syzkaller login: [ 263.633957][ T2895] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 271.581862][ T2895] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 271.624812][ T2895] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 300.515902][ T2895] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:20681' (ECDSA) to the list of known hosts. 1970/01/01 00:05:34 fuzzer started 1970/01/01 00:05:47 dialing manager at localhost:46293 1970/01/01 00:05:53 syscalls: 2779 1970/01/01 00:05:53 code coverage: enabled 1970/01/01 00:05:53 comparison tracing: enabled 1970/01/01 00:05:53 extra coverage: enabled 1970/01/01 00:05:53 setuid sandbox: enabled 1970/01/01 00:05:53 namespace sandbox: enabled 1970/01/01 00:05:53 Android sandbox: /sys/fs/selinux/policy does not exist 1970/01/01 00:05:53 fault injection: enabled 1970/01/01 00:05:53 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 1970/01/01 00:05:53 net packet injection: enabled 1970/01/01 00:05:53 net device setup: enabled 1970/01/01 00:05:53 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 1970/01/01 00:05:53 devlink PCI setup: PCI device 0000:00:10.0 is not available 1970/01/01 00:05:53 USB emulation: enabled 1970/01/01 00:05:53 hci packet injection: /dev/vhci does not exist 1970/01/01 00:05:53 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist 1970/01/01 00:05:53 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist 1970/01/01 00:05:53 fetching corpus: 0, signal 0/2000 (executing program) 1970/01/01 00:05:58 fetching corpus: 50, signal 27946/31277 (executing program) 1970/01/01 00:06:00 fetching corpus: 100, signal 41629/46166 (executing program) 1970/01/01 00:06:04 fetching corpus: 150, signal 50748/56430 (executing program) 1970/01/01 00:06:08 fetching corpus: 200, signal 57684/64400 (executing program) 1970/01/01 00:06:11 fetching corpus: 250, signal 64665/72228 (executing program) 1970/01/01 00:06:14 fetching corpus: 300, signal 67665/76251 (executing program) 1970/01/01 00:06:16 fetching corpus: 349, signal 70275/79833 (executing program) 1970/01/01 00:06:19 fetching corpus: 399, signal 73022/83529 (executing program) 1970/01/01 00:06:21 fetching corpus: 449, signal 76411/87647 (executing program) 1970/01/01 00:06:23 fetching corpus: 499, signal 78592/90679 (executing program) 1970/01/01 00:06:26 fetching corpus: 549, signal 81950/94722 (executing program) 1970/01/01 00:06:29 fetching corpus: 599, signal 86124/99300 (executing program) 1970/01/01 00:06:31 fetching corpus: 649, signal 88042/101948 (executing program) 1970/01/01 00:06:34 fetching corpus: 699, signal 89965/104531 (executing program) 1970/01/01 00:06:37 fetching corpus: 748, signal 91731/106947 (executing program) 1970/01/01 00:06:40 fetching corpus: 798, signal 93458/109325 (executing program) 1970/01/01 00:06:45 fetching corpus: 848, signal 96274/112496 (executing program) 1970/01/01 00:06:47 fetching corpus: 898, signal 98304/115002 (executing program) 1970/01/01 00:06:50 fetching corpus: 948, signal 100903/117866 (executing program) 1970/01/01 00:06:52 fetching corpus: 998, signal 102049/119587 (executing program) 1970/01/01 00:06:54 fetching corpus: 1048, signal 104007/121850 (executing program) 1970/01/01 00:06:57 fetching corpus: 1098, signal 105533/123769 (executing program) 1970/01/01 00:07:01 fetching corpus: 1148, signal 107875/126202 (executing program) 1970/01/01 00:07:03 fetching corpus: 1198, signal 110389/128758 (executing program) 1970/01/01 00:07:06 fetching corpus: 1248, signal 111616/130406 (executing program) 1970/01/01 00:07:08 fetching corpus: 1298, signal 113142/132132 (executing program) 1970/01/01 00:07:10 fetching corpus: 1348, signal 115105/134191 (executing program) 1970/01/01 00:07:12 fetching corpus: 1398, signal 116445/135782 (executing program) 1970/01/01 00:07:15 fetching corpus: 1448, signal 117277/136977 (executing program) 1970/01/01 00:07:18 fetching corpus: 1498, signal 118488/138397 (executing program) 1970/01/01 00:07:21 fetching corpus: 1548, signal 119409/139621 (executing program) 1970/01/01 00:07:24 fetching corpus: 1598, signal 120503/140944 (executing program) 1970/01/01 00:07:26 fetching corpus: 1648, signal 121543/142176 (executing program) 1970/01/01 00:07:28 fetching corpus: 1698, signal 122385/143307 (executing program) 1970/01/01 00:07:30 fetching corpus: 1748, signal 123990/144847 (executing program) 1970/01/01 00:07:33 fetching corpus: 1798, signal 125199/146106 (executing program) 1970/01/01 00:07:36 fetching corpus: 1848, signal 126818/147648 (executing program) 1970/01/01 00:07:38 fetching corpus: 1898, signal 128020/148859 (executing program) 1970/01/01 00:07:40 fetching corpus: 1948, signal 129327/150113 (executing program) 1970/01/01 00:07:43 fetching corpus: 1998, signal 130332/151166 (executing program) 1970/01/01 00:07:44 fetching corpus: 2047, signal 131284/152144 (executing program) 1970/01/01 00:07:47 fetching corpus: 2096, signal 131984/152986 (executing program) 1970/01/01 00:07:49 fetching corpus: 2146, signal 132840/153926 (executing program) 1970/01/01 00:07:51 fetching corpus: 2196, signal 133604/154750 (executing program) 1970/01/01 00:07:53 fetching corpus: 2246, signal 134325/155514 (executing program) 1970/01/01 00:07:56 fetching corpus: 2296, signal 135432/156495 (executing program) 1970/01/01 00:07:57 fetching corpus: 2346, signal 136280/157316 (executing program) 1970/01/01 00:08:00 fetching corpus: 2396, signal 137312/158207 (executing program) 1970/01/01 00:08:02 fetching corpus: 2446, signal 138550/159197 (executing program) 1970/01/01 00:08:05 fetching corpus: 2496, signal 139320/159914 (executing program) 1970/01/01 00:08:08 fetching corpus: 2546, signal 140475/160804 (executing program) 1970/01/01 00:08:10 fetching corpus: 2596, signal 141425/161589 (executing program) 1970/01/01 00:08:12 fetching corpus: 2646, signal 142097/162196 (executing program) 1970/01/01 00:08:14 fetching corpus: 2696, signal 142857/162826 (executing program) 1970/01/01 00:08:17 fetching corpus: 2746, signal 143780/163526 (executing program) 1970/01/01 00:08:19 fetching corpus: 2796, signal 144507/164130 (executing program) 1970/01/01 00:08:21 fetching corpus: 2846, signal 145188/164721 (executing program) 1970/01/01 00:08:24 fetching corpus: 2896, signal 146350/165430 (executing program) 1970/01/01 00:08:25 fetching corpus: 2945, signal 146792/165897 (executing program) 1970/01/01 00:08:27 fetching corpus: 2995, signal 147515/166434 (executing program) 1970/01/01 00:08:30 fetching corpus: 3045, signal 148408/167038 (executing program) 1970/01/01 00:08:33 fetching corpus: 3095, signal 149159/167571 (executing program) 1970/01/01 00:08:35 fetching corpus: 3145, signal 149779/168029 (executing program) 1970/01/01 00:08:38 fetching corpus: 3195, signal 150297/168430 (executing program) 1970/01/01 00:08:41 fetching corpus: 3244, signal 151077/168911 (executing program) 1970/01/01 00:08:44 fetching corpus: 3294, signal 151583/169271 (executing program) 1970/01/01 00:08:47 fetching corpus: 3344, signal 152244/169675 (executing program) 1970/01/01 00:08:49 fetching corpus: 3394, signal 153299/170148 (executing program) 1970/01/01 00:08:51 fetching corpus: 3444, signal 153855/170527 (executing program) 1970/01/01 00:08:53 fetching corpus: 3494, signal 154475/170877 (executing program) 1970/01/01 00:08:55 fetching corpus: 3544, signal 154953/171199 (executing program) 1970/01/01 00:08:58 fetching corpus: 3594, signal 155823/171571 (executing program) 1970/01/01 00:09:00 fetching corpus: 3644, signal 156443/171877 (executing program) 1970/01/01 00:09:02 fetching corpus: 3694, signal 156804/172153 (executing program) 1970/01/01 00:09:05 fetching corpus: 3743, signal 157508/172431 (executing program) 1970/01/01 00:09:07 fetching corpus: 3793, signal 158167/172696 (executing program) 1970/01/01 00:09:09 fetching corpus: 3843, signal 158673/172947 (executing program) 1970/01/01 00:09:12 fetching corpus: 3893, signal 159581/173240 (executing program) 1970/01/01 00:09:15 fetching corpus: 3943, signal 160233/173474 (executing program) 1970/01/01 00:09:16 fetching corpus: 3993, signal 160837/173686 (executing program) 1970/01/01 00:09:18 fetching corpus: 4043, signal 161437/173893 (executing program) 1970/01/01 00:09:20 fetching corpus: 4093, signal 