspca_stk1135: serial bus timeout: status=0x00 [ 150.589471][ T4267] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 150.609458][ T4267] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 150.617328][ T4267] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 150.624780][ T4267] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 150.627200][ T22] gspca_stk1135: Sensor read failed [ 150.691561][ T22] gspca_stk1135: serial bus timeout: status=0x00 [ 150.698328][ T22] gspca_stk1135: Sensor read failed [ 150.703580][ T22] gspca_stk1135: serial bus timeout: status=0x00 [ 150.710377][ T22] gspca_stk1135: Sensor write failed [ 150.716272][ T22] gspca_stk1135: serial bus timeout: status=0x00 [ 150.722769][ T22] gspca_stk1135: Sensor write failed [ 150.728177][ T22] stk1135: probe of 1-1:0.0 failed with error -110 [ 151.203150][ T4303] usb 1-1: USB disconnect, device number 3 [ 152.133245][ T5496] netlink: 8 bytes leftover after parsing attributes in process `syz.3.323'. [ 152.740421][ T4271] Bluetooth: hci4: command 0x0409 tx timeout [ 153.950830][ T5496] netlink: 8 bytes leftover after parsing attributes in process `syz.3.323'. [ 153.959809][ T5496] netlink: 4 bytes leftover after parsing attributes in process `syz.3.323'. [ 154.018490][ T5468] chnl_net:caif_netlink_parms(): no params data found [ 154.828313][ T4271] Bluetooth: hci4: command 0x041b tx timeout [ 156.105150][ T5468] bridge0: port 1(bridge_slave_0) entered blocking state [ 156.118538][ T5468] bridge0: port 1(bridge_slave_0) entered disabled state [ 156.143418][ T5468] device bridge_slave_0 entered promiscuous mode [ 156.173109][ T5468] bridge0: port 2(bridge_slave_1) entered blocking state [ 156.228619][ T5468] bridge0: port 2(bridge_slave_1) entered disabled state [ 156.252333][ T5468] device bridge_slave_1 entered promiscuous mode [ 156.908459][ T4271] Bluetooth: hci4: command 0x040f tx timeout [ 157.176040][ T5468] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 157.220347][ T5468] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 157.313199][ T5542] netlink: 'syz.4.332': attribute type 10 has an invalid length. [ 157.388313][ T5542] team0: Failed to send options change via netlink (err -105) [ 157.395834][ T5542] team0: Port device dummy0 added [ 157.564315][ T5468] team0: Port device team_slave_0 added [ 157.609090][ T5468] team0: Port device team_slave_1 added [ 157.750137][ T5468] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 157.758944][ T5468] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 157.799343][ T5468] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 157.887828][ T5549] mmap: syz.5.334 (5549) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 157.921133][ T5468] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 157.936693][ T5468] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 157.973215][ T5468] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 158.145143][ T5468] device hsr_slave_0 entered promiscuous mode [ 158.155906][ T5468] device hsr_slave_1 entered promiscuous mode [ 158.166403][ T5468] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 158.179791][ T5468] Cannot create hsr debugfs directory [ 158.231985][ T75] device hsr_slave_0 left promiscuous mode [ 158.245165][ T75] device hsr_slave_1 left promiscuous mode [ 158.267139][ T75] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 158.296180][ T75] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 158.310452][ T75] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 158.320218][ T75] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 158.332424][ T75] device bridge_slave_1 left promiscuous mode [ 158.341913][ T75] bridge0: port 2(bridge_slave_1) entered disabled state [ 158.373322][ T75] device bridge_slave_0 left promiscuous mode [ 158.388364][ T75] bridge0: port 1(bridge_slave_0) entered disabled state [ 158.516294][ T75] device veth1_macvtap left promiscuous mode [ 158.523447][ T75] device veth0_macvtap left promiscuous mode [ 158.542484][ T75] device veth1_vlan left promiscuous mode [ 158.557641][ T75] device veth0_vlan left promiscuous mode [ 158.988795][ T4271] Bluetooth: hci4: command 0x0419 tx timeout [ 159.702265][ T5578] syz.3.339 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 161.340406][ T75] team0 (unregistering): Port device team_slave_1 removed [ 161.406109][ T75] team0 (unregistering): Port device team_slave_0 removed [ 161.490359][ T75] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 161.543529][ T75] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 162.253954][ T75] bond0 (unregistering): Released all slaves [ 162.406005][ T5586] ªªªªªª: renamed from vlan0 [ 162.440595][ T5594] netlink: 24 bytes leftover after parsing attributes in process `syz.3.343'. [ 162.509020][ T5597] netlink: 4 bytes leftover after parsing attributes in process `syz.3.343'. [ 162.831246][ T5606] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized [ 165.367224][ T5468] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 165.385136][ T5642] loop4: detected capacity change from 0 to 1024 [ 165.411117][ T5468] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 165.426733][ T5642] EXT4-fs: Ignoring removed nobh option [ 165.449709][ T5468] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 165.479019][ T5642] EXT4-fs: Ignoring removed bh option [ 165.495327][ T5642] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 165.510816][ T5468] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 165.573103][ T5642] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 165.660206][ T5640] netlink: 'syz.4.351': attribute type 4 has an invalid length. [ 165.693181][ T5640] netlink: 17 bytes leftover after parsing attributes in process `syz.4.351'. [ 166.638848][ T5468] 8021q: adding VLAN 0 to HW filter on device bond0 [ 166.665077][ T5468] 8021q: adding VLAN 0 to HW filter on device team0 [ 166.786755][ T4266] EXT4-fs (loop4): unmounting filesystem. [ 166.798733][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 166.821378][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 166.860824][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 167.043865][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 167.134780][ T4360] bridge0: port 1(bridge_slave_0) entered blocking state [ 167.142095][ T4360] bridge0: port 1(bridge_slave_0) entered forwarding state [ 167.246030][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 167.294656][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 167.379037][ T4360] bridge0: port 2(bridge_slave_1) entered blocking state [ 167.387529][ T4360] bridge0: port 2(bridge_slave_1) entered forwarding state [ 167.747207][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 167.757574][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 167.784962][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 167.873335][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 167.900997][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 167.926306][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 168.096449][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 168.111466][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 168.124917][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 168.782608][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 168.816416][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 168.852376][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 170.918873][ T4398] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 170.927154][ T4398] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 170.963243][ T5468] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 170.987846][ T5752] netlink: 24 bytes leftover after parsing attributes in process `syz.0.363'. [ 171.125487][ T4398] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 171.157213][ T4398] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 171.173174][ T5752] netlink: 4 bytes leftover after parsing attributes in process `syz.0.363'. [ 171.240025][ T5709] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 171.259553][ T5709] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 171.277087][ T5468] device veth0_vlan entered promiscuous mode [ 171.294199][ T5709] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 171.314473][ T5709] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 171.361495][ T5468] device veth1_vlan entered promiscuous mode [ 171.452423][ T5765] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms) [ 171.523302][ T5765] bridge0: port 2(bridge_slave_1) entered disabled state [ 171.530834][ T5765] bridge0: port 1(bridge_slave_0) entered disabled state [ 171.596462][ T5726] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 171.611564][ T5726] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 171.649019][ T5726] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 171.683682][ T5726] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 171.721661][ T5468] device veth0_macvtap entered promiscuous mode [ 171.766072][ T5468] device veth1_macvtap entered promiscuous mode [ 171.831106][ T5468] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 171.863743][ T5468] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 171.875148][ T5468] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 171.936699][ T5468] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 171.998201][ T5468] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 172.027933][ T5468] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 172.112000][ T5468] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 172.383638][ T5468] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 172.592270][ T5468] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 172.651672][ T5468] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 172.711132][ T5468] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 172.743841][ T5468] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 172.754932][ T5468] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 172.765332][ T5468] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 172.788131][ T5468] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 172.798204][ T5468] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 172.820387][ T5468] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 172.859778][ T5468] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 172.867287][ T5709] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 172.909010][ T5709] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 172.938489][ T5709] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 172.956317][ T5793] loop4: detected capacity change from 0 to 1024 [ 172.963455][ T5709] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 172.979539][ T5793] EXT4-fs: Ignoring removed nobh option [ 172.985156][ T5793] EXT4-fs: Ignoring removed bh option [ 173.008890][ T5709] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 173.028503][ T5709] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 173.064347][ T5783] device bridge_slave_0 left promiscuous mode [ 173.102988][ T5783] bridge0: port 1(bridge_slave_0) entered disabled state [ 173.119212][ T5793] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 173.156857][ T5783] device bridge_slave_1 left promiscuous mode [ 173.163307][ T5783] bridge0: port 2(bridge_slave_1) entered disabled state [ 173.282394][ T5783] bond0: (slave bond_slave_0): Releasing backup interface [ 173.383420][ T5783] bond0: (slave bond_slave_1): Releasing backup interface [ 173.798773][ T5783] team0: Port device team_slave_0 removed [ 173.874106][ T5783] team0: Port device team_slave_1 removed [ 173.909040][ T5783] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 173.941223][ T5783] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 173.956429][ T4266] EXT4-fs (loop4): unmounting filesystem. [ 173.982790][ T5783] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 174.008845][ T5783] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 174.042244][ T5783] bond0: (slave wlan1): Releasing backup interface [ 174.104584][ T5785] team0: Mode changed to "loadbalance" [ 174.136157][ T5468] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 174.155678][ T5468] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 174.175941][ T5468] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 174.226166][ T5468] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 175.601997][ T5684] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 175.636249][ T5684] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 175.781979][ T5702] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 175.893928][ T5702] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 175.924957][ T5702] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 176.094578][ T5709] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 177.893738][ T5855] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 180.452546][ T5855] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 181.228343][ T4271] Bluetooth: hci3: command 0x0406 tx timeout [ 181.229591][ T4267] Bluetooth: hci0: command 0x0406 tx timeout [ 181.242628][ T4267] Bluetooth: hci1: command 0x0406 tx timeout [ 183.905462][ T5896] sched: RT throttling activated [ 184.495639][ T5855] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 185.555871][ T5855] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 186.828398][ T5855] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 186.880480][ T5855] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 186.955516][ T5855] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 187.048585][ T22] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 187.057794][ T5855] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 187.137186][ T22] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz1] on syz0 [ 187.498747][ T5955] xt_NFQUEUE: number of total queues is 0 [ 188.535091][ T5965] loop0: detected capacity change from 0 to 256 [ 188.583610][ T5949] fido_id[5949]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 188.621120][ T5968] netlink: 15743 bytes leftover after parsing attributes in process `syz.5.415'. [ 188.655012][ T5965] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 188.752121][ T5965] syz.0.414: attempt to access beyond end of device [ 188.752121][ T5965] loop0: rw=524288, sector=34359738488, nr_sectors = 8 limit=256 [ 188.855477][ T5965] syz.0.414: attempt to access beyond end of device [ 188.855477][ T5965] loop0: rw=0, sector=34359738488, nr_sectors = 8 limit=256 [ 188.903403][ T26] audit: type=1800 audit(1756244748.373:40): pid=5965 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.414" name="file1" dev="loop0" ino=1048612 res=0 errno=0 [ 193.475652][ T6023] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 