last executing test programs: 40.932448884s ago: executing program 3 (id=1639): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000280)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0xc, &(0x7f0000000040)=@framed={{0x18, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r2}}, @func={0x85, 0x0, 0x1, 0x0, 0x3}, @initr0, @exit]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) 40.836646205s ago: executing program 3 (id=1640): socket$nl_generic(0x10, 0x3, 0x10) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) getrandom(0x0, 0x0, 0x1) write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, 0x0, 0x0) 40.695831367s ago: executing program 3 (id=1644): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r1 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) close(r1) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x0) close(r0) 40.396435572s ago: executing program 3 (id=1654): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x808003, &(0x7f0000000000), 0x3, 0x4e9, &(0x7f00000000c0)="$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") r0 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0) write$binfmt_register(r0, &(0x7f0000000000)={0x3a, 'syz2', 0x3a, 'E', 0x3a, 0x7, 0x3a, 'M', 0x3a, 'M', 0x3a, './file2', 0x3a, [0x46]}, 0x2a) syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f0000000f80)=ANY=[], 0xb, 0x0, &(0x7f0000000000)) 39.87594011s ago: executing program 3 (id=1665): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0xa, 0xfffe, 0x0, @empty, 0x4}, {0xa, 0x0, 0x0, @loopback, 0xfffffffc}, 0xffffffffffffffff, 0x400}}, 0x48) 28.250461524s ago: executing program 3 (id=1674): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c) listen(r0, 0x3) connect$inet6(0xffffffffffffffff, 0x0, 0x0) syz_emit_ethernet(0x76, &(0x7f0000000540)={@local, @broadcast, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x68, 0x0, 0x0, 0x0, 0x6, 0x0, @empty, @broadcast}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x15, 0x0, 0x0, 0x0, 0x0, {[@nop, @nop, @mss={0x2, 0x4}, @exp_smc={0xfe, 0x6}, @sack={0x5, 0xe, [0x0, 0x0, 0x0]}, @md5sig={0x13, 0xfffffffffffffe8f, "2b58ea71e70b7ec40843c97fb62cd171"}]}}}}}}}, 0x0) 28.177204476s ago: executing program 32 (id=1674): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c) listen(r0, 0x3) connect$inet6(0xffffffffffffffff, 0x0, 0x0) syz_emit_ethernet(0x76, &(0x7f0000000540)={@local, @broadcast, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x68, 0x0, 0x0, 0x0, 0x6, 0x0, @empty, @broadcast}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x15, 0x0, 0x0, 0x0, 0x0, {[@nop, @nop, @mss={0x2, 0x4}, @exp_smc={0xfe, 0x6}, @sack={0x5, 0xe, [0x0, 0x0, 0x0]}, @md5sig={0x13, 0xfffffffffffffe8f, "2b58ea71e70b7ec40843c97fb62cd171"}]}}}}}}}, 0x0) 5.481131257s ago: executing program 4 (id=1897): sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000000}, 0x0) dup(0xffffffffffffffff) mkdirat(0xffffffffffffff9c, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003b000b05d25a806c8c6394f90224fc60100005000a000200053582c137153e37000c0180fc0b100bf800", 0x33fe0}], 0x1}, 0x0) 5.319328699s ago: executing program 4 (id=1903): r0 = syz_io_uring_setup(0x10d2, &(0x7f0000000480)={0x0, 0x7736, 0x0, 0x0, 0x34f}, &(0x7f00000000c0)=0x0, &(0x7f0000000080)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_SYMLINKAT={0x26, 0x14, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r3}}) io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0) 5.120031302s ago: executing program 4 (id=1906): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a000020095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10) r1 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) r2 = fsmount(r1, 0x0, 0x0) fchdir(r2) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x20) open(&(0x7f0000000040)='./file0\x00', 0x551083, 0x40) 4.157548937s ago: executing program 2 (id=1909): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0x21, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b7000000000000009500000000000000c9014a38168ef9d0f619d37e5259099c83053bd3b7d69d345bfbd7c4a7781e8247f60296eee8c5772ffdbccf2edb1b61af1460a61767182fc5eab211286f3ef44407476b988d71e43637cb15f0bda63f232bd33c9075c07cab337be62a7519d948557f078e2a48d30a4d7bef744d5eadf5"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r1}, 0x18) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xfdef) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b80)={0x6, 0x3, &(0x7f0000000680)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5, @void, @value}, 0x94) socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0", @ANYRES32, @ANYBLOB], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x3, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, @void, @value}, 0x94) r2 = getpid() r3 = syz_pidfd_open(r2, 0x0) setns(r3, 0x24020000) syz_clone(0xf5982500, 0x0, 0x0, 0x0, 0x0, 0x0) 4.103607947s ago: executing program 4 (id=1913): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='westwood\x00', 0x9) sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="68377863ac6e", 0x6}], 0x1}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000840)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed", 0x1a}], 0x1}}], 0x2, 0xc0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4) sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008034, 0x0, 0x0) 4.066388198s ago: executing program 0 (id=1914): setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000100)={{{@in=@local, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x4e24, 0x0, 0x4e23, 0x3, 0xa}, {0x4, 0x4, 0x0, 0x0, 0xfffffffffffffffc, 0x9, 0x1, 0x2}, {0xcb29, 0x6, 0x20053e5, 0x20}, 0x0, 0x1, 0x1, 0x1, 0x2, 0x3}, {{@in6=@empty, 0x0, 0x6c}, 0x2, @in6=@remote, 0x34ff, 0x4, 0x2, 0x0, 0x0, 0x6}}, 0xe8) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff) prctl$PR_SET_NAME(0xf, &(0x7f0000000180)='wg1\x00') r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x14) sendmsg$ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01032757c38d085641a7260000000c000180080001"], 0x20}, 0x1, 0x0, 0x0, 0x20040005}, 0x8840) 3.92454716s ago: executing program 0 (id=1916): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008f00850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x24}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newtfilter={0x88, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0xfffa}, {}, {0x1c, 0xfff9}}, [@filter_kind_options=@f_flower={{0xb}, {0x58, 0x2, [@TCA_FLOWER_ACT={0x54, 0x3, [@m_connmark={0x50, 0x1, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xfffffff8, 0xfff, 0x0, 0x5, 0xb}, 0x3}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}]}}]}, 0x88}}, 0x24000000) r2 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0) 3.836673332s ago: executing program 0 (id=1918): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10) syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0) 3.732004603s ago: executing program 1 (id=1919): syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file2\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x2, 0x368, &(0x7f0000000380)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x105042, 0x40) mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x100000b, 0x13, r0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffd3, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000840)={{r1}, &(0x7f0000000600), &(0x7f0000000800)}, 0x20) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10) write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0x32600) 3.710969943s ago: executing program 5 (id=1920): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) r1 = socket$kcm(0x29, 0x2, 0x0) sendmmsg$inet(r1, &(0x7f0000000780)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000080)='\x00', 0x1}], 0x1}}], 0x1, 0x8000) close(r1) 3.633596175s ago: executing program 1 (id=1921): openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000003c0)='mm_page_free\x00', r3}, 0x18) r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0) sendfile(r4, r4, 0x0, 0x3fffff) 3.571996106s ago: executing program 2 (id=1922): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000003c0)='mm_page_free\x00', r4}, 0x18) r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0) sendfile(r5, r5, 0x0, 0x3fffff) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x2d) ioctl$AUTOFS_IOC_FAIL(r0, 0x4c80, 0xffffffffffffffb6) 3.571818126s ago: executing program 5 (id=1923): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_attach_bpf(r1, 0x1, 0x4c, &(0x7f0000000000), 0x4) sendmsg$unix(r0, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18, 0x4000010}, 0x4000010) recvmsg$unix(r1, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x2062) 1.661454724s ago: executing program 2 (id=1924): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94) bind$netlink(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) r1 = syz_open_procfs(0x0, &(0x7f0000000180)='net/kcm\x00') faccessat2(r1, &(0x7f0000000040)='\x00', 0x1, 0x1300) 1.661060004s ago: executing program 5 (id=1925): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002080)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffd98, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000340)='mmap_lock_acquire_returned\x00', r1}, 0x18) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) bpf$MAP_CREATE(0x0, 0x0, 0x50) sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0) syz_open_procfs$namespace(0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_CREATE(0x2000000000000000, 0x0, 0x48) mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0) socket$inet_sctp(0x2, 0x1, 0x84) r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70200001400ffd9b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10) socket$key(0xf, 0x3, 0x2) get_mempolicy(0x0, 0x0, 0x203, &(0x7f0000394000/0x3000)=nil, 0x3) 1.621542995s ago: executing program 1 (id=1926): fsconfig$FSCONFIG_CMD_RECONFIGURE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) sendmsg$TCPDIAG_GETSOCK(0xffffffffffffffff, 0x0, 0x20004010) bpf$MAP_CREATE(0x0, 0x0, 0xa7) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) unshare(0x2040400) r0 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) unshare(0x2000400) fsmount(r0, 0x0, 0x0) 1.519978936s ago: executing program 4 (id=1927): r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) syz_emit_ethernet(0x66, &(0x7f0000000440)=ANY=[@ANYBLOB="ffffffffffff6487a2bed3d608004500005800000000006c907800000000000000000420880b0000000000000800000086dd080088beb6000000000000000100000000000000080022eb00000000200000000200000000000000000000000800655800000000"], 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r2 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000280)={'syzkaller1\x00', @link_local}) write$tun(r1, &(0x7f00000004c0)=ANY=[@ANYBLOB], 0x72) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000340), r3) r5 = bpf$MAP_CREATE(0x0, 0x0, 0x50) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, r6, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYRES64=r5, @ANYRES32=r5], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmsg$NLBL_CIPSOV4_C_ADD(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYRES16=r4], 0x108}}, 0x0) r7 = socket$igmp6(0xa, 0x3, 0x2) setsockopt$sock_int(r7, 0x1, 0x23, &(0x7f0000000200)=0x9, 0x4) sendmmsg$inet6(r7, &(0x7f00000000c0)=[{{&(0x7f00000001c0)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0) recvmmsg(r7, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}, 0x7fffffff}], 0x1, 0x10000, 0x0) r8 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$inet6_mreq(r8, 0x29, 0x1b, 0x0, 0x0) ioctl$FS_IOC_SETFSLABEL(r8, 0x41009432, 0x0) mq_timedsend(0xffffffffffffffff, &(0x7f0000000080)="811716f6bacdacaa23cc46f6ad79a437d774a17bf5a08c2e48f427d8e2493605e3cdaba6c66fde22e589d20ce971f8a9bd6a81b5bd605c9c9e816d1bd25292ed10d1ddc48c2d51c60300d33af3052eeff91b438b17f0080bdae71f5aef28185f00a27adeec651f5c5099b2", 0x6b, 0x7, &(0x7f0000000140)={0x0, 0x989680}) setsockopt$inet6_mreq(r8, 0x29, 0x14, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000040)={'syz_tun\x00'}) r9 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r9, 0x29, 0x43, &(0x7f0000000000)=0x8, 0x4) close_range(r0, 0xffffffffffffffff, 0x0) 1.519797866s ago: executing program 0 (id=1928): socket$netlink(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = socket$kcm(0x10, 0x2, 0x0) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000380)="2e00000010008188e6b62aa73772cc9f1ba1f848110000005e140602000000000e000a001000000002900000121f", 0x2e}], 0x1}, 0x0) sendmsg$kcm(r0, 0x0, 0x0) 1.495058657s ago: executing program 1 (id=1929): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008f00850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x24}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newtfilter={0x88, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0xfffa}, {}, {0x1c, 0xfff9}}, [@filter_kind_options=@f_flower={{0xb}, {0x58, 0x2, [@TCA_FLOWER_ACT={0x54, 0x3, [@m_connmark={0x50, 0x1, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xfffffff8, 0xfff, 0x0, 0x5, 0xb}, 0x3}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}]}}]}, 0x88}}, 0x24000000) r2 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0) 1.410990198s ago: executing program 2 (id=1930): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r0}, &(0x7f00000002c0), &(0x7f0000000300)=r1}, 0x20) epoll_pwait(0xffffffffffffffff, 0x0, 0x0, 0x3, 0x0, 0x0) 1.387514118s ago: executing program 1 (id=1931): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x1b, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1, 0x0, 0x5}, 0x18) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r3 = socket(0x400000000010, 0x3, 0x0) r4 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x8, 0xf}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_RSC={0x10, 0x1, {0x7, 0xa, 0xfffffff3}}}}]}, 0x44}}, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=@newtfilter={0x44, 0x2c, 0xd2b, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, r5, {0x9}, {}, {0x8, 0xf}}, [@filter_kind_options=@f_bpf={{0x8}, {0x18, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x5, 0x8, 0x7, 0xe7}]}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x2404c044}, 0x24044094) 1.358525109s ago: executing program 5 (id=1932): bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800"], 0x48) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) fcntl$notify(r0, 0x402, 0x4) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) fcntl$notify(r1, 0x402, 0xd) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) fcntl$notify(r2, 0x402, 0x5) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x14) 1.29685823s ago: executing program 0 (id=1933): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18) memfd_create(0x0, 0x4) 1.183748741s ago: executing program 5 (id=1934): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000003c0)='mm_page_free\x00', r4}, 0x18) r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0) sendfile(r5, r5, 0x0, 0x3fffff) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x2d) ioctl$AUTOFS_IOC_FAIL(r0, 0x4c80, 0xffffffffffffffb6) 1.182840021s ago: executing program 2 (id=1935): setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x8001}, 0x8) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) getsockopt$bt_hci(r0, 0x84, 0x7f, &(0x7f0000000080)=""/4057, &(0x7f0000000000)=0xfd9) 1.072803073s ago: executing program 0 (id=1936): openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000003c0)='mm_page_free\x00', r3}, 0x18) r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0) sendfile(r4, r4, 0x0, 0x3fffff) 974.525535ms ago: executing program 1 (id=1937): bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0e000000040000"], 0x50) ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, &(0x7f0000000100)={'syzkaller0\x00', 0x800}) bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x48) bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x50) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x40000100, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10) ioctl$F2FS_IOC_SEC_TRIM_FILE(0xffffffffffffffff, 0x4018f514, &(0x7f0000000080)={0xe, 0xa8a, 0x3}) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000140), &(0x7f0000000040)='%pB \x00'}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0) setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @multicast2, 0x0, 0x0, 'sed\x00', 0x2d, 0x40085, 0x13}, 0x2c) syz_open_dev$tty1(0xc, 0x4, 0x1) 974.275405ms ago: executing program 2 (id=1938): mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) 100.057418ms ago: executing program 5 (id=1939): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50) r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18) mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff) r3 = socket$inet6(0xa, 0x800000000000002, 0x0) sendto$inet6(r3, 0x0, 0x0, 0x2404c044, &(0x7f0000000340)={0x2, 0x4e24, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x4000000}, 0x1c) sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7) r4 = socket$packet(0x11, 0x3, 