last executing test programs: 16.797818353s ago: executing program 0 (id=1658): syz_emit_ethernet(0x1d4, &(0x7f0000000b80)={@local, @remote, @void, {@ipv6={0x86dd, @gre_packet={0x4, 0x6, "acb4cb", 0x19e, 0x2f, 0x0, @private1, @private0={0xfc, 0x0, '\x00', 0x1}, {[], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x66, 0x3, [0x2], "527923e8729987137fda9747922cdceaba7e25cc770fb5da9432135498453503d890bb5af935b38c0b41378bc9a6344740ba73b8deae84bfa261a6432d1ac82e44e0b3112ba89cfbf915e435b68ff081886a63cf50975244b2cc2d7ad9d99a553caa606ce6d3"}, {0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x800, [0x7, 0x6], "c5b90abcbcc691"}, {0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x86dd, [], "0ef1061beef640ea39edf6505a2f2e137844bc0f1435293f3bd9457e0cf880d5afe8910757b571b65605f161bf26ff21fafe66e541670e16d30ac0ae846889c7ad9e"}, {0x8, 0x88be, 0x3, {{0x5, 0x1, 0x8, 0x2, 0x1, 0x1, 0x2, 0x6}, 0x1, {0x1}}}, {0x8, 0x22eb, 0x1, {{0x1, 0x2, 0x1, 0x3, 0x0, 0x0, 0x4, 0x6}, 0x2, {0x1, 0x401, 0x3, 0xf, 0x0, 0x1, 0x3, 0x1}}}, {0x8, 0x6558, 0x4, "e05557e2097622bfd1ee13745ae3cb0a8569f1285b0cb0f406e41ee102f6d98d0fad783b4e657498662f3f8ea78bf9d9d65ab994a9492a008f1e385fbf0f110bca6fa798a190c9ccb1675850f26fbf4a58931e766d570f3793fd56a4a4dd3382089a6d83abd78d7bd89d4ad6e099ca3eba43332493f186472aa11e55b84f5e521971e299f4e8d8da53aa5ece35073f5cfd6d5790890890bb3d91c140917d8c4dcd056aec8b"}}}}}}}, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000680)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xb3, &(0x7f0000000140)=""/179, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x78, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file2\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0) r2 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r2, 0x89f0, &(0x7f0000001440)={'bridge0\x00', &(0x7f0000000100)=@ethtool_ringparam={0xd, 0x0, 0x20040001, 0x0, 0x2}}) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r3 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r3, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40) r4 = socket$netlink(0x10, 0x3, 0x0) writev(r4, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1) 11.942277491s ago: executing program 1 (id=1676): r0 = socket$can_bcm(0x1d, 0x2, 0x2) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48) ioctl$FS_IOC_GETVERSION(r1, 0x80047601, &(0x7f00000002c0)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040e04e04020"], 0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r2, &(0x7f0000002540)=@abs, 0x6e) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0) get_mempolicy(0x0, 0x0, 0x0, &(0x7f0000a88000/0x2000)=nil, 0x3) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x80000000000002) ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000000)) r4 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) close(r4) mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x42031, 0xffffffffffffffff, 0x0) mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x7e832, 0xffffffffffffffff, 0x0) connect$can_bcm(r0, &(0x7f00000000c0), 0x10) sendmsg$can_bcm(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000019c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="01000000080800"/16, @ANYRES64=0x0, @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYBLOB='\x00\x00\x00'], 0x80}}, 0x24) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x141802, 0x0) 10.437939887s ago: executing program 0 (id=1682): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10) syz_clone(0x42a00180, 0x0, 0x0, 0x0, 0x0, 0x0) 7.512762819s ago: executing program 4 (id=1685): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000200)='cgroup.procs\x00', 0x2, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r2}, &(0x7f0000000000), &(0x7f0000000200)}, 0x20) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r3}, 0x10) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r4}, 0x10) write$cgroup_pid(r1, &(0x7f0000000c40), 0x12) 7.179618209s ago: executing program 0 (id=1688): r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r0, 0x10, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000088500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10) close(0x4) 7.138214549s ago: executing program 4 (id=1689): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000500000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000300)=ANY=[@ANYBLOB="1800", @ANYRESOCT=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000208500000004"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_usb_connect(0x0, 0x6b, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0x18000000000002a0, 0x12, 0x0, &(0x7f0000000240)="b9ff03076804268c989e14f088a8657986dd", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0xfffffffb, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r2 = socket$vsock_stream(0x28, 0x1, 0x0) unshare(0x62040200) bind$vsock_stream(r2, &(0x7f0000000440), 0x10) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed850000006d000000a50000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x50) r5 = timerfd_create(0x7, 0x0) timerfd_settime(r5, 0x0, &(0x7f0000007000)={{0x0, 0x4}, {0x0, 0x3938700}}, 0x0) readv(r5, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/52, 0x34}], 0x1) listen(r2, 0x0) r6 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r6, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10) socket$vsock_stream(0x28, 0x1, 0x0) socket$nl_sock_diag(0x10, 0x3, 0x4) r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x60200, 0x0) ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000000c0)=0xf) ioctl$TCFLSH(r7, 0x400455c8, 0x0) ioctl$sock_bt_hci(r1, 0x400448ca, 0x0) ioctl$TIOCVHANGUP(r7, 0x5437, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) 7.137836908s ago: executing program 2 (id=1690): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x17, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000080)='task_rename\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000080)='task_rename\x00', r2}, 0x10) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r3, &(0x7f00000006c0), &(0x7f0000000000), 0x2}, 0x20) 6.978374328s ago: executing program 0 (id=1692): syz_emit_ethernet(0x1d4, &(0x7f0000000b80)={@local, @remote, @void, {@ipv6={0x86dd, @gre_packet={0x4, 0x6, "acb4cb", 0x19e, 0x2f, 0x0, @private1, @private0={0xfc, 0x0, '\x00', 0x1}, {[], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x66, 0x3, [0x2], "527923e8729987137fda9747922cdceaba7e25cc770fb5da9432135498453503d890bb5af935b38c0b41378bc9a6344740ba73b8deae84bfa261a6432d1ac82e44e0b3112ba89cfbf915e435b68ff081886a63cf50975244b2cc2d7ad9d99a553caa606ce6d3"}, {0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x800, [0x7, 0x6], "c5b90abcbcc691"}, {0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x86dd, [], "0ef1061beef640ea39edf6505a2f2e137844bc0f1435293f3bd9457e0cf880d5afe8910757b571b65605f161bf26ff21fafe66e541670e16d30ac0ae846889c7ad9e"}, {0x8, 0x88be, 0x3, {{0x5, 0x1, 0x8, 0x2, 0x1, 0x1, 0x2, 0x6}, 0x1, {0x1}}}, {0x8, 0x22eb, 0x1, {{0x1, 0x2, 0x1, 0x3, 0x0, 0x0, 0x4, 0x6}, 0x2, {0x1, 0x401, 0x3, 0xf, 0x0, 0x1, 0x3, 0x1}}}, {0x8, 0x6558, 0x4, "e05557e2097622bfd1ee13745ae3cb0a8569f1285b0cb0f406e41ee102f6d98d0fad783b4e657498662f3f8ea78bf9d9d65ab994a9492a008f1e385fbf0f110bca6fa798a190c9ccb1675850f26fbf4a58931e766d570f3793fd56a4a4dd3382089a6d83abd78d7bd89d4ad6e099ca3eba43332493f186472aa11e55b84f5e521971e299f4e8d8da53aa5ece35073f5cfd6d5790890890bb3d91c140917d8c4dcd056aec8b"}}}}}}}, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000680)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xb3, &(0x7f0000000140)=""/179, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x78, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file2\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0) r2 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r2, 0x89f0, &(0x7f0000001440)={'bridge0\x00', &(0x7f0000000100)=@ethtool_ringparam={0xd, 0x0, 0x20040001, 0x0, 0x2}}) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r3 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r3, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40) r4 = socket$netlink(0x10, 0x3, 0x0) writev(r4, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1) 6.977937598s ago: executing program 2 (id=1693): openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r3}, &(0x7f0000000180), &(0x7f0000000200)}, 0x20) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10) r5 = socket$key(0xf, 0x3, 0x2) r6 = dup3(r5, 0xffffffffffffffff, 0x0) sendmsg$key(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000680)=ANY=[@ANYBLOB="021300000500"/15], 0x28}}, 0x0) sendmsg$IPSET_CMD_DESTROY(r6, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x6962fe93be2cb9ac}, 0x4000) r7 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, 0x0) r8 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBSENT(r8, 0x4b49, &(0x7f0000002600)={0xa9, "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"}) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) 5.856386435s ago: executing program 2 (id=1695): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x5, 0x4, 0x2003, 0xc, 0x0, 0xffffffffffffffff, 0xfffffffe, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa10000000000000701"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x54, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x7b}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$MAP_CREATE(0x0, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r2, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00) sendmsg$tipc(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0) 5.806466335s ago: executing program 4 (id=1696): r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x0) ioctl$EVIOCGRAB(r0, 0x40044590, &(0x7f0000000080)=0x3) syz_open_dev$evdev(&(0x7f00000000c0), 0xfffffffffffffffc, 0x860b43) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() syz_socket_connect_nvme_tcp() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00f7ffffffc09d69d438000001000100090000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="030000000300"/28], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) mkdirat(0xffffffffffffffff, &(0x7f0000000000)='./bus/file0\x00', 0x0) renameat2(0xffffffffffffffff, &(0x7f0000000240)='./bus/file0\x00', 0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0x2) socket$nl_generic(0x10, 0x3, 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0500000001000000080000000800000000000000", @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000005d341a649d3c14f1086ce370d10ac445a9399fc8bc34013db0bd687ecf77298b813ccb11732041c3d30112ab11dec042237357ef4773669399834fa09e33dc196bb16c1d6ad7a43aa2bc2ddd93b3154f09e4bfd278d269239cfe6ad7f37793bea639419548592a5d5c86ae852077ba7ec8d974ba45ccfcee7f62181805688b394150bcac3c6192344a6d66a5b0f44ac7cd30dc7bccd646df7f9278b58206bd9019fef867065744b677ee79273f4a94a5d064dbaea8d1ad06e40d1ebdd9562c272e574b766faa8110cb0cb082c3772193c4817e137f91ea640c2e5f0155a2", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f00000003c0), 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, 0x0, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x4000054) ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f0000000480)={0x56, 0xfffe, 0x0, {0x0, 0x1}, {0x80, 0x2}, @const={0x0, {0x1000, 0x0, 0xfffc}}}) 4.700328582s ago: executing program 3 (id=1697): r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) write$cgroup_devices(r0, &(0x7f0000000100)=ANY=[], 0xffdd) 4.203307861s ago: executing program 2 (id=1698): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000070000000800000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000000e3ff000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000700000095"], &(0x7f0000000c40)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000b80)='tlb_flush\x00', r1}, 0x10) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000020000008000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000070000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002000000850000008200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r3}, 0x10) 4.150558331s ago: executing program 4 (id=1699): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0xa, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000000000070200"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r3, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00) sendmsg$tipc(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10) 4.150330101s ago: executing program 1 (id=1700): r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f00000004c0)=ANY=[@ANYBLOB="1809000000000000000000000001000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0xfbfffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r0}, &(0x7f0000000540), &(0x7f0000000580)=r1}, 0x20) bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000007c0)={r0, &(0x7f0000000780)}, 0x20) 4.09482958s ago: executing program 3 (id=1701): ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0) r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0) eventfd(0xfc69) r2 = fsopen(&(0x7f0000000140)='vfat\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000080)='iocharset', &(0x7f00000000c0)='io#harset', 0x0) fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000001100)='iocharset', &(0x7f0000001140)='\xe0^@&&}\'\x00', 0x0) ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1000}) ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, 0x0) unshare(0x44040000) r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000580)=ANY=[@ANYRES16, @ANYRES32=r0], 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYRES64=r3, @ANYRESDEC]) r4 = syz_open_dev$amidi(&(0x7f0000000140), 0x2, 0x20181) ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r4, 0x40045731, &(0x7f0000000180)) r5 = memfd_create(&(0x7f0000000200)='\x103q}2\x9a\xce\xaf\x03\xdfy[\xd9\xffR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1d\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\x15RJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd9DC\x9fF\x9c[M=\xe0^\xa8\xed)\xe8Z\xe8\x99&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xcb\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05', 0x0) ftruncate(r5, 0x80079a0) mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r5, 0x0) lseek(r5, 0x1003ff, 0x4) r6 = socket$packet(0x11, 0x2, 0x300) memfd_create(&(0x7f0000000000)='/dev/vhost-vsock\x00', 0x7) setsockopt$packet_fanout(r6, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4) setsockopt$packet_fanout_data(r6, 0x107, 0x16, 0x0, 0x0) syz_emit_ethernet(0xcc, &(0x7f0000000440)=ANY=[@ANYBLOB="aaaaaaaaaaaa15e05e469508884800000c000000000000000000000000000000000000000000000001000000000000000000000000000001ff9e000000888e219e95014121edda5f2c65f9caf284a98ab93507562fd2512b58e3d1da80e09c758edf22ac93dec82d97555acd01d80999f9a6850affc913b498223d7667000000002e04374488cf843b30407cc8fc76a119c9f7b5a98a240b9032ffc9f4889cb0e225f824a28a8d93d0058ff2d20839621d116884dc00d8b5090219c44e84bf1c7e3f394068d97764cc"], 0x0) 4.06034147s ago: executing program 1 (id=1702): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000100000000000000000850000007d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x52) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='kmem_cache_free\x00', r0}, 0x18) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a000000050000000200000004"], 0x48) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000010000e1850000008600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000001800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f00000000c0)=r5, 0x4) sendmsg$unix(r4, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}, 0x4000044) 3.92652035s ago: executing program 2 (id=1703): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0xd, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/20, @ANYRES32, @ANYBLOB="0000000000000000b7080000002000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000f00000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10) syz_clone(0x42000000, 0x0, 0x0, 0x0, 0x0, 0x0) 3.75010148s ago: executing program 1 (id=1704): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() gettid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) r1 = bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r1, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffff"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r4}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socket(0x22, 0xa, 0x1) r5 = gettid() kcmp(r5, r5, 0x2, 0xffffffffffffffff, 0xffffffffffffffff) socket$nl_route(0x10, 0x3, 0x0) 3.700540419s ago: executing program 3 (id=1705): openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r3}, &(0x7f0000000180), &(0x7f0000000200)}, 0x20) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10) r5 = socket$key(0xf, 0x3, 0x2) r6 = dup3(r5, 0xffffffffffffffff, 0x0) sendmsg$key(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000680)=ANY=[@ANYBLOB="021300000500"/15], 0x28}}, 0x0) sendmsg$IPSET_CMD_DESTROY(r6, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x6962fe93be2cb9ac}, 0x4000) r7 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, 0x0) r8 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBSENT(r8, 0x4b49, &(0x7f0000002600)={0xa9, "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"}) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) 2.273836176s ago: executing program 1 (id=1706): sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="1400000015000103000000000000000005"], 0x14}}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000680)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file2\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x9) r3 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) mknodat$loop(r3, &(0x7f0000000000)='./file1\x00', 0xc000, 0x0) chdir(&(0x7f00000003c0)='./bus\x00') linkat(r3, &(0x7f0000000100)='./file1\x00', r3, &(0x7f0000000240)='./file0\x00', 