Warning: Permanently added '10.128.0.71' (ED25519) to the list of known hosts. 2024/04/25 03:26:02 fuzzer started 2024/04/25 03:26:03 dialing manager at 10.128.0.169:30012 [ 156.963764][ T5020] cgroup: Unknown subsys name 'net' [ 157.154529][ T5020] cgroup: Unknown subsys name 'rlimit' [ 157.718963][ T1230] ieee802154 phy0 wpan0: encryption failed: -22 [ 157.725646][ T1230] ieee802154 phy1 wpan1: encryption failed: -22 [ 202.571304][ T5020] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k 2024/04/25 03:26:50 code coverage: enabled 2024/04/25 03:26:50 comparison tracing: enabled 2024/04/25 03:26:50 extra coverage: enabled 2024/04/25 03:26:50 delay kcov mmap: enabled 2024/04/25 03:26:50 setuid sandbox: enabled 2024/04/25 03:26:50 namespace sandbox: enabled 2024/04/25 03:26:50 Android sandbox: /sys/fs/selinux/policy does not exist 2024/04/25 03:26:50 fault injection: enabled 2024/04/25 03:26:50 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2024/04/25 03:26:50 net packet injection: enabled 2024/04/25 03:26:50 net device setup: enabled 2024/04/25 03:26:50 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2024/04/25 03:26:50 devlink PCI setup: PCI device 0000:00:10.0 is not available 2024/04/25 03:26:50 NIC VF setup: PCI device 0000:00:11.0 is not available 2024/04/25 03:26:50 USB emulation: enabled 2024/04/25 03:26:50 hci packet injection: enabled 2024/04/25 03:26:50 wifi device emulation: enabled 2024/04/25 03:26:50 802.15.4 emulation: enabled 2024/04/25 03:26:50 swap file: enabled 2024/04/25 03:26:51 starting 5 executor processes [ 205.402971][ T49] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 205.427802][ T5044] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 205.439312][ T5044] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 205.449087][ T5045] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 205.457899][ T5044] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 205.466844][ T5045] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 205.475967][ T5044] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 205.476357][ T5048] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 205.489118][ T5044] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 205.493392][ T5048] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 205.501961][ T5044] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 205.511384][ T5048] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 205.514697][ T5044] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 205.523401][ T5048] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 205.527063][ T5045] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 205.537442][ T5048] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 205.552896][ T5045] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 205.565233][ T5045] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 205.941367][ T4406] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 205.950844][ T4406] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 205.963828][ T4406] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 205.979855][ T4406] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 205.991897][ T4406] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 206.001407][ T5044] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 206.011516][ T4406] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 206.022545][ T4406] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 206.048282][ T4406] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 206.100821][ T5038] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 206.125671][ T5038] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 206.135507][ T5038] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 207.055909][ T5042] chnl_net:caif_netlink_parms(): no params data found [ 207.101917][ T5039] chnl_net:caif_netlink_parms(): no params data found [ 207.522761][ T5054] chnl_net:caif_netlink_parms(): no params data found [ 207.616907][ T5038] Bluetooth: hci1: command tx timeout [ 207.622634][ T5045] Bluetooth: hci2: command tx timeout [ 207.629109][ T5038] Bluetooth: hci0: command tx timeout [ 207.657734][ T5037] chnl_net:caif_netlink_parms(): no params data found [ 208.096984][ T4406] Bluetooth: hci3: command tx timeout [ 208.177100][ T4406] Bluetooth: hci4: command tx timeout [ 208.189232][ T5052] chnl_net:caif_netlink_parms(): no params data found [ 208.210423][ T5039] bridge0: port 1(bridge_slave_0) entered blocking state [ 208.220725][ T5039] bridge0: port 1(bridge_slave_0) entered disabled state [ 208.228588][ T5039] bridge_slave_0: entered allmulticast mode [ 208.237673][ T5039] bridge_slave_0: entered promiscuous mode [ 208.350310][ T5039] bridge0: port 2(bridge_slave_1) entered blocking state [ 208.361090][ T5039] bridge0: port 2(bridge_slave_1) entered disabled state [ 208.368935][ T5039] bridge_slave_1: entered allmulticast mode [ 208.377896][ T5039] bridge_slave_1: entered promiscuous mode [ 208.390115][ T5042] bridge0: port 1(bridge_slave_0) entered blocking state [ 208.398875][ T5042] bridge0: port 1(bridge_slave_0) entered disabled state [ 208.406782][ T5042] bridge_slave_0: entered allmulticast mode [ 208.415698][ T5042] bridge_slave_0: entered promiscuous mode [ 208.515190][ T5042] bridge0: port 2(bridge_slave_1) entered blocking state [ 208.523873][ T5042] bridge0: port 2(bridge_slave_1) entered disabled state [ 208.531802][ T5042] bridge_slave_1: entered allmulticast mode [ 208.540796][ T5042] bridge_slave_1: entered promiscuous mode [ 208.732041][ T5037] bridge0: port 1(bridge_slave_0) entered blocking state [ 208.739956][ T5037] bridge0: port 1(bridge_slave_0) entered disabled state [ 208.747707][ T5037] bridge_slave_0: entered allmulticast mode [ 208.756665][ T5037] bridge_slave_0: entered promiscuous mode [ 208.783257][ T5039] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 208.794931][ T5037] bridge0: port 2(bridge_slave_1) entered blocking state [ 208.802916][ T5037] bridge0: port 2(bridge_slave_1) entered disabled state [ 208.810765][ T5037] bridge_slave_1: entered allmulticast mode [ 208.819748][ T5037] bridge_slave_1: entered promiscuous mode [ 208.919637][ T5039] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 208.957219][ T5054] bridge0: port 1(bridge_slave_0) entered blocking state [ 208.964890][ T5054] bridge0: port 1(bridge_slave_0) entered disabled state [ 208.972684][ T5054] bridge_slave_0: entered allmulticast mode [ 208.981587][ T5054] bridge_slave_0: entered promiscuous mode [ 209.001881][ T5042] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 209.011881][ T5054] bridge0: port 2(bridge_slave_1) entered blocking state [ 209.019993][ T5054] bridge0: port 2(bridge_slave_1) entered disabled state [ 209.027725][ T5054] bridge_slave_1: entered allmulticast mode [ 209.036718][ T5054] bridge_slave_1: entered promiscuous mode [ 209.162854][ T5042] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 209.248049][ T5039] team0: Port device team_slave_0 added [ 209.266645][ T5054] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 209.285119][ T5037] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 209.302947][ T5054] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 209.400804][ T5039] team0: Port device team_slave_1 added [ 209.545418][ T5037] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 209.590531][ T5042] team0: Port device team_slave_0 added [ 209.609312][ T5042] team0: Port device team_slave_1 added [ 209.619563][ T5052] bridge0: port 1(bridge_slave_0) entered blocking state [ 209.627586][ T5052] bridge0: port 1(bridge_slave_0) entered disabled state [ 209.635025][ T5052] bridge_slave_0: entered allmulticast mode [ 209.644123][ T5052] bridge_slave_0: entered promiscuous mode [ 209.702891][ T4406] Bluetooth: hci2: command tx timeout [ 209.708801][ T4406] Bluetooth: hci0: command tx timeout [ 209.711455][ T5045] Bluetooth: hci1: command tx timeout [ 209.730486][ T5054] team0: Port device team_slave_0 added [ 209.769978][ T5052] bridge0: port 2(bridge_slave_1) entered blocking state [ 209.777886][ T5052] bridge0: port 2(bridge_slave_1) entered disabled state [ 209.785537][ T5052] bridge_slave_1: entered allmulticast mode [ 209.794403][ T5052] bridge_slave_1: entered promiscuous mode [ 209.804699][ T5039] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 209.811986][ T5039] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 209.840798][ T5039] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 209.889996][ T5054] team0: Port device team_slave_1 added [ 209.903739][ T5037] team0: Port device team_slave_0 added [ 209.970387][ T5039] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 209.978808][ T5039] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 210.006330][ T5039] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 210.101983][ T5037] team0: Port device team_slave_1 added [ 210.111330][ T5054] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 210.118588][ T5054] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 210.144832][ T5054] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 210.176738][ T5045] Bluetooth: hci3: command tx timeout [ 210.199279][ T5042] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 210.206410][ T5042] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 210.233272][ T5042] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 210.267007][ T5045] Bluetooth: hci4: command tx timeout [ 210.294254][ T5052] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 210.337989][ T5054] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 210.345137][ T5054] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 210.372803][ T5054] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 210.387549][ T5042] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 210.394663][ T5042] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 210.421697][ T5042] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 210.461339][ T5052] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 210.540689][ T5037] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 210.548024][ T5037] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 210.574394][ T5037] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 210.662896][ T5037] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 210.670338][ T5037] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 210.696778][ T5037] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 210.799912][ T5052] team0: Port device team_slave_0 added [ 210.871088][ T5042] hsr_slave_0: entered promiscuous mode [ 210.881972][ T5042] hsr_slave_1: entered promiscuous mode [ 210.904476][ T5039] hsr_slave_0: entered promiscuous mode [ 210.914346][ T5039] hsr_slave_1: entered promiscuous mode [ 210.922816][ T5039] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 210.930570][ T5039] Cannot create hsr debugfs directory [ 210.949024][ T5052] team0: Port device team_slave_1 added [ 210.997368][ T5054] hsr_slave_0: entered promiscuous mode [ 211.009120][ T5054] hsr_slave_1: entered promiscuous mode [ 211.017023][ T5054] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 211.024753][ T5054] Cannot create hsr debugfs directory [ 211.263671][ T5037] hsr_slave_0: entered promiscuous mode [ 211.273411][ T5037] hsr_slave_1: entered promiscuous mode [ 211.282683][ T5037] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 211.290473][ T5037] Cannot create hsr debugfs directory [ 211.368178][ T5052] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 211.375255][ T5052] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 211.401782][ T5052] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 211.522433][ T5052] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 211.530360][ T5052] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 211.556784][ T5052] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 211.795982][ T5045] Bluetooth: hci0: command tx timeout [ 211.801819][ T5045] Bluetooth: hci2: command tx timeout [ 211.807690][ T5038] Bluetooth: hci1: command tx timeout [ 212.101050][ T5052] hsr_slave_0: entered promiscuous mode [ 212.111220][ T5052] hsr_slave_1: entered promiscuous mode [ 212.120447][ T5052] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 212.129697][ T5052] Cannot create hsr debugfs directory [ 212.257863][ T4406] Bluetooth: hci3: command tx timeout [ 212.337629][ T4406] Bluetooth: hci4: command tx timeout [ 212.580515][ T5042] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 212.631498][ T5042] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 212.675907][ T5042] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 212.733829][ T5042] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 212.907937][ T5039] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 212.987699][ T5039] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 213.027204][ T5037] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 213.083407][ T5039] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 213.116330][ T5037] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 213.162871][ T5039] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 213.196371][ T5037] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 213.230388][ T5037] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 213.273272][ T5054] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 213.355608][ T5054] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 213.430190][ T5054] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 213.557971][ T5054] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 213.599715][ T5052] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 213.688997][ T5052] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 213.754955][ T5052] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 213.800411][ T5052] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 213.865781][ T4406] Bluetooth: hci2: command tx timeout [ 213.871660][ T5045] Bluetooth: hci1: command tx timeout [ 213.878790][ T5045] Bluetooth: hci0: command tx timeout [ 214.058369][ T5042] 8021q: adding VLAN 0 to HW filter on device bond0 [ 214.346209][ T4406] Bluetooth: hci3: command tx timeout [ 214.372373][ T5042] 8021q: adding VLAN 0 to HW filter on device team0 [ 214.407028][ T5039] 8021q: adding VLAN 0 to HW filter on device bond0 [ 214.417524][ T4406] Bluetooth: hci4: command tx timeout [ 214.489582][ T5039] 8021q: adding VLAN 0 to HW filter on device team0 [ 214.534250][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 214.542024][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 214.598523][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 214.606191][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 214.685061][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 214.692830][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 214.800941][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 214.808760][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 215.109334][ T5054] 8021q: adding VLAN 0 to HW filter on device bond0 [ 215.215213][ T5037] 8021q: adding VLAN 0 to HW filter on device bond0 [ 215.437700][ T5052] 8021q: adding VLAN 0 to HW filter on device bond0 [ 215.490519][ T5054] 8021q: adding VLAN 0 to HW filter on device team0 [ 215.511960][ T5037] 8021q: adding VLAN 0 to HW filter on device team0 [ 215.611683][ T5052] 8021q: adding VLAN 0 to HW filter on device team0 [ 215.630006][ T780] bridge0: port 1(bridge_slave_0) entered blocking state [ 215.637813][ T780] bridge0: port 1(bridge_slave_0) entered forwarding state [ 215.745396][ T780] bridge0: port 1(bridge_slave_0) entered blocking state [ 215.753174][ T780] bridge0: port 1(bridge_slave_0) entered forwarding state [ 215.768891][ T780] bridge0: port 2(bridge_slave_1) entered blocking state [ 215.776700][ T780] bridge0: port 2(bridge_slave_1) entered forwarding state [ 215.796866][ T780] bridge0: port 1(bridge_slave_0) entered blocking state [ 215.804517][ T780] bridge0: port 1(bridge_slave_0) entered forwarding state [ 215.820778][ T780] bridge0: port 2(bridge_slave_1) entered blocking state [ 215.828522][ T780] bridge0: port 2(bridge_slave_1) entered forwarding state [ 216.103521][ T5052] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 216.114379][ T5052] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 216.188487][ T780] bridge0: port 2(bridge_slave_1) entered blocking state [ 216.196193][ T780] bridge0: port 2(bridge_slave_1) entered forwarding state [ 216.382409][ T5037] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 216.501179][ T5054] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 216.514005][ T5054] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 217.355100][ T5042] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 217.390020][ T5039] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 217.957703][ T5042] veth0_vlan: entered promiscuous mode [ 218.108673][ T5039] veth0_vlan: entered promiscuous mode [ 218.140796][ T5042] veth1_vlan: entered promiscuous mode [ 218.245576][ T5039] veth1_vlan: entered promiscuous mode [ 218.399469][ T5052] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 218.529605][ T5037] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 218.638058][ T5042] veth0_macvtap: entered promiscuous mode [ 218.691257][ T5054] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 218.742646][ T5042] veth1_macvtap: entered promiscuous mode [ 218.775029][ T5039] veth0_macvtap: entered promiscuous mode [ 218.867879][ T5039] veth1_macvtap: entered promiscuous mode [ 218.958106][ T5042] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 219.108822][ T5042] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 219.163589][ T1230] ieee802154 phy0 wpan0: encryption failed: -22 [ 219.170448][ T1230] ieee802154 phy1 wpan1: encryption failed: -22 [ 219.204205][ T5039] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 219.215167][ T5039] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 219.232833][ T5039] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 219.288247][ T5042] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 219.298511][ T5042] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 219.307660][ T5042] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 219.316793][ T5042] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 219.392680][ T5054] veth0_vlan: entered promiscuous mode [ 219.434611][ T5039] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 219.447400][ T5039] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 219.463563][ T5039] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 219.490355][ T5037] veth0_vlan: entered promiscuous mode [ 219.603175][ T5054] veth1_vlan: entered promiscuous mode [ 219.628120][ T5039] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 219.637321][ T5039] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 219.646315][ T5039] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 219.655546][ T5039] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 219.751542][ T5037] veth1_vlan: entered promiscuous mode [ 220.078581][ T5054] veth0_macvtap: entered promiscuous mode [ 220.125859][ T5037] veth0_macvtap: entered promiscuous mode [ 220.178848][ T5054] veth1_macvtap: entered promiscuous mode [ 220.226914][ T5037] veth1_macvtap: entered promiscuous mode [ 