0x300) connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100)) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x25, &(0x7f00000008c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000018280000", @ANYRES32=r1, @ANYBLOB="00000000800000009500000000000000186500000e00000000000000000900001800000004000000000000000300000095000000000000001844000002000000000000000000000018150000372ae084c2d047c1dc7aaeb0ea351381a2ec2783531648820cdc5389f5cbf1eedde2cb6cd4b4578af9b2836f6b498a12e1eb6053f970131c9a35adfd6d8dd055e4289e99d4c51eac1c4fb1f1050ced40a2c8cb03cb7c3bc2c96891f1d31d5ddae05cdd43c5cfaaa83bf74f29c6dd9b0275355952f67fa7b885ca2f6082e0fbce6d9c30586711eb9749c61abe976821dae42d314e68", @ANYRES32=r1, @ANYBLOB="00000000000000009500000000000000b7080000000000007b8af8ff00000000b7080000c20000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000a50000009500000000000000"], &(0x7f0000000700)='GPL\x00', 0x0, 0xfffffffffffffef4, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r5}, 0x10) timer_create(0x1, 0x0, &(0x7f0000bbdffc)=0x0) timer_getoverrun(r6) r7 = socket(0x10, 0x3, 0x0) write(r7, &(0x7f0000000300)="1400000052004f030e78937ee2ce2fa4ff612d27", 0x14) recvmmsg(r7, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0}}], 0x344, 0x10122, 0x0) r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x62181) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000180)='vnet_tx_trigger\x00', r5, 0x0, 0x1}, 0x18) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r8, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'}) write$sndseq(r8, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick=0x1f4, {}, {}, @raw32={[0x2600]}}], 0xffc8) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r9 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r9}, 0x4) r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f00000003c0)=ANY=[@ANYRESHEX=r6, @ANYRES32=r9, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r10}, 0x10) close(r4) 0s ago: executing program 4 (id=1940): r0 = socket(0xa, 0x5, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10) socket$inet6_sctp(0xa, 0x1, 0x84) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e27, 0xffffffff, @mcast2, 0x5}, 0x18) setsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x83, &(0x7f0000000140), 0x8) kernel console output (not intermixed with test programs): 00:0000:0000.0001: unknown main item tag 0x0 [ 45.300021][ T4342] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz1] on syz0 [ 45.612912][ T4297] Bluetooth: hci4: command 0x0419 tx timeout [ 45.614750][ T4297] Bluetooth: hci2: command 0x0419 tx timeout [ 45.616478][ T4297] Bluetooth: hci0: command 0x0419 tx timeout [ 45.618157][ T4297] Bluetooth: hci3: command 0x0419 tx timeout [ 45.693171][ T4306] Bluetooth: hci1: command 0x0419 tx timeout [ 45.991409][ T4470] netlink: 12 bytes leftover after parsing attributes in process `syz.2.37'. [ 46.045695][ T4476] futex_wake_op: syz.2.37 tries to shift op by 32; fix this program [ 46.063561][ T4475] netlink: 'syz.3.36': attribute type 10 has an invalid length. [ 46.065835][ T4475] netlink: 40 bytes leftover after parsing attributes in process `syz.3.36'. [ 46.187319][ T4475] team0: Device geneve0 failed to register rx_handler [ 46.246862][ T4475] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check. [ 46.249727][ T4342] usb 1-1: USB disconnect, device number 2 [ 46.427399][ T4492] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 46.429915][ T4492] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 46.788825][ T4509] syz.1.53 uses obsolete (PF_INET,SOCK_PACKET) [ 46.892103][ T4510] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 46.903132][ T4510] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 46.921619][ T4510] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 46.931811][ T4510] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 47.095161][ T4523] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 47.114297][ T4523] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 50.360236][ T4569] kAFS: unable to lookup cell '/,' [ 51.225957][ T27] audit: type=1326 audit(51.200:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4592 comm="syz.1.79" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffff83a8a81c code=0x7ffc0000 [ 51.245458][ T27] audit: type=1326 audit(51.220:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4592 comm="syz.1.79" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffff83a8a81c code=0x7ffc0000 [ 51.263851][ T27] audit: type=1326 audit(51.220:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4592 comm="syz.1.79" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffff83a8a81c code=0x7ffc0000 [ 51.292282][ T27] audit: type=1326 audit(51.220:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4592 comm="syz.1.79" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 51.307162][ T27] audit: type=1326 audit(51.220:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4592 comm="syz.1.79" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffff83a8a81c code=0x7ffc0000 [ 51.333646][ T27] audit: type=1326 audit(51.220:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4592 comm="syz.1.79" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffff83a8a81c code=0x7ffc0000 [ 51.339438][ T27] audit: type=1326 audit(51.230:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4592 comm="syz.1.79" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffff83a8a81c code=0x7ffc0000 [ 51.365725][ T27] audit: type=1326 audit(51.230:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4592 comm="syz.1.79" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffff83a8a81c code=0x7ffc0000 [ 51.371709][ T27] audit: type=1326 audit(51.230:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4592 comm="syz.1.79" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffff83a8a81c code=0x7ffc0000 [ 51.388173][ T27] audit: type=1326 audit(51.230:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4592 comm="syz.1.79" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffff83a8a81c code=0x7ffc0000 [ 54.160368][ T4618] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 54.187105][ T4618] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 54.416161][ T4627] netlink: 'syz.0.92': attribute type 32 has an invalid length. [ 54.423008][ T4627] netlink: 12 bytes leftover after parsing attributes in process `syz.0.92'. [ 55.479499][ T4666] Zero length message leads to an empty skb [ 55.727216][ T4675] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 55.765684][ T4675] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 56.384062][ T4684] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 56.399903][ T4684] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 56.663523][ T4684] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 56.666122][ T4684] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 57.372548][ T4297] Bluetooth: hci4: command 0x0405 tx timeout [ 58.063169][ T4733] netlink: 8 bytes leftover after parsing attributes in process `syz.1.136'. [ 59.474983][ T4760] mmap: syz.4.145 (4760) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 59.809067][ T27] kauditd_printk_skb: 3140 callbacks suppressed [ 59.809079][ T27] audit: type=1326 audit(59.780:3152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4768 comm="syz.4.148" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa395a8a8 code=0x7ffc0000 [ 59.822996][ T27] audit: type=1326 audit(59.790:3153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4768 comm="syz.4.148" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=97 compat=0 ip=0xffffa395a8a8 code=0x7ffc0000 [ 59.847255][ T27] audit: type=1326 audit(59.790:3154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4768 comm="syz.4.148" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa395a8a8 code=0x7ffc0000 [ 59.866296][ T27] audit: type=1326 audit(59.810:3155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4768 comm="syz.4.148" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=293 compat=0 ip=0xffffa395a8a8 code=0x7ffc0000 [ 59.884317][ T27] audit: type=1326 audit(59.810:3156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4768 comm="syz.4.148" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa395a8a8 code=0x7ffc0000 [ 59.904544][ T27] audit: type=1326 audit(59.810:3157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4768 comm="syz.4.148" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa395a8a8 code=0x7ffc0000 [ 59.924180][ T27] audit: type=1326 audit(59.810:3158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4768 comm="syz.4.148" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffa395a8a8 code=0x7ffc0000 [ 59.946153][ T27] audit: type=1326 audit(59.810:3159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4768 comm="syz.4.148" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa395a8a8 code=0x7ffc0000 [ 59.962339][ T27] audit: type=1326 audit(59.810:3160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4768 comm="syz.4.148" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=269 compat=0 ip=0xffffa395a8a8 code=0x7ffc0000 [ 59.986651][ T27] audit: type=1326 audit(59.810:3161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4768 comm="syz.4.148" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa395a8a8 code=0x7ffc0000 [ 60.423202][ T4784] netlink: 12 bytes leftover after parsing attributes in process `syz.3.152'. [ 60.568366][ T4789] loop6: detected capacity change from 0 to 7 [ 60.586808][ T4789] Dev loop6: unable to read RDB block 7 [ 60.598517][ T4789] loop6: unable to read partition table [ 60.604869][ T4789] loop6: partition table beyond EOD, truncated [ 60.623769][ T4789] loop_reread_partitions: partition scan of loop6 (þ被xü—ŸÑà– ) failed (rc=-5) [ 60.972664][ T4808] netlink: 60 bytes leftover after parsing attributes in process `syz.2.158'. [ 60.975424][ T4808] netlink: 60 bytes leftover after parsing attributes in process `syz.2.158'. [ 60.993826][ T4806] netlink: 60 bytes leftover after parsing attributes in process `syz.2.158'. [ 61.000618][ T4807] netlink: 'syz.4.156': attribute type 1 has an invalid length. [ 61.307953][ T4807] 8021q: adding VLAN 0 to HW filter on device bond1 [ 61.431338][ T4823] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic [ 61.779816][ T4816] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.782600][ T4816] bridge0: port 1(bridge_slave_0) entered disabled state [ 62.601540][ T4816] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 62.670810][ T4816] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 63.213211][ T4816] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 63.215923][ T4816] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 63.218580][ T4816] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 63.224614][ T4816] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 63.548122][ T4857] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 63.556887][ T4857] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 63.629380][ T4858] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 63.631963][ T4858] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 63.993249][ T4870] mmap: syz.0.184 (4870): VmData 37408768 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data. [ 64.465885][ T4887] loop6: detected capacity change from 0 to 7 [ 64.489993][ T4287] Dev loop6: unable to read RDB block 7 [ 64.491609][ T4287] loop6: unable to read partition table [ 64.495172][ T2059] ieee802154 phy0 wpan0: encryption failed: -22 [ 64.496287][ T4287] loop6: partition table beyond EOD, truncated [ 64.497352][ T2059] ieee802154 phy1 wpan1: encryption failed: -22 [ 64.503575][ T4887] Dev loop6: unable to read RDB block 7 [ 64.505268][ T4887] loop6: unable to read partition table [ 64.512932][ T4887] loop6: partition table beyond EOD, truncated [ 64.514657][ T4887] loop_reread_partitions: partition scan of loop6 (þ被xü—ŸÑà– ) failed (rc=-5) [ 64.798036][ T4898] TCP: request_sock_TCP: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 65.821104][ T4930] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 65.874167][ T4930] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 65.910827][ T4935] netlink: 8 bytes leftover after parsing attributes in process `syz.4.210'. [ 67.870309][ T4998] bridge0: port 2(bridge_slave_1) entered disabled state [ 67.872809][ T4998] bridge0: port 1(bridge_slave_0) entered disabled state [ 68.542287][ T4998] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 68.589290][ T4998] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 68.662796][ T5014] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 68.665350][ T5014] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 69.129880][ T4998] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 69.132353][ T4998] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 69.135116][ T4998] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 69.137461][ T4998] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 69.360137][ T5036] netlink: 56 bytes leftover after parsing attributes in process `syz.4.249'. [ 69.479328][ T5019] netlink: 20 bytes leftover after parsing attributes in process `syz.2.245'. [ 69.614146][ T14] cfg80211: failed to load regulatory.db [ 69.639481][ T1515] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 69.642741][ T1515] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on syz0 [ 69.883539][ T5053] fido_id[5053]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 71.153014][ T5079] bridge0: port 2(bridge_slave_1) entered disabled state [ 71.155300][ T5079] bridge0: port 1(bridge_slave_0) entered disabled state [ 71.808193][ T5100] netlink: 24 bytes leftover after parsing attributes in process `syz.3.273'. [ 72.069360][ T5079] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 72.103305][ T5079] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 72.606711][ T5079] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 72.609370][ T5079] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 72.611916][ T5079] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 72.614817][ T5079] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 72.923253][ T5099] netlink: 14 bytes leftover after parsing attributes in process `syz.2.272'. [ 73.605968][ T5099] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 73.649775][ T5099] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 73.688151][ T5099] bond0 (unregistering): Released all slaves [ 73.809385][ T5121] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 73.900360][ T27] kauditd_printk_skb: 3 callbacks suppressed [ 73.900371][ T27] audit: type=1326 audit(73.870:3165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5129 comm="syz.1.286" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 73.921967][ T27] audit: type=1326 audit(73.890:3166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5129 comm="syz.1.286" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=217 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 73.950042][ T27] audit: type=1326 audit(73.920:3167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5129 comm="syz.1.286" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 74.147379][ T27] audit: type=1326 audit(74.120:3168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5144 comm="syz.1.291" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 74.161557][ T27] audit: type=1326 audit(74.130:3169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5144 comm="syz.1.291" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=60 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 74.188047][ T27] audit: type=1326 audit(74.150:3170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5144 comm="syz.1.291" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 74.203189][ T27] audit: type=1326 audit(74.150:3171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5144 comm="syz.1.291" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 74.554481][ T5169] netlink: 548 bytes leftover after parsing attributes in process `syz.3.293'. [ 75.009088][ T5190] netlink: 8 bytes leftover after parsing attributes in process `syz.2.310'. [ 75.030702][ T5190] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready [ 75.129026][ T5194] netlink: 44 bytes leftover after parsing attributes in process `syz.1.311'. [ 75.620833][ T5202] TCP: request_sock_subflow_v4: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 75.996983][ T5212] netlink: 8 bytes leftover after parsing attributes in process `syz.2.318'. [ 76.361020][ T5221] netlink: 16 bytes leftover after parsing attributes in process `syz.1.319'. [ 76.707770][ T5225] netlink: 8 bytes leftover after parsing attributes in process `syz.0.322'. [ 76.736661][ T5225] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready [ 76.791513][ T5185] Set syz1 is full, maxelem 65536 reached [ 78.125049][ T5266] netlink: 8 bytes leftover after parsing attributes in process `syz.3.338'. [ 78.130672][ T5266] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready [ 78.980528][ T5285] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 78.994588][ T5285] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 79.502831][ T5297] netlink: 8 bytes leftover after parsing attributes in process `syz.1.351'. [ 79.514529][ T5297] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready [ 79.663607][ T5306] capability: warning: `syz.0.355' uses deprecated v2 capabilities in a way that may