162113/174072 (executing program) 1970/01/01 00:09:23 fetching corpus: 4143, signal 162831/174246 (executing program) 1970/01/01 00:09:25 fetching corpus: 4192, signal 163325/174417 (executing program) 1970/01/01 00:09:27 fetching corpus: 4242, signal 164155/174545 (executing program) 1970/01/01 00:09:30 fetching corpus: 4291, signal 164641/174653 (executing program) 1970/01/01 00:09:32 fetching corpus: 4341, signal 165199/174717 (executing program) 1970/01/01 00:09:34 fetching corpus: 4391, signal 165802/174717 (executing program) 1970/01/01 00:09:36 fetching corpus: 4441, signal 166721/174717 (executing program) 1970/01/01 00:09:40 fetching corpus: 4491, signal 167087/174730 (executing program) 1970/01/01 00:09:42 fetching corpus: 4541, signal 167537/174730 (executing program) 1970/01/01 00:09:44 fetching corpus: 4591, signal 168356/174730 (executing program) 1970/01/01 00:09:46 fetching corpus: 4641, signal 169004/174730 (executing program) 1970/01/01 00:09:48 fetching corpus: 4691, signal 169362/174733 (executing program) 1970/01/01 00:09:50 fetching corpus: 4741, signal 169965/174733 (executing program) 1970/01/01 00:09:52 fetching corpus: 4791, signal 170501/174733 (executing program) 1970/01/01 00:09:54 fetching corpus: 4841, signal 170914/174733 (executing program) 1970/01/01 00:09:56 fetching corpus: 4891, signal 171388/174750 (executing program) 1970/01/01 00:09:59 fetching corpus: 4941, signal 172149/174750 (executing program) 1970/01/01 00:10:01 fetching corpus: 4991, signal 172760/174750 (executing program) 1970/01/01 00:10:04 fetching corpus: 5041, signal 173248/174750 (executing program) 1970/01/01 00:10:06 fetching corpus: 5091, signal 173717/174772 (executing program) 1970/01/01 00:10:06 fetching corpus: 5093, signal 173733/174772 (executing program) 1970/01/01 00:10:06 fetching corpus: 5093, signal 173733/174772 (executing program) 1970/01/01 00:11:44 starting 2 fuzzer processes 00:12:04 executing program 0: r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]}) socket$inet_smc(0x2b, 0x1, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, 0x0) 00:12:30 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='bdev\x00', 0x0, 0x0) [ 758.552303][ T3083] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 758.725868][ T3083] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 769.022808][ T3083] device hsr_slave_0 entered promiscuous mode [ 769.086202][ T3083] device hsr_slave_1 entered promiscuous mode [ 776.161773][ T3083] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 776.475155][ T3083] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 776.666957][ T3083] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 776.916435][ T3083] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 788.175996][ T3083] 8021q: adding VLAN 0 to HW filter on device bond0 [ 789.207201][ T1937] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 789.347823][ T1937] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 792.011618][ T3224] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 792.190481][ T3224] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 796.700864][ T3116] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 796.773724][ T3116] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 797.056520][ T3116] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 797.108015][ T3116] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 797.307256][ T2831] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 797.631220][ T2831] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 799.685450][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 799.774965][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 800.460570][ T3083] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 800.721325][ T3116] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 800.763254][ T3116] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 801.902703][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 801.907043][ T21] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 806.837586][ T3224] device hsr_slave_0 entered promiscuous mode [ 806.966411][ T3224] device hsr_slave_1 entered promiscuous mode [ 807.041547][ T3224] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 807.047329][ T3224] Cannot create hsr debugfs directory [ 814.981836][ T3224] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 815.114633][ T3224] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 815.296145][ T3224] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 815.495969][ T3224] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 822.371002][ T1937] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 822.467340][ T1937] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 829.269766][ T3224] 8021q: adding VLAN 0 to HW filter on device bond0 [ 830.051796][ T1937] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 830.150829][ T1937] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 837.669905][ T1937] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 837.825369][ T1937] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 838.176348][ T1937] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 838.272258][ T1937] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 838.557332][ T3083] device veth0_vlan entered promiscuous mode [ 839.825598][ T3083] device veth1_vlan entered promiscuous mode [ 843.496837][ T3395] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 843.630640][ T3395] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 844.047922][ T3083] device veth0_macvtap entered promiscuous mode [ 844.525172][ T3083] device veth1_macvtap entered promiscuous mode [ 845.813248][ T3395] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 846.573945][ T1937] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 846.666825][ T1937] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 847.863194][ T3083] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 847.873738][ T3083] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 847.875946][ T3083] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 847.877839][ T3083] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 848.231109][ T2831] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 848.305433][ T2831] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 848.384717][ T2831] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 848.464596][ T2831] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 848.556353][ T2831] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 848.594320][ T2831] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 848.664074][ T2831] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 849.982063][ T3395] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 851.847098][ T3224] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 851.861881][ T3224] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 852.126024][ T3430] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 852.176197][ T3430] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 852.257158][ T3430] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 852.312965][ T3430] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 852.640051][ T3430] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 853.242447][ T3083] cgroup: cgroup: disabling cgroup2 socket matching due to net_prio or net_cls activation [ 854.143705][ T3116] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 854.184720][ T3116] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 857.360576][ T39] audit: type=1326 audit(854.970:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=3530 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0x39e1c code=0x0 [ 859.862909][ T39] audit: type=1326 audit(857.540:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=3530 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0x39e1c code=0x0 00:14:20 executing program 0: r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]}) socket$inet_smc(0x2b, 0x1, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, 0x0) [ 865.363239][ T39] audit: type=1326 audit(863.040:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=3541 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0x39e1c code=0x0 00:14:27 executing program 0: r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]}) socket$inet_smc(0x2b, 0x1, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, 0x0) [ 871.034895][ T3527] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 871.093461][ T3527] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 872.361590][ T39] audit: type=1326 audit(870.040:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=3549 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0x39e1c code=0x0 00:14:35 executing program 0: r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]}) socket$inet_smc(0x2b, 0x1, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, 0x0) [ 879.321728][ T3206] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 879.395283][ T3206] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 879.542903][ T3527] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 879.582481][ T3527] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 879.771488][ T3224] device veth0_vlan entered promiscuous mode [ 879.947432][ T39] audit: type=1326 audit(877.630:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=3557 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0x39e1c code=0x0 [ 880.601128][ T3224] device veth1_vlan entered promiscuous mode [ 882.201079][ T3527] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 882.266231][ T3527] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 882.491525][ T3224] device veth0_macvtap entered promiscuous mode [ 882.855543][ T3224] device veth1_macvtap entered promiscuous mode [ 883.322202][ T1937] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 884.255456][ T3527] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 884.354546][ T3527] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 884.657660][ T3116] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 884.747915][ T3116] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 885.172802][ T3224] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 885.174872][ T3224] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 885.176636][ T3224] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 885.190777][ T3224] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 00:14:49 executing program 0: r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]}) socket$inet_smc(0x2b, 0x1, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, 0x0) 00:14:49 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='bdev\x00', 0x0, 0x0) [ 892.796850][ T39] audit: type=1326 audit(890.480:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=3562 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0x39e1c code=0x0 00:14:55 executing program 0: r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]}) socket$inet_smc(0x2b, 0x1, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, 0x0) 00:14:55 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='bdev\x00', 0x0, 0x0) [ 900.212441][ T39] audit: type=1326 audit(897.890:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=3567 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0x39e1c code=0x0 00:15:00 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='bdev\x00', 0x0, 0x0) 00:15:03 executing program 0: r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]}) socket$inet_smc(0x2b, 0x1, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, 0x0) [ 907.257935][ T39] audit: type=1326 audit(904.940:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=3574 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0x39e1c code=0x0 00:15:08 executing program 1: r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]}) socket$inet_smc(0x2b, 0x1, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, 0x0) [ 911.690689][ T39] audit: type=1326 audit(909.370:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=3577 comm="syz-executor.1" exe="/syz-executor.1" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0x39e1c code=0x0 00:15:11 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000140)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) ioctl$UI_GET_SYSNAME(r0, 0x8040552c, &(0x7f0000000000)) 00:15:14 executing program 1: r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]}) socket$inet_smc(0x2b, 0x1, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, 0x0) [ 916.855128][ T3581] input: syz0 as /devices/virtual/input/input0 [ 919.040536][ T39] audit: type=1326 audit(916.720:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=3585 comm="syz-executor.1" exe="/syz-executor.1" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0x39e1c code=0x0 00:15:18 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000140)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) ioctl$UI_GET_SYSNAME(r0, 0x8040552c, &(0x7f0000000000)) 00:15:21 executing program 1: r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]}) socket$inet_smc(0x2b, 0x1, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, 0x0) [ 924.252625][ T3591] input: syz0 as /devices/virtual/input/input2 [ 926.046997][ T39] audit: type=1326 audit(923.730:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=3596 comm="syz-executor.1" exe="/syz-executor.1" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0x39e1c code=0x0 00:15:24 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000140)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) ioctl$UI_GET_SYSNAME(r0, 0x8040552c, &(0x7f0000000000)) [ 929.365668][ T3600] input: syz0 as /devices/virtual/input/input3 00:15:31 executing program 1: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000140)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) ioctl$UI_GET_SYSNAME(r0, 0x8040552c, &(0x7f0000000000)) 00:15:31 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000140)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) ioctl$UI_GET_SYSNAME(r0, 0x8040552c, &(0x7f0000000000)) [ 935.774200][ T3606] input: syz0 as /devices/virtual/input/input4 [ 936.911871][ T3610] input: syz0 as /devices/virtual/input/input5 00:15:36 executing program 1: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000140)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) ioctl$UI_GET_SYSNAME(r0, 0x8040552c, &(0x7f0000000000)) 00:15:38 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000140)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) ioctl$UI_GET_SYSNAME(r0, 0x8040552c, &(0x7f0000000000)) [ 942.431339][ T3618] input: syz0 as /devices/virtual/input/input6 [ 943.076371][ T3622] input: syz0 as /devices/virtual/input/input7 00:15:43 executing program 1: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000140)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) ioctl$UI_GET_SYSNAME(r0, 0x8040552c, &(0x7f0000000000)) 00:15:43 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000140)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) ioctl$UI_GET_SYSNAME(r0, 0x8040552c, &(0x7f0000000000)) [ 951.056584][ T3631] input: syz0 as /devices/virtual/input/input8 [ 951.866974][ T3632] input: syz0 as /devices/virtual/input/input9 00:15:55 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000140)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r0, 0x5501) ioctl$UI_GET_SYSNAME(r0, 0x8040552c, &(0x7f0000000000)) 00:15:58 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x6) sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000540)={0x4c, 0x12, 0x101}, 0x4c}}, 0x0) [ 961.786141][ T3645] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.1'. [ 962.047101][ T3644] input: syz0 as /devices/virtual/input/input10 00:16:02 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x6) sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000540)={0x4c, 0x12, 0x101}, 0x4c}}, 0x0) 00:16:05 executing program 0: ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000001200)) mbind(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000000040), 0x1, 0x3) [ 968.834774][ T3651] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.1'. 00:16:09 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x6) sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000540)={0x4c, 0x12, 0x101}, 0x4c}}, 0x0) 00:16:10 executing program 0: ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000001200)) mbind(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000000040), 0x1, 0x3) [ 973.524973][ T3655] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.1'. 