193.548504][ T6032] netlink: 8 bytes leftover after parsing attributes in process `syz.5.427'. [ 193.712658][ T6023] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 194.158259][ T6026] netlink: 4 bytes leftover after parsing attributes in process `syz.0.426'. [ 194.194486][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.200917][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.339322][ T6032] netlink: 8 bytes leftover after parsing attributes in process `syz.5.427'. [ 194.348677][ T6032] netlink: 4 bytes leftover after parsing attributes in process `syz.5.427'. [ 194.431350][ T6041] loop4: detected capacity change from 0 to 1024 [ 194.468722][ T6041] EXT4-fs: Ignoring removed orlov option [ 194.474877][ T6038] netlink: 60 bytes leftover after parsing attributes in process `syz.2.428'. [ 194.706744][ T6041] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 196.252276][ T6060] device veth0_to_team entered promiscuous mode [ 196.367684][ T4266] EXT4-fs (loop4): unmounting filesystem. [ 197.239816][ T6070] netlink: 'syz.4.437': attribute type 10 has an invalid length. [ 197.270953][ T6070] netlink: 40 bytes leftover after parsing attributes in process `syz.4.437'. [ 198.576555][ T6070] team0: Port device geneve0 added [ 201.204543][ T6131] loop4: detected capacity change from 0 to 512 [ 201.287748][ T5706] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 201.288871][ T6131] EXT4-fs: Ignoring removed oldalloc option [ 201.405573][ T6131] ext4: Unknown parameter 'rootcontext' [ 201.709455][ T5706] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 201.766061][ T6146] netlink: 'syz.2.446': attribute type 2 has an invalid length. [ 203.170293][ T5706] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 203.376173][ T5706] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 204.456569][ T6153] loop4: detected capacity change from 0 to 32768 [ 204.569323][ T6182] fuse: Bad value for 'rootmode' [ 204.578009][ T6153] XFS (loop4): Mounting V5 Filesystem [ 204.718267][ T4317] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 204.759900][ T6153] XFS (loop4): Ending clean mount [ 204.965461][ T4317] usb 3-1: Using ep0 maxpacket: 32 [ 204.977431][ T4317] usb 3-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f [ 205.004030][ T4317] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 205.061419][ T4317] usb 3-1: Product: syz [ 205.065628][ T4317] usb 3-1: Manufacturer: syz [ 205.144346][ T4317] usb 3-1: SerialNumber: syz [ 205.160580][ T4317] usb 3-1: config 0 descriptor?? [ 206.131055][ T4266] XFS (loop4): Unmounting Filesystem [ 206.131134][ T6173] device team_slave_0 entered promiscuous mode [ 206.143259][ T6173] device team_slave_1 entered promiscuous mode [ 206.199021][ T6173] device vlan2 entered promiscuous mode [ 206.223718][ T6173] device team0 entered promiscuous mode [ 206.378314][ T4332] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 206.450908][ T6176] loop3: detected capacity change from 0 to 40427 [ 206.516685][ T6176] F2FS-fs (loop3): build fault injection attr: rate: 771, type: 0x3ffff [ 206.535948][ T4317] airspy 3-1:0.0: usb_control_msg() failed -71 request 09 [ 206.555344][ T4317] airspy 3-1:0.0: Could not detect board [ 206.560181][ T6176] F2FS-fs (loop3): invalid crc value [ 206.573929][ T4317] airspy: probe of 3-1:0.0 failed with error -71 [ 206.581933][ T4332] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 206.604471][ T4332] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 206.614717][ T4317] usb 3-1: USB disconnect, device number 2 [ 206.633538][ T6176] F2FS-fs (loop3): Found nat_bits in checkpoint [ 206.662633][ T4332] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 206.700161][ T4332] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 206.740085][ T4332] usb 6-1: SerialNumber: syz [ 206.833701][ T6176] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 206.970821][ T4332] usb 6-1: 0:2 : does not exist [ 207.069703][ T4332] usb 6-1: USB disconnect, device number 2 [ 208.100653][ T4259] udevd[4259]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 208.896473][ T5706] device hsr_slave_0 left promiscuous mode [ 208.923459][ T5706] device hsr_slave_1 left promiscuous mode [ 209.091078][ T5706] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 209.114318][ T5706] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 209.291757][ T5706] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 209.310101][ T5706] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 209.438819][ T5706] device bridge_slave_1 left promiscuous mode [ 209.510907][ T5706] bridge0: port 2(bridge_slave_1) entered disabled state [ 210.049819][ T26] audit: type=1326 audit(1756244769.273:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6244 comm="syz.3.469" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f245538ebe9 code=0x0 [ 210.145936][ T5706] device bridge_slave_0 left promiscuous mode [ 210.163167][ T5706] bridge0: port 1(bridge_slave_0) entered disabled state [ 211.529358][ T6265] loop3: detected capacity change from 0 to 256 [ 211.568680][ T5706] device veth1_macvtap left promiscuous mode [ 211.576223][ T5706] device veth0_macvtap left promiscuous mode [ 211.654027][ T5706] device veth1_vlan left promiscuous mode [ 211.660960][ T6265] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 211.688199][ T5706] device veth0_vlan left promiscuous mode [ 211.774098][ T126] kernel read not supported for file [userfaultfd] (pid: 126 comm: kworker/1:2) [ 211.954189][ T6271] exFAT-fs (loop3): hint_cluster is invalid (17) [ 216.919551][ T5706] team0 (unregistering): Port device team_slave_1 removed [ 216.978844][ T5706] team0 (unregistering): Port device team_slave_0 removed [ 217.026565][ T6317] loop0: detected capacity change from 0 to 256 [ 217.036592][ T5706] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 217.133039][ T5706] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 217.212770][ T6317] loop0: detected capacity change from 0 to 512 [ 217.245584][ T6317] ext2: Unknown parameter 'smackfsroot' [ 218.217833][ T4317] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 218.658177][ T4317] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 218.668467][ T4317] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 218.700092][ T4317] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 218.724709][ T6336] fuse: Bad value for 'fd' [ 218.726835][ T4317] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 218.750145][ T26] audit: type=1326 audit(1756244778.203:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6335 comm="syz.2.491" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6b8678ebe9 code=0x0 [ 218.777421][ T4317] usb 1-1: SerialNumber: syz [ 218.977611][ T5706] bond0 (unregistering): Released all slaves [ 218.997995][ T4317] usb 1-1: 0:2 : does not exist [ 219.027322][ T4317] usb 1-1: USB disconnect, device number 4 [ 219.269844][ T4259] udevd[4259]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 219.993559][ T6367] loop0: detected capacity change from 0 to 1024 [ 220.107726][ T6367] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 220.165546][ T26] audit: type=1800 audit(1756244779.633:43): pid=6367 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.497" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 220.345936][ T4265] EXT4-fs (loop0): unmounting filesystem. [ 220.770520][ T6397] loop4: detected capacity change from 0 to 2048 [ 221.119159][ T6397] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 222.051350][ T6405] netlink: 16 bytes leftover after parsing attributes in process `syz.2.503'. [ 222.148332][ T26] audit: type=1326 audit(1756244781.543:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6401 comm="syz.0.502" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f056338ebe9 code=0x0 [ 224.453418][ T6443] netlink: 44 bytes leftover after parsing attributes in process `syz.3.512'. [ 224.488959][ T6443] netlink: 8 bytes leftover after parsing attributes in process `syz.3.512'. [ 224.501542][ T6443] netlink: 16 bytes leftover after parsing attributes in process `syz.3.512'. [ 224.871642][ T6459] fuse: Bad value for 'fd' [ 224.960399][ T26] audit: type=1326 audit(1756244784.433:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6458 comm="syz.5.516" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f946bf8ebe9 code=0x0 [ 225.792941][ T26] audit: type=1326 audit(1756244784.513:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6453 comm="syz.2.517" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6b8678ebe9 code=0x0 [ 228.746274][ T26] audit: type=1326 audit(1756244788.213:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6498 comm="syz.5.524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 228.872273][ T26] audit: type=1326 audit(1756244788.213:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6498 comm="syz.5.524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 228.899901][ T6503] netlink: 'syz.3.526': attribute type 4 has an invalid length. [ 228.998640][ T26] audit: type=1326 audit(1756244788.213:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6498 comm="syz.5.524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 229.104072][ T26] audit: type=1326 audit(1756244788.213:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6498 comm="syz.5.524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 229.232540][ T26] audit: type=1326 audit(1756244788.213:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6498 comm="syz.5.524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 229.328709][ T26] audit: type=1326 audit(1756244788.223:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6498 comm="syz.5.524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 229.406799][ T26] audit: type=1326 audit(1756244788.223:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6498 comm="syz.5.524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 229.470221][ T26] audit: type=1326 audit(1756244788.223:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6498 comm="syz.5.524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 230.271199][ T6526] loop3: detected capacity change from 0 to 2048 [ 230.423894][ T6526] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 230.680060][ T4276] EXT4-fs (loop3): unmounting filesystem. [ 232.414437][ T6558] loop3: detected capacity change from 0 to 512 [ 232.446885][ T6558] FAT-fs (loop3): Unrecognized mount option "umÈask=00000000000000000000002" or missing value [ 234.644268][ T6603] loop3: detected capacity change from 0 to 1024 [ 234.656461][ T6596] loop5: detected capacity change from 0 to 1024 [ 234.693794][ T6603] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 234.723562][ T4259] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 234.777226][ T6607] loop0: detected capacity change from 0 to 16 [ 234.796956][ T6603] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 234.837889][ T6607] erofs: (device loop0): erofs_superblock_csum_verify: invalid checksum 0xf70f04a3, 0xc32427af expected [ 234.859595][ T4257] udevd[4257]: incorrect erofs checksum on /dev/loop0 [ 234.861691][ T6603] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #2: comm syz.3.549: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 2, max 1(4), depth 0(0) [ 234.948331][ T6603] EXT4-fs (loop3): no journal found [ 235.062906][ T6612] netlink: 51 bytes leftover after parsing attributes in process `syz.5.551'. [ 235.479781][ T6626] binder: 6624:6626 unknown command 0 [ 235.716855][ T6626] binder: 6624:6626 ioctl c0306201 200000000080 returned -22 [ 236.956993][ T6626] syz.5.554 (6626): drop_caches: 2 [ 237.230246][ T4271] Bluetooth: hci2: command 0x0406 tx timeout [ 237.534870][ T6653] loop2: detected capacity change from 0 to 1024 [ 239.005092][ T6668] netlink: 'syz.2.565': attribute type 1 has an invalid length. [ 239.571160][ T6683] x_tables: arp_tables: CLASSIFY target: used from hooks INPUT, but only usable from FORWARD/OUTPUT [ 239.649090][ T6672] bond1: (slave gretap1): making interface the new active one [ 239.908737][ T6672] bond1: (slave gretap1): Enslaving as an active interface with an up link [ 239.944876][ T6668] bond1: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened) [ 240.437567][ T6700] loop2: detected capacity change from 0 to 2048 [ 240.545418][ T6700] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 242.324964][ T6717] netlink: 20 bytes leftover after parsing attributes in process `syz.2.575'. [ 242.755171][ T26] kauditd_printk_skb: 60 callbacks suppressed [ 242.755184][ T26] audit: type=1326 audit(1756244802.223:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.0.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f056338ebe9 code=0x7ffc0000 [ 244.248466][ T26] audit: type=1326 audit(1756244802.223:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.0.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f056338ebe9 code=0x7ffc0000 [ 244.272130][ T26] audit: type=1326 audit(1756244802.223:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.0.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f056338ebe9 code=0x7ffc0000 [ 244.296241][ T26] audit: type=1326 audit(1756244802.223:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.0.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f056338ebe9 code=0x7ffc0000 [ 244.320175][ T26] audit: type=1326 audit(1756244802.223:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.0.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f056338ebe9 code=0x7ffc0000 [ 244.368258][ T26] audit: type=1326 audit(1756244802.223:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.0.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f056338ebe9 code=0x7ffc0000 [ 244.420875][ T6738] netlink: 'syz.3.583': attribute type 1 has an invalid length. [ 244.471380][ T26] audit: type=1326 audit(1756244802.223:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.0.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f056338ebe9 code=0x7ffc0000 [ 244.546095][ T6738] 8021q: adding VLAN 0 to HW filter on device bond1 [ 244.565967][ T26] audit: type=1326 audit(1756244802.223:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.0.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f056338ebe9 code=0x7ffc0000 [ 244.599514][ T4303] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 244.760771][ T26] audit: type=1326 audit(1756244802.223:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.0.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f056338ebe9 code=0x7ffc0000 [ 244.786600][ T6744] bond1: (slave veth0_to_bond): Enslaving as an active interface with a down link [ 244.818141][ T4303] usb 5-1: Using ep0 maxpacket: 8 [ 244.833052][ T4303] usb 5-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea [ 244.863015][ T4303] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 244.876227][ T26] audit: type=1326 audit(1756244802.223:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.0.