last executing test programs:

2h21m30.019293842s ago: executing program 0 (id=973):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x9, 0xffffffff, 0x4e, 0x567}, 0x13)
sendmsg$nl_generic(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[@ANYBLOB="180000001600010a0000000000ecff000a00000084"], 0x18}}, 0x0)

2h21m26.24767904s ago: executing program 0 (id=975):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
setsockopt$packet_int(r0, 0x107, 0xe, &(0x7f00000001c0)=0x6, 0x4)

2h21m22.895492011s ago: executing program 0 (id=976):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000fc0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0x8, &(0x7f0000000240)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x6}, [@call={0x85, 0x0, 0x0, 0x11}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000002280)={r1, 0x0, 0xe, 0x0, &(0x7f00000008c0)="e02742e8680d85ff9782762f86dd", 0x0, 0x57af, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

2h21m17.185984886s ago: executing program 0 (id=977):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_FLUSH(r0, 0x0, 0xd1, &(0x7f0000000000)=0x4, 0x4)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000040)={0x0, 0x4, 0x0, 0x0, @vifc_lcl_ifindex, @dev}, 0x10)

2h21m13.683667769s ago: executing program 0 (id=979):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20)
mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x4, 0x11, r0, 0x10000000)

2h21m10.855527548s ago: executing program 0 (id=981):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_int(r0, 0x6, 0x9, 0x0, 0x0)
getsockopt$inet6_tcp_int(r0, 0x6, 0x9, 0x0, &(0x7f0000000040))

2h20m21.948026798s ago: executing program 32 (id=981):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_int(r0, 0x6, 0x9, 0x0, 0x0)
getsockopt$inet6_tcp_int(r0, 0x6, 0x9, 0x0, &(0x7f0000000040))

1m2.810041008s ago: executing program 2 (id=3081):
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x410, &(0x7f00000001c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}})
write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x2, 0x0, {0x1, 0xa4c, 0x75c8}}, 0x28)

50.467361809s ago: executing program 2 (id=3084):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000140), r1)
sendmsg$NLBL_CALIPSO_C_ADD(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x14, r2, 0x125, 0x0, 0x0, {0x2}}, 0x14}}, 0x0)

38.989632896s ago: executing program 1 (id=3086):
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x4148a1b414e7e323)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000000240)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x6000}})
write$FUSE_DIRENTPLUS(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="10000000", @ANYRES64=r0], 0x10)

37.293449854s ago: executing program 2 (id=3087):
r0 = socket(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0xe64, 0xb, @empty, 0x1}, 0x1c)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x4, @empty, 0x101}, 0x1c)

28.546275372s ago: executing program 1 (id=3088):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
futex(&(0x7f000000cffc)=0x4, 0x9, 0x4, 0x0, 0x0, 0x400000)
futex(&(0x7f000000cffc), 0x5, 0x0, 0x0, &(0x7f0000000000)=0x6, 0x4ffffff)

24.362532439s ago: executing program 2 (id=3089):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xf}}, 0x10)
connect$inet(r0, &(0x7f0000000440)={0x2, 0x4e24, @remote}, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @broadcast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x3d, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @remote, @multicast1=0xac14140f}, {0x4e24, 0x4e20, 0x8}}}}}, 0x0)

21.855933479s ago: executing program 1 (id=3090):
r0 = io_uring_setup(0x4238, &(0x7f0000000000)={0x0, 0x0, 0x40})
io_uring_register$IORING_REGISTER_RESTRICTIONS(r0, 0xb, &(0x7f00000004c0)=[@ioring_restriction_register_op={0x0, 0x13}], 0x1)
io_uring_register$IORING_REGISTER_ENABLE_RINGS(r0, 0xc, 0x0, 0x0)
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r0, 0x13, &(0x7f0000000080)=[0xdb, 0x9], 0x2)

13.370560367s ago: executing program 2 (id=3091):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="05000000050000000200000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000000)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b703000000000000850000007000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r1}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x10, 0x0, 0x0, 0x4}, 0x94)

12.638194126s ago: executing program 1 (id=3092):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_NEW(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x20, 0x0, 0x7, 0x401, 0x0, 0x0, {}, [@NFACCT_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x48d5}, 0x8010)
sendmsg$NFNL_MSG_ACCT_NEW(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x20, 0x0, 0x7, 0x301, 0x0, 0x0, {}, [@NFACCT_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x20}}, 0x0)
sendmsg$NFNL_MSG_ACCT_DEL(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000500)={0x14, 0x3, 0x7, 0x301, 0x0, 0x0, {0x5}}, 0x14}}, 0x4040000)

7.5113691s ago: executing program 1 (id=3093):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'macvtap0\x00', <r1=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newtaction={0x4c, 0x30, 0xcac229faa96ee7df, 0x0, 0x0, {}, [{0x38, 0x1, [@m_ife={0x34, 0x1, 0x0, 0x0, {{0x8}, {0xc, 0x2, 0x0, 0x1, [@TCA_IFE_TYPE={0x6, 0x5, 0x1}]}, {0x4}, {0xc, 0x4, {0x1}}, {0xc}}}]}]}, 0x4c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="480000001c00110c0000001400000f0007000000", @ANYRES32=r1, @ANYBLOB="800202000a0002"], 0x48}}, 0x0)

1.456272831s ago: executing program 2 (id=3094):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="3c010000190001000000000000000000e0000001000000000000000000000000fe8000000000000000000000000000aa4e220000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000104000000000000feffffffffffffff030000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000008400050020010000000000000000000000000000000000002b00000000000000000000000000000000000000000500000000000002000700000000000000000000000000e00000020000000000000000000000004000000033"], 0x13c}}, 0x20040880)
socket(0x1, 0x803, 0x0)
syz_emit_ethernet(0x3e, &(0x7f00000006c0)={@broadcast, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "121008", 0x8, 0x3a, 0x0, @remote, @local, {[], @echo_request}}}}}, 0x0)