00:16:13 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x6) sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000540)={0x4c, 0x12, 0x101}, 0x4c}}, 0x0) 00:16:15 executing program 0: ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000001200)) mbind(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000000040), 0x1, 0x3) [ 978.846872][ T3660] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.1'. 00:16:20 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_ifreq(r0, 0x8991, &(0x7f0000000140)={'vlan0\x00', @ifru_flags}) 00:16:21 executing program 0: ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000001200)) mbind(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000000040), 0x1, 0x3) 00:16:25 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_ifreq(r0, 0x8991, &(0x7f0000000140)={'vlan0\x00', @ifru_flags}) 00:16:28 executing program 0: prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)=' \fu\xd6<)\xff)\'\xf9\x12\x00\\\xa4U;\xd3\xb0\xdc\xe7\xb6\x0e\aU\xf8\b.\xff\xd2\xf0^\xb1\x87\xe0\x8b!T\xa7\xb8\xd1\x9a\xf9%\xbc\x8f\xb6N-\xac\x11\xb6\xacI\x7f\xf6I\x87\a4\xae!}\x95\n\x87\x92)P\xaf\xf0\xab\x82\xee`[\xf2S\x9e\xff\x8d\bu\x8d\x89\xf3y<\t!\xe9\xe3hu)\xa6\xd0\xb7\x95\xa1\xeb*\xf7\xbe\x1d\v v\xdcnD\x14\xec81\xe6\xac4\xbaw\x97h\xb8L\x91X\xee\xbc\xfd\x98\xe4@\n\xc9\xe7\xe7\x98\xc2\xa9\xa1\xe8o\xf3\xf9\xb1\xf0(\xb6\xdeI\xe1\xe8\xbb\x90\x92\xb1\xe4\xd2C\xd5\x93 D\x91\xfb\x0eh\xf9R<\x13\xca$\xa6\x85\x96\x95\\V\xd8') openat(0xffffffffffffff9c, &(0x7f0000001080)='./file0\x00', 0x24140, 0x0) 00:16:30 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_ifreq(r0, 0x8991, &(0x7f0000000140)={'vlan0\x00', @ifru_flags}) [ 993.239763][ T39] audit: type=1800 audit(990.920:13): pid=3670 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm=200C75D63C29FF2927F912 name="file0" dev="vda" ino=646 res=0 errno=0 [ 993.482642][ T39] audit: type=1800 audit(991.170:14): pid=3670 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm=200C75D63C29FF2927F912 name="file0" dev="vda" ino=646 res=0 errno=0 00:16:33 executing program 0: prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)=' \fu\xd6<)\xff)\'\xf9\x12\x00\\\xa4U;\xd3\xb0\xdc\xe7\xb6\x0e\aU\xf8\b.\xff\xd2\xf0^\xb1\x87\xe0\x8b!T\xa7\xb8\xd1\x9a\xf9%\xbc\x8f\xb6N-\xac\x11\xb6\xacI\x7f\xf6I\x87\a4\xae!}\x95\n\x87\x92)P\xaf\xf0\xab\x82\xee`[\xf2S\x9e\xff\x8d\bu\x8d\x89\xf3y<\t!\xe9\xe3hu)\xa6\xd0\xb7\x95\xa1\xeb*\xf7\xbe\x1d\v v\xdcnD\x14\xec81\xe6\xac4\xbaw\x97h\xb8L\x91X\xee\xbc\xfd\x98\xe4@\n\xc9\xe7\xe7\x98\xc2\xa9\xa1\xe8o\xf3\xf9\xb1\xf0(\xb6\xdeI\xe1\xe8\xbb\x90\x92\xb1\xe4\xd2C\xd5\x93 D\x91\xfb\x0eh\xf9R<\x13\xca$\xa6\x85\x96\x95\\V\xd8') openat(0xffffffffffffff9c, &(0x7f0000001080)='./file0\x00', 0x24140, 0x0) 00:16:35 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_ifreq(r0, 0x8991, &(0x7f0000000140)={'vlan0\x00', @ifru_flags}) [ 998.920462][ T39] audit: type=1800 audit(996.600:15): pid=3674 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm=200C75D63C29FF2927F912 name="file0" dev="vda" ino=641 res=0 errno=0 00:16:39 executing program 0: prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)=' \fu\xd6<)\xff)\'\xf9\x12\x00\\\xa4U;\xd3\xb0\xdc\xe7\xb6\x0e\aU\xf8\b.\xff\xd2\xf0^\xb1\x87\xe0\x8b!T\xa7\xb8\xd1\x9a\xf9%\xbc\x8f\xb6N-\xac\x11\xb6\xacI\x7f\xf6I\x87\a4\xae!}\x95\n\x87\x92)P\xaf\xf0\xab\x82\xee`[\xf2S\x9e\xff\x8d\bu\x8d\x89\xf3y<\t!\xe9\xe3hu)\xa6\xd0\xb7\x95\xa1\xeb*\xf7\xbe\x1d\v v\xdcnD\x14\xec81\xe6\xac4\xbaw\x97h\xb8L\x91X\xee\xbc\xfd\x98\xe4@\n\xc9\xe7\xe7\x98\xc2\xa9\xa1\xe8o\xf3\xf9\xb1\xf0(\xb6\xdeI\xe1\xe8\xbb\x90\x92\xb1\xe4\xd2C\xd5\x93 D\x91\xfb\x0eh\xf9R<\x13\xca$\xa6\x85\x96\x95\\V\xd8') openat(0xffffffffffffff9c, &(0x7f0000001080)='./file0\x00', 0x24140, 0x0) 00:16:41 executing program 1: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) readv(r0, &(0x7f0000000180)=[{&(0x7f0000000000)=""/52, 0x34}], 0x1) ioctl$RTC_PIE_ON(r0, 0x7005) [ 1005.374740][ T39] audit: type=1800 audit(1003.060:16): pid=3679 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm=200C75D63C29FF2927F912 name="file0" dev="vda" ino=646 res=0 errno=0 [ 1007.951498][ C0] hrtimer: interrupt took 3661800 ns 00:16:45 executing program 0: prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)=' \fu\xd6<)\xff)\'\xf9\x12\x00\\\xa4U;\xd3\xb0\xdc\xe7\xb6\x0e\aU\xf8\b.\xff\xd2\xf0^\xb1\x87\xe0\x8b!T\xa7\xb8\xd1\x9a\xf9%\xbc\x8f\xb6N-\xac\x11\xb6\xacI\x7f\xf6I\x87\a4\xae!}\x95\n\x87\x92)P\xaf\xf0\xab\x82\xee`[\xf2S\x9e\xff\x8d\bu\x8d\x89\xf3y<\t!\xe9\xe3hu)\xa6\xd0\xb7\x95\xa1\xeb*\xf7\xbe\x1d\v v\xdcnD\x14\xec81\xe6\xac4\xbaw\x97h\xb8L\x91X\xee\xbc\xfd\x98\xe4@\n\xc9\xe7\xe7\x98\xc2\xa9\xa1\xe8o\xf3\xf9\xb1\xf0(\xb6\xdeI\xe1\xe8\xbb\x90\x92\xb1\xe4\xd2C\xd5\x93 D\x91\xfb\x0eh\xf9R<\x13\xca$\xa6\x85\x96\x95\\V\xd8') openat(0xffffffffffffff9c, &(0x7f0000001080)='./file0\x00', 0x24140, 0x0) 00:16:47 executing program 1: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) readv(r0, &(0x7f0000000180)=[{&(0x7f0000000000)=""/52, 0x34}], 0x1) ioctl$RTC_PIE_ON(r0, 0x7005) [ 1010.636676][ T39] audit: type=1800 audit(1008.320:17): pid=3683 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm=200C75D63C29FF2927F912 name="file0" dev="vda" ino=643 res=0 errno=0 00:16:54 executing program 0: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) readv(r0, &(0x7f0000000180)=[{&(0x7f0000000000)=""/52, 0x34}], 0x1) ioctl$RTC_PIE_ON(r0, 0x7005) 00:16:54 executing program 1: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) readv(r0, &(0x7f0000000180)=[{&(0x7f0000000000)=""/52, 0x34}], 0x1) ioctl$RTC_PIE_ON(r0, 0x7005) 00:16:59 executing program 1: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) readv(r0, &(0x7f0000000180)=[{&(0x7f0000000000)=""/52, 0x34}], 0x1) ioctl$RTC_PIE_ON(r0, 0x7005) 00:17:01 executing program 0: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) readv(r0, &(0x7f0000000180)=[{&(0x7f0000000000)=""/52, 0x34}], 0x1) ioctl$RTC_PIE_ON(r0, 0x7005) 00:17:05 executing program 0: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) readv(r0, &(0x7f0000000180)=[{&(0x7f0000000000)=""/52, 0x34}], 0x1) ioctl$RTC_PIE_ON(r0, 0x7005) 00:17:07 executing program 1: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r0, 0x8008af26, 0xe9002) syz_usb_connect(0x1, 0x2d, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000035e40084f1c0030769a0000000109021b00010000800309049c00010e0100000905070020"], 0x0) [ 1033.772781][ T3526] usb 2-1: new low-speed USB device number 2 using dummy_hcd [ 1034.462531][ T3526] usb 2-1: config 0 has an invalid interface number: 156 but max is 0 [ 1034.467223][ T3526] usb 2-1: config 0 has no interface number 0 [ 1034.545376][ T3526] usb 2-1: config 0 interface 156 altsetting 0 endpoint 0x7 has invalid maxpacket 32, setting to 8 [ 1034.579896][ T3526] usb 2-1: New USB device found, idVendor=1c4f, idProduct=3000, bcdDevice=9a.76 [ 1034.581878][ T3526] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1034.874197][ T3526] usb 2-1: config 0 descriptor?? 00:17:13 executing program 0: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$SOUND_MIXER_READ_RECSRC(r0, 0x80044dff, &(0x7f0000000000)) [ 1036.391090][ T3116] usb 2-1: USB disconnect, device number 2 [ 1038.851612][ T3116] usb 2-1: new low-speed USB device number 3 using dummy_hcd [ 1039.423179][ T3116] usb 2-1: config 0 has an invalid interface number: 156 but max is 0 [ 1039.425118][ T3116] usb 2-1: config 0 has no interface number 0 [ 1039.426930][ T3116] usb 2-1: config 0 interface 156 altsetting 0 endpoint 0x7 has invalid maxpacket 32, setting to 8 [ 1039.445018][ T3116] usb 2-1: New USB device found, idVendor=1c4f, idProduct=3000, bcdDevice=9a.76 [ 1039.446877][ T3116] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1039.784249][ T3116] usb 2-1: config 0 descriptor?? [ 1040.552091][ T11] usb 2-1: USB disconnect, device number 3 00:17:19 executing program 0: syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)={0x1c840}, 0x18) 00:17:21 executing program 1: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r0, 0x8008af26, 0xe9002) syz_usb_connect(0x1, 0x2d, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000035e40084f1c0030769a0000000109021b00010000800309049c00010e0100000905070020"], 0x0) [ 1046.611397][ T3430] usb 2-1: new low-speed USB device number 4 using dummy_hcd [ 1047.086486][ T3430] usb 2-1: config 0 has an invalid interface number: 156 but max is 0 [ 1047.089392][ T3430] usb 2-1: config 0 has no interface number 0 [ 1047.091018][ T3430] usb 2-1: config 0 interface 156 altsetting 0 endpoint 0x7 has invalid maxpacket 32, setting to 8 [ 1047.096595][ T3430] usb 2-1: New USB device found, idVendor=1c4f, idProduct=3000, bcdDevice=9a.76 [ 1047.130150][ T3430] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1047.234282][ T3430] usb 2-1: config 0 descriptor?? 