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f056338ebe9 code=0x7ffc0000 [ 244.890373][ T4303] usb 5-1: Product: syz [ 244.917261][ T4303] usb 5-1: Manufacturer: syz [ 244.927173][ T4303] usb 5-1: SerialNumber: syz [ 244.954364][ T4303] usb 5-1: config 0 descriptor?? [ 244.990235][ T6745] bond1: (slave vlan4): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened) [ 245.149279][ T6754] netlink: 4 bytes leftover after parsing attributes in process `syz.2.585'. [ 245.188486][ T4303] usb 5-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state [ 245.583087][ T6770] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready [ 245.661854][ T6772] random: crng reseeded on system resumption [ 245.882106][ T6770] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 246.063261][ T6775] netlink: 4 bytes leftover after parsing attributes in process `syz.3.587'. [ 246.615783][ T4303] dvb_usb_rtl28xxu: probe of 5-1:0.0 failed with error -71 [ 246.631901][ T4303] usb 5-1: USB disconnect, device number 3 [ 248.747422][ T6821] loop2: detected capacity change from 0 to 512 [ 248.945808][ T6821] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 249.223025][ T6821] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2818: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 249.268891][ T6828] netlink: 'syz.4.598': attribute type 1 has an invalid length. [ 249.306787][ T6821] EXT4-fs (loop2): 1 truncate cleaned up [ 249.347953][ T6821] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 249.412461][ T6828] 8021q: adding VLAN 0 to HW filter on device bond1 [ 249.493159][ T6835] bond1: (slave veth0_to_bond): making interface the new active one [ 249.532194][ T6842] EXT4-fs (loop2): shut down requested (0) [ 249.542740][ T6835] bond1: (slave veth0_to_bond): Enslaving as an active interface with an up link [ 249.595984][ T5691] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready [ 249.610944][ T6839] bond1: (slave vlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened) [ 250.076501][ T5468] EXT4-fs (loop2): unmounting filesystem. [ 250.400253][ T6840] ceph: No mds server is up or the cluster is laggy [ 253.106686][ T6908] loop2: detected capacity change from 0 to 512 [ 253.187118][ T6908] EXT4-fs (loop2): Test dummy encryption mode enabled [ 253.226613][ T6908] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 253.282502][ T6908] EXT4-fs (loop2): 1 truncate cleaned up [ 253.294341][ T6908] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 253.530235][ T6920] loop4: detected capacity change from 0 to 1024 [ 253.584225][ T6920] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 253.618273][ T5468] EXT4-fs (loop2): unmounting filesystem. [ 255.640629][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.647152][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.781545][ T6946] device batadv_slave_1 entered promiscuous mode [ 256.821507][ T6945] device batadv_slave_1 left promiscuous mode [ 257.769470][ T6957] loop2: detected capacity change from 0 to 1024 [ 258.103910][ T6960] loop4: detected capacity change from 0 to 512 [ 258.171911][ T6960] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 258.180662][ T6960] EXT4-fs (loop4): orphan cleanup on readonly fs [ 258.187462][ T6960] __quota_error: 5 callbacks suppressed [ 258.187475][ T6960] Quota error (device loop4): v2_read_file_info: Block with free entry 1 out of range (1, 6). [ 258.204119][ T6960] EXT4-fs warning (device loop4): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 258.218765][ T6960] EXT4-fs (loop4): Cannot turn on quotas: error -117 [ 258.247171][ T6960] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.629: bg 0: block 40: padding at end of block bitmap is not set [ 258.263074][ T6960] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 258.276894][ T6960] EXT4-fs (loop4): 1 truncate cleaned up [ 258.282625][ T6960] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 258.331541][ T6960] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 258.622650][ T4266] EXT4-fs (loop4): unmounting filesystem. [ 260.228168][ T4316] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 260.257032][ T6985] loop3: detected capacity change from 0 to 4096 [ 260.307901][ T6985] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 260.328141][ T4317] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 260.428164][ T4316] usb 3-1: Using ep0 maxpacket: 16 [ 260.435520][ T4316] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 260.461326][ T4316] usb 3-1: config 0 has no interfaces? [ 260.470115][ T4316] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 260.491165][ T4316] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 260.508190][ T4316] usb 3-1: config 0 descriptor?? [ 260.517009][ T4317] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 260.548898][ T4317] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 260.558417][ T4317] usb 5-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 7.ff [ 260.567480][ T4317] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 260.622029][ T4317] usb 5-1: config 0 descriptor?? [ 260.668674][ T4276] EXT4-fs (loop3): unmounting filesystem. [ 260.786479][ T6987] loop2: detected capacity change from 0 to 1024 [ 261.127424][ T5704] af_packet: tpacket_rcv: packet too big, clamped from 60 to 4294967272. macoff=96 [ 261.278891][ T6987] hfsplus: unable to parse mount options [ 261.330185][ T6987] netlink: 8 bytes leftover after parsing attributes in process `syz.2.634'. [ 261.344425][ T4332] usb 3-1: USB disconnect, device number 3 [ 261.697853][ T4332] usb 5-1: USB disconnect, device number 4 [ 265.464789][ T7029] loop3: detected capacity change from 0 to 40427 [ 265.481657][ T7029] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 265.498892][ T7029] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 265.603091][ T7029] F2FS-fs (loop3): invalid crc value [ 266.160672][ T7029] F2FS-fs (loop3): Found nat_bits in checkpoint [ 267.655285][ T7074] loop2: detected capacity change from 0 to 256 [ 267.773347][ T7074] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x99a53fd9, utbl_chksum : 0xe619d30d) [ 269.082499][ T7080] netlink: 4 bytes leftover after parsing attributes in process `syz.4.655'. [ 269.781438][ T7080] device bridge_slave_1 left promiscuous mode [ 269.994212][ T7080] bridge0: port 2(bridge_slave_1) entered disabled state [ 270.027381][ T7080] device bridge_slave_0 left promiscuous mode [ 270.780454][ T7080] bridge0: port 1(bridge_slave_0) entered disabled state [ 273.129528][ T4271] Bluetooth: hci4: command 0x0406 tx timeout [ 273.632759][ T7146] netlink: 132 bytes leftover after parsing attributes in process `syz.4.671'. [ 273.950271][ T7149] 8021q: adding VLAN 0 to HW filter on device bond1 [ 274.037193][ T7158] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 274.037193][ T7158] The task syz.2.673 (7158) triggered the difference, watch for misbehavior. [ 274.265833][ T7152] device bond_slave_0 entered promiscuous mode [ 274.272471][ T7152] device bond_slave_1 entered promiscuous mode [ 274.347442][ T7152] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 274.405447][ T7152] bond1: (slave macvlan2): Enslaving as a backup interface with an up link [ 274.511210][ T5706] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready [ 274.716996][ T7165] tipc: Failed to remove unknown binding: 66,1,1/0:2287135317/2287135319 [ 274.752689][ T7165] tipc: Failed to remove unknown binding: 66,1,1/0:2287135317/2287135319 [ 274.778294][ T7165] tipc: Failed to remove unknown binding: 66,1,1/0:2287135317/2287135319 [ 274.866293][ T7171] capability: warning: `syz.3.675' uses 32-bit capabilities (legacy support in use) [ 276.280909][ T7181] netlink: 'syz.2.679': attribute type 1 has an invalid length. [ 276.330812][ T7181] 8021q: adding VLAN 0 to HW filter on device bond2 [ 276.457728][ T7184] bond2: (slave veth3): Enslaving as an active interface with a down link [ 276.571054][ T7181] device veth1 entered promiscuous mode [ 276.584010][ T7181] device veth1 left promiscuous mode [ 276.604690][ T7181] bond2: (slave vlan2): making interface the new active one [ 276.631561][ T7181] device veth1 entered promiscuous mode [ 276.649153][ T7195] loop3: detected capacity change from 0 to 512 [ 276.656863][ T7181] device vlan2 entered promiscuous mode [ 276.673622][ T7195] EXT4-fs (loop3): Test dummy encryption mode enabled [ 276.691099][ T7181] bond2: (slave vlan2): Enslaving as an active interface with an up link [ 276.705314][ T7195] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 276.724422][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): bond2: link becomes ready [ 276.755451][ T7195] EXT4-fs (loop3): 1 truncate cleaned up [ 276.772232][ T7195] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 276.880374][ T7203] MPTCP: kernel_bind error, err=-99 [ 277.503477][ T4276] EXT4-fs (loop3): unmounting filesystem. [ 278.703144][ T26] audit: type=1804 audit(1756244838.173:130): pid=7241 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.689" name="/newroot/91/file1" dev="fuse" ino=1 res=1 errno=0 [ 278.767560][ T26] audit: type=1800 audit(1756244838.183:131): pid=7241 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.689" name="/" dev="fuse" ino=1 res=0 errno=0 [ 278.876254][ T7251] loop2: detected capacity change from 0 to 256 [ 278.931039][ T7251] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 278.988173][ T7251] exFAT-fs (loop2): Medium has reported failures. Some data may be lost. [ 279.480504][ T7251] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 282.188240][ T4317] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 284.846818][ T7320] loop3: detected capacity change from 0 to 256 [ 284.919243][ T7320] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 285.153986][ T7320] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 285.327873][ T7320] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 285.466873][ T7324] tipc: Failed to remove unknown binding: 66,1,1/0:4136134884/4136134886 [ 285.558133][ T4331] usb 3-1: new full-speed USB device number 4 using dummy_hcd [ 285.583507][ T7324] tipc: Failed to remove unknown binding: 66,1,1/0:4136134884/4136134886 [ 285.804372][ T4331] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 285.925349][ T4331] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid maxpacket 1023, setting to 64 [ 286.175631][ T7326] delete_channel: no stack [ 286.234814][ T4331] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 286.692183][ T4331] usb 3-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10 [ 287.306106][ T4331] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 287.647211][ T4331] usb 3-1: Product: syz [ 287.670169][ T7346] loop0: detected capacity change from 0 to 256 [ 287.676014][ T7351] netlink: 92 bytes leftover after parsing attributes in process `syz.5.713'. [ 287.688216][ T4331] usb 3-1: Manufacturer: syz [ 287.692627][ T7346] exfat: Deprecated parameter 'namecase' [ 287.699391][ T7346] exfat: Unknown parameter 'eprors' [ 287.849229][ T4331] usb 3-1: SerialNumber: syz [ 288.243521][ T4331] usb 3-1: config 0 descriptor?? [ 288.304607][ T7346] xt_HMARK: proto mask must be zero with L3 mode [ 288.399988][ T4331] usb 3-1: can't set config #0, error -71 [ 288.451917][ T4331] usb 3-1: USB disconnect, device number 4 [ 288.758481][ T7362] netlink: 'syz.5.718': attribute type 5 has an invalid length. [ 288.965448][ T7361] loop0: detected capacity change from 0 to 1024 [ 290.504972][ T7361] hfsplus: unable to parse mount options [ 290.698613][ T4398] device vlan2 left promiscuous mode [ 292.440103][ T7405] netlink: 'syz.2.725': attribute type 2 has an invalid length. [ 293.881318][ T7418] loop0: detected capacity change from 0 to 1024 [ 295.569882][ T7430] loop3: detected capacity change from 0 to 1024 [ 296.902352][ T33] hfsplus: b-tree write err: -5, ino 4 [ 304.339732][ T7481] loop5: detected capacity change from 0 to 256 [ 304.346944][ T7481] exfat: Deprecated parameter 'namecase' [ 304.352707][ T7481] exfat: Deprecated parameter 'namecase' [ 304.594924][ T7481] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 306.376229][ T7500] loop5: detected capacity change from 0 to 256 [ 306.399804][ T7500] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 306.458303][ T7500] exFAT-fs (loop5): Medium has reported failures. Some data may be lost. [ 306.481724][ T7500] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 307.248149][ T4316] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 309.121572][ T4316] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 309.133754][ T4316] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 309.151933][ T4316] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 309.172283][ T4316] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 309.189293][ T4316] usb 4-1: SerialNumber: syz [ 309.211037][ T7492] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 309.285190][ T7492] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 309.411768][ T4316] usb 4-1: 0:2 : does not exist [ 309.607401][ T4316] usb 4-1: USB disconnect, device number 3 [ 310.013653][ T7528] loop0: detected capacity change from 0 to 256 [ 310.021082][ T7528] exfat: Deprecated parameter 'namecase' [ 310.026860][ T7528] exfat: Deprecated parameter 'namecase' [ 310.042923][ T7528] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 310.276673][ T7490] udevd[7490]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 311.404557][ T7492] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 311.413882][ T7492] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 311.428539][ T7492] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 311.437548][ T7492] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 313.259860][ T7573] loop0: detected capacity change from 0 to 8 [ 313.398803][ T7573] SQUASHFS error: xz decompression failed, data probably corrupt [ 313.424845][ T7573] SQUASHFS error: Failed to read block 0x108: -5 [ 313.435272][ T7573] SQUASHFS error: Unable to read metadata cache entry [106] [ 313.444938][ T7573] SQUASHFS error: Unable to read inode 0x11f [ 314.730806][ T7589] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready [ 315.876157][ T7573] netlink: 'syz.0.767': attribute type 1 has an invalid length. [ 315.903584][ T7573] 8021q: adding VLAN 0 to HW filter on device bond4 [ 315.928413][ T7585] bond4: (slave vlan2): making interface the new active one [ 315.937909][ T7585] bond4: (slave vlan2): Enslaving as an active interface with an up link [ 315.946722][ T4398] IPv6: ADDRCONF(NETDEV_CHANGE): bond4: link