be insecure [ 80.072434][ T24] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 80.282452][ T24] usb 1-1: Using ep0 maxpacket: 8 [ 80.285423][ T24] usb 1-1: config index 0 descriptor too short (expected 301, got 45) [ 80.287627][ T24] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 80.290587][ T24] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 80.293704][ T24] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 80.296429][ T24] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 80.300208][ T24] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 80.303215][ T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 80.515392][ T24] usb 1-1: usb_control_msg returned -32 [ 80.517023][ T24] usbtmc 1-1:16.0: can't read capabilities [ 80.874240][ T5338] usbtmc 1-1:16.0: usb_control_msg returned -32 [ 80.877936][ T4286] usb 1-1: USB disconnect, device number 3 [ 80.888108][ T5340] netlink: 8 bytes leftover after parsing attributes in process `syz.2.366'. [ 80.901223][ T5340] IPv6: ADDRCONF(NETDEV_CHANGE): gre2: link becomes ready [ 81.041983][ T5345] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 81.046365][ T5345] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 82.189800][ T5363] netdevsim netdevsim4: Direct firmware load for ./file0 failed with error -2 [ 82.192668][ T5363] netdevsim netdevsim4: Falling back to sysfs fallback for: ./file0 [ 82.200587][ T5370] netlink: 'syz.2.376': attribute type 5 has an invalid length. [ 82.374452][ T5375] netlink: 8 bytes leftover after parsing attributes in process `syz.2.378'. [ 82.379396][ T5375] IPv6: ADDRCONF(NETDEV_CHANGE): gre3: link becomes ready [ 83.092331][ T5408] netlink: 8 bytes leftover after parsing attributes in process `syz.4.393'. [ 83.119892][ T5408] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready [ 83.230058][ T5414] netlink: 32 bytes leftover after parsing attributes in process `syz.4.396'. [ 83.661165][ T5433] can-isotp: isotp_sendmsg: can_send_ret -ENETDOWN [ 83.666272][ T5433] netlink: 4 bytes leftover after parsing attributes in process `syz.0.405'. [ 83.749929][ T5438] netlink: 8 bytes leftover after parsing attributes in process `syz.2.406'. [ 83.755122][ T5438] IPv6: ADDRCONF(NETDEV_CHANGE): gre4: link becomes ready [ 83.982490][ T4345] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 84.142652][ T5467] netlink: 8 bytes leftover after parsing attributes in process `syz.2.419'. [ 84.153479][ T5467] IPv6: ADDRCONF(NETDEV_CHANGE): gre5: link becomes ready [ 84.162677][ T4345] usb 1-1: Using ep0 maxpacket: 16 [ 84.165710][ T4345] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 84.169392][ T4345] usb 1-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00 [ 84.171910][ T4345] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 84.190848][ T4345] usb 1-1: config 0 descriptor?? [ 84.201974][ T4345] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input4 [ 84.431002][ T4345] bcm5974 1-1:0.0: could not read from device [ 84.526256][ T4345] input: failed to attach handler mousedev to device input4, error: -5 [ 84.537492][ T4345] usb 1-1: USB disconnect, device number 4 [ 84.544999][ T5491] autofs4:pid:5491:validate_dev_ioctl: invalid path supplied for cmd(0xc018937e) [ 84.781512][ T5501] netlink: 8 bytes leftover after parsing attributes in process `syz.1.432'. [ 84.794477][ T5501] IPv6: ADDRCONF(NETDEV_CHANGE): gre2: link becomes ready [ 85.047594][ T5506] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 85.061112][ T5506] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 85.079303][ T5506] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 85.089208][ T5506] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 85.671040][ T5529] netlink: 8 bytes leftover after parsing attributes in process `syz.0.443'. [ 85.676362][ T5529] IPv6: ADDRCONF(NETDEV_CHANGE): gre2: link becomes ready [ 87.228423][ T5617] tipc: Started in network mode [ 87.232290][ T5617] tipc: Node identity 0500000000000000faffffffffffffff, cluster identity 4711 [ 87.269790][ T5620] netlink: 'syz.0.480': attribute type 13 has an invalid length. [ 87.480031][ T5634] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 87.491554][ T5634] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 89.091685][ T5677] tipc: Started in network mode [ 89.097327][ T5677] tipc: Node identity 0500000000000000faffffffffffffff, cluster identity 4711 [ 89.342533][ T24] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 89.344793][ C1] raw-gadget.0 gadget.0: ignoring, device is not running [ 89.457483][ T5685] raw_sendmsg: syz.4.504 forgot to set AF_INET. Fix it! [ 89.492500][ T24] usb 1-1: device descriptor read/64, error -32 [ 89.752058][ T5699] netlink: 4 bytes leftover after parsing attributes in process `syz.4.509'. [ 89.763487][ T24] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 89.809558][ T5700] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 89.818108][ T5700] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 90.340901][ T24] usb 1-1: config 0 has no interfaces? [ 90.376727][ T24] usb 1-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b [ 90.379272][ T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 90.381362][ T24] usb 1-1: Product: syz [ 90.383026][ T24] usb 1-1: Manufacturer: syz [ 90.384264][ T24] usb 1-1: SerialNumber: syz [ 90.387712][ T24] usb 1-1: config 0 descriptor?? [ 90.842575][ T5668] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 90.872630][ T5668] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 91.352539][ T5716] tipc: Started in network mode [ 91.354255][ T5716] tipc: Node identity 0500000000000000faffffffffffffff, cluster identity 4711 [ 91.735123][ T5735] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 91.747831][ T5735] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 92.917710][ T5764] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 92.920550][ T5764] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 92.964596][ T24] usb 1-1: USB disconnect, device number 6 [ 93.154547][ T5772] netlink: 4 bytes leftover after parsing attributes in process `syz.3.539'. [ 93.208422][ T5770] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 93.220557][ T5770] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 93.371127][ T5774] @: renamed from vlan0 [ 93.770072][ T5794] netlink: 8 bytes leftover after parsing attributes in process `syz.4.547'. [ 94.177920][ T5803] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 94.222696][ T5803] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 94.355826][ T5810] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 94.364785][ T5810] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 94.673102][ T5812] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 94.675606][ T5812] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 95.169517][ T5827] netlink: 8 bytes leftover after parsing attributes in process `syz.1.558'. [ 96.320002][ T5861] netlink: 8 bytes leftover after parsing attributes in process `syz.0.570'. [ 96.518852][ T5865] netlink: 8 bytes leftover after parsing attributes in process `syz.3.572'. [ 96.521542][ T5865] bridge: RTM_NEWNEIGH with invalid ether address [ 96.702603][ T4341] usb 1-1: new full-speed USB device number 7 using dummy_hcd [ 96.895845][ T4341] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 96.899079][ T4341] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 96.903480][ T4341] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00 [ 96.907740][ T4341] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 96.913527][ T4341] usb 1-1: config 0 descriptor?? [ 97.338909][ T4341] savu 0003:1E7D:2D5A.0003: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.0-1/input0 [ 97.738975][ T5895] xt_hashlimit: max too large, truncated to 1048576 [ 98.134331][ T5913] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 98.136869][ T5913] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 98.199395][ T4341] usb 1-1: USB disconnect, device number 7 [ 98.446502][ T5913] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 98.453748][ T5913] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 98.649042][ T5932] netlink: 36 bytes leftover after parsing attributes in process `syz.4.598'. [ 98.916858][ T5944] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 98.922285][ T5944] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 99.613070][ T24] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 99.815427][ T24] usb 1-1: config 0 has an invalid interface number: 104 but max is 0 [ 99.817707][ T24] usb 1-1: config 0 has no interface number 0 [ 99.819374][ T24] usb 1-1: config 0 interface 104 has no altsetting 0 [ 99.838918][ T24] usb 1-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=a1.c9 [ 99.841508][ T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 99.854110][ T24] usb 1-1: Product: syz [ 99.855330][ T24] usb 1-1: Manufacturer: syz [ 99.864201][ T24] usb 1-1: SerialNumber: syz [ 99.869983][ T24] usb 1-1: config 0 descriptor?? [ 99.883410][ T24] gspca_main: vc032x-2.14.0 probing 0ac8:0321 [ 100.075766][ T24] gspca_vc032x: reg_r err -71 [ 100.077075][ T24] gspca_vc032x: I2c Bus Busy Wait 00 [ 100.078579][ T24] gspca_vc032x: I2c Bus Busy Wait 00 [ 100.079959][ T24] gspca_vc032x: I2c Bus Busy Wait 00 [ 100.081427][ T24] gspca_vc032x: I2c Bus Busy Wait 00 [ 100.093765][ T24] gspca_vc032x: I2c Bus Busy Wait 00 [ 100.095300][ T24] gspca_vc032x: I2c Bus Busy Wait 00 [ 100.102994][ T24] gspca_vc032x: I2c Bus Busy Wait 00 [ 100.104677][ T24] gspca_vc032x: I2c Bus Busy Wait 00 [ 100.106105][ T24] gspca_vc032x: I2c Bus Busy Wait 00 [ 100.108460][ T24] gspca_vc032x: I2c Bus Busy Wait 00 [ 100.110037][ T24] gspca_vc032x: I2c Bus Busy Wait 00 [ 100.111495][ T24] gspca_vc032x: I2c Bus Busy Wait 00 [ 100.131380][ T24] gspca_vc032x: I2c Bus Busy Wait 00 [ 100.138952][ T24] gspca_vc032x: I2c Bus Busy Wait 00 [ 100.140409][ T24] gspca_vc032x: I2c Bus Busy Wait 00 [ 100.148333][ T24] gspca_vc032x: I2c Bus Busy Wait 00 [ 100.149766][ T24] gspca_vc032x: I2c Bus Busy Wait 00 [ 100.151121][ T24] gspca_vc032x: I2c Bus Busy Wait 00 [ 100.162737][ T24] gspca_vc032x: Unknown sensor... [ 100.164280][ T24] vc032x: probe of 1-1:0.104 failed with error -22 [ 100.175222][ T24] usb 1-1: USB disconnect, device number 8 [ 100.255169][ T5982] netlink: 8 bytes leftover after parsing attributes in process `syz.1.618'. [ 101.050318][ T6010] random: crng reseeded on system resumption [ 101.177108][ T6015] netlink: 8 bytes leftover after parsing attributes in process `syz.3.631'. [ 101.760310][ T6043] netlink: 8 bytes leftover after parsing attributes in process `syz.2.645'. [ 101.870134][ T27] audit: type=1326 audit(101.840:3172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.2.646" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88f5a8a8 code=0x7ffc0000 [ 101.877961][ T27] audit: type=1326 audit(101.850:3173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.2.646" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff88f5a8a8 code=0x7ffc0000 [ 101.925812][ T27] audit: type=1326 audit(101.870:3174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.2.646" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88f5a8a8 code=0x7ffc0000 [ 101.946923][ T27] audit: type=1326 audit(101.870:3175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.2.646" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff88f5a8a8 code=0x7ffc0000 [ 101.977540][ T27] audit: type=1326 audit(101.870:3176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.2.646" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88f5a8a8 code=0x7ffc0000 [ 102.018559][ T27] audit: type=1326 audit(101.870:3177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.2.646" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff88f5a8a8 code=0x7ffc0000 [ 102.042581][ T27] audit: type=1326 audit(101.870:3178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.2.646" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88f5a8a8 code=0x7ffc0000 [ 102.058990][ T27] audit: type=1326 audit(101.870:3179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.2.646" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff88f5a8a8 code=0x7ffc0000 [ 102.082629][ T6032] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5) [ 102.084724][ T6032] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 102.094022][ T6032] vhci_hcd vhci_hcd.0: Device attached [ 102.118350][ T27] audit: type=1326 audit(101.870:3180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.2.646" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88f5a8a8 code=0x7ffc0000 [ 102.149138][ T27] audit: type=1326 audit(101.870:3181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.2.646" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=135 compat=0 ip=0xffff88f5a8a8 code=0x7ffc0000 [ 102.307638][ T6052] vhci_hcd: connection closed [ 102.309636][ T9] vhci_hcd: stop threads [ 102.326433][ T9] vhci_hcd: release socket [ 102.328506][ T9] vhci_hcd: disconnect device [ 102.532283][ T6069] netlink: 8 bytes leftover after parsing attributes in process `syz.3.656'. [ 102.651137][ T6072] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 102.656649][ T6076] netlink: 'syz.3.658': attribute type 10 has an invalid length. [ 102.658869][ T6076] netlink: 'syz.3.658': attribute type 19 has an invalid length. [ 102.661162][ T6076] netlink: 156 bytes leftover after parsing attributes in process `syz.3.658'. [ 102.737414][ T6072] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 102.836144][ T6082] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 102.838834][ T6082] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 103.369758][ T6105] netlink: 8 bytes leftover after parsing attributes in process `syz.0.670'. [ 103.782182][ T6127] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22 [ 103.791747][ T6127] netdevsim netdevsim0: Direct firmware load for . failed with error -22 [ 103.823570][ T6127] netdevsim netdevsim0: Falling back to sysfs fallback for: . [ 103.891315][ T6134] netlink: 8 bytes leftover after parsing attributes in process `syz.4.682'. [ 104.195506][ T6146] loop3: detected capacity change from 0 to 512 [ 104.226800][ T6146] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 104.236114][ T6146] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 104.275134][ T6146] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2818: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 104.281000][ T6146] EXT4-fs (loop3): 1 truncate cleaned up [ 104.282978][ T6146] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 104.337484][ T6150] netlink: 4 bytes leftover after parsing attributes in process `syz.2.688'. [ 104.399304][ T4309] EXT4-fs (loop3): unmounting filesystem. [ 105.223672][ T6193] loop2: detected capacity change from 0 to 512 [ 105.282980][ T6193] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 105.382137][ T6204] device batadv_slave_0 entered promiscuous mode [ 105.429462][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 105.677545][ T6222] loop2: detected capacity change from 0 to 164 [ 105.718466][ T6222] Unable to read rock-ridge attributes [ 106.040890][ T6242] loop0: detected capacity change from 0 to 512 [ 106.055667][ T6240] loop2: detected capacity change from 0 to 2048 [ 106.078836][ T6242] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.717: inode #1: comm syz.0.717: iget: illegal inode # [ 106.101580][ T6242] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.717: error while reading EA inode 1 err=-117 [ 106.108682][ T6240] Alternate GPT is invalid, using primary GPT. [ 106.111391][ T6240] loop2: p1 p2 p3 [ 106.124809][ T6242] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.717: inode #1: comm syz.0.717: iget: illegal inode # [ 106.141709][ T6242] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.717: error while reading EA inode 1 err=-117 [ 106.155806][ T3911] Alternate GPT is invalid, using primary GPT. [ 106.157867][ T3911] loop2: p1 p2 p3 [ 106.198648][ T6242] EXT4-fs (loop0): 1 orphan inode deleted [ 106.201380][ T6242] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 106.325713][ T6256] loop3: detected capacity change from 0 to 1024 [ 106.328025][ T6256] ======================================================= [ 106.328025][ T6256] WARNING: The mand mount option has been deprecated and [ 106.328025][ T6256] and is ignored by this kernel. Remove the mand [ 106.328025][ T6256] option from the mount to silence this warning. [ 106.328025][ T6256] ======================================================= [ 106.386228][ T4302] EXT4-fs (loop0): unmounting filesystem. [ 106.441469][ T6256] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 106.572232][ T4289] udevd[4289]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 106.598494][ T5496] udevd[5496]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory [ 106.614732][ T4309] EXT4-fs (loop3): unmounting filesystem. [ 106.717512][ T6276] udevd[6276]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 106.970311][ T4287] udevd[4287]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 106.975565][ T6286] udevd[6286]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 107.008444][ T5496] udevd[5496]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory [ 107.097757][ T6306] ALSA: seq fatal error: cannot create timer (-22) [ 107.404738][ T6322] loop3: detected capacity change from 0 to 4096 [ 107.446806][ T6322] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 107.653669][ T4309] EXT4-fs (loop3): unmounting filesystem. [ 108.028892][ T6365] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0 [ 108.152164][ T6364] infiniband syz!: set down [ 108.163299][ T6364] infiniband syz!: added team_slave_0 [ 108.238257][ T6364] RDS/IB: syz!: added [ 108.241226][ T6364] smc: adding ib device syz! with port count 1 [ 108.260272][ T6364] smc: ib device syz! port 1 has pnetid [ 108.296719][ T6380] xt_recent: hitcount (692) is larger than allowed maximum (255) [ 108.540473][ T6389] netlink: 12 bytes leftover after parsing attributes in process `syz.4.784'. [ 109.030429][ T6422] netlink: 'syz.4.797': attribute type 21 has an invalid length. [ 109.037390][ T6422] netlink: 128 bytes leftover after parsing attributes in process `syz.4.797'. [ 109.039996][ T6422] netlink: 'syz.4.797': attribute type 4 has an invalid length. [ 109.042050][ T6422] netlink: 'syz.4.797': attribute type 3 has an invalid length. [ 109.056275][ T6422] netlink: 3 bytes leftover after parsing attributes in process `syz.4.797'. [ 109.152266][ T6428] 9pnet: Could not find request transport: f [ 109.219943][ T6435] netlink: 12 bytes leftover after parsing attributes in process `syz.1.801'. [ 109.307788][ T6420] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 109.310457][ T6420] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 109.493639][ T6448] netlink: 356 bytes leftover after parsing attributes in process `syz.1.807'. [ 109.814155][ T6464] netlink: 12 bytes leftover after parsing attributes in process `syz.4.814'. [ 110.376491][ T6498] netlink: 'syz.1.828': attribute type 21 has an invalid length. [ 110.378867][ T6498] netlink: 128 bytes leftover after parsing attributes in process `syz.1.828'. [ 110.381447][ T6498] netlink: 'syz.1.828': attribute type 4 has an invalid length. [ 110.384025][ T6498] netlink: 'syz.1.828': attribute type 3 has an invalid length. [ 110.386162][ T6498] netlink: 3 bytes leftover after parsing attributes in process `syz.1.828'. [ 110.622713][ T6516] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 110.625341][ T6516] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 110.674748][ T27] kauditd_printk_skb: 1322 callbacks suppressed [ 110.674760][ T27] audit: type=1326 audit(110.650:4504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6517 comm="syz.3.837" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa195a8a8 code=0x7ffc0000 [ 110.688283][ T27] audit: type=1326 audit(110.650:4505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6517 comm="syz.3.837" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa195a8a8 code=0x7ffc0000 [ 110.707794][ T27] audit: type=1326 audit(110.650:4506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6517 comm="syz.3.837" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa195a8a8 code=0x7ffc0000 [ 110.709064][ T6520] netlink: 'syz.0.838': attribute type 4 has an invalid length. [ 110.732575][ T27] audit: type=1326 audit(110.650:4507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6517 comm="syz.3.837" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa195a8a8 code=0x7ffc0000 [ 110.736713][ T6520] netlink: 'syz.0.838': attribute type 4 has an invalid length. [ 110.747404][ T27] audit: type=1326 audit(110.650:4508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6517 comm="syz.3.837" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa195a8a8 code=0x7ffc0000 [ 110.760328][ T27] audit: type=1326 audit(110.650:4509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6517 comm="syz.3.837" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa195a8a8 code=0x7ffc0000 [ 110.778977][ T27] audit: type=1326 audit(110.650:4510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6517 comm="syz.3.837" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa195a8a8 code=0x7ffc0000 [ 110.796463][ T27] audit: type=1326 audit(110.650:4511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6517 comm="syz.3.837" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=140 compat=0 ip=0xffffa195a8a8 code=0x7ffc0000 [ 110.814693][ T27] audit: type=1326 audit(110.660:4512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6517 comm="syz.3.837" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa195a8a8 code=0x7ffc0000 [ 110.829331][ T27] audit: type=1326 audit(110.660:4513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6517 comm="syz.3.837" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa195a8a8 code=0x7ffc0000 [ 110.854649][ T6526] loop2: detected capacity change from 0 to 1024 [ 110.919796][ T6526] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 111.703824][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 111.982272][ T6557] loop4: detected capacity change from 0 to 1024 [ 112.017789][ T6557] EXT4-fs: Ignoring removed orlov option [ 112.051228][ T6557] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 112.081347][ T6557] EXT4-fs (loop4): shut down requested (1) [ 112.113160][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 112.178588][ T6578] xt_TPROXY: Can be used only with -p tcp or -p udp [ 112.220541][ T6577] netlink: 'syz.3.856': attribute type 10 has an invalid length. [ 112.271499][ T6577] team0: Port device dummy0 added [ 112.290598][ T6577] netlink: 'syz.3.856': attribute type 10 has an invalid length. [ 112.348484][ T6577] team0: Port device dummy0 removed [ 112.352264][ T6577] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 112.354298][ T6589] netlink: 8 bytes leftover after parsing attributes in process `syz.4.865'. [ 112.409239][ T6574] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 112.411758][ T6574] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 112.645817][ T6601] loop0: detected capacity change from 0 to 512 [ 112.649941][ T6601] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 112.689111][ T6600] loop2: detected capacity change from 0 to 1024 [ 112.725174][ T6601] EXT4-fs (loop0): 1 truncate cleaned up [ 112.726861][ T6601] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 112.744514][ T6600] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 112.781261][ T6600] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3841: comm syz.2.869: Allocating blocks 385-513 which overlap fs metadata [ 112.905311][ T6599] EXT4-fs (loop2): pa 000000003761dc9b: logic 16, phys. 129, len 24 [ 112.907967][ T6599] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4881: group 0, free 0, pa_free 8 [ 113.188435][ T6612] loop1: detected capacity change from 0 to 1024 [ 113.190911][ T6612] EXT4-fs: Ignoring removed orlov option [ 113.252937][ T6612] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 113.311490][ T6612] EXT4-fs (loop1): shut down requested (1) [ 113.852381][ C1] sched: RT throttling activated [ 113.861230][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 113.862889][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 114.321262][ T6627] netlink: 44 bytes leftover after parsing attributes in process `syz.2.877'. [ 114.526189][ T4302] EXT4-fs (loop0): unmounting filesystem. [ 114.644635][ T6642] netlink: 'syz.0.881': attribute type 10 has an invalid length. [ 114.729668][ T6642] team0: Port device dummy0 added [ 114.744028][ T6646] netlink: 'syz.0.881': attribute type 10 has an invalid length. [ 114.787986][ T6646] team0: Port device dummy0 removed [ 114.829832][ T6646] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 115.324865][ T6690] netlink: 'syz.4.904': attribute type 10 has an invalid length. [ 115.340493][ T6686] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 115.351926][ T6690] team0: Port device dummy0 added [ 115.371012][ T6690] netlink: 'syz.4.904': attribute type 10 has an invalid length. [ 115.419463][ T6690] team0: Port device dummy0 removed [ 115.428731][ T6690] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 115.886977][ T27] kauditd_printk_skb: 26 callbacks suppressed [ 115.886990][ T27] audit: type=1326 audit(115.860:4540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6724 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa395a8a8 code=0x7ffc0000 [ 115.903898][ T27] audit: type=1326 audit(115.880:4541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6724 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa395a8a8 code=0x7ffc0000 [ 115.915050][ T27] audit: type=1326 audit(115.880:4542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6724 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=113 compat=0 ip=0xffffa395a8a8 code=0x7ffc0000 [ 115.929999][ T27] audit: type=1326 audit(115.880:4543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6724 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa395a8a8 code=0x7ffc0000 [ 115.959510][ T27] audit: type=1326 audit(115.880:4544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6724 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa395a8a8 code=0x7ffc0000 [ 116.362036][ T27] audit: type=1107 audit(116.330:4545): pid=6749 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 116.441712][ T6755] device syzkaller1 entered promiscuous mode [ 116.836766][ T6781] loop4: detected capacity change from 0 to 1024 [ 116.926830][ T6781] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 117.007881][ T6781] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3841: comm syz.4.943: Allocating blocks 385-513 which overlap fs metadata [ 117.070134][ T6795] loop1: detected capacity change from 0 to 256 [ 117.117982][ T6779] EXT4-fs (loop4): pa 00000000002837cc: logic 16, phys. 129, len 24 [ 117.120329][ T6779] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:4881: group 0, free 0, pa_free 8 [ 117.203750][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 117.371369][ T6807] netlink: 'syz.1.955': attribute type 10 has an invalid length. [ 117.388907][ T6807] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 117.398998][ T27] audit: type=1326 audit(117.370:4546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6809 comm="syz.4.956" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa395a8a8 code=0x7ffc0000 [ 117.420874][ T27] audit: type=1326 audit(117.390:4547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6809 comm="syz.4.956" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa395a8a8 code=0x7ffc0000 [ 117.432287][ T27] audit: type=1326 audit(117.400:4548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6809 comm="syz.4.956" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa395a8a8 code=0x7ffc0000 [ 117.462535][ T27] audit: type=1326 audit(117.400:4549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6809 comm="syz.4.956" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa395a8a8 code=0x7ffc0000 [ 117.514845][ T6816] tipc: Enabling of bearer rejected, failed to enable media [ 117.849067][ T6836] netlink: 'syz.2.968': attribute type 10 has an invalid length. [ 117.886523][ T6838] loop3: detected capacity change from 0 to 128 [ 118.028936][ T278] kworker/u4:4: attempt to access beyond end of device [ 118.028936][ T278] loop3: rw=1, sector=145, nr_sectors = 896 limit=128 [ 118.317903][ T6869] ALSA: seq fatal error: cannot create timer (-22) [ 118.346206][ T6869] loop3: detected capacity change from 0 to 512 [ 118.369357][ T6869] EXT4-fs: Ignoring removed mblk_io_submit option [ 118.391673][ T6869] ext4: Unknown parameter 'seclabel' [ 118.779997][ T6892] loop2: detected capacity change from 0 to 2048 [ 118.839386][ T6892] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 118.844992][ T6892] random: crng reseeded on system resumption [ 118.946867][ T6903] netlink: 8 bytes leftover after parsing attributes in process `syz.3.989'. [ 119.013464][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 119.107483][ T6910] netlink: 'syz.0.993': attribute type 10 has an invalid length. [ 119.758418][ T6947] netlink: 'syz.1.1007': attribute type 10 has an invalid length. [ 120.326743][ T6976] netlink: 'syz.0.1021': attribute type 10 has an invalid length. [ 121.559722][ T7031] netlink: 'syz.3.1042': attribute type 10 has an invalid length. [ 121.877732][ T7043] Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 121.887619][ T27] kauditd_printk_skb: 63 callbacks suppressed [ 121.887633][ T27] audit: type=1326 audit(121.850:4613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7042 comm="syz.0.1050" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9295a8a8 code=0x7ffc0000 [ 121.900225][ T27] audit: type=1326 audit(121.850:4614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7042 comm="syz.0.1050" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9295a8a8 code=0x7ffc0000 [ 121.920604][ T27] audit: type=1326 audit(121.850:4615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7042 comm="syz.0.1050" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9295a8a8 code=0x7ffc0000 [ 121.937564][ T27] audit: type=1326 audit(121.850:4616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7042 comm="syz.0.1050" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9295a8a8 code=0x7ffc0000 [ 121.944554][ T27] audit: type=1326 audit(121.850:4617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7042 comm="syz.0.1050" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9295a8a8 code=0x7ffc0000 [ 121.950666][ T27] audit: type=1326 audit(121.850:4618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7042 comm="syz.0.1050" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9295a8a8 code=0x7ffc0000 [ 121.957123][ T27] audit: type=1326 audit(121.850:4619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7042 comm="syz.0.1050" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9295a8a8 code=0x7ffc0000 [ 121.964860][ T7045] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1051'. [ 121.972847][ T27] audit: type=1326 audit(121.850:4620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7042 comm="syz.0.1050" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9295a8a8 code=0x7ffc0000 [ 121.979123][ T27] audit: type=1326 audit(121.850:4621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7042 comm="syz.0.1050" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9295a8a8 code=0x7ffc0000 [ 121.986409][ T27] audit: type=1326 audit(121.850:4622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7042 comm="syz.0.1050" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9295a8a8 code=0x7ffc0000 [ 122.491246][ T7068] loop4: detected capacity change from 0 to 512 [ 122.517077][ T7068] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 122.529466][ T7068] EXT4-fs (loop4): invalid journal inode [ 122.531269][ T7068] EXT4-fs (loop4): can't get journal size [ 122.568261][ T7068] EXT4-fs (loop4): 1 truncate cleaned up [ 122.569931][ T7068] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 122.636244][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 122.742192][ T7084] netlink: 'syz.0.1068': attribute type 10 has an invalid length. [ 122.776359][ T7084] bond0: (slave dummy0): Releasing backup interface [ 122.837994][ T7084] team0: Port device dummy0 added [ 122.876248][ T7100] loop4: detected capacity change from 0 to 1024 [ 122.946501][ T7100] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 122.974596][ T7100] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3841: comm syz.4.1072: Allocating blocks 385-513 which overlap fs metadata [ 123.015816][ T7110] fuse: Bad value for 'fd' [ 123.052127][ T7098] EXT4-fs (loop4): pa 0000000080d10505: logic 16, phys. 129, len 24 [ 123.054757][ T7098] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:4881: group 0, free 0, pa_free 8 [ 123.160839][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 123.238980][ T7123] netlink: 'syz.2.1080': attribute type 12 has an invalid length. [ 123.250524][ T7123] netlink: 'syz.2.1080': attribute type 29 has an invalid length. [ 123.260107][ T7123] netlink: 468 bytes leftover after parsing attributes in process `syz.2.1080'. [ 123.301762][ T7128] netlink: 'syz.4.1083': attribute type 10 has an invalid length. [ 123.311820][ T7128] bond0: (slave dummy0): Releasing backup interface [ 123.376560][ T7128] team0: Port device dummy0 added [ 123.429554][ T7135] fuse: Bad value for 'fd' [ 123.830964][ T7165] fuse: Bad value for 'fd' [ 123.935900][ T7163] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 124.061861][ T7179] loop2: detected capacity change from 0 to 512 [ 124.207038][ T7179] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 124.269677][ T7179] EXT4-fs error (device loop2): ext4_do_update_inode:5253: inode #2: comm syz.2.1103: corrupted inode contents [ 124.332292][ T7198] fuse: Bad value for 'fd' [ 124.343576][ T7179] EXT4-fs error (device loop2): ext4_dirty_inode:6118: inode #2: comm syz.2.1103: mark_inode_dirty error [ 124.369727][ T7179] EXT4-fs error (device loop2): ext4_do_update_inode:5253: inode #2: comm syz.2.1103: corrupted inode contents [ 124.388193][ T7179] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #2: comm syz.2.1103: mark_inode_dirty error [ 124.496359][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 124.580507][ T7209] loop2: detected capacity change