220.365005][ T5054] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 220.375824][ T5054] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 220.386015][ T5054] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 220.396741][ T5054] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 220.411745][ T5054] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 220.494673][ T5054] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 220.506940][ T5054] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 220.518996][ T5054] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 220.531667][ T5054] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 220.546302][ T5054] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 220.561120][ T5037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 220.573449][ T5037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 220.585776][ T5037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 220.598411][ T5037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 220.609588][ T5037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 220.621890][ T5037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 220.640346][ T5037] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 220.712764][ T5054] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.722117][ T5054] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.733242][ T5054] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.742707][ T5054] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.804196][ T5037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 220.815074][ T5037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 220.828956][ T5037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 220.840998][ T5037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 220.851243][ T5037] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 220.863169][ T5037] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 220.879090][ T5037] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 221.163439][ T5037] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 221.172721][ T5037] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 221.181905][ T5037] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 221.191026][ T5037] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 221.232455][ T5052] veth0_vlan: entered promiscuous mode [ 221.304035][ T5052] veth1_vlan: entered promiscuous mode [ 221.671107][ T5052] veth0_macvtap: entered promiscuous mode [ 221.811259][ T5052] veth1_macvtap: entered promiscuous mode [ 222.057424][ T5052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 222.069730][ T5052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 222.081126][ T5052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 222.091961][ T5052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 222.104669][ T5052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 222.121120][ T5052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 222.131215][ T5052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 222.141927][ T5052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 222.157166][ T5052] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 222.253143][ T5052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 222.268769][ T5052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 222.281880][ T5052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 222.292600][ T5052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 222.302772][ T5052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 222.313586][ T5052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 222.323782][ T5052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 222.334506][ T5052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 222.355326][ T5052] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 222.584774][ T5052] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.595744][ T5052] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.607150][ T5052] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.616172][ T5052] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 226.263117][ T33] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 226.271346][ T33] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 226.449799][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 226.457922][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 226.540608][ T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 226.549452][ T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 226.691243][ T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 226.700479][ T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 executing program 1: setreuid(0xee00, 0x0) r0 = getuid() r1 = socket(0x800000018, 0x1, 0x0) bind$unix(r1, &(0x7f0000000080)=@abs={0x1f95d27d48731892, 0x7}, 0x1c) setreuid(0x0, r0) r2 = socket(0x800000018, 0x1, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0xffff, 0x0, 0x0, 0x0) bind$unix(r2, &(0x7f0000000080)=@abs={0x1f95d27d48731892, 0x7}, 0x1c) executing program 3: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x5}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000030000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000c8500000001000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='mm_lru_insertion\x00', r1}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0) socket$tipc(0x1e, 0x2, 0x0) socket$tipc(0x1e, 0x2, 0x0) socket$tipc(0x1e, 0x5, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000640000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r2}, 0x10) io_uring_setup(0x17bb, &(0x7f00000004c0)) socket$vsock_stream(0x28, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r4, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0) openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) recvmsg$unix(r3, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0) r5 = socket$inet6(0xa, 0x3, 0x3c) connect$inet6(r5, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c) writev(r5, &(0x7f00000000c0)=[{&(0x7f0000000100)='!', 0xffdf}], 0x1) executing program 1: r0 = socket$inet(0x2b, 0x801, 0x0) connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @dev}, 0x10) setsockopt$inet_tcp_int(r0, 0x6, 0x12, &(0x7f0000000000), 0x4) [ 227.398203][ T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 227.406294][ T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000180), 0x0, 0x0) ioctl$EVIOCSKEYCODE_V2(r0, 0x80104592, &(0x7f0000000080)={0x0, 0x0, 0x100, 0x400, "00c9b3e4e40a93ecabcc14700c1e0ac74f000000001200000000000900"}) [ 227.683454][ T57] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 227.692981][ T57] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 executing program 1: mount$fuse(0x20000006, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) r0 = socket(0x1d, 0x3, 0x1) getsockopt$kcm_KCM_RECV_DISABLE(r0, 0x65, 0x3, 0x0, 0x20000000) executing program 2: syz_mount_image$cramfs(&(0x7f0000000240), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[], 0x1, 0x14b, &(0x7f0000000280)="$eJzszjFLAmEcx/HfdadEaRYYWJAJDR2JaSfWFKSRJGQHhUuTYBcFipFQjka0NQStDpbQJL4Fy1oshbA30eIWOBaPZ4TQ0v77LMd9n//9n9tYbanwAF0HetazmeMTI5cz9j07ejy6+1GrhUW3AhgeODfnH8LAoXgqQOccEPnJDhwcpY3FVDYt3jthQAUQGcWa6AGYsyOiOc3ZpX5T54D6pNm0P1qw36YVIOIwm9j3dQvMi30Tv/s+AeSL3mrlZbvZiPkW7mdkXMa8sxbz1/HT3caVFp0q21wyEsbzHSKS+O7d3/C9+auVdqsZ39LjeiuoacsSUAiE2vprMxYqXEPZtJ0Ce9LgPVa43EoCuJCAm95Z51GyA6iXunpmbKXUv79wJnsAKV9MJV2WctI5PgRZhQQiIiIiIiIiIiIiIiIiIqL/+g4AAP//nptkmQ==") r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r2) fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0) [ 228.160682][ T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 228.168906][ T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 228.282505][ T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 228.290780][ T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 228.361032][ T5230] loop2: detected capacity change from 0 to 16 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007ed, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x43}}, 0x6c) sendto$inet(r0, &(0x7f0000000180)="e0", 0x1, 0x2000889d, 0x0, 0x0) ioctl$sock_inet_udp_SIOCINQ(r0, 0x541b, &(0x7f0000000480)) [ 228.480803][ T5230] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list executing program 1: mount$fuse(0x20000006, 0x0, 0x0, 0x0, 0x0) r0 = socket(0x1d, 0x3, 0x1) getsockopt$kcm_KCM_RECV_DISABLE(r0, 0x65, 0x8, 0x0, 0x20000000) executing program 0: r0 = fsopen(&(0x7f0000000040)='tmpfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(0xffffffffffffffff, 0x0, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r3 = openat$cgroup_int(r2, &(0x7f0000000480)='hugetlb.2MB.rsvd.max_usage_in_bytes\x00', 0x2, 0x0) r4 = openat$cgroup_ro(r1, &(0x7f00000000c0)='hugetlb.1GB.usage_in_bytes\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x9c) executing program 2: lsm_get_self_attr(0x67, 0xffffffffffffffff, 0x0, 0x1) executing program 3: socket$nl_netfilter(0x10, 0x3, 0xc) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) syz_emit_ethernet(0x86, &(0x7f0000000040)={@broadcast, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "120008", 0x50, 0x3a, 0x0, @remote, @local, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "5b29ab", 0x0, 0x11, 0x0, @private1, @remote, [@dstopts={0x0, 0x0, '\x00', [@ra={0x5, 0x11}]}], "fb36eeca6fad50b375a22a584d16ca55"}}}}}}}, 0x0) [ 229.025374][ T5098] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 229.033506][ T5098] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 executing program 0: creat(&(0x7f0000000100)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x100008b}, 0x0) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0x61f285}}, 