0s ago: executing program 1 (id=3095):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
getsockname$packet(r0, &(0x7f0000000080)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000140)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@newlink={0x50, 0x10, 0x503, 0x0, 0x700, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x14, 0x7, @local}]}}}, @IFLA_MASTER={0x8, 0xa, r1}]}, 0x50}, 0x1, 0x0, 0x0, 0x800}, 0xc0b0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:26564' (ED25519) to the list of known hosts.
syzkaller login: [  340.497330][    C1] sched: DL replenish lagged too much
[  362.921256][ T3183] cgroup: Unknown subsys name 'net'
[  363.719530][ T3183] cgroup: Unknown subsys name 'cpuset'
[  363.847612][ T3183] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[  427.677336][ T3183] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  520.825801][ T3197] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  520.900664][ T3197] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  522.589555][ T3194] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  522.724082][ T3194] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  532.723731][ T3197] hsr_slave_0: entered promiscuous mode
[  532.774723][ T3197] hsr_slave_1: entered promiscuous mode
[  534.933187][ T3194] hsr_slave_0: entered promiscuous mode
[  534.974565][ T3194] hsr_slave_1: entered promiscuous mode
[  534.994393][ T3194] debugfs: 'hsr0' already exists in 'hsr'
[  535.008201][ T3194] Cannot create hsr debugfs directory
[  542.544233][ T3197] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  542.721003][ T3197] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  542.892390][ T3197] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  543.290552][ T3197] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  544.872156][ T3194] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  545.174026][ T3194] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  545.331886][ T3194] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  545.552110][ T3194] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  557.021353][ T3197] 8021q: adding VLAN 0 to HW filter on device bond0
[  557.992083][ T3194] 8021q: adding VLAN 0 to HW filter on device bond0
[  604.982528][ T3197] veth0_vlan: entered promiscuous mode
[  606.030592][ T3194] veth0_vlan: entered promiscuous mode
[  606.131718][ T3197] veth1_vlan: entered promiscuous mode
[  606.852455][ T3194] veth1_vlan: entered promiscuous mode
[  608.633623][ T3197] veth0_macvtap: entered promiscuous mode
[  609.065915][ T3197] veth1_macvtap: entered promiscuous mode
[  609.500851][ T3194] veth0_macvtap: entered promiscuous mode
[  609.868189][ T3194] veth1_macvtap: entered promiscuous mode
[  611.528721][   T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  611.534218][   T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  611.790173][   T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  611.840797][   T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  613.224192][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  613.228244][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  613.230406][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  613.232454][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  616.991579][ T3197] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  627.104010][ T3902] ptrace attach of "/syz-executor exec"[3194] was attempted by "ߖ鷴�)Qo� �� �\x0dv�Ң�9T{�-9�2\x0ap_3j ��n��ޭO�a�)b���k�����ߟ.��\x0aK�~򜛱��ت���KOkF^��3����B3��)������{\x5c���rHBd�,��X�\x09\x0b�3�c��\x22�&W�\x22�\x1b�T�L'��\x09��!_�N�hٹ=�n>�a���� �(G6��茷�A+&ϋЈU��ߍ�a�{@{�\x0b�[ɸ��Ya��c���A������
���z��ÂGl:d<]�u~v��!�9�,�?Ŵ�>\x22ar\x1b��l�Kڬ�Y���*V��S��8��ȁ6]�k��K�.��=����`#����\x07��x!���g�MD�����R�*�OLK\x0c�}oK�b�
�A>{�@a�M�d�nQj��̖����
��5)��]�;r��,L��\x0c�=\x0d���W����AE� �n�`>�Ɵ��s-�3��`y�feH�����^/$�L1&���N�P\x0d1���D<�\x07c�Pd(��E��d��t���a�E��!�ҭ �\x09@�ݞHG�~�H<��D$�\x0crX���`�-ͪ/�IF�������E��tI���;{��������*W\x0c���\x0a�:��E��̀�V'�\x0c���8s�ejk����e~ɫ��R�����L����B*�\x0b-�r��@\x07��V�Mš�v��%Oym��WG�ܕ���|��ʤ=�t�ƒ���U���?��h��K�0uӣٜ��0�G �'�b,���\x22ߊ��
�;2�Ո�'G/޳7�Wd\x5c!�w%���xg�\x22��x����[4!Nl���Q(\x0a@�[�+ �ؐ�Ǭ[[zN�� ��s�B&�����X��>%��3���
{�- �^��Qǚ4e3\x0b�>�sF̗�H]+\x0
[  632.505903][ T3906] netlink: 'syz.0.4': attribute type 5 has an invalid length.
[  632.574888][ T3906] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4'.
[  671.088432][ T3942] process 'syz.1.18' launched '/dev/fd/3' with NULL argv: empty string added
[  685.254028][ T3958] netlink: 12 bytes leftover after parsing attributes in process `syz.1.26'.
[  687.644481][ T3960] kernel profiling enabled (shift: 3)
[  723.543992][ T3990] netlink: 8 bytes leftover after parsing attributes in process `syz.1.40'.
[  765.480833][ T4033] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  784.512336][ T4054] =======================================================
[  784.512336][ T4054] WARNING: The mand mount option has been deprecated and
[  784.512336][ T4054]          and is ignored by this kernel. Remove the mand
[  784.512336][ T4054]          option from the mount to silence this warning.
[  784.512336][ T4054] =======================================================
[  791.114654][ T4063] netlink: 8 bytes leftover after parsing attributes in process `syz.1.74'.
[  793.840701][ T4067] capability: warning: `syz.1.76' uses deprecated v2 capabilities in a way that may be insecure
[  826.460909][ T4099] netlink: 16 bytes leftover after parsing attributes in process `syz.1.91'.
[  831.979606][ T4105] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.94' sets config #1
[  835.501582][ T4109] Driver unsupported XDP return value 0 on prog  (id 8) dev N/A, expect packet loss!
[  847.777873][ T4122] netlink: 'syz.1.102': attribute type 3 has an invalid length.
[  879.092459][ T3190] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  879.449189][ T3190] usb 2-1: Using ep0 maxpacket: 16
[  880.151188][ T3190] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  880.154864][ T3190] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  880.188439][ T3190] usb 2-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  880.191573][ T3190] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  880.500792][ T3190] usb 2-1: config 0 descriptor??
[  883.783672][ T3190] mcp2221 0003:04D8:00DD.0001: item fetching failed at offset 1/5
[  883.835779][ T3190] mcp2221 0003:04D8:00DD.0001: can't parse reports
[  883.853924][ T3190] mcp2221 0003:04D8:00DD.0001: probe with driver mcp2221 failed with error -22
[  884.243810][ T3190] usb 2-1: USB disconnect, device number 2
[  914.456048][ T4203] netlink: 8 bytes leftover after parsing attributes in process `syz.1.132'.
[  918.089848][ T4207] netlink: 'syz.1.134': attribute type 5 has an invalid length.
[  932.203730][ T4224] netlink: 24 bytes leftover after parsing attributes in process `syz.1.142'.
[  937.973538][ T4231] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  961.420405][ T4256] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  964.554404][   T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  964.653535][   T24] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[ 1018.301934][ T4329] netlink: 4 bytes leftover after parsing attributes in process `syz.0.187'.
[ 1089.564907][ T4411] trusted_key: encrypted_key: master key parameter '' is invalid
[ 1105.108544][ T4424] [U] ^C
[ 1115.223074][ T4437] netlink: 'syz.0.239': attribute type 1 has an invalid length.
[ 1115.224885][ T4437] netlink: 212 bytes leftover after parsing attributes in process `syz.0.239'.
[ 1122.045018][ T4444] random: crng reseeded on system resumption
[ 1146.642770][ T4469] vlan2: entered allmulticast mode
[ 1146.644746][ T4469] bridge_slave_0: entered allmulticast mode
[ 1176.729169][ T4513] netlink: 8 bytes leftover after parsing attributes in process `syz.0.272'.
[ 1176.730531][ T4513] netlink: 12 bytes leftover after parsing attributes in process `syz.0.272'.
[ 1176.731600][ T4513] netlink: 'syz.0.272': attribute type 20 has an invalid length.
[ 1195.112565][   T35] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x4
[ 1195.114606][   T35] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x2
[ 1195.123024][   T35] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[ 1195.124947][   T35] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[ 1195.137579][   T35] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[ 1195.139407][   T35] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[ 1195.140820][   T35] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[ 1195.142297][   T35] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[ 1195.160797][   T35] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[ 1195.163146][   T35] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0
[ 1195.348899][   T35] hid-generic 0000:3000000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[ 1206.168287][ T4555] netlink: 8 bytes leftover after parsing attributes in process `syz.1.287'.
[ 1206.169704][ T4555] netlink: 12 bytes leftover after parsing attributes in process `syz.1.287'.
[ 1206.170900][ T4555] netlink: 'syz.1.287': attribute type 15 has an invalid length.
[ 1251.652348][ T4607] netlink: 16 bytes leftover after parsing attributes in process `syz.1.312'.
[ 1274.200679][ T4634] netlink: 216 bytes leftover after parsing attributes in process `syz.1.321'.
[ 1274.202973][ T4634] netlink: 24 bytes leftover after parsing attributes in process `syz.1.321'.
[ 1274.205134][ T4634] netlink: 16 bytes leftover after parsing attributes in process `syz.1.321'.
[ 1275.011667][ T4635] netlink: 'syz.0.322': attribute type 142 has an invalid length.
[ 1296.032835][ T4662] trusted_key: encrypted_key: key user:syz not found
[ 1339.723729][ T4703] netlink: 32 bytes leftover after parsing attributes in process `syz.1.352'.
[ 1346.029225][ T4711] netlink: 8 bytes leftover after parsing attributes in process `syz.1.356'.
[ 1346.031543][ T4711] netlink: 'syz.1.356': attribute type 5 has an invalid length.
[ 1346.033162][ T4711] netlink: 'syz.1.356': attribute type 8 has an invalid length.
[ 1346.034461][ T4711] netlink: 8 bytes leftover after parsing attributes in process `syz.1.356'.
[ 1346.304195][ T4711] geneve2: entered promiscuous mode
[ 1346.322329][ T4711] geneve2: entered allmulticast mode
[ 1346.485812][   T13] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 256 - 0
[ 1346.501125][   T13] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 256 - 0
[ 1346.504585][   T13] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 256 - 0
[ 1346.538192][   T13] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 256 - 0
[ 1372.621500][ T4743] netlink: 12 bytes leftover after parsing attributes in process `syz.0.370'.
[ 1372.660354][ T4743] tc_dump_action: action bad kind
[ 1378.592181][ T4747] netlink: 4 bytes leftover after parsing attributes in process `syz.1.372'.
[ 1386.540218][ T4754] comedi comedi4: bad chanlist[0]=0x0400000b chan=11 range length=2
[ 1403.781625][ T4773] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[ 1414.454788][ T4788] netlink: 72 bytes leftover after parsing attributes in process `syz.0.391'.
[ 1414.473882][ T4788] netlink: 72 bytes leftover after parsing attributes in process `syz.0.391'.
[ 1478.358695][ T4853] netlink: 16 bytes leftover after parsing attributes in process `syz.0.419'.
[ 1532.873598][ T4911] new mount options do not match the existing superblock, will be ignored
[ 1532.954934][ T4911] cgroup: option or name mismatch, new: 0x4 "", old: 0x0 ""
[ 1566.845013][ T4946] netlink: 52 bytes leftover after parsing attributes in process `syz.1.460'.
[ 1615.675728][ T5007] netlink: 'syz.0.486': attribute type 75 has an invalid length.
