last executing test programs: 6.916222289s ago: executing program 3 (id=5093): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = openat$ttynull(0xffffffffffffff9c, &(0x7f00000008c0), 0x40000, 0x0) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) ioctl$TCSETSF2(r2, 0x402c542d, 0x0) 6.704484046s ago: executing program 3 (id=5097): rt_sigaction(0xd, 0x0, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003780)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(&(0x7f0000000140)='./bus\x00') mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0) 6.560775068s ago: executing program 3 (id=5099): r0 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$inet6(r0, &(0x7f0000000200)={0xa, 0x4e23, 0xe9db8df3, @local, 0x2002}, 0x1c) setsockopt$sock_linger(r0, 0x1, 0x3e, &(0x7f0000000180)={0x200000000000001}, 0x8) 6.428635559s ago: executing program 3 (id=5101): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003780)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r5, 0x0) r6 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_RX_RING(r6, 0x11b, 0x2, &(0x7f0000000040)=0x20, 0x4) 6.427812825s ago: executing program 4 (id=5102): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e20, @multicast2}, 0x10) 6.072225094s ago: executing program 4 (id=5104): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = userfaultfd(0x80801) r3 = userfaultfd(0x801) ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x280}) ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2}) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000300)) ioctl$UFFDIO_COPY(r2, 0xc028aa03, &(0x7f0000000000)={&(0x7f00002b9000/0x400000)=nil, &(0x7f0000779000/0x1000)=nil, 0x400000, 0x3, 0x2}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x6a855000) 4.743255531s ago: executing program 4 (id=5113): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r2 = add_key$user(&(0x7f0000000040), &(0x7f00000001c0)={'syz', 0x0}, &(0x7f0000000100)='8', 0x1, 0xffffffffffffffff) keyctl$read(0xb, r2, &(0x7f0000000280)=""/130, 0x1001) 4.520026534s ago: executing program 4 (id=5116): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, 0x0, 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) 4.337440035s ago: executing program 4 (id=5119): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000080)={'veth0_vlan\x00', &(0x7f0000000040)=@ethtool_sfeatures={0x3b, 0x2, [{0x9, 0xfff}, {0xd8, 0x8}]}}) 3.31232159s ago: executing program 3 (id=5127): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, &(0x7f0000000080)=0x3300, 0x4) 2.442197127s ago: executing program 0 (id=5136): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r2 = fsopen(&(0x7f0000000240)='ramfs\x00', 0x1) fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0) r3 = fsmount(r2, 0x0, 0x0) fchdir(r3) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r4, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r4, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) 2.278276523s ago: executing program 0 (id=5137): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, 0x0) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet6(0xa, 0x2, 0x0) sendmmsg$inet6(r6, &(0x7f000000a1c0)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0xe0, @local, 0x7}, 0x1c, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='$\x00'], 0x28}}], 0x1, 0x81) 2.19567183s ago: executing program 1 (id=5138): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$uinput_user_dev(r5, 0x0, 0x0) 2.051075657s ago: executing program 0 (id=5140): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) close_range(r2, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='pids.events\x00', 0x275a, 0x0) write$UHID_CREATE2(r3, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r3, 0x0) creat(&(0x7f0000000380)='./bus\x00', 0xbc) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r5, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r5, @ANYRES64=r4], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r5, 0x0) ioctl$KVM_X86_SETUP_MCE(r5, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet6(0xa, 0x800000000000002, 0x0) setsockopt$sock_linger(r6, 0x1, 0x3e, &(0x7f0000000180)={0x200000000000001}, 0x8) 1.978114783s ago: executing program 3 (id=5141): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x28100, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) 1.887757262s ago: executing program 0 (id=5143): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0), 0x4b301, 0x0) write(r2, 0x0, 0x0) 1.68819877s ago: executing program 0 (id=5145): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$packet(0x11, 0x2, 0x300) getsockopt$packet_int(r3, 0x107, 0x18, 0x0, &(0x7f0000000040)) 1.510889079s ago: executing program 0 (id=5146): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r0, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r0, @ANYRES64], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r1, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, 0x0) 1.136258366s ago: executing program 4 (id=5148): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) unshare(0x22020600) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) unshare(0x60000600) 1.117819471s ago: executing program 2 (id=5149): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) process_madvise(0xffffffffffffffff, 0x0, 0x0, 0x11, 0xfdff) 944.761014ms ago: executing program 2 (id=5150): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$unix(0x1, 0x2, 0x0) bind$unix(r2, &(0x7f0000000100)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) sendmsg$unix(r2, &(0x7f00000000c0)={&(0x7f0000000200)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x4040801}, 0x20008840) 820.076829ms ago: executing program 1 (id=5151): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$packet(0x11, 0x3, 0x300) getsockopt$packet_int(r2, 0x107, 0x7, 0x0, &(0x7f0000000180)) 741.954651ms ago: executing program 2 (id=5152): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)={0x14, 0x52, 0x1, 0x0, 0x0, {0xa}}, 0x14}}, 0x0) 678.483625ms ago: executing program 1 (id=5153): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) close_range(r2, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='pids.events\x00', 0x275a, 0x0) write$UHID_CREATE2(r3, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r3, 0x0) creat(&(0x7f0000000380)='./bus\x00', 0xbc) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r5, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r5, @ANYRES64=r4], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r5, 0x0) ioctl$KVM_X86_SETUP_MCE(r5, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) connect$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x4e23, 0xe9db8df3, @local, 0x2002}, 0x1c) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0x3e, &(0x7f0000000180)={0x200000000000001}, 0x8) 575.892001ms ago: executing program 2 (id=5154): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000a00)=ANY=[@ANYBLOB="400000001800150000000000ffffffff0a2000000202000000000000240009801c00000008000000140016"], 0x40}], 0x1}, 0x0) 431.083082ms ago: executing program 2 (id=5155): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) accept(r2, 0x0, 0x0) 376.248298ms ago: executing program 1 (id=5156): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket(0x10, 0x3, 0x0) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setregid(r3, r3) sendmmsg$inet6(r0, 0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x8) mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file0\x00', 0x0) mount$bind(&(0x7f0000000140)='.\x00', &(0x7f0000000280)='./file1/file0\x00', 0x0, 0x1085408, 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f00000003c0), 0x0, &(0x7f00000004c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1/file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(&(0x7f00000000c0)='./bus\x00') openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) 205.836941ms ago: executing program 1 (id=5157): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) 154.530872ms ago: executing program 2 (id=5158): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = eventfd(0xcbb7) ioctl$int_in(r2, 0x5421, &(0x7f00000000c0)=0x9) 0s ago: executing program 1 (id=5159): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r2 = fsopen(&(0x7f0000000240)='ramfs\x00', 0x1) fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0) r3 = fsmount(r2, 0x0, 0x0) fchdir(r3) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r4, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r4, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) kernel console output (not intermixed with test programs): batadv_slave_1 (retrying later): interface not active [ 92.950189][ T5828] hsr_slave_0: entered promiscuous mode [ 92.956600][ T5828] hsr_slave_1: entered promiscuous mode [ 92.963021][ T5828] debugfs: 'hsr0' already exists in 'hsr' [ 92.968813][ T5828] Cannot create hsr debugfs directory [ 93.068861][ T5831] hsr_slave_0: entered promiscuous mode [ 93.075877][ T5831] hsr_slave_1: entered promiscuous mode [ 93.082329][ T5831] debugfs: 'hsr0' already exists in 'hsr' [ 93.088082][ T5831] Cannot create hsr debugfs directory [ 93.112194][ T5830] hsr_slave_0: entered promiscuous mode [ 93.119811][ T5830] hsr_slave_1: entered promiscuous mode [ 93.126035][ T5830] debugfs: 'hsr0' already exists in 'hsr' [ 93.131833][ T5830] Cannot create hsr debugfs directory [ 93.235886][ T5829] hsr_slave_0: entered promiscuous mode [ 93.242493][ T5829] hsr_slave_1: entered promiscuous mode [ 93.248661][ T5829] debugfs: 'hsr0' already exists in 'hsr' [ 93.254465][ T5829] Cannot create hsr debugfs directory [ 93.703513][ T5827] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 93.724725][ T5827] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 93.735923][ T5827] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 93.761950][ T5827] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 93.842157][ T5831] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 93.855234][ T5831] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 93.866174][ T5831] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 93.876503][ T5831] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 93.977168][ T5830] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 93.994724][ T5830] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 94.005986][ T5830] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 94.035396][ T5830] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 94.157095][ T5828] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 94.167436][ T5828] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 94.178801][ T5828] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 94.192070][ T5828] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 94.199313][ T5848] Bluetooth: hci0: command tx timeout [ 94.265478][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0 [ 94.280277][ T5840] Bluetooth: hci4: command tx timeout [ 94.280295][ T5836] Bluetooth: hci2: command tx timeout [ 94.285718][ T5840] Bluetooth: hci3: command tx timeout [ 94.296947][ T5848] Bluetooth: hci1: command tx timeout [ 94.328052][ T5831] 8021q: adding VLAN 0 to HW filter on device bond0 [ 94.351675][ T5829] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 94.364850][ T5829] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 94.376618][ T5829] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 94.388961][ T5829] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 94.441475][ T5831] 8021q: adding VLAN 0 to HW filter on device team0 [ 94.456973][ T5827] 8021q: adding VLAN 0 to HW filter on device team0 [ 94.484585][ T66] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.491847][ T66] bridge0: port 1(bridge_slave_0) entered forwarding state [ 94.523658][ T66] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.530906][ T66] bridge0: port 2(bridge_slave_1) entered forwarding state [ 94.562913][ T66] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.570069][ T66] bridge0: port 1(bridge_slave_0) entered forwarding state [ 94.604557][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.611733][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 94.762276][ T5830] 8021q: adding VLAN 0 to HW filter on device bond0 [ 94.797395][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0 [ 94.855094][ T5830] 8021q: adding VLAN 0 to HW filter on device team0 [ 94.878870][ T5828] 8021q: adding VLAN 0 to HW filter on device team0 [ 94.918104][ T66] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.925387][ T66] bridge0: port 1(bridge_slave_0) entered forwarding state [ 94.966438][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0 [ 94.983589][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.990849][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.005703][ T50] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.012901][ T50] bridge0: port 1(bridge_slave_0) entered forwarding state [ 95.063900][ T50] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.071185][ T50] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.180244][ T5829] 8021q: adding VLAN 0 to HW filter on device team0 [ 95.216721][ T66] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.223901][ T66] bridge0: port 1(bridge_slave_0) entered forwarding state [ 95.255639][ T1003] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.262809][ T1003] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.306886][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 95.410344][ T5831] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 95.585578][ T5827] veth0_vlan: entered promiscuous mode [ 95.620933][ T5827] veth1_vlan: entered promiscuous mode [ 95.769701][ T5831] veth0_vlan: entered promiscuous mode [ 95.857652][ T5831] veth1_vlan: entered promiscuous mode [ 95.872019][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 95.885541][ T5830] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 95.897301][ T5827] veth0_macvtap: entered promiscuous mode [ 95.952888][ T5827] veth1_macvtap: entered promiscuous mode [ 96.021537][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 96.076383][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 96.127319][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 96.144582][ T5831] veth0_macvtap: entered promiscuous mode [ 96.156123][ T5828] veth0_vlan: entered promiscuous mode [ 96.177220][ T5831] veth1_macvtap: entered promiscuous mode [ 96.211999][ T66] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.221986][ T66] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.233317][ T66] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.248200][ T5828] veth1_vlan: entered promiscuous mode [ 96.259390][ T66] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.279412][ T5840] Bluetooth: hci0: command tx timeout [ 96.318026][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 96.335642][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 96.359976][ T5840] Bluetooth: hci2: command tx timeout [ 96.365427][ T5840] Bluetooth: hci4: command tx timeout [ 96.369131][ T5836] Bluetooth: hci1: command tx timeout [ 96.376353][ T5848] Bluetooth: hci3: command tx timeout [ 96.411820][ T5829] veth0_vlan: entered promiscuous mode [ 96.424522][ T66] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.433463][ T66] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.470597][ T66] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.479840][ T66] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.502406][ T5829] veth1_vlan: entered promiscuous mode [ 96.598665][ T66] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.608866][ T66] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.617313][ T5828] veth0_macvtap: entered promiscuous mode [ 96.664420][ T5828] veth1_macvtap: entered promiscuous mode [ 96.695796][ T66] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.711716][ T66] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.753197][ T5830] veth0_vlan: entered promiscuous mode [ 96.767752][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 96.787159][ T5829] veth0_macvtap: entered promiscuous mode [ 96.796789][ T66] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.797941][ T5829] veth1_macvtap: entered promiscuous mode [ 96.810676][ T66] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.846374][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 96.856756][ T5830] veth1_vlan: entered promiscuous mode [ 96.865184][ T3877] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.880647][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 96.887938][ T3877] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.914272][ T5827] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 96.922496][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 96.955056][ T66] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.964757][ T66] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.001253][ T66] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.012627][ T66] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.047036][ T66] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.123791][ T66] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.163779][ T5830] veth0_macvtap: entered promiscuous mode [ 97.197270][ T66] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.217455][ T66] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.244181][ T5830] veth1_macvtap: entered promiscuous mode [ 97.364534][ T5948] tmpfs: Bad value for 'size' [ 97.390346][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 97.441579][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.443107][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 97.457624][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.526109][ T5942] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.552614][ T5942] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.601796][ T5942] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.606745][ T5954] ======================================================= [ 97.606745][ T5954] WARNING: The mand mount option has been deprecated and [ 97.606745][ T5954] and is ignored by this kernel. Remove the mand [ 97.606745][ T5954] option from the mount to silence this warning. [ 97.606745][ T5954] ======================================================= [ 97.619237][ T5942] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.671056][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.687613][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.824828][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.836664][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.007428][ T66] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.043620][ T66] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.184279][ T66] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.227905][ T66] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.359429][ T5848] Bluetooth: hci0: command tx timeout [ 98.365896][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.402702][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.443006][ T5848] Bluetooth: hci3: command tx timeout [ 98.448489][ T5848] Bluetooth: hci1: command tx timeout [ 98.449222][ T5836] Bluetooth: hci4: command tx timeout [ 98.454886][ T5846] Bluetooth: hci2: command tx timeout [ 98.617210][ T5974] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 99.084622][ T5986] netlink: 64 bytes leftover after parsing attributes in process `syz.0.20'. [ 99.883900][ T6011] binder: 6010:6011 ioctl c0306201 2000000001c0 returned -14 [ 100.472733][ T6033] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 100.508034][ T6032] netlink: 8 bytes leftover after parsing attributes in process `syz.3.43'. [ 100.585912][ T6036] overlay: ./file0 is not a directory [ 102.001670][ T6078] netlink: 8 bytes leftover after parsing attributes in process `syz.2.64'. [ 102.030301][ T6078] netlink: 12 bytes leftover after parsing attributes in process `syz.2.64'. [ 102.089864][ T6078] netlink: 8 bytes leftover after parsing attributes in process `syz.2.64'. [ 102.626533][ T6099] binder: Unknown parameter 'context' [ 102.968012][ T6114] netlink: 8 bytes leftover after parsing attributes in process `syz.0.79'. [ 102.977281][ T6114] netlink: 12 bytes leftover after parsing attributes in process `syz.0.79'. [ 102.986585][ T6114] netlink: 8 bytes leftover after parsing attributes in process `syz.0.79'. [ 103.578900][ T6106] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 103.592410][ T6106] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 103.605408][ T6106] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 103.617380][ T6106] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 103.623913][ T6106] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 103.635775][ T6106] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 103.653099][ T6106] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 103.659543][ T6106] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 103.668815][ T6106] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 103.678455][ T6106] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 103.685937][ T6106] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 103.697600][ T6106] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 103.709078][ T6106] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 103.715260][ T6106] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 103.725791][ T6106] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 104.121633][ T6128] overlayfs: failed to clone upperpath [ 104.410809][ T6139] netlink: 8 bytes leftover after parsing attributes in process `syz.1.92'. [ 104.429297][ T6139] netlink: 12 bytes leftover after parsing attributes in process `syz.1.92'. [ 104.452644][ T6139] netlink: 8 bytes leftover after parsing attributes in process `syz.1.92'. [ 104.848068][ T5848] Bluetooth: hci0: command 0x0c1a tx timeout [ 105.639171][ T5848] Bluetooth: hci3: command 0x0c1a tx timeout [ 105.719213][ T5848] Bluetooth: hci2: command 0x0c1a tx timeout [ 105.725834][ T5846] Bluetooth: hci4: command 0x0c1a tx timeout [ 105.725850][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout [ 106.922935][ T5846] Bluetooth: hci0: command 0x0c1a tx timeout [ 106.999374][ T6203] netlink: 92 bytes leftover after parsing attributes in process `syz.2.121'. [ 107.719283][ T5846] Bluetooth: hci3: command 0x0c1a tx timeout [ 107.799179][ T5846] Bluetooth: hci4: command 0x0c1a tx timeout [ 107.799710][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout [ 107.812045][ T5848] Bluetooth: hci2: command 0x0c1a tx timeout [ 109.000037][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout [ 109.433960][ T6264] binder: Unknown parameter 'context' [ 109.686041][ T6274] netlink: 20 bytes leftover after parsing attributes in process `syz.2.153'. [ 109.799147][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout [ 109.880338][ T5836] Bluetooth: hci4: command 0x0c1a tx timeout [ 109.886652][ T5848] Bluetooth: hci1: command 0x0c1a tx timeout [ 109.886673][ T5846] Bluetooth: hci2: command 0x0c1a tx timeout [ 109.937641][ T6270] evm: overlay not supported [ 109.947061][ T30] audit: type=1800 audit(1763078523.849:2): pid=6270 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.152" name="cpuacct.usage_percpu" dev="overlay" ino=205 res=0 errno=0 [ 110.380504][ T6294] binder: Unknown parameter 'context' [ 110.500553][ T6293] overlayfs: failed to clone upperpath [ 111.778744][ T6332] binder: 6331:6332 ioctl c0306201 0 returned -14 [ 112.305252][ T6343] netlink: 68 bytes leftover after parsing attributes in process `syz.3.183'. [ 113.351089][ T6381] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 113.554677][ T30] audit: type=1800 audit(1763078527.469:3): pid=6379 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.199" name="cpuacct.usage_percpu" dev="overlay" ino=268 res=0 errno=0 [ 114.117892][ T6404] netlink: 8 bytes leftover after parsing attributes in process `syz.4.211'. [ 114.333965][ T6406] netlink: 12 bytes leftover after parsing attributes in process `syz.1.212'. [ 114.824800][ T6424] netlink: 16 bytes leftover after parsing attributes in process `syz.2.220'. [ 115.034465][ T6428] binder: Unknown parameter 'context' [ 115.770651][ T6444] netlink: 8 bytes leftover after parsing attributes in process `syz.2.230'. [ 116.335957][ T6463] overlayfs: missing 'lowerdir' [ 117.264832][ T6489] mmap: syz.1.254 (6489) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 117.304283][ T6491] overlayfs: missing 'lowerdir' [ 117.323621][ T6493] binder: Unknown parameter 'context' [ 117.557709][ T6500] binder: 6499:6500 ioctl c0306201 2000000001c0 returned -14 [ 118.528755][ T6530] input: syz0 as /devices/virtual/input/input5 [ 118.562106][ T6532] netlink: 20 bytes leftover after parsing attributes in process `syz.1.272'. [ 118.645827][ T6534] capability: warning: `syz.2.273' uses deprecated v2 capabilities in a way that may be insecure [ 119.438648][ T6563] netlink: 80 bytes leftover after parsing attributes in process `syz.3.285'. [ 120.249873][ T6556] fuse: Invalid rootmode [ 120.677047][ T6607] binder: 6606:6607 ioctl c0306201 200000000940 returned -22 [ 120.805183][ T6613] netlink: 8 bytes leftover after parsing attributes in process `syz.2.305'. [ 121.565685][ T6639] netlink: 8 bytes leftover after parsing attributes in process `syz.1.319'. [ 121.622650][ T6639] netlink: 12 bytes leftover after parsing attributes in process `syz.1.319'. [ 121.694792][ T6643] pim6reg1: entered promiscuous mode [ 121.709481][ T6643] pim6reg1: entered allmulticast mode [ 121.786510][ T6651] netlink: 8 bytes leftover after parsing attributes in process `syz.3.322'. [ 122.536366][ T6677] overlayfs: missing 'lowerdir' [ 123.367815][ T6717] netlink: 8 bytes leftover after parsing attributes in process `syz.1.352'. [ 123.410453][ T6717] netlink: 12 bytes leftover after parsing attributes in process `syz.1.352'. [ 123.516834][ T6722] netlink: 'syz.3.354': attribute type 4 has an invalid length. [ 123.577986][ T6724] netlink: 'syz.3.354': attribute type 4 has an invalid length. [ 124.086331][ T6743] Invalid ELF header magic: != ELF [ 124.093431][ T30] audit: type=1804 audit(1763078537.999:4): pid=6743 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.360" name="bus" dev="ramfs" ino=12524 res=1 errno=0 [ 124.775362][ T6775] overlayfs: failed to resolve './file0': -2 [ 124.814920][ T6776] Invalid ELF header magic: != ELF [ 125.066310][ T6791] netlink: 8 bytes leftover after parsing attributes in process `syz.0.383'. [ 125.608864][ T6809] overlayfs: failed to resolve './file0': -2 [ 126.072459][ T6832] binder: Unknown parameter 'context' [ 126.385788][ T6846] overlayfs: failed to resolve './file0': -2 [ 126.955798][ T6874] netlink: 'syz.2.423': attribute type 4 has an invalid length. [ 126.968756][ T5957] hid-generic 0004:076F:00A7.0001: hidraw0: HID v0.07 Device [syz1] on syz0 [ 127.017590][ T6879] netlink: 'syz.2.423': attribute type 4 has an invalid length. [ 127.202517][ T6884] overlayfs: failed to resolve './file1': -2 [ 127.318258][ T6878] fido_id[6878]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 127.679476][ T30] audit: type=1804 audit(1763078541.589:5): pid=6900 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.432" name="bus" dev="ramfs" ino=12169 res=1 errno=0 [ 127.855332][ T6908] netlink: 'syz.2.438': attribute type 4 has an invalid length. [ 127.907779][ T6908] netlink: 'syz.2.438': attribute type 4 has an invalid length. [ 128.075076][ T6918] overlayfs: failed to resolve './file1': -2 [ 128.574823][ T6938] netlink: 'syz.4.453': attribute type 4 has an invalid length. [ 128.640679][ T6943] netlink: 'syz.4.453': attribute type 4 has an invalid length. [ 128.711279][ T6946] overlayfs: failed to resolve './file1': -2 [ 128.979549][ T6960] overlayfs: missing 'workdir' [ 129.432221][ T6978] 9p: Bad value for 'wfdno' [ 129.773452][ T6990] overlayfs: conflicting lowerdir path [ 129.939698][ T5957] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 130.155928][ T5957] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 130.177625][ T5957] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 130.206735][ T5957] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 130.242595][ T5957] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 130.289072][ T5957] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 130.306851][ T5957] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 130.342747][ T5957] usb 3-1: config 0 descriptor?? [ 130.377914][ T6988] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 130.431470][ T7016] raw_sendmsg: syz.0.487 forgot to set AF_INET. Fix it! [ 130.565380][ T7018] binder: Unknown parameter 'context' [ 130.821313][ T5957] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 130.846312][ T5957] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 130.854951][ T7031] overlayfs: failed to clone upperpath [ 130.864883][ T5957] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 130.899389][ T5957] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 130.940862][ T5957] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 130.952672][ T5957] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 130.965928][ T5957] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 131.006472][ T5957] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 131.037887][ T5957] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 131.068498][ T5957] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 131.121806][ T5957] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 131.184895][ T5957] usb 3-1: USB disconnect, device number 2 [ 131.225545][ T7043] netlink: 92 bytes leftover after parsing attributes in process `syz.3.499'. [ 131.318782][ T7041] fido_id[7041]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory [ 132.306991][ T30] audit: type=1800 audit(1763078546.219:6): pid=7069 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.511" name="cpuacct.usage_percpu" dev="overlay" ino=665 res=0 errno=0 [ 132.689123][ T30] audit: type=1804 audit(1763078546.589:7): pid=7086 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.518" name="bus" dev="ramfs" ino=14375 res=1 errno=0 [ 133.007304][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.024200][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.687906][ T7115] netlink: 92 bytes leftover after parsing attributes in process `syz.1.531'. [ 133.851718][ T7119] netlink: 'syz.2.532': attribute type 4 has an invalid length. [ 133.893426][ T7119] netlink: 'syz.2.532': attribute type 4 has an invalid length. [ 135.665796][ T7166] netlink: 92 bytes leftover after parsing attributes in process `syz.2.554'. [ 135.896522][ T7172] 9p: Bad value for 'rfdno' [ 136.668467][ T7195] syz.0.567 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 138.253478][ T7229] overlayfs: failed to clone upperpath [ 138.521486][ T7235] 9p: Bad value for 'rfdno' [ 142.680194][ T7298] fuse: Unknown parameter 'grou00000000000000000000' [ 144.492174][ T7326] binder: Unknown parameter 'context' [ 144.930892][ T7335] netlink: 44 bytes leftover after parsing attributes in process `syz.4.631'. [ 144.940194][ T7335] netlink: 12 bytes leftover after parsing attributes in process `syz.4.631'. [ 144.980869][ T7335] netlink: 8 bytes leftover after parsing attributes in process `syz.4.631'. [ 146.131287][ T30] audit: type=1800 audit(1763078560.049:8): pid=7363 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.642" name="cpuacct.usage_percpu" dev="overlay" ino=911 res=0 errno=0 [ 146.996109][ T7390] overlayfs: missing 'lowerdir' [ 147.468180][ T7406] binder: Unknown parameter 'context' [ 148.014968][ T7424] process 'syz.0.653' launched './file1' with NULL argv: empty string added [ 149.133075][ T7445] overlayfs: failed to resolve './file0': -2 [ 149.419418][ T7439] fuse: Unknown parameter 'group_i00000000000000000000' [ 149.849848][ T7461] netlink: 44 bytes leftover after parsing attributes in process `syz.0.687'. [ 149.881669][ T7461] netlink: 8 bytes leftover after parsing attributes in process `syz.0.687'. [ 150.009921][ T7465] netlink: 92 bytes leftover after parsing attributes in process `syz.3.689'. [ 150.187160][ T7467] netlink: 12 bytes leftover after parsing attributes in process `syz.0.690'. [ 150.276243][ T7471] netlink: 44 bytes leftover after parsing attributes in process `syz.3.692'. [ 150.309834][ T7471] netlink: 59 bytes leftover after parsing attributes in process `syz.3.692'. [ 150.329156][ T7471] netlink: 59 bytes leftover after parsing attributes in process `syz.3.692'. [ 150.597465][ T7475] 9pnet_virtio: no channels available for device ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 151.503428][ T7489] fuse: Unknown parameter 'group_i00000000000000000000' [ 151.993606][ T30] audit: type=1804 audit(1763078565.909:9): pid=7520 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.714" name="bus" dev="ramfs" ino=15241 res=1 errno=0 [ 152.032533][ T7521] Invalid ELF header magic: != ELF [ 152.409092][ T30] audit: type=1800 audit(1763078566.319:10): pid=7533 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.719" name="cpuacct.usage_percpu" dev="overlay" ino=939 res=0 errno=0 [ 153.025027][ T30] audit: type=1804 audit(1763078566.939:11): pid=7556 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.728" name="bus" dev="ramfs" ino=15906 res=1 errno=0 [ 153.562324][ T7571] fuse: Unknown parameter 'group_i00000000000000000000' [ 156.079056][ T30] audit: type=1800 audit(1763078569.989:12): pid=7607 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.755" name="cpuacct.usage_percpu" dev="overlay" ino=1090 res=0 errno=0 [ 157.640650][ T7623] netlink: 16 bytes leftover after parsing attributes in process `syz.3.757'. [ 158.709200][ T794] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 158.875406][ T794] usb 2-1: Using ep0 maxpacket: 16 [ 158.893481][ T794] usb 2-1: config 8 has an invalid interface number: 108 but max is 0 [ 158.912217][ T794] usb 2-1: config 8 has no interface number 0 [ 158.929415][ T7648] overlayfs: failed to clone upperpath [ 158.935470][ T794] usb 2-1: New USB device found, idVendor=0421, idProduct=04c9, bcdDevice=6e.97 [ 158.955067][ T794] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 158.969088][ T794] usb 2-1: Product: syz [ 158.989230][ T794] usb 2-1: Manufacturer: syz [ 158.993899][ T794] usb 2-1: SerialNumber: syz [ 159.103864][ T7650] netlink: 92 bytes leftover after parsing attributes in process `syz.0.777'. [ 159.247922][ T794] usb 2-1: bad CDC descriptors [ 159.287772][ T794] cdc_acm 2-1:8.108: Zero length descriptor references [ 159.313318][ T794] cdc_acm 2-1:8.108: probe with driver cdc_acm failed with error -22 [ 159.350343][ T794] usb 2-1: USB disconnect, device number 2 [ 159.668712][ T30] audit: type=1326 audit(1763078573.579:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7661 comm="syz.0.782" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fafbdf8f6c9 code=0x0 [ 160.310694][ T7678] netlink: 92 bytes leftover after parsing attributes in process `syz.1.790'. [ 160.500005][ T7687] Zero length message leads to an empty skb [ 161.148676][ T7695] overlayfs: failed to resolve './file1/file0': -2 [ 162.742283][ T7713] netlink: 72 bytes leftover after parsing attributes in process `syz.4.807'. [ 168.352692][ T30] audit: type=1804 audit(1763078582.269:14): pid=7762 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.830" name="bus" dev="ramfs" ino=17454 res=1 errno=0 [ 171.484778][ T30] audit: type=1804 audit(1763078585.399:15): pid=7840 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.863" name="bus" dev="ramfs" ino=16977 res=1 errno=0 [ 172.251616][ T7865] overlayfs: failed to resolve './file0': -2 [ 174.488334][ T7923] overlayfs: missing 'workdir' [ 174.652281][ T7925] overlayfs: failed to clone upperpath [ 175.012409][ T7940] netlink: 8 bytes leftover after parsing attributes in process `syz.0.907'. [ 175.623844][ T7962] netlink: 'syz.0.915': attribute type 4 has an invalid length. [ 176.273441][ T30] audit: type=1804 audit(1763078590.189:16): pid=7985 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.927" name="bus" dev="ramfs" ino=18036 res=1 errno=0 [ 176.389683][ T7987] netlink: 'syz.4.928': attribute type 4 has an invalid length. [ 176.570981][ T7994] binder: 7992:7994 ioctl 4018620d 0 returned -22 [ 176.773287][ T8001] overlayfs: missing 'workdir' [ 177.285965][ T30] audit: type=1804 audit(1763078591.199:17): pid=8018 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.941" name="bus" dev="ramfs" ino=18526 res=1 errno=0 [ 179.051307][ T8066] overlayfs: failed to clone upperpath [ 179.786376][ T8092] binder: 8091:8092 ioctl c0306201 0 returned -14 [ 180.743752][ T8107] overlayfs: missing 'lowerdir' [ 182.877642][ T8144] Invalid ELF header magic: != ELF [ 182.879165][ T30] audit: type=1804 audit(1763078596.789:18): pid=8144 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1000" name="bus" dev="ramfs" ino=18359 res=1 errno=0 [ 184.651943][ T30] audit: type=1804 audit(1763078598.569:19): pid=8191 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1022" name="bus" dev="ramfs" ino=19486 res=1 errno=0 [ 184.652478][ T8191] Invalid ELF header magic: != ELF [ 184.809663][ T8195] netlink: 'syz.4.1024': attribute type 6 has an invalid length. [ 184.827797][ T8195] IPv6: NLM_F_CREATE should be specified when creating new route [ 185.093659][ T8200] kvm: pic: level sensitive irq not supported [ 185.093836][ T8200] kvm: pic: non byte read [ 185.668877][ T8226] netlink: 'syz.4.1037': attribute type 4 has an invalid length. [ 185.680005][ T8228] devpts: Bad value for 'max' [ 186.166924][ T8237] overlayfs: missing 'lowerdir' [ 186.900226][ T8260] netlink: 'syz.3.1051': attribute type 4 has an invalid length. [ 187.478559][ T8278] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1061'. [ 187.743644][ T8286] netlink: 'syz.4.1065': attribute type 4 has an invalid length. [ 188.597935][ T8304] overlayfs: missing 'lowerdir' [ 188.790414][ T8309] netlink: 'syz.1.1075': attribute type 6 has an invalid length. [ 188.814876][ T8311] netlink: 'syz.2.1077': attribute type 4 has an invalid length. [ 188.822900][ T8309] IPv6: NLM_F_CREATE should be specified when creating new route [ 189.211321][ T8318] binder: Unknown parameter 'context' [ 189.565703][ T8324] veth0_to_team: mtu greater than device maximum [ 189.764072][ T8328] netlink: 72 bytes leftover after parsing attributes in process `syz.2.1086'. [ 189.977134][ T8332] netlink: 'syz.2.1088': attribute type 4 has an invalid length. [ 190.363209][ T30] audit: type=1804 audit(1763078604.279:20): pid=8338 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1091" name="bus" dev="ramfs" ino=20051 res=1 errno=0 [ 190.365090][ T8338] Invalid ELF header magic: != ELF [ 191.100960][ T8354] af_packet: tpacket_rcv: packet too big, clamped from 40 to 4294967272. macoff=96 [ 191.359281][ T8358] netlink: 'syz.0.1100': attribute type 4 has an invalid length. [ 191.760877][ T8361] fuse: Unknown parameter '00000000000000000000' [ 192.643897][ T8376] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 192.680879][ T8376] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 192.836984][ T8384] netlink: 'syz.0.1112': attribute type 4 has an invalid length. [ 193.245892][ T8396] netlink: 'syz.3.1104': attribute type 4 has an invalid length. [ 193.264807][ T8396] netlink: 'syz.3.1104': attribute type 4 has an invalid length. [ 193.873838][ T8392] fuse: Unknown parameter '00000000000000000000' [ 194.002120][ T8411] netlink: 'syz.1.1125': attribute type 4 has an invalid length. [ 194.446581][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.461866][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.985568][ T30] audit: type=1804 audit(1763078608.899:21): pid=8429 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1133" name="bus" dev="ramfs" ino=20994 res=1 errno=0 [ 195.008514][ T8429] Invalid ELF header magic: != ELF [ 195.710218][ T8451] netlink: 'syz.1.1142': attribute type 6 has an invalid length. [ 195.913712][ T8456] netlink: 'syz.1.1145': attribute type 4 has an invalid length. [ 196.193105][ T8460] overlayfs: missing 'lowerdir' [ 196.713967][ T8473] binder: 8470:8473 ioctl c0306201 0 returned -14 [ 196.875896][ T8476] netlink: 'syz.4.1154': attribute type 4 has an invalid length. [ 197.474385][ T30] audit: type=1804 audit(1763078611.389:22): pid=8485 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1158" name="bus" dev="ramfs" ino=21076 res=1 errno=0 [ 198.104425][ T8499] netlink: 'syz.0.1165': attribute type 4 has an invalid length. [ 199.247353][ T8519] overlayfs: missing 'workdir' [ 199.414621][ T8524] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1177'. [ 199.617112][ T8528] binder: Unknown parameter 'context' [ 200.259095][ T8543] overlayfs: failed to clone upperpath [ 201.021555][ T8561] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1189'. [ 201.310831][ T8569] binder: 8568:8569 ioctl c00c620f 0 returned -14 [ 202.084762][ T8583] Invalid ELF header magic: != ELF [ 202.100480][ T30] audit: type=1804 audit(1763078615.999:23): pid=8583 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1199" name="bus" dev="ramfs" ino=21410 res=1 errno=0 [ 202.465684][ T8585] binder: Unknown parameter 'context' [ 203.114147][ T8591] overlayfs: failed to clone upperpath [ 204.090816][ T30] audit: type=1804 audit(1763078618.009:24): pid=8616 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1215" name="bus" dev="ramfs" ino=21606 res=1 errno=0 [ 204.094356][ T8616] Invalid ELF header magic: != ELF [ 204.420086][ T8627] overlayfs: failed to clone upperpath [ 204.743830][ T8637] netlink: 'syz.2.1224': attribute type 4 has an invalid length. [ 204.763698][ T8637] netlink: 'syz.2.1224': attribute type 4 has an invalid length. [ 204.771692][ T30] audit: type=1804 audit(1763078618.689:25): pid=8639 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1228" name="bus" dev="ramfs" ino=22554 res=1 errno=0 [ 205.140138][ T8652] binder: Unknown parameter 'context' [ 205.910216][ T8670] netlink: 'syz.2.1240': attribute type 4 has an invalid length. [ 205.963633][ T8675] netlink: 'syz.2.1240': attribute type 4 has an invalid length. [ 206.251321][ T30] audit: type=1804 audit(1763078620.169:26): pid=8682 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1246" name="bus" dev="ramfs" ino=21735 res=1 errno=0 [ 206.262100][ T8679] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1244'. [ 206.290311][ T8682] Invalid ELF header magic: != ELF [ 206.464194][ T8685] overlay: Unknown parameter '/' [ 207.060064][ T8701] netlink: 'syz.3.1255': attribute type 4 has an invalid length. [ 207.109323][ T8701] netlink: 'syz.3.1255': attribute type 4 has an invalid length. [ 208.994057][ T8750] netlink: 'syz.4.1280': attribute type 6 has an invalid length. [ 209.324606][ T8761] netlink: 'syz.1.1268': attribute type 4 has an invalid length. [ 209.349763][ T8761] netlink: 'syz.1.1268': attribute type 4 has an invalid length. [ 209.847394][ T8784] netlink: 'syz.1.1295': attribute type 6 has an invalid length. [ 210.122376][ T8793] netlink: 'syz.4.1299': attribute type 4 has an invalid length. [ 210.174304][ T8797] netlink: 'syz.4.1299': attribute type 4 has an invalid length. [ 210.463802][ T8805] netlink: 80 bytes leftover after parsing attributes in process `syz.4.1304'. [ 210.860359][ T8820] overlayfs: failed to clone upperpath [ 213.917771][ T8886] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1343'. [ 215.313652][ T8917] netlink: 'syz.3.1358': attribute type 6 has an invalid length. [ 215.349149][ T8917] IPv6: NLM_F_CREATE should be specified when creating new route [ 215.493659][ T8919] tipc: Enabling of bearer rejected, failed to enable media [ 217.494377][ T8958] netlink: 'syz.3.1377': attribute type 6 has an invalid length. [ 218.665726][ T8982] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1388'. [ 219.190767][ T30] audit: type=1804 audit(1763078633.109:27): pid=8991 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1393" name="bus" dev="ramfs" ino=23795 res=1 errno=0 [ 220.896537][ T9033] overlayfs: failed to clone upperpath [ 221.420507][ T30] audit: type=1804 audit(1763078635.339:28): pid=9048 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1419" name="bus" dev="ramfs" ino=23924 res=1 errno=0 [ 221.803617][ T30] audit: type=1804 audit(1763078635.719:29): pid=9055 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1422" name="bus" dev="ramfs" ino=24784 res=1 errno=0 [ 221.805350][ T9055] Invalid ELF header magic: != ELF [ 223.072161][ T9086] overlayfs: failed to clone upperpath [ 223.205651][ T9076] fuse: Unknown parameter '0x0000000000000005' [ 225.154579][ T9121] fuse: Unknown parameter '0x0000000000000005' [ 228.107060][ T9151] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1467'. [ 228.168256][ T9151] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1467'. [ 228.219207][ T9151] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1467'. [ 231.801143][ T9229] binder: 9228:9229 ioctl c0306201 200000000940 returned -14 [ 234.255772][ T9302] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1534'. [ 234.518702][ T9314] overlayfs: failed to clone upperpath [ 234.840756][ T9323] netlink: 92 bytes leftover after parsing attributes in process `syz.0.1545'. [ 235.559991][ T9346] overlayfs: failed to clone upperpath [ 236.108799][ T9362] binder: 9360:9362 ioctl c0306201 200000000100 returned -14 [ 236.424480][ T9364] syz.4.1565 (9364) used greatest stack depth: 17864 bytes left [ 238.550516][ T9387] binder: Unknown parameter 'context' [ 240.574762][ T9420] netlink: 80 bytes leftover after parsing attributes in process `syz.1.1589'. [ 240.719734][ T30] audit: type=1804 audit(1763078654.629:30): pid=9424 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1591" name="bus" dev="ramfs" ino=26650 res=1 errno=0 [ 241.571413][ T9448] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1603'. [ 241.811579][ T30] audit: type=1804 audit(1763078655.729:31): pid=9451 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1604" name="bus" dev="ramfs" ino=26233 res=1 errno=0 [ 244.504954][ T9501] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1629'. [ 244.728164][ T9504] binder: Unknown parameter 'context' [ 244.904355][ T9507] binder: Unknown parameter 'context' [ 244.908662][ T9509] netlink: 'syz.3.1634': attribute type 6 has an invalid length. [ 251.965509][ T9619] fuse: Bad value for 'user_id' [ 251.970450][ T9619] fuse: Bad value for 'user_id' [ 253.006576][ T9641] fuse: Bad value for 'user_id' [ 253.011517][ T9641] fuse: Bad value for 'user_id' [ 254.635761][ T9676] Invalid ELF header magic: != ELF [ 254.636743][ T30] audit: type=1804 audit(1763078668.342:32): pid=9676 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1707" name="bus" dev="ramfs" ino=28106 res=1 errno=0 [ 256.193012][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.199406][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.488667][ T30] audit: type=1804 audit(1763078670.078:33): pid=9711 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1723" name="bus" dev="ramfs" ino=28182 res=1 errno=0 [ 256.490628][ T9711] Invalid ELF header magic: != ELF [ 256.838460][ T9713] fuse: Bad value for 'user_id' [ 256.870498][ T9713] fuse: Bad value for 'user_id' [ 258.015471][ T30] audit: type=1804 audit(1763078671.504:34): pid=9738 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1735" name="bus" dev="ramfs" ino=28258 res=1 errno=0 [ 258.039381][ T9738] Invalid ELF header magic: != ELF [ 258.794525][ T5901] usb 3-1: new low-speed USB device number 3 using dummy_hcd [ 258.971774][ T5901] usb 3-1: unable to get BOS descriptor or descriptor too short [ 258.987272][ T5901] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1040, setting to 8 [ 259.017463][ T5901] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 259.058442][ T5901] usb 3-1: string descriptor 0 read error: -22 [ 259.082163][ T5901] usb 3-1: New USB device found, idVendor=16c0, idProduct=75e1, bcdDevice= 0.40 [ 259.102817][ T5901] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 259.135065][ T9752] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 259.386848][ T5901] usbhid 3-1:1.0: can't add hid device: -71 [ 259.411839][ T5901] usbhid 3-1:1.0: probe with driver usbhid failed with error -71 [ 259.459725][ T5901] usb 3-1: USB disconnect, device number 3 [ 260.538350][ T9801] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1763'. [ 261.788597][ T5901] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 262.023190][ T5901] usb 2-1: Using ep0 maxpacket: 16 [ 262.047746][ T30] audit: type=1804 audit(1763078675.304:35): pid=9844 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1783" name="bus" dev="ramfs" ino=29050 res=1 errno=0 [ 262.074610][ T9843] Invalid ELF header magic: != ELF [ 262.090931][ T5901] usb 2-1: config 0 has an invalid interface number: 41 but max is 0 [ 262.113764][ T5901] usb 2-1: config 0 has no interface number 0 [ 262.129829][ T5901] usb 2-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16 [ 262.162612][ T5901] usb 2-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64 [ 262.186521][ T5901] usb 2-1: config 0 interface 41 has no altsetting 0 [ 262.220001][ T5901] usb 2-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a [ 262.241067][ T5901] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 262.273131][ T5901] usb 2-1: Product: syz [ 262.283907][ T5901] usb 2-1: Manufacturer: syz [ 262.304225][ T5901] usb 2-1: SerialNumber: syz [ 262.331676][ T5901] usb 2-1: config 0 descriptor?? [ 262.376931][ T9838] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 262.384265][ T9838] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 262.592042][ T9854] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1788'. [ 262.729821][ T9838] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 262.780159][ T9838] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 262.964215][ T9861] fuse: Bad value for 'user_id' [ 263.022766][ T9861] fuse: Bad value for 'user_id' [ 263.066769][ T9864] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1793'. [ 263.662063][ T5901] CoreChips 2-1:0.41: probe with driver CoreChips failed with error -71 [ 263.703613][ T5901] usb 2-1: USB disconnect, device number 3 [ 264.012136][ T9890] IPv6: NLM_F_CREATE should be specified when creating new route [ 265.457002][ T9918] overlayfs: failed to resolve './file0': -2 [ 265.765615][ T9925] overlayfs: missing 'lowerdir' [ 266.404849][ T9943] overlayfs: failed to resolve './file0': -2 [ 267.475963][ T9976] fuse: Bad value for 'user_id' [ 267.485300][ T9976] fuse: Bad value for 'user_id' [ 267.703243][ T9986] cgroup: Unknown subsys name 'cpuset' [ 268.533502][T10011] overlayfs: failed to resolve './file0': -2 [ 269.487579][T10040] overlayfs: failed to resolve './file1': -2 [ 270.942910][T10064] tipc: Enabling of bearer rejected, failed to enable media [ 272.123179][T10082] overlayfs: failed to resolve './file1': -2 [ 272.380290][T10086] overlayfs: failed to resolve './file1': -2 [ 272.695348][T10096] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1905'. [ 272.726189][T10096] netlink: 'syz.1.1905': attribute type 6 has an invalid length. [ 272.733987][T10096] netlink: 'syz.1.1905': attribute type 5 has an invalid length. [ 272.775762][T10096] netlink: 'syz.1.1905': attribute type 4 has an invalid length. [ 273.492889][T10108] overlayfs: failed to resolve './file1': -2 [ 274.250056][T10120] netlink: 9 bytes leftover after parsing attributes in process `syz.3.1916'. [ 275.178921][T10137] ptrace attach of ""[10138] was attempted by "./syz-executor exec"[10137] [ 279.552963][T10202] binder: 10201:10202 ioctl c0306201 0 returned -14 [ 280.363604][T10219] binder: 10218:10219 ioctl c0306201 200000000280 returned -14 [ 281.648281][T10251] batadv_slave_1: entered promiscuous mode [ 281.691781][T10253] netlink: 'syz.1.1974': attribute type 63 has an invalid length. [ 281.721955][T10253] netlink: 5 bytes leftover after parsing attributes in process `syz.1.1974'. [ 281.744900][T10248] batadv_slave_1: left promiscuous mode [ 281.776331][T10253] gretap0: entered allmulticast mode [ 281.785601][T10253] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 282.470282][T10270] binder: 10269:10270 ioctl c0306201 0 returned -14 [ 284.589258][T10316] overlayfs: failed to clone upperpath [ 285.165235][ T30] audit: type=1326 audit(1763078696.995:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10327 comm="syz.2.1994" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb8a0f8f6c9 code=0x0 [ 285.644758][T10342] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2014'. [ 286.504998][T10363] overlayfs: failed to clone upperpath [ 286.511873][T10366] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2026'. [ 289.805975][T10441] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2061'. [ 290.412744][T10458] kvm: pic: level sensitive irq not supported [ 290.412833][T10458] kvm: pic: non byte read [ 294.154938][T10538] overlayfs: failed to clone upperpath [ 294.863070][T10554] netlink: 140 bytes leftover after parsing attributes in process `syz.4.2117'. [ 296.126235][T10577] x_tables: duplicate entry at hook 1 [ 296.383635][ T30] audit: type=1800 audit(1763078707.511:37): pid=10579 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2127" name="file1" dev="overlay" ino=2882 res=0 errno=0 [ 301.288675][T10650] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 301.297703][T10650] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 301.709942][T10654] kvm: pic: level sensitive irq not supported [ 301.710031][T10654] kvm: pic: non byte read [ 302.254207][T10666] netlink: 'syz.1.2168': attribute type 4 has an invalid length. [ 302.297172][T10666] netlink: 'syz.1.2168': attribute type 4 has an invalid length. [ 302.603762][T10672] overlayfs: missing 'lowerdir' [ 302.858598][T10676] overlayfs: failed to resolve './file1': -2 [ 303.917161][T10698] overlayfs: missing 'lowerdir' [ 304.152405][T10702] binder: 10701:10702 ioctl c0306201 200000000640 returned -22 [ 304.636603][T10714] overlayfs: failed to clone upperpath [ 305.169766][T10724] overlayfs: missing 'lowerdir' [ 307.090835][T10760] fuse: Bad value for 'user_id' [ 307.123382][T10760] fuse: Bad value for 'user_id' [ 307.241771][T10762] overlayfs: failed to clone upperpath [ 307.504993][T10769] overlayfs: failed to resolve './file0': -2 [ 307.921032][T10781] IPv6: NLM_F_CREATE should be specified when creating new route [ 307.989898][T10783] fuse: Bad value for 'user_id' [ 307.994848][T10783] fuse: Bad value for 'user_id' [ 308.373422][T10798] overlayfs: failed to resolve './file0': -2 [ 309.023708][T10817] fuse: Bad value for 'user_id' [ 309.050549][T10817] fuse: Bad value for 'user_id' [ 309.485151][T10827] netpci0: tun_chr_ioctl cmd 1074025672 [ 309.512005][T10827] netpci0: ignored: set checksum enabled [ 309.861281][T10833] kvm: pic: level sensitive irq not supported [ 309.861372][T10833] kvm: pic: non byte read [ 310.055584][T10841] fuse: Bad value for 'user_id' [ 310.068989][T10841] fuse: Bad value for 'user_id' [ 311.291939][T10870] 9pnet_virtio: no channels available for device ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 312.914475][T10909] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2283'. [ 313.873305][T10941] bridge0: port 3(ip6gretap0) entered blocking state [ 313.880305][T10941] bridge0: port 3(ip6gretap0) entered disabled state [ 313.913752][T10941] ip6gretap0: entered allmulticast mode [ 313.923939][T10941] ip6gretap0: entered promiscuous mode [ 313.959725][T10941] bridge0: port 3(ip6gretap0) entered blocking state [ 313.966903][T10941] bridge0: port 3(ip6gretap0) entered forwarding state [ 314.350934][T10962] fuse: Bad value for 'user_id' [ 314.356161][T10962] fuse: Bad value for 'user_id' [ 315.091663][T10987] fuse: Bad value for 'user_id' [ 315.100209][T10987] fuse: Bad value for 'user_id' [ 315.277859][T10986] capability: warning: `syz.3.2320' uses 32-bit capabilities (legacy support in use) [ 315.318248][T10986] cgroup: Setting release_agent not allowed [ 315.681424][T11004] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2327'. [ 319.693752][T11114] fuse: Bad value for 'user_id' [ 319.723071][T11114] fuse: Bad value for 'user_id' [ 320.141537][T11130] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2384'. [ 321.141891][T11157] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2398'. [ 321.680013][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 321.695145][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 322.313519][ T5957] usb 4-1: new full-speed USB device number 2 using dummy_hcd [ 323.019647][T11203] fuse: Bad value for 'user_id' [ 323.024580][T11203] fuse: Bad value for 'user_id' [ 323.666373][T11217] tipc: Failed to remove unknown binding: 66,1,1/0:1384680970/1384680972 [ 323.688927][T11217] tipc: Failed to remove unknown binding: 66,1,1/0:1384680970/1384680972 [ 324.564635][T11229] fuse: Bad value for 'user_id' [ 324.569571][T11229] fuse: Bad value for 'user_id' [ 328.498835][T11294] overlayfs: missing 'workdir' [ 328.656507][T11296] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2466'. [ 331.424037][T11341] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 331.430518][T11341] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 331.438899][T11341] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 331.459914][T11341] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 331.493732][T11341] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 332.845378][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout [ 333.615090][ T5836] Bluetooth: hci4: command 0x0c1a tx timeout [ 333.621207][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout [ 333.627674][ T5846] Bluetooth: hci3: command 0x0c1a tx timeout [ 333.654140][T11429] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2530'. [ 333.698361][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout [ 336.641558][T11523] 9p: Bad value for 'debug' [ 336.771352][T11526] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2575'. [ 338.162481][T11552] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2589'. [ 339.414777][T11575] tc_dump_action: action bad kind [ 347.142448][T11721] binder: 11720:11721 ioctl c0306201 0 returned -14 [ 349.486682][T11782] netlink: 68 bytes leftover after parsing attributes in process `syz.3.2695'. [ 356.299689][T11882] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 356.308393][T11882] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 356.314583][T11882] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 356.355537][T11882] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 356.382528][T11882] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 357.747177][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout [ 358.514572][ T5836] Bluetooth: hci4: command 0x0c1a tx timeout [ 358.520810][ T5846] Bluetooth: hci1: command 0x0c1a tx timeout [ 358.520825][ T5848] Bluetooth: hci3: command 0x0c1a tx timeout [ 358.599863][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout [ 358.787377][T11920] ªªªªªª: renamed from vlan0 (while UP) [ 360.259808][T11951] binder: 11950:11951 ioctl c0306201 0 returned -14 [ 360.966182][ T5957] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 361.139796][ T5957] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 361.157939][ T5957] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 361.190279][ T5957] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 361.210753][ T5957] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 361.243244][ T5957] usb 5-1: SerialNumber: syz [ 361.325337][T11984] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2789'. [ 361.335106][T11984] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2789'. [ 361.478206][ T5957] usb 5-1: 0:2 : does not exist [ 361.546137][ T5957] usb 5-1: USB disconnect, device number 2 [ 361.659304][T11208] udevd[11208]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 361.740656][T11992] overlayfs: failed to clone upperpath [ 362.003652][T12002] overlayfs: failed to clone lowerpath [ 362.170404][T12010] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2801'. [ 362.213208][T12010] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2801'. [ 363.393001][T12049] cgroup: Setting release_agent not allowed [ 363.665012][T12060] binder: 12059:12060 ioctl c0306201 0 returned -14 [ 365.571291][T12116] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2847'. [ 365.622452][T12116] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2847'. [ 365.634983][T12116] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2847'. [ 370.544303][T12229] batadv_slave_1: entered promiscuous mode [ 370.598788][T12227] batadv_slave_1: left promiscuous mode [ 371.083260][T12246] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2906'. [ 371.092315][T12246] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2906'. [ 371.842013][T12273] overlayfs: failed to clone upperpath [ 372.081341][ T5846] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 372.090720][ T5846] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 372.099208][ T5846] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 372.109690][ T5846] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 372.120759][ T5846] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 372.787475][T12279] chnl_net:caif_netlink_parms(): no params data found [ 373.299771][T12279] bridge0: port 1(bridge_slave_0) entered blocking state [ 373.312818][T12279] bridge0: port 1(bridge_slave_0) entered disabled state [ 373.330776][T12279] bridge_slave_0: entered allmulticast mode [ 373.350696][T12279] bridge_slave_0: entered promiscuous mode [ 373.372630][T12279] bridge0: port 2(bridge_slave_1) entered blocking state [ 373.392168][T12279] bridge0: port 2(bridge_slave_1) entered disabled state [ 373.407437][T12279] bridge_slave_1: entered allmulticast mode [ 373.426471][T12279] bridge_slave_1: entered promiscuous mode [ 373.599604][T12279] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 373.614239][T12279] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 373.724896][T12293] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 373.737415][T12293] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 373.745188][T12293] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 373.764020][T12293] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 373.772029][T12279] team0: Port device team_slave_0 added [ 373.783919][T12293] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 373.791934][T12279] team0: Port device team_slave_1 added [ 373.801416][T12293] Bluetooth: hci5: Opcode 0x0406 failed: -4 [ 373.834466][T12293] Bluetooth: hci5: Opcode 0x0406 failed: -4 [ 373.849647][T12318] cgroup: Setting release_agent not allowed [ 374.153362][T12279] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 374.160387][T12279] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 374.247831][T12279] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 374.278022][T12279] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 374.296000][T12279] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 374.364472][T12279] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 374.765877][ T36] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 375.158936][ T36] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 375.229208][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout [ 375.232166][T12279] hsr_slave_0: entered promiscuous mode [ 375.264254][T12279] hsr_slave_1: entered promiscuous mode [ 375.287181][T12279] debugfs: 'hsr0' already exists in 'hsr' [ 375.318443][T12279] Cannot create hsr debugfs directory [ 375.446110][ T36] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 375.808575][ T36] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 375.911439][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout [ 375.911469][ T5846] Bluetooth: hci1: command 0x0c1a tx timeout [ 375.917556][ T5848] Bluetooth: hci3: command 0x0c1a tx timeout [ 375.996796][ T5836] Bluetooth: hci5: command 0x041b tx timeout [ 