0x0) unlink(&(0x7f0000000280)='./file1\x00') 2.090492226s ago: executing program 3 (id=1707): socket(0x11, 0x800000003, 0x0) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x11, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x20000000}, 0x8890) bpf$BPF_MAP_GET_FD_BY_ID(0x22, 0x0, 0x0) r4 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401) ioctl$USBDEVFS_DISCONNECT_CLAIM(r4, 0x8108551b, &(0x7f0000000000)={0x0, 0x2, "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"}) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0x4, 0x600}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0) bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b0000000000000000000000002000000036e600", @ANYRES32, @ANYBLOB='\x00'/10, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x1f, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) 1.890966875s ago: executing program 2 (id=1708): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000ab4000000060a01040000000000000000020000280900010073797a30000000000900020073797a320000000088000480100001800c000100636f756e7465720014000180090001006d6173710000000004000280600001800a0001006c696d6974000000500002800c000140000000000000000808000440000000010c00014000000000000080010c00024000000000000000090800034000000fba0c00024000000000000000000c000140000000000000000714000000110001"], 0xdc}}, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) r2 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r2, &(0x7f000047b000)={0xa, 0x4e20, 0x4, @loopback}, 0x1c) listen(r2, 0x20000005) r3 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r3, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty}, 0x1c) pselect6(0x40, &(0x7f00000000c0)={0xffff, 0x8, 0xfa5, 0x6, 0x7fffffff, 0x9, 0x3, 0x9}, &(0x7f00000002c0)={0x7, 0x9000000000000000, 0x401, 0x101, 0xee5, 0x8, 0x3, 0xb}, &(0x7f0000000300)={0x503ba596, 0x0, 0x6365c38b, 0x4, 0x2, 0x101, 0x5, 0x2}, &(0x7f0000000480)={0x0, 0x3938700}, &(0x7f0000000500)={&(0x7f00000004c0)={[0x9]}, 0x8}) 649.486902ms ago: executing program 1 (id=1709): r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x0) ioctl$EVIOCGRAB(r0, 0x40044590, &(0x7f0000000080)=0x3) syz_open_dev$evdev(&(0x7f00000000c0), 0xfffffffffffffffc, 0x860b43) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() syz_socket_connect_nvme_tcp() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00f7ffffffc09d69d438000001000100090000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="030000000300"/28], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) mkdirat(0xffffffffffffffff, &(0x7f0000000000)='./bus/file0\x00', 0x0) renameat2(0xffffffffffffffff, &(0x7f0000000240)='./bus/file0\x00', 0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0x2) socket$nl_generic(0x10, 0x3, 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0500000001000000080000000800000000000000", @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000005d341a649d3c14f1086ce370d10ac445a9399fc8bc34013db0bd687ecf77298b813ccb11732041c3d30112ab11dec042237357ef4773669399834fa09e33dc196bb16c1d6ad7a43aa2bc2ddd93b3154f09e4bfd278d269239cfe6ad7f37793bea639419548592a5d5c86ae852077ba7ec8d974ba45ccfcee7f62181805688b394150bcac3c6192344a6d66a5b0f44ac7cd30dc7bccd646df7f9278b58206bd9019fef867065744b677ee79273f4a94a5d064dbaea8d1ad06e40d1ebdd9562c272e574b766faa8110cb0cb082c3772193c4817e137f91ea640c2e5f0155a2", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f00000003c0), 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, 0x0, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x4000054) ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f0000000480)={0x56, 0xfffe, 0x0, {0x0, 0x1}, {0x80, 0x2}, @const={0x0, {0x1000, 0x0, 0xfffc}}}) 414.422801ms ago: executing program 3 (id=1710): bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={0xffffffffffffffff, 0x0, 0x20, 0x0, &(0x7f0000000440)="5cdd3086ddffff6633c9bbac88a8862608dffd00139fb7a884bdfc14f48788a8", 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 414.134471ms ago: executing program 4 (id=1711): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r1, 0x0, 0x0}, 0x10) 413.612341ms ago: executing program 0 (id=1712): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) close(r1) close(r0) 174.52537ms ago: executing program 4 (id=1713): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r0}, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x9, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r2}, 0x10) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000180)) 174.36117ms ago: executing program 0 (id=1714): r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000080), 0x801, 0x0) writev(r0, &(0x7f0000000b00)=[{&(0x7f0000000940)='\n', 0xfdef}], 0x1) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0) r1 = openat$nci(0xffffff9c, &(0x7f0000000040), 0x2, 0x0) r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0xa002) r3 = dup(r2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000005, 0x12, r3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000140)=[{0x6}]}, 0x8) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x24, &(0x7f0000000000)=0x1, 0x4) fcntl$setpipe(r1, 0x407, 0x9) r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r5) r6 = socket(0x1e, 0x4, 0x0) recvfrom(r6, &(0x7f0000000140)=""/157, 0x9d, 0x2, 0x0, 0x0) recvmmsg(r6, &(0x7f0000006000)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000007c0)=""/242, 0xf2}], 0x1, &(0x7f00000004c0)=""/75, 0x4b}}], 0x400000000000133, 0x2000, 0x0) sendmsg$tipc(r6, &(0x7f0000000200)={&(0x7f0000000c00)=@nameseq={0x1e, 0x1, 0x2, {0x1, 0x1, 0x4}}, 0x10, 0x0}, 0x0) unlink(&(0x7f0000000000)='./cgroup\x00') 0s ago: executing program 3 (id=1715): ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0) r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0) eventfd(0xfc69) r2 = fsopen(&(0x7f0000000140)='vfat\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000080)='iocharset', &(0x7f00000000c0)='io#harset', 0x0) fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000001100)='iocharset', &(0x7f0000001140)='\xe0^@&&}\'\x00', 0x0) ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1000}) ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, 0x0) unshare(0x44040000) r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000580)=ANY=[@ANYRES16, @ANYRES32=r0], 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYRES64=r3, @ANYRESDEC]) r4 = syz_open_dev$amidi(&(0x7f0000000140), 0x2, 0x20181) ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r4, 0x40045731, &(0x7f0000000180)) r5 = memfd_create(&(0x7f0000000200)='\x103q}2\x9a\xce\xaf\x03\xdfy[\xd9\xffR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1d\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\x15RJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd9DC\x9fF\x9c[M=\xe0^\xa8\xed)\xe8Z\xe8\x99&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xcb\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05', 0x0) ftruncate(r5, 0x80079a0) mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r5, 0x0) lseek(r5, 0x1003ff, 0x4) r6 = socket$packet(0x11, 0x2, 0x300) memfd_create(&(0x7f0000000000)='/dev/vhost-vsock\x00', 0x7) setsockopt$packet_fanout(r6, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4) setsockopt$packet_fanout_data(r6, 0x107, 0x16, 0x0, 0x0) syz_emit_ethernet(0xcc, &(0x7f0000000440)=ANY=[@ANYBLOB="aaaaaaaaaaaa15e05e469508884800000c000000000000000000000000000000000000000000000001000000000000000000000000000001ff9e000000888e219e95014121edda5f2c65f9caf284a98ab93507562fd2512b58e3d1da80e09c758edf22ac93dec82d97555acd01d80999f9a6850affc913b498223d7667000000002e04374488cf843b30407cc8fc76a119c9f7b5a98a240b9032ffc9f4889cb0e225f824a28a8d93d0058ff2d20839621d116884dc00d8b5090219c44e84bf1c7e3f394068d97764cc"], 0x0) kernel console output (not intermixed with test programs): 5910][ T48] ? panic+0x764/0x764 [ 269.149990][ T48] sysfs_create_dir_ns+0x2c6/0x390 [ 269.155102][ T48] ? sysfs_warn_dup+0xa0/0xa0 [ 269.159805][ T48] kobject_add_internal+0x6df/0xd10 [ 269.165012][ T48] kobject_add+0x14e/0x210 [ 269.169425][ T48] ? device_add+0x3c2/0xfd0 [ 269.173929][ T48] ? kobject_init+0x1d0/0x1d0 [ 269.178601][ T48] ? __raw_spin_lock_init+0x41/0x100 [ 269.183879][ T48] ? get_device_parent+0x128/0x400 [ 269.188995][ T48] device_add+0x476/0xfd0 [ 269.193329][ T48] hci_conn_add_sysfs+0xe4/0x1f0 [ 269.198266][ T48] le_conn_complete_evt+0xcc6/0x1320 [ 269.203547][ T48] ? trace_contention_end+0x61/0x170 [ 269.208830][ T48] ? hci_le_big_info_adv_report_evt+0x390/0x390 [ 269.215069][ T48] ? __mutex_unlock_slowpath+0x218/0x750 [ 269.220706][ T48] ? mutex_unlock+0x10/0x10 [ 269.225207][ T48] ? skb_pull_data+0x10e/0x220 [ 269.229993][ T48] hci_le_conn_complete_evt+0x188/0x410 [ 269.235550][ T48] hci_event_packet+0xa40/0x1510 [ 269.240489][ T48] ? hci_remote_host_features_evt+0x210/0x210 [ 269.246562][ T48] ? bis_list+0x290/0x290 [ 269.250885][ T48] ? do_raw_spin_unlock+0x137/0x8a0 [ 269.256079][ T48] ? kcov_remote_start+0x4ae/0x7c0 [ 269.261193][ T48] ? lockdep_hardirqs_on+0x30/0x130 [ 269.266409][ T48] ? hci_send_to_monitor+0x99/0x4d0 [ 269.271605][ T48] hci_rx_work+0x3a6/0xd10 [ 269.276022][ T48] ? process_one_work+0x7a9/0x11d0 [ 269.281140][ T48] process_one_work+0x8a9/0x11d0 [ 269.286082][ T48] ? worker_detach_from_pool+0x260/0x260 [ 269.291721][ T48] ? _raw_spin_lock_irqsave+0x120/0x120 [ 269.297264][ T48] ? kthread_data+0x4e/0xc0 [ 269.301769][ T48] ? wq_worker_running+0x97/0x190 [ 269.306788][ T48] worker_thread+0xa47/0x1200 [ 269.311463][ T48] ? release_firmware_map_entry+0x186/0x186 [ 269.317364][ T48] kthread+0x28d/0x320 [ 269.321422][ T48] ? worker_clr_flags+0x190/0x190 [ 269.326439][ T48] ? kthread_blkcg+0xd0/0xd0 [ 269.331024][ T48] ret_from_fork+0x1f/0x30 [ 269.335446][ T48] [ 269.500846][ T48] kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 269.514575][ T4733] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 269.517017][ T48] Bluetooth: hci3: failed to register connection device [ 272.030045][ T6490] loop0: detected capacity change from 0 to 128 [ 272.219920][ T4733] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 272.387734][ T48] Bluetooth: hci4: unexpected event for opcode 0x2040 [ 272.449552][ T6500] loop4: detected capacity change from 0 to 512 [ 273.416925][ T6500] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 273.563333][ T6500] ext4 filesystem being mounted at /104/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 273.675610][ T6514] loop0: detected capacity change from 0 to 512 [ 273.688601][ T26] audit: type=1800 audit(1738796937.221:420): pid=6500 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.550" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 273.782236][ T48] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201' [ 273.793294][ T48] CPU: 0 PID: 48 Comm: kworker/u5:0 Not tainted 6.1.128-syzkaller #0 [ 273.801382][ T48] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 273.811444][ T48] Workqueue: hci2 hci_rx_work [ 273.816135][ T48] Call Trace: [ 273.819413][ T48] [ 273.822347][ T48] dump_stack_lvl+0x1e3/0x2cb [ 273.827035][ T48] ? nf_tcp_handle_invalid+0x642/0x642 [ 273.832510][ T48] ? panic+0x764/0x764 [ 273.836609][ T48] sysfs_create_dir_ns+0x2c6/0x390 [ 273.841731][ T48] ? sysfs_warn_dup+0xa0/0xa0 [ 273.846427][ T48] kobject_add_internal+0x6df/0xd10 [ 273.851645][ T48] kobject_add+0x14e/0x210 [ 273.856073][ T48] ? device_add+0x3c2/0xfd0 [ 273.860590][ T48] ? kobject_init+0x1d0/0x1d0 [ 273.865279][ T48] ? __raw_spin_lock_init+0x41/0x100 [ 273.870576][ T48] ? get_device_parent+0x128/0x400 [ 273.875705][ T48] device_add+0x476/0xfd0 [ 273.880057][ T48] hci_conn_add_sysfs+0xe4/0x1f0 [ 273.885006][ T48] le_conn_complete_evt+0xcc6/0x1320 [ 273.890302][ T48] ? trace_contention_end+0x61/0x170 [ 273.895606][ T48] ? hci_le_big_info_adv_report_evt+0x390/0x390 [ 273.901878][ T48] ? __mutex_unlock_slowpath+0x218/0x750 [ 273.907534][ T48] ? __skb_clone+0x454/0x6c0 [ 273.912144][ T48] ? mutex_unlock+0x10/0x10 [ 273.916668][ T48] ? skb_pull_data+0x10e/0x220 [ 273.921464][ T48] hci_le_conn_complete_evt+0x188/0x410 [ 273.927034][ T48] hci_event_packet+0xa40/0x1510 [ 273.931997][ T48] ? hci_remote_host_features_evt+0x210/0x210 [ 273.938092][ T48] ? bis_list+0x290/0x290 [ 273.942426][ T48] ? do_raw_spin_unlock+0x137/0x8a0 [ 273.947628][ T48] ? kcov_remote_start+0x4ae/0x7c0 [ 273.952767][ T48] ? lockdep_hardirqs_on+0x30/0x130 [ 273.957990][ T48] ? hci_send_to_monitor+0x99/0x4d0 [ 273.963213][ T48] hci_rx_work+0x3a6/0xd10 [ 273.967663][ T48] ? process_one_work+0x7a9/0x11d0 [ 273.972795][ T48] process_one_work+0x8a9/0x11d0 [ 273.977770][ T48] ? worker_detach_from_pool+0x260/0x260 [ 273.983431][ T48] ? _raw_spin_lock_irqsave+0x120/0x120 [ 273.989002][ T48] ? kthread_data+0x4e/0xc0 [ 273.993541][ T48] ? wq_worker_running+0x97/0x190 [ 273.998592][ T48] worker_thread+0xa47/0x1200 [ 274.003296][ T48] ? release_firmware_map_entry+0x186/0x186 [ 274.009230][ T48] kthread+0x28d/0x320 [ 274.013315][ T48] ? worker_clr_flags+0x190/0x190 [ 274.018353][ T48] ? kthread_blkcg+0xd0/0xd0 [ 274.022963][ T48] ret_from_fork+0x1f/0x30 [ 274.027422][ T48] [ 274.037333][ T6514] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 274.045408][ T6514] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c01c, mo2=0002] [ 274.054527][ T6514] EXT4-fs (loop0): orphan cleanup on readonly fs [ 274.078133][ T48] kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 274.091953][ T48] Bluetooth: hci2: failed to register connection device [ 274.107059][ T6514] EXT4-fs warning (device loop0): ext4_block_to_path:107: block 3279949761 > max in inode 13 [ 274.117534][ T6514] EXT4-fs warning (device loop0): ext4_block_to_path:107: block 3279949762 > max in inode 13 [ 274.128278][ T6514] EXT4-fs (loop0): 1 truncate cleaned up [ 274.134059][ T6514] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 274.160811][ T4256] EXT4-fs (loop4): unmounting filesystem. [ 274.220052][ T6514] EXT4-fs warning (device loop0): dx_probe:893: inode #2: comm syz.0.546: dx entry: limit 65535 != root limit 120 [ 274.232308][ T6514] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.546: Corrupt directory, running e2fsck is recommended [ 275.352497][ T4249] EXT4-fs (loop0): unmounting filesystem. [ 276.028003][ T4250] Bluetooth: hci3: command 0x0406 tx timeout [ 276.853987][ T6545] netlink: 4 bytes leftover after parsing attributes in process `syz.0.559'. [ 278.653688][ T6565] loop1: detected capacity change from 0 to 512 [ 278.761665][ T6565] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 278.815907][ T6565] ext4 filesystem being mounted at /114/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 278.994152][ T26] audit: type=1800 audit(1738796942.581:421): pid=6565 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.565" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 279.512951][ T48] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection [ 279.849872][ T6575] loop4: detected capacity change from 0 to 256 [ 280.391212][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 280.898714][ T6583] [U] [ 280.901706][ T6583] [U] [ 280.904408][ T6583] [U] [ 280.907110][ T6583] [U] [ 280.924116][ T6583] [U] [ 280.926872][ T6583] [U] [ 280.929583][ T6583] [U] [ 280.932284][ T6583] [U] [ 280.942846][ T6583] [U] [ 280.945567][ T6583] [U] [ 280.948268][ T6583] [U] [ 280.950968][ T6583] [U] [ 280.962947][ T6583] [U] [ 280.965675][ T6583] [U] [ 280.968376][ T6583] [U] [ 280.971078][ T6583] [U] [ 281.039795][ T6583] [U] [ 281.042524][ T6583] [U] [ 281.045225][ T6583] [U] [ 281.047908][ T6583] [U] [ 281.064051][ T6583] [U] [ 281.066771][ T6583] [U] [ 281.069462][ T6583] [U] [ 281.072151][ T6583] [U] [ 281.075298][ T6583] [U] [ 281.077990][ T6583] [U] [ 281.080654][ T6583] [U] [ 281.083338][ T6583] [U] [ 281.086414][ T6583] [U] [ 281.089102][ T6583] [U] [ 281.091766][ T6583] [U] [ 281.094432][ T6583] [U] [ 284.603350][ T6617] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 284.609460][ T6617] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 284.615570][ T6617] Bluetooth: hci1: Suspend notifier action (1) failed: -4 [ 284.622874][ T6617] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 284.628904][ T6617] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 284.634993][ T6617] Bluetooth: hci2: Suspend notifier action (1) failed: -4 [ 284.642273][ T6617] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 284.648309][ T6617] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 284.654465][ T6617] Bluetooth: hci4: Suspend notifier action (1) failed: -4 [ 284.661833][ T6617] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 284.667885][ T6617] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 284.674869][ T6617] Bluetooth: hci3: Suspend notifier action (1) failed: -4 [ 285.450488][ T6627] loop4: detected capacity change from 0 to 512 [ 285.588887][ T4250] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201' [ 285.692921][ T6635] loop1: detected capacity change from 0 to 256 [ 286.345083][ T4250] CPU: 1 PID: 4250 Comm: kworker/u5:2 Not tainted 6.1.128-syzkaller #0 [ 286.353378][ T4250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 286.363444][ T4250] Workqueue: hci1 hci_rx_work [ 286.368154][ T4250] Call Trace: [ 286.371435][ T4250] [ 286.374368][ T4250] dump_stack_lvl+0x1e3/0x2cb [ 286.379043][ T4250] ? nf_tcp_handle_invalid+0x642/0x642 [ 286.384496][ T4250] ? panic+0x764/0x764 [ 286.388568][ T4250] sysfs_create_dir_ns+0x2c6/0x390 [ 286.393674][ T4250] ? sysfs_warn_dup+0xa0/0xa0 [ 286.398349][ T4250] kobject_add_internal+0x6df/0xd10 [ 286.403553][ T4250] kobject_add+0x14e/0x210 [ 286.407970][ T4250] ? device_add+0x3c2/0xfd0 [ 286.412473][ T4250] ? kobject_init+0x1d0/0x1d0 [ 286.417146][ T4250] ? __raw_spin_lock_init+0x41/0x100 [ 286.422425][ T4250] ? get_device_parent+0x128/0x400 [ 286.427633][ T4250] device_add+0x476/0xfd0 [ 286.431975][ T4250] hci_conn_add_sysfs+0xe4/0x1f0 [ 286.436922][ T4250] le_conn_complete_evt+0xcc6/0x1320 [ 286.442209][ T4250] ? trace_contention_end+0x61/0x170 [ 286.447496][ T4250] ? hci_le_big_info_adv_report_evt+0x390/0x390 [ 286.453733][ T4250] ? __mutex_unlock_slowpath+0x218/0x750 [ 286.459363][ T4250] ? mutex_unlock+0x10/0x10 [ 286.463861][ T4250] ? skb_pull_data+0x10e/0x220 [ 286.468628][ T4250] hci_le_conn_complete_evt+0x188/0x410 [ 286.474171][ T4250] hci_event_packet+0xa40/0x1510 [ 286.479105][ T4250] ? hci_remote_host_features_evt+0x210/0x210 [ 286.485170][ T4250] ? bis_list+0x290/0x290 [ 286.489489][ T4250] ? do_raw_spin_unlock+0x137/0x8a0 [ 286.494681][ T4250] ? kcov_remote_start+0x4ae/0x7c0 [ 286.499786][ T4250] ? lockdep_hardirqs_on+0x30/0x130 [ 286.504983][ T4250] ? hci_send_to_monitor+0x99/0x4d0 [ 286.510176][ T4250] hci_rx_work+0x3a6/0xd10 [ 286.514591][ T4250] ? process_one_work+0x7a9/0x11d0 [ 286.519696][ T4250] process_one_work+0x8a9/0x11d0 [ 286.524640][ T4250] ? worker_detach_from_pool+0x260/0x260 [ 286.530280][ T4250] ? _raw_spin_lock_irqsave+0x120/0x120 [ 286.535841][ T4250] ? kthread_data+0x4e/0xc0 [ 286.540352][ T4250] ? wq_worker_running+0x97/0x190 [ 286.545369][ T4250] worker_thread+0xa47/0x1200 [ 286.550061][ T4250] kthread+0x28d/0x320 [ 286.554121][ T4250] ? worker_clr_flags+0x190/0x190 [ 286.559139][ T4250] ? kthread_blkcg+0xd0/0xd0 [ 286.563724][ T4250] ret_from_fork+0x1f/0x30 [ 286.568166][ T4250] [ 286.574482][ T4250] kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 286.587777][ T4250] Bluetooth: hci1: failed to register connection device [ 286.742911][ T4250] Bluetooth: hci4: command 0x0c1a tx timeout [ 286.749099][ T4250] Bluetooth: hci2: command 0x0c1a tx timeout [ 286.804084][ T48] Bluetooth: hci1: command 0x0c1a tx timeout [ 286.842866][ T4250] Bluetooth: hci3: command 0x0c1a tx timeout [ 286.987431][ T6627] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 287.003093][ T6627] ext4 filesystem being mounted at /111/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 287.044840][ T6644] loop0: detected capacity change from 0 to 256 [ 287.062650][ T26] audit: type=1800 audit(1738796950.641:422): pid=6627 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.578" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 287.814958][ T4256] EXT4-fs (loop4): unmounting filesystem. [ 288.325739][ T6656] loop0: detected capacity change from 0 to 512 [ 288.601428][ T6658] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 288.699917][ T6658] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 288.721748][ T6658] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 288.833062][ T4250] Bluetooth: hci2: command 0x0406 tx timeout [ 288.839154][ T48] Bluetooth: hci1: command 0x0406 tx timeout [ 288.845279][ T4264] Bluetooth: hci4: command 0x0406 tx timeout [ 288.922878][ T4250] Bluetooth: hci3: command 0x0406 tx timeout [ 289.032946][ T6671] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 289.039109][ T6671] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 289.045342][ T6671] Bluetooth: hci1: Suspend notifier action (1) failed: -4 [ 289.052617][ T6671] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 289.058717][ T6671] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 289.064824][ T6671] Bluetooth: hci2: Suspend notifier action (1) failed: -4 [ 289.072114][ T6671] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 289.078154][ T6671] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 289.084314][ T6671] Bluetooth: hci4: Suspend notifier action (1) failed: -4 [ 289.092173][ T6671] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 289.098316][ T6671] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 289.104413][ T6671] Bluetooth: hci3: Suspend notifier action (1) failed: -4 [ 289.891901][ T6679] loop1: detected capacity change from 0 to 1024 [ 290.010012][ T4250] Bluetooth: hci1: unexpected event for opcode 0x2040 [ 290.094506][ T6679] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 290.113103][ T6679] ext4 filesystem being mounted at /122/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 290.972040][ T6689] netlink: 60 bytes leftover after parsing attributes in process `syz.4.593'. [ 291.136367][ T4250] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection [ 291.153197][ T4250] Bluetooth: hci3: command 0x0c1a tx timeout [ 291.159377][ T4250] Bluetooth: hci4: command 0x0c1a tx timeout [ 291.165754][ T4264] Bluetooth: hci2: command 0x0c1a tx timeout [ 292.010056][ T6697] lo speed is unknown, defaulting to 1000 [ 292.913831][ T48] Bluetooth: hci1: command 0x0406 tx timeout [ 293.258181][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 293.382240][ T6712] 9pnet_virtio: no channels available for device syz [ 293.402912][ T4250] Bluetooth: hci3: command 0x0406 tx timeout [ 293.552892][ T48] Bluetooth: hci4: command 0x0406 tx timeout [ 293.559007][ T48] Bluetooth: hci2: command 0x0406 tx timeout [ 293.578153][ T6708] DRBG: could not allocate digest TFM handle: hmac(sha512) [ 294.025249][ T6723] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 294.031387][ T6723] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 294.037550][ T6723] Bluetooth: hci1: Suspend notifier action (1) failed: -4 [ 294.044923][ T6723] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 294.050951][ T6723] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 294.057096][ T6723] Bluetooth: hci2: Suspend notifier action (1) failed: -4 [ 294.064440][ T6723] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 294.070466][ T6723] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 294.076547][ T6723] Bluetooth: hci4: Suspend notifier action (1) failed: -4 [ 294.083860][ T6723] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 294.089893][ T6723] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 294.095950][ T6723] Bluetooth: hci3: Suspend notifier action (1) failed: -4 [ 296.045679][ T4264] Bluetooth: hci1: command 0x0c1a tx timeout [ 296.113377][ T4264] Bluetooth: hci3: command 0x0c1a tx timeout [ 296.113513][ T4250] Bluetooth: hci4: command 0x0c1a tx timeout [ 296.119489][ T4264] Bluetooth: hci2: command 0x0c1a tx timeout [ 296.283418][ T4250] Bluetooth: hci3: unexpected event for opcode 0x1405 [ 296.431857][ T4250] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection [ 296.649396][ T6752] loop4: detected capacity change from 0 to 1024 [ 296.751355][ T6752] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 296.770529][ T6752] ext4 filesystem being mounted at /119/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 297.016147][ T6760] loop2: detected capacity change from 0 to 512 [ 297.167023][ T6760] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 297.176259][ T6760] ext4 filesystem being mounted at /112/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 297.317399][ T26] audit: type=1800 audit(1738796960.811:423): pid=6760 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.611" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 297.845872][ T4257] EXT4-fs (loop2): unmounting filesystem. [ 298.036838][ T4256] EXT4-fs (loop4): unmounting filesystem. [ 298.112881][ T4250] Bluetooth: hci1: command 0x0406 tx timeout [ 298.192940][ T4250] Bluetooth: hci2: command 0x0406 tx timeout [ 298.199093][ T4264] Bluetooth: hci4: command 0x0406 tx timeout [ 298.223158][ T6770] lo speed is unknown, defaulting to 1000 [ 298.263380][ T6771] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 298.269458][ T6771] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 298.276024][ T6771] Bluetooth: hci1: Suspend notifier action (1) failed: -4 [ 298.283361][ T6771] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 298.289382][ T6771] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 298.295471][ T6771] Bluetooth: hci2: Suspend notifier action (1) failed: -4 [ 298.303363][ T6771] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 298.309535][ T6771] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 298.315618][ T6771] Bluetooth: hci4: Suspend notifier action (1) failed: -4 [ 298.322929][ T6771] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 298.329003][ T6771] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 298.335088][ T6771] Bluetooth: hci3: Suspend notifier action (1) failed: -4 [ 299.076201][ T6778] DRBG: could not allocate digest TFM handle: hmac(sha512) [ 299.192227][ T48] Bluetooth: hci5: sending frame failed (-49) [ 299.199129][ T4264] Bluetooth: hci5: Opcode 0x1003 failed: -49 [ 299.340112][ T6788] loop0: detected capacity change from 0 to 512 [ 300.270768][ T6788] EXT4-fs error (device loop0): ext4_do_update_inode:5224: inode #3: comm syz.0.617: corrupted inode contents [ 300.284658][ T6788] EXT4-fs error (device loop0): ext4_dirty_inode:6089: inode #3: comm syz.0.617: mark_inode_dirty error [ 300.297632][ T6788] EXT4-fs error (device loop0): ext4_do_update_inode:5224: inode #3: comm syz.0.617: corrupted inode contents [ 300.310126][ T6788] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #3: comm syz.0.617: mark_inode_dirty error [ 300.323803][ T6795] fuse: Unknown parameter 'user_i00000000000000000000' [ 300.339209][ T6788] Quota error (device loop0): write_blk: dquota write failed [ 300.353290][ T6788] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 300.372922][ T6788] EXT4-fs error (device loop0): ext4_acquire_dquot:6795: comm syz.0.617: Failed to acquire dquot type 0 [ 300.412281][ T6788] EXT4-fs (loop0): 1 orphan inode deleted [ 300.433120][ T4264] Bluetooth: hci3: command 0x0c1a tx timeout [ 300.439268][ T4264] Bluetooth: hci4: command 0x0c1a tx timeout [ 300.446995][ T48] Bluetooth: hci2: command 0x0c1a tx timeout [ 300.453791][ T4250] Bluetooth: hci1: command 0x0c1a tx timeout [ 300.460173][ T6788] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 300.479063][ T6788] ext4 filesystem being mounted at /117/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 300.489992][ T46] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 300.510484][ T46] EXT4-fs error (device loop0): ext4_release_dquot:6818: comm kworker/u4:3: Failed to release dquot type 1 [ 301.840162][ T26] audit: type=1800 audit(1738796965.421:424): pid=6811 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.617" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 302.001880][ T6817] loop1: detected capacity change from 0 to 512 [ 302.075145][ T6817] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 302.084510][ T6817] ext4 filesystem being mounted at /126/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 302.103362][ T26] audit: type=1800 audit(1738796965.681:425): pid=6817 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.623" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 302.513013][ T4264] Bluetooth: hci2: command 0x0406 tx timeout [ 302.519670][ T4264] Bluetooth: hci1: command 0x0406 tx timeout [ 302.526561][ T4264] Bluetooth: hci4: command 0x0406 tx timeout [ 302.533150][ T4264] Bluetooth: hci3: command 0x0406 tx timeout [ 302.851236][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 303.887022][ T6831] DRBG: could not allocate digest TFM handle: hmac(sha512) [ 305.489341][ T6846] fuse: Unknown parameter 'user_i00000000000000000000' [ 307.622220][ T6863] netlink: 16 bytes leftover after parsing attributes in process `syz.1.635'. [ 307.791780][ T6865] loop1: detected capacity change from 0 to 1024 [ 307.932434][ T6865] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 307.963013][ T6865] ext4 filesystem being mounted at /130/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 308.828699][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 310.145560][ T6873] DRBG: could not allocate digest TFM handle: hmac(sha512) [ 310.367081][ T6891] fuse: Unknown parameter 'user_i00000000000000000000' [ 310.712480][ T6896] loop2: detected capacity change from 0 to 512 [ 310.755119][ T6896] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 310.764236][ T6896] ext4 filesystem being mounted at /118/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 310.782954][ T26] audit: type=1800 audit(1738796974.371:426): pid=6896 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.644" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 310.803323][ C0] vkms_vblank_simulate: vblank timer overrun [ 311.081910][ T6881] loop1: detected capacity change from 0 to 40427 [ 311.126441][ T6881] F2FS-fs (loop1): Unrecognized mount option "É" or missing value [ 311.766149][ T4257] EXT4-fs (loop2): unmounting filesystem. [ 312.147475][ T6918] loop4: detected capacity change from 0 to 1024 [ 312.195207][ T6918] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 312.218190][ T6918] ext4 filesystem being mounted at /127/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 312.313878][ T4249] EXT4-fs (loop0): unmounting filesystem. [ 312.503695][ T4436] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 312.544491][ T4436] EXT4-fs error (device loop0): ext4_release_dquot:6818: comm kworker/u4:10: Failed to release dquot type 1 [ 313.041890][ T6929] fuse: Unknown parameter 'user_id00000000000000000000' [ 313.057614][ T6930] netlink: 8 bytes leftover after parsing attributes in process `syz.2.654'. [ 313.246596][ T4256] EXT4-fs (loop4): unmounting filesystem. [ 313.523826][ T6940] loop2: detected capacity change from 0 to 512 [ 313.606380][ T6940] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 313.615987][ T6940] ext4 filesystem being mounted at /122/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 313.663259][ T26] audit: type=1800 audit(1738796977.231:427): pid=6940 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.657" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 314.409750][ T4257] EXT4-fs (loop2): unmounting filesystem. [ 314.976125][ T6965] netlink: 16 bytes leftover after parsing attributes in process `syz.4.662'. [ 315.107088][ T6966] loop1: detected capacity change from 0 to 256 [ 316.080837][ T6975] fuse: Unknown parameter 'user_id00000000000000000000' [ 316.244487][ T6978] loop1: detected capacity change from 0 to 1024 [ 316.316914][ T6978] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 316.457752][ T6978] ext4 filesystem being mounted at /135/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 316.495032][ T6983] netlink: 8 bytes leftover after parsing attributes in process `syz.0.667'. [ 317.073303][ T1265] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.079646][ T1265] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.242688][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 319.013048][ T7007] netlink: 12 bytes leftover after parsing attributes in process `syz.1.673'. [ 320.896453][ T7019] fuse: Unknown parameter 'user_id00000000000000000000' [ 321.343363][ T4250] Bluetooth: hci2: unexpected event for opcode 0x2040 [ 321.373317][ T7004] loop0: detected capacity change from 0 to 40427 [ 321.390241][ T7004] F2FS-fs (loop0): Unrecognized mount option "™" or missing value [ 322.472446][ T7031] loop1: detected capacity change from 0 to 1024 [ 322.665882][ T7031] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 322.713040][ T7031] ext4 filesystem being mounted at /140/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 323.652899][ T7045] netlink: 12 bytes leftover after parsing attributes in process `syz.4.684'. [ 325.164237][ T7054] fuse: Bad value for 'fd' [ 325.210368][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 325.729969][ T7068] loop1: detected capacity change from 0 to 256 [ 326.545360][ T4250] Bluetooth: hci3: unexpected event for opcode 0x2040 [ 327.440002][ T7082] netlink: 4 bytes leftover after parsing attributes in process `syz.0.694'. [ 328.282200][ T7088] loop2: detected capacity change from 0 to 256 [ 328.415123][ T7090] lo speed is unknown, defaulting to 1000 [ 328.566125][ T7086] loop2: detected capacity change from 0 to 512 [ 329.234825][ T7102] loop4: detected capacity change from 0 to 40427 [ 329.242540][ T7102] F2FS-fs (loop4): Unrecognized mount option "í" or missing value [ 329.388393][ T6859] I/O error, dev loop4, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 329.437870][ T7106] bond0: option fail_over_mac: unable to set because the bond device has slaves [ 329.474710][ T7106] netlink: 'syz.0.701': attribute type 10 has an invalid length. [ 329.508652][ T7106] bridge0: port 2(bridge_slave_1) entered disabled state [ 329.516244][ T7106] bridge0: port 1(bridge_slave_0) entered disabled state [ 329.646782][ T7106] bridge0: port 2(bridge_slave_1) entered blocking state [ 329.654123][ T7106] bridge0: port 2(bridge_slave_1) entered forwarding state [ 329.661745][ T7106] bridge0: port 1(bridge_slave_0) entered blocking state [ 329.669017][ T7106] bridge0: port 1(bridge_slave_0) entered forwarding state [ 329.696496][ T7106] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 331.926785][ T4250] Bluetooth: hci3: unexpected event for opcode 0x2040 [ 335.126262][ T7154] lo speed is unknown, defaulting to 1000 [ 335.258270][ T75] Bluetooth: hci5: Frame reassembly failed (-84) [ 336.009122][ T7161] loop0: detected capacity change from 0 to 256 [ 337.324083][ T4264] Bluetooth: hci5: command 0x1003 tx timeout [ 337.330610][ T4250] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 338.113179][ T48] Bluetooth: hci2: unexpected event for opcode 0x2040 [ 338.511658][ T48] Bluetooth: hci3: unexpected event for opcode 0x2040 [ 339.679102][ T7189] lo speed is unknown, defaulting to 1000 [ 340.050644][ T7192] loop0: detected capacity change from 0 to 40427 [ 340.059682][ T7192] F2FS-fs (loop0): Unrecognized mount option "¼" or missing value [ 341.193424][ T7203] loop4: detected capacity change from 0 to 256 [ 344.018072][ T48] Bluetooth: hci2: unexpected event for opcode 0x2040 [ 344.847059][ T4296] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 345.007255][ T7230] lo speed is unknown, defaulting to 1000 [ 345.052889][ T4296] usb 3-1: Using ep0 maxpacket: 16 [ 