[ 1624.649427][ T5015] netlink: 12 bytes leftover after parsing attributes in process `syz.0.490'.
[ 1632.974767][ T5025] netlink: 24 bytes leftover after parsing attributes in process `syz.1.494'.
[ 1671.506020][ T5074] netlink: 12 bytes leftover after parsing attributes in process `syz.1.516'.
[ 1679.210726][ T5082] bond0: option primary: mode dependency failed, not supported in mode balance-rr(0)
[ 1730.865436][ T5143] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[ 1734.560571][   T34] audit: type=1800 audit(1733.590:2): pid=5149 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.550" name="memory.events" dev="tmpfs" ino=1402 res=0 errno=0
[ 1735.031123][   T34] audit: type=1800 audit(1734.110:3): pid=5149 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.550" name="memory.events" dev="tmpfs" ino=1402 res=0 errno=0
[ 1739.833709][ T5154] netlink: 798 bytes leftover after parsing attributes in process `syz.1.552'.
[ 1742.297811][ T5153] syz.0.551 (5153): drop_caches: 2
[ 1773.799795][ T5190] [U] 
[ 1835.121497][ T5267] netlink: 4 bytes leftover after parsing attributes in process `syz.1.599'.
[ 1835.123646][ T5267] netlink: 5 bytes leftover after parsing attributes in process `syz.1.599'.
[ 1835.405237][ T5267] vlan2: entered promiscuous mode
[ 1835.410191][ T5267] syz_tun: entered promiscuous mode
[ 1847.221633][ T5283] (unnamed net_device) (uninitialized): option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[ 1847.374436][ T5283] netlink: 8 bytes leftover after parsing attributes in process `syz.1.605'.
[ 1847.375619][ T5283] netlink: 12 bytes leftover after parsing attributes in process `syz.1.605'.
[ 1874.228642][ T5310] can0: slcan on ptm0.
[ 1875.124198][ T5307] can0 (unregistered): slcan off ptm0.
[ 1960.758847][ T5404] tmpfs: Bad value for 'size'
[ 1960.761754][ T5405] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1969.652822][   T34] audit: type=1326 audit(1968.730:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5413 comm="syz.0.661" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x0
[ 1991.351696][ T5432] netlink: 12 bytes leftover after parsing attributes in process `syz.1.669'.
[ 1991.355008][ T5432] nbd: must specify a size in bytes for the device
[ 2006.321167][ T5444] netlink: 32 bytes leftover after parsing attributes in process `syz.0.674'.
[ 2014.501388][ T5457] netlink: 8 bytes leftover after parsing attributes in process `syz.1.679'.
[ 2014.545235][ T5457] netlink: 12 bytes leftover after parsing attributes in process `syz.1.679'.
[ 2016.585524][ T5459] CUSE: info not properly terminated
[ 2026.554607][ T5473] netlink: 12 bytes leftover after parsing attributes in process `syz.1.688'.
[ 2046.241001][ T5492] netlink: 8 bytes leftover after parsing attributes in process `syz.0.697'.
[ 2046.243239][ T5492] netlink: 4 bytes leftover after parsing attributes in process `syz.0.697'.
[ 2046.244995][ T5492] netlink: 'syz.0.697': attribute type 12 has an invalid length.
[ 2059.165717][ T5502] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[ 2059.165717][ T5502] The task syz.1.701 (5502) triggered the difference, watch for misbehavior.
[ 2101.942644][ T5546] nbd: must specify an index to disconnect
[ 2130.015359][ T3194] block device autoloading is deprecated and will be removed.
[ 2140.077438][ T3194] block device autoloading is deprecated and will be removed.
[ 2141.003445][ T5606] vlan2: entered allmulticast mode
[ 2141.005079][ T5606] bond0: entered allmulticast mode
[ 2141.009554][ T5606] bond_slave_0: entered allmulticast mode
[ 2141.011313][ T5606] bond_slave_1: entered allmulticast mode
[ 2175.124672][ T5641] loop1: detected capacity change from 0 to 7
[ 2193.258860][ T5672] netlink: 16 bytes leftover after parsing attributes in process `syz.1.772'.
[ 2193.651005][ T5672] IPv6: sit1: Disabled Multicast RS
[ 2193.696050][ T5672] sit1: entered allmulticast mode
[ 2197.621828][ T5680] netlink: 36 bytes leftover after parsing attributes in process `syz.0.774'.
[ 2216.690353][ T5707] mmap: syz.0.786 (5707) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[ 2226.447305][ T5720] vlan3: entered allmulticast mode
[ 2226.448634][ T5720] gretap0: entered allmulticast mode
[ 2239.155253][ T5733] PKCS7: Unknown OID: [5] (bad)
[ 2239.164732][ T5733] PKCS7: Only support pkcs7_signedData type
[ 2251.687643][ T5749] veth1_macvtap: left promiscuous mode
[ 2251.689928][ T5749] macsec0: entered promiscuous mode
[ 2251.691168][ T5749] macsec0: entered allmulticast mode
[ 2252.011044][ T5749] veth1_macvtap: entered promiscuous mode
[ 2252.013157][ T5749] veth1_macvtap: entered allmulticast mode
[ 2252.021933][ T5749] macsec0: left promiscuous mode
[ 2252.031427][ T5749] macsec0: left allmulticast mode
[ 2252.033178][ T5749] veth1_macvtap: left allmulticast mode
[ 2285.080656][ T5790] netlink: 16178 bytes leftover after parsing attributes in process `syz.0.820'.
[ 2286.661904][ T5792] tmpfs: Cannot enable quota on remount
[ 2335.225227][ T5853] random: crng reseeded on system resumption
[ 2335.991830][ T5853] Restarting kernel threads ...
[ 2336.010489][ T5853] Done restarting kernel threads.
[ 2367.055383][ T5894] netlink: 28 bytes leftover after parsing attributes in process `syz.1.866'.
[ 2384.322908][ T5919] autofs: Bad value for 'fd'
[ 2418.720960][ T5966] netlink: 12 bytes leftover after parsing attributes in process `syz.1.899'.
[ 2422.792460][ T5969] binder: 5968:5969 ioctl 400c620e 200000000000 returned -22
[ 2442.569549][ T6000] netlink: 8 bytes leftover after parsing attributes in process `syz.0.916'.
[ 2442.571120][ T6000] netlink: 4 bytes leftover after parsing attributes in process `syz.0.916'.
[ 2442.572123][ T6000] netlink: 'syz.0.916': attribute type 13 has an invalid length.
[ 2442.580384][ T6000] netlink: 'syz.0.916': attribute type 11 has an invalid length.
[ 2470.861267][   T34] audit: type=1326 audit(2469.930:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6041 comm="syz.0.935" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 2470.882636][   T34] audit: type=1326 audit(2469.950:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6041 comm="syz.0.935" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 2471.100246][   T34] audit: type=1326 audit(2470.170:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6041 comm="syz.0.935" exe="/syz-executor" sig=0 arch=c00000f3 syscall=167 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 2471.118309][   T34] audit: type=1326 audit(2470.180:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6041 comm="" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 2471.158538][   T34] audit: type=1326 audit(2470.210:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6041 comm="" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 2471.227600][   T34] audit: type=1326 audit(2470.280:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6041 comm="" exe="/syz-executor" sig=0 arch=c00000f3 syscall=280 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 2471.237246][   T34] audit: type=1326 audit(2470.290:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6041 comm="" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 2497.379242][ T6077] netlink: 40 bytes leftover after parsing attributes in process `syz.0.948'.
[ 2501.674896][ T6083] netlink: 140 bytes leftover after parsing attributes in process `syz.0.951'.
[ 2516.641005][ T6106] netlink: 32 bytes leftover after parsing attributes in process `syz.0.962'.
[ 2529.335466][ T6122] netlink: 8 bytes leftover after parsing attributes in process `syz.1.966'.
[ 2529.344706][ T6122] netlink: 12 bytes leftover after parsing attributes in process `syz.1.966'.
[ 2550.765335][ T6149] pimreg4: entered allmulticast mode
[ 2560.512119][ T6164] x_tables: ip_tables: TPROXY.0 target: invalid size 16 (kernel) != (user) 24
[ 2587.735900][ T6185] netlink: 8 bytes leftover after parsing attributes in process `syz.1.993'.
[ 2614.533107][   T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2615.285124][   T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2616.068712][   T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2617.080503][   T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2624.024693][ T6224] binder: 6223:6224 ioctl c0306201 200000000100 returned -22
[ 2627.384486][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2627.414134][   T12] bond_slave_0: left allmulticast mode
[ 2627.513769][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2627.532127][   T12] bond_slave_1: left allmulticast mode
[ 2627.572734][   T12] bond0 (unregistering): Released all slaves
[ 2629.120970][   T12] hsr_slave_0: left promiscuous mode
[ 2629.209755][   T12] hsr_slave_1: left promiscuous mode
[ 2630.128562][   T12] veth1_macvtap: left promiscuous mode
[ 2630.132636][   T12] veth0_macvtap: left promiscuous mode
[ 2630.136797][   T12] veth1_vlan: left promiscuous mode
[ 2630.140347][   T12] veth0_vlan: left promiscuous mode
[ 2635.294155][   T12] pimreg4 (unregistering): left allmulticast mode
[ 2669.732001][ T6326] netlink: 256 bytes leftover after parsing attributes in process `syz.1.1012'.
[ 2669.733539][ T6326] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1012'.
[ 2682.800873][ T6205] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2683.101138][ T6205] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2702.327580][ T6205] hsr_slave_0: entered promiscuous mode
[ 2702.411961][ T6205] hsr_slave_1: entered promiscuous mode
[ 2702.464836][ T6205] debugfs: 'hsr0' already exists in 'hsr'
[ 2702.477759][ T6205] Cannot create hsr debugfs directory
[ 2713.995459][ T6205] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 2714.261802][ T6205] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 2714.610233][ T6205] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 2714.790813][ T6205] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 2737.625399][ T6205] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2782.041070][ T6676] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1031'.
[ 2808.150455][ T6205] veth0_vlan: entered promiscuous mode
[ 2808.940479][ T6205] veth1_vlan: entered promiscuous mode
[ 2810.313315][ T6205] veth0_macvtap: entered promiscuous mode
[ 2810.612351][ T6205] veth1_macvtap: entered promiscuous mode
[ 2813.180723][   T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2813.183621][   T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2813.185855][   T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2813.303392][   T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2820.750800][ T6714] RDS: rds_bind could not find a transport for fe80::, load rds_tcp or rds_rdma?
[ 2854.362723][ T6736] Zero length message leads to an empty skb
[ 2857.489233][ T6738] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1049'.
[ 2882.025847][ T6768] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1062'.
[ 2882.105071][ T6768] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1062'.
[ 2882.139469][ T6768] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1062'.
[ 2902.516754][ T6788] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1072'.
[ 2902.518245][ T6788] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1072'.
[ 2902.522114][ T6788] netlink: 'syz.1.1072': attribute type 18 has an invalid length.
[ 2915.190354][ T6796] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1075'.
[ 2915.242838][ T6796] (unnamed net_device) (uninitialized): option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[ 2918.385381][   T34] audit: type=1326 audit(2917.460:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.2.1076" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x0
[ 2931.875472][ T6812] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1082'.
[ 2972.575249][ T6852] trusted_key: encrypted_key: key trusted:�8s�X not found
