last executing test programs: 13.749544608s ago: executing program 4 (id=7430): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c04, 0x0) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0) sched_setaffinity(0x0, 0x0, 0x0) sched_setscheduler(0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) ptrace$ARCH_SHSTK_DISABLE(0x1e, 0x0, 0x0, 0x5002) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) rt_sigaction(0x0, &(0x7f0000000000)={&(0x7f0000000480)="f346d37ff2f2438395ff1f965a00c4c1185c840561ee0000c4e17a5bbc60aff00000c4816a512425160000006fea6dc463f962d60066660f38090dc65f0000a89e670f2a6cda00c412c1fd1129", 0x0, 0x0}, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_X86_SETUP_MCE(r3, 0x4140aecd, &(0x7f00000003c0)) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) 13.537211637s ago: executing program 1 (id=7432): r0 = socket$packet(0x11, 0x3, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000040)={'batadv0\x00', 0x0}) sendto$packet(r0, &(0x7f0000000000)="d041362e4c1bf63cf13a51220800", 0x63, 0x8814, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @remote}, 0x14) 13.334337904s ago: executing program 1 (id=7434): sched_setscheduler(0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) sendto$inet(0xffffffffffffffff, 0x0, 0x2, 0x200007e9, &(0x7f0000000000)={0x2, 0x24e23, @loopback}, 0x10) sendmsg$inet(0xffffffffffffffff, 0x0, 0x0) r1 = socket$vsock_stream(0x28, 0x1, 0x0) ioctl$sock_SIOCETHTOOL(r1, 0x89fb, &(0x7f0000000040)={'veth0_vlan\x00', 0x0}) recvmmsg(0xffffffffffffffff, &(0x7f00000005c0), 0x40000000000026c, 0x0, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x10, 0xffffffffffffffff, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x18) unshare(0x8000000) r2 = semget$private(0x0, 0x4000, 0x764) r3 = socket$inet6(0xa, 0x3, 0x9) semctl$IPC_STAT(r2, 0x0, 0x2, &(0x7f00000002c0)=""/225) setsockopt$inet6_MCAST_JOIN_GROUP(r3, 0x29, 0x6, &(0x7f0000000140)={0x7f, {{0x29, 0x0, 0x0, @local}}}, 0x88) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002200000085000000a0000000950000000200"], &(0x7f0000000080)='GPL\x00'}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000680)={r4, 0x0, 0x0, 0x0, &(0x7f0000000100)="33600cad3233597a999a60c0b961b058395aaed26611d8b511682cd1250ad87c16", 0x0, 0x40, 0x0, 0x61, 0xffffffffffffff7c, 0x0, 0x0, 0x3, 0x0, 0x2}, 0x50) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7ffffffe}]}) syz_usbip_server_init(0x0) 9.78605104s ago: executing program 4 (id=7442): r0 = socket$igmp6(0xa, 0x3, 0x2) sendmmsg$inet6(r0, &(0x7f00000000c0)=[{{&(0x7f00000001c0)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0) read(r0, &(0x7f00000001c0)=""/205, 0xcd) 9.661166726s ago: executing program 0 (id=7443): socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000300)={'batadv_slave_1\x00', 0x0}) sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000280)={0x40, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x20, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x1c, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8eab}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x40}}, 0x0) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000040)={0x0, @private, @dev}, &(0x7f0000000080)=0xc) r4 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'veth1_macvtap\x00', 0x0}) setsockopt$packet_int(r4, 0x107, 0x0, 0x0, 0x0) sendto$packet(0xffffffffffffffff, &(0x7f00000000c0)="3f033608260812002c001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @multicast}, 0x14) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={0x1, 0x58, &(0x7f00000000c0)}, 0x10) r6 = socket(0x11, 0x3, 0x0) setsockopt$packet_int(r6, 0x107, 0xf, &(0x7f0000000000)=0xe9, 0x4) r7 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000000c0)={'syz_tun\x00', 0x0}) bind$packet(r6, &(0x7f0000000140)={0x11, 0x0, r8, 0x1, 0x0, 0x6, @local}, 0x14) socket$inet6_udplite(0xa, 0x2, 0x88) 9.174296501s ago: executing program 4 (id=7444): openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c003d000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) bpf$PROG_BIND_MAP(0xa, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000003c0)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0) r3 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x101641) ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200)) ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x90) add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000140)={'fscrypt:', @desc1}, 0x0, 0x0, 0xfffffffffffffffd) ioperm(0x0, 0x0, 0x0) 8.61855914s ago: executing program 0 (id=7445): getsockopt$IP_VS_SO_GET_VERSION(0xffffffffffffffff, 0x0, 0x480, 0x0, &(0x7f0000000580)) r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000080)={{r3}, &(0x7f0000000180), &(0x7f00000001c0)='%-5lx \x00'}, 0x20) r4 = getpid() process_vm_readv(r4, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) ptrace$ARCH_SHSTK_UNLOCK(0x1e, 0x0, 0x0, 0x5004) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000140)={r3}, 0x4) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x3, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000ffffff857b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r5, 0x2f08, 0x10, 0x10, &(0x7f00000006c0)="0000000009000005", &(0x7f0000000700)=""/8, 0x447, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) dup(0xffffffffffffffff) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events.local\x00', 0x275a, 0x0) sendmsg$NFNL_MSG_CTHELPER_DEL(r2, &(0x7f0000000a00)={&(0x7f00000005c0), 0xc, &(0x7f00000009c0)={&(0x7f0000000980)=ANY=[], 0x28}, 0x1, 0x0, 0x0, 0x20040812}, 0x8000) sendmsg$NL80211_CMD_DEL_KEY(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB, @ANYRES16=r0, @ANYBLOB="010000000000000000000a00000008000300", @ANYRES32=r1, @ANYBLOB="040050800400050008000880040002da1ec2c64f62a2f500866b686694f40ac79ed57faea2163669d5992608c6a1511d774b0aafbfdb61ad1b2088803015c7228a997473215d0a85b7c75af236f6a787dff07713f932f6f81e2da1cbb83cfc267863b231dfc06df15d83d6617fb8778736ab04daa4334d2a6ca67144aa360abc0a26a3334fd4781d4889c55173b75179a39a962db87ab39f801b1cb38180b61b47ea5967bb893231c40456fecd78dcf0c14baf"], 0x34}}, 0x0) 8.331579082s ago: executing program 1 (id=7447): r0 = semget$private(0x0, 0x0, 0x0) semop(0x0, &(0x7f0000000380)=[{0x0, 0xffff}], 0x1) semctl$SETALL(r0, 0x0, 0x11, &(0x7f00000001c0)) 8.090531535s ago: executing program 1 (id=7449): r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = fsopen(&(0x7f0000000000)='hugetlbfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0) name_to_handle_at(0xffffffffffffffff, &(0x7f0000000080)='.\x00', &(0x7f0000000180)=ANY=[], 0x0, 0x1200) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) socket$packet(0x11, 0x3, 0x300) socket$inet_smc(0x2b, 0x1, 0x0) bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040), 0x48) socket$inet6_udplite(0xa, 0x2, 0x88) setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000200)=ANY=[], 0x841, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_TSINFO_GET(r3, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000005c0)={0x14, r0, 0x301, 0x0, 0x0, {0x2}}, 0x14}}, 0x0) 7.36730446s ago: executing program 1 (id=7450): r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) fcntl$notify(r1, 0x402, 0x29) fcntl$notify(r0, 0x402, 0x3a) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) readv(r0, 0x0, 0x0) 7.134363454s ago: executing program 1 (id=7451): openat$nvram(0xffffffffffffff9c, 0x0, 0x0, 0x0) prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x4000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) clock_gettime(0x0, &(0x7f00000010c0)={0x0}) futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, &(0x7f0000001100)={r4}, 0x1) 7.086835863s ago: executing program 0 (id=7452): chdir(&(0x7f0000000080)='./file0\x00') prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = socket$inet(0x2, 0x2, 0x1) sendmsg$inet(r2, &(0x7f0000000040)={&(0x7f0000000280)={0x2, 0x0, @empty}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f0000000180)="96bc1480bb58", 0x6}], 0x2, &(0x7f0000000100)=[@ip_retopts={{0x3c, 0x0, 0x7, {[@end, @ssrr={0x89, 0x7, 0x0, [@initdev={0xac, 0x1e, 0x0, 0x0}]}, @ssrr={0x89, 0x1b, 0xb4, [@loopback, @dev, @private, @multicast1, @multicast2, @multicast1]}, @noop, @noop, @ra={0x94, 0x4}]}}}], 0x40}, 0x40030) 6.028542916s ago: executing program 4 (id=7455): r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) inotify_add_watch(r0, 0x0, 0x811) 5.819850257s ago: executing program 4 (id=7456): socket$nl_route(0x10, 0x3, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) socket$key(0xf, 0x3, 0x2) r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) keyctl$setperm(0x5, r0, 0x1c243811) keyctl$chown(0x4, r0, 0xee00, 0x0) getgroups(0x2, &(0x7f0000000040)=[0x0, 0xee00]) keyctl$chown(0x4, r0, 0xffffffffffffffff, r1) setgroups(0x1e2, &(0x7f0000000100)) keyctl$revoke(0x3, r0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000019000/0x18000)=nil, &(0x7f0000000240)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r5, &(0x7f0000000280)={'#! ', '', [], 0xa, "70b8b8dd961360"}, 0xb) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r5, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r6 = socket(0x200000100000011, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'veth1_to_bond\x00', 0x0}) bind$packet(r6, &(0x7f0000000180)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @local}, 0x14) symlink(0x0, &(0x7f0000000000)='./file0\x00') setsockopt$packet_int(r6, 0x107, 0xf, &(0x7f0000000100)=0x3c0, 0x43) syz_emit_ethernet(0x46, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "120008", 0x10, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x2}}}}}}, 0x0) syz_emit_ethernet(0x9a, &(0x7f00000002c0)={@link_local, @dev, @val={@void, {0x8100, 0x0, 0x0, 0x1}}, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f53a04", 0x60, 0x3a, 0x0, @remote, @mcast2, {[], @param_prob={0x2, 0x0, 0x0, 0xffffe9ce, {0x0, 0x6, "508359", 0x0, 0x0, 0x0, @private1, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, [@hopopts={0x3a}, @srh={0x32, 0x4, 0x4, 0x2, 0x40, 0x48, 0x1, [@remote, @empty]}]}}}}}}}, 0x0) 5.332517264s ago: executing program 4 (id=7457): openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x26e1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000001700)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) getpid() connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000540)=@filter={'filter\x00', 0x2, 0x4, 0x388, 0xffffffff, 0xd0, 0xd0, 0x0, 0xfeffffff, 0xffffffff, 0x2b8, 0x2b8, 0x2b8, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@dev, @mcast1, [], [], 'macsec0\x00', 'bond_slave_0\x00', {}, {}, 0x6, 0x0, 0x3}, 0x2f2, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x6}}}, {{@ipv6={@mcast1, @loopback, [], [], 'netdevsim0\x00', 'geneve0\x00'}, 0x0, 0xa8, 0x118}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "ddabf53d9b1435965491f6531877000001e770b667f173dfa40b58c10327e3121114449fd20ba2be6e45cae72a972f25170163232ed996b4789b9d00"}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE3={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3e8) syz_open_dev$sndctrl(&(0x7f00000003c0), 0x8003, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r4}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) r5 = open(&(0x7f0000000200)='./file1\x00', 0x14507e, 0x0) rt_sigprocmask(0x0, &(0x7f0000000180), 0x0, 0x8) sendmsg$key(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0) sendfile(r5, r5, 0x0, 0x100000000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) r6 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$uinput_user_dev(r6, &(0x7f0000000c40)={'syz0\x00', {0x0, 0x8, 0x4, 0x2}, 0x10, [0x3a1, 0x1, 0x6, 0x401, 0x14, 0x9, 0x7f, 0x2a49, 0xfff, 0x0, 0x1f, 0x5, 0x200, 0x66, 0x43, 0x0, 0x7ff, 0xfffffff8, 0xe4e, 0x3, 0x271, 0x1, 0x9, 0xd8, 0x9, 0x100, 0x5, 0xff, 0x6, 0x0, 0x0, 0x1, 0xc898af84, 0x8, 0x81, 0x4, 0xffff, 0x0, 0x5, 0x0, 0x3, 0x7fffffff, 0x40, 0x1, 0x0, 0x38a, 0x13c, 0x3, 0x4, 0x5, 0x1, 0x2c2a, 0xfff, 0x1, 0x8, 0x24, 0xaa9c, 0x7, 0x7, 0x3, 0xe0, 0x0, 0x9, 0x9], [0xff, 0x80000000, 0x0, 0xf6, 0xd57, 0x6, 0x6db, 0x8001, 0x0, 0xd5e, 0xffffffff, 0x2, 0x6, 0x3, 0x0, 0x315, 0x3, 0x1000, 0x8, 0x0, 0x6, 0x8, 0x1, 0x3fff800, 0x2, 0x100, 0x1, 0x6, 0x5, 0x8000, 0x0, 0x0, 0x0, 0x834d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x7, 0x4, 0x9, 0x8074, 0x110, 0x7fff, 0x0, 0xffffff7f, 0x2, 0x80000000, 0x80000000, 0xff, 0x1, 0x6, 0xff, 0x89, 0x0, 0xfffffffc, 0x7, 0x40, 0x8, 0x9, 0x5, 0xffffffff, 0x800], [0x100, 0x8, 0x7, 0x9, 0x7, 0xfffffff7, 0x3, 0x1000, 0x7, 0x6, 0x8, 0x0, 0x5, 0x6, 0x5, 0x6, 0x7fff, 0xffffffc1, 0xfff, 0x10000, 0x400, 0x4, 0x8, 0x7fffffff, 0xc2ef, 0xb3b, 0x2, 0x80000000, 0xffffffff, 0x401, 0x9, 0x2, 0x7fffffff, 0x80000000, 0x2, 0x2, 0x2, 0x8000, 0x40, 0x5, 0x9, 0xd172, 0x9, 0x3, 0x5, 0x51, 0x1, 0x6, 0x8, 0x8, 0x7, 0x4, 0x6, 0x6, 0x20, 0x6, 0x9, 0xe000000, 0x7, 0xfffff001, 0x2, 0xfffffffb, 0x8, 0x7], [0x9, 0x1000, 0x3, 0x2, 0xa94, 0x5, 0x8001, 0x2, 0xf7, 0x5, 0x76f0, 0x0, 0x5, 0x36, 0x81, 0x2, 0xfffff801, 0x4, 0x3ff, 0x6, 0x2, 0x8, 0x3, 0x6, 0x5, 0x80, 0x1000, 0x9e68, 0x9, 0xccd9, 0x7fffffff, 0x9, 0x10000, 0x1, 0xffffffff, 0xd0, 0x9, 0x3, 0x2, 0x3, 0x0, 0x5, 0x9a0, 0x1f, 0xfffffffe, 0x7ff, 0x8, 0x7f, 0x390, 0x6, 0x7, 0x0, 0x80, 0x3, 0x80000000, 0x6, 0x2, 0x59695ac8, 0x1, 0x7, 0x7, 0x5, 0x1, 0xa2df]}, 0x45c) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) 5.2350944s ago: executing program 3 (id=7459): r0 = semget$private(0x0, 0x0, 0x0) semop(0x0, &(0x7f0000000380)=[{0x0, 0xffff}], 0x1) semctl$SETALL(r0, 0x0, 0x11, &(0x7f00000001c0)) 4.850504369s ago: executing program 2 (id=7460): bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48) r0 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10) r1 = socket$tipc(0x1e, 0x5, 0x0) setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10) sendmsg$tipc(r0, &(0x7f0000000280)={&(0x7f0000000040), 0x10, 0x0}, 0x0) 4.824316207s ago: executing program 3 (id=7461): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000a40)='blkio.bfq.time\x00', 0x26e1, 0x0) close(r1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000840)) ioctl$SIOCSIFHWADDR(r1, 0x8b18, &(0x7f0000000000)={'wlan1\x00', @random="010000000700"}) 4.380511975s ago: executing program 2 (id=7462): r0 = socket$packet(0x11, 0x3, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000040)={'batadv0\x00', 0x0}) sendto$packet(r0, &(0x7f0000000000)="d041362e4c1bf63cf13a51220800", 0x63, 0x8814, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @remote}, 0x14) 4.367689403s ago: executing program 3 (id=7463): r0 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000040)={'vcan0\x00', 0x0}) r2 = socket(0x1d, 0x2, 0x6) bind$can_j1939(r2, &(0x7f0000000000)={0x1d, r1, 0x3}, 0x18) sendmmsg$inet(r2, &(0x7f0000001b40)=[{{0x0, 0x0, &(0x7f00000013c0)=[{&(0x7f0000000100)="edeb50a8e371bf62", 0x8}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0) syz_usb_connect(0x0, 0x4c3, 0x0, 0x0) 3.947437138s ago: executing program 2 (id=7464): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)) 3.571438773s ago: executing program 2 (id=7465): r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000300)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffb) add_key(&(0x7f00000003c0)='dns_resolver\x00', &(0x7f0000000400)={'syz', 0x3}, &(0x7f0000000080)="00000102", 0xfffff, r0) request_key(&(0x7f00000000c0)='dns_resolver\x00', &(0x7f0000000100)={'syz', 0x3}, 0x0, 0x0) 3.027262734s ago: executing program 0 (id=7466): bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x14, 0x4, 0x4, 0xbf21, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x48) 2.996847668s ago: executing program 2 (id=7467): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x40000000000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') preadv(r3, &(0x7f0000000000)=[{&(0x7f0000000200)=""/4096, 0x72c}], 0x1, 0x0, 0x0) 936.605284ms ago: executing program 2 (id=7468): r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000040)={0xa, 0xfffffffd}, 0x8) 759.76683ms ago: executing program 3 (id=7469): mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2001095, 0x0) 740.094525ms ago: executing program 0 (id=7470): prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0) symlinkat(&(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00') openat(0xffffffffffffff9c, 0x0, 0x0, 0x130) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0) 375.120275ms ago: executing program 3 (id=7471): r0 = semget$private(0x0, 0x0, 0x0) semop(0x0, &(0x7f0000000380)=[{0x0, 0xffff}], 0x1) semctl$SETALL(r0, 0x0, 0x11, &(0x7f00000001c0)) 108.125614ms ago: executing program 0 (id=7472): io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) syz_open_dev$sg(0x0, 0x4, 0x30000) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$key(0xf, 0x3, 0x2) recvmmsg(r3, &(0x7f0000000440), 0x6f5, 0x2000000022, &(0x7f0000000480)={0x77359400}) getsockopt$bt_sco_SCO_OPTIONS(0xffffffffffffffff, 0x11, 0x1, &(0x7f00000003c0)=""/130, &(0x7f0000000bc0)=0x82) sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0216000002"], 0x10}}, 0x0) ioctl$USBDEVFS_FREE_STREAMS(0xffffffffffffffff, 0x8008551d, 0x0) process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000380)={0x2, 