becomes ready [ 316.013724][ T7600] loop2: detected capacity change from 0 to 512 [ 316.081386][ T7607] loop5: detected capacity change from 0 to 1024 [ 316.089025][ T7607] EXT4-fs: Ignoring removed nobh option [ 316.094976][ T7607] EXT4-fs: Ignoring removed bh option [ 316.103124][ T7600] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 316.318403][ T7600] ext4 filesystem being mounted at /91/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 316.753170][ T7607] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 316.760859][ T7600] syz.2.775 uses obsolete (PF_INET,SOCK_PACKET) [ 317.076180][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.082915][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.647815][ T5038] EXT4-fs (loop5): unmounting filesystem. [ 319.817917][ T5468] EXT4-fs (loop2): unmounting filesystem. [ 322.953027][ T7687] netlink: 24 bytes leftover after parsing attributes in process `syz.5.797'. [ 325.218157][ T7725] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0 [ 325.222714][ T7722] IPVS: stopping backup sync thread 7725 ... [ 329.849467][ T7774] loop2: detected capacity change from 0 to 1024 [ 329.862110][ T7774] EXT4-fs: Ignoring removed orlov option [ 329.913018][ T7774] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 329.991200][ T7778] netlink: 24 bytes leftover after parsing attributes in process `syz.2.819'. [ 330.067239][ T7774] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2748: inode #12: comm syz.2.819: corrupted in-inode xattr [ 330.268924][ T7774] EXT4-fs (loop2): Remounting filesystem read-only [ 330.996971][ T7759] device bridge1 entered promiscuous mode [ 331.130179][ T7786] loop4: detected capacity change from 0 to 8 [ 331.200629][ T7786] SQUASHFS error: xz decompression failed, data probably corrupt [ 331.224270][ T5468] EXT4-fs (loop2): unmounting filesystem. [ 331.244314][ T7786] SQUASHFS error: Failed to read block 0x108: -5 [ 331.279895][ T7786] SQUASHFS error: Unable to read metadata cache entry [106] [ 331.329253][ T7786] SQUASHFS error: Unable to read inode 0x11f [ 332.317844][ T7786] netlink: 'syz.4.821': attribute type 1 has an invalid length. [ 332.369776][ T7805] loop0: detected capacity change from 0 to 128 [ 332.385016][ T7805] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 332.402589][ T7805] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 332.508964][ T7786] 8021q: adding VLAN 0 to HW filter on device bond2 [ 332.536497][ T4303] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 332.573003][ T7798] bond2: (slave vlan2): Opening slave failed [ 334.919221][ T4303] usb 4-1: device descriptor read/all, error -71 [ 335.980688][ T7820] loop5: detected capacity change from 0 to 131072 [ 336.005282][ T7820] F2FS-fs (loop5): invalid crc value [ 336.110607][ T7820] F2FS-fs (loop5): Found nat_bits in checkpoint [ 336.133731][ T7827] loop0: detected capacity change from 0 to 1024 [ 336.165429][ T7820] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4 [ 336.279198][ T7827] EXT4-fs: Ignoring removed orlov option [ 336.408904][ T7827] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 336.433059][ T7827] EXT4-fs error (device loop0): ext4_expand_extra_isize_ea:2748: inode #12: comm syz.0.833: corrupted in-inode xattr [ 336.492143][ T7827] EXT4-fs (loop0): Remounting filesystem read-only [ 336.512202][ T7836] netlink: 24 bytes leftover after parsing attributes in process `syz.0.833'. [ 336.695254][ T7837] device bridge0 entered promiscuous mode [ 336.723821][ T4265] EXT4-fs (loop0): unmounting filesystem. [ 353.491979][ T7970] netlink: 4 bytes leftover after parsing attributes in process `syz.2.870'. [ 356.047363][ T8016] loop2: detected capacity change from 0 to 1024 [ 358.598843][ T8016] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 358.780019][ T5468] EXT4-fs (loop2): unmounting filesystem. [ 360.772739][ T8052] loop0: detected capacity change from 0 to 2048 [ 360.795549][ T8050] loop4: detected capacity change from 0 to 4096 [ 361.075132][ T8060] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 361.508404][ T26] audit: type=1326 audit(1756244920.953:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8057 comm="syz.5.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 361.876891][ T26] audit: type=1326 audit(1756244920.953:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8057 comm="syz.5.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 361.972638][ T26] audit: type=1326 audit(1756244920.953:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8057 comm="syz.5.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 362.015768][ T26] audit: type=1326 audit(1756244920.953:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8057 comm="syz.5.899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 362.213036][ T8052] NILFS error (device loop0): nilfs_lookup: deleted inode referenced: 12 [ 362.783086][ T8052] Remounting filesystem read-only [ 363.632591][ T8084] NILFS (loop0): disposed unprocessed dirty file(s) when detaching log writer [ 364.013031][ T8091] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 366.615324][ T8128] netlink: 4 bytes leftover after parsing attributes in process `syz.3.921'. [ 366.647805][ T8128] netlink: 12 bytes leftover after parsing attributes in process `syz.3.921'. [ 366.797996][ T8128] netlink: 4 bytes leftover after parsing attributes in process `syz.3.921'. [ 368.650586][ T8117] loop2: detected capacity change from 0 to 2048 [ 368.657981][ T8117] UDF-fs: bad mount option "00000000000000000000000ÿÿ" or missing value [ 368.752327][ T8154] kvm: pic: non byte write [ 372.104898][ T8186] overlayfs: failed to set xattr on upper [ 372.151919][ T8186] overlayfs: ...falling back to index=off,metacopy=off. [ 372.199500][ T8186] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 372.300123][ T8186] overlayfs: unrecognized mount option "mask=MAY_WRITE" or missing value [ 374.337623][ T8212] netlink: 12 bytes leftover after parsing attributes in process `syz.0.948'. [ 374.500384][ T8216] loop2: detected capacity change from 0 to 4096 [ 374.539222][ T8216] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 374.583708][ T8217] bridge2: port 1(veth5) entered blocking state [ 374.725258][ T8216] EXT4-fs error (device loop2): ext4_do_update_inode:5254: inode #15: comm syz.2.946: corrupted inode contents [ 374.745793][ T8217] bridge2: port 1(veth5) entered disabled state [ 374.748441][ T8216] EXT4-fs error (device loop2): ext4_dirty_inode:6119: inode #15: comm syz.2.946: mark_inode_dirty error [ 374.770026][ T8216] EXT4-fs error (device loop2): ext4_do_update_inode:5254: inode #15: comm syz.2.946: corrupted inode contents [ 374.788729][ T8216] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #15: comm syz.2.946: mark_inode_dirty error [ 374.800628][ T8216] EXT4-fs error (device loop2): ext4_do_update_inode:5254: inode #15: comm syz.2.946: corrupted inode contents [ 374.813894][ T8216] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #15: comm syz.2.946: mark_inode_dirty error [ 374.828354][ T8216] EXT4-fs error (device loop2): ext4_do_update_inode:5254: inode #15: comm syz.2.946: corrupted inode contents [ 374.888206][ T8216] EXT4-fs error (device loop2): ext4_truncate:4312: inode #15: comm syz.2.946: mark_inode_dirty error [ 374.921061][ T8216] EXT4-fs error (device loop2) in ext4_setattr:5658: Corrupt filesystem [ 374.948601][ T8223] EXT4-fs error (device loop2): ext4_do_update_inode:5254: inode #15: comm syz.2.946: corrupted inode contents [ 374.989794][ T8217] device veth5 entered promiscuous mode [ 375.114422][ T5468] EXT4-fs (loop2): unmounting filesystem. [ 375.743103][ T8235] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 375.794355][ T8236] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 375.819947][ T8236] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 375.842079][ T8236] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 375.860725][ T8236] device bridge_slave_0 left promiscuous mode [ 375.871641][ T8236] bridge0: port 1(bridge_slave_0) entered disabled state [ 375.883803][ T8236] device bridge_slave_1 left promiscuous mode [ 375.892904][ T8236] bridge0: port 2(bridge_slave_1) entered disabled state [ 375.931907][ T8236] bond0: (slave bond_slave_0): Releasing backup interface [ 375.975603][ T8236] bond0: (slave bond_slave_1): Releasing backup interface [ 376.005891][ T8236] device team_slave_0 left promiscuous mode [ 376.062902][ T8236] team0: Port device team_slave_0 removed [ 376.069728][ T8236] device team_slave_1 left promiscuous mode [ 376.094676][ T8236] team0: Port device team_slave_1 removed [ 376.102785][ T8236] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 376.110407][ T8236] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 376.119732][ T8236] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 376.127271][ T8236] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 376.144050][ T8236] bond1: (slave gretap1): Releasing active interface [ 376.184004][ T8236] bond2: (slave veth3): Releasing active interface [ 376.190910][ T8236] bond2: (slave veth3): the permanent HWaddr of slave - 02:01:cc:8e:38:b9 - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts [ 376.214919][ T8236] device vlan2 entered promiscuous mode [ 376.226750][ T8236] bond2: (slave vlan2): Releasing active interface [ 376.233869][ T8236] device vlan2 left promiscuous mode [ 376.241946][ T8236] device veth1 left promiscuous mode [ 376.313325][ T8240] device vlan0 entered promiscuous mode [ 376.376255][ T8247] netlink: 4 bytes leftover after parsing attributes in process `syz.2.950'. [ 378.511409][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.517764][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 380.129567][ T8298] loop7: detected capacity change from 0 to 16384 [ 380.399826][ T8304] netlink: 48 bytes leftover after parsing attributes in process `syz.3.973'. [ 381.153385][ T8319] netlink: 28 bytes leftover after parsing attributes in process `syz.4.975'. [ 383.288301][ T8344] loop2: detected capacity change from 0 to 512 [ 383.305766][ T8344] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 383.332026][ T8344] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended [ 383.352506][ T8344] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c01c, mo2=0002] [ 383.365578][ T8344] System zones: 0-2, 18-18, 34-34 [ 383.414813][ T8344] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.984: iget: bad i_size value: 360287970189639680 [ 383.436701][ T8344] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.984: couldn't read orphan inode 15 (err -117) [ 383.640807][ T8344] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 383.729934][ T8344] EXT4-fs (loop2): unmounting filesystem. [ 383.850479][ T8355] loop3: detected capacity change from 0 to 8 [ 384.014657][ T8355] SQUASHFS error: Unable to read directory block [1d0:0] [ 384.187271][ T8358] netlink: 4 bytes leftover after parsing attributes in process `syz.5.987'. [ 384.331035][ T8361] MPTCP: kernel_bind error, err=-98 [ 385.915414][ T8379] loop2: detected capacity change from 0 to 32768 [ 389.144727][ T8408] netlink: 'syz.4.1003': attribute type 1 has an invalid length. [ 389.936294][ T8410] bond3: (slave ip6gretap1): Enslaving as a backup interface with an up link [ 389.970887][ T8414] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1003'. [ 390.043135][ T8414] bond3 (unregistering): (slave ip6gretap1): Releasing backup interface [ 390.085321][ T8414] bond3 (unregistering): Released all slaves [ 390.527832][ T4272] Bluetooth: hci3: unexpected subevent 0x0e length: 30 > 15 [ 390.627996][ T8425] loop2: detected capacity change from 0 to 16 [ 390.647503][ T8425] erofs: (device loop2): mounted with root inode @ nid 36. [ 390.797393][ T4272] Bluetooth: min 6 > max 0 [ 390.927089][ T8431] erofs: (device loop2): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36 [ 390.939850][ T8431] syz.2.1007: attempt to access beyond end of device [ 390.939850][ T8431] loop2: rw=524288, sector=34359738360, nr_sectors = 1976 limit=16 [ 392.924354][ T4272] Bluetooth: hci2: command 0x2021 tx timeout [ 393.078952][ T8441] netlink: 'syz.2.1012': attribute type 10 has an invalid length. [ 393.346782][ T8441] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 393.358229][ T8456] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1016'. [ 393.381201][ T8446] tipc: Started in network mode [ 393.408905][ T8446] tipc: Node identity 080211000001, cluster identity 4711 [ 393.545255][ T8446] tipc: Enabled bearer , priority 0 [ 394.650685][ T4317] tipc: Node number set to 134418688 [ 399.499239][ T8525] device vlan3 entered promiscuous mode [ 400.401026][ T8532] device batadv_slave_1 entered promiscuous mode [ 400.435028][ T8532] device veth1_virt_wifi entered promiscuous mode [ 400.455965][ T8535] netlink: 188 bytes leftover after parsing attributes in process `syz.0.1040'. [ 400.532166][ T8531] device veth1_virt_wifi left promiscuous mode [ 400.544841][ T8531] device batadv_slave_1 left promiscuous mode [ 401.244227][ T26] audit: type=1326 audit(1756244960.703:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8534 comm="syz.0.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f056338ebe9 code=0x50000 [ 401.322235][ T26] audit: type=1326 audit(1756244960.743:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8534 comm="syz.0.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f056338ebe9 code=0x50000 [ 401.533431][ T8549] loop3: detected capacity change from 0 to 512 [ 401.540370][ T26] audit: type=1326 audit(1756244960.883:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8534 comm="syz.0.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f056338ebe9 code=0x50000 [ 401.601146][ T8549] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 401.622971][ T26] audit: type=1326 audit(1756244960.883:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8534 comm="syz.0.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f05633c14a5 code=0x50000 [ 401.678554][ T8549] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 401.698786][ T26] audit: type=1326 audit(1756244960.883:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8534 comm="syz.0.