345.060501][ T4296] usb 3-1: config 0 has no interfaces? [ 345.181853][ T4296] usb 3-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00 [ 345.200190][ T4296] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 345.209318][ T4296] usb 3-1: Product: syz [ 345.213932][ T4296] usb 3-1: Manufacturer: syz [ 345.218632][ T4296] usb 3-1: SerialNumber: syz [ 345.226283][ T4296] usb 3-1: config 0 descriptor?? [ 345.330159][ T4264] Bluetooth: hci2: unexpected event for opcode 0x2040 [ 346.128998][ T4291] usb 3-1: USB disconnect, device number 3 [ 346.494620][ T4264] Bluetooth: hci3: unexpected event for opcode 0x2040 [ 347.228404][ T48] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 348.267000][ T7251] loop0: detected capacity change from 0 to 40427 [ 348.287835][ T7251] F2FS-fs (loop0): Unrecognized mount option "Ç" or missing value [ 349.574571][ T7258] lo speed is unknown, defaulting to 1000 [ 350.103066][ T4264] Bluetooth: hci2: unexpected event for opcode 0x2040 [ 352.706137][ T7286] netlink: 20 bytes leftover after parsing attributes in process `syz.1.747'. [ 353.905100][ T7300] netlink: 4 bytes leftover after parsing attributes in process `syz.2.753'. [ 354.156724][ T7280] sctp: failed to load transform for md5: -2 [ 354.542452][ T7309] loop2: detected capacity change from 0 to 40427 [ 354.625497][ T7309] F2FS-fs (loop2): Unrecognized mount option "×" or missing value [ 354.804221][ T4264] Bluetooth: hci2: unexpected event for opcode 0x2040 [ 355.974971][ T7317] lo speed is unknown, defaulting to 1000 [ 356.005896][ T7322] loop4: detected capacity change from 0 to 128 [ 356.034259][ T48] Bluetooth: hci5: sending frame failed (-49) [ 356.042027][ T4264] Bluetooth: hci5: Opcode 0x1003 failed: -49 [ 357.030021][ T4264] Bluetooth: hci4: unexpected event for opcode 0x2040 [ 357.709815][ T7338] loop1: detected capacity change from 0 to 512 [ 357.725999][ T7339] loop0: detected capacity change from 0 to 512 [ 357.727213][ T7338] EXT4-fs: Ignoring removed i_version option [ 357.759024][ T7338] EXT4-fs: Ignoring removed mblk_io_submit option [ 357.769203][ T7338] ext4: Unknown parameter 'seclabel' [ 357.825070][ T7339] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 357.834765][ T7339] ext4 filesystem being mounted at /143/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 357.850434][ T26] audit: type=1800 audit(1738797021.431:428): pid=7339 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.763" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 357.925808][ T4264] Bluetooth: hci4: unexpected event for opcode 0x1405 [ 358.940265][ T4249] EXT4-fs (loop0): unmounting filesystem. [ 358.987899][ T7350] loop4: detected capacity change from 0 to 512 [ 359.200845][ T7350] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 359.505548][ T7350] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c01c, mo2=0002] [ 359.866754][ T7359] device syz_tun entered promiscuous mode [ 359.964637][ T7359] device syz_tun left promiscuous mode [ 360.051114][ T7350] EXT4-fs (loop4): orphan cleanup on readonly fs [ 360.239800][ T7368] netlink: 4 bytes leftover after parsing attributes in process `syz.2.770'. [ 360.262858][ T7350] EXT4-fs warning (device loop4): ext4_block_to_path:107: block 3279949761 > max in inode 13 [ 360.273269][ T7350] EXT4-fs warning (device loop4): ext4_block_to_path:107: block 3279949762 > max in inode 13 [ 360.297433][ T7350] EXT4-fs (loop4): 1 truncate cleaned up [ 360.338058][ T7350] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 361.954673][ T4264] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0 [ 361.963395][ T4264] Bluetooth: hci4: Injecting HCI hardware error event [ 361.971388][ T48] Bluetooth: hci4: hardware error 0x00 [ 362.056006][ T7387] loop0: detected capacity change from 0 to 512 [ 362.063676][ T7387] EXT4-fs: Ignoring removed i_version option [ 362.069872][ T7387] EXT4-fs: Ignoring removed mblk_io_submit option [ 362.088372][ T7387] ext4: Unknown parameter 'seclabel' [ 362.129584][ T7103] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 362.469344][ T7392] loop1: detected capacity change from 0 to 512 [ 362.760427][ T7392] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 362.770267][ T7392] ext4 filesystem being mounted at /157/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 362.841714][ T26] audit: type=1800 audit(1738797026.401:429): pid=7392 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.778" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 363.070669][ T4256] EXT4-fs (loop4): unmounting filesystem. [ 363.459534][ T4264] Bluetooth: hci1: unexpected event for opcode 0x2040 [ 363.465527][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 363.490214][ T7405] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6) [ 363.497000][ T7405] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 363.531317][ T7405] vhci_hcd vhci_hcd.0: Device attached [ 364.033073][ T48] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 364.622244][ T7415] loop1: detected capacity change from 0 to 1024 [ 364.653059][ T4291] vhci_hcd: vhci_device speed not set [ 364.678183][ T7414] bond0: option fail_over_mac: unable to set because the bond device has slaves [ 364.732931][ T4291] usb 41-1: new full-speed USB device number 2 using vhci_hcd [ 364.757484][ T7414] netlink: 'syz.0.783': attribute type 10 has an invalid length. [ 364.773137][ T7414] bridge0: port 2(bridge_slave_1) entered disabled state [ 364.780350][ T7414] bridge0: port 1(bridge_slave_0) entered disabled state [ 364.800176][ T7415] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 364.829330][ T7415] ext4 filesystem being mounted at /158/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 365.175434][ T7423] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 365.181633][ T7423] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 365.188318][ T7423] Bluetooth: hci1: Suspend notifier action (1) failed: -4 [ 365.197071][ T7423] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 365.203674][ T7423] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 365.210141][ T7423] Bluetooth: hci2: Suspend notifier action (1) failed: -4 [ 365.218096][ T7423] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 365.224744][ T7423] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 365.232495][ T7423] Bluetooth: hci3: Suspend notifier action (1) failed: -4 [ 365.857599][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 365.985863][ T7406] vhci_hcd: connection reset by peer [ 366.003313][ T4342] vhci_hcd: stop threads [ 366.008025][ T4342] vhci_hcd: release socket [ 366.042839][ T4342] vhci_hcd: disconnect device [ 366.080550][ T48] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection [ 366.402650][ T7440] loop2: detected capacity change from 0 to 512 [ 366.424585][ T7440] EXT4-fs: Ignoring removed i_version option [ 366.430605][ T7440] EXT4-fs: Ignoring removed mblk_io_submit option [ 366.480150][ T7440] ext4: Unknown parameter 'seclabel' [ 366.831766][ T7451] loop1: detected capacity change from 0 to 512 [ 366.869604][ T7451] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 366.878993][ T7451] ext4 filesystem being mounted at /160/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 366.898933][ T26] audit: type=1800 audit(1738797030.481:430): pid=7451 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.792" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 366.919441][ C0] vkms_vblank_simulate: vblank timer overrun [ 367.674564][ T48] Bluetooth: hci3: unexpected event for opcode 0x2040 [ 367.712922][ T48] Bluetooth: hci1: command 0x0c1a tx timeout [ 367.718979][ T48] Bluetooth: hci2: command 0x0c1a tx timeout [ 367.743399][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 368.620913][ T7467] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 368.627195][ T7467] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 368.633341][ T7467] Bluetooth: hci1: Suspend notifier action (1) failed: -4 [ 368.640628][ T7467] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 368.646732][ T7467] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 368.653494][ T7467] Bluetooth: hci2: Suspend notifier action (1) failed: -4 [ 368.660816][ T7467] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 368.666850][ T7467] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 368.672914][ T7467] Bluetooth: hci3: Suspend notifier action (1) failed: -4 [ 368.955302][ T7478] loop0: detected capacity change from 0 to 128 [ 369.046621][ T7103] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 369.884751][ T4291] vhci_hcd: vhci_device speed not set [ 369.949817][ T7496] loop4: detected capacity change from 0 to 512 [ 370.186037][ T7496] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 370.195682][ T7496] ext4 filesystem being mounted at /156/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 370.216328][ T26] audit: type=1800 audit(1738797033.804:431): pid=7496 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.807" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 370.384537][ T7504] loop0: detected capacity change from 0 to 512 [ 371.443116][ T48] Bluetooth: hci1: command 0x0c1a tx timeout [ 371.922331][ T4250] Bluetooth: hci3: command 0x0406 tx timeout [ 371.928823][ T4250] Bluetooth: hci2: command 0x0c1a tx timeout [ 371.964151][ T7504] EXT4-fs: failed to create workqueue [ 372.629451][ T7504] EXT4-fs (loop0): mount failed [ 372.641644][ T4256] EXT4-fs (loop4): unmounting filesystem. [ 372.839867][ T7527] loop4: detected capacity change from 0 to 512 [ 372.864770][ T7527] EXT4-fs: Ignoring removed i_version option [ 372.881086][ T7527] EXT4-fs: Ignoring removed mblk_io_submit option [ 372.892931][ T7527] ext4: Unknown parameter 'seclabel' [ 373.472848][ T48] Bluetooth: hci1: command 0x0406 tx timeout [ 374.044753][ T48] Bluetooth: hci2: command 0x0406 tx timeout [ 374.050908][ T48] Bluetooth: hci3: command 0x0c1a tx timeout [ 374.912180][ T26] audit: type=1326 audit(1738797037.744:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7538 comm="syz.1.821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 375.097402][ T26] audit: type=1326 audit(1738797037.744:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7538 comm="syz.1.821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 375.223179][ T26] audit: type=1326 audit(1738797037.744:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7538 comm="syz.1.821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 375.300787][ T26] audit: type=1326 audit(1738797037.754:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7538 comm="syz.1.821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 375.333241][ T26] audit: type=1326 audit(1738797037.754:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7538 comm="syz.1.821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 375.355826][ T26] audit: type=1326 audit(1738797037.754:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7538 comm="syz.1.821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 375.378440][ T26] audit: type=1326 audit(1738797037.754:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7538 comm="syz.1.821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 375.443341][ T26] audit: type=1326 audit(1738797037.754:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7538 comm="syz.1.821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 375.569198][ T7557] loop0: detected capacity change from 0 to 512 [ 375.816352][ T7558] netlink: 'syz.3.823': attribute type 10 has an invalid length. [ 375.845918][ T7558] team0: Port device netdevsim0 added [ 375.925343][ T7558] netlink: 'syz.3.823': attribute type 10 has an invalid length. [ 377.024295][ T4250] Bluetooth: hci3: command 0x0406 tx timeout [ 377.284277][ T26] audit: type=1326 audit(1738797037.754:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7538 comm="syz.1.821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 377.623730][ T7558] team0: Port device netdevsim0 removed [ 377.642996][ T7558] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 378.086366][ T26] audit: type=1326 audit(1738797037.754:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7538 comm="syz.1.821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 378.109747][ T7557] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 378.118945][ T7557] ext4 filesystem being mounted at /155/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 378.303170][ T4249] EXT4-fs (loop0): unmounting filesystem. [ 378.434931][ T1265] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.441291][ T1265] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.840947][ T7598] loop4: detected capacity change from 0 to 256 [ 380.790571][ T48] Bluetooth: hci3: unexpected event for opcode 0x2040 [ 382.931384][ T48] Bluetooth: hci3: unexpected event for opcode 0x1405 [ 384.674369][ T7650] loop4: detected capacity change from 0 to 256 [ 386.993532][ T48] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 387.002052][ T48] Bluetooth: hci3: Injecting HCI hardware error event [ 387.014372][ T4250] Bluetooth: hci3: hardware error 0x00 [ 387.021973][ T4264] Bluetooth: hci2: unexpected event for opcode 0x1405 [ 388.775519][ T7681] input: syz0 as /devices/virtual/input/input8 [ 388.849728][ T7696] loop0: detected capacity change from 0 to 512 [ 389.084688][ T4250] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 389.187759][ T7696] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 389.204124][ T7696] ext4 filesystem being mounted at /163/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 389.595807][ T26] kauditd_printk_skb: 24 callbacks suppressed [ 389.595821][ T26] audit: type=1800 audit(1738797053.184:466): pid=7696 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.866" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 389.865416][ T4249] EXT4-fs (loop0): unmounting filesystem. [ 390.691085][ T7717] lo speed is unknown, defaulting to 1000 [ 390.708162][ T52] block nbd0: Attempted send on invalid socket [ 390.714672][ T52] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2 [ 390.886529][ T7718] SQUASHFS error: Failed to read block 0x0: -5 [ 390.910509][ T7718] unable to read squashfs_super_block [ 391.072899][ T4250] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 391.422959][ T4250] Bluetooth: hci2: Injecting HCI hardware error event [ 391.432691][ T48] Bluetooth: hci2: hardware error 0x00 [ 393.713211][ T48] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 394.324794][ T7762] capability: warning: `syz.3.884' uses deprecated v2 capabilities in a way that may be insecure [ 396.811843][ T7783] device syz_tun entered promiscuous mode [ 397.821827][ T7783] device syz_tun left promiscuous mode [ 398.581983][ T48] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection [ 398.951948][ T7811] loop2: detected capacity change from 0 to 128 [ 399.065835][ T7103] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 404.974830][ T7877] device syz_tun entered promiscuous mode [ 405.107956][ T7877] device syz_tun left promiscuous mode [ 405.981503][ T7888] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31 [ 406.030367][ T7888] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31 [ 406.039541][ T7888] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31 [ 406.048645][ T7888] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31 [ 406.057735][ T7888] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31 [ 406.066811][ T7888] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31 [ 406.075894][ T7888] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31 [ 406.084962][ T7888] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31 [ 406.094034][ T7888] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31 [ 406.103130][ T7888] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31 [ 409.435351][ T7921] device syz_tun entered promiscuous mode [ 409.649417][ T7921] device syz_tun left promiscuous mode [ 412.739081][ T7958] loop2: detected capacity change from 0 to 512 [ 412.830178][ T7958] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 412.845746][ T7958] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0 [ 412.856239][ T7958] EXT4-fs error (device loop2): ext4_acquire_dquot:6795: comm syz.2.942: Failed to acquire dquot type 0 [ 412.877339][ T7958] EXT4-fs (loop2): Remounting filesystem read-only [ 412.887883][ T7958] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 412.899082][ T7958] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0 [ 412.908794][ T7958] EXT4-fs error (device loop2): ext4_acquire_dquot:6795: comm syz.2.942: Failed to acquire dquot type 0 [ 412.920631][ T7958] EXT4-fs (loop2): Remounting filesystem read-only [ 412.928249][ T7958] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 412.938892][ T7958] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0 [ 412.948579][ T7958] EXT4-fs error (device loop2): ext4_acquire_dquot:6795: comm syz.2.942: Failed to acquire dquot type 0 [ 412.966160][ T7958] EXT4-fs (loop2): Remounting filesystem read-only [ 412.978089][ T7958] EXT4-fs (loop2): 1 orphan inode deleted [ 412.989713][ T7958] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 413.008532][ T7958] ext4 filesystem being mounted at /169/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 413.357289][ T7968] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 413.368336][ T7968] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0 [ 413.377845][ T7968] EXT4-fs error (device loop2): ext4_acquire_dquot:6795: comm syz.2.942: Failed to acquire dquot type 0 [ 413.745665][ T26] audit: type=1800 audit(1738797077.334:467): pid=7967 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.942" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 413.773144][ T7968] EXT4-fs (loop2): Remounting filesystem read-only [ 413.875307][ T4257] EXT4-fs (loop2): unmounting filesystem. [ 414.556534][ T7980] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 414.723516][ T7980] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 414.854707][ T7988] netlink: 156 bytes leftover after parsing attributes in process `syz.3.949'. [ 415.189273][ T7980] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 415.553482][ T7980] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 416.511563][ T26] audit: type=1326 audit(1738797079.444:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7989 comm="syz.0.