[ 3002.429294][ T6878] netlink: 256 bytes leftover after parsing attributes in process `syz.2.1112'.
[ 3016.143580][ T6893] netlink: 27 bytes leftover after parsing attributes in process `syz.1.1119'.
[ 3030.110560][ T6905] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 3030.175904][ T6905] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 3033.068192][ T6909] can0: slcan on ttynull.
[ 3034.395175][ T6908] can0 (unregistered): slcan off ttynull.
[ 3115.584959][ T6991] xt_socket: unknown flags 0x40
[ 3125.071371][ T6708] hid_parser_main: 6 callbacks suppressed
[ 3125.071734][ T6708] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[ 3125.124555][ T6708] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[ 3149.332059][ T7028] netlink: 148 bytes leftover after parsing attributes in process `syz.2.1166'.
[ 3149.335538][ T7028] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1166'.
[ 3203.648527][ T7084] xt_l2tp: wrong L2TP version: 0
[ 3207.224292][ T7087] Invalid logical block size (4093)
[ 3217.880955][ T7096] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 3217.980062][ T7096] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 3232.178555][ T7107] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1199'.
[ 3309.680989][ T7177] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1233'.
[ 3333.859765][ T7201] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1243'.
[ 3333.980835][ T7200] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1243'.
[ 3408.033930][ T7267] EXT4-fs: Conflicting test_dummy_encryption options
[ 3438.142581][ T7302] hugetlbfs: Bad value 't' for mount option 'nr_inodes'
[ 3438.142581][ T7302] 
[ 3441.623663][ T7304] netlink: 16178 bytes leftover after parsing attributes in process `syz.1.1288'.
[ 3450.744057][ T7312] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1292'.
[ 3460.945962][ T7322] xt_l2tp: missing protocol rule (udp|l2tpip)
[ 3519.515379][ T7371] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1319'.
[ 3543.464113][ T7390] ptrace attach of "/syz-executor exec"[6205] was attempted by "/syz-executor exec"[7390]
[ 3595.154449][ T7432] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1349'.
[ 3595.163053][ T7432] netlink: 'syz.2.1349': attribute type 1 has an invalid length.
[ 3595.164728][ T7432] netlink: 'syz.2.1349': attribute type 2 has an invalid length.
[ 3595.231256][ T7432] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1349'.
[ 3609.949219][ T7448] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1357'.
[ 3632.309097][ T7472] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1369'.
[ 3663.901214][ T7497] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 3676.851123][ T7510] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1386'.
[ 3701.261237][ T7526] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1394'.
[ 3744.225233][ T7566] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1412'.
[ 3746.304591][ T7568] netlink: 304 bytes leftover after parsing attributes in process `syz.1.1413'.
[ 3770.442344][ T7589] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[ 3833.570572][ T7647] netlink: 'syz.2.1450': attribute type 6 has an invalid length.
[ 3876.733739][ T7688] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1469'.
[ 3885.463329][ T7700] xt_time: invalid argument - start or stop time greater than 23:59:59
[ 3896.456037][ T7707] capability: warning: `syz.2.1475' uses 32-bit capabilities (legacy support in use)
[ 3925.191266][ T7726] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1484'.
[ 3938.634162][ T7556] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[ 3938.868726][ T7556] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[ 3972.410179][ T7774] A link change request failed with some changes committed already. Interface bond_slave_0 may have been left with an inconsistent configuration, please check.
[ 3977.599816][ T7778] netlink: 'syz.1.1503': attribute type 29 has an invalid length.
[ 3977.732284][ T7778] netlink: 'syz.1.1503': attribute type 29 has an invalid length.
[ 3991.679116][    C1] vkms_vblank_simulate: vblank timer overrun
[ 4024.423132][    C1] vkms_vblank_simulate: vblank timer overrun
[ 4035.972419][    C1] vkms_vblank_simulate: vblank timer overrun
[ 4046.703028][    C1] vkms_vblank_simulate: vblank timer overrun
[ 4047.255815][    C1] vkms_vblank_simulate: vblank timer overrun
[ 4097.004544][ T7888] tmpfs: Bad value for 'mpol'
[ 4109.955375][ T7905] xt_l2tp: invalid flags combination: 8
[ 4115.661382][ T7911] pimreg: entered allmulticast mode
[ 4139.903725][ T7934] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1569'.
[ 4146.943787][ T7941] binder: 7939:7941 ioctl c0306201 0 returned -14
[ 4246.645108][ T8044] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1618'.
[ 4251.633695][ T8049] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1619'.
[ 4298.914856][ T8094] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1639'.
[ 4303.325903][ T8098] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1641'.
[ 4303.463474][ T8098] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1641'.
[ 4344.133890][ T8132] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1656'.
[ 4355.019124][    C1] vkms_vblank_simulate: vblank timer overrun
[ 4366.840858][ T8157] vlan4: entered allmulticast mode
[ 4366.842069][ T8157] macsec0: entered allmulticast mode
[ 4366.842989][ T8157] veth1_macvtap: entered allmulticast mode
[ 4368.218751][    C1] vkms_vblank_simulate: vblank timer overrun
[ 4372.004533][ T8165] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 4372.072073][ T8165] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 4411.068763][   T34] audit: type=1326 audit(4410.140:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.1.1684" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 4411.117523][   T34] audit: type=1326 audit(4410.190:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.1.1684" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 4411.222102][   T34] audit: type=1326 audit(4410.290:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.1.1684" exe="/syz-executor" sig=0 arch=c00000f3 syscall=186 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 4411.223864][   T34] audit: type=1326 audit(4410.300:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.1.1684" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 4411.255103][   T34] audit: type=1326 audit(4410.320:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.1.1684" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 4411.282250][   T34] audit: type=1326 audit(4410.330:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.1.1684" exe="/syz-executor" sig=0 arch=c00000f3 syscall=187 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 4411.284389][   T34] audit: type=1326 audit(4410.350:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.1.1684" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 4516.591531][    C1] vkms_vblank_simulate: vblank timer overrun
[ 4521.370318][ T8299] netlink: 'syz.1.1728': attribute type 2 has an invalid length.
[ 4526.007265][    C1] vkms_vblank_simulate: vblank timer overrun
[ 4527.295196][ T8309] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 4527.370754][ T8309] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 4539.595096][ T8318] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false
[ 4606.237679][    C1] vkms_vblank_simulate: vblank timer overrun
[ 4673.299383][ T8443] syz.1.1785 uses obsolete (PF_INET,SOCK_PACKET)
[ 4707.358764][ T8467] can0: slcan on ttyS3.
[ 4709.224892][ T8467] can0 (unregistered): slcan off ttyS3.
[ 4732.301806][ T8499] netlink: 356 bytes leftover after parsing attributes in process `syz.2.1804'.
[ 4742.823893][ T8508] input: syz1 as /devices/virtual/input/input4
[ 4765.502519][ T8531] input: syz1 as /devices/virtual/input/input5
[ 4767.610570][    C1] vkms_vblank_simulate: vblank timer overrun
[ 4775.550372][ T8543] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 4836.882296][   T34] audit: type=1326 audit(4835.960:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8595 comm="syz.2.1839" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x0
[ 4840.267151][    C1] vkms_vblank_simulate: vblank timer overrun
[ 4865.135759][ T8621] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1850'.
[ 4866.522617][ T8623] binder: 8622:8623 ioctl 541b 0 returned -22
[ 4883.758744][ T8637] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 4883.868079][ T8637] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 4895.690052][ T8645] pim6reg1: mtu less than device minimum
[ 4902.718618][ T8658] netlink: 'syz.2.1862': attribute type 19 has an invalid length.
[ 4943.446877][    C1] vkms_vblank_simulate: vblank timer overrun
[ 4973.003276][ T8723] PKCS7: Unknown OID: [5] 0.0
[ 4973.004274][ T8723] PKCS7: Only support pkcs7_signedData type
[ 4992.352303][ T8741] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1896'.
[ 5008.951319][ T8753] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1901'.
[ 5020.418086][   T34] audit: type=1326 audit(5019.490:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8765 comm="syz.1.1906" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x0
[ 5037.204486][ T8780] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1912'.
[ 5037.395481][ T8780] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1912'.
[ 5043.645425][ T8786] vcan0: entered allmulticast mode
[ 5057.865676][   T34] audit: type=1326 audit(5056.920:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8795 comm="syz.2.1920" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 5057.882397][   T34] audit: type=1326 audit(5056.950:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8795 comm="syz.2.1920" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 5058.178634][   T34] audit: type=1326 audit(5057.240:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8795 comm="syz.2.1920" exe="/syz-executor" sig=0 arch=c00000f3 syscall=2 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 5058.221087][   T34] audit: type=1326 audit(5057.240:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8795 comm="syz.2.1920" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 5058.244789][   T34] audit: type=1326 audit(5057.290:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8795 comm="syz.2.1920" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 5074.319889][   T34] audit: type=1326 audit(5073.390:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8810 comm="syz.1.1926" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x0
[ 5083.607990][ T8820] can0: slcan on ttyS3.
[ 5084.470447][ T8820] can0 (unregistered): slcan off ttyS3.
[ 5089.862716][ T8835] trusted_key: encrypted_key: keyword 'updat' not recognized
[ 5094.911141][   T34] audit: type=1326 audit(5093.980:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8840 comm="syz.2.1935" exe="/syz-executor" sig=9 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x0
[ 5104.894914][ T8857] can0: slcan on ttyS3.
[ 5106.142500][ T8857] can0 (unregistered): slcan off ttyS3.
[ 5116.840874][ T8872] netlink: 'syz.2.1939': attribute type 9 has an invalid length.
[ 5126.004706][ T8878] nbd0: detected capacity change from 0 to 127
[ 5126.830301][   T56] block nbd0: Receive control failed (result -32)
[ 5133.722599][ T8888] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1945'.
[ 5157.394420][ T8909] ubi31: attaching mtd0
[ 5157.481316][ T8908] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1955'.
[ 5162.470317][ T8912] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[ 5202.372448][ T8948] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 5222.418521][ T8974] netlink: 'syz.1.1983': attribute type 10 has an invalid length.
[ 5231.115326][ T8985] can0: slcan on ttyS3.