0x50) syz_fuse_handle_req(r0, &(0x7f00000041c0)="412e450a2a7b9586d1e6e9de257afc4fd60c8de430c0d6348b2cf1db8d070a539de9c1e91a178f9240dbcfe303566018f6c20c55d643a2ed46aaacf49ca491ee2f06184bdb548778a2c56e56f6b40b994419428bbbb9dfa5f9593511ca8ae1c088fb0ee5da72f505000000000000002c04754204f194ae6ceff4570d44496eeffe619998eafc7167d22e1c6aa73e89ad19224e35130a37cf68d5c41ccafe59b4b753a26e06c4306d31d78de6cede97c06e3ca2cc4af66b7548268efa91621ffca2655d2c8f1a9bb019b88fa729cb3d32f72c098c44898d42c42f39feb4faead93980726c236129acdf31c01f1cabb5ca3ec4e45eb5e6e59912792b4976e3f2b560c861d49b539d8e1870040a8cf190a8a767ec067a8048aac53336b44669d3d425843ae80681a7c02a5d5a3d90f355fd4a6ac277e75230d558f0df20cb323cc65e9b5a258cdd669c8a9534e4aff09a8fe89b124748c9e756c28789c2152a5142bc0bb205e339d43bb980b3f04a3c1a424a2a093966b20600a5410e0528fb35937c998eea19f01eaf2f39e16d85563a6737ddab3213ca1832f0afdf891e34a582f6a4ac81fda70ebc3fedac2fb3a492fdb40b91021e5d371d990064cd1f7c2c1a6472dec7505f9a4940057a3e57fd53aa3cd2eb914e073a19b6e925f8553e6875c093c7d19de25861fd9640f0eca4cda0467f12126daa2e0c6df7d4e4babe5a6e59e8391be7700790315b6b8a8aa74cd6d3f054aceaeda79430676b67fe25c9029e0894b413377fc4d8300d9f9338fadd07e4c80cac08113df8971a868458c47c06fff0c1c4bfd48ea583e9e76ef103d42c233b6de10b30612cdbeb6b60a6a4dbbe2da63cc2dd4fb93cac65af3c1279274f4af0e2c5b96e6068aa5b41f7548fb72b0c142351f64446db7425115b89132b5589ee642ebbde655adb2d7d1117456a6e4f2886879b42baf85e05d53e2aceea9c3830673bdc4d081675fe76b994651af9c3f16b7513834fce4654f84558a8308fa677d05bffcc893d9813bf87c5ec520cd66ad58dc06f0c47d253cd36dfec82980fc8dbdcd4b1c037c2b30bef455984f3e8ed19d69e185fe4fbdda2c2517ec9abfbb4841252e650b6bf56fdeca9a4ee3c311de3c6859ec14cc00e95323c57c02fa894d83ea17944f3112fc19a7e11335d7951ec6dd5b4f06fb9b637313a230341ea5da6a7a959e707d0cd5fca60a6649c8df8d6c17e9a49d230e5775df14e4b43aa3420bd0b8814ec7360ab1910e69fab8932f7646d7998bdc2e8ec354c52da21ed83fb7582cb9d37bb95f144974f72c7b0ae7b42945768fa8ec0dd6daba72d05809670506ef1054282201b00906c8af64e3e13a10f180688c96549b2d3d6b04403fd571e7b132891dd4b7cf37aec25ca1e9190c17aaefbc31e059915c12c232fb7097e9fa6f35fbb265c7102db62e2264590c583ea90f1aee3f166af81430d9084eb0c760ebbb16049c9fd1fee6ce33c8ac205e3ac9c275531feadfa4054e0c027c26beb009f54aa72b864d39bb11753f77931bb960276db33021c65671e57b3708bbf979be222e8439d71f58ca87cec7a054517af398a42735b580717377a54f139e2c46813cbb03d98e49c26f4ed54d75e48573cd06145f913f4e313eeee837496dfff75aa722fd8486c45f9c959da12ae48ba4a10712120a203e2476c7b96031d8f8773f68344e6fa21831287655aabbd594e9f272eb1a7315d2d79b8bcd5e63004cd106f80b1e40a5d9e428a01bc58264f4d63c2ee9db6efa70607a642aeb883bf4b9fe009d7f09c16b05a2c9b73573e9019e161ebbdc1fc9b9cd0c5fe1b57adcba2d0f3a767ad59aafa159b3dd181f0601ff95e8af8b5410e56c81ffb8ab35b1e04af35dabf69f08572e69260b72bfd502c5a0de627fd3fee44bf1d4a261bd356056c5739398e3ff161beec1240a089625daffbc61dc5e660c274565477a0ff1797fefff04a98704802ab0674ab72d400686229608cbfd2ca20f4e62495e8b09de9d180c47375bbad72f4474b67d56104b4b466192be60f7aa668fd0a4338b856f114311842ee806d6488ab09098ed9de0e21bcc8b42a5d5713d15eca108fcc7a65d6b414a112524a6e1418644508dd957147a92d4399d13faaf01cacef40549cd11900f9aa32a8333f55796ef25d33c554a308da9797cd0ac25888311b0ac88eff0be7a36ddedcfc2b095abb4d5a6a4edbbad67b70cdf60c7ed0c5e040ced90edb3322ef684332358942ede9191b431c99b3abf8f9c50206479f0ac118c0a99df61fb9c90d846f41caa6a2448fb7e15640965e051c2af4ee72a5cc7c962bacff7019615c10e6c3054e2e5792df3aa6e2c33425552148466a88568cc79b6edebf0107b7d3d24423a665d20c3a1c0f1a6b34eb475bf875912115914cfabcf394f8a096d64e5dc95705074fe5e985497dcf052b9f748b9d4688859c0200fa43719e4722ed6c064c0efa7e07beb2a26fd724b63537fa0eb506365d5c029cd8dce7dd0a1cb9d9058c061739734af6be9e880fe7e28a211a4c368a7babd1107110ecbb384b274cc092b9511c4abde2ddd863162e2739984a9f3c0a76e3c530a27d5e385f4a3b87607b2a944e09d28239661d27719e22c0a657ea383c30859ca29cdb8fbc79bc83e995dcb361743a7e195650c37e570b768a0a1f0b118fa5be9b3c838326343ec5b376d5ee040ee29dfd868cccf9cfa4591151f519cd6e2ae1453a58aa92f90ee5be11ceb8511ab743f399be0a190eeddfd112336866831c3255ef6520d88b2581ea3767f3df01a38d9b4656f2a89c5df41443291a795da45c8a846015cd041bea0dfbe648348b10ae73ce43d9017182792cd9172eee642c549a530cc1f537f9aa70ca63792ba4a86a713ae09b917136e5bf1506ad7f367d8d2f77f47a2318facd109bba9b1327b5db9e4aeffbdcf414db761eeacc227a15cd72aa52c8ede33bdbab9de9aa1e8f470a388013d07f08777e2131bbd4856ab5c1c38d03ef407197ccf24e8b2a8db69e78f9d6623033c453541bb79f9e0be9a55588e2e54fce65fb785467064a146c4bf218068b5e3efdafaf93a98253becaef226cd79468ff1bbe0c9d43877f5cbb5844fd8957f15d3ef208aac11816585cdccf039c36b429d3d7fb634054fd0f09c8abea3746a6b7379142abde26d998ac7e39b94746c60c09f86ddbd7497849d1ef839730672449f35a3c3253666e9fc053ac1c518e44e0b84555be507f7c00fa9e4864b4bf40ac3d93f12001eb780a779e655d0633803268c094ae161a0efd652003d6ac47f9a6c28d866b56233f371627b01e0fe9361dca611a28841968d4e12cb73d49ce08fe25de4a90b2d34607202b20e71f5e1eed38e17d0a2748f548cf61735f4c9cead1cb93b11929d906d65fc60f88e6919b7b5a1014e6d408bce9c8cc832eecf9147708fe451891717d2ed99dee70773feaa97985102abd3dd05c904c28898afe060621db6564887bc4afe158fbe1d819136a1ac1dc9d8674798a93daf5255460b50c34496205834c668db4c764e76ebb6cdaf5fc44b881cc2ae87b4a7cc045143f96b1620abfd0f116e673b335beefdafa1e58d9194e010cb78956044646da5ba853ce981667f2b8e5001c2df437c9d597ccd2be7d2887f5cb7aad0539abb3f9db1c8f5cd4d7d831946ba1c1aa8737c114fec1ac9a82519f57cb48c49b7f62e9eaa89f448df33fb307cd0036c70b490ac340f7d04e14f32bfeebb08a9d5bc7bbef8f231ea09311d4c82cc55c90eb53c6c003cc98a34dd3c4ec2d8b3a655a78e16e908f368733d0a02b36fe963e2d80b5e6f7b2e3aae3013c900c76e4d56e8348bef221f8a642e692c23b12520fb68c793e789eeeceb4efb2097a4d5952d144094cd7be6edc933d257f6230e962d70ba42e1b07ad9eca0ccd60d3d9a6e06b73ccf96a8aa490ed3bd58bf4d79db65355ae145b54be004e464f4dd23fb8b1bf15e13838116083da67186513652608e37c8f847b2bcafb57bcefc7efc8c8182c7d708cce5d14695b4e618e77f8e7be81f27a05e415fd37ac21507a665b2558daee5c0b0859fedfede8c03f181ef5e0ec0da6caa3edf402dd73bcb4026c489a7cca8ab700d3e9f050006c36768a16e8a48e48ed5750b8cdb7ad1fd12d4cc8333d324d6c83905303fa7013fc02553b587544affe38f1a95e0c4c39740d63b6d387fc89b30bd5fd745cb64844b13897ccf5cca135f7d39e03ce8adcda919d86b25b52764b0a0c4f07f88df68868415de13863df84a7e8d355b09cf90e482eb4174fd01f1b371a4dc52f3c89fc3a70c71657aa5d7573ef9acf4d2b0b321c41ff2640515bb43637ba2288ca0bff2e2a3a998ad8294c52f9edfe0a4ee0a3f8ed5b4b5c43319bb9c58dd07ea3237d7bb62cb086e7ea4a81cba2cdeb28794a09c275a704963110b64720bd089e3737ee1a91e348b5e97b63e1724de1fa9f49961d653bbb47b6fa993b035cf59659bcd0306180645162568abf51127845cbe6e37cc3c19b9d69657db4258fa5e8428a73eff6506bff474c2e302ad5559ac8de44c6f0baba5e2e579e7d7f9d9ebf540674432ac11d92bfc9abdc24126888b533f43bd6f293b0bc315915743114a35308a0ee2e710522137918a2b09ddbbc7a2313a2a6b85a1ad26f14dd70072651c8300ddf6de29704b716ce1bc431c66ccc96731f46359a9f6850976c96dcb5e0ee47446f50b6b3ba90d45224066e123ad3854d877c0cdd9325000ac0d6813c30cd43d3e150335601724ca3666458dc4c04f6562296982353e155d5255c9008c0b46d21a678c8fcb3aa8d6574476e0458eb0a76a6cb50f929ed218cc4654cb4f95fb3afbc2548b74acc312563375a19e55d488599488dfed4dd31b39f29ad61dad343dfca3b45b316a34e7a7bebd2b0f562a9e69848d13fc80a4fa52d0f17bd15d9e1fd39a7dcc86128d14493805d105a745673bddea68ca74ac09d95cc7412d5be2cbd0a247a81dc9e148111e22cdf3375805469226ca3538f960a6ba6aa0eeeb87c784ffb1bfc09180a61be3c7c535fc6d593c3b3f4de21b8c3eccc9021e80fb07dce0aeb3b023bd55f24356f646791ba80e5ca21ac092a069ae0a22cfefc08c23cc7aa69b570bd17cce9de15871d363f167288f99f04761caa67f12c949466493f661d39ee4280c955446ff5a9bb14f2d1ae21cdb91a5868e0c52097cf380f571935b140562922763f1b79c3709b949c57a00b08828ce9e685f6b234b5fe3c62d9feb249ce75e81f5efd556c14d5da24dc0554723fdbe52659969a39f470e82c50c4777c908628436e31177af1125d5f70ff627462247e5bc20c47ef75f369174586d43d42f7eefdd47fefa745badebca2a881ccc018ea411cc8a7a0881422bee8704bb98e6bea9fbec63441fb45d7ccfd436909b57a2b60b788e15bda3ca7663b19bd84d0879deb639f10def9a99d42a4b9a4fd7fecbf6d2e7598678307ba9a5b6f143c27cf1ca41e3c904007bb762cd5df6e63c4cf422c2ba959e53bd8e5664cf5df6a91a4bc8cebc52b22f30060fcbc5ead53d38eabd160c1da4cab8aa95c3640ffd78074aa2cbb05cb8ea90a0c95a4a1b2be1ee94f238000f1faffa069d87039f13f5f84ff368aec5a0b10020232b9fc954a6c22573ef48459e574d48a4845837e1d6ef386738ccedd093d4d5bf3a3f790c875ba7449d03397642feb71100f2c25ab2cadf0b0802544a2095a51b19cdece623b17d420b173a99c081f8e229b6de3c680d6bb39bb98b479517d77cca581b81cf856753a44ebd64cff111fb8ca37ea45d217a3fca44a083e6c35b0fed9f8f7631178d15e88f86c85f1ce68c900afdd1f7e5b8bd4ef3f58c447b77d3befc49180df7a5eb2ae8ae33b4ef573f3a425da8a60cde84d8eeae6d6399b9fbbfa0fa8d448b25c7f79b7554d0b02b0decbc74ae8560f630af596313fb33d442a410061ace0aa7a440d5e31ca8bb2cc495c4f0b672edb011b0c5f16781836df7f4af8329143d5a1a99d7b18ef9f774c4199d635848cedebac82637a03a189c65bf667503737c75b6639ac65ad424ca475285437e6f19830b36549f607ffc387c8b11a34a838159376a6335afaa045bd2bb04e279dd72436331d07dfbd72e2436b27f0df23a266fd15cf56d1a9e93aaac8901cfe49a3219ae36c5c65c75e5c708fb82cac4d6a50726509ec3a7d32d54cf584ae353a5bff75a6de77a0b240cf8a0a72817c9d37699ca89c96e0e0d96a7665ac3a7d1febca1a1d79e2cbde8025c271360e2f90048b2d9fd56f45c013e001dad4b7785be69dc01f8a954ef7a84455986fc5c9d5167d91808efdb4476ed79f99563d887cfd4e99809d9e388501dea228cbb3cf3770082dc566455251fd9c2c742963c33500618c6ec99e0bef007408a0462a081237be4c6e5db0258d4be5fc9cf63fd1ace1f4166c053b0fb84fe24917da1255cf40bbb1b45644f6a7699cf802a35a932c374b1d62013e6afca3787627469994c02f622ab877ed5491fc2a89eea60e4e1628da89e3ad600ff6442e4ebf20e47304176b6a1703c094b3cf6d7fbbddd8d8fa5a00f28b4d8f43d88487e9d4531071512f2027198714a8d1cef126775547fc74f2a35840510f325e50361be76557767560055e084f2ecaefa0dd8ca8215301a7a887d2eaddaeb1f5c3dfdbd2cc1ba5f02d4426b98c0f861c5f724405758f442560ea6cd1d953456cc4aac6642ad61c03dbaffc2364d8ec2ef9f483c70355139d1fbd9617ab3c7eedf0b8963c1cfdab769180db43c416a90d9fdf3fd0eb2f81187642