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f056338ebe9 code=0x50000 [ 401.739526][ T8549] EXT4-fs (loop3): 1 truncate cleaned up [ 401.753060][ T8549] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 402.515790][ T8563] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 402.590768][ T4276] EXT4-fs (loop3): unmounting filesystem. [ 402.606935][ T8566] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1048'. [ 402.620445][ T8566] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready [ 402.753635][ T8568] Device name cannot be null; rc = [-22] [ 403.608571][ T8587] device vlan0 entered promiscuous mode [ 403.818573][ T8592] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1057'. [ 404.102459][ T8598] loop2: detected capacity change from 0 to 256 [ 404.671208][ T8603] loop3: detected capacity change from 0 to 256 [ 404.949507][ T8603] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 404.963912][ T8598] FAT-fs (loop2): Directory bread(block 64) failed [ 405.002611][ T8603] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 405.165334][ T8598] FAT-fs (loop2): Directory bread(block 65) failed [ 405.213934][ T8598] FAT-fs (loop2): Directory bread(block 66) failed [ 405.429997][ T8598] FAT-fs (loop2): Directory bread(block 67) failed [ 405.767276][ T8598] FAT-fs (loop2): Directory bread(block 68) failed [ 405.958107][ T8598] FAT-fs (loop2): Directory bread(block 69) failed [ 405.965210][ T8598] FAT-fs (loop2): Directory bread(block 70) failed [ 405.974934][ T8598] FAT-fs (loop2): Directory bread(block 71) failed [ 405.995292][ T8598] FAT-fs (loop2): Directory bread(block 72) failed [ 406.012442][ T8598] FAT-fs (loop2): Directory bread(block 73) failed [ 409.568504][ T8654] loop2: detected capacity change from 0 to 2048 [ 409.627032][ T8654] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 409.634870][ T8654] UDF-fs: Scanning with blocksize 512 failed [ 409.657430][ T8654] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 413.872627][ T8683] loop2: detected capacity change from 0 to 64 [ 413.907190][ T8683] hfs: unable to parse mount options [ 415.381817][ T8697] loop2: detected capacity change from 0 to 1024 [ 415.437464][ T8697] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 415.517511][ T8697] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 416.741082][ T5468] EXT4-fs (loop2): unmounting filesystem. [ 421.885609][ T8792] syz.0.1097 sent an empty control message without MSG_MORE. [ 424.598643][ T8813] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1104'. [ 424.628603][ T8821] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1104'. [ 424.679426][ T8825] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1107'. [ 426.805868][ T8853] loop3: detected capacity change from 0 to 8 [ 427.813716][ T8853] SQUASHFS error: xz decompression failed, data probably corrupt [ 427.888438][ T8853] SQUASHFS error: Failed to read block 0x108: -5 [ 427.952898][ T8853] SQUASHFS error: Unable to read metadata cache entry [106] [ 427.985421][ T8853] SQUASHFS error: Unable to read inode 0x11f [ 429.125459][ T8870] loop2: detected capacity change from 0 to 2048 [ 429.133023][ T8870] EXT4-fs: Ignoring removed bh option [ 429.660811][ T8870] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 429.874040][ T5468] EXT4-fs (loop2): unmounting filesystem. [ 432.853097][ T26] audit: type=1326 audit(1756244992.323:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8904 comm="syz.3.1124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f245538ebe9 code=0x7ffc0000 [ 432.880025][ T8905] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1125'. [ 432.898436][ T26] audit: type=1326 audit(1756244992.343:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8904 comm="syz.3.1124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f245538ebe9 code=0x7ffc0000 [ 433.117756][ T8909] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1125'. [ 433.127929][ T26] audit: type=1326 audit(1756244992.343:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8904 comm="syz.3.1124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f245538ebe9 code=0x7ffc0000 [ 433.306711][ T26] audit: type=1326 audit(1756244992.343:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8904 comm="syz.3.1124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f245538ebe9 code=0x7ffc0000 [ 433.402687][ T8917] Cannot find add_set index 0 as target [ 433.982853][ T26] audit: type=1326 audit(1756244992.343:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8904 comm="syz.3.1124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f245538ebe9 code=0x7ffc0000 [ 434.096408][ T26] audit: type=1326 audit(1756244992.343:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8904 comm="syz.3.1124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f245538ebe9 code=0x7ffc0000 [ 434.130998][ T26] audit: type=1326 audit(1756244992.343:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8904 comm="syz.3.1124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f245538ebe9 code=0x7ffc0000 [ 434.241976][ T26] audit: type=1326 audit(1756244992.343:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8904 comm="syz.3.1124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f245538ebe9 code=0x7ffc0000 [ 435.971881][ T26] audit: type=1326 audit(1756244992.343:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8904 comm="syz.3.1124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f245538ebe9 code=0x7ffc0000 [ 435.995238][ T26] audit: type=1326 audit(1756244992.343:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8904 comm="syz.3.1124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2455385ba7 code=0x7ffc0000 [ 439.949932][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 439.956226][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.874539][ T9025] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 440.889865][ T9025] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 441.087448][ T9025] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready [ 445.822507][ T9074] loop3: detected capacity change from 0 to 128 [ 446.017038][ T9074] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 446.060371][ T9077] loop2: detected capacity change from 0 to 1024 [ 446.162063][ T9074] ext4 filesystem being mounted at /248/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 446.177369][ T9077] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 446.224495][ T9077] ext4 filesystem being mounted at /162/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 446.768279][ T5468] EXT4-fs (loop2): unmounting filesystem. [ 449.315432][ T4276] EXT4-fs (loop3): unmounting filesystem. [ 449.325321][ T5691] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 449.346782][ T5691] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 451.534317][ T9123] loop3: detected capacity change from 0 to 1024 [ 452.684975][ T9136] ptrace attach of "./syz-executor exec"[4266] was attempted by "./syz-executor exec"[9136] [ 452.772259][ T9123] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 453.379677][ T9123] ext4 filesystem being mounted at /250/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 453.872052][ T4276] EXT4-fs (loop3): unmounting filesystem. [ 457.690762][ T9188] overlayfs: failed to clone upperpath [ 457.809445][ T9178] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1181'. [ 458.502522][ T9188] overlayfs: unrecognized mount option "mask=MAY_WRITE" or missing value [ 458.524909][ T9178] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1181'. [ 460.188398][ T7533] usb 3-1: new low-speed USB device number 5 using dummy_hcd [ 461.492154][ T7533] usb 3-1: unable to get BOS descriptor or descriptor too short [ 461.523507][ T7533] usb 3-1: unable to read config index 0 descriptor/start: -71 [ 461.548447][ T7533] usb 3-1: can't read configurations, error -71 [ 463.548553][ T4303] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 463.872912][ T7533] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 463.881378][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 464.322275][ T9271] loop3: detected capacity change from 0 to 8192 [ 464.916282][ T4317] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 464.924799][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 465.559112][ T4977] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 465.569173][ T4317] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 465.587390][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 465.985121][ T4317] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 465.993737][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 467.474924][ T9308] kvm: pic: non byte write [ 467.987282][ T9313] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 467.994966][ T9313] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 468.004868][ T9313] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 468.012675][ T9313] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 468.020873][ T9313] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 468.028660][ T9313] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 469.176978][ T4317] net_ratelimit: 13 callbacks suppressed [ 469.176998][ T4317] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 469.191145][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 469.205148][ T126] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 469.213688][ T5025] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 469.287597][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 469.398188][ T5025] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 469.406728][ T126] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 469.416228][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 469.804190][ T5025] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 469.843224][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 474.728930][ T7] net_ratelimit: 18 callbacks suppressed [ 474.728950][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 474.743168][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 475.074513][ T9372] MPTCP: kernel_bind error, err=-99 [ 475.795604][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 475.809239][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 476.845647][ T126] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 476.885696][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 476.894070][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 477.965835][ T7533] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 477.974297][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 478.994017][ T9423] random: crng reseeded on system resumption [ 479.073414][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 479.868430][ T126] net_ratelimit: 3 callbacks suppressed [ 479.868442][ T126] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 480.274778][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 480.283150][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 480.378969][ T9431] device wlan1 entered promiscuous mode [ 480.403763][ T9431] device vlan3 entered promiscuous mode [ 480.417041][ T9411] loop3: detected capacity change from 0 to 2048 [ 480.423166][ T9431] device bond0 entered promiscuous mode [ 480.452080][ T9411] UDF-fs: bad mount option "00000000000000000000000ÿÿ" or missing value [ 481.545712][ T7533] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 481.554294][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 481.563384][ T126] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 481.586969][ T9444] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 482.610737][ T126] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 482.619259][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 482.638227][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 482.646569][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 487.303809][ T4317] net_ratelimit: 3 callbacks suppressed [ 487.303828][ T4317] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 487.317867][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 487.330044][ T5695] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 487.340151][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 487.355041][ T126] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 487.481582][ T9479] device vlan5 entered promiscuous mode [ 487.487300][ T9479] device bond0 entered promiscuous mode [ 488.791238][ T4317] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 488.799592][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 489.697371][ T9515] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 489.878166][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 489.886601][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 490.518279][ T126] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 492.091190][ T9547] loop3: detected capacity change from 0 to 4096 [ 492.222526][ T9551] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1297'. [ 492.438077][ T7] net_ratelimit: 2 callbacks suppressed [ 492.438093][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 492.452047][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 493.078692][ T5691] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 493.087462][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 493.786640][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 493.795356][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 493.962033][ T4332] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 494.846518][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 494.854928][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 494.989320][ T9584] loop3: detected capacity change from 0 to 256 [ 496.066900][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 497.285499][ T9607] netlink: 168 bytes leftover after parsing attributes in process `syz.5.1311'. [ 497.352412][ T9612] overlayfs: failed to clone upperpath [ 498.275912][ T7] net_ratelimit: 4 callbacks suppressed [ 498.275925][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 498.289901][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 498.831052][ T5740] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 498.839540][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 499.860562][ T7533] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 499.868995][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 500.108589][ T4332] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 501.079541][ T7533] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 501.087889][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 501.411366][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.417739][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 501.889078][ T9661] netlink: 'syz.0.1330': attribute type 1 has an invalid length. [ 502.798971][ T9673] 9pnet_fd: Insufficient options for proto=fd [ 503.344587][ T9664] bond5: (slave ip6gretap2): Enslaving as a backup interface with an up link [ 503.368167][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 503.376572][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 503.684128][ T4332] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 503.727535][ T9661] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1330'. [ 503.810081][ T9661] bond5 (unregistering): (slave ip6gretap2): Releasing backup interface [ 503.860312][ T9676] loop3: detected capacity change from 0 to 164 [ 503.891647][ T9661] bond5 (unregistering): Released all slaves [ 503.973070][ T9487] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 504.457427][ T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 504.465898][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 504.590803][ T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 504.599297][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 505.892650][ T7533] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 505.900947][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 506.138398][ T9698] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 509.144673][ T7533] net_ratelimit: 87 callbacks suppressed [ 509.144686][ T7533] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 509.159106][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 510.108621][ T126] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 510.116789][ T5709] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 510.125330][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 510.238280][ T7536] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 510.246558][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 510.408165][ T7533] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 512.218304][ T7536] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 512.226645][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 512.693499][ T9749] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1361'. [ 514.600527][ T7533] net_ratelimit: 3 callbacks suppressed [ 514.600541][ T7533] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 514.614553][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 515.210901][ T9767] Device name cannot be null; rc = [-22] [ 516.419381][ T5709] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 516.427958][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 516.858336][ T7536] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 516.866602][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 516.968582][ T126] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 517.808345][ T126] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 517.868537][ T4317] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 517.876874][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 518.977766][ T126] usb 4-1: Using ep0 maxpacket: 8 [ 519.028229][ T4317] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 519.896207][ T9806] net_ratelimit: 49 callbacks suppressed [ 519.896226][ T9806] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 519.920812][ T126] usb 4-1: unable to get BOS descriptor or descriptor too short [ 519.934673][ T9806] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 520.007410][ T126] usb 4-1: unable to read config index 0 descriptor/start: -71 [ 520.123531][ T4317] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 520.131871][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 520.140404][ T9806] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 520.148752][ T9806] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 520.157027][ T9806] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 520.166175][ T9806] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 520.176586][ T9806] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 520.186081][ T9806] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 520.192598][ T126] usb 4-1: can't read configurations, error -71 [ 522.055488][ T9842] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1381'. [ 522.087500][ T9842] sch_tbf: burst 511 is lower than device veth3 mtu (1514) ! [ 522.288615][ T9851] netlink: 168 bytes leftover after parsing attributes in process `syz.3.1395'. [ 525.223264][ T9887] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1399'. [ 526.201874][ T9907] netlink: 'syz.5.1403': attribute type 4 has an invalid length. [ 526.209892][ T9907] netlink: 199836 bytes leftover after parsing attributes in process `syz.5.1403'. [ 526.854747][ T126] net_ratelimit: 72 callbacks suppressed [ 526.854766][ T126] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 528.632187][ T5695] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 528.640635][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 528.652757][ T5715] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 528.661736][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 528.711406][ T9933] netlink: 188 bytes leftover after parsing attributes in process `syz.3.1409'. [ 529.324311][ T26] kauditd_printk_skb: 58 callbacks suppressed [ 529.324326][ T26] audit: type=1326 audit(1756245088.793:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9932 comm="syz.3.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f245538ebe9 code=0x50000 [ 529.424934][ T26] audit: type=1326 audit(1756245088.833:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9932 comm="syz.3.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f245538ebe9 code=0x50000 [ 529.646969][ T26] audit: type=1326 audit(1756245088.833:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9932 comm="syz.3.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f245538ebe9 code=0x50000 [ 530.275474][ T26] audit: type=1326 audit(1756245088.833:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9932 comm="syz.3.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f245538ebe9 code=0x50000 [ 530.312695][ T26] audit: type=1326 audit(1756245088.833:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9932 comm="syz.3.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f245538ebe9 code=0x50000 [ 530.337382][ T126] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 530.444101][ T26] audit: type=1326 audit(1756245088.833:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9932 comm="syz.3.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f245538ebe9 code=0x50000 [ 530.484169][ T26] audit: type=1326 audit(1756245088.833:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9932 comm="syz.3.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f245538ebe9 code=0x50000 [ 530.538209][ T26] audit: type=1326 audit(1756245088.833:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9932 comm="syz.3.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f245538ebe9 code=0x50000 [ 530.580897][ T26] audit: type=1326 audit(1756245088.833:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9932 comm="syz.3.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f245538ebe9 code=0x50000 [ 530.643848][ T26] audit: type=1326 audit(1756245088.833:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9932 comm="syz.3.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f245538ebe9 code=0x50000 [ 530.742311][ T9956] netlink: 188 bytes leftover after parsing attributes in process `syz.5.1426'. [ 533.388308][ T5025] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 533.791891][ T5715] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 533.800370][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 534.679808][ T5737] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 534.688268][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 538.753405][ T4332] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 538.815127][ T4332] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 538.915080][ T26] kauditd_printk_skb: 115 callbacks suppressed [ 538.915093][ T26] audit: type=1326 audit(1756245098.383:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10020 comm="syz.4.1435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f926558ebe9 code=0x50000 [ 539.169896][ T5707] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 539.178411][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 539.512934][ T26] audit: type=1326 audit(1756245098.383:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10020 comm="syz.4.1435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f926558ebe9 code=0x50000 [ 539.688159][ T26] audit: type=1326 audit(1756245098.383:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10020 comm="syz.4.1435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f926558ebe9 code=0x50000 [ 540.407654][ T26] audit: type=1326 audit(1756245098.383:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10020 comm="syz.4.1435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f926558ebe9 code=0x50000 [ 540.432794][ T26] audit: type=1326 audit(1756245098.383:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10020 comm="syz.4.1435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f926558ebe9 code=0x50000 [ 540.457830][ T5695] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 540.459152][ T26] audit: type=1326 audit(1756245098.383:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10020 comm="syz.4.1435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f926558ebe9 code=0x50000 [ 540.469397][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 540.543275][ T26] audit: type=1326 audit(1756245098.383:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10020 comm="syz.4.1435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f926558ebe9 code=0x50000 [ 540.614904][ T26] audit: type=1326 audit(1756245098.383:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10020 comm="syz.4.1435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f926558ebe9 code=0x50000 [ 540.652787][ T26] audit: type=1326 audit(1756245098.383:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10020 comm="syz.4.1435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f926558ebe9 code=0x50000 [ 540.689032][ T26] audit: type=1326 audit(1756245098.383:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10020 comm="syz.4.1435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f926558ebe9 code=0x50000 [ 541.868404][ T4332] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 541.870293][T10061] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1443'. [ 541.971422][T10061] device macvtap1 entered promiscuous mode [ 541.977309][T10061] device syz_tun entered promiscuous mode [ 542.036761][T10063] device syz_tun left promiscuous mode [ 542.116955][T10043] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1449'. [ 547.288922][ T26] kauditd_printk_skb: 59 callbacks suppressed [ 547.302115][ T26] audit: type=1326 audit(1756245104.663:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10090 comm="syz.5.1453" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f946bf8ebe9 code=0x0 [ 547.334841][ T5686] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 547.343347][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 547.728323][ T126] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 547.744436][ T5715] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 548.398120][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 548.495466][T10115] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1459'. [ 548.539987][T10115] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1459'. [ 549.590872][ T7533] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 550.773553][T10145] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1468'. [ 551.378864][T10145] device syz_tun entered promiscuous mode [ 551.384785][T10145] device macvtap1 entered promiscuous mode [ 551.453323][T10148] device syz_tun left promiscuous mode [ 552.126373][T10159] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1472'. [ 553.348317][ T126] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 553.360850][ T5696] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 553.369317][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 553.913439][ T5707] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 553.922062][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 554.655147][T10184] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1480'. [ 554.706817][T10189] overlayfs: failed to clone upperpath [ 556.558245][ T4332] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 558.989633][ T26] audit: type=1326 audit(1756245117.913:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10232 comm="syz.0.1495" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f056338ebe9 code=0x0 [ 559.123287][ T5686] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 559.131913][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 559.628476][ T126] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 560.281092][ T5707] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 560.289581][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 561.750880][T10273] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 561.759332][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 562.336795][T10273] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 562.375604][ T26] audit: type=1326 audit(1756245121.843:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10276 comm="syz.0.1506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f056338ebe9 code=0x7ffc0000 [ 562.513446][ T26] audit: type=1326 audit(1756245121.883:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10276 comm="syz.0.1506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f056338ebe9 code=0x7ffc0000 [ 562.720193][ T26] audit: type=1326 audit(1756245121.883:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10276 comm="syz.0.1506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f056338ebe9 code=0x7ffc0000 [ 562.742776][ T26] audit: type=1326 audit(1756245121.883:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10276 comm="syz.0.1506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f056338ebe9 code=0x7ffc0000 [ 562.777803][ T26] audit: type=1326 audit(1756245121.883:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10276 comm="syz.0.1506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f056338ebe9 code=0x7ffc0000 [ 562.843742][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 562.852685][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 563.515196][ T26] audit: type=1326 audit(1756245121.883:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10276 comm="syz.0.1506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f056338ebe9 code=0x7ffc0000 [ 563.558519][ T26] audit: type=1326 audit(1756245121.883:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10276 comm="syz.0.1506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f056338ebe9 code=0x7ffc0000 [ 563.633922][ T26] audit: type=1326 audit(1756245121.883:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10276 comm="syz.0.1506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f056338ebe9 code=0x7ffc0000 [ 563.878195][ T26] audit: type=1326 audit(1756245121.883:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10276 comm="syz.0.1506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f056338ebe9 code=0x7ffc0000 [ 566.748367][T10322] netlink: 132 bytes leftover after parsing attributes in process `syz.5.1519'. [ 569.615816][T10356] overlayfs: failed to clone upperpath [ 573.262525][T10387] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1536'. [ 573.485386][T10405] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1541'. [ 576.088423][T10431] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1546'. [ 576.097723][T10431] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1546'. [ 578.135074][T10450] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1554'. [ 578.355047][ T26] kauditd_printk_skb: 17 callbacks suppressed [ 578.355058][ T26] audit: type=1326 audit(1756245137.823:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.5.