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 417.029932][ T8003] loop2: detected capacity change from 0 to 256 [ 417.915401][ T7980] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 417.945931][ T26] audit: type=1326 audit(1738797079.444:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7989 comm="syz.0.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 418.104146][ T8004] tipc: Started in network mode [ 418.109142][ T8004] tipc: Node identity ac14140f, cluster identity 4711 [ 418.116836][ T8004] tipc: New replicast peer: 255.255.255.255 [ 418.123557][ T8004] tipc: Enabled bearer , priority 10 [ 418.140055][ T26] audit: type=1326 audit(1738797079.444:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7989 comm="syz.0.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 418.816520][ T7980] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 418.843038][ T26] audit: type=1326 audit(1738797079.444:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7989 comm="syz.0.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 418.881922][ T8013] loop2: detected capacity change from 0 to 512 [ 418.920281][ T26] audit: type=1326 audit(1738797079.444:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7989 comm="syz.0.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 418.934101][ T7980] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 418.944796][ T26] audit: type=1326 audit(1738797079.444:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7989 comm="syz.0.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 418.997675][ T26] audit: type=1326 audit(1738797079.444:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7989 comm="syz.0.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 419.048098][ T8013] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 419.054050][ T7980] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 419.072300][ T8013] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0 [ 419.094675][ T26] audit: type=1326 audit(1738797079.444:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7989 comm="syz.0.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 419.129219][ T8013] EXT4-fs error (device loop2): ext4_acquire_dquot:6795: comm syz.2.957: Failed to acquire dquot type 0 [ 419.173293][ T8013] EXT4-fs (loop2): Remounting filesystem read-only [ 419.183136][ T8013] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 419.328439][ T8013] EXT4-fs error (device loop2): ext4_acquire_dquot:6795: comm syz.2.957: Failed to acquire dquot type 0 [ 419.356559][ T8013] EXT4-fs (loop2): Remounting filesystem read-only [ 419.369422][ T4292] tipc: Node number set to 2886997007 [ 419.382664][ T8013] EXT4-fs error (device loop2): ext4_acquire_dquot:6795: comm syz.2.957: Failed to acquire dquot type 0 [ 419.395380][ T8013] EXT4-fs (loop2): Remounting filesystem read-only [ 419.412345][ T8013] EXT4-fs (loop2): 1 orphan inode deleted [ 419.432425][ T8013] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 420.075051][ T8013] ext4 filesystem being mounted at /172/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 421.035903][ T8047] EXT4-fs error (device loop2): ext4_acquire_dquot:6795: comm syz.2.957: Failed to acquire dquot type 0 [ 421.380731][ T8047] EXT4-fs (loop2): Remounting filesystem read-only [ 421.863283][ T4257] EXT4-fs (loop2): unmounting filesystem. [ 422.338216][ T8061] tipc: Enabling of bearer rejected, already enabled [ 423.012160][ T26] kauditd_printk_skb: 91 callbacks suppressed [ 423.012177][ T26] audit: type=1326 audit(1738797086.594:562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8038 comm="syz.1.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 423.157420][ T26] audit: type=1326 audit(1738797086.594:563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8038 comm="syz.1.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 423.257715][ T26] audit: type=1326 audit(1738797086.634:564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8038 comm="syz.1.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f532db8ed07 code=0x7ffc0000 [ 423.313445][ T26] audit: type=1326 audit(1738797086.634:565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8038 comm="syz.1.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 423.336281][ T26] audit: type=1326 audit(1738797086.634:566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8038 comm="syz.1.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 423.358805][ T26] audit: type=1326 audit(1738797086.634:567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8038 comm="syz.1.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 423.382351][ T26] audit: type=1326 audit(1738797086.634:568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8038 comm="syz.1.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 423.404713][ T26] audit: type=1326 audit(1738797086.634:569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8038 comm="syz.1.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 423.427200][ T26] audit: type=1326 audit(1738797086.634:570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8038 comm="syz.1.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f532db8b750 code=0x7ffc0000 [ 423.449908][ T26] audit: type=1326 audit(1738797086.634:571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8038 comm="syz.1.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f532db8b750 code=0x7ffc0000 [ 424.178064][ T8083] loop2: detected capacity change from 0 to 512 [ 424.625068][ T8083] EXT4-fs error (device loop2): ext4_acquire_dquot:6795: comm syz.2.978: Failed to acquire dquot type 0 [ 424.680044][ T8083] EXT4-fs (loop2): Remounting filesystem read-only [ 424.687940][ T8083] EXT4-fs error (device loop2): ext4_acquire_dquot:6795: comm syz.2.978: Failed to acquire dquot type 0 [ 424.736679][ T8083] EXT4-fs (loop2): Remounting filesystem read-only [ 424.773124][ T8083] EXT4-fs error (device loop2): ext4_acquire_dquot:6795: comm syz.2.978: Failed to acquire dquot type 0 [ 424.834920][ T8083] EXT4-fs (loop2): Remounting filesystem read-only [ 424.841622][ T8083] EXT4-fs (loop2): 1 orphan inode deleted [ 424.863751][ T8083] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 424.890778][ T8083] ext4 filesystem being mounted at /175/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 426.161161][ T8094] EXT4-fs error (device loop2): ext4_acquire_dquot:6795: comm syz.2.978: Failed to acquire dquot type 0 [ 426.226189][ T8094] EXT4-fs (loop2): Remounting filesystem read-only [ 426.752595][ T8107] tipc: Started in network mode [ 426.757620][ T8107] tipc: Node identity ac14140f, cluster identity 4711 [ 426.765257][ T8107] tipc: New replicast peer: 255.255.255.255 [ 426.772143][ T8107] tipc: Enabled bearer , priority 10 [ 427.242308][ T4257] EXT4-fs (loop2): unmounting filesystem. [ 428.209191][ T22] tipc: Node number set to 2886997007 [ 428.252038][ T8124] lo speed is unknown, defaulting to 1000 [ 430.246274][ T8134] loop2: detected capacity change from 0 to 256 [ 430.416134][ T8154] tipc: Enabling of bearer rejected, already enabled [ 430.801510][ T8155] netlink: 4 bytes leftover after parsing attributes in process `syz.3.998'. [ 431.523207][ T26] kauditd_printk_skb: 22 callbacks suppressed [ 431.523324][ T26] audit: type=1326 audit(1738797095.024:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8158 comm="syz.4.1000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 431.848912][ T26] audit: type=1326 audit(1738797095.024:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8158 comm="syz.4.1000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 432.015436][ T26] audit: type=1326 audit(1738797095.024:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8158 comm="syz.4.1000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 432.280256][ T26] audit: type=1326 audit(1738797095.024:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8158 comm="syz.4.1000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 432.308498][ T26] audit: type=1326 audit(1738797095.024:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8158 comm="syz.4.1000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 432.364666][ T26] audit: type=1326 audit(1738797095.034:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8158 comm="syz.4.1000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 432.477282][ T26] audit: type=1326 audit(1738797095.034:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8158 comm="syz.4.1000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 432.678307][ T26] audit: type=1326 audit(1738797095.034:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8158 comm="syz.4.1000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 434.215306][ T26] audit: type=1326 audit(1738797095.034:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8158 comm="syz.4.1000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 434.235714][ T8175] lo speed is unknown, defaulting to 1000 [ 434.238957][ T26] audit: type=1326 audit(1738797095.034:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8158 comm="syz.4.1000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 435.084498][ T8194] device syz_tun entered promiscuous mode [ 435.729391][ T8194] device syz_tun left promiscuous mode [ 437.364534][ T26] kauditd_printk_skb: 23 callbacks suppressed [ 437.364646][ T26] audit: type=1326 audit(1738797100.924:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8216 comm="syz.0.1018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 437.966250][ T26] audit: type=1326 audit(1738797100.924:620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8216 comm="syz.0.1018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 438.202984][ T26] audit: type=1326 audit(1738797100.924:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8216 comm="syz.0.1018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 439.077445][ T26] audit: type=1326 audit(1738797100.924:622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8216 comm="syz.0.1018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 439.243136][ T26] audit: type=1326 audit(1738797100.924:623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8216 comm="syz.0.1018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 439.265902][ T26] audit: type=1326 audit(1738797100.924:624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8216 comm="syz.0.1018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 439.288792][ T26] audit: type=1326 audit(1738797100.924:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8216 comm="syz.0.1018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 439.311520][ T26] audit: type=1326 audit(1738797100.924:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8216 comm="syz.0.1018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 439.452704][ T8239] tipc: Enabling of bearer rejected, already enabled [ 439.874979][ T1265] ieee802154 phy0 wpan0: encryption failed: -22 [ 439.881424][ T1265] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.229871][ T26] audit: type=1326 audit(1738797100.924:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8216 comm="syz.0.1018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 441.247334][ T26] audit: type=1326 audit(1738797100.924:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8216 comm="syz.0.1018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 442.693043][ T7786] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 442.923014][ T7786] usb 3-1: Using ep0 maxpacket: 16 [ 442.938331][ T7786] usb 3-1: config 0 has no interfaces? [ 443.224388][ T7786] usb 3-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00 [ 443.242826][ T7786] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 443.250842][ T7786] usb 3-1: Product: syz [ 443.259555][ T7786] usb 3-1: Manufacturer: syz [ 443.264748][ T7786] usb 3-1: SerialNumber: syz [ 443.358452][ T26] kauditd_printk_skb: 23 callbacks suppressed [ 443.358485][ T26] audit: type=1326 audit(1738797106.914:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8258 comm="syz.1.1031" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 443.451649][ T7786] usb 3-1: config 0 descriptor?? [ 443.962194][ T7786] usb 3-1: USB disconnect, device number 4 [ 444.158785][ T26] audit: type=1326 audit(1738797106.914:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8258 comm="syz.1.1031" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 444.193478][ T8272] fuse: Bad value for 'fd' [ 444.251847][ T8274] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1035'. [ 444.290433][ T26] audit: type=1326 audit(1738797106.924:654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8258 comm="syz.1.1031" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 444.313531][ T26] audit: type=1326 audit(1738797106.924:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8258 comm="syz.1.1031" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 444.337031][ T26] audit: type=1326 audit(1738797106.924:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8258 comm="syz.1.1031" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 444.382990][ T26] audit: type=1326 audit(1738797106.924:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8258 comm="syz.1.1031" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 444.434896][ T26] audit: type=1326 audit(1738797106.924:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8258 comm="syz.1.1031" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 444.457622][ T26] audit: type=1326 audit(1738797106.924:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8258 comm="syz.1.1031" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 444.482989][ T26] audit: type=1326 audit(1738797106.924:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8258 comm="syz.1.1031" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 444.507224][ T26] audit: type=1326 audit(1738797106.924:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8258 comm="syz.1.1031" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 444.593532][ T8278] tipc: Started in network mode [ 444.598539][ T8278] tipc: Node identity ac14140f, cluster identity 4711 [ 444.606252][ T8278] tipc: New replicast peer: 255.255.255.255 [ 444.613264][ T8278] tipc: Enabled bearer , priority 10 [ 445.723147][ T7786] tipc: Node number set to 2886997007 [ 446.045700][ T8285] bond0: (slave bridge0): Releasing backup interface [ 446.873852][ T8285] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 447.036757][ T8285] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 447.265099][ T8285] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 447.905026][ T8285] device bridge_slave_0 left promiscuous mode [ 448.020083][ T8285] bridge0: port 1(bridge_slave_0) entered disabled state [ 448.197366][ T8285] device bridge_slave_1 left promiscuous mode [ 448.213131][ T8285] bridge0: port 2(bridge_slave_1) entered disabled state [ 448.284999][ T8285] bond0: (slave bond_slave_0): Releasing backup interface [ 448.346437][ T8285] bond0: (slave bond_slave_1): Releasing backup interface [ 448.483477][ T8285] team0: Port device team_slave_0 removed [ 448.703065][ T26] kauditd_printk_skb: 57 callbacks suppressed [ 448.714324][ T26] audit: type=1326 audit(1738797112.174:719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8312 comm="syz.1.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 448.753024][ T8285] team0: Port device team_slave_1 removed [ 448.900489][ T8285] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 449.000191][ T8285] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 449.030443][ T26] audit: type=1326 audit(1738797112.174:720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8312 comm="syz.1.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 449.138862][ T26] audit: type=1326 audit(1738797112.174:721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8312 comm="syz.1.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 449.199247][ T8285] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 449.210821][ T8285] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 449.215549][ T26] audit: type=1326 audit(1738797112.184:722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8312 comm="syz.1.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 449.277067][ T8288] team0: Mode changed to "loadbalance" [ 449.293461][ T26] audit: type=1326 audit(1738797112.184:723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8312 comm="syz.1.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 449.336556][ T8290] device vlan0 entered promiscuous mode [ 449.358596][ T26] audit: type=1326 audit(1738797112.184:724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8312 comm="syz.1.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 449.366748][ T8292] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1039'. [ 449.428724][ T26] audit: type=1326 audit(1738797112.184:725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8312 comm="syz.1.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 449.486768][ T26] audit: type=1326 audit(1738797112.184:726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8312 comm="syz.1.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 449.511169][ T26] audit: type=1326 audit(1738797112.184:727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8312 comm="syz.1.