00:17:26 executing program 0: syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)={0x1c840}, 0x18) [ 1049.614799][ T11] usb 2-1: USB disconnect, device number 4 00:17:32 executing program 1: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r0, 0x8008af26, 0xe9002) syz_usb_connect(0x1, 0x2d, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000035e40084f1c0030769a0000000109021b00010000800309049c00010e0100000905070020"], 0x0) 00:17:33 executing program 0: syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)={0x1c840}, 0x18) [ 1057.305058][ T3527] usb 2-1: new low-speed USB device number 5 using dummy_hcd [ 1057.882431][ T3527] usb 2-1: config 0 has an invalid interface number: 156 but max is 0 [ 1057.885227][ T3527] usb 2-1: config 0 has no interface number 0 [ 1057.887023][ T3527] usb 2-1: config 0 interface 156 altsetting 0 endpoint 0x7 has invalid maxpacket 32, setting to 8 [ 1057.909650][ T3527] usb 2-1: New USB device found, idVendor=1c4f, idProduct=3000, bcdDevice=9a.76 [ 1057.911696][ T3527] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1058.115983][ T3527] usb 2-1: config 0 descriptor?? [ 1060.954788][ T3430] usb 2-1: USB disconnect, device number 5 00:17:40 executing program 0: syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)={0x1c840}, 0x18) 00:17:42 executing program 1: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r0, 0x8008af26, 0xe9002) syz_usb_connect(0x1, 0x2d, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000035e40084f1c0030769a0000000109021b00010000800309049c00010e0100000905070020"], 0x0) [ 1069.443399][ T11] usb 2-1: new low-speed USB device number 6 using dummy_hcd [ 1069.985199][ T11] usb 2-1: config 0 has an invalid interface number: 156 but max is 0 [ 1069.987123][ T11] usb 2-1: config 0 has no interface number 0 [ 1070.010174][ T11] usb 2-1: config 0 interface 156 altsetting 0 endpoint 0x7 has invalid maxpacket 32, setting to 8 [ 1070.012807][ T11] usb 2-1: New USB device found, idVendor=1c4f, idProduct=3000, bcdDevice=9a.76 [ 1070.014648][ T11] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1070.631646][ T11] usb 2-1: config 0 descriptor?? 00:17:48 executing program 0: syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)={0x1c840}, 0x18) [ 1073.425784][ T3430] usb 2-1: USB disconnect, device number 6 00:17:56 executing program 0: syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)={0x1c840}, 0x18) 00:17:59 executing program 1: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r0, 0x8008af26, 0xe9002) syz_usb_connect(0x1, 0x2d, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000035e40084f1c0030769a0000000109021b00010000800309049c00010e0100000905070020"], 0x0) [ 1083.561931][ T3527] usb 2-1: new low-speed USB device number 7 using dummy_hcd [ 1083.977248][ T3527] usb 2-1: config 0 has an invalid interface number: 156 but max is 0 [ 1083.983302][ T3527] usb 2-1: config 0 has no interface number 0 [ 1083.985401][ T3527] usb 2-1: config 0 interface 156 altsetting 0 endpoint 0x7 has invalid maxpacket 32, setting to 8 [ 1083.987729][ T3527] usb 2-1: New USB device found, idVendor=1c4f, idProduct=3000, bcdDevice=9a.76 [ 1083.991915][ T3527] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1084.102155][ T3527] usb 2-1: config 0 descriptor?? 00:18:02 executing program 0: syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)={0x1c840}, 0x18) [ 1085.573902][ T3430] usb 2-1: USB disconnect, device number 7 00:18:07 executing program 1: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r0, 0x8008af26, 0xe9002) syz_usb_connect(0x1, 0x2d, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000035e40084f1c0030769a0000000109021b00010000800309049c00010e0100000905070020"], 0x0) 00:18:10 executing program 0: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r0, 0x8008af26, 0xe9002) syz_usb_connect(0x1, 0x2d, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000035e40084f1c0030769a0000000109021b00010000800309049c00010e0100000905070020"], 0x0) [ 1094.342298][ T21] usb 2-1: new low-speed USB device number 8 using dummy_hcd [ 1094.903100][ T21] usb 2-1: config 0 has an invalid interface number: 156 but max is 0 [ 1094.905010][ T21] usb 2-1: config 0 has no interface number 0 [ 1094.906722][ T21] usb 2-1: config 0 interface 156 altsetting 0 endpoint 0x7 has invalid maxpacket 32, setting to 8 [ 1094.950341][ T21] usb 2-1: New USB device found, idVendor=1c4f, idProduct=3000, bcdDevice=9a.76 [ 1094.952555][ T21] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1095.121778][ T21] usb 2-1: config 0 descriptor?? [ 1096.296239][ T21] usb 1-1: new low-speed USB device number 2 using dummy_hcd [ 1096.984026][ T21] usb 1-1: config 0 has an invalid interface number: 156 but max is 0 [ 1096.986017][ T21] usb 1-1: config 0 has no interface number 0 [ 1096.987984][ T21] usb 1-1: config 0 interface 156 altsetting 0 endpoint 0x7 has invalid maxpacket 32, setting to 8 [ 1097.001688][ T21] usb 1-1: New USB device found, idVendor=1c4f, idProduct=3000, bcdDevice=9a.76 [ 1097.003561][ T21] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1097.221553][ T21] usb 1-1: config 0 descriptor?? [ 1097.373532][ T3526] usb 2-1: USB disconnect, device number 8 [ 1098.985021][ T11] usb 1-1: USB disconnect, device number 2 00:18:19 executing program 1: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r0, 0x8008af26, 0xe9002) syz_usb_connect(0x1, 0x2d, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000035e40084f1c0030769a0000000109021b00010000800309049c00010e0100000905070020"], 0x0) 00:18:22 executing program 0: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r0, 0x8008af26, 0xe9002) syz_usb_connect(0x1, 0x2d, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000035e40084f1c0030769a0000000109021b00010000800309049c00010e0100000905070020"], 0x0) [ 1105.201879][ T3430] usb 2-1: new low-speed USB device number 9 using dummy_hcd [ 1105.584735][ T3430] usb 2-1: config 0 has an invalid interface number: 156 but max is 0 [ 1105.586820][ T3430] usb 2-1: config 0 has no interface number 0 [ 1105.620603][ T3430] usb 2-1: config 0 interface 156 altsetting 0 endpoint 0x7 has invalid maxpacket 32, setting to 8 [ 1105.624050][ T3430] usb 2-1: New USB device found, idVendor=1c4f, idProduct=3000, bcdDevice=9a.76 [ 1105.625963][ T3430] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1105.804831][ T3430] usb 2-1: config 0 descriptor?? [ 1107.210938][ T21] usb 2-1: USB disconnect, device number 9 [ 1109.281632][ T3656] usb 1-1: new low-speed USB device number 3 using dummy_hcd [ 1109.795602][ T3656] usb 1-1: config 0 has an invalid interface number: 156 but max is 0 [ 1109.797544][ T3656] usb 1-1: config 0 has no interface number 0 [ 1109.832718][ T3656] usb 1-1: config 0 interface 156 altsetting 0 endpoint 0x7 has invalid maxpacket 32, setting to 8 [ 1109.835122][ T3656] usb 1-1: New USB device found, idVendor=1c4f, idProduct=3000, bcdDevice=9a.76 [ 1109.836982][ T3656] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1110.094674][ T3656] usb 1-1: config 0 descriptor?? [ 1111.620410][ T3430] usb 1-1: USB disconnect, device number 3 00:18:32 executing program 1: r0 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, 0x0, 0x100000) 00:18:34 executing program 0: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r0, 0x8008af26, 0xe9002) syz_usb_connect(0x1, 0x2d, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000035e40084f1c0030769a0000000109021b00010000800309049c00010e0100000905070020"], 0x0) 00:18:35 executing program 1: r0 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, 0x0, 0x100000) [ 1119.441299][ T3656] usb 1-1: new low-speed USB device number 4 using dummy_hcd [ 1119.811637][ T3656] usb 1-1: config 0 has an invalid interface