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 579.048976][ T26] audit: type=1326 audit(1756245137.823:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.5.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 579.072581][ T26] audit: type=1326 audit(1756245137.903:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.5.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 579.096090][ T26] audit: type=1326 audit(1756245137.903:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.5.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 579.128494][ T26] audit: type=1326 audit(1756245137.903:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.5.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 579.152465][ T26] audit: type=1326 audit(1756245138.343:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.5.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 579.261012][ T26] audit: type=1326 audit(1756245138.383:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.5.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 579.472288][T10468] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1559'. [ 579.483989][ T26] audit: type=1326 audit(1756245138.603:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.5.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 579.507342][ T26] audit: type=1326 audit(1756245138.623:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.5.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 579.538280][ T26] audit: type=1326 audit(1756245138.623:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.5.1557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 580.632528][T10483] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1563'. [ 580.689460][T10486] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1565'. [ 580.772181][T10486] IPv6: ADDRCONF(NETDEV_CHANGE): gre2: link becomes ready [ 580.903301][T10486] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1565'. [ 582.748655][T10507] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1569'. [ 582.757737][T10507] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1569'. [ 584.410626][T10532] xt_CT: You must specify a L4 protocol and not use inversions on it [ 584.730005][T10533] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1575'. [ 585.865628][T10546] Device name cannot be null; rc = [-22] [ 588.296566][T10575] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1589'. [ 588.633887][T10584] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1591'. [ 588.974963][T10585] xt_TCPMSS: Only works on TCP SYN packets [ 589.810129][T10592] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1593'. [ 593.357725][ T26] kauditd_printk_skb: 28 callbacks suppressed [ 593.357739][ T26] audit: type=1326 audit(1756245152.823:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10632 comm="syz.3.1605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f245538ebe9 code=0x7ffc0000 [ 593.411676][ T26] audit: type=1326 audit(1756245152.823:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10632 comm="syz.3.1605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f245538ebe9 code=0x7ffc0000 [ 594.236315][ T26] audit: type=1326 audit(1756245152.833:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10632 comm="syz.3.1605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f245538ebe9 code=0x7ffc0000 [ 594.305010][ T26] audit: type=1326 audit(1756245152.833:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10632 comm="syz.3.1605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f245538ebe9 code=0x7ffc0000 [ 596.134659][T10669] xt_CT: You must specify a L4 protocol and not use inversions on it [ 598.440506][ T4271] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 598.453754][ T4271] Bluetooth: hci3: Injecting HCI hardware error event [ 598.465694][ T4271] Bluetooth: hci3: hardware error 0x00 [ 600.508986][ T4271] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 601.262323][T10733] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method [ 601.301374][T10730] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1631'. [ 604.283003][ T4271] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 604.298763][ T4271] Bluetooth: hci2: Injecting HCI hardware error event [ 604.312429][T10687] Bluetooth: hci2: hardware error 0x00 [ 606.538667][T10687] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 606.627728][T10802] tipc: Started in network mode [ 606.644666][T10802] tipc: Node identity 4, cluster identity 4711 [ 606.678307][T10802] tipc: Node number set to 4 [ 607.155450][T10809] blktrace: Concurrent blktraces are not allowed on loop0 [ 607.241434][ T26] audit: type=1326 audit(1756245166.713:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10810 comm="syz.5.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 607.363649][ T26] audit: type=1326 audit(1756245166.743:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10810 comm="syz.5.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 607.544160][ T26] audit: type=1326 audit(1756245166.743:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10810 comm="syz.5.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 607.778123][ T26] audit: type=1326 audit(1756245166.743:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10810 comm="syz.5.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 607.810397][ T26] audit: type=1326 audit(1756245166.743:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10810 comm="syz.5.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=137 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 607.991917][ T26] audit: type=1326 audit(1756245166.743:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10810 comm="syz.5.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 608.019601][ T26] audit: type=1326 audit(1756245166.753:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10810 comm="syz.5.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 608.053666][ T26] audit: type=1326 audit(1756245166.763:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10810 comm="syz.5.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 608.125004][T10817] CIFS mount error: No usable UNC path provided in device string! [ 608.125004][T10817] [ 608.135220][T10817] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 608.893018][ T26] audit: type=1326 audit(1756245166.773:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10810 comm="syz.5.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 609.133320][ T26] audit: type=1326 audit(1756245166.773:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10810 comm="syz.5.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f946bf8ebe9 code=0x7ffc0000 [ 611.975355][T10857] No such timeout policy "syz0" [ 613.167995][T10882] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1678'. [ 613.173017][T10884] device geneve2 entered promiscuous mode [ 614.963973][T10906] overlayfs: failed to clone upperpath [ 617.768972][T10942] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1694'. [ 621.554622][T10986] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1700'. [ 624.272315][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.293547][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 625.031621][T11021] xt_CT: You must specify a L4 protocol and not use inversions on it [ 627.041036][T11050] CIFS mount error: No usable UNC path provided in device string! [ 627.041036][T11050] [ 627.051448][T11050] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 632.010529][T11096] Cannot find set identified by id 0 to match [ 632.904261][T11110] CIFS mount error: No usable UNC path provided in device string! [ 632.904261][T11110] [ 632.914643][T11110] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 640.124245][T11198] tipc: Started in network mode [ 640.142148][T11198] tipc: Node identity 4, cluster identity 4711 [ 640.159744][T11198] tipc: Node number set to 4 [ 641.870334][T11215] overlayfs: failed to clone upperpath [ 646.851616][T11265] xt_CT: You must specify a L4 protocol and not use inversions on it [ 648.166676][T11291] netlink: 'syz.2.1781': attribute type 5 has an invalid length. [ 648.175594][T11291] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.1781'. [ 649.878915][T11307] xt_CT: You must specify a L4 protocol and not use inversions on it [ 651.411980][T11314] xt_CT: You must specify a L4 protocol and not use inversions on it [ 655.241876][T11351] atomic_op ffff88807ae6a198 conn xmit_atomic 0000000000000000 [ 660.823912][T11399] tipc: Started in network mode [ 660.828832][T11399] tipc: Node identity 080211000001, cluster identity 4711 [ 660.867199][T11399] tipc: Enabled bearer , priority 0 [ 662.417677][ T7533] tipc: Node number set to 134418688 [ 667.862078][T11476] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 667.958023][T11472] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 669.190362][T11496] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1840'. [ 670.983812][T11528] atomic_op ffff888024d3f198 conn xmit_atomic 0000000000000000 [ 671.754255][T11534] lo speed is unknown, defaulting to 1000 [ 671.763537][T11534] lo speed is unknown, defaulting to 1000 [ 671.771385][T11534] lo speed is unknown, defaulting to 1000 [ 671.826359][T11534] infiniband syz2: set active [ 671.831361][T11534] infiniband syz2: added lo [ 671.845389][ T126] lo speed is unknown, defaulting to 1000 [ 671.888614][T11534] RDS/IB: syz2: added [ 671.893902][T11534] smc: adding ib device syz2 with port count 1 [ 671.900319][T11534] smc: ib device syz2 port 1 has pnetid [ 671.911701][T11534] lo speed is unknown, defaulting to 1000 [ 671.970705][T11534] lo speed is unknown, defaulting to 1000 [ 672.024540][T11534] lo speed is unknown, defaulting to 1000 [ 672.078154][T11534] lo speed is unknown, defaulting to 1000 [ 672.131460][T11534] lo speed is unknown, defaulting to 1000 [ 672.210852][ T126] lo speed is unknown, defaulting to 1000 [ 673.212816][T11553] device veth1_macvtap left promiscuous mode [ 674.373983][T11573] Device name cannot be null; rc = [-22] [ 674.752121][T11583] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1867'. [ 676.657736][T11610] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1877'. [ 676.706667][T11610] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1877'. [ 677.077840][T11617] tipc: Enabling of bearer rejected, failed to enable media [ 677.223993][T11617] tipc: Enabled bearer , priority 0 [ 677.908115][T11627] IPVS: set_ctl: invalid protocol: 0 172.20.20.58:20001 [ 678.869961][T11641] tipc: Enabled bearer , priority 0 [ 681.228453][T11671] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1891'. [ 682.055660][T11671] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1891'. [ 685.172524][T11716] overlayfs: failed to clone lowerpath [ 685.735317][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 685.741837][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 690.968013][T11794] netlink: 'syz.2.1925': attribute type 10 has an invalid length. [ 691.506969][T11789] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: invalid value (23) [ 692.810858][T11815] No source specified [ 696.891692][T11860] tipc: Enabling of bearer rejected, failed to enable media [ 704.894140][T11956] No such timeout policy "syz0" [ 704.931914][T11958] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1974'. [ 704.942562][T11958] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1974'. [ 705.386088][T11974] xt_recent: hitcount (16385) is larger than allowed maximum (255) [ 706.172563][T11980] tipc: Enabling of bearer rejected, failed to enable media [ 712.514534][T12040] CIFS: Unable to determine destination address [ 712.914969][T12055] tmpfs: Bad value for 'nr_inodes' [ 717.858909][T12098] netlink: 'syz.5.2012': attribute type 10 has an invalid length. [ 718.004119][T12098] device wlan1 entered promiscuous mode [ 718.043395][T12098] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 723.633950][T12138] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2023'. [ 723.891433][T12138] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2023'. [ 727.431705][T12178] netlink: 'syz.4.2035': attribute type 10 has an invalid length. [ 727.546875][T12178] bond0: (slave wlan1): Opening slave failed [ 728.758087][T12191] overlayfs: failed to clone upperpath [ 729.091064][T12193] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2039'. [ 730.684543][T12216] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 730.693894][T12216] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 730.702700][T12216] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 730.711531][T12216] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 732.514717][T12229] netlink: 'syz.0.2052': attribute type 10 has an invalid length. [ 732.602865][T12229] device wlan1 entered promiscuous mode [ 732.779631][T12229] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 736.625985][T12275] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2065'. [ 736.705818][T12280] tipc: Started in network mode [ 736.721184][T12280] tipc: Node identity ac1414aa, cluster identity 4711 [ 736.741442][T12280] tipc: Enabling of bearer rejected, failed to enable media [ 736.797191][T12280] tipc: Enabled bearer , priority 0 [ 738.544861][ T4332] tipc: Node number set to 2886997162 [ 741.225134][T12317] kthread_run failed with err -4 [ 745.981876][T12371] rdma_op ffff888055b0e1f0 conn xmit_rdma 0000000000000000 [ 747.163742][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.170561][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 748.672675][T12391] lo speed is unknown, defaulting to 1000 [ 760.986844][T12490] netlink: 'syz.3.2124': attribute type 13 has an invalid length. [ 761.172665][T12490] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready [ 761.953100][T12490] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready [ 762.765154][T12490] tipc: Resetting bearer [ 763.740885][T12490] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 763.798180][T12522] tipc: Enabling of bearer rejected, already