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 449.535276][ T26] audit: type=1326 audit(1738797112.184:728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8312 comm="syz.1.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 450.433221][ T8328] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 450.439247][ T8328] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 450.446134][ T8328] Bluetooth: hci1: Suspend notifier action (1) failed: -4 [ 450.545508][ T8315] lo speed is unknown, defaulting to 1000 [ 450.836199][ T8341] lo speed is unknown, defaulting to 1000 [ 453.331009][ T48] Bluetooth: hci1: command 0x0c1a tx timeout [ 453.724837][ T26] kauditd_printk_skb: 68 callbacks suppressed [ 453.724897][ T26] audit: type=1326 audit(1738797117.284:797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8358 comm="syz.0.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 453.968462][ T26] audit: type=1326 audit(1738797117.284:798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8358 comm="syz.0.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 454.203303][ T26] audit: type=1326 audit(1738797117.284:799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8358 comm="syz.0.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 454.346165][ T26] audit: type=1326 audit(1738797117.284:800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8358 comm="syz.0.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 454.470913][ T26] audit: type=1326 audit(1738797117.284:801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8358 comm="syz.0.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 454.548590][ T26] audit: type=1326 audit(1738797117.284:802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8358 comm="syz.0.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 454.668221][ T26] audit: type=1326 audit(1738797117.294:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8358 comm="syz.0.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 454.749875][ T26] audit: type=1326 audit(1738797117.294:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8358 comm="syz.0.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 454.830189][ T26] audit: type=1326 audit(1738797117.294:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8358 comm="syz.0.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 454.859823][ T8372] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1062'. [ 455.004753][ T8373] device syz_tun entered promiscuous mode [ 455.017323][ T8373] device syz_tun left promiscuous mode [ 455.120144][ T26] audit: type=1326 audit(1738797117.294:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8358 comm="syz.0.1057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 455.394647][ T48] Bluetooth: hci1: command 0x0406 tx timeout [ 455.756627][ T48] Bluetooth: hci1: unexpected event for opcode 0x1405 [ 455.879899][ T8381] lo speed is unknown, defaulting to 1000 [ 456.079548][ T8383] lo speed is unknown, defaulting to 1000 [ 456.270088][ T8389] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1068'. [ 457.233602][ T8404] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1073'. [ 457.544857][ T8419] device syz_tun entered promiscuous mode [ 457.557347][ T8419] device syz_tun left promiscuous mode [ 458.349386][ T8414] lo speed is unknown, defaulting to 1000 [ 458.644074][ T8429] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1081'. [ 459.795948][ T48] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 459.805425][ T48] Bluetooth: hci1: Injecting HCI hardware error event [ 459.818409][ T4250] Bluetooth: hci1: hardware error 0x00 [ 460.112250][ T8446] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1086'. [ 460.187360][ T8444] lo speed is unknown, defaulting to 1000 [ 461.607635][ T8463] lo speed is unknown, defaulting to 1000 [ 462.043291][ T4250] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 462.879183][ T8483] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1098'. [ 463.710509][ T8494] lo speed is unknown, defaulting to 1000 [ 463.830582][ T8498] lo speed is unknown, defaulting to 1000 [ 468.368638][ T8536] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1113'. [ 472.554285][ T8578] tipc: Enabling of bearer rejected, already enabled [ 472.878262][ T8571] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1123'. [ 473.035232][ T8588] loop2: detected capacity change from 0 to 1024 [ 473.086117][ T8565] net_ratelimit: 3256 callbacks suppressed [ 473.086129][ T8565] sctp: failed to load transform for md5: -2 [ 473.148773][ T8588] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 473.178124][ T8588] ext4 filesystem being mounted at /194/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 473.539301][ T8604] 9pnet_virtio: no channels available for device 127.0.0.1 [ 474.351262][ T4257] EXT4-fs (loop2): unmounting filesystem. [ 474.966645][ T8618] loop2: detected capacity change from 0 to 40427 [ 474.974485][ T8618] F2FS-fs (loop2): Unrecognized mount option "ž" or missing value [ 475.028545][ T8581] I/O error, dev loop2, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 475.702616][ T8625] 9pnet_fd: Insufficient options for proto=fd [ 476.320069][ T8635] tipc: Enabling of bearer rejected, already enabled [ 479.004903][ T8658] loop2: detected capacity change from 0 to 128 [ 479.383412][ T8666] loop2: detected capacity change from 0 to 512 [ 479.794706][ T8666] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 479.802824][ T8666] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c01c, mo2=0002] [ 479.811816][ T8666] EXT4-fs (loop2): orphan cleanup on readonly fs [ 479.827231][ T8666] EXT4-fs warning (device loop2): ext4_block_to_path:107: block 3279949761 > max in inode 13 [ 479.837691][ T8666] EXT4-fs warning (device loop2): ext4_block_to_path:107: block 3279949762 > max in inode 13 [ 479.848675][ T8666] EXT4-fs (loop2): 1 truncate cleaned up [ 479.854472][ T8666] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 479.931977][ T8666] EXT4-fs warning (device loop2): dx_probe:893: inode #2: comm syz.2.1144: dx entry: limit 65535 != root limit 120 [ 479.944209][ T8666] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.1144: Corrupt directory, running e2fsck is recommended [ 480.364801][ T4257] EXT4-fs (loop2): unmounting filesystem. [ 484.645654][ T8725] loop2: detected capacity change from 0 to 128 [ 485.252469][ T26] kauditd_printk_skb: 23 callbacks suppressed [ 485.252557][ T26] audit: type=1326 audit(1738797148.774:830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8720 comm="syz.3.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 485.842894][ T8721] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 485.869127][ T26] audit: type=1326 audit(1738797148.774:831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8720 comm="syz.3.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 487.198133][ T8736] loop2: detected capacity change from 0 to 512 [ 487.298651][ T26] audit: type=1326 audit(1738797148.774:832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8720 comm="syz.3.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 487.379208][ T8736] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 487.387244][ T8736] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c01c, mo2=0002] [ 487.399982][ T8736] EXT4-fs (loop2): orphan cleanup on readonly fs [ 487.412929][ T8736] EXT4-fs warning (device loop2): ext4_block_to_path:107: block 3279949761 > max in inode 13 [ 487.423351][ T8736] EXT4-fs warning (device loop2): ext4_block_to_path:107: block 3279949762 > max in inode 13 [ 487.435228][ T8736] EXT4-fs (loop2): 1 truncate cleaned up [ 487.441266][ T8736] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 487.592850][ T8739] EXT4-fs warning (device loop2): dx_probe:893: inode #2: comm syz.2.1163: dx entry: limit 65535 != root limit 120 [ 487.605078][ T8739] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.1163: Corrupt directory, running e2fsck is recommended [ 487.802578][ T26] audit: type=1326 audit(1738797148.774:833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8720 comm="syz.3.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 487.877890][ T8744] 9pnet_virtio: no channels available for device syz [ 487.914544][ T26] audit: type=1326 audit(1738797148.774:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8720 comm="syz.3.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 487.984776][ T4257] EXT4-fs (loop2): unmounting filesystem. [ 488.059736][ T26] audit: type=1326 audit(1738797148.774:835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8720 comm="syz.3.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 488.228211][ T26] audit: type=1326 audit(1738797148.774:836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8720 comm="syz.3.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 489.220707][ T26] audit: type=1326 audit(1738797148.774:837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8720 comm="syz.3.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 489.268422][ T26] audit: type=1326 audit(1738797148.774:838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8720 comm="syz.3.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 489.376744][ T26] audit: type=1326 audit(1738797148.774:839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8720 comm="syz.3.1162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 491.959866][ T8780] fuse: Bad value for 'fd' [ 494.449541][ T8808] lo speed is unknown, defaulting to 1000 [ 495.241406][ T8816] [U] [ 495.260605][ T8816] [U] [ 495.263332][ T8816] [U] [ 495.266022][ T8816] [U] [ 495.268717][ T8816] [U] [ 495.326868][ T8816] [U] [ 495.329613][ T8816] [U] [ 495.332311][ T8816] [U] [ 495.335016][ T8816] [U] [ 495.445601][ T8816] [U] [ 495.448339][ T8816] [U] [ 495.451018][ T8816] [U] [ 495.453700][ T8816] [U] [ 495.483599][ T8816] [U] [ 495.486350][ T8816] [U] [ 495.489048][ T8816] [U] [ 495.491740][ T8816] [U] [ 495.521678][ T8816] [U] [ 495.524406][ T8816] [U] [ 495.527107][ T8816] [U] [ 495.529802][ T8816] [U] [ 495.867368][ T8830] fuse: Bad value for 'fd' [ 495.898944][ T8816] [U] [ 495.901679][ T8816] [U] [ 495.904374][ T8816] [U] [ 495.907062][ T8816] [U] [ 496.333846][ T8816] [U] [ 496.336583][ T8816] [U] [ 496.339276][ T8816] [U] [ 496.341978][ T8816] [U] [ 496.396162][ T8816] [U] [ 496.398898][ T8816] [U] [ 496.401602][ T8816] [U] [ 496.404310][ T8816] [U] [ 496.433154][ T8816] [U] [ 496.435883][ T8816] [U] [ 496.438584][ T8816] [U] [ 496.441276][ T8816] [U] [ 498.246107][ T8873] loop2: detected capacity change from 0 to 512 [ 498.304002][ T8873] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 498.313385][ T8873] ext4 filesystem being mounted at /210/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 498.327862][ T26] kauditd_printk_skb: 35 callbacks suppressed [ 498.327875][ T26] audit: type=1800 audit(1738797161.914:875): pid=8873 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1199" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 500.249713][ T8887] lo speed is unknown, defaulting to 1000 [ 500.302460][ T4257] EXT4-fs (loop2): unmounting filesystem. [ 501.342239][ T1265] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.349032][ T1265] ieee802154 phy1 wpan1: encryption failed: -22 [ 506.998811][ T8937] netlink: 'syz.3.1216': attribute type 10 has an invalid length. [ 507.034142][ T8943] [U] [ 507.037002][ T8943] [U] [ 507.039704][ T8943] [U] [ 507.042398][ T8943] [U] [ 507.045096][ T8943] [U] [ 507.075084][ T8943] [U] [ 507.077821][ T8943] [U] [ 507.080517][ T8943] [U] [ 507.083216][ T8943] [U] [ 507.134385][ T8943] [U] [ 507.137122][ T8943] [U] [ 507.139819][ T8943] [U] [ 507.142510][ T8943] [U] [ 507.205772][ T8943] [U] [ 507.207688][ T8937] bond0: (slave netdevsim0): Releasing backup interface [ 507.208493][ T8943] [U] [ 507.218092][ T8943] [U] [ 507.220758][ T8943] [U] [ 507.331934][ T8943] [U] [ 507.334689][ T8943] [U] [ 507.337383][ T8943] [U] [ 507.340075][ T8943] [U] [ 507.736164][ T8937] team0: Port device netdevsim0 added [ 507.748021][ T8938] netlink: 'syz.3.1216': attribute type 10 has an invalid length. [ 507.749500][ T8943] [U] [ 507.758538][ T8943] [U] [ 507.761243][ T8943] [U] [ 507.763948][ T8943] [U] [ 507.836588][ T8943] [U] [ 507.839318][ T8943] [U] [ 507.842011][ T8943] [U] [ 507.844707][ T8943] [U] [ 507.910225][ T8938] team0: Port device netdevsim0 removed [ 507.920230][ T8938] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 508.009928][ T8943] [U] [ 508.012662][ T8943] [U] [ 508.015357][ T8943] [U] [ 508.018049][ T8943] [U] [ 508.043661][ T8943] [U] [ 508.046399][ T8943] [U] [ 508.049096][ T8943] [U] [ 508.051798][ T8943] [U] [ 508.139257][ T8943] [U] [ 508.141991][ T8943] [U] [ 508.144688][ T8943] [U] [ 508.147379][ T8943] [U] [ 508.264793][ T8943] [U] [ 508.267557][ T8943] [U] [ 508.270254][ T8943] [U] [ 508.272946][ T8943] [U] [ 508.339786][ T8943] [U] [ 508.342527][ T8943] [U] [ 508.345233][ T8943] [U] [ 508.347934][ T8943] [U] [ 508.401819][ T8943] [U] [ 508.404562][ T8943] [U] [ 508.407257][ T8943] [U] [ 508.409960][ T8943] [U] [ 508.414304][ T8943] [U] [ 508.417025][ T8943] [U] [ 508.419712][ T8943] [U] [ 508.422391][ T8943] [U] [ 508.470437][ T8943] [U] [ 508.473175][ T8943] [U] [ 508.475864][ T8943] [U] [ 508.478546][ T8943] [U] [ 508.572973][ T8943] [U] [ 508.575710][ T8943] [U] [ 508.578403][ T8943] [U] [ 508.581093][ T8943] [U] [ 508.719844][ T8943] [U] [ 508.722582][ T8943] [U] [ 508.725276][ T8943] [U] [ 508.727967][ T8943] [U] [ 508.756849][ T8943] [U] [ 508.759589][ T8943] [U] [ 508.762285][ T8943] [U] [ 508.764977][ T8943] [U] [ 508.767836][ T8943] [U] [ 508.770543][ T8943] [U] [ 508.773241][ T8943] [U] [ 508.775950][ T8943] [U] [ 508.778814][ T8943] [U] [ 508.781518][ T8943] [U] [ 508.784212][ T8943] [U] [ 508.786914][ T8943] [U] [ 508.798137][ T8943] [U] [ 508.800853][ T8943] [U] [ 508.803553][ T8943] [U] [ 508.806251][ T8943] [U] [ 508.884823][ T8943] [U] [ 508.887555][ T8943] [U] [ 508.890261][ T8943] [U] [ 508.892959][ T8943] [U] [ 508.960901][ T8943] [U] [ 508.963640][ T8943] [U] [ 508.966335][ T8943] [U] [ 508.969032][ T8943] [U] [ 508.998557][ T8943] [U] [ 509.001291][ T8943] [U] [ 509.003991][ T8943] [U] [ 509.006693][ T8943] [U] [ 509.114507][ T8943] [U] [ 509.117250][ T8943] [U] [ 509.119948][ T8943] [U] [ 509.122646][ T8943] [U] [ 509.153035][ T8943] [U] [ 509.155773][ T8943] [U] [ 509.158472][ T8943] [U] [ 509.161166][ T8943] [U] [ 513.242252][ T9023] 9pnet_virtio: no channels available for device syz [ 517.306360][ T9070] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 517.316545][ T9070] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 517.339972][ T9070] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 517.441272][ T9070] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1253'. [ 518.354472][ T9084] overlayfs: failed to clone upperpath [ 519.842527][ T9096] lo speed is unknown, defaulting to 1000 [ 522.311101][ T9134] overlayfs: failed to clone upperpath [ 526.314245][ T9165] lo speed is unknown, defaulting to 1000 [ 526.464042][ T48] Bluetooth: hci5: sending frame failed (-49) [ 526.471228][ T4250] Bluetooth: hci5: Opcode 0x1003 failed: -49 [ 530.969237][ T9216] lo speed is unknown, defaulting to 1000 [ 531.492051][ T9224] overlayfs: failed to clone upperpath [ 531.759611][ T9228] 9pnet_fd: Insufficient options for proto=fd [ 533.194781][ T4250] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 533.242653][ T9236] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 533.331656][ T9239] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1299'. [ 533.368133][ T9236] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 533.403305][ T9236] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 534.516312][ T9251] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1305'. [ 534.586119][ T26] audit: type=1326 audit(1738797198.174:876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9250 comm="syz.3.1305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 534.673787][ T26] audit: type=1326 audit(1738797198.214:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9250 comm="syz.3.1305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 534.744010][ T26] audit: type=1326 audit(1738797198.214:878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9250 comm="syz.3.1305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 534.768363][ T26] audit: type=1326 audit(1738797198.214:879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9250 comm="syz.3.1305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 535.240496][ T9261] overlayfs: failed to clone upperpath [ 535.443296][ T26] audit: type=1326 audit(1738797198.214:880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9250 comm="syz.3.1305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 535.639221][ T26] audit: type=1326 audit(1738797198.214:881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9250 comm="syz.3.1305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 535.662137][ T26] audit: type=1326 audit(1738797198.214:882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9250 comm="syz.3.1305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 535.690225][ T26] audit: type=1326 audit(1738797198.214:883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9250 comm="syz.3.1305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 535.722943][ T26] audit: type=1326 audit(1738797198.214:884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9250 comm="syz.3.1305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 535.874799][ T26] audit: type=1326 audit(1738797198.214:885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9250 comm="syz.3.1305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 538.249582][ T9296] lo speed is unknown, defaulting to 1000 [ 541.822979][ T26] kauditd_printk_skb: 54 callbacks suppressed [ 541.823134][ T26] audit: type=1326 audit(1738797205.144:940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9321 comm="syz.4.