376.022354][T12341] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 376.033325][T12341] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 376.059911][T12341] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 376.102267][T12341] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 376.116837][T12341] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 376.631607][ T36] ip6gretap0: left allmulticast mode [ 376.659629][ T36] ip6gretap0: left promiscuous mode [ 376.666276][ T36] bridge0: port 3(ip6gretap0) entered disabled state [ 376.761058][ T36] bridge_slave_1: left allmulticast mode [ 376.794954][ T36] bridge_slave_1: left promiscuous mode [ 376.807171][ T36] bridge0: port 2(bridge_slave_1) entered disabled state [ 376.893235][ T36] bridge_slave_0: left allmulticast mode [ 376.909504][ T36] bridge_slave_0: left promiscuous mode [ 376.934636][ T36] bridge0: port 1(bridge_slave_0) entered disabled state [ 377.616775][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout [ 377.950505][T12388] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2964'. [ 378.214068][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout [ 378.221115][ T5848] Bluetooth: hci3: command 0x0c1a tx timeout [ 378.299260][ T5836] Bluetooth: hci5: command 0x041b tx timeout [ 378.306069][ T5848] Bluetooth: hci2: command 0x0c1a tx timeout [ 378.594340][ T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 378.619689][ T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 378.637494][ T36] bond0 (unregistering): Released all slaves [ 378.992581][T12415] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2975'. [ 380.212255][ T36] hsr_slave_0: left promiscuous mode [ 380.261257][ T36] hsr_slave_1: left promiscuous mode [ 380.271413][ T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 380.278901][ T36] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 380.338889][ T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 380.354119][ T36] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 380.437094][ T36] veth1_macvtap: left promiscuous mode [ 380.451959][ T36] veth0_macvtap: left promiscuous mode [ 380.470729][ T36] veth1_vlan: left promiscuous mode [ 380.495711][ T36] veth0_vlan: left promiscuous mode [ 380.517318][ T5848] Bluetooth: hci5: command 0x041b tx timeout [ 381.339448][T12479] overlayfs: failed to clone upperpath [ 381.812611][ T36] team0 (unregistering): Port device team_slave_1 removed [ 381.909358][ T36] team0 (unregistering): Port device team_slave_0 removed [ 382.733490][ T5848] Bluetooth: hci5: command 0x041b tx timeout [ 383.227802][T12279] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 383.280839][T12279] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 383.387485][T12279] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 383.436974][T12279] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 384.025096][T12279] 8021q: adding VLAN 0 to HW filter on device bond0 [ 384.082445][T12279] 8021q: adding VLAN 0 to HW filter on device team0 [ 384.151838][ T5942] bridge0: port 1(bridge_slave_0) entered blocking state [ 384.159139][ T5942] bridge0: port 1(bridge_slave_0) entered forwarding state [ 384.234359][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 384.241689][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 384.400380][T12279] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 384.950745][ T5848] Bluetooth: hci5: command 0x041b tx timeout [ 385.181236][T12279] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 385.408688][T12279] veth0_vlan: entered promiscuous mode [ 385.467374][T12279] veth1_vlan: entered promiscuous mode [ 385.629468][T12279] veth0_macvtap: entered promiscuous mode [ 385.690814][T12279] veth1_macvtap: entered promiscuous mode [ 385.788356][T12279] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 385.863245][T12279] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 385.910121][ T50] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 385.951435][ T50] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 386.010073][ T50] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 386.035740][ T50] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 386.317224][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 386.325133][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 386.475047][ T66] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 386.496372][ T66] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 387.174612][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 387.177936][ T5848] Bluetooth: hci5: command 0x041b tx timeout [ 387.181699][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 387.510082][ T5848] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 387.528968][ T5848] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 387.539976][ T5848] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 387.561414][ T5848] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 387.573047][ T5848] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 388.573193][T12599] chnl_net:caif_netlink_parms(): no params data found [ 388.845124][ T66] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 389.132745][ T66] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 389.270531][T12644] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3047'. [ 389.315501][ T66] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 389.527005][ T66] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 389.632068][T12599] bridge0: port 1(bridge_slave_0) entered blocking state [ 389.653103][T12599] bridge0: port 1(bridge_slave_0) entered disabled state [ 389.661089][T12599] bridge_slave_0: entered allmulticast mode [ 389.681135][T12599] bridge_slave_0: entered promiscuous mode [ 389.711069][T12599] bridge0: port 2(bridge_slave_1) entered blocking state [ 389.731363][T12599] bridge0: port 2(bridge_slave_1) entered disabled state [ 389.750075][T12599] bridge_slave_1: entered allmulticast mode [ 389.769558][T12599] bridge_slave_1: entered promiscuous mode [ 389.817879][ T5848] Bluetooth: hci4: command tx timeout [ 390.008687][T12599] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 390.099115][T12599] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 390.289929][T12599] team0: Port device team_slave_0 added [ 390.317028][T12599] team0: Port device team_slave_1 added [ 390.514885][T12599] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 390.544094][T12599] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 390.635844][T12599] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 390.720451][T12599] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 390.749397][T12599] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 390.835538][T12599] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 390.907432][ T66] bridge_slave_1: left allmulticast mode [ 390.913404][ T66] bridge_slave_1: left promiscuous mode [ 390.930195][ T66] bridge0: port 2(bridge_slave_1) entered disabled state [ 390.963254][ T66] bridge_slave_0: left allmulticast mode [ 390.969290][ T66] bridge_slave_0: left promiscuous mode [ 390.989767][ T66] bridge0: port 1(bridge_slave_0) entered disabled state [ 392.030592][ T5848] Bluetooth: hci4: command tx timeout [ 392.636002][ T66] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 392.701131][ T66] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 392.766687][ T66] bond0 (unregistering): Released all slaves [ 393.119779][T12599] hsr_slave_0: entered promiscuous mode [ 393.159216][T12599] hsr_slave_1: entered promiscuous mode [ 393.166009][T12599] debugfs: 'hsr0' already exists in 'hsr' [ 393.178377][T12599] Cannot create hsr debugfs directory [ 393.314018][T12700] overlayfs: failed to clone upperpath [ 393.999676][ T66] hsr_slave_0: left promiscuous mode [ 394.045581][ T66] hsr_slave_1: left promiscuous mode [ 394.084329][ T66] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 394.108501][ T66] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 394.137401][ T66] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 394.162047][ T66] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 394.254796][ T5848] Bluetooth: hci4: command tx timeout [ 394.273082][ T66] veth1_macvtap: left promiscuous mode [ 394.301869][ T66] veth0_macvtap: left promiscuous mode [ 394.307666][ T66] veth1_vlan: left promiscuous mode [ 394.365882][ T66] veth0_vlan: left promiscuous mode [ 396.229674][ T66] team0 (unregistering): Port device team_slave_1 removed [ 396.334700][ T66] team0 (unregistering): Port device team_slave_0 removed [ 396.468523][ T5848] Bluetooth: hci4: command tx timeout [ 398.115743][T12745] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -4 [ 398.148525][T12745] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -4 [ 398.183331][T12745] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 398.917505][T12778] overlayfs: failed to clone upperpath [ 399.212288][T12787] overlayfs: failed to clone upperpath [ 399.562075][T12599] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 399.594965][T12599] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 399.627028][T12599] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 399.661840][T12599] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 400.017578][T12599] 8021q: adding VLAN 0 to HW filter on device bond0 [ 400.108306][T12599] 8021q: adding VLAN 0 to HW filter on device team0 [ 400.146634][ T50] bridge0: port 1(bridge_slave_0) entered blocking state [ 400.153964][ T50] bridge0: port 1(bridge_slave_0) entered forwarding state [ 400.228806][ T5942] bridge0: port 2(bridge_slave_1) entered blocking state [ 400.236029][ T5942] bridge0: port 2(bridge_slave_1) entered forwarding state [ 400.926522][T12832] binder: 12830:12832 ioctl c00c620f 0 returned -14 [ 401.084400][T12599] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 401.293601][T12599] veth0_vlan: entered promiscuous mode [ 401.341680][T12599] veth1_vlan: entered promiscuous mode [ 401.489892][T12599] veth0_macvtap: entered promiscuous mode [ 401.534667][T12599] veth1_macvtap: entered promiscuous mode [ 401.611254][T12599] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 401.650195][T12599] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 401.736301][ T50] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 401.769948][ T50] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 401.832682][ T50] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 401.863723][ T50] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 402.118702][ T50] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 402.146901][ T50] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 402.286263][ T50] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 402.316021][ T50] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 403.474678][ T5836] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 403.487465][ T5836] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 403.495913][ T5836] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 403.506233][ T5836] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 403.514208][ T5836] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 404.825710][T12865] chnl_net:caif_netlink_parms(): no params data found [ 405.706278][ T36] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 405.759160][ T5848] Bluetooth: hci0: command tx timeout [ 405.932555][T12865] bridge0: port 1(bridge_slave_0) entered blocking state [ 405.946343][T12865] bridge0: port 1(bridge_slave_0) entered disabled state [ 405.953832][T12865] bridge_slave_0: entered allmulticast mode [ 405.972893][T12865] bridge_slave_0: entered promiscuous mode [ 406.000859][T12933] overlayfs: failed to clone upperpath [ 406.251828][ T36] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 406.311875][T12943] overlayfs: failed to clone upperpath [ 406.326640][T12865] bridge0: port 2(bridge_slave_1) entered blocking state [ 406.357068][T12865] bridge0: port 2(bridge_slave_1) entered disabled state [ 406.365077][T12865] bridge_slave_1: entered allmulticast mode [ 406.385048][T12865] bridge_slave_1: entered promiscuous mode [ 406.645836][ T36] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 407.137729][ T36] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 407.239116][T12865] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 407.288685][T12865] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 407.535479][T12865] team0: Port device team_slave_0 added [ 407.571333][T12865] team0: Port device team_slave_1 added [ 407.847759][T12865] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 407.866429][T12865] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 407.922618][T12865] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 407.976930][ T5848] Bluetooth: hci0: command tx timeout [ 408.009084][T12985] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3151'. [ 408.028771][T12865] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 408.049373][T12865] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 408.115269][T12865] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 408.496687][T12865] hsr_slave_0: entered promiscuous mode [ 408.516064][T12865] hsr_slave_1: entered promiscuous mode [ 408.649004][ T36] bridge_slave_1: left allmulticast mode [ 408.654750][ T36] bridge_slave_1: left promiscuous mode [ 408.680364][ T36] bridge0: port 2(bridge_slave_1) entered disabled state [ 408.734229][ T36] bridge_slave_0: left allmulticast mode [ 408.740033][ T36] bridge_slave_0: left promiscuous mode [ 408.785459][ T36] bridge0: port 1(bridge_slave_0) entered disabled state [ 410.199613][ T5848] Bluetooth: hci0: command tx timeout [ 410.290211][ T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 410.340160][ T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 410.383882][ T36] bond0 (unregistering): Released all slaves [ 411.782858][ T36] hsr_slave_0: left promiscuous mode [ 411.795525][ T36] hsr_slave_1: left promiscuous mode [ 411.814909][ T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 411.833361][ T36] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 411.880488][ T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 411.898821][ T36] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 411.948646][ T36] veth1_macvtap: left promiscuous mode [ 411.988376][ T36] veth0_macvtap: left promiscuous mode [ 411.994222][ T36] veth1_vlan: left promiscuous mode [ 412.019027][ T36] veth0_vlan: left promiscuous mode [ 412.410626][ T5848] Bluetooth: hci0: command tx timeout [ 413.393290][ T36] team0 (unregistering): Port device team_slave_1 removed [ 413.463196][ T36] team0 (unregistering): Port device team_slave_0 removed [ 413.801100][T13109] overlayfs: failed to clone upperpath [ 414.093022][T13115] binder: 13114:13115 ioctl c00c620f 0 returned -14 [ 414.500870][T13101] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 414.508004][T13101] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 414.529968][T13101] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 414.563940][T13101] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 414.570215][T13101] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 414.594448][T13101] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 414.650414][T13101] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 414.667500][T13101] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 414.690348][T13101] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 415.030170][T13141] overlayfs: failed to resolve './bus': -2 [ 415.493580][T13155] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3213'. [ 415.537168][T12865] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 415.579868][T12865] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 415.639713][T12865] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 415.640302][T13161] netlink: 68 bytes leftover after parsing attributes in process `syz.0.3215'. [ 415.708278][T12865] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 416.096580][T12865] 8021q: adding VLAN 0 to HW filter on device bond0 [ 416.178579][T12865] 