number: 156 but max is 0 [ 1119.813033][ T3656] usb 1-1: config 0 has no interface number 0 [ 1119.814345][ T3656] usb 1-1: config 0 interface 156 altsetting 0 endpoint 0x7 has invalid maxpacket 32, setting to 8 [ 1119.816242][ T3656] usb 1-1: New USB device found, idVendor=1c4f, idProduct=3000, bcdDevice=9a.76 [ 1119.817700][ T3656] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1119.983464][ T3656] usb 1-1: config 0 descriptor?? [ 1121.682567][ T3656] usb 1-1: USB disconnect, device number 4 00:18:41 executing program 1: r0 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, 0x0, 0x100000) 00:18:45 executing program 0: r0 = fsopen(&(0x7f0000000080)='configfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x3) 00:18:46 executing program 1: r0 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, 0x0, 0x100000) 00:18:49 executing program 0: r0 = fsopen(&(0x7f0000000080)='configfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x3) 00:18:51 executing program 1: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmmsg$inet6(r0, &(0x7f0000009000)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c, 0x0}}, {{&(0x7f0000001540)={0xa, 0x4e22, 0x0, @dev, 0x101}, 0x1c, 0x0, 0x0, &(0x7f00000027c0)=[@pktinfo={{0x24, 0x29, 0x32, {@mcast1}}}], 0x28}}], 0x2, 0x0) 00:18:54 executing program 0: r0 = fsopen(&(0x7f0000000080)='configfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x3) 00:18:57 executing program 1: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmmsg$inet6(r0, &(0x7f0000009000)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c, 0x0}}, {{&(0x7f0000001540)={0xa, 0x4e22, 0x0, @dev, 0x101}, 0x1c, 0x0, 0x0, &(0x7f00000027c0)=[@pktinfo={{0x24, 0x29, 0x32, {@mcast1}}}], 0x28}}], 0x2, 0x0) 00:18:58 executing program 0: r0 = fsopen(&(0x7f0000000080)='configfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x3) 00:19:02 executing program 1: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmmsg$inet6(r0, &(0x7f0000009000)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c, 0x0}}, {{&(0x7f0000001540)={0xa, 0x4e22, 0x0, @dev, 0x101}, 0x1c, 0x0, 0x0, &(0x7f00000027c0)=[@pktinfo={{0x24, 0x29, 0x32, {@mcast1}}}], 0x28}}], 0x2, 0x0) 00:19:04 executing program 0: r0 = syz_open_dev$dri(&(0x7f0000000b00), 0x0, 0x0) ioctl$DRM_IOCTL_IRQ_BUSID(r0, 0xc0106403, &(0x7f0000000000)) 00:19:07 executing program 1: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmmsg$inet6(r0, &(0x7f0000009000)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c, 0x0}}, {{&(0x7f0000001540)={0xa, 0x4e22, 0x0, @dev, 0x101}, 0x1c, 0x0, 0x0, &(0x7f00000027c0)=[@pktinfo={{0x24, 0x29, 0x32, {@mcast1}}}], 0x28}}], 0x2, 0x0) 00:19:09 executing program 0: r0 = syz_open_dev$dri(&(0x7f0000000b00), 0x0, 0x0) ioctl$DRM_IOCTL_IRQ_BUSID(r0, 0xc0106403, &(0x7f0000000000)) 00:19:15 executing program 0: r0 = syz_open_dev$dri(&(0x7f0000000b00), 0x0, 0x0) ioctl$DRM_IOCTL_IRQ_BUSID(r0, 0xc0106403, &(0x7f0000000000)) 00:19:15 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000b00), 0x0, 0x0) ioctl$DRM_IOCTL_IRQ_BUSID(r0, 0xc0106403, &(0x7f0000000000)) 00:19:19 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000b00), 0x0, 0x0) ioctl$DRM_IOCTL_IRQ_BUSID(r0, 0xc0106403, &(0x7f0000000000)) 00:19:20 executing program 0: r0 = syz_open_dev$dri(&(0x7f0000000b00), 0x0, 0x0) ioctl$DRM_IOCTL_IRQ_BUSID(r0, 0xc0106403, &(0x7f0000000000)) 00:19:24 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000b00), 0x0, 0x0) ioctl$DRM_IOCTL_IRQ_BUSID(r0, 0xc0106403, &(0x7f0000000000)) 00:19:25 executing program 0: tee(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1b) 00:19:29 executing program 0: tee(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1b) 00:19:31 executing program 1: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@ptr={0x0, 0x0, 0x0, 0x2, 0x1}]}}, &(0x7f0000000180)=""/238, 0x26, 0xee, 0x1}, 0x20) 00:19:34 executing program 0: tee(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1b) 00:19:35 executing program 1: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@ptr={0x0, 0x0, 0x0, 0x2, 0x1}]}}, &(0x7f0000000180)=""/238, 0x26, 0xee, 0x1}, 0x20) 00:19:39 executing program 0: tee(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1b) 00:19:40 executing program 1: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@ptr={0x0, 0x0, 0x0, 0x2, 0x1}]}}, &(0x7f0000000180)=""/238, 0x26, 0xee, 0x1}, 0x20) 00:19:44 executing program 0: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000200)=@bpf_lsm={0x1d, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x78) 00:19:45 executing program 1: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@ptr={0x0, 0x0, 0x0, 0x2, 0x1}]}}, &(0x7f0000000180)=""/238, 0x26, 0xee, 0x1}, 0x20) 00:19:55 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040), 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000000)={0x800, 0x2}) 00:20:01 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040), 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000000)={0x800, 0x2}) 00:20:08 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040), 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000000)={0x800, 0x2}) 00:20:08 executing program 0: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000200)=@bpf_lsm={0x1d, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x78) 00:20:11 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040), 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000000)={0x800, 0x2}) 00:20:12 executing program 0: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000200)=@bpf_lsm={0x1d, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x78) 00:20:16 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000080)={0x17e}) truncate(&(0x7f00000000c0)='./file0\x00', 0x0) 00:20:17 executing program 0: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000200)=@bpf_lsm={0x1d, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x78) 00:20:21 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000080)={0x17e}) truncate(&(0x7f00000000c0)='./file0\x00', 0x0) 00:20:22 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000080)={0x17e}) truncate(&(0x7f00000000c0)='./file0\x00', 0x0) 00:20:27 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000080)={0x17e}) truncate(&(0x7f00000000c0)='./file0\x00', 0x0) 00:20:28 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000080)={0x17e}) truncate(&(0x7f00000000c0)='./file0\x00', 0x0) 00:20:32 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000080)={0x17e}) truncate(&(0x7f00000000c0)='./file0\x00', 0x0) 00:20:34 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000080)={0x17e}) truncate(&(0x7f00000000c0)='./file0\x00', 0x0) 00:20:39 executing program 0: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x4080, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendfile(r2, r0, 0x0, 0x100000001) r3 = openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) socket$can_j1939(0x1d, 0x2, 0x7) dup3(r3, r1, 0x0) 00:20:42 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x14) r1 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r1, 0x8008af26, 0xe9002) sendmsg$RDMA_NLDEV_CMD_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000000e1401"], 0x30}}, 0x0) [ 1246.917266][ T3918] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1247.383426][ T3918] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.1'. 00:20:45 executing program 0: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x4080, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendfile(r2, r0, 0x0, 0x100000001) r3 = openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) socket$can_j1939(0x1d, 0x2, 0x7) dup3(r3, r1, 0x0) 00:20:47 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x14) r1 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r1, 0x8008af26, 0xe9002) sendmsg$RDMA_NLDEV_CMD_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000000e1401"], 0x30}}, 0x0) [ 1251.727072][ T3924] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.1'. 00:20:51 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x14) r1 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r1, 0x8008af26, 0xe9002) sendmsg$RDMA_NLDEV_CMD_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000000e1401"], 0x30}}, 0x0) 00:20:51 executing program 0: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x4080, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendfile(r2, r0, 0x0, 0x100000001) r3 = openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) socket$can_j1939(0x1d, 0x2, 0x7) dup3(r3, r1, 0x0) [ 1256.123663][ T3927] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.1'. 