0x0, @dev}, 0x10) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0) open(&(0x7f0000000100)='./bus\x00', 0x143142, 0x0) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) r5 = dup(r4) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x218, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x1f}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x7}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2f}, @NFTA_SET_USERDATA={0xf5, 0xd, 0x1, 0x0, "f2e02e03674e4cd218f6343594a536f81870b0339c54f53b0c8e38eba4d8eec4d67da5f7d4b925e5e2bfc8b712ec3737addadd367d8f580372b5e6a1718a133065cda7789cd9bab80cf89892b7e815703d25d45dd5caa6b6d70cb2868d4bb3eefd58955676660365e365588d18df57fd3598de35505199467893b74a429ee9350acd7e996a86e70b6d64b7510973bd191f5a5e80c359fd009f69251cb1e31869c8d0f02cc86dc86ab2e327f4eb72907531f57cac9426b2d93aa1738f4d8c7f4734b3f0ab90deba41b32d81cd45464d114940dc281b7ac2235f60a642ecfdd34d2532f6c5eb99a83a483c60f71a24e7b1d5"}, @NFTA_SET_USERDATA={0xc8, 0xd, 0x1, 0x0, "6afa795743284db0b6688bb36408fc76f183f437cd99c363431226ed922375dc9dcf62a687de25ac00848012fcf52212f371b5ba59c527cda26b2873b8cca288bc7c846ee6844cce3a62f87642e45b09679dff91475b677613bcf1631896fd27b88f9225b94a5173ea3a92d7a851d9ec28e951714019a31f92ea91db1f8956eeca10f072af08503a7a240e15071eaea6f19b7140b3cc393ec46ca69404bdebab27f4668d9fb2b160a4c928464bf62fb20fa25dbf93f72221a4528cc24393006b7e0f1cf6"}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}]}, @NFT_MSG_NEWSETELEM={0x40, 0xc, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x4}, @NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0x2a0}}, 0x0) write$UHID_INPUT(r5, &(0x7f0000001040)={0xc, {"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", 0x1000}}, 0x1006) 0s ago: executing program 3 (id=7473): setxattr$incfs_metadata(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0, 0x0, 0x0) lgetxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000680)=@known='user.incfs.metadata\x00', &(0x7f00000006c0)=""/93, 0x5d) kernel console output (not intermixed with test programs): _writers comm="syz.2.6393" name="/root/syzkaller.RsZWfE/276/bus" dev="sda1" ino=2124 res=1 errno=0 [ 1948.254136][T24543] overlayfs: failed to resolve './file2': -2 [ 1949.309059][T24478] lo speed is unknown, defaulting to 1000 [ 1949.718731][ T29] audit: type=1400 audit(1719601042.178:1378): avc: denied { getopt } for pid=24553 comm="syz.1.6399" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 1950.496863][ T5130] usb 2-1: new high-speed USB device number 31 using dummy_hcd [ 1950.567202][T24478] lo speed is unknown, defaulting to 1000 [ 1950.763056][ T5130] usb 2-1: config 0 has no interfaces? [ 1950.804784][ T5130] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 1950.846336][ T5130] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1950.919525][ T5130] usb 2-1: config 0 descriptor?? [ 1951.485303][ T29] audit: type=1326 audit(1719601043.938:1379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24573 comm="syz.4.6406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1463175b29 code=0x7ffc0000 [ 1951.556758][T24575] tmpfs: Bad value for 'mpol' [ 1951.570787][ T29] audit: type=1326 audit(1719601043.938:1380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24573 comm="syz.4.6406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1463175b29 code=0x7ffc0000 [ 1951.643534][T24478] lo speed is unknown, defaulting to 1000 [ 1951.757129][ T29] audit: type=1326 audit(1719601043.958:1381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24573 comm="syz.4.6406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f1463175b29 code=0x7ffc0000 [ 1951.942032][ T29] audit: type=1326 audit(1719601043.958:1382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24573 comm="syz.4.6406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1463175b29 code=0x7ffc0000 [ 1951.965660][ C1] vkms_vblank_simulate: vblank timer overrun [ 1952.041272][ T29] audit: type=1800 audit(1719601044.318:1383): pid=24578 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.4.6408" name="file1" dev="sda1" ino=2102 res=0 errno=0 [ 1953.088354][ T5130] usb 2-1: USB disconnect, device number 31 [ 1953.111814][ T29] audit: type=1800 audit(1719601045.568:1384): pid=24592 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.2.6413" name="bus" dev="sda1" ino=2119 res=0 errno=0 [ 1953.114642][T24478] lo speed is unknown, defaulting to 1000 [ 1953.134499][ C1] vkms_vblank_simulate: vblank timer overrun [ 1953.436017][T19976] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 1953.447609][T19976] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 1953.457974][T19976] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 1953.467980][T19976] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 1953.480124][T19976] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 1953.499330][T19976] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 1953.606091][T24596] netlink: 32 bytes leftover after parsing attributes in process `syz.1.6414'. [ 1953.672402][ T29] audit: type=1400 audit(1719601046.128:1385): avc: denied { recv } for pid=20245 comm="syz-executor" saddr=10.128.0.169 src=30006 daddr=10.128.0.180 dest=43394 netif=eth0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1 [ 1953.698165][ C1] vkms_vblank_simulate: vblank timer overrun [ 1955.000891][T24595] lo speed is unknown, defaulting to 1000 [ 1955.514934][ T29] audit: type=1804 audit(1719601047.968:1386): pid=24623 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.6425" name="/root/syzkaller.sUuooc/563/file0" dev="sda1" ino=2118 res=1 errno=0 [ 1955.597435][T16061] Bluetooth: hci5: command tx timeout [ 1955.709318][ T29] audit: type=1804 audit(1719601048.158:1387): pid=24626 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.1.6425" name="/root/syzkaller.sUuooc/563/file0" dev="sda1" ino=2118 res=1 errno=0 [ 1956.291955][T24626] fuse: Unknown parameter 'fd0x000000000000000a00000000000000000000' [ 1956.824361][ T29] audit: type=1800 audit(1719601049.278:1388): pid=24638 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.2.6428" name="file1" dev="sda1" ino=2126 res=0 errno=0 [ 1957.221331][T15501] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1957.677007][T16061] Bluetooth: hci5: command tx timeout [ 1957.786549][ T29] audit: type=1800 audit(1719601050.228:1389): pid=24644 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.4.6430" name="bus" dev="sda1" ino=2091 res=0 errno=0 [ 1957.888684][T15501] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1958.070772][T24649] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6432'. [ 1958.272510][T15501] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1958.792082][T15501] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1959.119162][ T29] audit: type=1800 audit(1719601051.578:1390): pid=24665 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.2.6438" name="file1" dev="sda1" ino=2119 res=0 errno=0 [ 1959.266398][ T29] audit: type=1800 audit(1719601051.628:1391): pid=24665 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.2.6438" name="file1" dev="sda1" ino=2119 res=0 errno=0 [ 1959.757156][T16061] Bluetooth: hci5: command tx timeout [ 1959.775700][T24595] chnl_net:caif_netlink_parms(): no params data found [ 1960.184704][ T29] audit: type=1326 audit(1719601052.628:1392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24671 comm="syz.0.6440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8cf6f75b29 code=0x7ffc0000 [ 1960.250871][T24678] syz.2.6443[24678] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1960.251122][T24678] syz.2.6443[24678] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1960.683661][ T29] audit: type=1800 audit(1719601053.138:1393): pid=24686 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.6444" name="file1" dev="sda1" ino=2112 res=0 errno=0 [ 1960.719096][T19976] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 1960.734473][T19976] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 1960.744539][T19976] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 1960.759480][T15501] bridge_slave_1: left allmulticast mode [ 1960.772794][T15501] bridge_slave_1: left promiscuous mode [ 1960.778866][T19976] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 1960.779084][T15501] bridge0: port 2(bridge_slave_1) entered disabled state [ 1960.804515][T19976] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 1960.812303][T19976] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 1960.858822][T15501] bridge_slave_0: left allmulticast mode [ 1960.864488][T15501] bridge_slave_0: left promiscuous mode [ 1960.870593][T15501] bridge0: port 1(bridge_slave_0) entered disabled state [ 1961.769840][ T29] audit: type=1800 audit(1719601054.218:1394): pid=24702 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.2.6450" name="bus" dev="sda1" ino=2123 res=0 errno=0 [ 1961.817557][T15501] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1961.833914][T15501] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1961.843843][T19976] Bluetooth: hci5: command tx timeout [ 1961.872330][T15501] bond0 (unregistering): Released all slaves [ 1961.914856][T24679] A link change request failed with some changes committed already. Interface veth0_to_bond may have been left with an inconsistent configuration, please check. [ 1962.705949][T24595] bridge0: port 1(bridge_slave_0) entered blocking state [ 1962.713708][T24595] bridge0: port 1(bridge_slave_0) entered disabled state [ 1962.741842][T24595] bridge_slave_0: entered allmulticast mode [ 1962.759714][T24595] bridge_slave_0: entered promiscuous mode [ 1962.791823][T24595] bridge0: port 2(bridge_slave_1) entered blocking state [ 1962.796272][T24682] lo speed is unknown, defaulting to 1000 [ 1962.810362][T24595] bridge0: port 2(bridge_slave_1) entered disabled state [ 1962.820758][T24595] bridge_slave_1: entered allmulticast mode [ 1962.830398][T24595] bridge_slave_1: entered promiscuous mode [ 1962.888863][T19976] Bluetooth: hci0: command tx timeout [ 1963.080601][T24595] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1963.161306][T24595] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1963.377479][T24595] team0: Port device team_slave_0 added [ 1963.423057][T24595] team0: Port device team_slave_1 added [ 1963.651427][T24595] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1963.682099][T24595] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1963.796596][T24595] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1963.841233][T24595] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1963.886018][T24595] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1963.964423][T24595] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1964.096948][T15501] hsr_slave_0: left promiscuous mode [ 1964.112984][T15501] hsr_slave_1: left promiscuous mode [ 1964.357130][T15501] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1964.380153][T15501] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1964.505076][T15501] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1964.530960][T15501] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1964.677783][T15501] veth1_macvtap: left promiscuous mode [ 1964.699970][T15501] veth0_macvtap: left promiscuous mode [ 1964.717568][T15501] veth1_vlan: left promiscuous mode [ 1964.738416][T15501] veth0_vlan: left promiscuous mode [ 1964.957328][T19976] Bluetooth: hci0: command tx timeout [ 1965.941324][T15501] infiniband syz1: set down [ 1967.036459][T19976] Bluetooth: hci0: command tx timeout [ 1967.803456][T15501] team0 (unregistering): Port device team_slave_1 removed [ 1967.944661][T15501] team0 (unregistering): Port device team_slave_0 removed [ 1968.893756][ T1090] smc: removing ib device syz1 [ 1968.961895][T13237] lo speed is unknown, defaulting to 1000 [ 1969.129129][T19976] Bluetooth: hci0: command tx timeout [ 1969.474292][T24595] hsr_slave_0: entered promiscuous mode [ 1969.538773][T24595] hsr_slave_1: entered promiscuous mode [ 1969.636376][T24595] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1969.644082][T24595] Cannot create hsr debugfs directory [ 1969.698819][T24749] netlink: 'syz.4.6467': attribute type 4 has an invalid length. [ 1969.710470][T24749] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6467'. [ 1969.728620][T24753] netlink: 68 bytes leftover after parsing attributes in process `syz.0.6468'. [ 1969.808963][ T29] audit: type=1800 audit(1719601062.268:1395): pid=24754 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.2.6469" name="file1" dev="sda1" ino=2112 res=0 errno=0 [ 1970.559283][ T29] audit: type=1400 audit(1719601063.018:1396): avc: denied { getopt } for pid=24764 comm="syz.4.6472" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 1972.131120][ T29] audit: type=1400 audit(1719601064.588:1397): avc: denied { append } for pid=24775 comm="syz.2.6476" name="nullb0" dev="devtmpfs" ino=681 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 1972.204267][ T29] audit: type=1400 audit(1719601064.588:1398): avc: denied { write } for pid=24775 comm="syz.2.6476" name="nullb0" dev="devtmpfs" ino=681 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 1972.374344][T24682] chnl_net:caif_netlink_parms(): no params data found [ 1972.895025][ T29] audit: type=1400 audit(1719601065.348:1399): avc: denied { unmount } for pid=20241 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1 [ 1975.938671][T24682] bridge0: port 1(bridge_slave_0) entered blocking state [ 1976.006462][T24682] bridge0: port 1(bridge_slave_0) entered disabled state [ 1976.021341][T24682] bridge_slave_0: entered allmulticast mode [ 1976.030019][T24682] bridge_slave_0: entered promiscuous mode [ 1976.044289][T24682] bridge0: port 2(bridge_slave_1) entered blocking state [ 1976.052016][T24682] bridge0: port 2(bridge_slave_1) entered disabled state [ 1976.059390][T24682] bridge_slave_1: entered allmulticast mode [ 1976.067762][T24682] bridge_slave_1: entered promiscuous mode [ 1976.198098][T24682] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1976.212211][T24811] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6486'. [ 1976.233323][T24682] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1976.266360][ T5131] usb 3-1: new high-speed USB device number 18 using dummy_hcd [ 1976.481916][ T5131] usb 3-1: Using ep0 maxpacket: 8 [ 1976.503931][ T5131] usb 3-1: config 168 descriptor has 1 excess byte, ignoring [ 1976.622133][T24682] team0: Port device team_slave_0 added [ 1976.659818][T24682] team0: Port device team_slave_1 added [ 1976.825422][ T5131] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 1976.837769][ T5131] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7 [ 1976.851736][ T5131] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024 [ 1976.879105][ T5131] usb 3-1: config 168 descriptor has 1 excess byte, ignoring [ 1976.887454][ T5131] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 1976.908897][ T5131] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7 [ 1976.910069][T24595] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 1976.922191][ T5131] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024 [ 1976.945485][ T5131] usb 3-1: config 168 descriptor has 1 excess byte, ignoring [ 1976.954464][ T5131] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 1976.973638][ T5131] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7 [ 1977.067281][ T5131] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024 [ 1977.718314][ T5131] usb 3-1: string descriptor 0 read error: -22 [ 1977.727942][T24595] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 1977.745886][ T5131] usb 3-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 1977.777735][T24682] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1977.784723][T24682] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1977.813049][ T5131] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1977.883402][ T5131] adutux 3-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 1977.917115][T24682] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1977.975869][T24595] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 1978.037580][T24682] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1978.044573][T24682] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1978.132021][T24682] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1978.180458][T24595] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 1978.308051][T13237] usb 3-1: USB disconnect, device number 18 [ 1978.337796][T15501] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1978.583664][T24682] hsr_slave_0: entered promiscuous mode [ 1978.594999][T24682] hsr_slave_1: entered promiscuous mode [ 1978.605586][T24682] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1978.613476][T24682] Cannot create hsr debugfs directory [ 1979.042096][T15501] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1979.279527][T15501] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1979.742762][T15501] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1980.205810][T24860] xt_l2tp: v2 tid > 0xffff: 262144 [ 1980.213518][ T29] audit: type=1400 audit(1719601072.668:1400): avc: denied { mounton } for pid=24856 comm="syz.2.6505" path="/root/syzkaller.RsZWfE/308/bus" dev="devtmpfs" ino=650 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 1980.339133][ T29] audit: type=1400 audit(1719601072.698:1401): avc: denied { bind } for pid=24858 comm="syz.4.6506" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1 [ 1981.025581][T15501] bridge_slave_1: left allmulticast mode [ 1981.040186][T15501] bridge_slave_1: left promiscuous mode [ 1981.057638][T15501] bridge0: port 2(bridge_slave_1) entered disabled state [ 1981.091052][T15501] bridge_slave_0: left allmulticast mode [ 1981.112834][T15501] bridge_slave_0: left promiscuous mode [ 1981.470747][T15501] bridge0: port 1(bridge_slave_0) entered disabled state [ 1981.526120][T24872] can: request_module (can-proto-0) failed. [ 1981.535855][T15501] bridge_slave_1: left allmulticast mode [ 1981.554303][T15501] bridge_slave_1: left promiscuous mode [ 1981.561971][T15501] bridge0: port 2(bridge_slave_1) entered disabled state [ 1981.586050][T15501] bridge_slave_0: left allmulticast mode [ 1981.601693][ T1251] ieee802154 phy0 wpan0: encryption failed: -22 [ 1981.608219][ T1251] ieee802154 phy1 wpan1: encryption failed: -22 [ 1981.627231][T15501] bridge_slave_0: left promiscuous mode [ 1981.650827][T15501] bridge0: port 1(bridge_slave_0) entered disabled state [ 1985.387240][T15501] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1985.396672][T15501] bond_slave_0: left promiscuous mode [ 1985.417833][T15501] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1985.447059][T15501] bond_slave_1: left promiscuous mode [ 1985.457911][T15501] bond0 (unregistering): (slave macvlan2): Releasing backup interface [ 1985.478866][T15501] macvlan2: left promiscuous mode [ 1985.483958][T15501] team0: left promiscuous mode [ 1985.499398][T15501] team_slave_0: left promiscuous mode [ 1985.505735][T15501] team_slave_1: left promiscuous mode [ 1985.674132][T15501] bond0 (unregistering): Released all slaves [ 1986.361195][T15501] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1986.577209][T15501] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1986.624687][T15501] bond0 (unregistering): Released all slaves [ 1986.664733][ T29] audit: type=1800 audit(1719601079.118:1402): pid=24918 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.2.6526" name="bus" dev="sda1" ino=2119 res=0 errno=0 [ 1986.725950][T15501] bond1 (unregistering): Released all slaves [ 1987.515543][T24925] EXT4-fs warning (device sda1): verify_group_input:136: Cannot add at group 0 (only 8 groups) [ 1987.574483][T24595] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1987.805051][T24928] netlink: 20 bytes leftover after parsing attributes in process `syz.4.6530'. [ 1987.849952][T24682] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 1987.925004][T24595] 8021q: adding VLAN 0 to HW filter on device team0 [ 1987.960091][T24682] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 1988.092610][T24682] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 1988.127448][ T25] bridge0: port 1(bridge_slave_0) entered blocking state [ 1988.134703][ T25] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1988.161504][ T25] bridge0: port 2(bridge_slave_1) entered blocking state [ 1988.168796][ T25] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1988.192136][ T29] audit: type=1400 audit(1719601080.648:1403): avc: denied { egress } for pid=784 comm="kworker/1:2" daddr=ff02::16 netif=teql0 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:netif_t tclass=netif permissive=1 [ 1988.268440][ T29] audit: type=1400 audit(1719601080.648:1404): avc: denied { sendto } for pid=784 comm="kworker/1:2" daddr=ff02::16 netif=teql0 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:node_t tclass=node permissive=1 [ 1988.291962][T24682] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 1988.336576][T13270] usb 3-1: new high-speed USB device number 19 using dummy_hcd [ 1988.547293][T13270] usb 3-1: Using ep0 maxpacket: 16 [ 1988.565006][T13270] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 10 [ 1988.597979][T13270] usb 3-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00 [ 1988.614717][T13270] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1988.631028][T13270] usb 3-1: Product: syz [ 1988.656594][T13270] usb 3-1: Manufacturer: syz [ 1988.661216][T13270] usb 3-1: SerialNumber: syz [ 1988.689539][T13270] usb 3-1: config 0 descriptor?? [ 1988.718112][T13270] ftdi_sio 3-1:0.0: FTDI USB Serial Device converter detected [ 1988.752383][T13270] usb 3-1: Detected FT232H [ 1988.928945][T15501] hsr_slave_0: left promiscuous mode [ 1988.941905][T13270] ftdi_sio ttyUSB0: Unable to read latency timer: -71 [ 1988.951179][T15501] hsr_slave_1: left promiscuous mode [ 1988.957332][T13270] ftdi_sio ttyUSB0: Unable to write latency timer: -71 [ 1988.957934][T13270] ftdi_sio 3-1:0.0: GPIO initialisation failed: -71 [ 1988.987232][T15501] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1988.995488][T13270] usb 3-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 1989.005139][T15501] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1989.013849][T13270] usb 3-1: USB disconnect, device number 19 [ 1989.022281][T15501] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1989.041017][T15501] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1989.047218][T13270] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 1989.085764][T15501] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1989.094644][T13270] ftdi_sio 3-1:0.0: device disconnected [ 1989.097277][T15501] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1989.121072][T15501] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1989.128758][T15501] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1989.200495][T15501] veth1_macvtap: left promiscuous mode [ 1989.209704][T15501] veth0_macvtap: left promiscuous mode [ 1989.215519][T15501] veth1_vlan: left promiscuous mode [ 1989.222230][T15501] veth0_vlan: left promiscuous mode [ 1989.584000][T15501] veth1_macvtap: left promiscuous mode [ 1989.614137][T15501] veth0_macvtap: left promiscuous mode [ 1989.627025][T15501] veth1_vlan: left promiscuous mode [ 1989.632372][T15501] veth0_vlan: left promiscuous mode [ 1990.029573][ T5130] usb 5-1: new high-speed USB device number 18 using dummy_hcd [ 1990.298799][ T5130] usb 5-1: Using ep0 maxpacket: 32 [ 1990.318256][ T5130] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1990.345995][ T5130] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1990.390368][ T5130] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 1990.409958][ T5130] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1990.441962][ T5130] usb 5-1: config 0 descriptor?? [ 1990.462574][ T5130] hub 5-1:0.0: bad descriptor, ignoring hub [ 1990.480802][ T5130] hub 5-1:0.0: probe with driver hub failed with error -5 [ 1990.504255][ T5130] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 1991.566096][T15501] team0 (unregistering): Port device team_slave_1 removed [ 1991.652834][T15501] team0 (unregistering): Port device team_slave_0 removed [ 1992.823896][ T5130] usb 5-1: USB disconnect, device number 18 [ 1993.347553][T15501] team0 (unregistering): Port device team_slave_1 removed [ 1993.421548][T15501] team0 (unregistering): Port device team_slave_0 removed [ 1994.563668][T24682] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1995.185531][T24682] 8021q: adding VLAN 0 to HW filter on device team0 [ 1995.281595][T24595] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1995.315922][T13270] bridge0: port 1(bridge_slave_0) entered blocking state [ 1995.323361][T13270] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1995.400350][T13270] bridge0: port 2(bridge_slave_1) entered blocking state [ 1995.407614][T13270] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1996.107359][T24595] veth0_vlan: entered promiscuous mode [ 1996.276016][T24595] veth1_vlan: entered promiscuous mode [ 1996.432458][T24595] veth0_macvtap: entered promiscuous mode [ 1996.479298][T24595] veth1_macvtap: entered promiscuous mode [ 1996.547385][T24595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1996.562155][T24595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1996.573233][T24595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1996.584150][T24595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1996.662857][T24595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1996.695714][T24595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1996.709071][T24595] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1997.088287][T25026] xt_limit: Overflow, try lower: 0/0 [ 1997.448986][T24595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1997.466813][T24595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1997.489369][T24595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1997.500128][T24595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1997.517956][T24595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1997.592680][T24595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1997.626867][T24595] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1997.664398][T24595] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1997.681641][T24595] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1997.691834][T24595] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1997.701901][T24595] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1997.745289][T24682] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1998.070562][T18623] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1998.102374][T18623] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1998.295804][T24682] veth0_vlan: entered promiscuous mode [ 1998.322975][T15501] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1998.354438][T15501] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1998.369554][T24682] veth1_vlan: entered promiscuous mode [ 1998.744165][T24682] veth0_macvtap: entered promiscuous mode [ 1999.741295][T24682] veth1_macvtap: entered promiscuous mode [ 1999.839290][T24682] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1999.850667][T24682] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1999.864257][T24682] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1999.874825][T24682] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1999.895262][T24682] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1999.942945][T24682] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1999.973196][T24682] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2000.939305][T25051] syz.2.6565: attempt to access beyond end of device [ 2000.939305][T25051] nbd2: rw=0, sector=0, nr_sectors = 2 limit=0 [ 2000.952181][T25051] (syz.2.6565,25051,1):ocfs2_get_sector:1771 ERROR: status = -5 [ 2000.960304][T25051] (syz.2.6565,25051,1):ocfs2_sb_probe:749 ERROR: status = -5 [ 2000.968044][T25051] (syz.2.6565,25051,1):ocfs2_fill_super:990 ERROR: superblock probe failed! [ 2000.976851][T25051] (syz.2.6565,25051,1):ocfs2_fill_super:1178 ERROR: status = -5 [ 2001.326812][T24682] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2001.349147][T24682] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 2001.410978][T24682] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2001.462078][T24682] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2001.558927][T24682] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2001.627498][T24682] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2001.669277][T24682] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2001.713420][T24682] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2001.742703][T24682] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2001.756473][T24682] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2001.787877][T24682] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 2001.878309][T24682] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2001.930407][T24682] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2001.967694][T24682] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2002.005124][T24682] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2002.584525][ T1090] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2002.609513][ T1090] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2002.758805][T15501] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2002.784376][ T29] audit: type=1800 audit(1719601095.243:1405): pid=25078 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.6573" name="bus" dev="sda1" ino=2120 res=0 errno=0 [ 2002.815093][T15501] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2002.872686][ T29] audit: type=1804 audit(1719601095.273:1406): pid=25078 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.6573" name="/root/syzkaller.wNaHE8/322/bus" dev="sda1" ino=2120 res=1 errno=0 [ 2003.054150][ T29] audit: type=1326 audit(1719601095.513:1407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25087 comm="syz.1.6437" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3869575b29 code=0x0 [ 2003.786298][T20121] usb 3-1: new high-speed USB device number 20 using dummy_hcd [ 2003.912469][ T29] audit: type=1326 audit(1719601096.373:1408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25084 comm="syz.0.6577" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8cf6f75b29 code=0x0 [ 2003.996296][T20121] usb 3-1: Using ep0 maxpacket: 16 [ 2004.012008][T20121] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 2004.048999][T20121] usb 3-1: New USB device found, idVendor=28bd, idProduct=0934, bcdDevice= 0.40 [ 2004.076851][T20121] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2004.114672][T20121] usb 3-1: Product: syz [ 2004.154196][T20121] usb 3-1: Manufacturer: syz [ 2004.170202][T20121] usb 3-1: SerialNumber: syz [ 2004.206840][T20121] usbhid 3-1:1.0: couldn't find an input interrupt endpoint [ 2004.490806][T20121] usb 3-1: USB disconnect, device number 20 [ 2004.821311][T25115] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 2010.101969][T25143] binder: 25142:25143 ioctl ae41 2 returned -22 [ 2011.367715][T16061] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 2011.396920][T16061] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 2011.416009][T16061] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 2011.431266][T16061] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 2011.458851][T16061] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 2011.468199][T16061] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 2011.679008][T18623] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2012.049316][T18623] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2012.369013][T18623] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2013.429338][T18623] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2013.564579][T25163] netlink: 'syz.0.6597': attribute type 3 has an invalid length. [ 2013.598377][T16061] Bluetooth: hci2: command tx timeout [ 2013.903838][T25149] chnl_net:caif_netlink_parms(): no params data found [ 2015.689679][T16061] Bluetooth: hci2: command tx timeout [ 2017.756909][T16061] Bluetooth: hci2: command tx timeout [ 2017.919545][ T29] audit: type=1400 audit(1719601110.383:1409): avc: denied { write } for pid=25164 comm="syz.1.6598" name="ptp0" dev="devtmpfs" ino=1074 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 2018.194243][T18623] bridge_slave_1: left allmulticast mode [ 2018.202058][T18623] bridge_slave_1: left promiscuous mode [ 2018.219405][T18623] bridge0: port 2(bridge_slave_1) entered disabled state [ 2018.277353][T18623] bridge_slave_0: left allmulticast mode [ 2018.283101][T18623] bridge_slave_0: left promiscuous mode [ 2018.296543][T18623] bridge0: port 1(bridge_slave_0) entered disabled state [ 2018.400937][T25194] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 2019.464162][T18623] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2019.502346][T18623] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2019.523052][T18623] bond0 (unregistering): Released all slaves [ 2019.749190][T18623] bond1 (unregistering): Released all slaves [ 2019.805943][T25205] netlink: 'syz.0.6609': attribute type 3 has an invalid length. [ 2019.836673][T16061] Bluetooth: hci2: command tx timeout [ 2022.123705][T25149] bridge0: port 1(bridge_slave_0) entered blocking state [ 2022.169275][T25149] bridge0: port 1(bridge_slave_0) entered disabled state [ 2022.243468][T25149] bridge_slave_0: entered allmulticast mode [ 2022.256645][T25149] bridge_slave_0: entered promiscuous mode [ 2022.669829][ T29] audit: type=1800 audit(1719601115.133:1410): pid=25231 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.6618" name="bus" dev="sda1" ino=2130 res=0 errno=0 [ 2022.778663][T25149] bridge0: port 2(bridge_slave_1) entered blocking state [ 2022.800935][T25149] bridge0: port 2(bridge_slave_1) entered disabled state [ 2022.829064][T25149] bridge_slave_1: entered allmulticast mode [ 2022.854673][T25149] bridge_slave_1: entered promiscuous mode [ 2023.098521][T25149] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2023.810726][T18623] hsr_slave_0: left promiscuous mode [ 2023.851324][T18623] hsr_slave_1: left promiscuous mode [ 2023.874597][T18623] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 2023.906670][T18623] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 2023.938475][T18623] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 2023.946061][T18623] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 2023.985639][T18623] veth1_macvtap: left promiscuous mode [ 2023.991528][T18623] veth0_macvtap: left promiscuous mode [ 2024.006428][T18623] veth1_vlan: left promiscuous mode [ 2024.012218][T18623] veth0_vlan: left promiscuous mode [ 2025.076391][T18623] team0 (unregistering): Port device team_slave_1 removed [ 2025.723260][T25149] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2025.752229][T25243] netlink: 'syz.0.6621': attribute type 3 has an invalid length. [ 2025.978786][T25149] team0: Port device team_slave_0 added [ 2026.041973][T25149] team0: Port device team_slave_1 added [ 2026.376566][T25070] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 2027.448564][T25149] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 2027.473225][T25149] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2027.526235][T25070] usb 4-1: Using ep0 maxpacket: 8 [ 2027.568401][T25070] usb 4-1: config 168 descriptor has 1 excess byte, ignoring [ 2027.595444][T25070] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 2027.597642][T25149] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 2027.607192][T25070] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7 [ 2027.713853][T25070] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024 [ 2027.725348][T25149] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 2027.725374][T25149] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2027.725419][T25149] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 2027.773806][T25070] usb 4-1: config 168 descriptor has 1 excess byte, ignoring [ 2028.045758][T25070] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 2028.987739][T25070] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7 [ 2029.046362][T25070] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024 [ 2029.079676][T25070] usb 4-1: unable to read config index 2 descriptor/start: -71 [ 2029.089039][T25070] usb 4-1: can't read configurations, error -71 [ 2029.248074][T25149] hsr_slave_0: entered promiscuous mode [ 2029.283181][T25149] hsr_slave_1: entered promiscuous mode [ 2031.677801][T25312] netlink: 64 bytes leftover after parsing attributes in process `syz.1.6638'. [ 2032.319701][T25324] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 2032.496459][ T5131] usb 4-1: new high-speed USB device number 16 using dummy_hcd [ 2032.766273][ T5131] usb 4-1: Using ep0 maxpacket: 8 [ 2032.807990][ T5131] usb 4-1: config 168 descriptor has 1 excess byte, ignoring [ 2032.834728][ T5131] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 2032.868190][ T5131] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7 [ 2032.911534][ T5131] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024 [ 2033.020537][ T5131] usb 4-1: config 168 descriptor has 1 excess byte, ignoring [ 2033.056344][ T5131] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 2033.111482][ T5131] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7 [ 2033.189231][ T5131] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024 [ 2033.319305][ T5131] usb 4-1: config 168 descriptor has 1 excess byte, ignoring [ 2033.349638][ T5131] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 2033.396293][ T5131] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7 [ 2033.433833][ T5131] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024 [ 2033.463682][ T5131] usb 4-1: string descriptor 0 read error: -22 [ 2033.490630][ T5131] usb 4-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 2033.558727][ T5131] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2033.641690][ T5131] adutux 4-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 2034.134925][T25312] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 2034.164543][T25312] Bluetooth: hci5: Error when powering off device on rfkill (-4) [ 2034.233484][T25339] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 2034.292540][T25312] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 2034.308617][T25312] Bluetooth: hci0: Error when powering off device on rfkill (-4) [ 2034.906314][T25312] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 2034.931387][T25312] Bluetooth: hci2: Error when powering off device on rfkill (-4) [ 2035.503098][T25149] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 2035.580346][T25149] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 2035.619553][T25149] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 2035.738797][T25149] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 2036.343484][T25149] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2036.513906][T25149] 8021q: adding VLAN 0 to HW filter on device team0 [ 2036.646673][T13270] bridge0: port 1(bridge_slave_0) entered blocking state [ 2036.653944][T13270] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2036.773934][T20121] bridge0: port 2(bridge_slave_1) entered blocking state [ 2036.781255][T20121] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2036.964182][T25149] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 2037.202873][ T5131] usb 4-1: USB disconnect, device number 16 [ 2038.799973][T25386] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 2039.113739][T25149] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 2039.325163][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2039.373865][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2040.320007][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2040.345250][T25149] veth0_vlan: entered promiscuous mode [ 2041.266132][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2041.390074][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2041.452781][T25149] veth1_vlan: entered promiscuous mode [ 2041.476371][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2041.511732][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2041.562067][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2041.591354][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2041.614247][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2041.646004][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2041.680672][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2041.715894][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2041.748799][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2041.783565][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2041.801168][T25149] veth0_macvtap: entered promiscuous mode [ 2041.830715][T25149] veth1_macvtap: entered promiscuous mode [ 2041.867691][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2041.890855][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2041.904797][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x2 [ 2041.916098][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x2 [ 2041.934594][T25416] kvm: emulating exchange as write [ 2041.947256][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x7 [ 2041.973820][T25149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2041.994437][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2042.001480][T25149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2042.023192][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2042.076589][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2042.088051][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2042.099367][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x2 [ 2042.651675][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x2 [ 2042.886316][T25149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2042.886384][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x2 [ 2042.905461][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2042.936148][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2042.945973][T25149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2042.957041][T25149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2042.968119][T25149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2042.978112][T25149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2042.988750][T25149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2043.014251][T25149] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 2043.051258][ T1251] ieee802154 phy0 wpan0: encryption failed: -22 [ 2043.058426][T25070] hid-generic FFFD:0006:0000.000E: unknown main item tag 0x0 [ 2043.058926][T25149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2043.066503][ T1251] ieee802154 phy1 wpan1: encryption failed: -22 [ 2043.099198][T25070] hid-generic FFFD:0006:0000.000E: item fetching failed at offset 40/43 [ 2043.116869][T25070] hid-generic FFFD:0006:0000.000E: probe with driver hid-generic failed with error -22 [ 2043.309738][T25149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2043.324326][T25149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2043.356707][T25149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2043.380178][T25149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2043.421606][T25149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2043.442745][T25149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2043.481218][T25149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2043.524593][T25149] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 2043.690492][T25149] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2043.731844][T25149] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2043.760618][T25149] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2043.798770][T25149] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2045.421345][T18623] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2045.696409][T18623] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2048.881594][ T5498] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2048.980321][ T5498] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2049.303995][ T29] audit: type=1800 audit(1719601141.763:1411): pid=25469 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.2.6590" name="file1" dev="sda1" ino=2113 res=0 errno=0 [ 2051.498409][T25491] netlink: 'syz.4.6680': attribute type 9 has an invalid length. [ 2051.516390][T25491] netlink: 'syz.4.6680': attribute type 6 has an invalid length. [ 2053.159257][T25498] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 2054.634237][T25521] ALSA: mixer_oss: invalid OSS volume '' [ 2056.147360][T18623] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2056.292995][T25544] netlink: 96 bytes leftover after parsing attributes in process `syz.4.6692'. [ 2056.320082][T25544] netlink: 96 bytes leftover after parsing attributes in process `syz.4.6692'. [ 2056.492930][T19976] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 2056.512155][T19976] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 2056.521816][T19976] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 2056.531006][T19976] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 2056.539471][T19976] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 2056.549618][T19976] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 2056.676862][T25553] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6694'. [ 2056.724897][T25553] netlink: 31 bytes leftover after parsing attributes in process `syz.2.6694'. [ 2056.791916][ T29] audit: type=1804 audit(1719601149.243:1412): pid=25554 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.6693" name="/root/syzkaller.wNaHE8/353/file0" dev="sda1" ino=2134 res=1 errno=0 [ 2056.818274][T25553] netlink: 'syz.2.6694': attribute type 3 has an invalid length. [ 2056.838068][T25553] netlink: 'syz.2.6694': attribute type 2 has an invalid length. [ 2056.863859][T25553] netlink: 31 bytes leftover after parsing attributes in process `syz.2.6694'. [ 2057.440269][T18623] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2057.490316][T25559] netlink: 'syz.2.6695': attribute type 21 has an invalid length. [ 2057.553110][ T29] audit: type=1800 audit(1719601150.013:1413): pid=25567 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.6698" name="bus" dev="sda1" ino=2134 res=0 errno=0 [ 2057.710101][T18623] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2057.988929][T18623] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2058.636793][T16061] Bluetooth: hci0: command tx timeout [ 2059.169462][T18623] bridge_slave_1: left allmulticast mode [ 2059.185369][T18623] bridge_slave_1: left promiscuous mode [ 2059.430530][T18623] bridge0: port 2(bridge_slave_1) entered disabled state [ 2060.519827][T18623] bridge_slave_0: left allmulticast mode [ 2060.525592][T18623] bridge_slave_0: left promiscuous mode [ 2060.587499][T18623] bridge0: port 1(bridge_slave_0) entered disabled state [ 2060.695438][ T29] audit: type=1800 audit(1719601153.153:1414): pid=25614 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.6708" name="bus" dev="sda1" ino=2134 res=0 errno=0 [ 2060.723106][T16061] Bluetooth: hci0: command tx timeout [ 2060.921046][ T29] audit: type=1400 audit(1719601153.383:1415): avc: denied { mounton } for pid=25607 comm="syz.4.6706" path="/root/syzkaller.b4cF5y/415/file0" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=file permissive=1 [ 2062.802133][T16061] Bluetooth: hci0: command tx timeout [ 2063.839152][T18623] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2063.863382][T18623] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2063.884375][T18623] bond0 (unregistering): Released all slaves [ 2064.748693][T25614] netlink: 'syz.0.6708': attribute type 3 has an invalid length. [ 2064.814583][T25546] chnl_net:caif_netlink_parms(): no params data found [ 2064.876411][T16061] Bluetooth: hci0: command tx timeout [ 2064.881221][ T29] audit: type=1400 audit(1719601157.333:1416): avc: denied { connect } for pid=25657 comm="syz.2.6719" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 2064.980196][ T29] audit: type=1326 audit(1719601157.443:1417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25660 comm="syz.4.6720" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1463175b29 code=0x0 [ 2066.222859][T25546] bridge0: port 1(bridge_slave_0) entered blocking state [ 2066.268246][T25546] bridge0: port 1(bridge_slave_0) entered disabled state [ 2066.275607][T25546] bridge_slave_0: entered allmulticast mode [ 2066.299560][T25546] bridge_slave_0: entered promiscuous mode [ 2066.341177][T25546] bridge0: port 2(bridge_slave_1) entered blocking state [ 2066.357302][T25546] bridge0: port 2(bridge_slave_1) entered disabled state [ 2066.371864][T25546] bridge_slave_1: entered allmulticast mode [ 2066.388870][T25546] bridge_slave_1: entered promiscuous mode [ 2066.499338][T18623] hsr_slave_0: left promiscuous mode [ 2066.559542][T18623] hsr_slave_1: left promiscuous mode [ 2066.632506][T18623] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 2066.711215][T18623] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 2066.825145][T18623] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 2066.908668][T18623] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 2067.824365][T18623] veth1_macvtap: left promiscuous mode [ 2069.184733][T18623] veth0_macvtap: left promiscuous mode [ 2070.272131][T18623] veth1_vlan: left promiscuous mode [ 2070.379287][T18623] veth0_vlan: left promiscuous mode [ 2071.049656][T25697] Dead loop on virtual device ip6_vti0, fix it urgently! [ 2072.659586][T25718] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2052 sclass=netlink_route_socket pid=25718 comm=syz.2.6734 [ 2073.302703][T25732] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 2074.531902][T18623] team0 (unregistering): Port device team_slave_1 removed [ 2074.536547][T25741] Dead loop on virtual device ip6_vti0, fix it urgently! [ 2074.710355][T18623] team0 (unregistering): Port device team_slave_0 removed [ 2076.436122][T25718] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6734'. [ 2076.454136][T25718] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6734'. [ 2076.463392][T25718] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6734'. [ 2076.475084][T25718] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6734'. [ 2076.494003][T25718] A link change request failed with some changes committed already. Interface ip6gre0 may have been left with an inconsistent configuration, please check. [ 2076.721227][T25546] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2076.785325][T25546] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2076.827363][ T29] audit: type=1800 audit(1719601169.293:1418): pid=25757 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.4.6752" name="file1" dev="sda1" ino=2119 res=0 errno=0 [ 2077.154902][T25546] team0: Port device team_slave_0 added [ 2077.218059][T25546] team0: Port device team_slave_1 added [ 2077.474394][T25546] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 