b4e2a09d6462d27527fdfda31f7b262501749dcfc6c184983f9923424131d05cc811cacf5c2c87e8e6f135349e68cde0e8997bf1dde248e5124d5dca2681abdbe58d327a8edd585821f03fdd4515728f1336495ba25c9bba56a3f706d60c35cbd0b40d0ac0583a981f9af08510ed8ed0a726e5472f8995af3837fbf1e89587633d2ef944868a153919165778e963710872af12faf96c0919c638e5affa97104471ba6e178d27602f96b9546ebe52190d91be245be08742b96389080676a566d3229e593e4f56a76ae4c58113c6adc1088703b1b92dafe32a5600e14ac1e71df829dfef425911f16a2b91f693599ecabf93065c6c4f5fefca8d4ed095599113529f65d9120d5252f577af95b404979508c343df54e4d239720e7d3a861f1dcabfa69e12d655c8a026c10a4df279b139fd222e561d205ac9b45c1054f8699eca594fb23886e0de565186597766dd5e40f74a423d5708dac254f4172f1089270988fb18715813f13ee4d131b64dd517c7e77f27f804b229f5339ac2f483b14739ac33a9645044d3010bd77ed18fb117f7b11bb51c4ed683b59e28bf25a58f123dfbeb1f0f21f03d9b57d8e61d59b311037a5b757b03ca5c95e0eb73922c6918530c99de4d6733640f2b8d13bebce31d4f5e27aab201101e48cde23a0d7e87b9511949d812e3187ee5ff11bc5858c022ed7b00790eba32f9ef7e134ce5f73a01269ca971b40e62133eca9d596a768686d6390b2c74602f6dc597faec3ed9d9658102d99c9624c1a97d00d63853578afaccc7e30a77fe054ebc23eec45f608f996fd015cd6bd50a111360f0790eff6ffb1ea59d13c8e29480bd96217188f97e53a1f5d9eae0a2badb4fea52f2bb4f8cb04d0afd99e7371a978a7d7ef473f77ea6738ff84af655313a12db24cff692ec7e282245ae9a42338db814593448f7115df3dc3f4e2faa2c2fdbd68f679d6aba01a15031347bb17d8bf8f1fad0ecf365e9dcd32e69803c5c05f4b47adbf8a21af7e9fb327f267df1c914486389a9820edf0a03bde6ef388c255761e439b2f7e1f9c1c3c95bd30c502197ab37f76b52f0d0675f366e919be19329853767bba34a540fb75bcdcc9596a4cda254a660e11bed5af9d8646ac4b7d6d7aa5d7c0005879b6d08058a56c3d3a4d3d401b883153fa7f2f6a6d34dd010f6b9e7b4e457b9ff5a5802d7723abb35f9dca0afc10f6791824dbe0a7725d534e7753445b7268d90145b6438b93fc475f44d5d678d79da6c5770f3a9106f3cffbabe4b88cbe7eda9b8a495be4f6717b0fbee6fec78c86031b6d878d47e357b2089de3e6dd19a265552553d1f7da53884ef84d0eebe782791c48a9c68a28d8ea3bb70c922b01dc20b2cd05cfb276e326651398f766f5faaea54a41da597cf6b50f3d5ebc634185b99069126b8d935c6bc42c47f2109de42091ef4ade3d87cc44aeb78709255501e64f34ac2d4b2725cf7777315f8ca9424bc9d61a896a93500faa6cf5a5aee1fb888e17b47a38a667be2ffa3bae46afa88bfd8b5b6e1186d6e41b9a4e490591043372c23f36fb48d80caff74cc349adc92bb25f701738c809ccf74c47afa193795ee67bc58ea7fd85542fa7e70218490fff212163401cfde016df2f42496bae403d5391e53fe200f758bbcdead0fe72c77861889b9632a257229c35bdfe8fa78375b4f5c768b9c60cafbde1f00aff6ca1879f6472f28001f5f13d4d9d6c3a90e04d8df09873550daa8262d39efbe96a79c697fbcc9a7f27c9f6d782d5d5f6d024b291376e9cc40d902f809072e1f0f2c2ab88ce3d074e88461f5971853e7be749943ab6e25e25e8afa5042dd73407f49b50841c7782c54eece62ec2beef1f16caf1ca5989427bd2726ca0fee33e303702e9892e4382e92c3f3a03a6188f39762db81819c7e12b424be8fd964dcdbfbac00139e8c5a6200506f13f484ac34ef3d26e7cadd53cf402117419c1618205bfa5382486094bd55448f2b1aa4dbec2289189b601b1bbf5792b2a641c6f5dd19cf24abc72fc5264cf11f6b44a4929267a02cd1de1b602b9de65a6c06640aa0f76109baa90d66eeb17295b1711365b7d6835a2dd55b7fe868c59453613240643c847a5b48d27897a58dda63e579c1bba58350550e147b190f0a2c9a5ce719d627ce3302028b4b6801bbfa8cd74874ffba35817c0eca034d19210950796807125fe6065dcd47d7c870ed2db5c00cff235e4154e2d89ec2a09a87551f9b7ca25d519b5603c0c33d2cf72878199ffab567fc5e093529b89d1163587f3564ba8291d2d96cf9762e7f568e786ea90849f6312c1a10f45d61600cd45c48e6870a7d76c913f9c4497374fc04401cbd11f7710740148234fe8f041f24d0278fcfd48846e6aa49f05016fc332dc5d46b4a26574fed5c0751cebb9f7ab4cdbc1ee011d82d6ef95c52c9df8eedac3ab5cf30805f23d88d4f707601f8e6c606b58f2fe234e948d6756d430a5c4ec76a33874886c8fb484059b47a9bd198a61a1896419288a9e81d0969dec778a53e8233f0f63bd0134e5f29825e7817e7c8ccb7d9acd8f86ac9d3af78c43df3036d7934dd294f2bb12063bee52c547d27a218145befb0ca96cbfaabd39fa245b51c39f4cd4cf8db105f9dc46a7aaa8f7d06fa208120ce1ac49326179618fa2c8596c44e174eb7a141056b1d17689c10dee089c8b0867b8a757ae12251bbd68db5fba2be341275fb6ee379309f5cde9b31242b0b2bac44da74776fac141936bd96e3177161f057c820a8c22cca8cce29b158eb55aed0260253fbee70a6dd281d9fca23e0b0a38d46c76a95e1262f1cafcf0fc37b52e649a1ba1e2c0f97d10bbf4d2b5632cf340bce56736071d5885ec9b4e17910744d3e63e2ca6deb21e43fc21e89c6865d3ad424ef4a14efe8843ff3168c99ee395400dcc8755719d290c567c95a5e7d28ec1190ceee240084d444265cc801cd960f69b368359bbf06b8a4ec23b47c7bf9d4b16c701a1c4fb9e81abb55bf49d450b566ce03de939fc6f5c51291380086f8c995cdd4fa15a325601c4846a69f15c77f55c900270bc9ea5f406480cb0e3e89bc869fe8b7cec4fbef7e76283d50c25ab1b4d34d093a7df062990a925a9c44aa2661abd7d381a4d6cdb64821ef624dd51b72e99af914bca2f80c25b82ac6945df7c7582e6d0ce2cd073e35f1fc120a68ba210410db64592a9aa319b30f2b818c495750e1cea0610e27d52be31e52e501a3bd51b501bc51c2ec8592f679b6e55b9aa58d513fd2bebadc83ba76eb45e5676f130193e9a666b8c8132c9f5141681fbab324b555c5c890d488ac2dd00feead0a20fbd8a46391438e3193edc6fb89161cd864fca98f4f39a2893c933dcd13bc8c5d5a548d24862e8161c0fad7f33aca8c86791d620815fe3f0daddb5defd933d0c10097a7a98e67625420b6c0db7c3e17ab07ea64e6f0f53fdc670799e06a2e3a871d6be363a2639e35339361311e0f528cc433eacea4f79bf217108c7b1d657840253ffdea18bdd1f93cdee63e7a9b8dbcb4ee06162b253e09ea0641f2771bd9823dd210905e9ea495f43194bb471cdeb690e8890b03b50835d53dde1b572dd123ccc8507bb57a45e46c0efb8fb3d5596bddf9782d86dd911636eae2cf64b5829cf8893faf789be3fa22859accf688f5b5da6c29cacc96d477e23b63cc934f685b6e42e1655c9a9b94d6d78402de22b8d9776e3915391aa258e57467d770d65480ba2f6a94b0337965a8c659c42b4e90b14da4697d0c0a6d74774c94c52d8ecb694eee747bdaa6c3a6d60739db18c6446090eebba72e62ab88b0e8b88e728ba8cb133d8524eda89a2bff1c8414da3edfa6f83788331c8a7e5a8af2dd3682d4752190a3c689949abdad8350111373e7fb46151f54a10f79d91940e37efb05f9f157bddcfacf018b65a38ab614807c34a2786af4a1d48c4d1c1abd31815715f9d1b103992207fc664f12c82fd923c57d8e7cfb9f4af55182318d055c704865cf484206d60e34cf7fe9b6ce60b1772c5c7cdacb6695227d80da18ec1f98a434b1aaf9c6b6d082f5663aed2bf267e559dca6b93d3ce34273846fc677f529690482df0a8f782b8ad7269f344f5f2b4d320a7ce2d2fa02284f8db634dc930c3e2b9a629245364acf35d41e9a14c88efde4e742ef1ea4b43d0caf2e70d4a617278823e6403934524debbd933e7676e441a48f630dc8bcccd55d9032d6bf3dea97d1669c39fb865b0e619eeb3f5461e517000f5aee3ef2abdb87d3a76b88e140eb4644a9fbddbdc9e20972cdfacf00bffa3a1ca5f84122c2ebc54067cdaa23967eaeb7bbbfe44e5843382b834fae1f62a066688595e4ee67c7ff9858672355abf7893ebeb4bcf88a62b2237c6e6cec9aebe3f28bfc310ced3a590e88d4bd0f53289206deb9addbf6f3c02115ce4980dadfc112683ae250c2d438fd9c0f2a090dbf122a0072828db798bdb868dcd47384dd3f5eeebc0307a5b268683cd51f312e8f02b5a7746b11a97ac43287d9b9765f03c720503cfe6e0117660a4c00d67895224c4d42b032000a10d7a743054758a8f54941fd5eaf72498b678d1579b3de4e5518f90f1e3d32517d09d7f5da9d180215e66218e9dd64036819cf12638ce82712a6cc79a9ddb36e86814b797d72c2bc58b18ba439e99965f745b4fb7de2878e3186e3e7b835c746b0935f6c67e92e3770bd8d5eb4f66d8175ceb7850e418c55e574db891639aa77fc62bc45dcb734681ede8484d4d4109a9adb8c3d00", 0x2000, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20, 0x0, 0x0, {0x0, 0x9}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0) io_setup(0x202, &(0x7f0000000200)=0x0) io_submit(r4, 0x2, &(0x7f0000000780)=[&(0x7f0000000440)={0xfffffffe, 0x20011004, 0x4, 0x1, 0x0, r3, &(0x7f00000000c0)='!', 0xb7f40}]) dup3(r3, r0, 0x0) executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0) sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x1c, r1, 0x5, 0x0, 0x0, {{0x4b}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) [ 229.343160][ T33] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 229.351536][ T33] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 executing program 3: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=@framed={{}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x69}}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000240)='sys_enter\x00', r1}, 0x10) epoll_create1(0x0) executing program 2: open(&(0x7f0000000100)='./bus\x00', 0xc0341, 0x0) mount(&(0x7f00000001c0)=@nullb, 0x0, 0x0, 0x1000, 0x0) mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0) r0 = open(&(0x7f00000002c0)='./bus\x00', 0xec902, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000080)='j', 0x1}, {&(0x7f0000000300)="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", 0x800}], 0x2) splice(r1, 0x0, r0, 0x0, 0x800, 0x0) executing program 4: r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040), 0x4) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'ip6gretap0\x00', 0x0}) syz_emit_ethernet(0x1e, &(0x7f00000003c0)=ANY=[@ANYBLOB="ffffffffffff84"], 0x0) sendto$packet(r0, &(0x7f00000002c0)="05040800d3fc030000004788031c09102f28", 0xfce0, 0x4, &(0x7f0000000140)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @multicast}, 0x14) executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x112, 0xe, 0x0, &(0x7f0000000080)) [ 230.006867][ T28] audit: type=1800 audit(1714015636.943:2): pid=5252 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1953 res=0 errno=0 executing program 3: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10) r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0) fsetxattr$system_posix_acl(r2, &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="0200000001"], 0xfe44, 0x0) executing program 2: r0 = fsopen(&(0x7f0000000040)='tmpfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(0xffffffffffffffff, 0x0, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r3 = openat$cgroup_int(r2, &(0x7f0000000480)='hugetlb.2MB.rsvd.max_usage_in_bytes\x00', 0x2, 0x0) r4 = openat$cgroup_ro(r1, &(0x7f00000000c0)='hugetlb.1GB.usage_in_bytes\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x9c) executing program 4: rt_sigprocmask(0x0, &(0x7f000078b000)={[0xfffffffffffffffd]}, 0x0, 0x8) socketpair$unix(0x1, 0x1, 0x0, 0x0) r0 = getpgrp(0x0) fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000100)={0x2, r0}) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$unix(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="b5", 