00:20:55 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x14) r1 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r1, 0x8008af26, 0xe9002) sendmsg$RDMA_NLDEV_CMD_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000000e1401"], 0x30}}, 0x0) 00:20:58 executing program 0: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x4080, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendfile(r2, r0, 0x0, 0x100000001) r3 = openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) socket$can_j1939(0x1d, 0x2, 0x7) dup3(r3, r1, 0x0) [ 1260.973166][ T3931] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.1'. 00:21:02 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x14) r1 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r1, 0x8008af26, 0xe9002) sendmsg$RDMA_NLDEV_CMD_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000000e1401"], 0x30}}, 0x0) [ 1267.076719][ T3937] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.1'. 00:21:07 executing program 0: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x4080, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendfile(r2, r0, 0x0, 0x100000001) r3 = openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) socket$can_j1939(0x1d, 0x2, 0x7) dup3(r3, r1, 0x0) 00:21:08 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x14) r1 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r1, 0x8008af26, 0xe9002) sendmsg$RDMA_NLDEV_CMD_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000000e1401"], 0x30}}, 0x0) [ 1272.352803][ T3941] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.1'. 00:21:12 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x14) r1 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r1, 0x8008af26, 0xe9002) sendmsg$RDMA_NLDEV_CMD_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000000e1401"], 0x30}}, 0x0) [ 1278.016341][ T3944] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.1'. 00:21:16 executing program 0: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x4080, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendfile(r2, r0, 0x0, 0x100000001) r3 = openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) socket$can_j1939(0x1d, 0x2, 0x7) dup3(r3, r1, 0x0) 00:21:19 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_int(r0, 0x0, 0x15, &(0x7f0000000000), 0x4) 00:21:22 executing program 0: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x4080, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendfile(r2, r0, 0x0, 0x100000001) r3 = openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) socket$can_j1939(0x1d, 0x2, 0x7) dup3(r3, r1, 0x0) 00:21:23 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_int(r0, 0x0, 0x15, &(0x7f0000000000), 0x4) 00:21:27 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_int(r0, 0x0, 0x15, &(0x7f0000000000), 0x4) 00:21:32 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x1d, &(0x7f00000006c0)=@nat={'nat\x00', 0x1b, 0x5, 0x488, 0x0, 0x370, 0xffffffff, 0x370, 0x0, 0x490, 0x490, 0xffffffff, 0x490, 0x490, 0x5, 0x0, {[{{@uncond, 0x0, 0xa8, 0xf0}, @MASQUERADE={0x48, 'MASQUERADE\x00', 0x0, {0x0, @ipv4=@multicast2, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @gre_key}}}, {{@ipv6={@local, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'macvlan1\x00', 'veth1_vlan\x00'}, 0x0, 0xa8, 0xf0}, @NETMAP={0x48, 'NETMAP\x00', 0x0, {0x0, @ipv4=@dev, @ipv6=@dev, @gre_key}}}, {{@ipv6={@mcast1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', [], [], 'team_slave_1\x00', 'bridge_slave_0\x00'}, 0x0, 0xa8, 0xf0}, @MASQUERADE={0x48, 'MASQUERADE\x00', 0x0, {0x0, @ipv6=@dev, @ipv6=@remote, @port, @icmp_id}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @common=@unspec=@ERROR={0x40, 'ERROR\x00', 0x0, "8e6fc44ef8bc575cef1aaacbcde81d6860771e108363089da9e7fc84fe69"}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4e8) 00:21:33 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_int(r0, 0x0, 0x15, &(0x7f0000000000), 0x4) 00:21:36 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x1d, &(0x7f00000006c0)=@nat={'nat\x00', 0x1b, 0x5, 0x488, 0x0, 0x370, 0xffffffff, 0x370, 0x0, 0x490, 0x490, 0xffffffff, 0x490, 0x490, 0x5, 0x0, {[{{@uncond, 0x0, 0xa8, 0xf0}, @MASQUERADE={0x48, 'MASQUERADE\x00', 0x0, {0x0, @ipv4=@multicast2, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @gre_key}}}, {{@ipv6={@local, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'macvlan1\x00', 'veth1_vlan\x00'}, 0x0, 0xa8, 0xf0}, @NETMAP={0x48, 'NETMAP\x00', 0x0, {0x0, @ipv4=@dev, @ipv6=@dev, @gre_key}}}, {{@ipv6={@mcast1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', [], [], 'team_slave_1\x00', 'bridge_slave_0\x00'}, 0x0, 0xa8, 0xf0}, @MASQUERADE={0x48, 'MASQUERADE\x00', 0x0, {0x0, @ipv6=@dev, @ipv6=@remote, @port, @icmp_id}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @common=@unspec=@ERROR={0x40, 'ERROR\x00', 0x0, "8e6fc44ef8bc575cef1aaacbcde81d6860771e108363089da9e7fc84fe69"}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4e8) 00:21:38 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000001080)='./file0\x00', 0x24140, 0x0) r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r1, 0x8008af26, 0xe9002) ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f0000000440)) [ 1303.162656][ T39] audit: type=1800 audit(1300.820:18): pid=3965 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file0" dev="vda" ino=646 res=0 errno=0 00:21:40 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x1d, &(0x7f00000006c0)=@nat={'nat\x00', 0x1b, 0x5, 0x488, 0x0, 0x370, 0xffffffff, 0x370, 0x0, 0x490, 0x490, 0xffffffff, 0x490, 0x490, 0x5, 0x0, {[{{@uncond, 0x0, 0xa8, 0xf0}, @MASQUERADE={0x48, 'MASQUERADE\x00', 0x0, {0x0, @ipv4=@multicast2, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @gre_key}}}, {{@ipv6={@local, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'macvlan1\x00', 'veth1_vlan\x00'}, 0x0, 0xa8, 0xf0}, @NETMAP={0x48, 'NETMAP\x00', 0x0, {0x0, @ipv4=@dev, @ipv6=@dev, @gre_key}}}, {{@ipv6={@mcast1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', [], [], 'team_slave_1\x00', 'bridge_slave_0\x00'}, 0x0, 0xa8, 0xf0}, @MASQUERADE={0x48, 'MASQUERADE\x00', 0x0, {0x0, @ipv6=@dev, @ipv6=@remote, @port, @icmp_id}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @common=@unspec=@ERROR={0x40, 'ERROR\x00', 0x0, "8e6fc44ef8bc575cef1aaacbcde81d6860771e108363089da9e7fc84fe69"}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4e8) [ 1304.470397][ T39] audit: type=1800 audit(1302.150:19): pid=3965 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file0" dev="vda" ino=646 res=0 errno=0 00:21:44 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000001080)='./file0\x00', 0x24140, 0x0) r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r1, 0x8008af26, 0xe9002) ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f0000000440)) 00:21:46 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x1d, &(0x7f00000006c0)=@nat={'nat\x00', 0x1b, 0x5, 0x488, 0x0, 0x370, 0xffffffff, 0x370, 0x0, 0x490, 0x490, 0xffffffff, 0x490, 0x490, 0x5, 0x0, {[{{@uncond, 0x0, 0xa8, 0xf0}, @MASQUERADE={0x48, 'MASQUERADE\x00', 0x0, {0x0, @ipv4=@multicast2, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @gre_key}}}, {{@ipv6={@local, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'macvlan1\x00', 'veth1_vlan\x00'}, 0x0, 0xa8, 0xf0}, @NETMAP={0x48, 'NETMAP\x00', 0x0, {0x0, @ipv4=@dev, @ipv6=@dev, @gre_key}}}, {{@ipv6={@mcast1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', [], [], 'team_slave_1\x00', 'bridge_slave_0\x00'}, 0x0, 0xa8, 0xf0}, @MASQUERADE={0x48, 'MASQUERADE\x00', 0x0, {0x0, @ipv6=@dev, @ipv6=@remote, @port, @icmp_id}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @common=@unspec=@ERROR={0x40, 'ERROR\x00', 0x0, "8e6fc44ef8bc575cef1aaacbcde81d6860771e108363089da9e7fc84fe69"}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4e8) [ 1309.029343][ T39] audit: type=1800 audit(1306.710:20): pid=3970 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file0" dev="vda" ino=639 res=0 errno=0 00:21:51 