[ 5232.899457][ T8985] can0 (unregistered): slcan off ttyS3.
[ 5263.519149][ T9023] [U] 
[ 5263.522330][ T9023] [U] K{�
[ 5263.559094][ T9023] [U] �T �1��Š�F���Fˊ�`G�Jǘ�G���������O��/�MC�
[ 5263.641793][ T9023] [U] T�ؖ/,�~�Ĝ��J���}8���'O1��"�7-΂JQ�K��W��Q�5C%"�H12��Y������X�`���ȼ`+��(�¿!(���Z'�TXLN�I�G�J����ݭ�P�~�7�!���"ب���(�5�OBܤ�̓J�
[ 5263.674279][ T9023] [U] �K\&�}6�6�X�HX��Ե���.`�A�$�40|϶��9��ި����U��4��ĮVBZ��}�W�M�T���Q��ΦR�4��
[ 5263.799645][ T9023] [U] ".H6��"�KÇ[����J�4��I�N��[Z(��C|T�]Z{��3�C=��X�Ԟ˅�4�W�)\T�XJ��SH{Q;̹���T��+���G��߮D�.˂�>Y����WUH�FN����HL]S�2���\G%�O�&Z)�К'�PUL�_<�	�ذ�Ү��`ұT��ޜ���;_�"(�U{7J��2X �/�'��C���I����H�C�ճ�V�=��AI�%W�ES� R��J�Μ���G��R��͡HI
���A��6-�D��V�� I"��Nƨ ��ASC~4���8C�*�OO5/ߜJ�~���W�VK+����3��Y)��M���V��YQƽ�DTR�
OTPEM%F��EJ�A5��T_-X~�^AAۂҘ�Q��
[ 5264.035792][ T9023] [U] 	+�W�G?]��'A:	��)�
����' B>T���F/��<'�U�'��H�I�.+]E�.�-ɿ߿�%��>2`�^U�8F.�6��3��+�A�«���G3�P��6:�^0��T��V�'E�T����YC�N��Rϩ�N�PJ�;�Z����ۑ8!��\م�A�ʖ2��$е�­WI.��#��/BAI���`��4J��D�Y@�Z��GW�5˿B��ٜ�N�Y"VI2��
[ 5264.194925][ T9023] [U] �T�_K5�T�YJ���9��C�$BR�L�NUL��9W���|�G�"ʃ�%�ڶ�C�؝���Q��
 ��3��Q��N^HP*��$	�.�7Yӱ�2�
[ 5264.335762][ T9023] [U] �?���H��*����3͝7�ɍ�^#Q�"0~���(�O�XL�B�,'V��=���C�S���G�S��0�ւ��`���ه��=1(�ξ��P#�2DO*Ƀ
[ 5264.465364][ T9023] [U] �S��G������GU��D-{���|&�����ѐ2��L�C_��!`��OZ֥�B��%>�RѶ�WχݎSS�H"�YA4�O.�Y��ď�RTԶ�B�[+/<<R�B����|ФE���۠�V96#���ͤʦJ�U�%
S851���ҩS�P��\��?Q�|L��QX�0�K�1ORɴ2��|��D�F���ِ��2ޔ���0��H�}C[/����PX^��O
[ 5264.599303][ T9023] [U] �؛���(J�Л��M��XZ�;�����؝_����*3�3��5�\�XM��U��AK!AQ`��;FЕ�I+��VUH���M�J��Ʒ��Z�C��Z���)_ǟ�	ԑ�&�֡��A�XTO���_� ڼ�:���%��P���Cֲ�Y�+_�ܛ��}U�M��ƫC�!KJ�7пG��=B�
[ 5264.742358][ T9023] [U] ٽ�F�%�XA��L�2R*G��VW��$��J	�A��F����+ؾ9̈́VI�֗�Kپ�1}_��
��%�R6��(]��/��ؐřYܺ��Hä���R G��RN/ܫ�#!�D����%���D��-{�$�VU��T���$:MTR�E�C1V�D~��];[�����SQ����(��E,X�8�"�
��G�D�ڵ2@T8���҃����T8.RC+�@�ʦ�P�U�
P����C���'ńYL�-SS1E?�7�O���^]����C�½H]�JKR]RKQ܆��ݣ޴OTC��X���4�N�	��&����ڋ��@�:M7�~�+�W*���XM��>>��{Q���
_�՝LX8�U����{�Z��ؐ)��7?�RR;�C�R�Hײڣ����1�>)�Mă‰�T���(��Aϝ�}9�ڥ�J*Mќ�ġ�'L��Q	�DW��ظ=��|Q�	�Æ�W;5��Ž�!�DB�X`ɧ�/��E�`ƦM��X��"�\
[ 5264.860794][ T9023] [U] {;�ե�٘_�O2��)�O��.2�W2ʲ��Y���X_  HPϱ�S�D����:]�{�����Ƚ
[ 5264.940070][ T9023] [U] I,�>�Ӥ	��5�1��^1�N4�OǶ�'0�?֒I�9W.�_.�W�A���V��`)�Z���C6GIӹ�A��XL[����F�*��O�W)+��'\N�
[K@����2�Ǭ���P"^`���	ؿ
[ 5264.946069][ T9023] [U] 22��Ʃ�۩X?0;3U�
[ 5265.044206][ T9023] [U] ޜ�
ƍ�SOBX�8�W�4��(�~/���K�U��ԖOQ�E+�G�-Y�GY_
�>V�����3.H�ә]̈́�2��)�D�,	��	�D~�D���+�W;A\�F
P��Ș|$��)�
KؐI���ɿK�YT^R���Ǚ���A=�#�ܜ	�Ϳ�AE��T�1��ݯ4K�.E"R�S|П�S���:��>P��R�"Z�ڭ���#P!�KY"�}��F�N84ܳ��Hޱ�O��S��̫%DLW�MƲ�
[ 5265.121809][ T9023] [U] [�['XN�'�����,MR��/����1D=!D�X91B�
WǻR�LF���K̤Z��#�`̑L؛�˜��B~�M���
[ 5265.209393][ T9023] [U] �L�>�сD+�D�����"5�ʍ�H3<���IR=F^�F�N��������V���D�OIO�:U�>�Y�
[ 5265.237725][ T9023] [U] 'B�6V�20�ķǞ��׌�"T8�{9�FW��]���̩�
[ 5265.308572][ T9023] [U] �72މ���U�C6����τI]8C��TۨQSK�Y��I��¹ �|V'�TV/��G�$[� 9KH`�"ܑ��}��[^=��0�]��%�̂T�����F�_V�4C���
[ 5265.314083][ T9023] [U] �EC�
[ 5265.439227][ T9023] [U] ���|���<��:^�3$7NK~�-�@��?��/MTL��۾�I�WȬ@G~T�{��P�+�$�JP|���I�RIӍPM� ��Y� ڔ8�T���V�����,�L�,�
[ 5265.953558][ T9022] [U] �K�����)0���~ܳʪ�IP'�F�ҜZ��R���@B�]�5��{��ʼ�'�8�ƥF��UTQUD
ǩ�K;7ͪ0C[��Y���YC���ذM��L�8�T�͚�5���RX����W� X���OQHVI'8����L�
[ 5294.891094][ T9062] sch_tbf: burst 5729 is lower than device lo mtu (65550) !
[ 5335.224367][ T9110] pim6reg9: entered allmulticast mode
[ 5347.098903][ T9125] binder: 9124:9125 ioctl c018620c 200000000100 returned -1
[ 5357.337375][ T9137] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2047'.
[ 5357.338632][ T9137] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2047'.
[ 5357.342270][ T9137] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2047'.
[ 5357.343202][ T9137] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2047'.
[ 5393.289052][ T9177] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2064'.
[ 5401.882714][ T9187] (unnamed net_device) (uninitialized): (slave bond_slave_1): Device is not our slave
[ 5401.902780][ T9187] (unnamed net_device) (uninitialized): option active_slave: invalid value (bond_slave_1)
[ 5411.454804][ T9198] netlink: 164 bytes leftover after parsing attributes in process `syz.1.2074'.
[ 5453.437080][   T34] audit: type=1326 audit(5452.500:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9231 comm="syz.1.2091" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x0
[ 5458.283829][ T9239] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2093'.
[ 5458.798485][ T9240] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2094'.
[ 5463.579721][ T9244] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2095'.
[ 5463.582037][ T9244] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2095'.
[ 5510.372488][ T9280] bond0: entered promiscuous mode
[ 5510.373860][ T9280] bond_slave_0: entered promiscuous mode
[ 5510.399447][ T9280] bond_slave_1: entered promiscuous mode
[ 5510.604436][ T9280] batadv_slave_0: entered promiscuous mode
[ 5510.689568][ T9280] hsr1: entered promiscuous mode
[ 5579.503638][   T34] audit: type=1326 audit(5578.580:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9324 comm="syz.1.2129" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 5579.535676][   T34] audit: type=1326 audit(5578.580:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9324 comm="syz.1.2129" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 5579.989912][   T34] audit: type=1326 audit(5579.060:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9324 comm="syz.1.2129" exe="/syz-executor" sig=0 arch=c00000f3 syscall=280 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 5580.079671][   T34] audit: type=1326 audit(5579.150:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9324 comm="syz.1.2129" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 5580.124307][   T34] audit: type=1326 audit(5579.190:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9324 comm="syz.1.2129" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 5580.593709][   T34] audit: type=1326 audit(5579.670:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9324 comm="syz.1.2129" exe="/syz-executor" sig=0 arch=c00000f3 syscall=280 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 5580.688557][   T34] audit: type=1326 audit(5579.710:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9324 comm="syz.1.2129" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 5580.691188][   T34] audit: type=1326 audit(5579.770:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9324 comm="syz.1.2129" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 5580.870505][   T34] audit: type=1326 audit(5579.940:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9324 comm="syz.1.2129" exe="/syz-executor" sig=0 arch=c00000f3 syscall=277 compat=0 ip=0xdbd46 code=0x7ffc0000
[ 5580.993043][   T34] audit: type=1326 audit(5580.050:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9324 comm="syz.1.2129" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x0
[ 5612.410271][ T9344] A link change request failed with some changes committed already. Interface bond_slave_0 may have been left with an inconsistent configuration, please check.
[ 5633.494377][ T9351] netlink: 2 bytes leftover after parsing attributes in process `syz.2.2142'.
[ 5696.543612][ T9388] netlink: 'syz.1.2156': attribute type 4 has an invalid length.
[ 5737.681018][    C1] vkms_vblank_simulate: vblank timer overrun
[ 5738.601595][ T9416] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2167'.
[ 5770.451084][ T9433] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2174'.
[ 5807.791444][    C1] hrtimer: interrupt took 360700 ns
[ 5928.050981][   T34] audit: type=1326 audit(5927.020:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9505 comm="syz.2.2202" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x0
[ 5928.575330][   T34] audit: type=1326 audit(5927.600:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9505 comm="syz.2.2202" exe="/syz-executor" sig=31 arch=c00000f3 syscall=436 compat=0 ip=0xdbd46 code=0x0
[ 5947.170285][ T9514] netem: change failed
[ 6047.735362][ T9547] input: syz0 as /devices/virtual/input/input6
[ 6180.780010][ T9603] ip6gretap0: entered promiscuous mode
[ 6180.784438][ T9603] macsec3: entered promiscuous mode
[ 6180.865565][ T9603] macsec3: entered allmulticast mode
[ 6181.093651][ T9603] ip6gretap0: entered allmulticast mode
[ 6227.083847][ T9620] kernel read not supported for file /eth0 (pid: 9620 comm: syz.2.2241)
[ 6227.271121][   T34] audit: type=1800 audit(6226.200:42): pid=9620 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2241" name="eth0" dev="mqueue" ino=19966 res=0 errno=0
[ 6293.011671][ T9637] block device autoloading is deprecated and will be removed.
[ 6343.272244][ T9667] Dead loop on virtual device ip6_vti0, fix it urgently!
[ 6397.323072][    C1] vkms_vblank_simulate: vblank timer overrun
[ 6399.321797][ T9686] binder: 9685:9686 ioctl c00c620f 2000000003c0 returned -22
[ 6431.935216][    C1] vkms_vblank_simulate: vblank timer overrun
[ 6436.828546][ T9696] netlink: 'syz.1.2266': attribute type 1 has an invalid length.
[ 6436.831681][ T9696] netlink: 'syz.1.2266': attribute type 2 has an invalid length.
[ 6454.303706][ T9701] binder: 9699:9701 ioctl c00c620f 200000000340 returned -22
[ 6471.198632][    C1] vkms_vblank_simulate: vblank timer overrun
[ 6496.605662][ T9719] tap0: tun_chr_ioctl cmd 1074025675
[ 6496.649617][ T9719] tap0: persist disabled
[ 6563.726727][    C1] vkms_vblank_simulate: vblank timer overrun
[ 6570.982908][ T9746] veth0_to_team: entered promiscuous mode
[ 6571.153821][ T9746] veth0_to_team: entered allmulticast mode
[ 6579.475583][    C1] vkms_vblank_simulate: vblank timer overrun
[ 6614.705179][ T9771] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2291'.
[ 6627.704869][ T9777] netlink: 'syz.2.2293': attribute type 10 has an invalid length.
[ 6627.812794][ T9777] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2293'.
[ 6629.922569][ T9777] A link change request failed with some changes committed already. Interface netdevsim3 may have been left with an inconsistent configuration, please check.
[ 6697.011088][ T9809] veth0_to_bond: default FDB implementation only supports local addresses
[ 6761.971407][    C1] vkms_vblank_simulate: vblank timer overrun
[ 6773.885010][    C1] vkms_vblank_simulate: vblank timer overrun
[ 6825.090572][ T9858] dlm: plock device version mismatch: kernel (1.2.0), user (1.2105376.0)
[ 6873.351451][    C1] vkms_vblank_simulate: vblank timer overrun
[ 6909.702615][ T9914] netlink: 'syz.1.2338': attribute type 14 has an invalid length.
[ 6921.753305][ T9922] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 6921.841060][ T9922] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 6953.875806][ T9934] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2345'.
[ 6980.380623][ T9946] random: crng reseeded on system resumption
[ 7013.637393][ T9959] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2355'.
[ 7019.347522][    C1] vkms_vblank_simulate: vblank timer overrun
[ 7026.308048][   T34] audit: type=1326 audit(7281.378:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9967 comm="syz.1.2359" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x0
[ 7040.382857][    C1] vkms_vblank_simulate: vblank timer overrun
[ 7278.735032][T10079] netlink: 76 bytes leftover after parsing attributes in process `syz.2.2398'.
[ 7278.743659][T10079] netlink: 76 bytes leftover after parsing attributes in process `syz.2.2398'.
[ 7339.512904][    C1] vkms_vblank_simulate: vblank timer overrun
[ 7341.221335][T10101] netlink: 'syz.1.2408': attribute type 3 has an invalid length.
[ 7341.342372][T10101] netlink: 'syz.1.2408': attribute type 3 has an invalid length.
[ 7346.910485][    C1] vkms_vblank_simulate: vblank timer overrun