0x1}], 0x1}, 0x4041) executing program 1: socket$nl_netfilter(0x10, 0x3, 0xc) syz_emit_ethernet(0x86, &(0x7f0000000040)={@broadcast, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "120008", 0x50, 0x3a, 0x0, @remote, @local, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "5b29ab", 0x0, 0x11, 0x0, @private1, @remote, [@dstopts={0x0, 0x0, '\x00', [@ra={0x5, 0x11}]}], "fb36eeca6fad50b375a22a584d16ca55"}}}}}}}, 0x0) executing program 0: r0 = syz_open_dev$video4linux(&(0x7f0000000340), 0x0, 0x0) ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(r0, 0xc040564a, 0x0) executing program 3: syslog(0x1, 0x0, 0x0) syslog(0x9, 0x0, 0x0) executing program 1: r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r0}, 0x10) bpf$ENABLE_STATS(0x20, 0x0, 0x0) syncfs(0xffffffffffffffff) executing program 2: r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000005640)=0x1, 0x4) setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c) syz_emit_ethernet(0x1e, &(0x7f0000000e00)={@multicast, @empty, @val, {@llc_tr={0x11, {@snap={0x0, 0x0, "c9", "000100"}}}}}, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000480)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000000000)={0x2, 0x24e23, @loopback}, 0x10) executing program 0: pread64(0xffffffffffffffff, 0x0, 0xd, 0xdffffffffffffff7) r0 = socket(0xa, 0x3, 0x3a) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'bridge0\x00', 0x0}) setsockopt$MRT6_ADD_MIF(r0, 0x29, 0xca, &(0x7f0000000000)={0x4, 0x0, 0x0, r2}, 0xc) unshare(0x62040200) r3 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$IPT_SO_GET_INFO(r3, 0x0, 0x40, &(0x7f0000000000)={'mangle\x00', 0x7003}, &(0x7f0000000100)=0x54) setsockopt$MRT6_ADD_MIF(r0, 0x29, 0xca, &(0x7f00000000c0)={0x0, 0x0, 0x4, r2, 0x6}, 0xc) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000080)={'syztnl2\x00', &(0x7f0000000000)={'ip6gre0\x00', r2, 0x29, 0x7, 0x6, 0x5, 0x28, @remote, @local, 0x8000, 0x4f, 0x7f02, 0x1}}) executing program 4: syz_open_dev$dri(0x0, 0x1, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x4e24, @local}, 0x10) sendmmsg(r0, &(0x7f00000057c0)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000004c0)="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", 0x136}], 0x1}}], 0x1, 0x0) recvfrom$inet(r0, &(0x7f0000000280)=""/187, 0xbb, 0x0, 0x0, 0x0) sendto$inet(r0, &(0x7f0000000340)="08e21f25ebada9680f62f3c84356d108665ba61afeb61022ef19e8fd64ad0af24041b3f73898c6241f345828fca1d3587697f76bfb55f22aaeb66ef463b7a8ea2d506b792238c1538fd1086001a3d5f12e8eedee075af21225c982041e9077e3f10fc4cd5f41aaf6f8c93b1d98d373c2d89495df1339ab81c93bea70069faf579aeab40891c775fe165f513d1f47336f01db2371d499414db2276145355940f1f4a9e2a63c86a026079c3184c270e977deee83d6c7ff45caba74a9b6dad4d93c6e62b142b3009d410de5d8", 0xcb, 0x0, 0x0, 0x0) shutdown(r0, 0x1) recvmsg(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000a80)=""/4096, 0x581}], 0x1}, 0x0) executing program 3: bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) syz_open_procfs(0x0, &(0x7f0000000440)='attr/exec\x00') bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000008c0)='sys_enter\x00', r3}, 0x10) r4 = memfd_create(&(0x7f0000000040)='\x00\x00\x00\x00\x00\x00z\x9b\xb6\xe8t%\xfc\x02\x00\x00\x009\xa0\x8b\x14d\xa2\xa1\xa8!\xe8\xd1\xa0\x8a\xce0\x1c\xb7\xf1\xccm\xce\xd4\xdb\x89\xe5\x8f\xe2\xb6\xd6\x9cF\xbd\xff\x14\xec\xd4D\x8a\x1f\x1b\xf6\x18\xf3\xdc\x91\'\x06\\8\r\xfc\xeeG\xbeQ\xee\xf0\x99\x1e|C\xd8\x01\xd0\xf5\xbb}\xeb\x86P=\xe51\x9d,\xb7\xe6_M\xbe\x19\xea#\xff[\xd1\xc3\x9a\xa3\x1b\xf9\xe9\x1d \xce1\xc9\x9f\xb0\x14\xc2\xeb\xf9\xceE\xad\xa4\x92\f\xef\x87g\xb6\xabW\xac\rP\xf42\xb7\xc8\xaajnW\n\r\x802\xd7\x1b$\x95tO*\xf4\xae\xb8\xb8m\xbf\r\xd5\xbf*\xfd\xc7\x85\x1b\x8b\xe5\x97j`c\xe0\x88?\xda\x8a#t>r\xae\xe8\xc9)', 0x0) write$binfmt_elf64(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="7f454c46020000000d0200aa1e1c170003003e"], 0x3c) execveat(r4, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) executing program 2: lsm_get_self_attr(0x67, 0xffffffffffffffff, &(0x7f0000000040)=0x4a, 0x0) [ 231.637939][ T5277] bridge0: entered allmulticast mode [ 231.953928][ T5281] process 'syz-executor.1' launched '/dev/fd/9' with NULL argv: empty string added executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0) sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x1c, r1, 0x5, 0x0, 0x0, {{0x4b}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) executing program 3: r0 = syz_open_dev$video4linux(&(0x7f0000000340), 0x0, 0x0) ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(r0, 0xc040564a, &(0x7f0000000000)) executing program 2: rt_sigprocmask(0x0, &(0x7f000078b000)={[0xfffffffffffffffd]}, 0x0, 0x8) socketpair$unix(0x1, 0x1, 0x0, 0x0) r0 = getpgrp(0x0) fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000100)={0x2, r0}) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$unix(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="b5", 0x1}], 0x1}, 0x4041) executing program 0: r0 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$inet6_mreq(r0, 0x29, 0x1a, &(0x7f00000000c0)={@loopback}, &(0x7f0000000040)=0x1b) executing program 1: socket$nl_generic(0x10, 0x3, 0x10) openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$nl_route(0x10, 0x3, 0x0) socketpair(0x0, 0x0, 0x0, &(0x7f0000000000)) r0 = socket$inet(0x2, 0x3, 0x33) getsockopt$inet_mreqsrc(r0, 0x0, 0x53, 0x0, &(0x7f0000000080)) executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'wlan1\x00', 0x0}) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000340)={'wlan1\x00', 0x0}) signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0) sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000100)=ANY=[@ANYBLOB="98030000", @ANYRES16=r4, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r5, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c090000560333"], 0x398}}, 0x0) sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="2000000010000100760100000475000000000000", @ANYRES32=r1, @ANYBLOB="00aa"], 0x20}}, 0x0) executing program 3: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000010300)={0x3c, r2, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_DEBUG_MSGMASK={0x10, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8}]}, @ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x3c}}, 0x0) executing program 0: capset(&(0x7f0000000c00)={0x20080522}, &(0x7f0000000140)) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000000041}, 0xc) executing program 2: open(&(0x7f0000000040)='./bus\x00', 0x44842, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)) r0 = gettid() process_vm_writev(r0, &(0x7f0000c22000)=[{&(0x7f000034afa4)=""/1, 0x1}], 0x1, &(0x7f0000000000)=[{&(0x7f0000000400)=""/4096, 0x700800}], 0x1, 0x0) [ 233.581080][ T5306] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. executing program 3: bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f00000005c0)='percpu_alloc_percpu\x00', r0}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, &(0x7f0000000880)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) executing program 0: r0 = syz_usb_connect(0x0, 0x24, &(0x7f00000007c0)=ANY=[@ANYBLOB="1201000064172f2057155081ed29010203010902120001000000000904"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) syz_usb_connect$hid(0x0, 0x3f, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000406a05014000000000000109022d000100000000090400000103000000092100000001220b0009058103"], 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000400)={0x2c, &(0x7f0000000000)=ANY=[@ANYBLOB="000001"], 0x0, 0x0, 0x0, 0x0}) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10) syz_usb_control_io(r0, 0x0, &(0x7f0000000900)={0x84, &(0x7f0000000480)={0x0, 0x0, 0x6, "97c061c7520b"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) [ 233.758587][ T28] audit: type=1800 audit(1714015640.643:3): pid=5310 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1945 res=0 errno=0 [ 233.761251][ T5306] mac80211_hwsim hwsim11 wlan1: entered allmulticast mode executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x1c, r1, 0x5, 0x0, 0x0, {{0x4b}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) executing program 4: r0 = syz_open_dev$video4linux(&(0x7f0000000340), 0x0, 0x0) ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(r0, 0xc040564a, &(0x7f0000000000)) [ 234.607407][ T42] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 234.897548][ T42] usb 1-1: Using ep0 maxpacket: 32 executing program 3: mount$fuse(0x20000006, 0x0, 0x0, 0x0, 0x0) r0 = socket(0x1d, 0x3, 0x1) getsockopt$kcm_KCM_RECV_DISABLE(r0, 0x65, 0x8, 0x0, 0x20000000) executing program 1: r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x0, 0x0) ioctl$I2C_SMBUS(r0, 0x720, &(0x7f0000000100)={0x0, 0x0, 0x401, 0x0}) executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000010300)={0x3c, r2, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_DEBUG_MSGMASK={0x10, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8}]}, @ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x3c}}, 0x0) executing program 2: r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x2d) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r3 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000040), 0x4) close_range(r2, 0xffffffffffffffff, 0x0) [ 235.197135][ T42] usb 1-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed [ 235.206620][ T42] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 235.214858][ T42] usb 1-1: Product: syz [ 235.219440][ T42] usb 1-1: Manufacturer: syz [ 235.224277][ T42] usb 1-1: SerialNumber: syz [ 235.339730][ T42] usb 1-1: config 0 descriptor?? executing program 3: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$KDFONTOP_GET(r0, 