2077.494243][T25546] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2077.597693][T25546] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 2077.640541][T25546] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 2077.667758][ T29] audit: type=1400 audit(1719601170.123:1419): avc: denied { mounton } for pid=25773 comm="syz.2.6757" path="/root/syzkaller.lJtO8k/20/file0/bus" dev="tmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 2077.676251][T25546] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2077.779288][ T29] audit: type=1400 audit(1719601170.223:1420): avc: denied { unlink } for pid=25773 comm="syz.2.6757" name="#26" dev="tmpfs" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 2077.841214][T25546] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 2078.151308][T25546] hsr_slave_0: entered promiscuous mode [ 2078.166977][T25546] hsr_slave_1: entered promiscuous mode [ 2078.180524][T25546] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 2078.190319][T25546] Cannot create hsr debugfs directory [ 2078.204482][ T29] audit: type=1400 audit(1719601170.663:1421): avc: denied { execmem } for pid=25785 comm="syz.2.6761" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 2079.556090][T25802] input: syz1 as /devices/virtual/input/input36 [ 2079.601048][T25803] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6768'. [ 2079.623129][ T29] audit: type=1400 audit(1719601172.083:1422): avc: denied { create } for pid=25804 comm="syz.4.6769" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 2079.667032][T25803] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6768'. [ 2083.419772][T25546] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 2083.444799][ T29] audit: type=1400 audit(1719601175.903:1423): avc: denied { getopt } for pid=25822 comm="syz.0.6775" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 2083.479078][T25546] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 2083.687293][T25546] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 2083.768041][T25546] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 2083.867861][T25843] netlink: 84 bytes leftover after parsing attributes in process `syz.3.6779'. [ 2084.289430][T25546] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2084.378841][T25546] 8021q: adding VLAN 0 to HW filter on device team0 [ 2084.411244][T15560] bridge0: port 1(bridge_slave_0) entered blocking state [ 2084.418546][T15560] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2084.463636][T15560] bridge0: port 2(bridge_slave_1) entered blocking state [ 2084.470853][T15560] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2086.407785][T25546] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 2086.477161][ T29] audit: type=1400 audit(1719601178.943:1424): avc: denied { write } for pid=25880 comm="syz.4.6794" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 2086.609331][T25546] veth0_vlan: entered promiscuous mode [ 2086.637747][ T29] audit: type=1400 audit(1719601179.103:1425): avc: denied { write } for pid=25883 comm="syz.3.6795" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 2086.701464][T25546] veth1_vlan: entered promiscuous mode [ 2086.824523][T25546] veth0_macvtap: entered promiscuous mode [ 2086.850716][T25546] veth1_macvtap: entered promiscuous mode [ 2086.998658][T25546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2087.028438][T25546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2089.496316][T25546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2090.269752][T25546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2090.312645][T25546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2090.343113][T25546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2090.381341][T25546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2090.414143][T25546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2090.444364][T25546] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 2090.503604][T25546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2090.533662][T25546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2090.574716][T25546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2090.607594][T25546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2090.636942][T25546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2090.664345][T25546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2090.679076][T25546] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2090.693459][T25546] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2090.714243][T25546] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 2090.870687][T25546] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2090.905894][T25546] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2090.933870][T25546] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2090.966734][T25546] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2091.318254][ T5498] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2091.337952][ T5498] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2093.424511][ T2430] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2093.434439][ T2430] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2094.410593][ T29] audit: type=1400 audit(1719601186.873:1426): avc: denied { setopt } for pid=25959 comm="syz.0.6823" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 2095.937856][ T29] audit: type=1400 audit(1719601188.393:1427): avc: denied { write } for pid=25976 comm="syz.3.6831" name="tcp" dev="proc" ino=4026533611 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1 [ 2096.121167][T18623] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2096.430879][T18623] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2096.954605][T18623] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2097.170026][T18623] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2097.580411][T25606] usb 3-1: new high-speed USB device number 21 using dummy_hcd [ 2097.619813][T18623] bridge_slave_1: left allmulticast mode [ 2097.638260][T18623] bridge_slave_1: left promiscuous mode [ 2097.652420][T18623] bridge0: port 2(bridge_slave_1) entered disabled state [ 2097.704432][T18623] bridge_slave_0: left allmulticast mode [ 2097.717298][T19976] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 2097.734250][T19976] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 2097.749407][T19976] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 2097.758826][T18623] bridge_slave_0: left promiscuous mode [ 2097.764752][T18623] bridge0: port 1(bridge_slave_0) entered disabled state [ 2097.777102][T19976] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 2097.788187][T19976] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 2097.799115][T19976] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 2097.815663][T25606] usb 3-1: New USB device found, idVendor=05ac, idProduct=0290, bcdDevice=dc.1b [ 2097.861056][T25606] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 2097.877336][ T29] audit: type=1400 audit(1719601190.343:1428): avc: denied { remount } for pid=26005 comm="syz.0.6844" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 2097.886448][T26006] binder: Bad value for 'max' [ 2097.951403][T25606] usb 3-1: config 0 descriptor?? [ 2097.991286][T25606] input: bcm5974 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input37 [ 2098.249078][T25606] usb 3-1: USB disconnect, device number 21 [ 2099.920545][T19976] Bluetooth: hci0: command tx timeout [ 2100.328709][ T29] audit: type=1326 audit(1719601192.783:1429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26021 comm="syz.2.6850" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc009375b29 code=0x0 [ 2103.576246][T16061] Bluetooth: hci0: command tx timeout [ 2104.167575][T26033] binder: Bad value for 'max' [ 2104.277616][T26035] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 2104.596388][ T29] audit: type=1804 audit(1719601196.803:1430): pid=26037 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.6856" name="/root/syzkaller.RBZmGv/70/file0" dev="sda1" ino=2122 res=1 errno=0 [ 2104.630279][ T1251] ieee802154 phy0 wpan0: encryption failed: -22 [ 2104.637442][ T1251] ieee802154 phy1 wpan1: encryption failed: -22 [ 2104.781927][ T29] audit: type=1804 audit(1719601197.243:1431): pid=26041 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.3.6856" name="/root/syzkaller.RBZmGv/70/file0" dev="sda1" ino=2122 res=1 errno=0 [ 2104.925502][T18623] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2105.023632][T18623] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2105.115597][T18623] bond0 (unregistering): Released all slaves [ 2105.596473][T19976] Bluetooth: hci0: command tx timeout [ 2106.003865][T26049] overlayfs: failed to resolve './file2': -2 [ 2107.639453][T18623] hsr_slave_0: left promiscuous mode [ 2107.657549][T18623] hsr_slave_1: left promiscuous mode [ 2107.667272][T18623] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 2107.675071][T18623] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 2107.686978][ T5131] usb 4-1: new high-speed USB device number 17 using dummy_hcd [ 2107.694599][T19976] Bluetooth: hci0: command tx timeout [ 2107.713802][T18623] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 2107.723511][T18623] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 2107.835882][T18623] veth1_macvtap: left promiscuous mode [ 2107.841781][T18623] veth0_macvtap: left promiscuous mode [ 2107.860047][T18623] veth1_vlan: left promiscuous mode [ 2107.865977][T18623] veth0_vlan: left promiscuous mode [ 2107.915946][ T5131] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7 [ 2107.944444][ T5131] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xFF has invalid wMaxPacketSize 0 [ 2107.968835][ T5131] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 2107.997946][ T5131] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 2108.007535][ T5131] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 2108.030086][ T5131] usb 4-1: config 0 descriptor?? [ 2108.271824][T26069] binder: Bad value for 'max' [ 2108.499222][ T5131] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 2108.527939][ T5131] plantronics 0003:047F:FFFF.000F: No inputs registered, leaving [ 2108.566495][ T5131] plantronics 0003:047F:FFFF.000F: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 2109.036991][ T5131] usb 4-1: USB disconnect, device number 17 [ 2110.504435][T18623] team0 (unregistering): Port device team_slave_1 removed [ 2110.650326][T18623] team0 (unregistering): Port device team_slave_0 removed [ 2110.867423][ T29] audit: type=1804 audit(1719601203.313:1432): pid=26094 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.6873" name="/root/syzkaller.RBZmGv/75/file0" dev="sda1" ino=2102 res=1 errno=0 [ 2110.987340][ T29] audit: type=1804 audit(1719601203.443:1433): pid=26097 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.3.6873" name="/root/syzkaller.RBZmGv/75/file0" dev="sda1" ino=2102 res=1 errno=0 [ 2111.143755][T26102] trusted_key: encrypted_key: keylen parameter is missing [ 2111.434940][T26106] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 2113.171694][T26002] chnl_net:caif_netlink_parms(): no params data found [ 2113.184483][T26126] netlink: 40 bytes leftover after parsing attributes in process `syz.3.6883'. [ 2114.064582][T26002] bridge0: port 1(bridge_slave_0) entered blocking state [ 2114.123108][T26002] bridge0: port 1(bridge_slave_0) entered disabled state [ 2114.160746][T26002] bridge_slave_0: entered allmulticast mode [ 2114.172903][T26002] bridge_slave_0: entered promiscuous mode [ 2114.221405][T26002] bridge0: port 2(bridge_slave_1) entered blocking state [ 2114.240915][T26002] bridge0: port 2(bridge_slave_1) entered disabled state [ 2114.262449][T26002] bridge_slave_1: entered allmulticast mode [ 2114.298821][T26002] bridge_slave_1: entered promiscuous mode [ 2114.735364][T26002] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2114.805388][T26002] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2115.042924][T26002] team0: Port device team_slave_0 added [ 2115.082133][T26002] team0: Port device team_slave_1 added [ 2115.329569][T26002] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 2115.595957][T26002] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2116.996315][T26002] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 2117.104520][T26002] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 2117.138356][T26002] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2117.217158][T26002] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 2117.392467][T26165] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 2117.502295][T26002] hsr_slave_0: entered promiscuous mode [ 2117.535954][T26002] hsr_slave_1: entered promiscuous mode [ 2117.557747][T26002] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 2117.595794][T26002] Cannot create hsr debugfs directory [ 2117.833899][T26164] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6895'. [ 2118.317571][T26174] xt_NFQUEUE: number of total queues is 0 [ 2118.728470][ T29] audit: type=1800 audit(1719601210.793:1434): pid=26174 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.6898" name="file1" dev="sda1" ino=2108 res=0 errno=0 [ 2120.452771][T26002] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 2120.496290][T26002] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 2120.551143][T26002] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 2120.598407][T26002] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 2121.529887][T26002] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2121.622447][T26002] 8021q: adding VLAN 0 to HW filter on device team0 [ 2121.668211][T25070] bridge0: port 1(bridge_slave_0) entered blocking state [ 2121.675492][T25070] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2121.747189][ T5189] bridge0: port 2(bridge_slave_1) entered blocking state [ 2121.754551][ T5189] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2121.972136][T26002] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 2122.030857][T26209] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 2122.047160][T26209] overlayfs: missing 'lowerdir' [ 2123.513992][T26002] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 2123.742019][T26002] veth0_vlan: entered promiscuous mode [ 2123.763815][ T29] audit: type=1400 audit(1719601216.223:1435): avc: denied { setattr } for pid=26226 comm="syz.2.6913" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=fifo_file permissive=1 [ 2123.786004][ C0] vkms_vblank_simulate: vblank timer overrun [ 2123.821534][T26002] veth1_vlan: entered promiscuous mode [ 2123.849466][ T29] audit: type=1326 audit(1719601216.273:1436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26228 comm="syz.0.6914" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8cf6f75b29 code=0x0 [ 2124.046116][T26002] veth0_macvtap: entered promiscuous mode [ 2124.090947][T26002] veth1_macvtap: entered promiscuous mode [ 2124.185503][T26002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2124.211730][T26002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2124.233639][T26002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2124.266318][T26002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2124.302171][T26002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2124.333268][T26002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2124.354392][T26002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2124.382038][T26002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2124.412740][T26236] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6916'. [ 2124.438787][T26002] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 2124.532394][T26002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2124.566187][T26002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2124.596509][T26002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2124.621361][T26002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2124.648353][T26002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2124.688077][T26002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2124.712143][T26002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2124.732603][T26002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2124.758657][T26002] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 2124.791999][T26237] team0: entered promiscuous mode [ 2124.800651][T26237] team_slave_0: entered promiscuous mode [ 2124.806999][T26237] team_slave_1: entered promiscuous mode [ 2124.929543][T26240] team_slave_0: entered allmulticast mode [ 2125.038814][T26240] team0: Port device team_slave_0 removed [ 2125.303841][T26235] team0: left promiscuous mode [ 2125.327729][T26235] team_slave_1: left promiscuous mode [ 2125.359441][T26002] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2126.675479][T26002] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2126.716751][T26002] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2126.725510][T26002] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2127.313471][ T2430] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2127.340288][ T2430] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2127.608955][ T1090] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2127.648631][ T1090] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2129.434583][T26283] veth0_vlan: left promiscuous mode [ 2137.952273][T26366] netlink: 24 bytes leftover after parsing attributes in process `syz.0.6960'. [ 2139.154880][T26376] binder: 26374:26376 ioctl 4018620d 0 returned -22 [ 2140.629326][ T29] audit: type=1326 audit(1719601233.063:1437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26400 comm="syz.1.6972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3209d75b29 code=0x7ffc0000 [ 2140.742762][ T29] audit: type=1326 audit(1719601233.163:1438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26400 comm="syz.1.6972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=297 compat=0 ip=0x7f3209d75b29 code=0x7ffc0000 [ 2140.866256][ T29] audit: type=1326 audit(1719601233.163:1439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26400 comm="syz.1.6972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3209d75b29 code=0x7ffc0000 [ 2142.399704][T26411] netlink: 24 bytes leftover after parsing attributes in process `syz.3.6976'. [ 2142.943108][ T29] audit: type=1400 audit(1719601235.403:1440): avc: denied { append } for pid=26413 comm="syz.1.6977" name="event3" dev="devtmpfs" ino=840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 2142.966559][ C1] vkms_vblank_simulate: vblank timer overrun [ 2143.169329][ T29] audit: type=1326 audit(1719601235.403:1441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26413 comm="syz.1.6977" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3209d75b29 code=0x0 [ 2143.632858][T18623] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2143.693868][T16061] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 2143.713046][T16061] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 2143.721683][T16061] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 2143.732264][T16061] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 2143.740745][T16061] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 2143.748566][T16061] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 2143.991952][T18623] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2144.025411][ T29] audit: type=1804 audit(1719601236.483:1442): pid=26424 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.6979" name="/root/syzkaller.vfKckN/9/file0" dev="sda1" ino=2147 res=1 errno=0 [ 2144.138202][T18623] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2144.295513][T18623] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2145.220975][T18623] bridge_slave_1: left allmulticast mode [ 2145.242931][T18623] bridge_slave_1: left promiscuous mode [ 2145.255615][T18623] bridge0: port 2(bridge_slave_1) entered disabled state [ 2145.312140][ T29] audit: type=1400 audit(1719601237.763:1443): avc: denied { nlmsg_write } for pid=26451 comm="syz.3.6986" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 2145.383204][T18623] bridge_slave_0: left allmulticast mode [ 2145.404435][T18623] bridge_slave_0: left promiscuous mode [ 2145.427420][T18623] bridge0: port 1(bridge_slave_0) entered disabled state [ 2145.848154][T16061] Bluetooth: hci2: command tx timeout [ 2146.088618][ T29] audit: type=1804 audit(1719601238.543:1444): pid=26459 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.6989" name="/root/syzkaller.RBZmGv/105/file0" dev="sda1" ino=2136 res=1 errno=0 [ 2147.083207][T18623] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2147.120378][T18623] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2147.138239][T18623] bond0 (unregistering): Released all slaves [ 2147.163296][T26419] chnl_net:caif_netlink_parms(): no params data found [ 2147.317074][T26457] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6988'. [ 2147.688704][ T29] audit: type=1400 audit(1719601240.143:1445): avc: denied { mount } for pid=26470 comm="syz.1.6992" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1 [ 2147.916331][T16061] Bluetooth: hci2: command tx timeout [ 2147.971805][ T29] audit: type=1400 audit(1719601240.433:1446): avc: denied { unmount } for pid=26002 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1 [ 2148.180421][T18623] hsr_slave_0: left promiscuous mode [ 2148.196800][T18623] hsr_slave_1: left promiscuous mode [ 2148.219313][T18623] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 2148.240961][T18623] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 2148.278919][T18623] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 2148.336459][T18623] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 2148.442624][T18623] veth1_macvtap: left promiscuous mode [ 2148.448720][T18623] veth0_macvtap: left promiscuous mode [ 2148.454860][T18623] veth1_vlan: left promiscuous mode [ 2148.465112][T18623] veth0_vlan: left promiscuous mode [ 2148.929237][ T29] audit: type=1326 audit(1719601241.393:1447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26488 comm="syz.4.6998" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1463175b29 code=0x0 [ 2148.965904][ T29] audit: type=1400 audit(1719601241.413:1448): avc: denied { write } for pid=26485 comm="syz.1.6996" name="file0" dev="sda1" ino=2115 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=chr_file permissive=1 [ 2148.995998][ T29] audit: type=1400 audit(1719601241.413:1449): avc: denied { open } for pid=26485 comm="syz.1.6996" path="/root/syzkaller.vfKckN/14/file0" dev="sda1" ino=2115 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=chr_file permissive=1 [ 2151.154443][T16061] Bluetooth: hci2: command tx timeout [ 2153.276392][T16061] Bluetooth: hci2: command tx timeout [ 2154.406515][ T29] audit: type=1800 audit(1719601246.613:1450): pid=26513 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.7001" name="bus" dev="sda1" ino=2143 res=0 errno=0 [ 2155.831420][T18623] team0 (unregistering): Port device team_slave_1 removed [ 2157.139478][T26419] bridge0: port 1(bridge_slave_0) entered blocking state [ 2157.160656][T26419] bridge0: port 1(bridge_slave_0) entered disabled state [ 2157.169920][T26419] bridge_slave_0: entered allmulticast mode [ 2157.178566][T26419] bridge_slave_0: entered promiscuous mode [ 2157.276795][T26419] bridge0: port 2(bridge_slave_1) entered blocking state [ 2157.346027][T26419] bridge0: port 2(bridge_slave_1) entered disabled state [ 2157.390430][T26419] bridge_slave_1: entered allmulticast mode [ 2157.429909][T26419] bridge_slave_1: entered promiscuous mode [ 2157.689235][T26530] binder: 26529:26530 ioctl 4018620d 0 returned -22 [ 2158.012382][T26419] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2158.077653][T26419] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2158.088972][T26536] input: syz0 as /devices/virtual/input/input39 [ 2158.095284][T26536] input: failed to attach handler leds to device input39, error: -6 [ 2158.435009][T26419] team0: Port device team_slave_0 added [ 2158.487830][T26419] team0: Port device team_slave_1 added [ 2159.872375][ T29] audit: type=1326 audit(1719601252.323:1451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26545 comm="syz.3.7014" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8744b75b29 code=0x0 [ 2159.975816][T26419] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 2159.983715][T26419] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2160.011225][T26419] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 2160.064697][T26419] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 2160.103534][T26419] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2160.136664][T26419] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 2160.379731][T26419] hsr_slave_0: entered promiscuous mode [ 2160.401917][T26419] hsr_slave_1: entered promiscuous mode [ 2160.454896][ T29] audit: type=1800 audit(1719601252.913:1452): pid=26568 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.7021" name="file1" dev="sda1" ino=2119 res=0 errno=0 [ 2162.868871][ T29] audit: type=1800 audit(1719601255.323:1453): pid=26593 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.7029" name="file1" dev="sda1" ino=2131 res=0 errno=0 [ 2164.756315][ T29] audit: type=1800 audit(1719601257.213:1454): pid=26619 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.4.7039" name="file1" dev="sda1" ino=2113 res=0 errno=0 [ 2164.944248][T26419] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 2164.985629][T26419] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 2165.075611][T26419] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 2165.188027][T26419] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 2165.900960][T26419] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2165.922571][ T1251] ieee802154 phy0 wpan0: encryption failed: -22 [ 2165.929851][ T1251] ieee802154 phy1 wpan1: encryption failed: -22 [ 2166.034284][T26419] 8021q: adding VLAN 0 to HW filter on device team0 [ 2166.050574][T13237] bridge0: port 1(bridge_slave_0) entered blocking state [ 2166.057791][T13237] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2166.125350][ T5131] bridge0: port 2(bridge_slave_1) entered blocking state [ 2166.132612][ T5131] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2167.245165][T26419] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 2167.439613][T26419] veth0_vlan: entered promiscuous mode [ 2167.491043][T26419] veth1_vlan: entered promiscuous mode [ 2167.625688][T26419] veth0_macvtap: entered promiscuous mode [ 2167.662817][T26419] veth1_macvtap: entered promiscuous mode [ 2167.733108][T26419] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2167.751886][T26419] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2167.763377][T26419] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2167.783703][T26419] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2167.795428][T26419] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2167.823314][T26419] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2167.835618][T26419] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2167.863556][T26419] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2167.908341][T26419] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 2169.042646][T26419] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2169.554438][T26419] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2169.573221][T26419] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2169.584134][T26419] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2169.639484][T26419] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2169.650087][T26419] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2169.659980][T26419] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2169.670776][T26419] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2169.683969][T26419] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 2169.903204][T26419] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2169.947121][T26419] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2169.989033][T26419] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2170.006347][T26419] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2170.582995][T18623] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2170.603142][T18623] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2170.652448][ T1090] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2170.677708][ T1090] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2171.458841][T26693] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=0 sclass=netlink_tcpdiag_socket pid=26693 comm=syz.2.7067 [ 2171.536528][T26695] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 2174.050510][T26699] block device autoloading is deprecated and will be removed. [ 2174.172410][T26721] xt_NFQUEUE: number of total queues is 0 [ 2174.803708][ T29] audit: type=1800 audit(1719601266.643:1455): pid=26721 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.7071" name="file1" dev="sda1" ino=2107 res=0 errno=0 [ 2175.157106][ T784] usb 5-1: new full-speed USB device number 19 using dummy_hcd [ 2175.390218][ T784] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 2175.429621][ T784] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 255, setting to 64 [ 2175.480310][ T784] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 2175.501792][ T29] audit: type=1800 audit(1719601267.963:1456): pid=26730 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.2.7076" name="bus" dev="sda1" ino=2146 res=0 errno=0 [ 2175.528159][ T784] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 2175.560073][ T784] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 2175.594011][ T784] usb 5-1: config 0 descriptor?? [ 2175.617517][T26723] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 2176.085877][ T784] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 2176.114090][ T784] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 2176.149764][ T784] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 2176.172248][ T784] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 2176.182998][ T784] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 2176.194167][ T784] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 2176.203919][ T784] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 2176.219277][ T784] plantronics 0003:047F:FFFF.0010: No inputs registered, leaving [ 2176.264591][ T784] plantronics 0003:047F:FFFF.0010: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0 [ 2176.353601][ T784] usb 5-1: USB disconnect, device number 19 [ 2177.328105][T26758] Bluetooth: MGMT ver 1.22 [ 2179.957142][T26770] bpf: Bad value for 'context' [ 2180.294046][T26787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:aa) already exists on: batadv_slave_0 [ 2180.333857][T26787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2180.397637][T26791] Bluetooth: MGMT ver 1.22 [ 2182.476949][T16061] Bluetooth: hci0: command tx timeout [ 2184.725376][T26821] netlink: 'syz.3.7112': attribute type 9 has an invalid length. [ 2184.756306][T26821] netlink: 'syz.3.7112': attribute type 6 has an invalid length. [ 2184.967540][T26827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:aa) already exists on: batadv_slave_0 [ 2184.978361][T26827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2184.988967][T26827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:aa) already exists on: batadv_slave_0 [ 2185.006226][T26827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2185.341403][ T29] audit: type=1400 audit(1719601277.803:1457): avc: denied { write } for pid=26829 comm="syz.3.7115" name="mice" dev="devtmpfs" ino=832 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1 [ 2186.036186][ T29] audit: type=1326 audit(1719601278.493:1458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26840 comm="syz.4.7118" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1463175b29 code=0x0 [ 2186.342408][ T29] audit: type=1400 audit(1719601278.793:1459): avc: denied { sqpoll } for pid=26847 comm="syz.0.7120" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 2188.419284][T26871] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 2188.680151][ T29] audit: type=1400 audit(1719601281.143:1460): avc: denied { watch watch_reads } for pid=26879 comm="syz.2.7131" path="/proc/26879/net/rpc" dev="proc" ino=4026533371 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_rpc_t tclass=dir permissive=1 [ 2189.796181][T26894] netlink: 84 bytes leftover after parsing attributes in process `syz.3.7135'. [ 2196.567288][T26919] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 2197.489015][ T784] usb 3-1: new high-speed USB device number 22 using dummy_hcd [ 2197.689189][ T784] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 2197.774002][ T784] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 2197.817706][ T784] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 2197.859876][ T784] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 2197.941570][ T784] usb 3-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 2197.985538][ T784] usb 3-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 2198.021864][ T784] usb 3-1: Manufacturer: syz [ 2198.042973][ T784] usb 3-1: config 0 descriptor?? [ 2198.236256][ T29] audit: type=1400 audit(1719601290.673:1461): avc: denied { create } for pid=26939 comm="syz.1.7151" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 2198.380477][ T29] audit: type=1400 audit(1719601290.683:1462): avc: denied { ioctl } for pid=26939 comm="syz.1.7151" path="socket:[111578]" dev="sockfs" ino=111578 ioctlcmd=0x89e9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 2198.450542][ T29] audit: type=1400 audit(1719601290.833:1463): avc: denied { recv } for pid=26941 comm="syz.0.7150" saddr=10.128.0.169 src=48690 daddr=10.128.0.180 dest=22 netif=eth0 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1 [ 2198.649636][ T784] appleir 0003:05AC:8243.0011: unknown main item tag 0x0 [ 2198.707624][ T784] appleir 0003:05AC:8243.0011: No inputs registered, leaving [ 2198.747597][ T784] appleir 0003:05AC:8243.0011: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0 [ 2200.139655][ T784] usb 3-1: reset high-speed USB device number 22 using dummy_hcd [ 2200.238649][ T29] audit: type=1804 audit(1719601292.703:1464): pid=26960 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.4.7158" name="/root/syzkaller.b4cF5y/517/cgroup.controllers" dev="sda1" ino=2144 res=1 errno=0 [ 2201.014025][T26980] 9pnet_fd: Insufficient options for proto=fd [ 2201.036856][T20121] usb 3-1: USB disconnect, device number 22 [ 2203.481234][T27009] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22 [ 2203.536421][T27009] netdevsim netdevsim1: Direct firmware load for . failed with error -22 [ 2203.573921][T27009] netdevsim netdevsim1: Falling back to sysfs fallback for: . [ 2213.356619][T16061] Bluetooth: hci0: command tx timeout [ 2218.344235][T19976] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 2218.368367][T19976] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 2218.382364][T19976] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 2218.600038][T19976] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 2218.608759][T19976] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 2218.616687][T19976] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 2219.913010][ T2430] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2220.847342][T19976] Bluetooth: hci2: command tx timeout [ 2221.228999][T27150] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 2222.916845][T19976] Bluetooth: hci2: command tx timeout [ 2223.494711][T27158] nftables ruleset with unbound chain [ 2223.520843][ T2430] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2223.551133][ T29] audit: type=1800 audit(1719601316.013:1465): pid=27160 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.7223" name="bus" dev="sda1" ino=2151 res=0 errno=0 [ 2223.645278][ T29] audit: type=1800 audit(1719601316.053:1466): pid=27160 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.7223" name="bus" dev="sda1" ino=2151 res=0 errno=0 [ 2223.858938][ T2430] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2224.114755][ T2430] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2224.885402][T27138] chnl_net:caif_netlink_parms(): no params data found [ 2225.036876][T27139] Bluetooth: hci0: command 0x0406 tx timeout [ 2225.043002][T27139] Bluetooth: hci2: command tx timeout [ 2225.064783][ T2430] bridge_slave_1: left allmulticast mode [ 2225.070608][ T2430] bridge_slave_1: left promiscuous mode [ 2225.076777][ T2430] bridge0: port 2(bridge_slave_1) entered disabled state [ 2225.163882][ T2430] bridge_slave_0: left allmulticast mode [ 2225.182658][ T2430] bridge_slave_0: left promiscuous mode [ 2225.214040][ T2430] bridge0: port 1(bridge_slave_0) entered disabled state [ 2226.030737][T27200] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 2227.116846][T27182] Bluetooth: hci2: command tx timeout [ 2227.122444][T27182] Bluetooth: hci0: command 0x0406 tx timeout [ 2227.363204][ T1251] ieee802154 phy0 wpan0: encryption failed: -22 [ 2227.369817][ T1251] ieee802154 phy1 wpan1: encryption failed: -22 [ 2227.389476][ T2430] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2227.466607][ T2430] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2227.523238][ T2430] bond0 (unregistering): Released all slaves [ 2228.259762][ T29] audit: type=1326 audit(1719601320.713:1467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27244 comm="syz.1.7256" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3209d75b29 code=0x0 [ 2228.543683][ T29] audit: type=1804 audit(1719601320.833:1468): pid=27251 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.7254" name="/root/syzkaller.wNaHE8/474/bus" dev="sda1" ino=2150 res=1 errno=0 [ 2229.706807][T27138] bridge0: port 1(bridge_slave_0) entered blocking state [ 2230.176849][T27138] bridge0: port 1(bridge_slave_0) entered disabled state [ 2230.184162][T27138] bridge_slave_0: entered allmulticast mode [ 2230.228946][T27138] bridge_slave_0: entered promiscuous mode [ 2230.388395][T27138] bridge0: port 2(bridge_slave_1) entered blocking state [ 2230.395892][T27138] bridge0: port 2(bridge_slave_1) entered disabled state [ 2230.405634][T27138] bridge_slave_1: entered allmulticast mode [ 2230.414025][T27138] bridge_slave_1: entered promiscuous mode [ 2230.424156][T27229] debugfs: Directory '!U' with parent 'ieee80211' already present! [ 2230.715822][ T2430] hsr_slave_0: left promiscuous mode [ 2230.741546][ T2430] hsr_slave_1: left promiscuous mode [ 2230.758929][ T2430] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 2230.777920][ T2430] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 2230.798318][ T2430] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 2230.805775][ T2430] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 2230.842063][T27265] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7261'. [ 2230.884627][ T2430] veth1_macvtap: left promiscuous mode [ 2230.890620][ T2430] veth0_macvtap: left promiscuous mode [ 2230.896913][ T2430] veth1_vlan: left promiscuous mode [ 2230.903248][ T2430] veth0_vlan: left promiscuous mode [ 2234.095544][ T29] audit: type=1804 audit(1719601326.553:1469): pid=27294 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.7270" name="/root/syzkaller.RBZmGv/171/bus" dev="sda1" ino=2151 res=1 errno=0 [ 2234.727718][ T2430] team0 (unregistering): Port device team_slave_1 removed [ 2235.025628][ T2430] team0 (unregistering): Port device team_slave_0 removed [ 2236.292491][T27138] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2236.303157][T27269] netlink: 'syz.0.7263': attribute type 25 has an invalid length. [ 2236.325860][T27269] netlink: 'syz.0.7263': attribute type 8 has an invalid length. [ 2236.368613][T27301] sysfs: cannot create duplicate filename '/class/ieee80211/!U' [ 2236.396415][T27301] CPU: 1 PID: 27301 Comm: syz.4.7273 Not tainted 6.10.0-rc5-syzkaller-00200-g5bbd9b249880 #0 [ 2236.406629][T27301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 2236.416715][T27301] Call Trace: [ 2236.420023][T27301] [ 2236.422982][T27301] dump_stack_lvl+0x16c/0x1f0 [ 2236.427756][T27301] sysfs_warn_dup+0x7f/0xa0 [ 2236.432353][T27301] sysfs_do_create_link_sd+0x124/0x140 [ 2236.437968][T27301] sysfs_create_link+0x61/0xc0 [ 2236.442798][T27301] device_add+0x62e/0x1a70 [ 2236.447289][T27301] ? __pfx_device_add+0x10/0x10 [ 2236.452216][T27301] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 2236.458213][T27301] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 2236.464284][T27301] wiphy_register+0x2101/0x2d00 [ 2236.469192][T27301] ? __pfx_wiphy_register+0x10/0x10 [ 2236.474470][T27301] ieee80211_register_hw+0x2683/0x43b0 [ 2236.480001][T27301] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 2236.485889][T27301] ? lockdep_init_map_type+0x16d/0x7d0 [ 2236.491439][T27301] ? __asan_memset+0x23/0x50 [ 2236.496109][T27301] ? __hrtimer_init+0x106/0x2c0 [ 2236.501005][T27301] mac80211_hwsim_new_radio+0x22f6/0x4e50 [ 2236.506790][T27301] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 2236.512913][T27301] ? hwsim_new_radio_nl+0x9b6/0x1240 [ 2236.518242][T27301] ? __asan_memcpy+0x3c/0x60 [ 2236.522878][T27301] hwsim_new_radio_nl+0xaf9/0x1240 [ 2236.528028][T27301] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 2236.533620][T27301] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 2236.541052][T27301] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 2236.548485][T27301] genl_family_rcv_msg_doit+0x202/0x2f0 [ 2236.554083][T27301] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 2236.560206][T27301] ? ns_capable+0xd7/0x110 [ 2236.564648][T27301] genl_rcv_msg+0x565/0x800 [ 2236.569190][T27301] ? __pfx_genl_rcv_msg+0x10/0x10 [ 2236.574266][T27301] ? __pfx___lock_acquire+0x10/0x10 [ 2236.579539][T27301] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 2236.585132][T27301] netlink_rcv_skb+0x16b/0x440 [ 2236.589939][T27301] ? __pfx_genl_rcv_msg+0x10/0x10 [ 2236.594999][T27301] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 2236.600338][T27301] ? down_read+0xc9/0x330 [ 2236.604706][T27301] ? __pfx_down_read+0x10/0x10 [ 2236.609511][T27301] ? netlink_deliver_tap+0x1ae/0xd90 [ 2236.614844][T27301] genl_rcv+0x28/0x40 [ 2236.618871][T27301] netlink_unicast+0x542/0x820 [ 2236.623680][T27301] ? __pfx_netlink_unicast+0x10/0x10 [ 2236.629010][T27301] netlink_sendmsg+0x8b8/0xd70 [ 2236.633850][T27301] ? __pfx_netlink_sendmsg+0x10/0x10 [ 2236.639179][T27301] ? __import_iovec+0x1fd/0x6e0 [ 2236.644068][T27301] ____sys_sendmsg+0xab5/0xc90 [ 2236.648862][T27301] ? copy_msghdr_from_user+0x10b/0x160 [ 2236.654381][T27301] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2236.659697][T27301] ? __pfx___futex_wait+0x10/0x10 [ 2236.664750][T27301] ? __pfx___lock_acquire+0x10/0x10 [ 2236.670001][T27301] ___sys_sendmsg+0x135/0x1e0 [ 2236.674722][T27301] ? __pfx____sys_sendmsg+0x10/0x10 [ 2236.679976][T27301] ? __fget_light+0x173/0x210 [ 2236.684699][T27301] __sys_sendmsg+0x117/0x1f0 [ 2236.689337][T27301] ? __pfx___sys_sendmsg+0x10/0x10 [ 2236.694490][T27301] ? __x64_sys_futex+0x1e1/0x4c0 [ 2236.699473][T27301] do_syscall_64+0xcd/0x250 [ 2236.704020][T27301] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2236.709964][T27301] RIP: 0033:0x7f1463175b29 [ 2236.714399][T27301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2236.734045][T27301] RSP: 002b:00007f1463e74048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2236.742487][T27301] RAX: ffffffffffffffda RBX: 00007f1463304070 RCX: 00007f1463175b29 [ 2236.750471][T27301] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000006 [ 2236.758455][T27301] RBP: 00007f14631f6756 R08: 0000000000000000 R09: 0000000000000000 [ 2236.766533][T27301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2236.774520][T27301] R13: 000000000000006e R14: 00007f1463304070 R15: 00007ffc4672ae48 [ 2236.782524][T27301] [ 2236.785627][ C1] vkms_vblank_simulate: vblank timer overrun [ 2237.005953][T27138] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2238.378477][ T29] audit: type=1400 audit(1719601330.843:1470): avc: denied { write } for pid=27327 comm="syz.0.7282" name="nvram" dev="devtmpfs" ino=625 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1 [ 2238.401719][ C1] vkms_vblank_simulate: vblank timer overrun [ 2238.499371][T27138] team0: Port device team_slave_0 added [ 2238.532695][T27138] team0: Port device team_slave_1 added [ 2238.701519][T27138] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 2239.038378][T27138] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2239.064324][ C1] vkms_vblank_simulate: vblank timer overrun [ 2239.546369][T27138] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 2239.569656][T27138] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 2239.586194][T27138] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2239.634084][T27138] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 2239.977157][T27138] hsr_slave_0: entered promiscuous mode [ 2239.985433][T27138] hsr_slave_1: entered promiscuous mode [ 2240.278335][T27358] 9pnet: p9_errstr2errno: server reported unknown error œæçâ̼§6 [ 2241.937160][T27138] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 2242.033659][T27138] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 2242.751037][T27138] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 2242.805650][T27138] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 2243.377404][T27138] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2243.564836][T27138] 8021q: adding VLAN 0 to HW filter on device team0 [ 2243.649768][ T5130] bridge0: port 1(bridge_slave_0) entered blocking state [ 2243.657078][ T5130] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2243.709170][ T5130] bridge0: port 2(bridge_slave_1) entered blocking state [ 2243.716540][ T5130] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2243.734395][T27403] netlink: 191416 bytes leftover after parsing attributes in process `syz.4.7310'. [ 2243.967308][ T29] audit: type=1326 audit(1719601336.423:1471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27396 comm="syz.1.7307" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3209d75b29 code=0x0 [ 2245.790161][T27138] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 2245.977215][T27138] veth0_vlan: entered promiscuous mode [ 2246.040667][T27138] veth1_vlan: entered promiscuous mode [ 2246.158236][T27138] veth0_macvtap: entered promiscuous mode [ 2246.188552][T27138] veth1_macvtap: entered promiscuous mode [ 2246.316613][T27138] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2246.355484][T27138] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2246.424251][T27138] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 2246.465439][T27138] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2246.510438][T27138] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 2246.562543][T27138] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2246.603986][T27138] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2246.664506][T27138] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2246.687446][T27138] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2246.726055][T27138] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2246.761998][T27138] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2246.816589][T27138] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 2246.857726][T27138] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2246.922667][T27138] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 2247.012008][T27138] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2247.032293][T27138] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2247.062293][T27138] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2247.082443][T27138] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2249.678621][ T1090] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2249.697059][ T1090] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2249.825794][ T5498] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2249.843118][ T5498] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2251.538101][ T29] audit: type=1326 audit(1719601343.983:1472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27464 comm="syz.1.7330" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3209d75b29 code=0x0 [ 2254.380700][T27489] netlink: 'syz.4.7337': attribute type 3 has an invalid length. [ 2254.407793][T27489] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.7337'. [ 2255.134643][T27505] EXT4-fs warning (device sda1): __ext4_ioctl:1257: Setting inode version is not supported with metadata_csum enabled. [ 2256.045687][T27516] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 2256.485636][T27527] netlink: 'syz.0.7350': attribute type 3 has an invalid length. [ 2256.507066][T27527] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.7350'. [ 2256.919036][T27536] input: syz1 as /devices/virtual/input/input41 [ 2258.432603][T27563] netlink: 'syz.0.7363': attribute type 3 has an invalid length. [ 2258.461544][T27563] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.7363'. [ 2261.260091][ T29] audit: type=1400 audit(1719601351.723:1473): avc: denied { relabelfrom } for pid=27578 comm="syz.0.7371" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1 [ 2262.259066][T27575] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 2262.456298][ T29] audit: type=1400 audit(1719601351.723:1474): avc: denied { relabelto } for pid=27578 comm="syz.0.7371" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1 [ 2262.727691][T27599] 9pnet_fd: Insufficient options for proto=fd [ 2262.803803][T27602] xt_NFQUEUE: number of total queues is 0 [ 2263.252108][ T29] audit: type=1800 audit(1719601355.273:1475): pid=27602 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.7375" name="file1" dev="sda1" ino=2150 res=0 errno=0 [ 2266.230881][T27619] hub 9-0:1.0: USB hub found [ 2266.355575][T27619] hub 9-0:1.0: 8 ports detected [ 2269.589768][T27684] debugfs: Directory '!U' with parent 'ieee80211' already present! [ 2270.452160][T27709] netlink: 'syz.4.7411': attribute type 9 has an invalid length. [ 2270.460214][T27709] netlink: 'syz.4.7411': attribute type 6 has an invalid length. [ 2271.885744][ T29] audit: type=1400 audit(1719601364.323:1476): avc: denied { append } for pid=27729 comm="syz.0.7420" name="card0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 2272.070541][T27745] sysfs: cannot create duplicate filename '/class/ieee80211/!U' [ 2272.123516][T27745] CPU: 1 PID: 27745 Comm: syz.4.7424 Not tainted 6.10.0-rc5-syzkaller-00200-g5bbd9b249880 #0 [ 2272.133817][T27745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 2272.143986][T27745] Call Trace: [ 2272.147278][T27745] [ 2272.150227][T27745] dump_stack_lvl+0x16c/0x1f0 [ 2272.154930][T27745] sysfs_warn_dup+0x7f/0xa0 [ 2272.159463][T27745] sysfs_do_create_link_sd+0x124/0x140 [ 2272.164952][T27745] sysfs_create_link+0x61/0xc0 [ 2272.169749][T27745] device_add+0x62e/0x1a70 [ 2272.174232][T27745] ? __pfx_device_add+0x10/0x10 [ 2272.179132][T27745] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 2272.185049][T27745] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 