8021q: adding VLAN 0 to HW filter on device team0 [ 416.234844][ T66] bridge0: port 1(bridge_slave_0) entered blocking state [ 416.242196][ T66] bridge0: port 1(bridge_slave_0) entered forwarding state [ 416.321190][ T5942] bridge0: port 2(bridge_slave_1) entered blocking state [ 416.328474][ T5942] bridge0: port 2(bridge_slave_1) entered forwarding state [ 416.676727][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout [ 416.676736][ T5848] Bluetooth: hci5: command 0x041b tx timeout [ 416.760864][ T5836] Bluetooth: hci4: command 0x0c1a tx timeout [ 416.845026][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout [ 416.882087][T13180] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 416.894804][T13180] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 416.920399][T13180] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 416.927027][T13180] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 416.943867][T12865] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 416.966679][T13180] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 417.063816][T12865] veth0_vlan: entered promiscuous mode [ 417.118711][T12865] veth1_vlan: entered promiscuous mode [ 417.242367][T12865] veth0_macvtap: entered promiscuous mode [ 417.252998][ T9] usb 5-1: new full-speed USB device number 3 using dummy_hcd [ 417.279609][T12865] veth1_macvtap: entered promiscuous mode [ 417.335653][T12865] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 417.367040][T12865] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 417.385774][ T50] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 417.418924][ T50] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 417.474427][ T50] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 417.502256][ T9] usb 5-1: config 0 has an invalid interface number: 41 but max is 0 [ 417.525998][ T9] usb 5-1: config 0 has no interface number 0 [ 417.545814][ T50] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 417.565281][ T9] usb 5-1: config 0 interface 41 has no altsetting 0 [ 417.610413][ T9] usb 5-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a [ 417.645899][ T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 417.675077][ T9] usb 5-1: Product: syz [ 417.689220][ T9] usb 5-1: Manufacturer: syz [ 417.700303][ T9] usb 5-1: SerialNumber: syz [ 417.724616][ T9] usb 5-1: config 0 descriptor?? [ 417.791286][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 417.824934][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 417.936991][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 417.966865][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 418.219656][ T9] CoreChips 5-1:0.41 (unnamed net_device) (uninitialized): set LINK LED failed : -71 [ 418.256220][ T9] CoreChips 5-1:0.41: probe with driver CoreChips failed with error -71 [ 418.295312][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout [ 418.316769][ T9] usb 5-1: USB disconnect, device number 3 [ 418.831075][ T5848] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 418.845661][ T5848] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 418.854848][ T5848] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 418.863823][ T5848] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 418.882071][ T5848] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 419.063357][ T5836] Bluetooth: hci4: command 0x0c1a tx timeout [ 419.063378][ T5848] Bluetooth: hci5: command 0x041b tx timeout [ 419.063421][ T5848] Bluetooth: hci2: command 0x0c1a tx timeout [ 419.147519][ T5848] Bluetooth: hci0: command 0x0c1a tx timeout [ 419.734937][T13280] overlayfs: failed to resolve './file1': -2 [ 420.057171][T13254] chnl_net:caif_netlink_parms(): no params data found [ 420.165486][ T50] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 420.526918][ T50] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 420.602434][T13316] overlayfs: failed to resolve './file1': -2 [ 420.874626][ T50] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 421.018827][T13254] bridge0: port 1(bridge_slave_0) entered blocking state [ 421.044131][T13254] bridge0: port 1(bridge_slave_0) entered disabled state [ 421.084603][T13254] bridge_slave_0: entered allmulticast mode [ 421.104460][T13254] bridge_slave_0: entered promiscuous mode [ 421.111772][ T5848] Bluetooth: hci1: command tx timeout [ 421.241484][ T50] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 421.280180][ T5848] Bluetooth: hci4: command 0x0c1a tx timeout [ 421.311991][T13254] bridge0: port 2(bridge_slave_1) entered blocking state [ 421.338850][T13254] bridge0: port 2(bridge_slave_1) entered disabled state [ 421.364698][ T5848] Bluetooth: hci0: command 0x0c1a tx timeout [ 421.393368][T13254] bridge_slave_1: entered allmulticast mode [ 421.416942][T13254] bridge_slave_1: entered promiscuous mode [ 421.660418][T13254] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 421.729173][T13254] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 422.078142][T13254] team0: Port device team_slave_0 added [ 422.112499][T13254] team0: Port device team_slave_1 added [ 422.420287][T13254] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 422.447702][T13254] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 422.537511][T13254] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 422.559017][ T50] bridge_slave_1: left allmulticast mode [ 422.564748][ T50] bridge_slave_1: left promiscuous mode [ 422.598739][ T50] bridge0: port 2(bridge_slave_1) entered disabled state [ 422.627247][ T50] bridge_slave_0: left allmulticast mode [ 422.652100][ T50] bridge_slave_0: left promiscuous mode [ 422.670517][ T50] bridge0: port 1(bridge_slave_0) entered disabled state [ 422.899513][T13379] binder: 13378:13379 ioctl c00c620f 0 returned -14 [ 423.326187][ T5848] Bluetooth: hci1: command tx timeout [ 423.522754][T13387] fuse: Bad value for 'user_id' [ 423.534263][T13387] fuse: Bad value for 'user_id' [ 424.007377][ T50] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 424.065469][ T50] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 424.126047][ T50] bond0 (unregistering): Released all slaves [ 424.187963][T13254] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 424.210794][T13254] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 424.298164][T13254] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 424.986611][T13254] hsr_slave_0: entered promiscuous mode [ 425.048594][T13254] hsr_slave_1: entered promiscuous mode [ 425.067838][T13254] debugfs: 'hsr0' already exists in 'hsr' [ 425.073658][T13254] Cannot create hsr debugfs directory [ 425.544630][ T5848] Bluetooth: hci1: command tx timeout [ 426.079940][ T50] hsr_slave_0: left promiscuous mode [ 426.117873][ T50] hsr_slave_1: left promiscuous mode [ 426.138202][ T50] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 426.166809][ T50] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 426.199173][ T50] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 426.232159][ T50] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 426.316856][ T50] veth1_macvtap: left promiscuous mode [ 426.346617][ T50] veth0_macvtap: left promiscuous mode [ 426.352512][ T50] veth1_vlan: left promiscuous mode [ 426.370819][ T50] veth0_vlan: left promiscuous mode [ 427.413231][ T50] team0 (unregistering): Port device team_slave_1 removed [ 427.427825][T13476] overlayfs: missing 'lowerdir' [ 427.482292][ T50] team0 (unregistering): Port device team_slave_0 removed [ 427.761225][ T5848] Bluetooth: hci1: command tx timeout [ 428.529118][T13452] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -4 [ 428.559493][T13452] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -4 [ 428.573684][T13452] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db [ 430.396191][T13254] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 430.437785][T13254] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 430.542761][T13254] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 430.666477][T13254] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 431.035263][T13254] 8021q: adding VLAN 0 to HW filter on device bond0 [ 431.140230][T13254] 8021q: adding VLAN 0 to HW filter on device team0 [ 431.187243][ T50] bridge0: port 1(bridge_slave_0) entered blocking state [ 431.194741][ T50] bridge0: port 1(bridge_slave_0) entered forwarding state [ 431.285520][ T66] bridge0: port 2(bridge_slave_1) entered blocking state [ 431.292821][ T66] bridge0: port 2(bridge_slave_1) entered forwarding state [ 432.206776][T13254] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 432.401343][T13254] veth0_vlan: entered promiscuous mode [ 432.439092][T13254] veth1_vlan: entered promiscuous mode [ 432.550755][T13254] veth0_macvtap: entered promiscuous mode [ 432.558626][T13553] binder: 13552:13553 ioctl c00c620f 0 returned -14 [ 432.603391][T13254] veth1_macvtap: entered promiscuous mode [ 432.674458][T13254] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 432.718293][T13254] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 432.778968][ T36] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 432.804938][ T5942] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 432.911453][ T5942] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 432.941470][ T5942] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 433.208244][ T5942] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 433.216132][ T5942] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 433.346366][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 433.366243][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 435.013689][ T5846] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 435.028079][ T5846] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 435.036386][ T5846] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 435.060563][ T5846] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 435.081672][ T5846] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 436.174020][T13605] chnl_net:caif_netlink_parms(): no params data found [ 436.706331][T13605] bridge0: port 1(bridge_slave_0) entered blocking state [ 436.713847][T13605] bridge0: port 1(bridge_slave_0) entered disabled state [ 436.726734][T13605] bridge_slave_0: entered allmulticast mode [ 436.735079][T13605] bridge_slave_0: entered promiscuous mode [ 436.769492][T13605] bridge0: port 2(bridge_slave_1) entered blocking state [ 436.777266][T13605] bridge0: port 2(bridge_slave_1) entered disabled state [ 436.798735][T13605] bridge_slave_1: entered allmulticast mode [ 436.823826][T13605] bridge_slave_1: entered promiscuous mode [ 437.041467][T13605] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 437.092047][T13605] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 437.314097][ T5848] Bluetooth: hci3: command tx timeout [ 437.424283][T13605] team0: Port device team_slave_0 added [ 437.475963][T13605] team0: Port device team_slave_1 added [ 437.743795][T13605] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 437.762275][T13605] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 437.825848][T13605] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 437.860458][T13605] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 437.876720][T13605] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 437.929587][T13605] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 438.227684][T13605] hsr_slave_0: entered promiscuous mode [ 438.249146][T13605] hsr_slave_1: entered promiscuous mode [ 438.261924][T13605] debugfs: 'hsr0' already exists in 'hsr' [ 438.270141][T13605] Cannot create hsr debugfs directory [ 439.208430][T13605] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 439.531637][ T5848] Bluetooth: hci3: command tx timeout [ 439.588191][T13605] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 439.926136][T13605] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 440.130347][T13605] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 440.563260][T13605] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 440.609535][T13605] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 440.669372][T13605] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 440.727652][T13605] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 441.161543][T13605] 8021q: adding VLAN 0 to HW filter on device bond0 [ 441.227706][T13605] 8021q: adding VLAN 0 to HW filter on device team0 [ 441.267573][ T66] bridge0: port 1(bridge_slave_0) entered blocking state [ 441.274821][ T66] bridge0: port 1(bridge_slave_0) entered forwarding state [ 441.324024][ T50] bridge0: port 2(bridge_slave_1) entered blocking state [ 441.331315][ T50] bridge0: port 2(bridge_slave_1) entered forwarding state [ 441.748515][ T5848] Bluetooth: hci3: command tx timeout [ 442.125727][T13605] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 442.237595][T13725] overlayfs: missing 'workdir' [ 442.611535][T13735] overlayfs: failed to resolve './file1': -2 [ 442.894015][T13605] veth0_vlan: entered promiscuous mode [ 442.928639][T13605] veth1_vlan: entered promiscuous mode [ 443.062478][T13605] veth0_macvtap: entered promiscuous mode [ 443.093536][T13605] veth1_macvtap: entered promiscuous mode [ 443.172066][T13605] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 443.216428][T13605] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 443.269774][ T1003] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 443.306041][ T1003] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 443.336408][ T1003] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 443.371068][ T1003] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 443.579866][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 443.587754][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 443.693601][T13758] overlayfs: failed to resolve './file1': -2 [ 443.717813][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 443.760962][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 443.963904][ T5848] Bluetooth: hci3: command tx timeout [ 444.415339][T13778] overlayfs: missing 'workdir' [ 446.836334][T13808] overlayfs: failed to resolve './file1': -2 [ 452.669333][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 452.676609][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 460.309748][T13992] binder: 13990:13992 ioctl c00c620f 0 returned -14 [ 470.105548][T14191] overlayfs: missing 'lowerdir' [ 471.312857][T14229] binder: 14228:14229 ioctl c00c620f 0 returned -14 [ 472.079020][T14253] overlayfs: missing 'workdir' [ 472.644070][T14274] fuse: Unknown parameter '0x0000000000000005' [ 473.259088][T14292] tmpfs: Bad value for 'huge' [ 473.301400][T14296] overlayfs: missing 'workdir' [ 473.710134][T14311] fuse: Unknown parameter 'fd0x0000000000000005' [ 474.168795][T14319] tmpfs: Unknown parameter 'nr_b' [ 474.257158][T14327] overlayfs: missing 'workdir' [ 474.753142][T14340] fuse: Unknown parameter 'fd0x0000000000000005' [ 475.735850][T14359] tmpfs: Unknown parameter 'nr_b' [ 476.034609][T14370] fuse: Unknown parameter 'fd0x0000000000000005' [ 476.957368][T14390] tmpfs: Unknown parameter 'nr_b' [ 477.543726][T14406] fuse: Bad value for 'user_id' [ 477.548934][T14406] fuse: Bad value for 'user_id' [ 478.545688][T14423] tmpfs: Unknown parameter 'nr_block' [ 479.415444][T14437] fuse: Bad value for 'user_id' [ 479.420539][T14437] fuse: Bad value for 'user_id' [ 479.985295][T14444] netlink: 'syz.4.3735': attribute type 9 has an invalid length. [ 480.543869][T14453] tmpfs: Unknown parameter 'nr_block' [ 481.549633][T14469] fuse: Bad value for 'user_id' [ 481.603784][T14469] fuse: Bad value for 'user_id' [ 482.000678][T14479] tmpfs: Unknown parameter 'nr_block' [ 483.016116][T14484] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 483.022543][T14484] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 483.031087][T14484] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 483.069166][T14493] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 483.095993][T14493] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 