from 0 to 1764 [ 124.597580][ T7208] loop0: detected capacity change from 0 to 1024 [ 124.600860][ T7208] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 124.627787][ T7208] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 125.154949][ T7228] loop4: detected capacity change from 0 to 8192 [ 125.173209][ T7230] fuse: Bad value for 'fd' [ 125.209714][ T7228] loop4: p1 p2 p3 p4[EZD] [ 125.211107][ T7228] loop4: partition table partially beyond EOD, truncated [ 125.214638][ T7228] loop4: p1 size 16128 extends beyond EOD, truncated [ 125.220504][ T7228] loop4: p2 size 2130728454 extends beyond EOD, truncated [ 125.230225][ T7228] loop4: p3 start 459039 is beyond EOD, truncated [ 125.238207][ T7228] loop4: p4 start 268437891 is beyond EOD, truncated [ 125.403376][ T4302] EXT4-fs (loop0): unmounting filesystem. [ 125.709420][ T7254] netlink: 'syz.0.1131': attribute type 39 has an invalid length. [ 125.874370][ T4287] udevd[4287]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 125.895185][ T6276] udevd[6276]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory [ 125.945191][ T2059] ieee802154 phy0 wpan0: encryption failed: -22 [ 125.947181][ T2059] ieee802154 phy1 wpan1: encryption failed: -22 [ 126.919713][ T7279] loop4: detected capacity change from 0 to 1024 [ 126.931930][ T7281] netlink: 'syz.1.1142': attribute type 10 has an invalid length. [ 126.941257][ T7281] bond0: (slave dummy0): Releasing backup interface [ 126.975061][ T7279] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 127.001644][ T7281] team0: Port device dummy0 added [ 127.010736][ T7287] netlink: 'syz.1.1142': attribute type 10 has an invalid length. [ 127.036202][ T7287] team0: Port device dummy0 removed [ 127.056568][ T7287] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 127.121083][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 127.568097][ T7319] loop0: detected capacity change from 0 to 8192 [ 127.625409][ T7319] loop0: p1 p2 p3 p4[EZD] [ 127.626727][ T7319] loop0: partition table partially beyond EOD, truncated [ 127.639300][ T7319] loop0: p1 size 16128 extends beyond EOD, truncated [ 127.644101][ T7319] loop0: p2 size 2130728454 extends beyond EOD, truncated [ 127.653989][ T7319] loop0: p3 start 459039 is beyond EOD, truncated [ 127.655908][ T7319] loop0: p4 start 268437891 is beyond EOD, truncated [ 127.798282][ T7337] netlink: 'syz.3.1159': attribute type 10 has an invalid length. [ 127.801531][ T7337] bond0: (slave dummy0): Releasing backup interface [ 127.852860][ T7337] team0: Port device dummy0 added [ 127.854698][ T7338] netlink: 'syz.3.1159': attribute type 10 has an invalid length. [ 127.880760][ T7338] team0: Port device dummy0 removed [ 127.884544][ T7338] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 127.939079][ T6276] udevd[6276]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory [ 127.947818][ T4287] udevd[4287]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 129.119939][ T7371] loop0: detected capacity change from 0 to 1024 [ 129.135979][ T7371] EXT4-fs: Ignoring removed bh option [ 129.296298][ T7371] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 130.131756][ T7388] loop3: detected capacity change from 0 to 512 [ 130.134170][ T7388] EXT4-fs: Ignoring removed mblk_io_submit option [ 130.136083][ T7388] EXT4-fs: Ignoring removed bh option [ 130.138070][ T7388] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 130.141155][ T7388] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 130.149110][ T4302] EXT4-fs (loop0): unmounting filesystem. [ 130.162005][ T7388] EXT4-fs (loop3): 1 truncate cleaned up [ 130.163709][ T7388] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 130.501970][ T4309] EXT4-fs (loop3): unmounting filesystem. [ 130.737785][ T27] kauditd_printk_skb: 7 callbacks suppressed [ 130.737798][ T27] audit: type=1326 audit(130.710:4630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7423 comm="syz.1.1195" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 130.754429][ T27] audit: type=1326 audit(130.720:4631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7423 comm="syz.1.1195" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=272 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 130.761911][ T7425] netlink: 'syz.3.1197': attribute type 39 has an invalid length. [ 130.781268][ T27] audit: type=1326 audit(130.720:4632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7423 comm="syz.1.1195" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 130.807256][ T27] audit: type=1326 audit(130.750:4633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7421 comm="syz.0.1196" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9295a8a8 code=0x7ffc0000 [ 130.988185][ T27] audit: type=1326 audit(130.750:4634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7421 comm="syz.0.1196" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9295a8a8 code=0x7ffc0000 [ 132.827197][ T27] audit: type=1326 audit(130.750:4635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7421 comm="syz.0.1196" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9295a8a8 code=0x7ffc0000 [ 132.850534][ T27] audit: type=1326 audit(130.750:4636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7421 comm="syz.0.1196" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9295a8a8 code=0x7ffc0000 [ 132.871551][ T27] audit: type=1326 audit(130.750:4637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7421 comm="syz.0.1196" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9295a8a8 code=0x7ffc0000 [ 132.882731][ T7428] netlink: 'syz.2.1199': attribute type 10 has an invalid length. [ 132.887969][ T7428] team0: Port device dummy0 added [ 132.896780][ T7433] netlink: 'syz.2.1199': attribute type 10 has an invalid length. [ 132.931903][ T7433] team0: Port device dummy0 removed [ 132.938742][ T7437] device ipvlan4 entered promiscuous mode [ 132.941001][ T7437] bridge0: port 3(ipvlan4) entered blocking state [ 132.943161][ T7437] bridge0: port 3(ipvlan4) entered disabled state [ 133.543063][ T27] audit: type=1326 audit(133.520:4638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7472 comm="syz.4.1210" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa395a8a8 code=0x7ffc0000 [ 133.550552][ T27] audit: type=1326 audit(133.520:4639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7472 comm="syz.4.1210" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa395a8a8 code=0x7ffc0000 [ 133.587551][ T7476] netlink: 'syz.2.1211': attribute type 1 has an invalid length. [ 133.706536][ T7480] netlink: 'syz.1.1213': attribute type 10 has an invalid length. [ 133.754621][ T7480] bond0: (slave dummy0): Releasing backup interface [ 133.757734][ T7483] loop2: detected capacity change from 0 to 512 [ 133.768003][ T7485] loop3: detected capacity change from 0 to 128 [ 133.772140][ T7483] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 133.807402][ T7483] EXT4-fs (loop2): 1 truncate cleaned up [ 133.809209][ T7483] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 133.821970][ T7480] team0: Port device dummy0 added [ 133.832258][ T7488] netlink: 'syz.1.1213': attribute type 10 has an invalid length. [ 133.977269][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 133.992087][ T7488] team0: Port device dummy0 removed [ 134.004110][ T7488] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 135.093142][ T7516] loop3: detected capacity change from 0 to 2048 [ 135.379855][ T7538] netlink: 'syz.4.1232': attribute type 10 has an invalid length. [ 135.458675][ T7538] netlink: 'syz.4.1232': attribute type 10 has an invalid length. [ 135.476945][ T7538] team0: Port device dummy0 removed [ 135.487337][ T7538] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 135.876970][ T7565] loop0: detected capacity change from 0 to 128 [ 136.487870][ T7592] loop3: detected capacity change from 0 to 2048 [ 136.528721][ T7592] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 136.540907][ T7592] EXT4-fs (loop3): shut down requested (0) [ 136.546551][ T7596] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1260'. [ 136.715024][ T4309] EXT4-fs (loop3): unmounting filesystem. [ 136.896899][ T7619] device syzkaller0 entered promiscuous mode [ 137.409793][ T7644] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1276'. [ 137.620606][ T7648] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1278'. [ 148.248305][ T7662] netlink: 92 bytes leftover after parsing attributes in process `syz.4.1282'. [ 148.263203][ T7662] rdma_rxe: rxe_register_device failed with error -23 [ 148.265811][ T7662] rdma_rxe: failed to add team_slave_0 [ 148.380167][ T7674] netlink: 'syz.0.1287': attribute type 10 has an invalid length. [ 148.403220][ T7674] netlink: 'syz.0.1287': attribute type 10 has an invalid length. [ 148.412104][ T7674] team0: Port device dummy0 removed [ 148.424141][ T7674] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 148.800966][ T7707] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1299'. [ 149.001454][ T27] kauditd_printk_skb: 39 callbacks suppressed [ 149.001466][ T27] audit: type=1326 audit(148.950:4679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7720 comm="syz.0.1306" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff9295a8a8 code=0x0 [ 149.793112][ T27] audit: type=1326 audit(149.770:4680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7718 comm="syz.1.1305" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff82b5a8a8 code=0x0 [ 150.585150][ T7764] loop3: detected capacity change from 0 to 512 [ 150.588060][ T7764] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 150.600274][ T7764] EXT4-fs (loop3): 1 truncate cleaned up [ 150.602034][ T7764] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 150.765699][ T4309] EXT4-fs (loop3): unmounting filesystem. [ 150.840212][ T7781] loop3: detected capacity change from 0 to 1024 [ 150.844725][ T7781] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 150.849027][ T7781] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 150.861081][ T7781] JBD2: no valid journal superblock found [ 150.866076][ T7781] EXT4-fs (loop3): error loading journal [ 150.981776][ T7788] IPv6: Can't replace route, no match found [ 151.530017][ T7814] netlink: 'syz.4.1343': attribute type 10 has an invalid length. [ 152.225833][ T7814] bond0: (slave dummy0): Releasing backup interface [ 152.240400][ T27] audit: type=1326 audit(151.860:4681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7818 comm="syz.2.1345" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88f5a8a8 code=0x7ffc0000 [ 152.255931][ T7829] fuse: Bad value for 'group_id' [ 152.256452][ T27] audit: type=1326 audit(152.120:4682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7818 comm="syz.2.1345" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88f5a8a8 code=0x7ffc0000 [ 152.270969][ T27] audit: type=1326 audit(152.200:4683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7818 comm="syz.2.1345" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff88f5a8a8 code=0x7ffc0000 [ 152.277359][ T7814] team0: Port device dummy0 added [ 152.288092][ T27] audit: type=1326 audit(152.210:4684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7818 comm="syz.2.1345" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88f5a8a8 code=0x7ffc0000 [ 152.297476][ T7820] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 152.300206][ T7820] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 152.302618][ T7820] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 152.302948][ T27] audit: type=1326 audit(152.210:4685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7818 comm="syz.2.1345" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88f5a8a8 code=0x7ffc0000 [ 152.304788][ T7820] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 152.310716][ T27] audit: type=1326 audit(152.210:4686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7818 comm="syz.2.1345" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff88f5a8a8 code=0x7ffc0000 [ 152.322036][ T27] audit: type=1326 audit(152.210:4687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7818 comm="syz.2.1345" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88f5a8a8 code=0x7ffc0000 [ 152.330833][ T7822] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 152.338305][ T27] audit: type=1326 audit(152.210:4688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7818 comm="syz.2.1345" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88f5a8a8 code=0x7ffc0000 [ 152.342497][ T7827] netlink: 'syz.4.1343': attribute type 10 has an invalid length. [ 152.373625][ T7827] team0: Port device dummy0 removed [ 152.401140][ T7827] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 152.411014][ T7822] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 152.493481][ T7822] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 152.558828][ T7841] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1353'. [ 152.579545][ T7822] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 152.722206][ T7851] fuse: Bad value for 'group_id' [ 152.746478][ T7822] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 152.752330][ T7822] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 152.762548][ T7822] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 152.767862][ T7822] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 153.055648][ T7863] netlink: 'syz.3.1363': attribute type 10 has an invalid length. [ 153.083077][ T7863] bond0: (slave dummy0): Releasing backup interface [ 153.124793][ T7863] team0: Port device dummy0 added [ 153.129710][ T7866] netlink: 'syz.3.1363': attribute type 10 has an invalid length. [ 153.158979][ T7866] team0: Port device dummy0 removed [ 153.165288][ T7866] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 153.848067][ T7895] netlink: 'syz.0.1376': attribute type 10 has an invalid length. [ 154.601830][ T7895] bond0: (slave dummy0): Releasing backup interface [ 154.685147][ T7895] team0: Port device dummy0 added [ 154.686138][ T7909] fuse: Bad value for 'fd' [ 154.692974][ T7904] netlink: 'syz.0.1376': attribute type 10 has an invalid length. [ 154.716593][ T7904] team0: Port device dummy0 removed [ 154.732114][ T7904] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 154.834811][ T7912] netlink: 'syz.1.1384': attribute type 7 has an invalid length. [ 154.837001][ T7912] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1384'. [ 155.398011][ T7948] netlink: 'syz.4.1398': attribute type 10 has an invalid length. [ 155.418799][ T7948] bond0: (slave dummy0): Releasing backup interface [ 155.459541][ T7948] team0: Port device dummy0 added [ 155.465064][ T7953] netlink: 'syz.4.1398': attribute type 10 has an invalid length. [ 155.488143][ T7953] team0: Port device dummy0 removed [ 155.491635][ T7953] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 155.580621][ T27] kauditd_printk_skb: 27 callbacks suppressed [ 155.580634][ T27] audit: type=1107 audit(155.550:4716): pid=7959 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 156.032174][ T7984] netlink: 'syz.1.1413': attribute type 10 has an invalid length. [ 156.074767][ T7984] bond0: (slave dummy0): Releasing backup interface [ 156.108032][ T7984] team0: Port device dummy0 added [ 156.109885][ T7986] netlink: 'syz.1.1413': attribute type 10 has an invalid length. [ 156.123040][ T7986] team0: Port device dummy0 removed [ 156.126039][ T7986] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 157.060901][ T7999] fuse: Bad value for 'fd' [ 157.846369][ T8003] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 157.848817][ T8003] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 157.851094][ T8003] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 157.853718][ T8003] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 157.906127][ T8004] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 157.984644][ T8004] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 158.095130][ T8004] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 158.240531][ T8004] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 158.353977][ T8004] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 158.361385][ T8004] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 158.367087][ T8004] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 158.373100][ T8004] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 158.608913][ T8036] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1433'. [ 158.827279][ T27] audit: type=1326 audit(158.750:4717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8052 comm="syz.1.1440" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 158.866290][ T27] audit: type=1326 audit(158.750:4718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8052 comm="syz.1.1440" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 158.908672][ T27] audit: type=1326 audit(158.750:4719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8052 comm="syz.1.1440" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 158.930207][ T27] audit: type=1326 audit(158.750:4720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8052 comm="syz.1.1440" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 158.949568][ T27] audit: type=1326 audit(158.750:4721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8052 