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 542.244873][ T26] audit: type=1326 audit(1738797205.144:941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9321 comm="syz.4.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 542.292868][ T26] audit: type=1326 audit(1738797205.144:942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9321 comm="syz.4.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 542.421418][ T26] audit: type=1326 audit(1738797205.144:943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9321 comm="syz.4.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 542.502398][ T26] audit: type=1326 audit(1738797205.144:944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9321 comm="syz.4.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 542.621005][ T26] audit: type=1326 audit(1738797205.154:945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9321 comm="syz.4.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 542.792830][ T26] audit: type=1326 audit(1738797205.154:946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9321 comm="syz.4.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 542.872996][ T26] audit: type=1326 audit(1738797205.154:947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9321 comm="syz.4.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 543.063500][ T26] audit: type=1326 audit(1738797205.154:948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9321 comm="syz.4.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 543.361219][ T26] audit: type=1326 audit(1738797205.154:949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9321 comm="syz.4.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 545.091030][ T9353] overlayfs: failed to clone upperpath [ 546.271852][ T9357] lo speed is unknown, defaulting to 1000 [ 549.505829][ T9400] overlayfs: failed to clone upperpath [ 550.725376][ T9415] lo speed is unknown, defaulting to 1000 [ 551.063168][ T9418] lo speed is unknown, defaulting to 1000 [ 551.869020][ T9435] lo speed is unknown, defaulting to 1000 [ 552.957204][ T9441] device syz_tun entered promiscuous mode [ 559.156244][ T9489] lo speed is unknown, defaulting to 1000 [ 562.090911][ T9507] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1373'. [ 562.783835][ T1265] ieee802154 phy0 wpan0: encryption failed: -22 [ 562.790304][ T1265] ieee802154 phy1 wpan1: encryption failed: -22 [ 562.972492][ T9525] netlink: 156 bytes leftover after parsing attributes in process `syz.3.1377'. [ 564.010335][ T9514] lo speed is unknown, defaulting to 1000 [ 565.392332][ T26] kauditd_printk_skb: 35 callbacks suppressed [ 565.392468][ T26] audit: type=1326 audit(1738797228.774:985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9536 comm="syz.4.1383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 565.422158][ T26] audit: type=1326 audit(1738797228.774:986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9536 comm="syz.4.1383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 565.554302][ T26] audit: type=1326 audit(1738797228.774:987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9536 comm="syz.4.1383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 565.769749][ T26] audit: type=1326 audit(1738797228.774:988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9536 comm="syz.4.1383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 565.861990][ T26] audit: type=1326 audit(1738797228.774:989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9536 comm="syz.4.1383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 565.970217][ T26] audit: type=1326 audit(1738797228.774:990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9536 comm="syz.4.1383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 566.520693][ T26] audit: type=1326 audit(1738797228.774:991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9536 comm="syz.4.1383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 566.800497][ T26] audit: type=1326 audit(1738797228.774:992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9536 comm="syz.4.1383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 566.840727][ T9550] lo speed is unknown, defaulting to 1000 [ 566.866207][ T26] audit: type=1326 audit(1738797228.774:993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9536 comm="syz.4.1383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 566.892863][ T26] audit: type=1326 audit(1738797228.774:994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9536 comm="syz.4.1383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 566.999918][ T9556] overlayfs: failed to clone upperpath [ 568.875240][ T9565] fuse: Bad value for 'fd' [ 570.617798][ T9566] netlink: 'syz.3.1390': attribute type 1 has an invalid length. [ 570.643331][ T9566] 8021q: adding VLAN 0 to HW filter on device bond1 [ 570.743390][ T9566] bond1: (slave gretap1): making interface the new active one [ 570.754174][ T9566] bond1: (slave gretap1): Enslaving as an active interface with an up link [ 570.763773][ T4496] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready [ 573.525056][ T9572] lo speed is unknown, defaulting to 1000 [ 575.591767][ T9605] lo speed is unknown, defaulting to 1000 [ 577.929173][ T9632] netlink: 'syz.0.1409': attribute type 1 has an invalid length. [ 578.111474][ T9632] 8021q: adding VLAN 0 to HW filter on device bond1 [ 578.723051][ T9635] bond1: (slave gretap1): making interface the new active one [ 578.762155][ T9635] bond1: (slave gretap1): Enslaving as an active interface with an up link [ 578.806170][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready [ 579.986650][ T9658] lo speed is unknown, defaulting to 1000 [ 581.516624][ T9681] fuse: Bad value for 'group_id' [ 582.634766][ T9686] netlink: 'syz.3.1425': attribute type 1 has an invalid length. [ 582.703911][ T9686] 8021q: adding VLAN 0 to HW filter on device bond2 [ 585.095137][ T26] kauditd_printk_skb: 35 callbacks suppressed [ 585.095162][ T26] audit: type=1326 audit(1738797247.154:1030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9693 comm="syz.3.1428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 585.433602][ T9707] lo speed is unknown, defaulting to 1000 [ 585.501406][ T26] audit: type=1326 audit(1738797247.154:1031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9693 comm="syz.3.1428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 585.506517][ T9710] lo speed is unknown, defaulting to 1000 [ 585.677834][ T26] audit: type=1326 audit(1738797247.254:1032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9693 comm="syz.3.1428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 586.242834][ T26] audit: type=1326 audit(1738797247.254:1033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9693 comm="syz.3.1428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 586.331772][ T26] audit: type=1326 audit(1738797247.254:1034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9693 comm="syz.3.1428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 586.445640][ T26] audit: type=1326 audit(1738797247.354:1035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9693 comm="syz.3.1428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 586.494000][ T26] audit: type=1326 audit(1738797247.354:1036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9693 comm="syz.3.1428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 586.534467][ T26] audit: type=1326 audit(1738797247.354:1037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9693 comm="syz.3.1428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 586.599952][ T26] audit: type=1326 audit(1738797247.454:1038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9693 comm="syz.3.1428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 587.043270][ T26] audit: type=1326 audit(1738797247.454:1039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9693 comm="syz.3.1428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 587.553477][ T9730] fuse: Bad value for 'group_id' [ 590.912343][ T26] kauditd_printk_skb: 80 callbacks suppressed [ 590.912358][ T26] audit: type=1326 audit(1738797254.484:1120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9754 comm="syz.2.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdc73983da7 code=0x7ffc0000 [ 591.056708][ T26] audit: type=1326 audit(1738797254.524:1121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9754 comm="syz.2.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdc73928fb9 code=0x7ffc0000 [ 592.405637][ T26] audit: type=1326 audit(1738797254.524:1122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9754 comm="syz.2.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdc73983da7 code=0x7ffc0000 [ 592.437982][ T9765] lo speed is unknown, defaulting to 1000 [ 592.444285][ T26] audit: type=1326 audit(1738797254.524:1123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9754 comm="syz.2.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdc73928fb9 code=0x7ffc0000 [ 592.476987][ T26] audit: type=1326 audit(1738797254.524:1124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9754 comm="syz.2.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdc73983da7 code=0x7ffc0000 [ 592.551994][ T26] audit: type=1326 audit(1738797254.524:1125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9754 comm="syz.2.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdc73928fb9 code=0x7ffc0000 [ 592.585300][ T26] audit: type=1326 audit(1738797254.524:1126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9754 comm="syz.2.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdc73983da7 code=0x7ffc0000 [ 592.609284][ T9773] fuse: Bad value for 'group_id' [ 592.627431][ T26] audit: type=1326 audit(1738797254.534:1127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9754 comm="syz.2.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdc73928fb9 code=0x7ffc0000 [ 592.776428][ T26] audit: type=1326 audit(1738797254.534:1128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9754 comm="syz.2.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdc73983da7 code=0x7ffc0000 [ 592.817831][ T26] audit: type=1326 audit(1738797254.534:1129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9754 comm="syz.2.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdc73928fb9 code=0x7ffc0000 [ 598.045502][ T9822] lo speed is unknown, defaulting to 1000 [ 598.537388][ T26] kauditd_printk_skb: 135 callbacks suppressed [ 598.537469][ T26] audit: type=1326 audit(1738797262.094:1265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.1.1466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 599.166768][ T26] audit: type=1326 audit(1738797262.094:1266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.1.1466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 599.257277][ T26] audit: type=1326 audit(1738797262.104:1267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.1.1466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 599.336230][ T26] audit: type=1326 audit(1738797262.104:1268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.1.1466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 599.543886][ T26] audit: type=1326 audit(1738797262.104:1269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.1.1466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 599.567509][ T26] audit: type=1326 audit(1738797262.104:1270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.1.1466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 599.590362][ T26] audit: type=1326 audit(1738797262.104:1271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.1.1466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 599.616362][ T26] audit: type=1326 audit(1738797262.104:1272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.1.1466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 599.656810][ T26] audit: type=1326 audit(1738797262.104:1273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.1.1466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 600.359354][ T26] audit: type=1326 audit(1738797262.104:1274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.1.1466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f532db8cde9 code=0x7ffc0000 [ 600.874935][ T9858] lo speed is unknown, defaulting to 1000 [ 601.434518][ T9868] lo speed is unknown, defaulting to 1000 [ 604.494505][ T9891] Driver unsupported XDP return value 0 on prog (id 363) dev N/A, expect packet loss! [ 604.732596][ T9899] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1486'. [ 604.980782][ T9905] lo speed is unknown, defaulting to 1000 [ 605.163399][ T9909] Process accounting resumed [ 606.238230][ T26] kauditd_printk_skb: 56 callbacks suppressed [ 606.238249][ T26] audit: type=1326 audit(1738797269.254:1331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9911 comm="syz.0.1492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 606.789558][ T26] audit: type=1326 audit(1738797269.254:1332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9911 comm="syz.0.1492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 606.923634][ T26] audit: type=1326 audit(1738797269.254:1333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9911 comm="syz.0.1492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 606.951262][ T26] audit: type=1326 audit(1738797269.264:1334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9911 comm="syz.0.1492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 606.976499][ T26] audit: type=1326 audit(1738797269.264:1335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9911 comm="syz.0.1492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 607.000637][ T26] audit: type=1326 audit(1738797269.264:1336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9911 comm="syz.0.1492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 607.120153][ T26] audit: type=1326 audit(1738797269.264:1337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9911 comm="syz.0.1492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 607.203973][ T26] audit: type=1326 audit(1738797269.264:1338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9911 comm="syz.0.1492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 607.227470][ T26] audit: type=1326 audit(1738797269.274:1339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9911 comm="syz.0.1492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 607.285930][ T26] audit: type=1326 audit(1738797269.274:1340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9911 comm="syz.0.1492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 607.461391][ T9948] tipc: Enabling of bearer rejected, already enabled [ 608.051073][ T9955] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1504'. [ 608.226829][ T9952] lo speed is unknown, defaulting to 1000 [ 608.398136][ T9970] netlink: 'syz.0.1506': attribute type 4 has an invalid length. [ 608.497607][ T4324] lo speed is unknown, defaulting to 1000 [ 611.135063][T10003] tipc: Enabling of bearer rejected, already enabled [ 614.084083][T10029] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1524'. [ 614.094464][T10030] tipc: Enabled bearer , priority 0 [ 614.444715][ T26] kauditd_printk_skb: 99 callbacks suppressed [ 614.445109][ T26] audit: type=1326 audit(1738797278.004:1440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10039 comm="syz.2.1527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7398cde9 code=0x7ffc0000 [ 615.105744][ T26] audit: type=1326 audit(1738797278.004:1441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10039 comm="syz.2.1527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7398cde9 code=0x7ffc0000 [ 615.324290][ T26] audit: type=1326 audit(1738797278.004:1442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10039 comm="syz.2.1527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fdc7398cde9 code=0x7ffc0000 [ 615.433350][ T26] audit: type=1326 audit(1738797278.004:1443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10039 comm="syz.2.1527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7398cde9 code=0x7ffc0000 [ 615.622492][ T26] audit: type=1326 audit(1738797278.004:1444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10039 comm="syz.2.1527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7398cde9 code=0x7ffc0000 [ 615.730725][ T26] audit: type=1326 audit(1738797278.004:1445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10039 comm="syz.2.1527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7fdc7398cde9 code=0x7ffc0000 [ 615.827223][ T26] audit: type=1326 audit(1738797278.004:1446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10039 comm="syz.2.1527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7398cde9 code=0x7ffc0000 [ 615.851090][ T26] audit: type=1326 audit(1738797278.004:1447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10039 comm="syz.2.1527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7398cde9 code=0x7ffc0000 [ 615.883647][ T26] audit: type=1326 audit(1738797278.014:1448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10039 comm="syz.2.1527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc7398cde9 code=0x7ffc0000 [ 615.930670][ T26] audit: type=1326 audit(1738797278.014:1449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10039 comm="syz.2.1527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7398cde9 code=0x7ffc0000 [ 617.461380][T10072] netlink: 136 bytes leftover after parsing attributes in process `syz.2.1535'. [ 618.484379][T10080] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1539'. [ 620.440119][ T26] kauditd_printk_skb: 23 callbacks suppressed [ 620.440139][ T26] audit: type=1326 audit(1738797283.334:1473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10090 comm="syz.0.1541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 621.009132][ T26] audit: type=1326 audit(1738797283.334:1474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10090 comm="syz.0.1541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 621.040007][ T26] audit: type=1326 audit(1738797283.344:1475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10090 comm="syz.0.1541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 621.083012][ T26] audit: type=1326 audit(1738797283.344:1476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10090 comm="syz.0.1541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 621.119651][ T26] audit: type=1326 audit(1738797283.344:1477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10090 comm="syz.0.1541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 621.312149][ T26] audit: type=1326 audit(1738797283.344:1478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10090 comm="syz.0.1541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 621.539241][ T26] audit: type=1326 audit(1738797283.354:1479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10090 comm="syz.0.1541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 622.682933][T10118] netlink: 136 bytes leftover after parsing attributes in process `syz.3.1548'. [ 623.262915][ T26] audit: type=1326 audit(1738797283.354:1480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10090 comm="syz.0.1541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 623.496597][T10124] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1550'. [ 623.516897][ T26] audit: type=1326 audit(1738797283.354:1481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10090 comm="syz.0.1541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 623.551015][ T26] audit: type=1326 audit(1738797283.354:1482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10090 comm="syz.0.1541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 623.768626][T10126] device wg2 entered promiscuous mode [ 624.482213][ T1265] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.594269][ T1265] ieee802154 phy1 wpan1: encryption failed: -22 [ 627.112943][T10159] netlink: 156 bytes leftover after parsing attributes in process `syz.4.1561'. [ 629.837980][ T26] kauditd_printk_skb: 80 callbacks suppressed [ 629.838016][ T26] audit: type=1326 audit(1738797293.384:1563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10180 comm="syz.3.