483.102971][T14484] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 483.123797][T14484] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 483.289758][T14484] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 483.346212][T14500] fuse: Bad value for 'fd' [ 483.404619][T14484] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 483.474349][T14484] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 483.526021][T14484] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 484.087303][T14514] tmpfs: Bad value for 'nr_blocks' [ 484.582564][T14518] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3764'. [ 484.611325][T14528] fuse: Bad value for 'user_id' [ 484.616253][T14528] fuse: Bad value for 'user_id' [ 484.730750][ T5846] Bluetooth: hci5: command 0x041b tx timeout [ 485.238700][ T5846] Bluetooth: hci4: command 0x0c1a tx timeout [ 485.244963][ T5848] Bluetooth: hci1: command 0x0c1a tx timeout [ 485.251126][ T5848] Bluetooth: hci0: command 0x0c1a tx timeout [ 485.579950][T14538] Bluetooth: hci3: command 0x0c1a tx timeout [ 486.261001][T14557] fuse: Bad value for 'user_id' [ 486.272551][T14557] fuse: Bad value for 'user_id' [ 487.460054][T14538] Bluetooth: hci1: command 0x0c1a tx timeout [ 487.698921][T14586] fuse: Bad value for 'user_id' [ 487.764843][T14586] fuse: Bad value for 'user_id' [ 487.799291][T14538] Bluetooth: hci3: command 0x0c1a tx timeout [ 489.495839][T14618] fuse: Bad value for 'user_id' [ 489.500837][T14618] fuse: Bad value for 'user_id' [ 489.681205][T14538] Bluetooth: hci1: command 0x0c1a tx timeout [ 489.846285][T14628] netlink: 556 bytes leftover after parsing attributes in process `syz.1.3817'. [ 490.016386][T14538] Bluetooth: hci3: command 0x0c1a tx timeout [ 490.548307][T14649] fuse: Bad value for 'user_id' [ 490.553234][T14649] fuse: Bad value for 'user_id' [ 491.752099][T14681] fuse: Bad value for 'user_id' [ 491.757033][T14681] fuse: Bad value for 'user_id' [ 494.047918][T14711] fuse: Bad value for 'user_id' [ 494.068304][T14711] fuse: Bad value for 'user_id' [ 495.096626][T14729] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null. [ 495.127836][T14729] overlayfs: missing 'lowerdir' [ 495.373765][T14737] fuse: Bad value for 'user_id' [ 495.430345][T14737] fuse: Bad value for 'user_id' [ 497.959963][T14775] binder: 14774:14775 ioctl 4018620d 0 returned -22 [ 500.812522][T14803] binder: 14801:14803 ioctl 4018620d 0 returned -22 [ 501.791259][T14805] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 501.805849][T14805] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 501.826898][T14805] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 501.839250][ T50] bridge_slave_1: left allmulticast mode [ 501.845143][ T50] bridge_slave_1: left promiscuous mode [ 501.857486][T14805] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 501.868780][ T50] bridge0: port 2(bridge_slave_1) entered disabled state [ 501.875201][T14805] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 501.897345][ T50] bridge_slave_0: left allmulticast mode [ 501.921084][ T50] bridge_slave_0: left promiscuous mode [ 501.937902][ T50] bridge0: port 1(bridge_slave_0) entered disabled state [ 503.150508][T14538] Bluetooth: hci5: command 0x041b tx timeout [ 503.387302][ T50] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 503.400968][ T50] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 503.422197][ T50] bond0 (unregistering): Released all slaves [ 503.886830][T14831] binder: 14830:14831 ioctl 4018620d 0 returned -22 [ 504.000502][T14538] Bluetooth: hci1: command 0x0c1a tx timeout [ 504.006749][T14538] Bluetooth: hci0: command 0x0c1a tx timeout [ 504.014871][ T5836] Bluetooth: hci4: command 0x0c1a tx timeout [ 504.084983][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout [ 504.246254][ T50] hsr_slave_0: left promiscuous mode [ 504.254123][ T50] hsr_slave_1: left promiscuous mode [ 504.270995][ T50] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 504.287868][ T50] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 504.308692][ T50] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 504.339567][ T50] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 504.380605][ T50] veth1_macvtap: left promiscuous mode [ 504.412132][ T50] veth0_macvtap: left promiscuous mode [ 504.426840][ T50] veth1_vlan: left promiscuous mode [ 504.443122][ T50] veth0_vlan: left promiscuous mode [ 504.728252][T14845] fuse: Bad value for 'user_id' [ 504.745380][T14845] fuse: Bad value for 'user_id' [ 506.152125][ T50] team0 (unregistering): Port device team_slave_1 removed [ 506.253016][ T50] team0 (unregistering): Port device team_slave_0 removed [ 508.541743][T14898] fuse: Bad value for 'user_id' [ 508.546680][T14898] fuse: Bad value for 'user_id' [ 508.953548][T14910] binder: 14908:14910 ioctl c00c620f 0 returned -14 [ 510.355940][T14938] binder: 14937:14938 ioctl c00c620f 0 returned -14 [ 516.555577][T15033] binder: Bad value for 'stats' [ 518.166938][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 518.173333][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 518.351110][T15058] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4018'. [ 519.438075][T15084] binder: 15082:15084 ioctl c00c620f 0 returned -14 [ 520.384670][T15113] binder: 15111:15113 ioctl c00c620f 0 returned -14 [ 521.499314][T15143] binder: 15142:15143 ioctl c00c620f 0 returned -14 [ 522.098307][T15134] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 522.118683][T15134] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 522.119201][T15167] overlayfs: missing 'lowerdir' [ 522.133694][T15134] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 522.155183][T15134] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 522.161374][T15134] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 522.496309][T15176] binder: 15174:15176 ioctl c00c620f 0 returned -14 [ 522.720724][T15183] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4077'. [ 523.027225][T15194] netlink: 80 bytes leftover after parsing attributes in process `syz.1.4083'. [ 523.245148][T15204] binder: 15202:15204 ioctl c00c620f 0 returned -14 [ 523.270500][ T30] audit: type=1800 audit(2000000057.862:38): pid=15205 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.4088" name="cpuacct.usage_percpu" dev="overlay" ino=852 res=0 errno=0 [ 523.529060][T14538] Bluetooth: hci5: command 0x041b tx timeout [ 523.953207][T15223] netlink: 80 bytes leftover after parsing attributes in process `syz.4.4097'. [ 524.161024][T15228] binder: 15227:15228 ioctl c00c620f 0 returned -14 [ 524.296343][T14538] Bluetooth: hci0: command 0x0c1a tx timeout [ 524.296472][ T5836] Bluetooth: hci4: command 0x0c1a tx timeout [ 524.381404][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout [ 524.382857][T14538] Bluetooth: hci1: command 0x0c1a tx timeout [ 524.753785][T15246] netlink: 80 bytes leftover after parsing attributes in process `syz.1.4109'. [ 526.462990][T15290] binder: 15289:15290 ioctl c0306201 2000000001c0 returned -14 [ 528.684186][T15344] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4150'. [ 529.566677][T15370] serio: Serial port ptm0 [ 529.567306][T15368] netlink: 80 bytes leftover after parsing attributes in process `syz.2.4161'. [ 532.381307][T15464] netlink: 64 bytes leftover after parsing attributes in process `syz.3.4203'. [ 538.798482][T15572] !@ÿ: renamed from xfrm0 (while UP) [ 540.195173][T15603] netlink: 80 bytes leftover after parsing attributes in process `syz.3.4267'. [ 540.571233][T15614] overlayfs: failed to resolve './file1/file0': -2 [ 541.133145][T15607] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 541.160615][T15607] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 541.166889][T15607] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 541.181721][T15607] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 541.196228][T15607] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 541.629473][T15641] overlayfs: failed to resolve './file1/file0': -2 [ 541.638974][T15643] tc_dump_action: action bad kind [ 542.460931][ T5836] Bluetooth: hci5: command 0x041b tx timeout [ 543.314128][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout [ 543.320235][ T5836] Bluetooth: hci4: command 0x0c1a tx timeout [ 543.398946][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout [ 543.405704][T14538] Bluetooth: hci1: command 0x0c1a tx timeout [ 543.571513][T15667] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 543.577915][T15667] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 543.590741][T15667] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 543.601469][T15667] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 543.624521][T15667] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 544.933824][ T5836] Bluetooth: hci5: command 0x041b tx timeout [ 545.786357][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout [ 545.789353][T14538] Bluetooth: hci1: command 0x0c1a tx timeout [ 545.794020][ T5846] Bluetooth: hci0: command 0x0c1a tx timeout [ 545.794080][ T5846] Bluetooth: hci4: command 0x0c1a tx timeout [ 550.790743][T15787] fuse: Bad value for 'user_id' [ 550.795700][T15787] fuse: Bad value for 'user_id' [ 551.964010][T15807] fuse: Bad value for 'user_id' [ 551.990551][T15807] fuse: Bad value for 'user_id' [ 552.492259][T15821] binder: 15819:15821 ioctl c00c620f 0 returned -14 [ 553.073512][T15843] fuse: Bad value for 'user_id' [ 553.084535][T15843] fuse: Bad value for 'user_id' [ 553.447473][T15856] binder: 15855:15856 ioctl c00c620f 0 returned -14 [ 553.881833][T15869] fuse: Bad value for 'user_id' [ 553.924231][T15869] fuse: Bad value for 'user_id' [ 553.962345][ T30] audit: type=1800 audit(2000000086.642:39): pid=15873 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.4383" name="cpuacct.usage_percpu" dev="overlay" ino=1965 res=0 errno=0 [ 554.427980][T15891] binder: 15890:15891 ioctl c0306201 200000000080 returned -14 [ 554.853041][T15902] netlink: 'syz.2.4396': attribute type 64 has an invalid length. [ 554.869036][T15902] netlink: 5 bytes leftover after parsing attributes in process `syz.2.4396'. [ 554.880462][T15902] gretap0: entered allmulticast mode [ 554.886505][T15902] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 556.190834][T15949] netlink: 76 bytes leftover after parsing attributes in process `syz.3.4419'. [ 556.962634][T15966] netlink: 'syz.0.4410': attribute type 64 has an invalid length. [ 556.972610][T15966] netlink: 5 bytes leftover after parsing attributes in process `syz.0.4410'. [ 557.004024][T15966] gretap0: entered allmulticast mode [ 557.020772][T15966] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 558.009692][T15981] binder: 15980:15981 ioctl c00c620f 0 returned -14 [ 560.698903][T16017] netlink: 'syz.1.4453': attribute type 64 has an invalid length. [ 560.761779][T16017] netlink: 5 bytes leftover after parsing attributes in process `syz.1.4453'. [ 560.795598][T16017] gretap0: entered allmulticast mode [ 560.819355][T16017] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 560.930924][T16022] binder: 16021:16022 ioctl c00c620f 0 returned -14 [ 561.329035][T16014] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 561.344709][T16014] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 561.366867][T16014] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 561.382436][T16014] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 561.395893][T16014] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 561.768124][T16050] netlink: 80 bytes leftover after parsing attributes in process `syz.0.4466'. [ 562.762428][ T5846] Bluetooth: hci5: command 0x041b tx timeout [ 563.241711][T16079] netlink: 80 bytes leftover after parsing attributes in process `syz.4.4480'. [ 563.527668][ T5846] Bluetooth: hci1: command 0x0c1a tx timeout [ 563.533778][ T5846] Bluetooth: hci0: command 0x0c1a tx timeout [ 563.543037][ T5836] Bluetooth: hci4: command 0x0c1a tx timeout [ 563.613159][ T5848] Bluetooth: hci3: command 0x0c1a tx timeout [ 568.304171][T16163] overlayfs: failed to resolve './file0': -2 [ 568.371252][T16151] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 568.398538][T16151] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 568.427030][T16151] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 568.443558][T16151] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 568.481388][T16151] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 568.731036][T16169] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4525'. [ 569.120950][ T30] audit: type=1326 audit(2000000100.864:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16176 comm="syz.2.4529" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fbc76f8f6c9 code=0x0 [ 569.749907][ T5848] Bluetooth: hci5: command 0x041b tx timeout [ 570.202597][T16197] binder: 16196:16197 ioctl 80089418 2000000000c0 returned -22 [ 570.604978][ T5848] Bluetooth: hci1: command 0x0c1a tx timeout [ 570.605000][ T5846] Bluetooth: hci0: command 0x0c1a tx timeout [ 570.605044][ T5846] Bluetooth: hci4: command 0x0c1a tx timeout [ 570.688742][ T5846] Bluetooth: hci3: command 0x0c1a tx timeout [ 570.983130][T16195] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 571.002867][T16195] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 571.022675][T16195] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 571.037005][T16195] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 571.056736][T16195] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 571.275644][T16214] kvm: requested 130742 ns i8254 timer period limited to 200000 ns [ 571.312020][T16214] kvm: requested 186057 ns i8254 timer period limited to 200000 ns [ 571.331761][T16214] kvm: requested 72076 ns i8254 timer period limited to 200000 ns [ 571.397796][T16214] kvm: requested 85485 ns i8254 timer period limited to 200000 ns [ 571.419574][T16214] kvm: requested 18438 ns i8254 timer period limited to 200000 ns [ 571.434408][T16214] kvm: requested 192762 ns i8254 timer period limited to 200000 ns [ 571.466375][T16214] kvm: requested 135771 ns i8254 timer period limited to 200000 ns [ 571.489665][T16214] kvm: requested 18438 ns i8254 timer period limited to 200000 ns [ 571.505024][T16214] kvm: requested 25142 ns i8254 timer period limited to 200000 ns [ 571.906653][T16238] binder: 16237:16238 ioctl c00c620f 0 returned -14 [ 572.393415][ T5846] Bluetooth: hci5: command 0x041b tx timeout [ 573.160934][ T5846] Bluetooth: hci0: command 0x0c1a tx timeout [ 573.167050][ T5846] Bluetooth: hci4: command 0x0c1a tx timeout [ 573.246315][ T5846] Bluetooth: hci3: command 0x0c1a tx timeout [ 573.252410][ T5846] Bluetooth: hci1: command 0x0c1a tx timeout [ 576.148545][T16287] loop5: detected capacity change from 0 to 7 [ 576.165999][ C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 576.175433][ C1] Buffer I/O error on dev loop5, logical block 0, async page read [ 576.202164][ C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 576.211423][ C1] Buffer I/O error on dev loop5, logical block 0, async page read [ 576.219803][ C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 576.229007][ C1] Buffer I/O error on dev loop5, logical block 0, async page read [ 576.238065][ C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 576.247261][ C1] Buffer I/O error on dev loop5, logical block 0, async page read [ 576.258354][ C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 576.267652][ C1] Buffer I/O error on dev loop5, logical block 0, async page read [ 576.282803][ C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 576.292187][ C0] Buffer I/O error on dev loop5, logical block 0, async page read [ 576.301255][ C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 576.310479][ C1] Buffer I/O error on dev loop5, logical block 0, async page read [ 576.318526][T16287] ldm_validate_partition_table(): Disk read failed. [ 576.327361][ C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 576.336565][ C1] Buffer I/O error on dev loop5, logical block 0, async page read [ 576.362059][ C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 576.371337][ C0] Buffer