2272.191067][T27745] wiphy_register+0x2101/0x2d00 [ 2272.195945][T27745] ? __pfx_wiphy_register+0x10/0x10 [ 2272.201170][T27745] ieee80211_register_hw+0x2683/0x43b0 [ 2272.206664][T27745] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 2272.212536][T27745] ? lockdep_init_map_type+0x16d/0x7d0 [ 2272.218035][T27745] ? __asan_memset+0x23/0x50 [ 2272.222656][T27745] ? __hrtimer_init+0x106/0x2c0 [ 2272.227529][T27745] mac80211_hwsim_new_radio+0x22f6/0x4e50 [ 2272.233292][T27745] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 2272.239413][T27745] ? hwsim_new_radio_nl+0x9b6/0x1240 [ 2272.244728][T27745] ? __asan_memcpy+0x3c/0x60 [ 2272.249356][T27745] hwsim_new_radio_nl+0xaf9/0x1240 [ 2272.254530][T27745] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 2272.260141][T27745] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 2272.267548][T27745] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 2272.274955][T27745] genl_family_rcv_msg_doit+0x202/0x2f0 [ 2272.280533][T27745] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 2272.286642][T27745] ? ns_capable+0xd7/0x110 [ 2272.291081][T27745] genl_rcv_msg+0x565/0x800 [ 2272.295619][T27745] ? __pfx_genl_rcv_msg+0x10/0x10 [ 2272.300678][T27745] ? __pfx___lock_acquire+0x10/0x10 [ 2272.305931][T27745] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 2272.311508][T27745] netlink_rcv_skb+0x16b/0x440 [ 2272.316298][T27745] ? __pfx_genl_rcv_msg+0x10/0x10 [ 2272.321356][T27745] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 2272.326676][T27745] ? down_read+0xc9/0x330 [ 2272.331036][T27745] ? __pfx_down_read+0x10/0x10 [ 2272.335832][T27745] ? netlink_deliver_tap+0x1ae/0xd90 [ 2272.341169][T27745] genl_rcv+0x28/0x40 [ 2272.345195][T27745] netlink_unicast+0x542/0x820 [ 2272.349992][T27745] ? __pfx_netlink_unicast+0x10/0x10 [ 2272.355317][T27745] netlink_sendmsg+0x8b8/0xd70 [ 2272.360112][T27745] ? __pfx_netlink_sendmsg+0x10/0x10 [ 2272.365433][T27745] ? __import_iovec+0x1fd/0x6e0 [ 2272.370321][T27745] ____sys_sendmsg+0xab5/0xc90 [ 2272.375109][T27745] ? copy_msghdr_from_user+0x10b/0x160 [ 2272.380623][T27745] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2272.385932][T27745] ? __pfx___futex_wait+0x10/0x10 [ 2272.390979][T27745] ? __pfx___lock_acquire+0x10/0x10 [ 2272.396221][T27745] ___sys_sendmsg+0x135/0x1e0 [ 2272.400930][T27745] ? __pfx____sys_sendmsg+0x10/0x10 [ 2272.406167][T27745] ? __fget_light+0x173/0x210 [ 2272.410873][T27745] __sys_sendmsg+0x117/0x1f0 [ 2272.415493][T27745] ? __pfx___sys_sendmsg+0x10/0x10 [ 2272.420642][T27745] ? __x64_sys_futex+0x1e1/0x4c0 [ 2272.425625][T27745] do_syscall_64+0xcd/0x250 [ 2272.430167][T27745] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2272.436383][T27745] RIP: 0033:0x7f1463175b29 [ 2272.440815][T27745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2272.460530][T27745] RSP: 002b:00007f1463e74048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2272.469012][T27745] RAX: ffffffffffffffda RBX: 00007f1463304070 RCX: 00007f1463175b29 [ 2272.477017][T27745] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000006 [ 2272.485007][T27745] RBP: 00007f14631f6756 R08: 0000000000000000 R09: 0000000000000000 [ 2272.493018][T27745] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2272.501051][T27745] R13: 000000000000006e R14: 00007f1463304070 R15: 00007ffc4672ae48 [ 2272.509070][T27745] [ 2272.695074][ T29] audit: type=1800 audit(1719601365.153:1477): pid=27750 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.7427" name="file1" dev="sda1" ino=2151 res=0 errno=0 [ 2273.360822][ T29] audit: type=1800 audit(1719601365.793:1478): pid=27765 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.2.7433" name="file1" dev="sda1" ino=2122 res=0 errno=0 [ 2273.516518][T27182] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 2273.527554][T27182] Bluetooth: hci2: Injecting HCI hardware error event [ 2273.537945][T16061] Bluetooth: hci2: hardware error 0x00 [ 2275.143927][T27775] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 2275.676247][T16061] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 2277.036319][T27795] sysfs: cannot create duplicate filename '/class/ieee80211/!U' [ 2277.044079][T27795] CPU: 1 PID: 27795 Comm: syz.3.7441 Not tainted 6.10.0-rc5-syzkaller-00200-g5bbd9b249880 #0 [ 2277.054285][T27795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 2277.064345][T27795] Call Trace: [ 2277.067629][T27795] [ 2277.070565][T27795] dump_stack_lvl+0x16c/0x1f0 [ 2277.075257][T27795] sysfs_warn_dup+0x7f/0xa0 [ 2277.079799][T27795] sysfs_do_create_link_sd+0x124/0x140 [ 2277.085277][T27795] sysfs_create_link+0x61/0xc0 [ 2277.090069][T27795] device_add+0x62e/0x1a70 [ 2277.094522][T27795] ? __pfx_device_add+0x10/0x10 [ 2277.099411][T27795] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 2277.105319][T27795] ? ieee80211_set_bitrate_flags+0x249/0x6a0 [ 2277.111329][T27795] wiphy_register+0x2101/0x2d00 [ 2277.116202][T27795] ? __pfx_wiphy_register+0x10/0x10 [ 2277.121440][T27795] ieee80211_register_hw+0x2683/0x43b0 [ 2277.126929][T27795] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 2277.132781][T27795] ? __asan_memset+0x23/0x50 [ 2277.137422][T27795] ? __hrtimer_init+0x106/0x2c0 [ 2277.142292][T27795] mac80211_hwsim_new_radio+0x22f6/0x4e50 [ 2277.148054][T27795] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 2277.154149][T27795] ? hwsim_new_radio_nl+0x9b6/0x1240 [ 2277.159473][T27795] ? __asan_memcpy+0x3c/0x60 [ 2277.164191][T27795] hwsim_new_radio_nl+0xaf9/0x1240 [ 2277.169343][T27795] ? mark_held_locks+0x9f/0xe0 [ 2277.174158][T27795] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 2277.179850][T27795] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 2277.185441][T27795] genl_family_rcv_msg_doit+0x202/0x2f0 [ 2277.191012][T27795] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 2277.197107][T27795] ? ns_capable+0xd7/0x110 [ 2277.201540][T27795] genl_rcv_msg+0x565/0x800 [ 2277.206075][T27795] ? __pfx_genl_rcv_msg+0x10/0x10 [ 2277.211138][T27795] ? __pfx___lock_acquire+0x10/0x10 [ 2277.216375][T27795] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 2277.221966][T27795] netlink_rcv_skb+0x16b/0x440 [ 2277.226753][T27795] ? __pfx_genl_rcv_msg+0x10/0x10 [ 2277.231803][T27795] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 2277.237119][T27795] ? down_read+0xc9/0x330 [ 2277.241477][T27795] ? __pfx_down_read+0x10/0x10 [ 2277.246293][T27795] ? netlink_deliver_tap+0x1ae/0xd90 [ 2277.251633][T27795] genl_rcv+0x28/0x40 [ 2277.255635][T27795] netlink_unicast+0x542/0x820 [ 2277.260439][T27795] ? __pfx_netlink_unicast+0x10/0x10 [ 2277.265759][T27795] netlink_sendmsg+0x8b8/0xd70 [ 2277.270544][T27795] ? __pfx_netlink_sendmsg+0x10/0x10 [ 2277.275852][T27795] ? __import_iovec+0x1fd/0x6e0 [ 2277.280722][T27795] ____sys_sendmsg+0xab5/0xc90 [ 2277.285501][T27795] ? copy_msghdr_from_user+0x10b/0x160 [ 2277.290990][T27795] ? __pfx_____sys_sendmsg+0x10/0x10 [ 2277.296292][T27795] ? __pfx___futex_wait+0x10/0x10 [ 2277.301328][T27795] ? __pfx___lock_acquire+0x10/0x10 [ 2277.306558][T27795] ? try_to_wake_up+0xc08/0x13e0 [ 2277.311514][T27795] ___sys_sendmsg+0x135/0x1e0 [ 2277.316207][T27795] ? __pfx____sys_sendmsg+0x10/0x10 [ 2277.321435][T27795] ? __fget_light+0x173/0x210 [ 2277.326142][T27795] __sys_sendmsg+0x117/0x1f0 [ 2277.330754][T27795] ? __pfx___sys_sendmsg+0x10/0x10 [ 2277.335887][T27795] ? __x64_sys_futex+0x1e1/0x4c0 [ 2277.340865][T27795] do_syscall_64+0xcd/0x250 [ 2277.345400][T27795] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2277.351325][T27795] RIP: 0033:0x7f8744b75b29 [ 2277.355748][T27795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2277.375367][T27795] RSP: 002b:00007f8745921048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2277.383794][T27795] RAX: ffffffffffffffda RBX: 00007f8744d04070 RCX: 00007f8744b75b29 [ 2277.391777][T27795] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000006 [ 2277.399756][T27795] RBP: 00007f8744bf6756 R08: 0000000000000000 R09: 0000000000000000 [ 2277.407753][T27795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2277.415725][T27795] R13: 000000000000006e R14: 00007f8744d04070 R15: 00007fff84bdf718 [ 2277.423709][T27795] [ 2277.958997][T27804] hub 9-0:1.0: USB hub found [ 2277.989066][T27804] hub 9-0:1.0: 8 ports detected [ 2281.123245][ T29] audit: type=1804 audit(1719601373.583:1479): pid=27834 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.4.7456" name="/root/syzkaller.b4cF5y/584/cgroup.controllers" dev="sda1" ino=2155 res=1 errno=0 [ 2281.531740][T27842] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7458'. [ 2284.721110][T27845] xt_NFQUEUE: number of total queues is 0 [ 2285.667979][ T29] audit: type=1800 audit(1719601377.203:1480): pid=27845 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.4.7457" name="file1" dev="sda1" ino=2156 res=0 errno=0 [ 2391.826049][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 2391.833085][ C0] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P663/1:b..l [ 2391.841901][ C0] rcu: (detected by 0, t=10502 jiffies, g=215261, q=290 ncpus=2) [ 2391.849777][ C0] task:kworker/u8:5 state:R running task stack:23248 pid:663 tgid:663 ppid:2 flags:0x00004000 [ 2391.863501][ C0] Workqueue: bat_events batadv_mcast_mla_update [ 2391.869832][ C0] Call Trace: [ 2391.873173][ C0] [ 2391.876140][ C0] __schedule+0xf15/0x5d00 [ 2391.880610][ C0] ? hlock_class+0x4e/0x130 [ 2391.885185][ C0] ? __pfx_mark_lock+0x10/0x10 [ 2391.890021][ C0] ? __pfx___schedule+0x10/0x10 [ 2391.894924][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 2391.900188][ C0] ? mark_held_locks+0x9f/0xe0 [ 2391.905017][ C0] preempt_schedule_irq+0x51/0x90 [ 2391.910104][ C0] irqentry_exit+0x36/0x90 [ 2391.914572][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 2391.920708][ C0] RIP: 0010:batadv_mcast_mla_update+0x506/0x3200 [ 2391.927104][ C0] Code: 85 3c 29 00 00 4d 8b 6d 00 49 81 fd e0 3c ed 94 0f 84 00 01 00 00 e8 e9 e8 e2 f6 49 8d 7d 10 48 89 f8 48 c1 e8 03 0f b6 04 18 <84> c0 74 06 0f 8e 33 29 00 00 45 0f b6 75 10 bf 03 00 00 00 44 89 [ 2391.946761][ C0] RSP: 0018:ffffc9000377fb28 EFLAGS: 00000a02 [ 2391.952870][ C0] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: ffffffff8aaafd32 [ 2391.960969][ C0] RDX: ffff88801fcfbc00 RSI: ffffffff8aaafd07 RDI: ffff8880665b0810 [ 2391.968982][ C0] RBP: ffffed100fef1995 R08: 0000000000000001 R09: 0000000000000003 [ 2391.977012][ C0] R10: 0000000000000000 R11: ffffffff8aaafc5f R12: 0000000000000000 [ 2391.985029][ C0] R13: ffff8880665b0800 R14: 0000000000000000 R15: ffff88807f78d650 [ 2391.993052][ C0] ? batadv_mcast_mla_update+0x44f/0x3200 [ 2391.998872][ C0] ? batadv_mcast_mla_update+0x522/0x3200 [ 2392.004657][ C0] ? batadv_mcast_mla_update+0x4f7/0x3200 [ 2392.010442][ C0] ? batadv_mcast_mla_update+0x4f7/0x3200 [ 2392.016240][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 2392.021506][ C0] ? __pfx_batadv_mcast_mla_update+0x10/0x10 [ 2392.027551][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 2392.032632][ C0] ? __pfx_lock_release+0x10/0x10 [ 2392.037736][ C0] process_one_work+0x9c5/0x1b40 [ 2392.042719][ C0] ? __pfx_batadv_nc_worker+0x10/0x10 [ 2392.048124][ C0] ? __pfx_process_one_work+0x10/0x10 [ 2392.053538][ C0] ? assign_work+0x1a0/0x250 [ 2392.058199][ C0] worker_thread+0x6c8/0xf30 [ 2392.062827][ C0] ? __kthread_parkme+0x148/0x220 [ 2392.067900][ C0] ? __pfx_worker_thread+0x10/0x10 [ 2392.073072][ C0] kthread+0x2c1/0x3a0 [ 2392.077206][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 2392.082444][ C0] ? __pfx_kthread+0x10/0x10 [ 2392.087078][ C0] ret_from_fork+0x45/0x80 [ 2392.091559][ C0] ? __pfx_kthread+0x10/0x10 [ 2392.096191][ C0] ret_from_fork_asm+0x1a/0x30 [ 2392.101187][ C0] [ 2392.104245][ C0] rcu: rcu_preempt kthread starved for 9534 jiffies! g215261 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 2392.115492][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 2392.125490][ C0] rcu: RCU grace-period kthread stack dump: [ 2392.131401][ C0] task:rcu_preempt state:R running task stack:27584 pid:17 tgid:17 ppid:2 flags:0x00004000 [ 2392.143214][ C0] Call Trace: [ 2392.146523][ C0] [ 2392.149506][ C0] __schedule+0xf15/0x5d00 [ 2392.153987][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 2392.159263][ C0] ? __pfx___schedule+0x10/0x10 [ 2392.164159][ C0] ? schedule+0x298/0x350 [ 2392.168539][ C0] ? __pfx_lock_release+0x10/0x10 [ 2392.173628][ C0] ? __pfx___mod_timer+0x10/0x10 [ 2392.178633][ C0] ? lock_acquire+0x1b1/0x560 [ 2392.183359][ C0] ? lockdep_init_map_type+0x16d/0x7d0 [ 2392.188882][ C0] schedule+0xe7/0x350 [ 2392.192986][ C0] schedule_timeout+0x136/0x2a0 [ 2392.197900][ C0] ? __pfx_schedule_timeout+0x10/0x10 [ 2392.203340][ C0] ? __pfx_process_timeout+0x10/0x10 [ 2392.208683][ C0] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 2392.214530][ C0] ? prepare_to_swait_event+0xf0/0x470 [ 2392.220057][ C0] rcu_gp_fqs_loop+0x1eb/0xb00 [ 2392.224884][ C0] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 2392.230228][ C0] ? _raw_spin_unlock_irq+0x2e/0x50 [ 2392.235512][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 2392.241368][ C0] rcu_gp_kthread+0x271/0x380 [ 2392.246107][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 2392.251379][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 2392.256732][ C0] ? __kthread_parkme+0x148/0x220 [ 2392.261803][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 2392.267068][ C0] kthread+0x2c1/0x3a0 [ 2392.271182][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 2392.276424][ C0] ? __pfx_kthread+0x10/0x10 [ 2392.281093][ C0] ret_from_fork+0x45/0x80 [ 2392.285601][ C0] ? __pfx_kthread+0x10/0x10 [ 2392.290238][ C0] ret_from_fork_asm+0x1a/0x30 [ 2392.295064][ C0] [ 2392.298110][ C0] rcu: Stack dump where RCU GP kthread last ran: [ 2392.304465][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.10.0-rc5-syzkaller-00200-g5bbd9b249880 #0 [ 2392.314221][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 2392.324320][ C0] RIP: 0010:acpi_safe_halt+0x1a/0x20 [ 2392.329683][ C0] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 65 48 8b 05 38 53 1c 75 48 8b 00 a8 08 75 0c 66 90 0f 00 2d 08 b1 b3 00 fb f4 c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 2392.349370][ C0] RSP: 0018:ffffffff8d807d70 EFLAGS: 00000246 [ 2392.355480][ C0] RAX: 0000000000004000 RBX: 0000000000000001 RCX: ffffffff8ae768e9 [ 2392.363583][ C0] RDX: 0000000000000001 RSI: ffff888019aab000 RDI: ffff888019aab064 [ 2392.371608][ C0] RBP: ffff888019aab064 R08: 0000000000000001 R09: ffffed1017246fdd [ 2392.379620][ C0] R10: ffff8880b9237eeb R11: 0000000000000000 R12: ffff888019736800 [ 2392.387640][ C0] R13: ffffffff8e742ce0 R14: 0000000000000000 R15: 0000000000000000 [ 2392.395652][ C0] FS: 0000000000000000(0000) GS:ffff8880b9200000(0000) knlGS:0000000000000000 [ 2392.404646][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2392.411362][ C0] CR2: 00007fe6598329ca CR3: 000000007aae0000 CR4: 00000000003506f0 [ 2392.419563][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2392.427570][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2392.435588][ C0] Call Trace: [ 2392.438899][ C0] [ 2392.441777][ C0] ? show_regs+0x8c/0xa0 [ 2392.446092][ C0] ? rcu_check_gp_kthread_starvation+0x31b/0x450 [ 2392.452474][ C0] ? do_raw_spin_unlock+0x172/0x230 [ 2392.457727][ C0] ? rcu_sched_clock_irq+0x22a2/0x3100 [ 2392.463266][ C0] ? __pfx_lock_release+0x10/0x10 [ 2392.468372][ C0] ? __pfx_rcu_sched_clock_irq+0x10/0x10 [ 2392.474096][ C0] ? __asan_memcpy+0x3c/0x60 [ 2392.478751][ C0] ? update_process_times+0x175/0x220 [ 2392.484171][ C0] ? __pfx_update_process_times+0x10/0x10 [ 2392.489939][ C0] ? __pfx_tick_nohz_handler+0x10/0x10 [ 2392.495450][ C0] ? update_wall_time+0x1c/0x40 [ 2392.500356][ C0] ? tick_nohz_handler+0x376/0x530 [ 2392.505524][ C0] ? __pfx_tick_nohz_handler+0x10/0x10 [ 2392.511038][ C0] ? __hrtimer_run_queues+0x657/0xcc0 [ 2392.516459][ C0] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 2392.522226][ C0] ? ktime_get_update_offsets_now+0x201/0x310 [ 2392.528358][ C0] ? hrtimer_interrupt+0x31b/0x800 [ 2392.533529][ C0] ? __sysvec_apic_timer_interrupt+0x10f/0x450 [ 2392.539792][ C0] ? sysvec_apic_timer_interrupt+0x90/0xb0 [ 2392.545675][ C0] [ 2392.548637][ C0] [ 2392.551595][ C0] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 2392.557820][ C0] ? ct_kernel_exit+0x139/0x190 [ 2392.562732][ C0] ? acpi_safe_halt+0x1a/0x20 [ 2392.567466][ C0] acpi_idle_enter+0xc5/0x160 [ 2392.572204][ C0] cpuidle_enter_state+0x85/0x500 [ 2392.577285][ C0] ? __pfx_tsc_verify_tsc_adjust+0x10/0x10 [ 2392.583171][ C0] cpuidle_enter+0x4e/0xa0 [ 2392.587652][ C0] do_idle+0x313/0x3f0 [ 2392.591793][ C0] ? __pfx_do_idle+0x10/0x10 [ 2392.596446][ C0] cpu_startup_entry+0x4f/0x60 [ 2392.601262][ C0] rest_init+0x16b/0x2b0 [ 2392.605569][ C0] ? acpi_subsystem_init+0x133/0x180 [ 2392.610936][ C0] ? __pfx_x86_late_time_init+0x10/0x10 [ 2392.616542][ C0] start_kernel+0x3df/0x4c0 [ 2392.621094][ C0] x86_64_start_reservations+0x18/0x30 [ 2392.626611][ C0] x86_64_start_kernel+0xb2/0xc0 [ 2392.631602][ C0] common_startup_64+0x13e/0x148 [ 2392.636606][ C0]