comm="syz.1.1440" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 158.969440][ T27] audit: type=1326 audit(158.750:4722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8052 comm="syz.1.1440" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 158.985960][ T27] audit: type=1326 audit(158.750:4723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8052 comm="syz.1.1440" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 158.997786][ T27] audit: type=1326 audit(158.750:4724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8052 comm="syz.1.1440" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=214 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 159.019709][ T27] audit: type=1326 audit(158.750:4725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8052 comm="syz.1.1440" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 159.169639][ T8072] loop0: detected capacity change from 0 to 512 [ 159.213875][ T8072] EXT4-fs: Ignoring removed nomblk_io_submit option [ 159.229472][ T8072] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 159.356400][ T8072] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 159.489516][ T8086] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 159.492013][ T8086] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 159.494478][ T8086] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 159.496880][ T8086] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 160.202705][ T8090] netlink: 452 bytes leftover after parsing attributes in process `syz.4.1451'. [ 160.217119][ T4302] EXT4-fs (loop0): unmounting filesystem. [ 160.246190][ T8086] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 160.249206][ T8086] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 160.266975][ T8085] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1450'. [ 160.285877][ T8097] fuse: Unknown parameter 'grou00000000000000000000' [ 160.357322][ T8086] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 160.360220][ T8086] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 160.474058][ T8086] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 160.477055][ T8086] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 160.508043][ T8111] device veth0 entered promiscuous mode [ 160.564237][ T8086] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 160.567139][ T8086] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 160.577402][ T8111] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1459'. [ 160.733948][ T8124] loop0: detected capacity change from 0 to 512 [ 160.736200][ T8124] EXT4-fs: Ignoring removed nobh option [ 160.803727][ T8124] EXT4-fs error (device loop0): ext4_do_update_inode:5253: inode #16: comm +}[@: corrupted inode contents [ 160.816887][ T8124] EXT4-fs (loop0): Remounting filesystem read-only [ 160.819957][ T8124] EXT4-fs error (device loop0): ext4_dirty_inode:6118: inode #16: comm +}[@: mark_inode_dirty error [ 160.832889][ T8124] EXT4-fs (loop0): Remounting filesystem read-only [ 160.835757][ T8124] EXT4-fs error (device loop0): ext4_do_update_inode:5253: inode #16: comm +}[@: corrupted inode contents [ 160.835870][ T8129] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1465'. [ 160.840752][ T8124] EXT4-fs (loop0): Remounting filesystem read-only [ 160.847122][ T8124] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #16: comm +}[@: mark_inode_dirty error [ 160.850598][ T8124] EXT4-fs (loop0): Remounting filesystem read-only [ 160.852814][ T8124] EXT4-fs error (device loop0): ext4_do_update_inode:5253: inode #16: comm +}[@: corrupted inode contents [ 160.858534][ T8124] EXT4-fs (loop0): Remounting filesystem read-only [ 160.860463][ T8124] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem [ 160.863326][ T8124] EXT4-fs (loop0): Remounting filesystem read-only [ 160.865144][ T8124] EXT4-fs error (device loop0): ext4_do_update_inode:5253: inode #16: comm +}[@: corrupted inode contents [ 160.868819][ T8124] EXT4-fs (loop0): Remounting filesystem read-only [ 160.870616][ T8124] EXT4-fs error (device loop0): ext4_truncate:4312: inode #16: comm +}[@: mark_inode_dirty error [ 160.887187][ T8124] EXT4-fs (loop0): Remounting filesystem read-only [ 160.889533][ T8124] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem [ 160.896869][ T8124] EXT4-fs (loop0): Remounting filesystem read-only [ 160.899832][ T8124] EXT4-fs (loop0): 1 truncate cleaned up [ 160.901889][ T8124] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 160.915653][ T8086] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 160.918091][ T8086] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 160.918185][ T8135] fuse: Bad value for 'fd' [ 160.923616][ T8086] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 160.925880][ T8086] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 160.932302][ T8086] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 160.934697][ T8086] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 160.940151][ T8086] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 160.942430][ T8086] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 161.000987][ T9] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 161.040725][ T9] EXT4-fs error (device loop0): ext4_release_dquot:6850: comm kworker/u4:0: Failed to release dquot type 1 [ 161.052090][ T9] EXT4-fs (loop0): Remounting filesystem read-only [ 161.097061][ T4302] EXT4-fs (loop0): unmounting filesystem. [ 161.142270][ T27] audit: type=1107 audit(161.110:4726): pid=8144 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='l' [ 161.338924][ T27] audit: type=1326 audit(161.310:4727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8159 comm="syz.3.1475" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa195a8a8 code=0x7ffc0000 [ 161.350528][ T27] audit: type=1326 audit(161.320:4728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8159 comm="syz.3.1475" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=107 compat=0 ip=0xffffa195a8a8 code=0x7ffc0000 [ 161.353069][ T8157] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1477'. [ 161.371258][ T27] audit: type=1326 audit(161.330:4729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8159 comm="syz.3.1475" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa195a8a8 code=0x7ffc0000 [ 161.392069][ T27] audit: type=1326 audit(161.330:4730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8159 comm="syz.3.1475" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=108 compat=0 ip=0xffffa195a8a8 code=0x7ffc0000 [ 161.399252][ T8163] fuse: Unknown parameter 'group_i00000000000000000000' [ 161.414836][ T27] audit: type=1326 audit(161.330:4731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8159 comm="syz.3.1475" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa195a8a8 code=0x7ffc0000 [ 161.466500][ T8168] loop2: detected capacity change from 0 to 512 [ 161.468879][ T8168] EXT4-fs: Ignoring removed nomblk_io_submit option [ 161.471431][ T8168] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 161.480652][ T8168] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 161.492712][ T8168] EXT4-fs (loop2): 1 truncate cleaned up [ 161.494280][ T8168] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 161.534646][ T27] audit: type=1326 audit(161.510:4732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8166 comm="syz.2.1480" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88f5a8a8 code=0x7ffc0000 [ 161.541890][ T27] audit: type=1326 audit(161.510:4733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8166 comm="syz.2.1480" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff88f5a8a8 code=0x7ffc0000 [ 161.575184][ T27] audit: type=1326 audit(161.510:4734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8166 comm="syz.2.1480" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff88f5a8a8 code=0x7ffc0000 [ 161.582820][ T8171] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1481'. [ 161.681537][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 161.775695][ T8181] loop2: detected capacity change from 0 to 512 [ 161.818394][ T8181] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 161.821256][ T8181] EXT4-fs (loop2): orphan cleanup on readonly fs [ 161.850697][ T8181] EXT4-fs error (device loop2): ext4_do_update_inode:5253: inode #16: comm syz.2.1486: corrupted inode contents [ 161.879840][ T8181] EXT4-fs (loop2): Remounting filesystem read-only [ 161.889575][ T8181] EXT4-fs error (device loop2): ext4_dirty_inode:6118: inode #16: comm syz.2.1486: mark_inode_dirty error [ 161.909591][ T8181] EXT4-fs (loop2): Remounting filesystem read-only [ 161.922731][ T8181] EXT4-fs error (device loop2): ext4_do_update_inode:5253: inode #16: comm syz.2.1486: corrupted inode contents [ 161.942510][ T8181] EXT4-fs (loop2): Remounting filesystem read-only [ 161.953335][ T8181] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #16: comm syz.2.1486: mark_inode_dirty error [ 161.977284][ T8192] fuse: Bad value for 'fd' [ 161.985636][ T8181] EXT4-fs (loop2): Remounting filesystem read-only [ 161.987647][ T8181] EXT4-fs error (device loop2): ext4_do_update_inode:5253: inode #16: comm syz.2.1486: corrupted inode contents [ 161.991943][ T8181] EXT4-fs (loop2): Remounting filesystem read-only [ 161.994144][ T8181] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem [ 161.998072][ T8181] EXT4-fs (loop2): Remounting filesystem read-only [ 162.000607][ T8181] EXT4-fs error (device loop2): ext4_do_update_inode:5253: inode #16: comm syz.2.1486: corrupted inode contents [ 162.272682][ T8181] EXT4-fs (loop2): Remounting filesystem read-only [ 162.276937][ T8181] EXT4-fs error (device loop2): ext4_truncate:4312: inode #16: comm syz.2.1486: mark_inode_dirty error [ 162.323888][ T8181] EXT4-fs (loop2): Remounting filesystem read-only [ 162.331249][ T8181] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem [ 162.388211][ T8181] EXT4-fs (loop2): Remounting filesystem read-only [ 162.511994][ T8181] EXT4-fs (loop2): 1 truncate cleaned up [ 162.701794][ T278] EXT4-fs error (device loop2): ext4_release_dquot:6850: comm kworker/u4:4: Failed to release dquot type 1 [ 162.709727][ T278] EXT4-fs (loop2): Remounting filesystem read-only [ 162.729856][ T8181] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 162.743301][ T8197] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1492'. [ 162.748100][ T8197] IPv6: ADDRCONF(NETDEV_CHANGE): gre3: link becomes ready [ 162.790728][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 162.827919][ T8199] netlink: 'syz.4.1493': attribute type 10 has an invalid length. [ 162.844728][ T8199] bond0: (slave dummy0): Releasing backup interface [ 162.885261][ T8199] team0: Port device dummy0 added [ 162.887068][ T8200] netlink: 'syz.4.1493': attribute type 10 has an invalid length. [ 162.920556][ T8200] team0: Port device dummy0 removed [ 162.924322][ T8200] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 163.109422][ T8210] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1499'. [ 163.112004][ T8210] device bridge_slave_1 left promiscuous mode [ 163.140004][ T8210] bridge0: port 2(bridge_slave_1) entered disabled state [ 163.852675][ T4297] Bluetooth: hci2: command 0x0406 tx timeout [ 163.854517][ T4297] Bluetooth: hci0: command 0x0406 tx timeout [ 163.856209][ T4297] Bluetooth: hci3: command 0x0406 tx timeout [ 163.857970][ T4297] Bluetooth: hci1: command 0x0406 tx timeout [ 163.859741][ T4297] Bluetooth: hci4: command 0x0406 tx timeout [ 163.861331][ T8221] fuse: Unknown parameter 'group_i00000000000000000000' [ 163.873053][ T8210] device bridge_slave_0 left promiscuous mode [ 163.875057][ T8210] bridge0: port 1(bridge_slave_0) entered disabled state [ 164.040594][ T8228] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1503'. [ 164.043921][ T8225] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1503'. [ 164.056362][ T8230] IPv6: ADDRCONF(NETDEV_CHANGE): gre2: link becomes ready [ 164.226005][ T8239] loop3: detected capacity change from 0 to 512 [ 164.245717][ T8239] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 164.289134][ T8239] EXT4-fs (loop3): 1 truncate cleaned up [ 164.290890][ T8239] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 164.356603][ T4309] EXT4-fs (loop3): unmounting filesystem. [ 164.491738][ T8257] fuse: Unknown parameter 'group_id00000000000000000000' [ 164.622059][ T8265] IPv6: ADDRCONF(NETDEV_CHANGE): gre3: link becomes ready [ 164.847271][ T8284] fuse: Unknown parameter 'group_id00000000000000000000' [ 165.039543][ T8296] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 165.127798][ T8301] IPv6: ADDRCONF(NETDEV_CHANGE): gre4: link becomes ready [ 165.247069][ T8311] fuse: Unknown parameter 'group_id00000000000000000000' [ 165.623168][ T8329] __nla_validate_parse: 3 callbacks suppressed [ 165.623184][ T8329] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1547'. [ 165.645208][ T8329] IPv6: ADDRCONF(NETDEV_CHANGE): gre4: link becomes ready [ 165.741020][ T8336] fuse: Bad value for 'fd' [ 165.794010][ T8338] netlink: 'syz.0.1551': attribute type 10 has an invalid length. [ 165.802055][ T8338] bond0: (slave dummy0): Releasing backup interface [ 165.855426][ T8338] team0: Port device dummy0 added [ 165.857344][ T8343] netlink: 'syz.0.1551': attribute type 10 has an invalid length. [ 165.880524][ T8341] 9pnet: Could not find request transport: f [ 165.884676][ T8343] team0: Port device dummy0 removed [ 165.887782][ T8343] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 165.978206][ T8349] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1555'. [ 165.980812][ T8349] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1555'. [ 165.997083][ T8348] sch_tbf: burst 32855 is lower than device lo mtu (65550) ! [ 166.069355][ T27] kauditd_printk_skb: 77 callbacks suppressed [ 166.069367][ T27] audit: type=1326 audit(166.040:4811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8352 comm="syz.3.1556" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa195a8a8 code=0x7ffc0000 [ 166.088471][ T27] audit: type=1326 audit(166.050:4812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8352 comm="syz.3.1556" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=16 compat=0 ip=0xffffa195a8a8 code=0x7ffc0000 [ 166.109751][ T27] audit: type=1326 audit(166.050:4813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8352 comm="syz.3.1556" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa195a8a8 code=0x7ffc0000 [ 166.189582][ T8363] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1560'. [ 166.197188][ T8363] IPv6: ADDRCONF(NETDEV_CHANGE): gre3: link becomes ready [ 166.281108][ T8370] fuse: Bad value for 'user_id' [ 166.445440][ T8376] netlink: 'syz.0.1566': attribute type 10 has an invalid length. [ 166.550846][ T8388] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1572'. [ 166.560059][ T8388] IPv6: ADDRCONF(NETDEV_CHANGE): gre5: link becomes ready [ 166.716095][ T8401] fuse: Bad value for 'user_id' [ 166.844682][ T27] audit: type=1326 audit(166.820:4814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8407 comm="syz.3.1578" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffffa195a8a8 code=0x0 [ 166.858299][ T8409] netlink: 'syz.0.1580': attribute type 10 has an invalid length. [ 167.011860][ T8422] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1585'. [ 167.028506][ T8422] IPv6: ADDRCONF(NETDEV_CHANGE): gre2: link becomes ready [ 167.209892][ T8429] fuse: Bad value for 'fd' [ 167.270703][ T8433] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1590'. [ 167.277096][ T8433] device bridge_slave_1 left promiscuous mode [ 167.280200][ T8433] bridge0: port 2(bridge_slave_1) entered disabled state [ 167.336004][ T8433] device bridge_slave_0 left promiscuous mode [ 167.338032][ T8433] bridge0: port 1(bridge_slave_0) entered disabled state [ 167.678239][ T8445] IPVS: Error connecting to the multicast addr [ 167.718097][ T8447] netlink: 'syz.3.1593': attribute type 10 has an invalid length. [ 167.980807][ T8460] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1597'. [ 167.994422][ T8460] IPv6: ADDRCONF(NETDEV_CHANGE): gre6: link becomes ready [ 168.102110][ T27] audit: type=1326 audit(168.070:4815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8466 comm="syz.3.1600" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa195a8a8 code=0x7ffc0000 [ 168.117532][ T27] audit: type=1326 audit(168.090:4816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8466 comm="syz.3.1600" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa195a8a8 code=0x7ffc0000 [ 168.117570][ T27] audit: type=1326 audit(168.090:4817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8466 comm="syz.3.1600" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa195a8a8 code=0x7ffc0000 [ 168.117597][ T27] audit: type=1326 audit(168.090:4818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8466 comm="syz.3.1600" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa195a8a8 code=0x7ffc0000 [ 168.117625][ T27] audit: type=1326 audit(168.090:4819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8466 comm="syz.3.1600" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa195a8a8 code=0x7ffc0000 [ 168.117803][ T27] audit: type=1326 audit(168.090:4820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8466 