0x4b72, &(0x7f0000000400)={0x1, 0x0, 0xf, 0x18, 0x144, &(0x7f00000015c0)}) executing program 2: syz_open_dev$dri(0x0, 0x1, 0x0) r0 = socket$inet_mptcp(0x2, 0x1, 0x106) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x4e24, @local}, 0x10) sendmmsg(r0, &(0x7f00000057c0)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000004c0)="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", 0x136}], 0x1}}], 0x1, 0x0) recvfrom$inet(r0, &(0x7f0000000280)=""/187, 0xbb, 0x0, 0x0, 0x0) setsockopt$sock_int(r0, 0x1, 0x21, &(0x7f0000000040), 0x4) shutdown(r0, 0x1) recvmsg(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000a80)=""/4096, 0x581}], 0x1}, 0x0) [ 235.866888][ T5315] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 235.882736][ T5315] misc raw-gadget: fail, usb_gadget_register_driver returned -16 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000380)='mm_page_alloc\x00', r1}, 0x10) r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0) fsetxattr$system_posix_acl(r2, &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f0000000200)=ANY=[@ANYBLOB="0200000002"], 0xfe44, 0x0) executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, &(0x7f0000000140)=ANY=[@ANYBLOB="1808000000000000000000000080000085000000d0000000a50000009700000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) r1 = dup2(r0, r0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10) munlock(&(0x7f0000004000/0x4000)=nil, 0x4000) [ 236.350928][ T42] rtl8150 1-1:0.0: eth1: rtl8150 is detected [ 236.368124][ T5337] syz-executor.1[5337] is installing a program with bpf_probe_write_user helper that may corrupt user memory! executing program 2: syz_emit_ethernet(0x0, 0x0, 0x0) executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = open$dir(&(0x7f0000000080)='.\x00', 0x0, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) r2 = fcntl$dupfd(r1, 0x0, r0) fchmodat(r2, &(0x7f0000000040)='./file0\x00', 0x0) [ 236.368652][ T5337] syz-executor.1[5337] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 236.739477][ T5098] usb 1-1: USB disconnect, device number 2 executing program 1: mount$fuse(0x20000006, 0x0, 0x0, 0x0, 0x0) r0 = socket(0x1d, 0x3, 0x1) getsockopt$kcm_KCM_RECV_DISABLE(r0, 0x65, 0x8, 0x0, 0x20000000) executing program 4: r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x0, 0x0) ioctl$I2C_SMBUS(r0, 0x720, &(0x7f0000000100)={0x0, 0x0, 0x401, 0x0}) executing program 2: socket$nl_route(0x10, 0x3, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000040)='net/anycast6\x00') r0 = syz_open_procfs(0x0, &(0x7f0000000080)='fd\x00') r1 = syz_usb_connect(0x0, 0x4a, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100005520f010402038b1420104000001090238000100000000090400000371055900090582eb1000000001020009050276"], 0x0) syz_usb_control_io(r1, &(0x7f0000000080)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) syz_usb_ep_write$ath9k_ep1(r1, 0x82, 0x88, &(0x7f0000000240)=ANY=[@ANYBLOB="0466917de0f4d5a1d49b7a347fe2b84536a0e61b43d0e89c09fd5e51524fa3c5d890d0f2c0a3db833cb7994c15d429df553e653fcfb242cec4abd563e61bc66a400d472162832448d91904029330e9ea233915286e6e55a8670cc0195b8ffa98b9a4df353f47472c2ba6279449a5220c9f", @ANYRES64=r0]) executing program 0: socket$inet6_mptcp(0xa, 0x1, 0x106) syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x1018e58, &(0x7f0000000000), 0x6, 0x5fd, &(0x7f0000000600)="$eJzs3c9rHFUcAPDvzCYxaaNpRcQWxYCHFqRpUotVL7b1YA8FC/Yg4qGhSWro9gdNCrYWTMGDgoKIV5Fe/Ae8S+/eRFBvnoUqUlFQ6crszrabZDfdttmdNPP5wGTnvZnd9747eZn3dvJ2Aiit8exHGrEj4taJJGKsZdtoNDaO5/vd/OPKyWxJolZ78/ckkjyvuX+SP27NE8MR8f3hiMcrq8tduHT59HS11vBBxN7FM+f3Lly6vGf+zPSp2VOzZ6f2vbT/wOTLU/un1iXOrfnjkaNvPP3ph+++OPdDdU8SB+P44PszsSKO9TIe43ErD7E1fyAiDmQrbd6Xh80mCKHUKvnv42BEPBljUamnGsZi/pNCKwf0VK0SUQNKKtH+oaSa/YDm2L67cfDxHvdK+ufGocYAaHX8A43PRmK4PjbacjNpGRk1PtvYtg7lZ2X8d2Xnl9kSyz6H+Pv20RlYh3I6WboaEU+1iz+p121bPdIs/nTZWD+JiMmIGMrr99oD1CFpWe/F5zBruZf4W49DGhEH88cs//B9lj++It3v+AEop+uH8hP5Upa6c/7L+h7N/k+06f+Mtjl33Y+iz3+d+3/N8/1wvd+TruiHZX2WY+1fcnBlxi8fH/m8U/mt/b9sycpv9gX74cbViJ0r4v8oCzbv/2TxJ22Of7bLiYPdlfH6j78d6bSt6Phr1yJ2tR3/3OmVZmtrXJ/cOzdfnZ1s/GxbxrffvfN1p/KLjj87/ls6xN9y/NOVz8vek/NdlvHNsWtnOm0bvWv86a9DSWO8OZTnvDe9uHhhKmIoOZrv0pK/b+26NPdpvkYW/+7n2rf/Zb//V5e/zkjzT2YXzr91+manbfdz/FsuJt+qdVmHTrL4Z+5+/Fe1/yzvsy7L+Ovti8902rZW/CMPEhgAAAAAAACUUFq/BpukE7fX03RiojFf9onYklbPLSw+P3fu4tmZiN31/4ccTJtXusca6SRLT+X/D9tM71uRfiEitkfEF5WRenri5LnqTNHBAwAAAAAAAAAAAAAAAAAAwAaxNZ//37xP9Z+Vxvx/oCR6eYM5YGPT/qG86u1/1S2egDJw/ofy0v6hvLR/KC/tH8pL+4fy0v6hvLR/KC/tHwAAAAA2pe3PXv85iYilV0bqS2Yo32ZGEGxug0VXAChMpegKAIW5felfZx9Kp6v+/z/5lwP2vjpAAZJ2mfXOQW3txn+97TMBAAAAAAAAAAAAgB7YtaPz/H9zg2FzM+0PyusB5v/76gB4yPnqfygvY3zgbrP4hzttMP8fAAAAAAAAAAAAAPpmtL4k6UQ+F3g00nRiIuLRiNgWg8ncfHV2MiIei4ifKoOPZOmpoisNAAAAAAAAAAAAAAAAAAAAm8zCpcunp6vV2QutK/+uytncK827oPahrFfjHp8VSf/flpGIKPyg9GxloCUniVjKjvyGqNiFhdgY1aivFPyHCQAAAAAAAAAAAAAAAAAASqhl7nF7O7/qc40AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoP/u3P+/dytFxwgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPJz+DwAA///LLUAr") mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) [ 238.103039][ T5353] loop0: detected capacity change from 0 to 1024 [ 238.181216][ T5353] ======================================================= [ 238.181216][ T5353] WARNING: The mand mount option has been deprecated and [ 238.181216][ T5353] and is ignored by this kernel. Remove the mand [ 238.181216][ T5353] option from the mount to silence this warning. [ 238.181216][ T5353] ======================================================= [ 238.318105][ T5353] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 238.347506][ T7] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 238.527350][ T5353] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz-executor.0: Invalid block bitmap block 0 in block_group 0 executing program 3: getgroups(0x2, &(0x7f0000000000)=[0xee01, 0xee01]) setresgid(0x0, r0, 0x0) r1 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r2) openat$ipvs(0xffffff9c, &(0x7f0000000280)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0) executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37}, 0x20) r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[], 0x0, 0x37}, 0x20) bpf$MAP_CREATE(0x0, &(0x7f0000004440)=@base={0x12, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x0, 0x3}, 0x48) executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10) getgid() [ 238.616631][ T7] usb 3-1: Using ep0 maxpacket: 16 [ 238.670755][ T5353] Quota error (device loop0): write_blk: dquota write failed [ 238.678971][ T5353] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 238.693266][ T5353] EXT4-fs error (device loop0): ext4_acquire_dquot:6886: comm syz-executor.0: Failed to acquire dquot type 0 [ 238.777442][ T7] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 238.788398][ T7] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 238.800414][ T7] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 238.811067][ T7] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 238.821251][ T7] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 238.839799][ T5353] EXT4-fs error (device loop0): ext4_free_blocks:6576: comm syz-executor.0: Freeing blocks not in datazone - block = 0, count = 4096 [ 238.917796][ T5353] EXT4-fs error (device loop0): ext4_read_inode_bitmap:140: comm syz-executor.0: Invalid inode bitmap blk 0 in block_group 0 executing program 3: socket$nl_generic(0x10, 0x3, 0x10) openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$nl_route(0x10, 0x3, 0x0) socketpair(0x0, 0x0, 0x0, &(0x7f0000000000)) r0 = socket$inet(0x2, 0x3, 0x33) getsockopt$inet_mreqsrc(r0, 0x0, 0x53, 0x0, &(0x7f0000000080)) [ 238.959019][ T7] usb 3-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 238.968456][ T7] usb 3-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 238.976832][ T7] usb 3-1: Manufacturer: syz [ 238.995050][ T5353] EXT4-fs error (device loop0) in ext4_free_inode:362: Corrupt filesystem executing program 4: r0 = socket$inet(0x2b, 0x801, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x12, &(0x7f0000000000), 0x4) [ 239.037487][ T33] Quota error (device loop0): do_check_range: Getting block 0 out of range 1-8 [ 239.047981][ T5353] EXT4-fs (loop0): 1 orphan inode deleted [ 239.048987][ T33] EXT4-fs error (device loop0): ext4_release_dquot:6909: comm kworker/u8:2: Failed to release dquot type 0 [ 239.058113][ T5353] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 239.122429][ T7] usb 3-1: config 0 descriptor?? [ 239.128053][ T5353] EXT4-fs error (device loop0): ext4_search_dir:1548: inode #2: block 16: comm syz-executor.0: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0 executing program 1: r0 = syz_usb_connect(0x0, 0x24, &(0x7f00000007c0)=ANY=[@ANYBLOB="1201000064172f2057155081ed29010203010902120001000000000904"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) syz_usb_connect$hid(0x0, 0x3f, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000406a05014000000000000109022d000100000000090400000103000000092100000001220b0009058103"], 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000400)={0x2c, &(0x7f0000000000)=ANY=[@ANYBLOB="000001"], 0x0, 0x0, 0x0, 0x0}) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10) syz_usb_control_io(r0, 0x0, &(0x7f0000000900)={0x84, &(0x7f0000000480)={0x0, 0x0, 0x6, "97c061c7520b"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) executing program 0: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETOFFLOAD(r0, 0x400454d1, 0x1000000000000) r1 = socket(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00', 0x20, 0x1, 