enabled [ 764.171663][T12532] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 764.179640][T12532] IPv6: NLM_F_CREATE should be set when creating new route [ 768.078554][ T26] kauditd_printk_skb: 14 callbacks suppressed [ 768.078569][ T26] audit: type=1326 audit(1756245327.530:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12561 comm="syz.4.2142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f926558ebe9 code=0x7ffc0000 [ 768.713902][ T26] audit: type=1326 audit(1756245327.530:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12561 comm="syz.4.2142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f926558ebe9 code=0x7ffc0000 [ 768.817831][ T26] audit: type=1326 audit(1756245327.530:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12561 comm="syz.4.2142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f926558ebe9 code=0x7ffc0000 [ 768.851541][T12532] tipc: Resetting bearer [ 768.897726][ T26] audit: type=1326 audit(1756245327.570:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12561 comm="syz.4.2142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f926558ebe9 code=0x7ffc0000 [ 768.960071][ T26] audit: type=1326 audit(1756245327.570:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12561 comm="syz.4.2142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f926558ebe9 code=0x7ffc0000 [ 769.023350][ T26] audit: type=1326 audit(1756245327.580:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12561 comm="syz.4.2142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f926558ebe9 code=0x7ffc0000 [ 769.066298][ T26] audit: type=1326 audit(1756245327.580:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12561 comm="syz.4.2142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f926558ebe9 code=0x7ffc0000 [ 769.117847][ T26] audit: type=1326 audit(1756245327.600:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12561 comm="syz.4.2142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f926558ebe9 code=0x7ffc0000 [ 769.253312][ T26] audit: type=1326 audit(1756245327.630:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12561 comm="syz.4.2142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f926558ebe9 code=0x7ffc0000 [ 769.370867][ T26] audit: type=1326 audit(1756245327.650:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12561 comm="syz.4.2142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f926558ebe9 code=0x7ffc0000 [ 769.869357][T12532] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 769.878952][T12532] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 769.893672][T12532] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 769.902588][T12532] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 769.968235][T12532] tipc: Resetting bearer [ 769.986654][T12532] device vlan2 left promiscuous mode [ 770.259021][T12588] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2151'. [ 770.318404][T12590] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2152'. [ 770.357531][T12590] device macvtap2 entered promiscuous mode [ 770.378206][T12590] device ip6gretap0 entered promiscuous mode [ 772.456350][T12616] tipc: Enabling of bearer rejected, failed to enable media [ 774.754309][T12642] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 774.799757][T12642] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 788.791282][T12761] tipc: Enabling of bearer rejected, already enabled [ 791.892211][T12788] tipc: Enabling of bearer rejected, already enabled [ 792.720258][T12795] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2206'. [ 792.734199][T12795] device ip6gretap0 entered promiscuous mode [ 792.744353][T12795] device macvtap2 entered promiscuous mode [ 793.028902][T12803] tipc: Enabling of bearer rejected, already enabled [ 793.851902][T12806] sch_tbf: burst 2 is lower than device syzkaller0 mtu (1514) ! [ 801.810771][T12880] netlink: 'syz.4.2227': attribute type 10 has an invalid length. [ 801.856190][T12880] bond0: (slave wlan1): Opening slave failed [ 804.072693][T12903] netlink: 'syz.2.2234': attribute type 13 has an invalid length. [ 804.107698][T12903] infiniband syz2: set active [ 806.060085][T12903] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 806.087799][T12903] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 806.135512][ T4317] lo speed is unknown, defaulting to 1000 [ 808.912325][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 808.918721][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 808.939974][T12959] tipc: Enabling of bearer rejected, failed to enable media [ 810.515394][ T26] kauditd_printk_skb: 13 callbacks suppressed [ 810.515407][ T26] audit: type=1326 audit(1756245369.965:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12978 comm="syz.3.2253" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f245538ebe9 code=0x0 [ 816.614859][T13033] tipc: Enabling of bearer rejected, already enabled [ 817.983131][T13050] device veth0_to_team entered promiscuous mode [ 819.796159][T13064] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2274'. [ 821.488540][T13073] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 821.495883][T13073] IPv6: NLM_F_CREATE should be set when creating new route [ 823.020208][T13073] tipc: Resetting bearer [ 823.959928][T13085] overlayfs: unrecognized mount option "ªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªªª [ 826.690421][T13073] device vlan3 left promiscuous mode [ 826.867299][T13073] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 826.892694][T13073] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 826.910205][T13073] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 826.921069][T13073] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 826.936839][T13073] device geneve2 left promiscuous mode [ 826.964613][T13073] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 826.973971][T13073] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 826.982964][T13073] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 826.991998][T13073] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 827.085745][T13113] netlink: 'syz.5.2290': attribute type 10 has an invalid length. [ 828.922685][T13135] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2298'. [ 832.219916][T13164] tipc: Enabling of bearer rejected, already enabled [ 832.904216][T13168] tipc: Enabling of bearer rejected, already enabled [ 833.073916][T13175] tipc: Enabling of bearer rejected, already enabled [ 833.180404][T13162] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2304'. [ 833.218142][T13175] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2309'. [ 841.162545][T13235] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2325'. [ 842.283082][T13252] device veth0_to_team left promiscuous mode [ 842.332808][T13252] device bridge0 left promiscuous mode [ 842.372639][T13252] device macvtap1 left promiscuous mode [ 842.393192][T13252] device ip6gretap0 left promiscuous mode [ 842.418697][T13252] device macvtap2 left promiscuous mode [ 843.747589][T13270] tipc: Enabling of bearer rejected, already enabled [ 843.812179][ C0] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN [ 843.823941][ C0] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 843.832352][ C0] CPU: 0 PID: 13274 Comm: syz.5.2337 Not tainted 6.1.148-syzkaller #0 [ 843.840527][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 843.850609][ C0] RIP: 0010:fq_codel_enqueue+0xd2d/0x1590 [ 843.856360][ C0] Code: 24 08 48 8b 44 24 20 80 3c 10 00 74 12 4c 89 ef e8 e8 92 82 f9 48 ba 00 00 00 00 00 fc ff df 4d 8b 65 00 4c 89 e0 48 c1 e8 03 <80> 3c 10 00 74 12 4c 89 e7 e8 c5 92 82 f9 48 ba 00 00 00 00 00 fc [ 843.876072][ C0] RSP: 0018:ffffc90000007320 EFLAGS: 00010246 [ 843.882311][ C0] RAX: 0000000000000000 RBX: 1ffff92000000eb4 RCX: 1ffff110299d5a5a [ 843.890286][ C0] RDX: dffffc0000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 843.898267][ C0] RBP: ffffc90000007470 R08: dffffc0000000000 R09: fffffbfff215bc89 [ 843.906424][ C0] R10: fffffbfff215bc89 R11: 1ffffffff215bc88 R12: 0000000000000000 [ 843.914406][ C0] R13: ffff88801e65db00 R14: 0000000000000000 R15: 0000000000000000 [ 843.922370][ C0] FS: 00007f946a1d56c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 843.931650][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 843.938265][ C0] CR2: 0000200000026030 CR3: 000000001b2d9000 CR4: 00000000003506f0 [ 843.946241][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 843.954413][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 843.962452][ C0] Call Trace: [ 843.965729][ C0] [ 843.968568][ C0] ? INET_ECN_set_ce+0x960/0x960 [ 843.973499][ C0] ? get_random_u32+0x4db/0x930 [ 843.978347][ C0] ? ktime_get+0x247/0x270 [ 843.982770][ C0] netem_dequeue+0xcfc/0x13c0 [ 843.987449][ C0] ? netem_enqueue+0x36f0/0x36f0 [ 843.992478][ C0] __qdisc_run+0x247/0x15f0 [ 843.997014][ C0] ? do_raw_spin_lock+0x11d/0x280 [ 844.002048][ C0] __dev_queue_xmit+0x107e/0x3760 [ 844.007081][ C0] ? __dev_queue_xmit+0x26f/0x3760 [ 844.012213][ C0] ? tipc_net+0x45/0x270 [ 844.016450][ C0] ? netdev_core_pick_tx+0x340/0x340 [ 844.021765][ C0] ? tipc_net+0x205/0x270 [ 844.026188][ C0] ? tipc_crypto_xmit+0x1df/0x2440 [ 844.031317][ C0] ? __lock_acquire+0x7c50/0x7c50 [ 844.036548][ C0] ? eth_header+0x117/0x200 [ 844.041042][ C0] ? llc_sysctl_exit+0x60/0x60 [ 844.045805][ C0] tipc_l2_send_msg+0x30f/0x3d0 [ 844.050665][ C0] tipc_bearer_xmit_skb+0x2a9/0x3f0 [ 844.056032][ C0] ? tipc_bearer_xmit_skb+0xa6/0x3f0 [ 844.061308][ C0] ? tipc_bearer_min_mtu+0x1c0/0x1c0 [ 844.066587][ C0] tipc_disc_timeout+0x568/0x6b0 [ 844.071520][ C0] ? tipc_disc_init_msg+0x570/0x570 [ 844.076718][ C0] call_timer_fn+0x1a0/0x670 [ 844.081301][ C0] ? tipc_disc_init_msg+0x570/0x570 [ 844.086525][ C0] ? call_timer_fn+0xc1/0x670 [ 844.091192][ C0] ? __run_timers+0x7c0/0x7c0 [ 844.095890][ C0] ? _raw_spin_unlock_irq+0x1f/0x40 [ 844.101086][ C0] ? lockdep_hardirqs_on+0x94/0x140 [ 844.106287][ C0] ? tipc_disc_init_msg+0x570/0x570 [ 844.111493][ C0] __run_timers+0x525/0x7c0 [ 844.116002][ C0] ? detach_timer+0x350/0x350 [ 844.120713][ C0] ? lock_chain_count+0x20/0x20 [ 844.125579][ C0] run_timer_softirq+0x63/0xf0 [ 844.130342][ C0] handle_softirqs+0x2a1/0x920 [ 844.135117][ C0] ? __irq_exit_rcu+0x12f/0x220 [ 844.139957][ C0] ? do_softirq+0x200/0x200 [ 844.144448][ C0] ? irqtime_account_irq+0xb2/0x1b0 [ 844.149637][ C0] __irq_exit_rcu+0x12f/0x220 [ 844.154314][ C0] ? irq_exit_rcu+0x20/0x20 [ 844.158817][ C0] irq_exit_rcu+0x5/0x20 [ 844.163152][ C0] sysvec_apic_timer_interrupt+0xa0/0xc0 [ 844.168823][ C0] [ 844.171783][ C0] [ 844.174722][ C0] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 844.180705][ C0] RIP: 0010:_raw_spin_unlock_irqrestore+0xa5/0x100 [ 844.187232][ C0] Code: 74 05 e8 fe b0 66 f7 48 c7 44 24 20 00 00 00 00 9c 8f 44 24 20 f6 44 24 21 02 75 4b f7 c3 00 02 00 00 74 01 fb bf 01 00 00 00 86 3c 37 f7 65 8b 05 d7 05 e2 75 85 c0 74 3c 48 c7 04 24 0e 36 [ 844.207100][ C0] RSP: 0018:ffffc900049175a0 EFLAGS: 00000206 [ 844.213374][ C0] RAX: 0f4fa123a0d96c00 RBX: 0000000000000a06 RCX: 0f4fa123a0d96c00 [ 844.221345][ C0] RDX: dffffc0000000000 RSI: ffffffff8a8c0420 RDI: 0000000000000001 [ 844.229308][ C0] RBP: ffffc90004917630 R08: dffffc0000000000 R09: fffffbfff215bc5d [ 844.237371][ C0] R10: fffffbfff215bc5d R11: 1ffffffff215bc5c R12: dffffc0000000000 [ 844.245858][ C0] R13: 0000000000000000 R14: ffff88802bab76c0 R15: 1ffff92000922eb4 [ 844.253831][ C0] ? _raw_spin_unlock+0x40/0x40 [ 844.258671][ C0] ? __wake_up_common+0x2a4/0x4e0 [ 844.263785][ C0] __wake_up_sync_key+0x11b/0x180 [ 844.268815][ C0] ? __wake_up_locked_key_bookmark+0x20/0x20 [ 844.274803][ C0] ? sock_load_diag_module+0x130/0x130 [ 844.280346][ C0] __unix_dgram_recvmsg+0x498/0xd70 [ 844.285549][ C0] ? unix_unhash+0x10/0x10 [ 844.289957][ C0] ? mark_lock+0x94/0x320 [ 844.294366][ C0] ? unix_dgram_recvmsg+0xa9/0xd0 [ 844.299394][ C0] ? unix_dgram_sendmsg+0x16c0/0x16c0 [ 844.304800][ C0] ____sys_recvmsg+0x292/0x580 [ 844.309565][ C0] ? __sys_recvmsg_sock+0x40/0x40 [ 844.314689][ C0] ? import_iovec+0x6f/0xa0 [ 844.319206][ C0] ___sys_recvmsg+0x1b2/0x510 [ 844.323890][ C0] ? __sys_recvmsg+0x270/0x270 [ 844.328671][ C0] ? __lock_acquire+0x7c50/0x7c50 [ 844.333694][ C0] ? __might_fault+0xc2/0x120 [ 844.338372][ C0] ? __might_fault+0xa6/0x120 [ 844.343059][ C0] do_recvmmsg+0x359/0x7d0 [ 844.347470][ C0] ? __sys_recvmmsg+0x280/0x280 [ 844.352317][ C0] ? __up_read+0x27c/0x660 [ 844.356726][ C0] __x64_sys_recvmmsg+0x18d/0x240 [ 844.361763][ C0] ? do_recvmmsg+0x7d0/0x7d0 [ 844.366347][ C0] ? lockdep_hardirqs_on+0x94/0x140 [ 844.371625][ C0] do_syscall_64+0x4c/0xa0 [ 844.376041][ C0] ? clear_bhb_loop+0x60/0xb0 [ 844.380727][ C0] ? clear_bhb_loop+0x60/0xb0 [ 844.385405][ C0] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 844.391330][ C0] RIP: 0033:0x7f946bf8ebe9 [ 844.395949][ C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 844.415898][ C0] RSP: 002b:00007f946a1d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 844.424325][ C0] RAX: ffffffffffffffda RBX: 00007f946c1b6090 RCX: 00007f946bf8ebe9 [ 844.432297][ C0] RDX: 0000000000010106 RSI: 00002000000000c0 RDI: 0000000000000003 [ 844.440637][ C0] RBP: 00007f946c011e19 R08: 0000000000000000 R09: 0000000000000000 [ 844.448611][ C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000 [ 844.456581][ C0] R13: 00007f946c1b6128 R14: 00007f946c1b6090 R15: 00007ffe59dc2d68 [ 844.464571][ C0] [ 844.467592][ C0] Modules linked in: [ 844.471623][ C0] ---[ end trace 0000000000000000 ]--- [ 844.477123][ C0] RIP: 0010:fq_codel_enqueue+0xd2d/0x1590 [ 844.483030][ C0] Code: 24 08 48 8b 44 24 20 80 3c 10 00 74 12 4c 89 ef e8 e8 92 82 f9 48 ba 00 00 00 00 00 fc ff df 4d 8b 65 00 4c 89 e0 48 c1 e8 03 <80> 3c 10 00 74 12 4c 89 e7 e8 c5 92 82 f9 48 ba 00 00 00 00 00 fc [ 844.502692][ C0] RSP: 0018:ffffc90000007320 EFLAGS: 00010246 [ 844.508769][ C0] RAX: 0000000000000000 RBX: 1ffff92000000eb4 RCX: 1ffff110299d5a5a [ 844.516960][ C0] RDX: dffffc0000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 844.524972][ C0] RBP: ffffc90000007470 R08: dffffc0000000000 R09: fffffbfff215bc89 [ 844.533138][ C0] R10: fffffbfff215bc89 R11: 1ffffffff215bc88 R12: 0000000000000000 [ 844.541201][ C0] R13: ffff88801e65db00 R14: 0000000000000000 R15: 0000000000000000 [ 844.549227][ C0] FS: 00007f946a1d56c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 844.558216][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 844.564843][ C0] CR2: 0000200000026030 CR3: 000000001b2d9000 CR4: 00000000003506f0 [ 844.572865][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 844.580866][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 844.588904][ C0] Kernel panic - not syncing: Fatal exception in interrupt [ 844.596455][ C0] Kernel Offset: disabled [ 844.600781][ C0] Rebooting in 86400 seconds..