[ 7347.554630][    C1] vkms_vblank_simulate: vblank timer overrun
[ 7363.614195][    C1] vkms_vblank_simulate: vblank timer overrun
[ 7456.994727][T10154] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 7457.044155][T10154] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 7465.387428][    C1] vkms_vblank_simulate: vblank timer overrun
[ 7520.182541][    C1] vkms_vblank_simulate: vblank timer overrun
[ 7526.031444][    C1] vkms_vblank_simulate: vblank timer overrun
[ 7556.955944][T10201] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2447'.
[ 7574.587425][T10211] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[ 7576.592389][T10211] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[ 7600.443298][    C1] vkms_vblank_simulate: vblank timer overrun
[ 7633.602779][T10242] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2463'.
[ 7644.114663][T10246] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2466'.
[ 7745.255708][T10303] C: renamed from batadv_slave_0 (while UP)
[ 7745.873843][T10303] netlink: 'syz.2.2485': attribute type 8 has an invalid length.
[ 7745.911977][T10303] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[ 7820.379810][    C1] vkms_vblank_simulate: vblank timer overrun
[ 7820.414620][    C1] vkms_vblank_simulate: vblank timer overrun
[ 7831.379182][T10339] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2500'.
[ 7831.382068][T10339] bond_slave_0: entered allmulticast mode
[ 7839.711399][    C1] vkms_vblank_simulate: vblank timer overrun
[ 7894.254860][    C1] vkms_vblank_simulate: vblank timer overrun
[ 7909.339933][T10374] netlink: 'syz.2.2513': attribute type 1 has an invalid length.
[ 7909.342426][T10374] netlink: 'syz.2.2513': attribute type 2 has an invalid length.
[ 7919.313780][T10381] vcan0: tx drop: invalid da for name 0x0000000000000002
[ 7926.375886][T10383] input: syz0 as /devices/virtual/input/input8
[ 7944.784176][T10395] macvlan2: entered allmulticast mode
[ 8092.246917][    C1] vkms_vblank_simulate: vblank timer overrun
[ 8115.835431][T10269] hid-generic 0003:0004:0000.0006: unknown main item tag 0x0
[ 8115.880046][T10269] hid-generic 0003:0004:0000.0006: unknown main item tag 0x0
[ 8115.881908][T10269] hid-generic 0003:0004:0000.0006: unknown main item tag 0x0
[ 8115.883472][T10269] hid-generic 0003:0004:0000.0006: unknown main item tag 0x0
[ 8115.885001][T10269] hid-generic 0003:0004:0000.0006: unknown main item tag 0x0
[ 8115.920002][T10269] hid-generic 0003:0004:0000.0006: unknown main item tag 0x0
[ 8115.921922][T10269] hid-generic 0003:0004:0000.0006: unknown main item tag 0x0
[ 8115.923494][T10269] hid-generic 0003:0004:0000.0006: unknown main item tag 0x0
[ 8115.925071][T10269] hid-generic 0003:0004:0000.0006: unknown main item tag 0x0
[ 8115.987735][T10269] hid-generic 0003:0004:0000.0006: unknown main item tag 0x0
[ 8116.323935][T10269] hid-generic 0003:0004:0000.0006: hidraw0: USB HID v0.00 Device [syz0] on syz1
[ 8208.490904][    C1] vkms_vblank_simulate: vblank timer overrun
[ 8212.337311][    C1] vkms_vblank_simulate: vblank timer overrun
[ 8213.974925][    C1] vkms_vblank_simulate: vblank timer overrun
[ 8223.621505][T10532] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2569'.
[ 8224.173866][T10532] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2569'.
[ 8247.152514][    C1] vkms_vblank_simulate: vblank timer overrun
[ 8277.483089][    C1] vkms_vblank_simulate: vblank timer overrun
[ 8342.471152][T10590] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2591'.
[ 8351.706860][T10596] sch_fq: defrate 0 ignored.
[ 8417.322557][T10625] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2605'.
[ 8448.913805][T10639] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2612'.
[ 8452.558620][    C1] vkms_vblank_simulate: vblank timer overrun
[ 8549.822678][T10683] misc userio: Can't change port type on an already running userio instance
[ 8551.091299][T10170] atkbd serio1: keyboard reset failed on 
[ 8563.834346][    C1] vkms_vblank_simulate: vblank timer overrun
[ 8563.894406][    C1] vkms_vblank_simulate: vblank timer overrun
[ 8588.112150][T10705] (unnamed net_device) (uninitialized): ARP target 1.0.0.0 is already present
[ 8588.114495][T10705] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (1)
[ 8612.330454][    C1] vkms_vblank_simulate: vblank timer overrun
[ 8616.411504][T10722] batadv_slave_1: entered promiscuous mode
[ 8616.842086][T10721] batadv_slave_1: left promiscuous mode
[ 8632.231267][T10731] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2650'.
[ 8790.149421][   T34] audit: type=1326 audit(9045.198:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10808 comm="syz.1.2684" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x0
[ 8857.658177][T10843] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2697'.
[ 9021.406612][    C1] vkms_vblank_simulate: vblank timer overrun
[ 9049.625731][T10942] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2736'.
[ 9135.680759][    C1] vkms_vblank_simulate: vblank timer overrun
[ 9198.878801][T11008] syz.2.2759 (11008): drop_caches: 4
[ 9256.672601][T11030] random: crng reseeded on system resumption
[ 9261.675819][T11030] Restarting kernel threads ...
[ 9261.778344][T11030] Done restarting kernel threads.
[ 9508.170456][    C1] vkms_vblank_simulate: vblank timer overrun
[ 9553.415228][T11143] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2812'.
[ 9553.500359][T11143] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2812'.
[ 9554.447525][T11143] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2812'.
[ 9554.449618][T11143] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2812'.
[ 9597.099415][T11160] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 9597.159262][T11160] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 9650.562556][    C1] vkms_vblank_simulate: vblank timer overrun
[ 9662.911816][    C1] vkms_vblank_simulate: vblank timer overrun
[ 9684.021549][T11196] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.2829'.
[ 9715.011230][    C1] vkms_vblank_simulate: vblank timer overrun
[ 9760.183437][T11223] block nbd1: server does not support multiple connections per device.
[ 9760.339581][T11223] block nbd1: shutting down sockets
[ 9766.200868][    C1] vkms_vblank_simulate: vblank timer overrun
[ 9768.902425][T11232] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2840'.
[ 9779.364840][T11237] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2843'.
[ 9779.464870][T11237] A link change request failed with some changes committed already. Interface macvlan0 may have been left with an inconsistent configuration, please check.
[ 9792.138015][T11242] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 9792.280525][T11242] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 9819.178342][T11254] sch_tbf: burst 0 is lower than device ip6tnl0 mtu (1452) !
[ 9852.669581][T11267] vlan5: entered promiscuous mode
[ 9852.671321][T11267] bond0: entered promiscuous mode
[ 9852.672585][T11267] bond_slave_0: entered promiscuous mode
[ 9852.719756][T11267] bond_slave_1: entered promiscuous mode
[ 9893.655186][    C1] vkms_vblank_simulate: vblank timer overrun
[ 9944.142315][T11315] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2871'.
[ 9961.780858][T11327] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2877'.
[ 9961.782716][T11327] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2877'.
[10046.174895][    C1] vkms_vblank_simulate: vblank timer overrun
[10052.695788][T11365] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2894'.
[10053.245253][T11365] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2894'.
[10061.101800][   T34] audit: type=1326 audit(10316.178:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11368 comm="syz.2.2896" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x0
[10075.759980][T11376] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2899'.
[10075.762148][T11376] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2899'.
[10075.763787][T11376] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2899'.
[10075.765350][T11376] netlink: 2 bytes leftover after parsing attributes in process `syz.1.2899'.
[10075.860820][T11376] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2899'.
[10078.493182][T11378] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[10079.081341][T11378] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[10135.014050][T11406] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2908'.
[10135.085208][T11406] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2908'.
[10151.231348][T11417] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2912'.
[10183.270427][T11434] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2919'.
[10322.172160][T11514] veth0_to_bridge: entered promiscuous mode
[10322.363747][T11512] veth0_to_bridge: left promiscuous mode
[10369.805449][T11535] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2959'.
[10373.721492][T11537] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2960'.
[10373.769130][T11537] bond0: Device is already in use.
[10480.175014][T11588] iommufd_mock iommufd_mock0: Adding to iommu group 0
[10497.491179][    C1] vkms_vblank_simulate: vblank timer overrun
[10525.454153][T11612] loop1: detected capacity change from 0 to 7
[10525.640793][    C1] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[10525.644637][    C1] Buffer I/O error on dev loop1, logical block 0, async page read
[10525.685472][    C1] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[10525.687744][    C1] Buffer I/O error on dev loop1, logical block 0, async page read
[10525.691125][T11612]  loop1: unable to read partition table
[10525.744141][T11612] loop_reread_partitions: partition scan of loop1 (���������C�j̖�P=ý?�}X���	���%��`��ր���{��֐�ȵ4FLQk݊) failed (rc=-5)
[10527.082804][    C0] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[10527.084879][    C0] Buffer I/O error on dev loop1, logical block 0, async page read
[10527.165896][    C1] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[10527.168923][    C1] Buffer I/O error on dev loop1, logical block 0, async page read
[10527.175657][T11612]  loop1: unable to read partition table
[10542.760134][T11623] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[10542.831405][T11623] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[10628.143738][T11668] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[10628.212482][T11668] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[10670.951284][    C1] vkms_vblank_simulate: vblank timer overrun
[10732.094656][   T34] audit: type=1326 audit(10987.168:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11729 comm="syz.2.3032" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdbd46 code=0x0
[10780.070909][T11762] loop1: detected capacity change from 0 to 7
[10780.115500][    C1] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[10780.118743][    C1] Buffer I/O error on dev loop1, logical block 0, async page read
[10780.136918][    C1] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[10780.138247][    C1] Buffer I/O error on dev loop1, logical block 0, async page read
[10780.142716][T11762]  loop1: unable to read partition table
[10780.163833][T11762] loop_reread_partitions: partition scan of loop1 (���������C�j̖�P=ý?�}X���	���%��`��ր���{��֐�ȵ4FLQk݊) failed (rc=-5)
[10780.528754][    C1] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[10780.530388][    C1] Buffer I/O error on dev loop1, logical block 0, async page read
[10780.548688][    C1] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[10780.550129][    C1] Buffer I/O error on dev loop1, logical block 0, async page read
[10780.552098][T11762]  loop1: unable to read partition table
[10845.808997][    C1] vkms_vblank_simulate: vblank timer overrun
[10853.418952][    C1] vkms_vblank_simulate: vblank timer overrun