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000001080)='./file0\x00', 0x24140, 0x0) r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r1, 0x8008af26, 0xe9002) ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f0000000440)) 00:21:53 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000001080)='./file0\x00', 0x24140, 0x0) r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r1, 0x8008af26, 0xe9002) ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f0000000440)) [ 1318.324729][ T39] audit: type=1800 audit(1316.010:21): pid=3975 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file0" dev="vda" ino=646 res=0 errno=0 [ 1319.977387][ T39] audit: type=1800 audit(1317.660:22): pid=3976 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="vda" ino=647 res=0 errno=0 00:22:02 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000001080)='./file0\x00', 0x24140, 0x0) r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r1, 0x8008af26, 0xe9002) ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f0000000440)) 00:22:04 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000001080)='./file0\x00', 0x24140, 0x0) r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r1, 0x8008af26, 0xe9002) ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f0000000440)) [ 1328.061541][ T39] audit: type=1800 audit(1325.740:23): pid=3980 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file0" dev="vda" ino=643 res=0 errno=0 [ 1330.567453][ T39] audit: type=1800 audit(1328.250:24): pid=3983 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="vda" ino=647 res=0 errno=0 00:22:13 executing program 1: r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0xd3, 0xe0902) ioctl$FS_IOC_SETFLAGS(r0, 0x550b, 0x0) 00:22:15 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000001080)='./file0\x00', 0x24140, 0x0) r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$VHOST_RESET_OWNER(r1, 0x8008af26, 0xe9002) ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f0000000440)) [ 1341.296747][ T39] audit: type=1800 audit(1338.980:25): pid=3990 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="vda" ino=646 res=0 errno=0 00:22:20 executing program 1: r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0xd3, 0xe0902) ioctl$FS_IOC_SETFLAGS(r0, 0x550b, 0x0) 00:22:27 executing program 1: r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0xd3, 0xe0902) ioctl$FS_IOC_SETFLAGS(r0, 0x550b, 0x0) 00:22:28 executing program 0: r0 = perf_event_open(&(0x7f0000000400)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) read(r1, &(0x7f0000000140)=""/165, 0xa5) close(r0) 00:22:32 executing program 1: r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0xd3, 0xe0902) ioctl$FS_IOC_SETFLAGS(r0, 0x550b, 0x0) 00:22:34 executing program 0: r0 = perf_event_open(&(0x7f0000000400)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) read(r1, &(0x7f0000000140)=""/165, 0xa5) close(r0) 00:22:37 executing program 1: bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x13, 0x8, 0xfffb}, 0x40) 00:22:42 executing program 1: bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x13, 0x8, 0xfffb}, 0x40) 00:22:46 executing program 1: bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x13, 0x8, 0xfffb}, 0x40) [ 1808.872712][ T899] INFO: task syz-executor.0:4003 blocked for more than 430 seconds. [ 1808.876382][ T899] Not tainted 5.12.0-rc8-syzkaller-00194-g18a3c5f7abfd #0 [ 1808.877643][ T899] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1808.882885][ T899] task:syz-executor.0 state:D stack: 0 pid: 4003 ppid: 3083 flags:0x00000002 [ 1808.885017][ T899] Call Trace: [ 1808.885934][ T899] [] __schedule+0x47c/0xe8c [ 1808.887417][ T899] [] schedule+0x64/0x166 [ 1808.890288][ T899] [] schedule_preempt_disabled+0x16/0x28 [ 1808.891646][ T899] [] __mutex_lock+0x4a8/0x99e [ 1808.893052][ T899] [] mutex_lock_nested+0x14/0x1c [ 1808.894136][ T899] [] perf_event_exit_task+0x1be/0x708 [ 1808.895412][ T899] [] do_exit+0x77a/0x1846 [ 1808.896748][ T899] [] do_group_exit+0xa0/0x198 [ 1808.897759][ T899] [] get_signal+0x31e/0x14ba [ 1808.900595][ T899] [] do_notify_resume+0xa8/0x930 [ 1808.901698][ T899] [] ret_from_exception+0x0/0x14 [ 1808.903005][ T899] [ 1808.903005][ T899] Showing all locks held in the system: [ 1808.904378][ T899] 2 locks held by kworker/1:1/21: [ 1808.905442][ T899] 1 lock held by khungtaskd/899: [ 1808.906389][ T899] #0: ffffffe00432b268 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x32/0x1fa [ 1808.921251][ T899] 1 lock held by klogd/2852: [ 1808.922284][ T899] 2 locks held by getty/3017: [ 1808.923291][ T899] #0: ffffffe00ddb4098 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x48 [ 1808.926113][ T899] #1: ffffffd010ac82e8 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x9ac/0xb08 [ 1808.939710][ T899] 1 lock held by syz-executor.0/4003: [ 1808.940751][ T899] #0: ffffffe00e4c70b0 (&ctx->mutex){+.+.}-{3:3}, at: perf_event_exit_task+0x1be/0x708 [ 1808.943620][ T899] 1 lock held by syz-executor.0/4004: [ 1808.944701][ T899] [ 1808.945389][ T899] ============================================= [ 1808.945389][ T899] [ 1808.946761][ T899] Kernel panic - not syncing: hung_task: blocked tasks [ 1808.948072][ T899] CPU: 0 PID: 899 Comm: khungtaskd Not tainted 5.12.0-rc8-syzkaller-00194-g18a3c5f7abfd #0 [ 1808.950904][ T899] Hardware name: riscv-virtio,qemu (DT) [ 1808.951856][ T899] Call Trace: [ 1808.952735][ T899] [] walk_stackframe+0x0/0x23c [ 1808.954137][ T899] [] dump_backtrace+0x40/0x4e [ 1808.955532][ T899] [] show_stack+0x22/0x2e [ 1808.956868][ T899] [] dump_stack+0x148/0x1d8 [ 1808.958183][ T899] [] panic+0x20a/0x5cc [ 1808.960291][ T899] [] proc_dohung_task_timeout_secs+0x0/0x7e [ 1808.961815][ T899] [] kthread+0x234/0x298 [ 1808.963124][ T899] [] ret_from_exception+0x0/0x14 [ 1808.965070][ T899] SMP: stopping secondary CPUs [ 1808.967956][ T899] Rebooting in 86400 seconds.. VM DIAGNOSIS: 17:53:05 Registers: info registers vcpu 0 pc ffffffe0003bdde0 mhartid 0000000000000000 mstatus 00000000000000a0 mip 00000000000000a0 mie 000000000000022a mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffe00000542c mepc ffffffe0001a2674 sepc ffffffe000005766 mcause 8000000000000007 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffe000c1e1f2 x2/sp ffffffe008a3ba00 x3/gp ffffffe004588c00 x4/tp ffffffe008a2df00 x5/t0 ffffffe004ffdbb7 x6/t1 0000000000000001 x7/t2 0000000000000000 x8/s0 ffffffe008a3ba30 x9/s1 ffffffe005230490 x10/a0 ffffffe008a2df20 x11/a1 ffffffd00066e000 x12/a2 1ffffffc00a4609b x13/a3 ffffffe000c1e1dc x14/a4 0000000000000000 x15/a5 ffffffe0052304d8 x16/a6 0000000000f00000 x17/a7 ffffffe000c26c12 x18/s2 ffffffe008a2df00 x19/s3 0000000000000074 x20/s4 0000000000000061 x21/s5 ffffffe000c1d436 x22/s6 ffffffe005230490 x23/s7 ffffffe0052304e8 x24/s8 0000000000000001 x25/s9 ffffffe00458c0d0 x26/s10 ffffffe005230718 x27/s11 ffffffe0052304e0 x28/t3 714358b1e2df1700 x29/t4 ffffffc4009ffb74 x30/t5 ffffffc4009ffb77 x31/t6 ffffffe004ffdbb7 f0/ft0 0000000000000000 f1/ft1 40ccfb447e3ff5e3 f2/ft2 417b99b200000000 f3/ft3 40b52ad96978f00b f4/ft4 40ffa27000000000 f5/ft5 40391663f6fac913 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000 info registers vcpu 1 pc ffffffe0000c9c58 mhartid 0000000000000001 mstatus 00000000000001a0 mip 00000000000000a0 mie 000000000000020a mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffe00000542c mepc ffffffe00026af46 sepc ffffffe00026af46 mcause 8000000000000007 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffe002a96146 x2/sp ffffffe005fdf510 x3/gp ffffffe004588c00 x4/tp ffffffe005f817c0 x5/t0 0000000000046000 x6/t1 0000000000000001 x7/t2 ffffffffe416a105 x8/s0 ffffffe005fdf520 x9/s1 0000000000001000 x10/a0 0000000000000120 x11/a1 ffffffffffffffff x12/a2 1ffffffc00bf02f9 x13/a3 ffffffe000100944 x14/a4 0000000000010001 x15/a5 0000000000000000 x16/a6 0000000000f00000 x17/a7 ffffffe00099cefa x18/s2 0000000000000001 x19/s3 ffffffe00432b2b8 x20/s4 ffffffe00458c228 x21/s5 ffffffe002e27840 x22/s6 ffffffffffffffff x23/s7 ffffffe00013c15a x24/s8 ffffffe0050495a8 x25/s9 ffffffe066d65a40 x26/s10 ffffffe066d65100 x27/s11 ffffffe00013c0e0 x28/t3 714358b1e2df1700 x29/t4 ffffffc4008935d9 x30/t5 ffffffc4008935de x31/t6 ffffffe007b53b08 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000