comm="syz.3.1600" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffa1958dd4 code=0x7ffc0000 [ 168.190337][ T8470] loop3: detected capacity change from 0 to 512 [ 168.191390][ T8470] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 168.220478][ T8470] EXT4-fs (loop3): 1 truncate cleaned up [ 168.220506][ T8470] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 168.247088][ T4309] EXT4-fs (loop3): unmounting filesystem. [ 168.447124][ T8481] netlink: 'syz.1.1605': attribute type 10 has an invalid length. [ 168.643032][ T8490] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1610'. [ 168.680382][ T8490] IPv6: ADDRCONF(NETDEV_CHANGE): gre6: link becomes ready [ 168.936554][ T8508] random: crng reseeded on system resumption [ 168.993071][ T8511] netlink: 'syz.3.1619': attribute type 10 has an invalid length. [ 170.134325][ T8525] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1625'. [ 170.468711][ T8538] tipc: Enabling of bearer rejected, failed to enable media [ 170.559148][ T8547] netlink: 'syz.2.1633': attribute type 10 has an invalid length. [ 170.667116][ T8552] xt_TPROXY: Can be used only with -p tcp or -p udp [ 170.713877][ T8559] @: renamed from vlan0 [ 170.715387][ T8556] can0: slcan on ttyS3. [ 170.818314][ T8555] can0 (unregistered): slcan off ttyS3. [ 170.931934][ T8570] loop4: detected capacity change from 0 to 256 [ 170.960057][ T8570] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 170.963849][ T8574] netlink: 'syz.1.1645': attribute type 10 has an invalid length. [ 170.971765][ T8567] tipc: Started in network mode [ 170.974861][ T8567] tipc: Node identity 3ac79d9c62fa, cluster identity 4711 [ 170.977038][ T8567] tipc: Enabled bearer , priority 0 [ 170.981713][ T8570] random: crng reseeded on system resumption [ 170.991343][ T8577] netlink: 'syz.0.1648': attribute type 6 has an invalid length. [ 171.009534][ T8567] tipc: Disabling bearer [ 171.018397][ T8570] Restarting kernel threads ... done. [ 171.159816][ T8586] process 'syz.2.1651' launched './file1' with NULL argv: empty string added [ 171.232084][ T8590] loop3: detected capacity change from 0 to 512 [ 171.270559][ T8590] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 171.509241][ T8606] netlink: 'syz.0.1659': attribute type 10 has an invalid length. [ 171.518710][ T8590] __quota_error: 26 callbacks suppressed [ 171.518723][ T8590] Quota error (device loop3): v2_read_file_info: Free block number 58381 out of range (1, 6). [ 171.525390][ T8590] EXT4-fs warning (device loop3): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 171.548923][ T8609] loop0: detected capacity change from 0 to 512 [ 171.578410][ T8609] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.1662: invalid indirect mapped block 256 (level 2) [ 171.591622][ T8609] EXT4-fs (loop0): 2 truncates cleaned up [ 171.599346][ T8609] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 171.632585][ T8611] EXT4-fs error (device loop0): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 5: invalid block bitmap [ 171.649677][ T55] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 808 with error 28 [ 171.658211][ T55] EXT4-fs (loop0): This should not happen!! Data will be lost [ 171.658211][ T55] [ 171.660833][ T55] EXT4-fs (loop0): Total free blocks count 0 [ 171.682344][ T55] EXT4-fs (loop0): Free/Dirty block details [ 171.699287][ T55] EXT4-fs (loop0): free_blocks=0 [ 171.700731][ T55] EXT4-fs (loop0): dirty_blocks=808 [ 171.702163][ T55] EXT4-fs (loop0): Block reservation details [ 171.704757][ T4309] EXT4-fs error (device loop3): ext4_readdir:263: inode #2: block 3: comm syz-executor: path /337/file0: bad entry in directory: rec_len is too small for name_len - offset=24, inode=11, rec_len=20, size=4096 fake=0 [ 171.719031][ T55] EXT4-fs (loop0): i_reserved_data_blocks=808 [ 171.896622][ T4302] EXT4-fs (loop0): unmounting filesystem. [ 172.260300][ T8626] loop4: detected capacity change from 0 to 512 [ 183.428316][ T8627] __nla_validate_parse: 1 callbacks suppressed [ 183.428330][ T8627] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1669'. [ 183.466405][ T4297] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 183.469940][ T4297] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 183.472695][ T4297] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 183.476005][ T4297] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 183.478439][ T4297] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 183.480608][ T4297] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 183.631737][ T8648] loop2: detected capacity change from 0 to 2048 [ 183.705409][ T8648] GPT:first_usable_lbas don't match. [ 183.706940][ T8648] GPT:34 != 290 [ 183.707861][ T8648] GPT: Use GNU Parted to correct GPT errors. [ 183.709543][ T8648] loop2: p1 p2 p3 [ 183.974640][ T4365] netdevsim netdevsim3 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 183.981030][ T4365] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 184.100598][ T4365] netdevsim netdevsim3 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 184.105019][ T4365] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 184.178447][ T4365] netdevsim netdevsim3 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 184.181262][ T4365] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 184.203294][ T8643] udevd[8643]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 184.209245][ T8657] udevd[8657]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory [ 184.232300][ T8644] udevd[8644]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 184.255501][ T4365] netdevsim netdevsim3 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 184.258229][ T4365] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 184.283240][ T8641] chnl_net:caif_netlink_parms(): no params data found [ 184.299085][ T8692] 9pnet: Could not find request transport: r [ 184.340224][ T8666] udevd[8666]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 184.348474][ T8641] bridge0: port 1(bridge_slave_0) entered blocking state [ 184.350562][ T8641] bridge0: port 1(bridge_slave_0) entered disabled state [ 184.353295][ T8641] device bridge_slave_0 entered promiscuous mode [ 184.357397][ T8641] bridge0: port 2(bridge_slave_1) entered blocking state [ 184.359453][ T8641] bridge0: port 2(bridge_slave_1) entered disabled state [ 184.362115][ T8641] device bridge_slave_1 entered promiscuous mode [ 184.376634][ T8641] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 184.382217][ T8641] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 184.438545][ T8644] udevd[8644]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory [ 184.455966][ T8657] udevd[8657]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 184.479141][ T8641] team0: Port device team_slave_0 added [ 184.489938][ T8641] team0: Port device team_slave_1 added [ 184.556476][ T8641] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 184.558440][ T8641] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 184.576187][ T8641] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 184.594515][ T8641] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 184.597654][ T8641] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 184.609805][ T8641] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 184.659775][ T4365] tipc: Left network mode [ 184.744420][ T8641] device hsr_slave_0 entered promiscuous mode [ 184.773509][ T8641] device hsr_slave_1 entered promiscuous mode [ 184.802715][ T8641] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 184.804829][ T8641] Cannot create hsr debugfs directory [ 184.935619][ T8722] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1703'. [ 185.172434][ T27] audit: type=1326 audit(185.140:4847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8746 comm="syz.1.1711" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 185.209676][ T27] audit: type=1326 audit(185.180:4848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8746 comm="syz.1.1711" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 185.221621][ T27] audit: type=1326 audit(185.190:4849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8746 comm="syz.1.1711" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 185.260361][ T27] audit: type=1326 audit(185.220:4850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8746 comm="syz.1.1711" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 185.287729][ T27] audit: type=1326 audit(185.220:4851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8746 comm="syz.1.1711" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 185.307984][ T27] audit: type=1326 audit(185.220:4852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8746 comm="syz.1.1711" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 185.343067][ T27] audit: type=1326 audit(185.220:4853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8746 comm="syz.1.1711" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 185.370553][ T27] audit: type=1326 audit(185.220:4854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8746 comm="syz.1.1711" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=232 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 185.402896][ T27] audit: type=1326 audit(185.220:4855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8746 comm="syz.1.1711" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 185.532677][ T4306] Bluetooth: hci4: command 0x0409 tx timeout [ 185.622326][ T8775] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1721'. [ 185.629287][ T8775] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1721'. [ 185.645364][ T8641] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 185.771942][ T8641] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 185.830322][ T8641] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 186.019309][ T8641] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 186.057125][ T8791] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1728'. [ 187.373951][ T2059] ieee802154 phy0 wpan0: encryption failed: -22 [ 187.375794][ T2059] ieee802154 phy1 wpan1: encryption failed: -22 [ 187.411446][ T8641] 8021q: adding VLAN 0 to HW filter on device bond0 [ 187.479233][ T8641] 8021q: adding VLAN 0 to HW filter on device team0 [ 187.499304][ T5855] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 187.507855][ T8829] loop2: detected capacity change from 0 to 2048 [ 187.510393][ T5855] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 187.520519][ T5855] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 187.544501][ T5855] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 187.547459][ T5855] bridge0: port 1(bridge_slave_0) entered blocking state [ 187.549449][ T5855] bridge0: port 1(bridge_slave_0) entered forwarding state [ 187.564091][ T5855] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 187.580608][ T8829] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 187.615407][ T5855] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 187.618939][ T5855] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 187.622671][ T4306] Bluetooth: hci4: command 0x041b tx timeout [ 187.635105][ T8839] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 345: padding at end of block bitmap is not set [ 187.658859][ T27] audit: type=1326 audit(187.630:4856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8844 comm="syz.0.1743" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9295a8a8 code=0x7ffc0000 [ 187.670991][ T5855] bridge0: port 2(bridge_slave_1) entered blocking state [ 187.673042][ T5855] bridge0: port 2(bridge_slave_1) entered forwarding state [ 187.701530][ T5855] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 187.733167][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 187.919633][ T8864] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1742'. [ 188.101034][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 188.105983][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 188.116084][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 188.120365][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 188.126093][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 188.130260][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 188.148923][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 188.170688][ T8641] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 188.191466][ T8641] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 188.288721][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 188.291499][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 188.296046][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 188.408490][ T8893] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 188.540543][ T8902] x_tables: ip_tables: TPROXY.0 target: invalid size 16 (kernel) != (user) 24 [ 188.846342][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 188.849517][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 188.865221][ T8641] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 188.921366][ T4365] device hsr_slave_0 left promiscuous mode [ 188.956943][ T4365] device hsr_slave_1 left promiscuous mode [ 189.036450][ T4365] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 189.038865][ T4365] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 189.049767][ T4365] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 189.051934][ T4365] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 189.089066][ T8930] loop2: detected capacity change from 0 to 128 [ 189.107020][ T8930] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 189.167161][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 189.214299][ T4365] device veth1_macvtap left promiscuous mode [ 189.217491][ T4365] device veth0_macvtap left promiscuous mode [ 189.219291][ T4365] device veth1_vlan left promiscuous mode [ 189.221071][ T4365] device veth0_vlan left promiscuous mode [ 189.692603][ T4297] Bluetooth: hci4: command 0x040f tx timeout [ 191.490549][ T4365] team0 (unregistering): Port device team_slave_1 removed [ 191.664113][ T4365] team0 (unregistering): Port device team_slave_0 removed [ 191.772608][ T4297] Bluetooth: hci4: command 0x0419 tx timeout [ 191.865237][ T4365] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 192.063243][ T4365] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 193.083525][ T4365] bond0 (unregistering): (slave dummy0): Releasing backup interface [ 194.594211][ T4365] bond0 (unregistering): Released all slaves [ 194.668268][ T8928] netem: change failed [ 194.761996][ T27] kauditd_printk_skb: 52 callbacks suppressed [ 194.762008][ T27] audit: type=1326 audit(194.730:4909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8960 comm="syz.1.1773" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 194.780140][ T27] audit: type=1326 audit(194.740:4910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8960 comm="syz.1.1773" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=279 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 194.797341][ T27] audit: type=1326 audit(194.740:4911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8960 comm="syz.1.1773" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffff82b5a8dc code=0x7ffc0000 [ 194.803594][ T8955] netlink: 'syz.2.1772': attribute type 10 has an invalid length. [ 194.815396][ T27] audit: type=1326 audit(194.740:4912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8960 comm="syz.1.1773" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=64 compat=0 ip=0xffff82b58f70 code=0x7ffc0000 [ 194.821353][ T27] audit: type=1326 audit(194.740:4913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8960 comm="syz.1.1773" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=215 compat=0 ip=0xffff82b5a94c code=0x7ffc0000 [ 194.885969][ T8968] fuse: Unknown parameter 'user_i00000000000000000000' [ 194.900221][ T27] audit: type=1326 audit(194.740:4914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8960 comm="syz.1.1773" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffff82b58dd4 code=0x7ffc0000 [ 194.907467][ T8966] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1774'. [ 194.912126][ T8966] IPv6: ADDRCONF(NETDEV_CHANGE): gre5: link becomes ready [ 194.924647][ T27] audit: type=1326 audit(194.740:4915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8960 comm="syz.1.1773" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=57 compat=0 ip=0xffff82b591ac code=0x7ffc0000 [ 194.930840][ T27] audit: type=1326 audit(194.750:4916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8960 comm="syz.1.1773" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 194.962464][ T8971] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1777'. [ 194.967156][ T8971] device ipvlan2 entered promiscuous mode [ 194.979491][ T27] audit: type=1326 audit(194.750:4917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8960 comm="syz.1.1773" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 195.007179][ T27] audit: type=1326 audit(194.750:4918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8960 comm="syz.1.1773" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff82b5a8a8 code=0x7ffc0000 [ 195.111683][ T5855] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 195.115170][ T5855] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 195.148219][ T7175] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 195.150982][ T7175] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 195.154247][ T7175] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 195.157427][ T7175] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 195.173785][ T8641] device veth0_vlan entered promiscuous mode [ 195.190351][ T8641] device veth1_vlan entered promiscuous mode [ 195.287752][ T278] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 195.290523][ T278] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 195.293529][ T278] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 195.307839][ T278] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 195.319552][ T8986] netlink: 92 bytes leftover after parsing attributes in process `syz.4.1781'. [ 195.337363][ T8641] device veth0_macvtap entered promiscuous mode [ 195.341421][ T8641] device veth1_macvtap entered promiscuous mode [ 195.426829][ T8641] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 195.429693][ T8641] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 195.463683][ T8641] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 195.474203][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 195.490754][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 195.500683][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 195.510057][ T9001] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 195.511525][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 195.548578][ T9002] fuse: Bad value for 'fd' [ 195.553045][ T8641] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 195.555960][ T8641] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 195.567849][ T8641] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 195.570043][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 195.573862][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 195.584514][ T8641] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 195.588346][ T8641] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 195.597744][ T8641] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 195.606210][ T8641] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 195.737095][ T9008] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1789'. [ 195.756567][ T9008] IPv6: ADDRCONF(NETDEV_CHANGE): gre6: link becomes ready [ 195.828171][ T4357] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 195.830898][ T4357] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 195.857565][ T9016] netlink: 252 bytes leftover after parsing attributes in process `syz.0.1792'. [ 195.867360][ T7175] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 195.900229][ T7175] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 195.908448][ T7175] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 195.918168][ T5855] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 195.918864][ T9019] netlink: 'syz.2.1791': attribute type 1 has an invalid length. [ 196.195140][ T9039] fuse: Bad value for 'fd' [ 196.606191][ T9038] bridge0: port 2(bridge_slave_1) entered disabled state [ 196.608514][ T9038] bridge0: port 1(bridge_slave_0) entered disabled state [ 198.084068][ T9038] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 198.113992][ T9038] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 198.529081][ T9038] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 198.531751][ T9038] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 198.534648][ T9038] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 198.537107][ T9038] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 198.850221][ T9050] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1802'. [ 198.886677][ T9077] fuse: Bad value for 'fd' [ 199.110625][ T9087] loop5: detected capacity change from 0 to 128 [ 199.268689][ T9100] netlink: 'syz.4.1822': attribute type 10 has an invalid length. [ 199.324516][ T9105] fuse: Bad value for 'fd' [ 199.453773][ T9113] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1827'. [ 199.475229][ T9113] IPv6: ADDRCONF(NETDEV_CHANGE): gre7: link becomes ready [ 199.563914][ T9123] loop4: detected capacity change from 0 to 128 [ 199.856109][ T9140] netlink: 'syz.4.1838': attribute type 10 has an invalid length. [ 199.955043][ T9145] fuse: Bad value for 'fd' [ 200.106531][ T9154] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1843'. [ 200.119933][ T27] kauditd_printk_skb: 21 callbacks suppressed [ 200.119945][ T27] audit: type=1326 audit(200.090:4940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9156 comm="syz.5.1844" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e35a8a8 code=0x7ffc0000 [ 200.140221][ T9154] IPv6: ADDRCONF(NETDEV_CHANGE): gre8: link becomes ready [ 200.162711][ T27] audit: type=1326 audit(200.120:4941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9156 comm="syz.5.1844" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e35a8a8 code=0x7ffc0000 [ 200.284793][ T27] audit: type=1326 audit(200.120:4942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9156 comm="syz.5.1844" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9e35a8a8 code=0x7ffc0000 [ 200.338605][ T27] audit: type=1326 audit(200.120:4943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9156 comm="syz.5.1844" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e35a8a8 code=0x7ffc0000 [ 200.367529][ T27] audit: type=1326 audit(200.120:4944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9156 comm="syz.5.1844" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e35a8a8 code=0x7ffc0000 [ 201.096826][ T27] audit: type=1326 audit(200.130:4945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9156 comm="syz.5.1844" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9e35a8a8 code=0x7ffc0000 [ 201.109466][ T27] audit: type=1326 audit(200.130:4946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9156 comm="syz.5.1844" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e35a8a8 code=0x7ffc0000 [ 201.149382][ T27] audit: type=1326 audit(200.130:4947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9156 comm="syz.5.1844" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e35a8a8 code=0x7ffc0000 [ 201.167958][ T9174] netlink: 'syz.1.1851': attribute type 10 has an invalid length. [ 201.173174][ T27] audit: type=1326 audit(200.280:4948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9156 comm="syz.5.1844" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9e35a8a8 code=0x7ffc0000 [ 201.188976][ T27] audit: type=1326 audit(200.280:4949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9156 comm="syz.5.1844" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e35a8a8 code=0x7ffc0000 [ 201.391233][ T9182] bridge0: port 3(syz_tun) entered blocking state [ 201.394201][ T9182] bridge0: port 3(syz_tun) entered disabled state [ 201.397241][ T9182] device syz_tun entered promiscuous mode [ 201.400174][ T9182] bridge0: port 3(syz_tun) entered blocking state [ 201.402198][ T9182] bridge0: port 3(syz_tun) entered forwarding state [ 202.612084][ T9210] netlink: 'syz.4.1864': attribute type 10 has an invalid length. [ 203.759881][ T9234] loop0: detected capacity change from 0 to 512 [ 203.764924][ T9234] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 203.824033][ T9234] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 203.870433][ T9234] capability: warning: `syz.0.1871' uses 32-bit capabilities (legacy support in use) [ 204.067385][ T4302] EXT4-fs (loop0): unmounting filesystem. [ 204.189000][ T9227] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1868'. [ 204.321374][ T9267] netlink: 'syz.2.1879': attribute type 10 has an invalid length. [ 204.492548][ T9272] netlink: 332 bytes leftover after parsing attributes in process `syz.2.1880'. [ 204.575188][ T9279] netlink: 'syz.0.1892': attribute type 13 has an invalid length. [ 204.618427][ T9279] netdevsim netdevsim0 eth0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 204.621078][ T9279] netdevsim netdevsim0 eth1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 204.623833][ T9279] netdevsim netdevsim0 eth2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 204.626168][ T9279] netdevsim netdevsim0 eth3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 205.998856][ T9308] netlink: 'syz.2.1890': attribute type 10 has an invalid length. [ 206.527348][ T27] kauditd_printk_skb: 44 callbacks suppressed [ 206.527360][ T27] audit: type=1326 audit(206.500:4994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9349 comm="syz.5.1908" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e35a8a8 code=0x7ffc0000 [ 206.553184][ T27] audit: type=1326 audit(206.530:4995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9349 comm="syz.5.1908" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e35a8a8 code=0x7ffc0000 [ 206.570013][ T27] audit: type=1326 audit(206.530:4996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9349 comm="syz.5.1908" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffff9e35a8a8 code=0x7ffc0000 [ 207.457119][ T27] audit: type=1326 audit(206.530:4997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9349 comm="syz.5.1908" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e35a8a8 code=0x7ffc0000 [ 207.503828][ T9361] netlink: 'syz.1.1910': attribute type 10 has an invalid length. [ 207.510610][ T27] audit: type=1326 audit(206.530:4998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9349 comm="syz.5.1908" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e35a8a8 code=0x7ffc0000 [ 207.520299][ T9365] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 207.527938][ T9361] bond0: (slave dummy0): Releasing backup interface [ 207.532769][ T27] audit: type=1326 audit(206.530:4999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9349 comm="syz.5.1908" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=234 compat=0 ip=0xffff9e35a8a8 code=0x7ffc0000 [ 207.552964][ T27] audit: type=1326 audit(206.530:5000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9349 comm="syz.5.1908" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e35a8a8 code=0x7ffc0000 [ 207.575974][ T9361] team0: Port device dummy0 added [ 207.590511][ T27] audit: type=1326 audit(206.530:5001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9349 comm="syz.5.1908" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9e35a8a8 code=0x7ffc0000 [ 207.665843][ T9371] netlink: 'syz.5.1915': attribute type 4 has an invalid length. [ 207.711620][ T9371] netlink: 'syz.5.1915': attribute type 4 has an invalid length. [ 208.572631][ C1] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 210.117101][ T9414] netlink: 'syz.0.1928': attribute type 10 has an invalid length. [ 210.139072][ T9414] bond0: (slave dummy0): Releasing backup interface [ 210.204629][ T9414] team0: Port device dummy0 added [ 271.212417][ C0] BUG: workqueue lockup - pool cpus=0 node=0 flags=0x0 nice=0 stuck for 59s! [ 271.215406][ C0] BUG: workqueue lockup - pool cpus=1 node=0 flags=0x0 nice=0 stuck for 59s! [ 271.217961][ C0] BUG: workqueue lockup - pool cpus=0-1 flags=0x4 nice=0 stuck for 59s! [ 271.220371][ C0] Showing busy workqueues and worker pools: [ 271.221982][ C0] workqueue events: flags=0x0 [ 271.223372][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=7/256 refcnt=8 [ 271.223398][ C0] pending: nsim_dev_hwstats_traffic_work, psi_avgs_work, psi_avgs_work, psi_avgs_work, psi_avgs_work, ovs_dp_masks_rebalance, bpf_prog_free_deferred [ 271.223482][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=12/256 refcnt=13 [ 271.223505][ C0] pending: ovs_dp_masks_rebalance, nsim_dev_hwstats_traffic_work, nsim_dev_hwstats_traffic_work, nsim_dev_hwstats_traffic_work, nsim_dev_hwstats_traffic_work, nsim_dev_hwstats_traffic_work, psi_avgs_work, psi_avgs_work, vmstat_shepherd, kfree_rcu_monitor, ovs_dp_masks_rebalance, ovs_dp_masks_rebalance [ 271.223624][ C0] workqueue events_long: flags=0x0 [ 271.241447][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=6/256 refcnt=7 [ 271.241478][ C0] pending: defense_work_handler, defense_work_handler, defense_work_handler, defense_work_handler, defense_work_handler, defense_work_handler [ 271.241550][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=4/256 refcnt=5 [ 271.241573][ C0] pending: defense_work_handler, defense_work_handler, defense_work_handler, defense_work_handler [ 271.241617][ C0] workqueue events_unbound: flags=0x2 [ 271.254308][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=12/512 refcnt=14 [ 271.254335][ C0] pending: fsnotify_connector_destroy_workfn, fsnotify_mark_destroy_workfn, toggle_allocation_gate, nsim_dev_trap_report_work, nsim_dev_trap_report_work, nsim_dev_trap_report_work, nsim_dev_trap_report_work, nsim_dev_trap_report_work, nsim_dev_trap_report_work, flush_memcg_stats_dwork, macvlan_process_broadcast, macvlan_process_broadcast [ 271.254462][ C0] workqueue events_power_efficient: flags=0x82 [ 271.267069][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=5/256 refcnt=7 [ 271.267099][ C0] pending: wg_ratelimiter_gc_entries, neigh_managed_work, neigh_managed_work, neigh_periodic_work, neigh_periodic_work [ 271.267170][ C0] workqueue netns: flags=0xe000a [ 271.274015][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/1 refcnt=3 [ 271.274040][ C0] in-flight: 4365:cleanup_net [ 271.274075][ C0] workqueue mm_percpu_wq: flags=0x8 [ 271.278811][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 271.278843][ C0] pending: vmstat_update [ 271.278869][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 271.278893][ C0] pending: vmstat_update [ 271.278964][ C0] workqueue krxrpcd: flags=0x0 [ 271.287105][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/1 refcnt=2 [ 271.287135][ C0] pending: rxrpc_peer_keepalive_worker [ 271.287161][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/1 refcnt=4 [ 271.287184][ C0] pending: rxrpc_peer_keepalive_worker [ 271.287201][ C0] inactive: rxrpc_peer_keepalive_worker, rxrpc_peer_keepalive_worker [ 271.287230][ C0] workqueue krdsd: flags=0xe000a [ 271.298227][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/1 refcnt=3 [ 271.298259][ C0] pending: rds_connect_worker [ 271.298290][ C0] workqueue bat_events: flags=0xe000a [ 271.303066][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/1 refcnt=42 [ 271.303087][ C0] in-flight: 278:batadv_nc_worker [ 271.303115][ C0] inactive: batadv_nc_worker, batadv_nc_worker, batadv_nc_worker, batadv_nc_worker, batadv_mcast_mla_update, batadv_mcast_mla_update, batadv_mcast_mla_update, batadv_mcast_mla_update, batadv_mcast_mla_update, batadv_iv_send_outstanding_bat_ogm_packet, batadv_purge_orig, batadv_purge_orig, batadv_iv_send_outstanding_bat_ogm_packet, batadv_purge_orig, batadv_purge_orig, batadv_purge_orig, batadv_iv_send_outstanding_bat_ogm_packet, batadv_iv_send_outstanding_bat_ogm_packet, batadv_iv_send_outstanding_bat_ogm_packet, batadv_iv_send_outstanding_bat_ogm_packet, batadv_iv_send_outstanding_bat_ogm_packet, batadv_iv_send_outstanding_bat_ogm_packet, batadv_iv_send_outstanding_bat_ogm_packet, batadv_iv_send_outstanding_bat_ogm_packet, batadv_iv_send_outstanding_bat_ogm_packet, batadv_iv_send_outstanding_bat_ogm_packet, batadv_iv_send_outstanding_bat_ogm_packet, batadv_iv_send_outstanding_bat_ogm_packet, batadv_iv_send_outstanding_bat_ogm_packet, batadv_dat_purge [ 271.303416][ C0] , batadv_bla_periodic_work, batadv_bla_periodic_work, batadv_dat_purge, batadv_bla_periodic_work, batadv_dat_purge, batadv_bla_periodic_work, batadv_dat_purge, batadv_dat_purge, batadv_bla_periodic_work [ 271.303512][ C0] workqueue wg-kex-wg0: flags=0x6 [ 271.337557][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3 [ 271.337594][ C0] pending: wg_packet_handshake_send_worker [ 271.337623][ C0] workqueue wg-crypt-wg0: flags=0x28 [ 271.342688][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 271.342731][ C0] pending: wg_packet_encrypt_worker [ 271.342761][ C0] workqueue wg-kex-wg1: flags=0x6 [ 271.347835][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3 [ 271.347869][ C0] pending: wg_packet_handshake_send_worker [ 271.347896][ C0] workqueue wg-crypt-wg1: flags=0x28 [ 271.353008][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 271.353042][ C0] pending: wg_packet_encrypt_worker [ 271.353067][ C0] workqueue wg-kex-wg2: flags=0x6 [ 271.358089][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3 [ 271.358116][ C0] pending: wg_packet_handshake_send_worker [ 271.358138][ C0] workqueue wg-crypt-wg2: flags=0x28 [ 271.363350][ C0] pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 271.363386][ C0] pending: wg_packet_encrypt_worker [ 271.363412][ C0] pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2 [ 271.363439][ C0] pending: wg_packet_encrypt_worker [ 271.363455][ C0] workqueue phy13: flags=0xa0002 [ 271.372031][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/1 refcnt=3 [ 271.372059][ C0] pending: ieee80211_iface_work [ 271.372086][ C0] workqueue phy14: flags=0xa0002 [ 271.376915][ C0] pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/1 refcnt=3 [ 271.376939][ C0] pending: ieee80211_iface_work [ 271.376978][ C0] pool 4: cpus=0-1 flags=0x4 nice=0 hung=59s workers=12 idle: 9 7442 7175 4357 55 9355 11 35 5855 7525