[10982.110484][    C1] vkms_vblank_simulate: vblank timer overrun
[11005.542478][    C1] vkms_vblank_simulate: vblank timer overrun
[11023.095522][T11898] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3093'.
[11030.501277][T11906] ==================================================================
[11030.503447][T11906] BUG: KASAN: slab-use-after-free in xfrm_state_find+0x8178/0x8c34
[11030.505824][T11906] Read of size 1 at addr ffffaf801f1fa0f0 by task syz.2.3094/11906
[11030.507214][T11906] 
[11030.510522][T11906] CPU: 1 UID: 0 PID: 11906 Comm: syz.2.3094 Not tainted syzkaller #0 PREEMPT 
[11030.511156][T11906] Hardware name: riscv-virtio,qemu (DT)
[11030.511731][T11906] Call Trace:
[11030.512127][T11906] [<ffffffff8007a46c>] dump_backtrace+0x2e/0x3c
[11030.512802][T11906] [<ffffffff8000329a>] show_stack+0x30/0x3c
[11030.513252][T11906] [<ffffffff800615ba>] dump_stack_lvl+0x12e/0x1a6
[11030.513898][T11906] [<ffffffff8000ee40>] print_report+0x28e/0x5a2
[11030.514489][T11906] [<ffffffff80b245c6>] kasan_report+0xf0/0x214
[11030.515020][T11906] [<ffffffff80b26610>] __asan_report_load1_noabort+0x12/0x1a
[11030.515644][T11906] [<ffffffff85beaf6c>] xfrm_state_find+0x8178/0x8c34
[11030.516313][T11906] [<ffffffff85bac5f8>] xfrm_tmpl_resolve_one+0x25c/0xb4e
[11030.516913][T11906] [<ffffffff85bad0bc>] xfrm_tmpl_resolve+0x1d2/0x3a8
[11030.517610][T11906] [<ffffffff85baf4f4>] xfrm_resolve_and_create_bundle+0x112/0x588
[11030.518397][T11906] [<ffffffff85bbe472>] xfrm_lookup_with_ifid+0x478/0x20b2
[11030.519006][T11906] [<ffffffff85bc00e0>] xfrm_lookup+0x34/0x46
[11030.519603][T11906] [<ffffffff85d5c036>] icmpv6_echo_reply+0xbda/0x1e4e
[11030.520123][T11906] [<ffffffff85d5f1c4>] icmpv6_rcv+0x1656/0x1e06
[11030.520619][T11906] [<ffffffff85c8f7f4>] ip6_protocol_deliver_rcu+0x18a/0x1976
[11030.521208][T11906] [<ffffffff85c9119a>] ip6_input_finish+0x1ba/0x5ce
[11030.521751][T11906] [<ffffffff85c91716>] ip6_input+0x168/0x70a
[11030.522310][T11906] [<ffffffff85c8f16e>] ipv6_rcv+0x5ac/0x6de
[11030.522822][T11906] [<ffffffff851f9a54>] __netif_receive_skb_one_core+0x106/0x16e
[11030.523424][T11906] [<ffffffff851f9cd4>] __netif_receive_skb+0x2c/0x144
[11030.523979][T11906] [<ffffffff851f9f96>] netif_receive_skb+0x1aa/0xbf2
[11030.524543][T11906] [<ffffffff833b566c>] tun_rx_batched.isra.0+0x430/0x686
[11030.525096][T11906] [<ffffffff833cf824>] tun_get_user+0x29b0/0x3ee0
[11030.525635][T11906] [<ffffffff833d2de0>] tun_chr_write_iter+0xc4/0x254
[11030.526227][T11906] [<ffffffff80c1f728>] vfs_write+0x766/0xc8c
[11030.526650][T11906] [<ffffffff80c20030>] ksys_write+0x126/0x228
[11030.527080][T11906] [<ffffffff80c201a0>] __riscv_sys_write+0x6e/0x94
[11030.527705][T11906] [<ffffffff80078130>] syscall_handler+0x94/0x118
[11030.528252][T11906] [<ffffffff8643db9a>] do_trap_ecall_u+0x396/0x530
[11030.528814][T11906] [<ffffffff864674be>] handle_exception+0x146/0x152
[11030.529805][T11906] 
[11030.552196][T11906] Allocated by task 10625:
[11030.553350][T11906]  stack_trace_save+0xa0/0xd2
[11030.554985][T11906]  kasan_save_stack+0x3e/0x6a
[11030.556086][T11906]  kasan_save_track+0x16/0x28
[11030.557188][T11906]  kasan_save_alloc_info+0x30/0x3e
[11030.558448][T11906]  __kasan_slab_alloc+0x7c/0x82
[11030.559601][T11906]  kmem_cache_alloc_noprof+0x104/0x3bc
[11030.560882][T11906]  xfrm_state_alloc+0x2e/0x4ca
[11030.562092][T11906]  __find_acq_core+0xdd2/0x29d2
[11030.563332][T11906]  xfrm_find_acq+0x64/0x8c
[11030.564756][T11906]  xfrm_alloc_userspi+0x5b0/0xc10
[11030.566667][T11906]  xfrm_user_rcv_msg+0x40c/0x9be
[11030.567829][T11906]  netlink_rcv_skb+0x206/0x3be
[11030.568967][T11906]  xfrm_netlink_rcv+0x7c/0xa6
[11030.569607][T11906]  netlink_unicast+0x544/0x88a
[11030.570172][T11906]  netlink_sendmsg+0x860/0xdd8
[11030.570695][T11906]  __sock_sendmsg+0xcc/0x160
[11030.572884][T11906]  ____sys_sendmsg+0x63e/0x79c
[11030.573935][T11906]  ___sys_sendmsg+0x144/0x1e6
[11030.575067][T11906]  __sys_sendmsg+0x188/0x246
[11030.576313][T11906]  __riscv_sys_sendmsg+0x70/0xa2
[11030.577492][T11906]  syscall_handler+0x94/0x118
[11030.578558][T11906]  do_trap_ecall_u+0x396/0x530
[11030.579611][T11906]  handle_exception+0x146/0x152
[11030.580753][T11906] 
[11030.581321][T11906] Freed by task 10552:
[11030.582067][T11906]  stack_trace_save+0xa0/0xd2
[11030.583158][T11906]  kasan_save_stack+0x3e/0x6a
[11030.584163][T11906]  kasan_save_track+0x16/0x28
[11030.585145][T11906]  kasan_save_free_info+0x40/0x5a
[11030.586504][T11906]  __kasan_slab_free+0x4a/0x62
[11030.587567][T11906]  kmem_cache_free+0x230/0x4d4
[11030.588735][T11906]  xfrm_state_gc_task+0x4b2/0x6ec
[11030.590032][T11906]  process_one_work+0x96a/0x1f32
[11030.591125][T11906]  worker_thread+0x5ce/0xde8
[11030.592152][T11906]  kthread+0x39c/0x7d4
[11030.593111][T11906]  ret_from_fork_kernel+0x2a/0xbb4
[11030.594139][T11906]  ret_from_fork_kernel_asm+0x16/0x18
[11030.595262][T11906] 
[11030.595896][T11906] The buggy address belongs to the object at ffffaf801f1f9dc0
[11030.595896][T11906]  which belongs to the cache xfrm_state of size 928
[11030.597404][T11906] The buggy address is located 816 bytes inside of
[11030.597404][T11906]  freed 928-byte region [ffffaf801f1f9dc0, ffffaf801f1fa160)
[11030.598866][T11906] 
[11030.599571][T11906] The buggy address belongs to the physical page:
[11030.601819][T11906] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffaf801f1f9dc0 pfn:0x9f1f8
[11030.605940][T11906] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[11030.609146][T11906] flags: 0xffe000000000040(head|node=0|zone=0|lastcpupid=0x7ff)
[11030.613695][T11906] page_type: f5(slab)
[11030.616340][T11906] raw: 0ffe000000000040 ffffaf8012f5e640 dead000000000122 0000000000000000
[11030.619210][T11906] raw: ffffaf801f1f9dc0 00000000800f0007 00000000f5000000 0000000000000000
[11030.622114][T11906] head: 0ffe000000000040 ffffaf8012f5e640 dead000000000122 0000000000000000
[11030.624700][T11906] head: ffffaf801f1f9dc0 00000000800f0007 00000000f5000000 0000000000000000
[11030.627935][T11906] head: 0ffe000000000002 ffff8d80007c7e01 00000000ffffffff 00000000ffffffff
[11030.629960][T11906] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[11030.632723][T11906] page dumped because: kasan: bad access detected
[11030.635316][T11906] page_owner tracks the page as allocated
[11030.637889][T11906] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 4553, tgid 4552 (syz.0.286), ts 1204803836100, free_ts 1197924419000
[11030.642924][T11906]  __set_page_owner+0x94/0x4a8
[11030.645236][T11906]  post_alloc_hook+0xdc/0x1ba
[11030.647833][T11906]  get_page_from_freelist+0x7fa/0x359a
[11030.650120][T11906]  __alloc_frozen_pages_noprof+0x22e/0x2120
[11030.652259][T11906]  alloc_pages_mpol+0x1fa/0x5bc
[11030.654137][T11906]  alloc_frozen_pages_noprof+0x174/0x2f0
[11030.656228][T11906]  new_slab+0x27c/0x37e
[11030.658115][T11906]  ___slab_alloc+0xb54/0x112a
[11030.659977][T11906]  __slab_alloc.constprop.0+0x60/0xb0
[11030.662078][T11906]  kmem_cache_alloc_noprof+0xd0/0x3bc
[11030.664074][T11906]  xfrm_state_alloc+0x2e/0x4ca
[11030.666037][T11906]  __find_acq_core+0xdd2/0x29d2
[11030.668995][T11906]  xfrm_find_acq+0x64/0x8c
[11030.670855][T11906]  pfkey_getspi+0xac6/0x103e
[11030.672713][T11906]  pfkey_process+0x674/0x802
[11030.674407][T11906]  pfkey_sendmsg+0x3ee/0x726
[11030.676544][T11906] page last free pid 3194 tgid 3194 stack trace:
[11030.678403][T11906]  __reset_page_owner+0x78/0x1ba
[11030.680098][T11906]  __free_frozen_pages+0x836/0x145e
[11030.680925][T11906]  free_frozen_pages+0xe/0x16
[11030.681857][T11906]  __free_slab+0xc0/0x18a
[11030.682842][T11906]  free_slab+0x3a/0x1b0
[11030.683752][T11906]  discard_slab+0x42/0x5e
[11030.684700][T11906]  __slab_free+0x29a/0x2d2
[11030.685653][T11906]  ___cache_free+0x1a4/0x1de
[11030.686718][T11906]  qlist_free_all+0x76/0x168
[11030.687696][T11906]  kasan_quarantine_reduce+0x158/0x1ba
[11030.688831][T11906]  __kasan_slab_alloc+0x5c/0x82
[11030.689741][T11906]  kmem_cache_alloc_noprof+0x104/0x3bc
[11030.690832][T11906]  vm_area_dup+0x34/0x664
[11030.691682][T11906]  dup_mmap+0x7d8/0x1fb8
[11030.692523][T11906]  copy_process+0x6efc/0x72ce
[11030.693418][T11906]  kernel_clone+0x128/0xd9e
[11030.694462][T11906] 
[11030.694930][T11906] Memory state around the buggy address:
[11030.695979][T11906]  ffffaf801f1f9f80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[11030.696919][T11906]  ffffaf801f1fa000: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[11030.697777][T11906] >ffffaf801f1fa080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[11030.698936][T11906]                                                              ^
[11030.699862][T11906]  ffffaf801f1fa100: fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[11030.700714][T11906]  ffffaf801f1fa180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[11030.701633][T11906] ==================================================================
[11030.703415][    C1] vkms_vblank_simulate: vblank timer overrun
[11030.704935][T11906] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[11030.706645][T11906] CPU: 1 UID: 0 PID: 11906 Comm: syz.2.3094 Not tainted syzkaller #0 PREEMPT 
[11030.707711][T11906] Hardware name: riscv-virtio,qemu (DT)
[11030.708410][T11906] Call Trace:
[11030.708942][T11906] [<ffffffff8007a46c>] dump_backtrace+0x2e/0x3c
[11030.709884][T11906] [<ffffffff8000329a>] show_stack+0x30/0x3c
[11030.710774][T11906] [<ffffffff8006159c>] dump_stack_lvl+0x110/0x1a6
[11030.711809][T11906] [<ffffffff8006164e>] dump_stack+0x1c/0x24
[11030.712897][T11906] [<ffffffff80003ba6>] vpanic+0x368/0x74e
[11030.713708][T11906] [<ffffffff8000402c>] trace_suspend_resume+0x0/0x2de
[11030.714635][T11906] [<ffffffff8014c87c>] check_panic_on_warn+0xc0/0xe4
[11030.715469][T11906] [<ffffffff8000eb52>] end_report.part.0+0x4e/0xae
[11030.716690][T11906] [<ffffffff80b24610>] kasan_report+0x13a/0x214
[11030.717571][T11906] [<ffffffff80b26610>] __asan_report_load1_noabort+0x12/0x1a
[11030.718610][T11906] [<ffffffff85beaf6c>] xfrm_state_find+0x8178/0x8c34
[11030.719589][T11906] [<ffffffff85bac5f8>] xfrm_tmpl_resolve_one+0x25c/0xb4e
[11030.720533][T11906] [<ffffffff85bad0bc>] xfrm_tmpl_resolve+0x1d2/0x3a8
[11030.721596][T11906] [<ffffffff85baf4f4>] xfrm_resolve_and_create_bundle+0x112/0x588
[11030.722676][T11906] [<ffffffff85bbe472>] xfrm_lookup_with_ifid+0x478/0x20b2
[11030.723692][T11906] [<ffffffff85bc00e0>] xfrm_lookup+0x34/0x46
[11030.724582][T11906] [<ffffffff85d5c036>] icmpv6_echo_reply+0xbda/0x1e4e
[11030.725440][T11906] [<ffffffff85d5f1c4>] icmpv6_rcv+0x1656/0x1e06
[11030.726673][T11906] [<ffffffff85c8f7f4>] ip6_protocol_deliver_rcu+0x18a/0x1976
[11030.727672][T11906] [<ffffffff85c9119a>] ip6_input_finish+0x1ba/0x5ce
[11030.728965][T11906] [<ffffffff85c91716>] ip6_input+0x168/0x70a
[11030.729851][T11906] [<ffffffff85c8f16e>] ipv6_rcv+0x5ac/0x6de
[11030.730760][T11906] [<ffffffff851f9a54>] __netif_receive_skb_one_core+0x106/0x16e
[11030.731748][T11906] [<ffffffff851f9cd4>] __netif_receive_skb+0x2c/0x144
[11030.732737][T11906] [<ffffffff851f9f96>] netif_receive_skb+0x1aa/0xbf2
[11030.733690][T11906] [<ffffffff833b566c>] tun_rx_batched.isra.0+0x430/0x686
[11030.734627][T11906] [<ffffffff833cf824>] tun_get_user+0x29b0/0x3ee0
[11030.735495][T11906] [<ffffffff833d2de0>] tun_chr_write_iter+0xc4/0x254
[11030.736906][T11906] [<ffffffff80c1f728>] vfs_write+0x766/0xc8c
[11030.737706][T11906] [<ffffffff80c20030>] ksys_write+0x126/0x228
[11030.738566][T11906] [<ffffffff80c201a0>] __riscv_sys_write+0x6e/0x94
[11030.739387][T11906] [<ffffffff80078130>] syscall_handler+0x94/0x118
[11030.740259][T11906] [<ffffffff8643db9a>] do_trap_ecall_u+0x396/0x530
[11030.741120][T11906] [<ffffffff864674be>] handle_exception+0x146/0x152
[11030.742344][T11906] SMP: stopping secondary CPUs
[11030.744607][T11906] Rebooting in 86400 seconds..