0x990, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="000000000c0000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000000b00000020000000000062726964676530000000000000000000766c616e300000000000000000000000736974300000000000000000000000007465716c3000000000000000000000000000000000000000000000000180c20000000000000000000000b8080000b808000030090000616d6f6e670000000000000000000000000000002000000000000000000000002008000000000000140400000c000000000000000a00000000000000000000000000080000000000000000000000000000b085da05d603888318a0cce400000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000fdffffffff00000000000000000000e4ff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000500004e8910a326a57800000000000000000000000000000000000000000000000000000000000000006fb7cd02b734bcce41ef6e95bd000000008000000000000000000000000000000000000000000000000000000000000000eeff3f000000008fc7660c490587b3ab213098a6767c000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001f8f000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000020217c21d41732e300000000000000000000000000000000028f134318d1687b7de728e348ba6200000000000000000000000000000000000000000000000000000000000000440a05000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f18a0afe9935000000000000000000000000000000000000000074af89148f07830000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000f4f016fa70c1255400000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000008c7f8f1b44f000000000feffffff000000000000000000100000000000000000000000000000000000000000000000e8b5520a0cd4af00000000000000000000000000000001000000000000000000000000000062f75a00627f34dd71012eed00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e0ffffff00000000000000000000000000000000000000000000001b00000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000f200000000000000000000000000000000000000000000000000000000000000fffffff90000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f2573bd04a330000000e00000000000000000000000000000000000000e9bfffff000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000043000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000cb33322c9c564ae5f8eef74d5aa7cc9c000000000000000000000000000000000000000000000000000000000500000000000000000000000000000000000000003f7f1c00000000000000000000000000000000000000000000000100000000eeffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d3d2e851000000000000000000000000000000000000000000000000006f670000001100000000000000000000000000000000000000000000005080000000000000000000000000000000010000a600a9e85725d89818472e65aba21d9bbc1b20e8331c6fd24a5aceaeefe102e42a013ac2c00eeb782c34eab997013e0506220c21a44cc58ff5bc83d5e4066c770000000000000000000000004000"/2448]}, 0xa08) r2 = socket$inet_tcp(0x2, 0x1, 0x0) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x6, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000f9ffffff0000000000000000850000002c00000095"], &(0x7f0000000040)='GPL\x00', 0x5, 0xbf, &(0x7f00000020c0)=""/191}, 0x80) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, &(0x7f0000000280)=ANY=[@ANYRES8], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r3, r4}, 0x10) syz_emit_ethernet(0xfdef, &(0x7f0000000280)=ANY=[], 0x0) [ 239.402684][ T5037] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 239.499726][ T33] Quota error (device loop0): do_check_range: Getting block 0 out of range 1-8 [ 239.509238][ T33] EXT4-fs error (device loop0): ext4_release_dquot:6909: comm kworker/u8:2: Failed to release dquot type 0 executing program 4: r0 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$inet6_mreq(r0, 0x29, 0x14, &(0x7f0000000180)={@dev}, 0x14) executing program 3: mount$fuse(0x20000006, 0x0, 0x0, 0x0, 0x0) r0 = socket(0x1d, 0x3, 0x1) getsockopt$kcm_KCM_RECV_DISABLE(r0, 0x65, 0x8, 0x0, 0x20000000) [ 239.867494][ T42] usb 2-1: new high-speed USB device number 2 using dummy_hcd executing program 4: ioctl$I2C_SMBUS(0xffffffffffffffff, 0x720, &(0x7f0000000100)={0x0, 0x0, 0x401, 0x0}) [ 240.132413][ T5375] ebt_among: dst integrity fail: 200 [ 240.152102][ T42] usb 2-1: Using ep0 maxpacket: 32 [ 240.216077][ T5375] ===================================================== [ 240.223626][ T5375] BUG: KMSAN: uninit-value in bpf_prog_run_generic_xdp+0x17ad/0x1ee0 [ 240.232080][ T5375] bpf_prog_run_generic_xdp+0x17ad/0x1ee0 [ 240.238084][ T5375] do_xdp_generic+0xb68/0x1440 [ 240.243038][ T5375] tun_get_user+0x4bcd/0x69e0 [ 240.248193][ T5375] tun_chr_write_iter+0x3af/0x5d0 [ 240.253400][ T5375] vfs_write+0xb63/0x1520 [ 240.258167][ T5375] ksys_write+0x20f/0x4c0 [ 240.262696][ T5375] __x64_sys_write+0x93/0xe0 [ 240.267666][ T5375] x64_sys_call+0x3062/0x3b50 [ 240.272579][ T5375] do_syscall_64+0xcf/0x1e0 [ 240.277538][ T5375] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 240.283696][ T5375] [ 240.286117][ T5375] Uninit was stored to memory at: [ 240.291626][ T5375] pskb_expand_head+0x30f/0x19d0 [ 240.296898][ T5375] do_xdp_generic+0x931/0x1440 [ 240.301851][ T5375] tun_get_user+0x4bcd/0x69e0 [ 240.306880][ T5375] tun_chr_write_iter+0x3af/0x5d0 [ 240.312089][ T5375] vfs_write+0xb63/0x1520 [ 240.316789][ T5375] ksys_write+0x20f/0x4c0 [ 240.321328][ T5375] __x64_sys_write+0x93/0xe0 [ 240.326127][ T5375] x64_sys_call+0x3062/0x3b50 [ 240.331222][ T5375] do_syscall_64+0xcf/0x1e0 [ 240.335918][ T5375] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 240.342182][ T5375] [ 240.344602][ T5375] Uninit was created at: [ 240.349335][ T5375] __kmalloc_node_track_caller+0x747/0x1060 [ 240.355468][ T5375] kmalloc_reserve+0x249/0x4a0 [ 240.360627][ T5375] __alloc_skb+0x35b/0x7a0 [ 240.365262][ T5375] alloc_skb_with_frags+0xc8/0xbf0 [ 240.370687][ T5375] sock_alloc_send_pskb+0xa81/0xbf0 [ 240.376077][ T5375] tun_get_user+0x209a/0x69e0 [ 240.381068][ T5375] tun_chr_write_iter+0x3af/0x5d0 [ 240.386266][ T5375] vfs_write+0xb63/0x1520 [ 240.390889][ T5375] ksys_write+0x20f/0x4c0 [ 240.395415][ T5375] __x64_sys_write+0x93/0xe0 [ 240.400342][ T5375] x64_sys_call+0x3062/0x3b50 [ 240.405235][ T5375] do_syscall_64+0xcf/0x1e0 [ 240.410055][ T5375] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 240.416136][ T5375] [ 240.418681][ T5375] CPU: 1 PID: 5375 Comm: syz-executor.0 Not tainted 6.9.0-rc5-syzkaller-00042-ge88c4cfcb7b8 #0 [ 240.429312][ T5375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 240.439650][ T5375] ===================================================== [ 240.446806][ T5375] Disabling lock debugging due to kernel taint [ 240.453070][ T5375] Kernel panic - not syncing: kmsan.panic set ... [ 240.459606][ T5375] CPU: 1 PID: 5375 Comm: syz-executor.0 Tainted: G B 6.9.0-rc5-syzkaller-00042-ge88c4cfcb7b8 #0 [ 240.471602][ T5375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 240.481802][ T5375] Call Trace: [ 240.485192][ T5375] [ 240.488226][ T5375] dump_stack_lvl+0x216/0x2d0 [ 240.493104][ T5375] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 240.499116][ T5375] dump_stack+0x1e/0x30 [ 240.503459][ T5375] panic+0x4e2/0xcd0 [ 240.507607][ T5375] ? kmsan_get_metadata+0x101/0x1d0 [ 240.513007][ T5375] kmsan_report+0x2d5/0x2e0 [ 240.517692][ T5375] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 240.523703][ T5375] ? __msan_warning+0x95/0x120 [ 240.528680][ T5375] ? bpf_prog_run_generic_xdp+0x17ad/0x1ee0 [ 240.534743][ T5375] ? do_xdp_generic+0xb68/0x1440 [ 240.539837][ T5375] ? tun_get_user+0x4bcd/0x69e0 [ 240.544849][ T5375] ? tun_chr_write_iter+0x3af/0x5d0 [ 240.550212][ T5375] ? vfs_write+0xb63/0x1520 [ 240.554900][ T5375] ? ksys_write+0x20f/0x4c0 [ 240.559590][ T5375] ? __x64_sys_write+0x93/0xe0 [ 240.564542][ T5375] ? x64_sys_call+0x3062/0x3b50 [ 240.569586][ T5375] ? do_syscall_64+0xcf/0x1e0 [ 240.574432][ T5375] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 240.580686][ T5375] ? ___bpf_prog_run+0xe018/0xe0f0 [ 240.586005][ T5375] ? kmsan_get_metadata+0x146/0x1d0 [ 240.591390][ T5375] ? __bpf_prog_run32+0xb2/0xe0 [ 240.596430][ T5375] ? kmsan_get_metadata+0x146/0x1d0 [ 240.601801][ T5375] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 240.607789][ T5375] __msan_warning+0x95/0x120 [ 240.612584][ T5375] bpf_prog_run_generic_xdp+0x17ad/0x1ee0 [ 240.618522][ T5375] do_xdp_generic+0xb68/0x1440 [ 240.623472][ T5375] ? tun_get_user+0x4b4d/0x69e0 [ 240.628492][ T5375] tun_get_user+0x4bcd/0x69e0 [ 240.633326][ T5375] ? kmsan_get_metadata+0x146/0x1d0 [ 240.638687][ T5375] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 240.645151][ T5375] ? ref_tracker_alloc+0x420/0x7e0 [ 240.650552][ T5375] ? kmsan_get_metadata+0x146/0x1d0 [ 240.655924][ T5375] tun_chr_write_iter+0x3af/0x5d0 [ 240.661130][ T5375] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 240.666853][ T5375] vfs_write+0xb63/0x1520 [ 240.671402][ T5375] ksys_write+0x20f/0x4c0 [ 240.675938][ T5375] __x64_sys_write+0x93/0xe0 [ 240.680731][ T5375] x64_sys_call+0x3062/0x3b50 [ 240.685604][ T5375] do_syscall_64+0xcf/0x1e0 [ 240.690286][ T5375] ? clear_bhb_loop+0x25/0x80 [ 240.695207][ T5375] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 240.701283][ T5375] RIP: 0033:0x7f9271e7cbef [ 240.705823][ T5375] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 b9 80 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 0c 81 02 00 48 [ 240.725611][ T5375] RSP: 002b:00007f9272c0f090 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 240.734189][ T5375] RAX: ffffffffffffffda RBX: 00007f9271fabf80 RCX: 00007f9271e7cbef [ 240.742307][ T5375] RDX: 000000000000fdef RSI: 0000000020000280 RDI: 00000000000000c8 [ 240.750411][ T5375] RBP: 00007f9271eca4a4 R08: 0000000000000000 R09: 0000000000000000 [ 240.758517][ T5375] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000 [ 240.766620][ T5375] R13: 000000000000000b R14: 00007f9271fabf80 R15: 00007ffddca54448 [ 240.774760][ T5375] [ 240.778152][ T5375] Kernel Offset: disabled [ 240.782530][ T5375] Rebooting in 86400 seconds..