I/O error on dev loop5, logical block 0, async page read [ 576.380540][ C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 576.389711][ C0] Buffer I/O error on dev loop5, logical block 0, async page read [ 576.409303][T16287] Dev loop5: unable to read RDB block 0 [ 576.462994][T16287] loop5: unable to read partition table [ 576.489822][T16287] loop5: partition table beyond EOD, truncated [ 576.519240][T16287] loop_reread_partitions: partition scan of loop5 (úù) failed (rc=-5) [ 576.938641][T16297] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4583'. [ 578.094011][T16331] netlink: 44 bytes leftover after parsing attributes in process `syz.4.4597'. [ 578.123745][T16331] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4597'. [ 578.160650][T16331] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4597'. [ 580.746803][T16389] kvm: requested 130742 ns i8254 timer period limited to 200000 ns [ 580.780219][T16389] kvm: requested 186057 ns i8254 timer period limited to 200000 ns [ 580.807742][T16389] kvm: requested 72076 ns i8254 timer period limited to 200000 ns [ 580.857195][T16389] kvm: requested 85485 ns i8254 timer period limited to 200000 ns [ 580.880414][T16389] kvm: requested 18438 ns i8254 timer period limited to 200000 ns [ 580.900272][T16389] kvm: requested 192762 ns i8254 timer period limited to 200000 ns [ 580.923272][T16389] kvm: requested 135771 ns i8254 timer period limited to 200000 ns [ 580.934537][T16389] kvm: requested 18438 ns i8254 timer period limited to 200000 ns [ 580.954475][T16389] kvm: requested 25142 ns i8254 timer period limited to 200000 ns [ 581.973557][T16416] netlink: 'syz.4.4635': attribute type 64 has an invalid length. [ 581.998032][T16416] netlink: 5 bytes leftover after parsing attributes in process `syz.4.4635'. [ 582.043880][T16416] gretap0: entered allmulticast mode [ 582.072932][T16416] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 582.450967][T16424] kvm: requested 130742 ns i8254 timer period limited to 200000 ns [ 583.659241][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 583.665712][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 586.194492][T16475] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 586.636610][T16485] syz.4.4667 uses obsolete (PF_INET,SOCK_PACKET) [ 587.615946][ T30] audit: type=1800 audit(2000000118.219:41): pid=16505 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.4679" name="cpuacct.usage_percpu" dev="overlay" ino=1737 res=0 errno=0 [ 588.368177][T16521] netlink: 'syz.4.4685': attribute type 64 has an invalid length. [ 588.394949][T16521] netlink: 5 bytes leftover after parsing attributes in process `syz.4.4685'. [ 588.578859][T16524] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4674'. [ 592.509629][T16549] netlink: 'syz.1.4696': attribute type 64 has an invalid length. [ 592.551092][T16549] netlink: 5 bytes leftover after parsing attributes in process `syz.1.4696'. [ 592.654846][T16553] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4698'. [ 592.763979][T16556] binder: 16555:16556 ioctl 400c620e 200000000100 returned -22 [ 594.153422][T16575] netlink: 'syz.2.4709': attribute type 64 has an invalid length. [ 594.183210][T16575] netlink: 5 bytes leftover after parsing attributes in process `syz.2.4709'. [ 594.371826][T16578] create_pit_timer: 8 callbacks suppressed [ 594.371850][T16578] kvm: requested 130742 ns i8254 timer period limited to 200000 ns [ 594.388291][T16578] kvm: requested 186057 ns i8254 timer period limited to 200000 ns [ 594.406832][T16578] kvm: requested 72076 ns i8254 timer period limited to 200000 ns [ 594.437589][T16578] kvm: requested 85485 ns i8254 timer period limited to 200000 ns [ 594.472998][T16578] kvm: requested 18438 ns i8254 timer period limited to 200000 ns [ 594.516360][T16578] kvm: requested 192762 ns i8254 timer period limited to 200000 ns [ 594.550497][T16578] kvm: requested 135771 ns i8254 timer period limited to 200000 ns [ 594.602570][T16578] kvm: requested 18438 ns i8254 timer period limited to 200000 ns [ 594.614965][T16588] netlink: 96 bytes leftover after parsing attributes in process `syz.2.4713'. [ 594.637419][T16578] kvm: requested 25142 ns i8254 timer period limited to 200000 ns [ 594.934037][T16595] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4716'. [ 595.500542][T16605] netlink: 'syz.4.4721': attribute type 64 has an invalid length. [ 595.520341][T16605] netlink: 5 bytes leftover after parsing attributes in process `syz.4.4721'. [ 596.247813][T16619] binder: 16618:16619 ioctl c0306201 2000000021c0 returned -22 [ 596.588148][T16625] netlink: 'syz.3.4733': attribute type 64 has an invalid length. [ 596.596437][T16625] netlink: 5 bytes leftover after parsing attributes in process `syz.3.4733'. [ 596.613901][T16625] gretap0: entered allmulticast mode [ 596.619717][T16625] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 598.777478][T16687] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4761'. [ 600.142354][T16724] netlink: 'syz.1.4776': attribute type 64 has an invalid length. [ 600.171741][T16724] netlink: 5 bytes leftover after parsing attributes in process `syz.1.4776'. [ 601.869315][T16757] netlink: 'syz.4.4791': attribute type 64 has an invalid length. [ 601.877213][T16757] netlink: 5 bytes leftover after parsing attributes in process `syz.4.4791'. [ 602.921483][T16795] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 603.148997][T16793] netlink: 'syz.1.4809': attribute type 64 has an invalid length. [ 603.157004][T16793] netlink: 5 bytes leftover after parsing attributes in process `syz.1.4809'. [ 604.367294][T16829] binder: Unknown parameter 'context' [ 604.405271][T16830] netlink: 'syz.3.4824': attribute type 64 has an invalid length. [ 604.431838][T16830] netlink: 5 bytes leftover after parsing attributes in process `syz.3.4824'. [ 604.523551][T16834] overlayfs: missing 'lowerdir' [ 605.188333][T16852] binder: 16850:16852 ioctl c0306201 0 returned -14 [ 605.768290][T16861] binder: Unknown parameter 'defcontext01777777777777777777777' [ 605.801925][T16863] overlayfs: missing 'lowerdir' [ 607.019595][T16879] binder: 16878:16879 ioctl c0306201 0 returned -14 [ 608.682585][T16906] binder: 16905:16906 ioctl c0306201 0 returned -14 [ 611.406599][T16969] kvm: pic: non byte read [ 611.425424][T16969] kvm: pic: non byte read [ 611.442347][T16969] kvm: pic: single mode not supported [ 611.442374][T16969] kvm: pic: level sensitive irq not supported [ 611.460321][T16969] kvm: pic: non byte read [ 611.516663][T16969] kvm: pic: single mode not supported [ 611.516757][T16969] kvm: pic: non byte read [ 611.547524][T16969] kvm: pic: non byte read [ 611.552502][T16969] kvm: pic: non byte read [ 611.612385][T16969] kvm: pic: single mode not supported [ 611.612410][T16969] kvm: pic: level sensitive irq not supported [ 611.653538][T16969] kvm: pic: non byte read [ 611.696561][T16969] kvm: pic: single mode not supported [ 611.696653][T16969] kvm: pic: non byte read [ 611.749734][T16969] kvm: pic: non byte read [ 612.069532][T16981] netlink: 80 bytes leftover after parsing attributes in process `syz.2.4891'. [ 613.369775][T17005] netlink: 80 bytes leftover after parsing attributes in process `syz.2.4903'. [ 613.634274][T17008] netlink: 96 bytes leftover after parsing attributes in process `syz.2.4904'. [ 615.160713][T17033] netlink: 80 bytes leftover after parsing attributes in process `syz.4.4914'. [ 615.496699][T17040] overlayfs: failed to resolve './file1': -2 [ 616.592735][T17060] netlink: 80 bytes leftover after parsing attributes in process `syz.0.4928'. [ 617.387226][ T30] audit: type=1800 audit(2000000146.155:42): pid=17078 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.4938" name="cpuacct.usage_percpu" dev="overlay" ino=2004 res=0 errno=0 [ 617.568846][T17082] netlink: 80 bytes leftover after parsing attributes in process `syz.4.4940'. [ 618.359471][T17101] overlayfs: failed to resolve './file0': -2 [ 618.574417][T17107] kvm: requested 130742 ns i8254 timer period limited to 200000 ns [ 618.611570][T17112] netlink: 80 bytes leftover after parsing attributes in process `syz.1.4955'. [ 618.621755][T17107] kvm: requested 186057 ns i8254 timer period limited to 200000 ns [ 618.658458][T17107] kvm: requested 72076 ns i8254 timer period limited to 200000 ns [ 618.679033][T17107] kvm: requested 85485 ns i8254 timer period limited to 200000 ns [ 618.690138][T17107] kvm: requested 18438 ns i8254 timer period limited to 200000 ns [ 618.729729][T17107] kvm: requested 192762 ns i8254 timer period limited to 200000 ns [ 618.765474][T17107] kvm: requested 135771 ns i8254 timer period limited to 200000 ns [ 618.782022][T17107] kvm: requested 18438 ns i8254 timer period limited to 200000 ns [ 618.820499][T17107] kvm: requested 25142 ns i8254 timer period limited to 200000 ns [ 619.058618][T17124] netlink: 'syz.0.4960': attribute type 64 has an invalid length. [ 619.111077][T17124] netlink: 5 bytes leftover after parsing attributes in process `syz.0.4960'. [ 619.372380][T17138] netlink: 96 bytes leftover after parsing attributes in process `syz.0.4966'. [ 621.193232][T17192] kvm: requested 130742 ns i8254 timer period limited to 200000 ns [ 621.992134][ T5894] hid_parser_main: 5 callbacks suppressed [ 621.992159][ T5894] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 622.057837][ T5894] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz1] on syz0 [ 623.009842][T17251] netlink: 96 bytes leftover after parsing attributes in process `syz.4.5015'. [ 623.186921][T17255] netlink: 'syz.3.5018': attribute type 64 has an invalid length. [ 623.212563][T17255] netlink: 5 bytes leftover after parsing attributes in process `syz.3.5018'. [ 623.926905][T17284] netlink: 80 bytes leftover after parsing attributes in process `syz.0.5028'. [ 624.039527][T17288] netlink: 'syz.2.5031': attribute type 64 has an invalid length. [ 624.090023][T17288] netlink: 5 bytes leftover after parsing attributes in process `syz.2.5031'. [ 624.120050][T17286] create_pit_timer: 8 callbacks suppressed [ 624.120072][T17286] kvm: requested 130742 ns i8254 timer period limited to 200000 ns [ 624.134705][T17286] kvm: requested 186057 ns i8254 timer period limited to 200000 ns [ 624.165672][T17286] kvm: requested 72076 ns i8254 timer period limited to 200000 ns [ 624.248535][T17286] kvm: requested 85485 ns i8254 timer period limited to 200000 ns [ 624.288133][T17286] kvm: requested 18438 ns i8254 timer period limited to 200000 ns [ 624.327318][T17286] kvm: requested 192762 ns i8254 timer period limited to 200000 ns [ 624.372648][T17286] kvm: requested 135771 ns i8254 timer period limited to 200000 ns [ 624.407039][T17286] kvm: requested 18438 ns i8254 timer period limited to 200000 ns [ 624.418201][T17286] kvm: requested 25142 ns i8254 timer period limited to 200000 ns [ 624.894042][T17320] netlink: 'syz.2.5044': attribute type 64 has an invalid length. [ 624.901928][T17320] netlink: 5 bytes leftover after parsing attributes in process `syz.2.5044'. [ 624.998552][T17325] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5047'. [ 625.031595][T17325] tc_dump_action: action bad kind [ 625.650747][T17348] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 625.939617][T17357] netlink: 'syz.0.5059': attribute type 64 has an invalid length. [ 625.971604][T17357] netlink: 5 bytes leftover after parsing attributes in process `syz.0.5059'. [ 626.490671][T17373] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 627.104304][ T30] audit: type=1800 audit(2000000155.274:43): pid=17395 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.5078" name="cpuacct.usage_percpu" dev="overlay" ino=2942 res=0 errno=0 [ 627.435633][T17403] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 628.398863][T17429] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 629.857038][T17463] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 634.853954][ T30] audit: type=1800 audit(2000000162.544:44): pid=17560 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.5156" name="cpuacct.usage_percpu" dev="overlay" ino=3043 res=0 errno=0 [ 635.102079][T17567] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000017: 0000 [#1] SMP KASAN PTI [ 635.114044][T17567] KASAN: null-ptr-deref in range [0x00000000000000b8-0x00000000000000bf] [ 635.122499][T17567] CPU: 0 UID: 0 PID: 17567 Comm: syz.4.5148 Not tainted syzkaller #0 PREEMPT(full) [ 635.131998][T17567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 635.142099][T17567] RIP: 0010:put_pid_ns+0x37/0x2a0 [ 635.147278][T17567] Code: 53 48 89 fb e8 0a ba 03 00 48 85 db 0f 84 e8 00 00 00 49 bc 00 00 00 00 00 fc ff df 4c 8d b3 d0 00 00 00 4d 89 f5 49 c1 ed 03 <43> 80 7c 25 00 00 74 08 4c 89 f7 e8 c9 67 6a 00 4d 8b 3e 31 ff 4c [ 635.167010][T17567] RSP: 0018:ffffc9000383fcd0 EFLAGS: 00010206 [ 635.173134][T17567] RAX: ffffffff81bde646 RBX: ffffffffffffffea RCX: 0000000000080000 [ 635.181146][T17567] RDX: ffffc9000c479000 RSI: 0000000000000053 RDI: 0000000000000054 [ 635.189164][T17567] RBP: 0000000000000003 R08: 0000000000000003 R09: 0000000000000004 [ 635.197172][T17567] R10: dffffc0000000000 R11: fffff52000707f78 R12: dffffc0000000000 [ 635.205179][T17567] R13: 0000000000000017 R14: 00000000000000ba R15: ffff8880243bc1b4 [ 635.213189][T17567] FS: 00007f36e18bc6c0(0000) GS:ffff888125ec1000(0000) knlGS:0000000000000000 [ 635.222156][T17567] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 635.228773][T17567] CR2: 00000000000000da CR3: 00000000223da000 CR4: 00000000003526f0 [ 635.236786][T17567] Call Trace: [ 635.240100][T17567] [ 635.243057][T17567] nsproxy_free+0x20f/0x7c0 [ 635.247602][T17567] create_new_namespaces+0x47a/0x540 [ 635.252928][T17567] unshare_nsproxy_namespaces+0x11c/0x170 [ 635.258695][T17567] ksys_unshare+0x4c8/0x8c0 [ 635.263229][T17567] ? __pfx_ksys_unshare+0x10/0x10 [ 635.268290][T17567] __x64_sys_unshare+0x38/0x50 [ 635.273071][T17567] do_syscall_64+0xfa/0xfa0 [ 635.277599][T17567] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 635.283726][T17567] ? clear_bhb_loop+0x60/0xb0 [ 635.288436][T17567] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 635.294359][T17567] RIP: 0033:0x7f36e098f6c9 [ 635.298809][T17567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 635.318626][T17567] RSP: 002b:00007f36e18bc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 635.327100][T17567] RAX: ffffffffffffffda RBX: 00007f36e0be5fa0 RCX: 00007f36e098f6c9 [ 635.335106][T17567] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000060000600 [ 635.343112][T17567] RBP: 00007f36e0a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 635.351121][T17567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 635.359127][T17567] R13: 00007f36e0be6038 R14: 00007f36e0be5fa0 R15: 00007ffd31d3f1f8 [ 635.367180][T17567] [ 635.370224][T17567] Modules linked in: [ 635.375393][T17567] ---[ end trace 0000000000000000 ]--- [ 635.397677][T17567] RIP: 0010:put_pid_ns+0x37/0x2a0 [ 635.417956][T17567] Code: 53 48 89 fb e8 0a ba 03 00 48 85 db 0f 84 e8 00 00 00 49 bc 00 00 00 00 00 fc ff df 4c 8d b3 d0 00 00 00 4d 89 f5 49 c1 ed 03 <43> 80 7c 25 00 00 74 08 4c 89 f7 e8 c9 67 6a 00 4d 8b 3e 31 ff 4c [ 635.478612][T17567] RSP: 0018:ffffc9000383fcd0 EFLAGS: 00010206 [ 635.504781][T17567] RAX: ffffffff81bde646 RBX: ffffffffffffffea RCX: 0000000000080000 [ 635.513501][T17567] RDX: ffffc9000c479000 RSI: 0000000000000053 RDI: 0000000000000054 [ 635.531916][T17567] RBP: 0000000000000003 R08: 0000000000000003 R09: 0000000000000004 [ 635.564450][T17567] R10: dffffc0000000000 R11: fffff52000707f78 R12: dffffc0000000000 [ 635.606055][T17567] R13: 0000000000000017 R14: 00000000000000ba R15: ffff8880243bc1b4 [ 635.614102][T17567] FS: 00007f36e18bc6c0(0000) GS:ffff888125ec1000(0000) knlGS:0000000000000000 [ 635.659361][T17567] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 635.666030][T17567] CR2: 00007fbc77eb7f98 CR3: 00000000223da000 CR4: 00000000003526f0 [ 635.726344][T17567] Kernel panic - not syncing: Fatal exception [ 635.732814][T17567] Kernel Offset: disabled [ 635.737224][T17567] Rebooting in 86400 seconds..