VM DIAGNOSIS:
22:42:04  Registers:
info registers vcpu 0

CPU#0
 V      =   0
 pc       ffffffff80378008
 mhartid  0000000000000000
 mstatus  0000000a000001a2
 hstatus  0000000200000000
 vsstatus 0000000a00000000
 mip      0000000000000000
 mie      000000000000022a
 mideleg  0000000000001666
 hideleg  0000000000000444
 medeleg  0000000000f0b509
 hedeleg  000000000000b10d
 mtvec    00000000800004f0
 stvec    ffffffff86467378
 vstvec   0000000000000000
 mepc     ffffffff80090a2a
 sepc     ffffffff8644c076
 vsepc    0000000000000000
 mcause   0000000000000009
 scause   8000000000000009
 vscause  0000000000000000
 mtval    0000000000000000
 stval    0000000000000000
 htval    0000000000000000
 mtval2   0000000000000000
 mscratch 000000008004a000
 sscratch 0000000000000000
 satp     90134000000afea9
 x0/zero  0000000000000000 x1/ra    ffffffff85853fa8 x2/sp    ffff8f8000007030 x3/gp    ffffffff89ea12a0
 x4/tp    ffffaf801c151a40 x5/t0    ffffaf801ebbeb80 x6/t1    0000000000000001 x7/t2    0000000000000000
 x8/s0    ffff8f8000007080 x9/s1    ffffaf801ebbeb40 x10/a0   0000000000000001 x11/a1   0000000000000000
 x12/a2   0000000000f00000 x13/a3   ffffffff85854024 x14/a4   0000000000000000 x15/a5   ffffaf801c151a40
 x16/a6   0000000000f00000 x17/a7   ffffffff85853fc2 x18/s2   dfffffff00000000 x19/s3   ffffaf801ebbeb40
 x20/s4   0000000000000006 x21/s5   0000000000000100 x22/s6   fffff5ef03d77d75 x23/s7   ffffffffffffffff
 x24/s8   ffffffff91391d80 x25/s9   ffffaf801ebbeba8 x26/s10  ffff8f80000073e0 x27/s11  1ffff1f000000ddc
 x28/t3   f38912d900000000 x29/t4   0000000000001fff x30/t5   00000000000000c8 x31/t6   0000000000000002
 fcsr     0000000000000000
 f0/ft0   0000000000000000 f1/ft1   0000000000000000 f2/ft2   0000000000000000 f3/ft3   0000000000000000
 f4/ft4   0000000000000000 f5/ft5   0000000000000000 f6/ft6   0000000000000000 f7/ft7   0000000000000000
 f8/fs0   0000000000000000 f9/fs1   0000000000000000 f10/fa0  0000000000000000 f11/fa1  0000000000000000
 f12/fa2  0000000000000000 f13/fa3  0000000000000000 f14/fa4  0000000000000000 f15/fa5  0000000000000000
 f16/fa6  0000000000000000 f17/fa7  0000000000000000 f18/fs2  0000000000000000 f19/fs3  0000000000000000
 f20/fs4  0000000000000000 f21/fs5  0000000000000000 f22/fs6  0000000000000000 f23/fs7  0000000000000000
 f24/fs8  0000000000000000 f25/fs9  0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000
 f28/ft8  0000000000000000 f29/ft9  0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000
info registers vcpu 1

CPU#1
 V      =   0
 pc       ffffffff863a1282
 mhartid  0000000000000001
 mstatus  0000000a000000a0
 hstatus  0000000200000000
 vsstatus 0000000a00000000
 mip      0000000000000020
 mie      000000000000022a
 mideleg  0000000000001666
 hideleg  0000000000000444
 medeleg  0000000000f0b509
 hedeleg  000000000000b10d
 mtvec    00000000800004f0
 stvec    ffffffff86467378
 vstvec   0000000000000000
 mepc     ffffffff8176cae6
 sepc     ffffffff80503798
 vsepc    0000000000000000
 mcause   8000000000000003
 scause   8000000000000005
 vscause  0000000000000000
 mtval    0000000000000000
 stval    0000000000000000
 htval    0000000000000000
 mtval2   0000000000000000
 mscratch 0000000080048000
 sscratch 0000000000000000
 satp     90f88000000b06ea
 x0/zero  0000000000000000 x1/ra    ffffffff863a1282 x2/sp    ffff8f8003d16340 x3/gp    ffffffff89ea12a0
 x4/tp    ffffaf80136dcec0 x5/t0    ffff8f8003d15ff4 x6/t1    fffffffef13d557c x7/t2    7320666f20646165
 x8/s0    ffff8f8003d163c0 x9/s1    ffffffff87e53e58 x10/a0   ffffffff87e53e58 x11/a1   0000000000000000
 x12/a2   0000000000080000 x13/a3   ffffffff863a1282 x14/a4   ffff8f8005aa2fb8 x15/a5   0000000000029fb8
 x16/a6   0000000000000003 x17/a7   0000000000000003 x18/s2   ffffffff87e53e58 x19/s3   0000000000000001
 x20/s4   ffffaf8070fed7e0 x21/s5   000000009f1fa0f0 x22/s6   ffffffff88008e60 x23/s7   000000000000000a
 x24/s8   ffff8f8003d16780 x25/s9   ffffaf801da36000 x26/s10  ffffaf801da36400 x27/s11  000000000000000a
 x28/t3   1ffff1f0007a2b48 x29/t4   fffffffef13d557c x30/t5   fffffffef13d557d x31/t6   ffff8f8003d15dd8
 fcsr     0000000000000000
 f0/ft0   0000000000000000 f1/ft1   0000000000000000 f2/ft2   0000000000000000 f3/ft3   0000000000000000
 f4/ft4   0000000000000000 f5/ft5   0000000000000000 f6/ft6   0000000000000000 f7/ft7   0000000000000000
 f8/fs0   0000000000000000 f9/fs1   0000000000000000 f10/fa0  0000000000000000 f11/fa1  0000000000000000
 f12/fa2  0000000000000000 f13/fa3  0000000000000000 f14/fa4  0000000000000000 f15/fa5  0000000000000000
 f16/fa6  0000000000000000 f17/fa7  0000000000000000 f18/fs2  0000000000000000 f19/fs3  0000000000000000
 f20/fs4  0000000000000000 f21/fs5  0000000000000000 f22/fs6  0000000000000000 f23/fs7  0000000000000000
 f24/fs8  0000000000000000 f25/fs9  0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000
 f28/ft8  0000000000000000 f29/ft9  0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000