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 630.286597][ T26] audit: type=1326 audit(1738797293.384:1564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10180 comm="syz.3.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 630.316263][ T26] audit: type=1326 audit(1738797293.384:1565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10180 comm="syz.3.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 630.401304][ T26] audit: type=1326 audit(1738797293.384:1566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10180 comm="syz.3.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 630.432907][ T26] audit: type=1326 audit(1738797293.384:1567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10180 comm="syz.3.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 631.400351][ T26] audit: type=1326 audit(1738797293.384:1568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10180 comm="syz.3.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 632.323524][T10210] netlink: 156 bytes leftover after parsing attributes in process `syz.4.1575'. [ 632.725559][ T26] audit: type=1326 audit(1738797293.384:1569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10180 comm="syz.3.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 633.883154][T10229] fuse: Unknown parameter 'group_i00000000000000000000' [ 633.890609][ T26] audit: type=1326 audit(1738797293.384:1570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10180 comm="syz.3.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 633.942829][ T26] audit: type=1326 audit(1738797293.394:1571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10180 comm="syz.3.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 633.993199][ T26] audit: type=1326 audit(1738797293.394:1572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10180 comm="syz.3.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a1a18cde9 code=0x7ffc0000 [ 636.235010][ T26] kauditd_printk_skb: 35 callbacks suppressed [ 636.235029][ T26] audit: type=1326 audit(1738797297.944:1608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10233 comm="syz.0.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 636.363398][ T26] audit: type=1326 audit(1738797297.944:1609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10233 comm="syz.0.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 636.439213][ T26] audit: type=1326 audit(1738797297.944:1610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10233 comm="syz.0.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 636.544787][ T26] audit: type=1326 audit(1738797297.944:1611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10233 comm="syz.0.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 636.568194][ T26] audit: type=1326 audit(1738797297.944:1612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10233 comm="syz.0.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 636.598987][ T26] audit: type=1326 audit(1738797297.944:1613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10233 comm="syz.0.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 636.692422][ T26] audit: type=1326 audit(1738797297.944:1614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10233 comm="syz.0.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 636.890405][ T26] audit: type=1326 audit(1738797297.944:1615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10233 comm="syz.0.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 638.593033][T10262] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1591'. [ 639.639310][ T26] audit: type=1326 audit(1738797297.954:1616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10233 comm="syz.0.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 640.573257][T10273] netlink: 'syz.4.1593': attribute type 1 has an invalid length. [ 640.759702][T10276] fuse: Unknown parameter 'group_i00000000000000000000' [ 640.831538][ T26] audit: type=1326 audit(1738797297.954:1617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10233 comm="syz.0.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2021d8cde9 code=0x7ffc0000 [ 640.844491][T10273] 8021q: adding VLAN 0 to HW filter on device bond1 [ 641.480673][ T26] kauditd_printk_skb: 35 callbacks suppressed [ 641.480882][ T26] audit: type=1326 audit(1738797304.854:1653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10277 comm="syz.2.1598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7398cde9 code=0x7ffc0000 [ 641.952839][ T26] audit: type=1326 audit(1738797304.854:1654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10277 comm="syz.2.1598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7398cde9 code=0x7ffc0000 [ 641.992831][ T26] audit: type=1326 audit(1738797304.864:1655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10277 comm="syz.2.1598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7fdc7398cde9 code=0x7ffc0000 [ 642.102910][ T26] audit: type=1326 audit(1738797304.864:1656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10277 comm="syz.2.1598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7398cde9 code=0x7ffc0000 [ 642.202577][ T26] audit: type=1326 audit(1738797304.864:1657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10277 comm="syz.2.1598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7398cde9 code=0x7ffc0000 [ 642.242476][ T26] audit: type=1326 audit(1738797304.864:1658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10277 comm="syz.2.1598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fdc7398cde9 code=0x7ffc0000 [ 642.312670][ T26] audit: type=1326 audit(1738797304.864:1659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10277 comm="syz.2.1598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7398cde9 code=0x7ffc0000 [ 642.372457][ T26] audit: type=1326 audit(1738797304.864:1660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10277 comm="syz.2.1598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7398cde9 code=0x7ffc0000 [ 642.440843][ T26] audit: type=1326 audit(1738797304.864:1661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10277 comm="syz.2.1598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7fdc7398cde9 code=0x7ffc0000 [ 642.464019][ T26] audit: type=1326 audit(1738797304.864:1662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10277 comm="syz.2.1598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7398cde9 code=0x7ffc0000 [ 643.453932][T10316] fuse: Unknown parameter 'group_i00000000000000000000' [ 645.253256][T10336] netlink: 'syz.2.1613': attribute type 1 has an invalid length. [ 645.426067][T10341] Process accounting resumed [ 645.894986][T10336] 8021q: adding VLAN 0 to HW filter on device bond1 [ 646.590192][T10354] fuse: Unknown parameter 'group_id00000000000000000000' [ 647.620228][ T26] kauditd_printk_skb: 80 callbacks suppressed [ 647.620335][ T26] audit: type=1326 audit(1738797310.794:1743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10369 comm="syz.4.1630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 647.994799][ T26] audit: type=1326 audit(1738797310.794:1744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10369 comm="syz.4.1630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 648.253777][T10380] netlink: 'syz.3.1629': attribute type 4 has an invalid length. [ 648.289286][ T26] audit: type=1326 audit(1738797310.804:1745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10369 comm="syz.4.1630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 648.319028][ T26] audit: type=1326 audit(1738797310.804:1746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10369 comm="syz.4.1630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 648.368092][ T26] audit: type=1326 audit(1738797310.804:1747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10369 comm="syz.4.1630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 648.399895][ T26] audit: type=1326 audit(1738797310.814:1748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10369 comm="syz.4.1630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 648.423500][ T26] audit: type=1326 audit(1738797310.814:1749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10369 comm="syz.4.1630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 648.499916][ T26] audit: type=1326 audit(1738797310.814:1750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10369 comm="syz.4.1630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 648.637985][ T26] audit: type=1326 audit(1738797310.814:1751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10369 comm="syz.4.1630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 648.902118][ T26] audit: type=1326 audit(1738797310.824:1752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10369 comm="syz.4.1630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec2818cde9 code=0x7ffc0000 [ 649.104324][T10392] lo speed is unknown, defaulting to 1000 [ 649.161649][T10394] fuse: Unknown parameter 'group_id00000000000000000000' [ 654.547900][T10442] lo speed is unknown, defaulting to 1000 [ 658.158319][T10487] netlink: 'syz.0.1658': attribute type 4 has an invalid length. [ 660.136763][T10505] lo speed is unknown, defaulting to 1000 [ 661.200323][T10515] lo speed is unknown, defaulting to 1000 [ 665.612437][T10539] lo speed is unknown, defaulting to 1000 [ 665.659992][T10550] lo speed is unknown, defaulting to 1000 [ 666.097926][T10560] lo speed is unknown, defaulting to 1000 [ 666.905438][T10577] netlink: 'syz.0.1692': attribute type 4 has an invalid length. [ 669.127678][T10599] lo speed is unknown, defaulting to 1000 [ 669.403397][T10605] lo speed is unknown, defaulting to 1000 [ 673.655536][ C0] [ 673.657908][ C0] ====================================================== [ 673.664919][ C0] WARNING: possible circular locking dependency detected [ 673.671936][ C0] 6.1.128-syzkaller #0 Not tainted [ 673.677033][ C0] ------------------------------------------------------ [ 673.684031][ C0] syz.1.1709/10635 is trying to acquire lock: [ 673.690072][ C0] ffff8880b8e28118 (krc.lock){..-.}-{2:2}, at: kvfree_call_rcu+0x1b2/0x8c0 [ 673.698670][ C0] [ 673.698670][ C0] but task is already holding lock: [ 673.706019][ C0] ffff8880b8e28358 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x120/0x260 [ 673.714878][ C0] [ 673.714878][ C0] which lock already depends on the new lock. [ 673.714878][ C0] [ 673.725266][ C0] [ 673.725266][ C0] the existing dependency chain (in reverse order) is: [ 673.734258][ C0] [ 673.734258][ C0] -> #1 (&base->lock){-.-.}-{2:2}: [ 673.741541][ C0] lock_acquire+0x1f8/0x5a0 [ 673.746557][ C0] _raw_spin_lock_irqsave+0xd1/0x120 [ 673.752350][ C0] lock_timer_base+0x120/0x260 [ 673.757633][ C0] __mod_timer+0x1cb/0xee0 [ 673.762566][ C0] queue_delayed_work_on+0x156/0x250 [ 673.768368][ C0] kvfree_call_rcu+0x520/0x8c0 [ 673.773639][ C0] rtnl_register_internal+0x489/0x580 [ 673.779519][ C0] rtnl_register+0x32/0x70 [ 673.784446][ C0] ip_rt_init+0x335/0x3c7 [ 673.789286][ C0] ip_init+0xa/0x14 [ 673.793601][ C0] inet_init+0x2ae/0x3c0 [ 673.798346][ C0] do_one_initcall+0x265/0x8f0 [ 673.803630][ C0] do_initcall_level+0x157/0x207 [ 673.809081][ C0] do_initcalls+0x49/0x86 [ 673.813914][ C0] kernel_init_freeable+0x45c/0x60f [ 673.819625][ C0] kernel_init+0x19/0x290 [ 673.824460][ C0] ret_from_fork+0x1f/0x30 [ 673.829384][ C0] [ 673.829384][ C0] -> #0 (krc.lock){..-.}-{2:2}: [ 673.836406][ C0] validate_chain+0x1661/0x5950 [ 673.841760][ C0] __lock_acquire+0x125b/0x1f80 [ 673.847118][ C0] lock_acquire+0x1f8/0x5a0 [ 673.852128][ C0] _raw_spin_lock+0x2a/0x40 [ 673.857140][ C0] kvfree_call_rcu+0x1b2/0x8c0 [ 673.862419][ C0] trie_delete_elem+0x53a/0x690 [ 673.867790][ C0] bpf_prog_2c29ac5cdc6b1842+0x3a/0x3e [ 673.873774][ C0] bpf_trace_run3+0x231/0x440 [ 673.878955][ C0] enqueue_timer+0x440/0x600 [ 673.884050][ C0] __mod_timer+0x92b/0xee0 [ 673.888971][ C0] dsp_cmx_send+0x21bb/0x2240 [ 673.894221][ C0] call_timer_fn+0x1ad/0x6b0 [ 673.899326][ C0] __run_timers+0x67c/0x890 [ 673.904337][ C0] run_timer_softirq+0x63/0xf0 [ 673.909609][ C0] handle_softirqs+0x2ee/0xa40 [ 673.914883][ C0] __irq_exit_rcu+0x157/0x240 [ 673.920071][ C0] irq_exit_rcu+0x5/0x20 [ 673.924826][ C0] sysvec_apic_timer_interrupt+0xa0/0xc0 [ 673.930969][ C0] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 673.937458][ C0] _raw_spin_unlock_irq+0x25/0x40 [ 673.942991][ C0] filemap_remove_folio+0x10d/0x2e0 [ 673.948708][ C0] truncate_inode_folio+0x59/0x70 [ 673.954244][ C0] shmem_undo_range+0x570/0x2390 [ 673.959695][ C0] shmem_evict_inode+0x265/0xa60 [ 673.965153][ C0] evict+0x529/0x930 [ 673.969573][ C0] __dentry_kill+0x436/0x650 [ 673.974672][ C0] dentry_kill+0xbb/0x290 [ 673.979506][ C0] dput+0xfb/0x1d0 [ 673.983736][ C0] __fput+0x62e/0x8d0 [ 673.988229][ C0] task_work_run+0x246/0x300 [ 673.993328][ C0] do_exit+0xa6e/0x26a0 [ 673.997993][ C0] do_group_exit+0x202/0x2b0 [ 674.003094][ C0] get_signal+0x16f7/0x17d0 [ 674.008108][ C0] arch_do_signal_or_restart+0xb0/0x1a10 [ 674.014248][ C0] exit_to_user_mode_loop+0x6a/0x100 [ 674.020038][ C0] exit_to_user_mode_prepare+0xb1/0x140 [ 674.026088][ C0] syscall_exit_to_user_mode+0x60/0x270 [ 674.032142][ C0] do_syscall_64+0x47/0xb0 [ 674.037062][ C0] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 674.043469][ C0] [ 674.043469][ C0] other info that might help us debug this: [ 674.043469][ C0] [ 674.053682][ C0] Possible unsafe locking scenario: [ 674.053682][ C0] [ 674.061128][ C0] CPU0 CPU1 [ 674.066481][ C0] ---- ---- [ 674.071839][ C0] lock(&base->lock); [ 674.075901][ C0] lock(krc.lock); [ 674.082213][ C0] lock(&base->lock); [ 674.088784][ C0] lock(krc.lock); [ 674.092574][ C0] [ 674.092574][ C0] *** DEADLOCK *** [ 674.092574][ C0] [ 674.100705][ C0] 5 locks held by syz.1.1709/10635: [ 674.105882][ C0] #0: ffff88807ecfd3f0 (&sb->s_type->i_lock_key){+.+.}-{2:2}, at: filemap_remove_folio+0xef/0x2e0 [ 674.116576][ C0] #1: ffffc90000007bc0 ((&dsp_spl_tl)){+.-.}-{0:0}, at: call_timer_fn+0xc2/0x6b0 [ 674.125790][ C0] #2: ffffffff8e2a5e18 (dsp_lock){..-.}-{2:2}, at: dsp_cmx_send+0x22/0x2240 [ 674.134568][ C0] #3: ffff8880b8e28358 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x120/0x260 [ 674.143875][ C0] #4: ffffffff8d32b0c0 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run3+0x146/0x440 [ 674.153260][ C0] [ 674.153260][ C0] stack backtrace: [ 674.159132][ C0] CPU: 0 PID: 10635 Comm: syz.1.1709 Not tainted 6.1.128-syzkaller #0 [ 674.167266][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 674.177302][ C0] Call Trace: [ 674.180567][ C0] [ 674.183398][ C0] dump_stack_lvl+0x1e3/0x2cb [ 674.188061][ C0] ? nf_tcp_handle_invalid+0x642/0x642 [ 674.193506][ C0] ? print_circular_bug+0x12b/0x1a0 [ 674.198777][ C0] check_noncircular+0x2fa/0x3b0 [ 674.203703][ C0] ? add_chain_block+0x850/0x850 [ 674.208627][ C0] ? queued_spin_lock_slowpath+0x42/0x50 [ 674.214250][ C0] ? lockdep_lock+0x1a7/0x2a0 [ 674.218915][ C0] ? __lock_acquire+0x125b/0x1f80 [ 674.223932][ C0] ? _find_first_zero_bit+0xd0/0x100 [ 674.229206][ C0] validate_chain+0x1661/0x5950 [ 674.234046][ C0] ? __stack_depot_save+0x3f5/0x470 [ 674.239231][ C0] ? reacquire_held_locks+0x660/0x660 [ 674.244586][ C0] ? do_raw_spin_unlock+0x137/0x8a0 [ 674.249771][ C0] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 674.255654][ C0] ? _raw_spin_unlock+0x40/0x40 [ 674.260491][ C0] ? stack_trace_save+0x113/0x1c0 [ 674.265506][ C0] ? stack_trace_snprint+0xe0/0xe0 [ 674.270604][ C0] ? mark_lock+0x9a/0x340 [ 674.274923][ C0] __lock_acquire+0x125b/0x1f80 [ 674.279772][ C0] lock_acquire+0x1f8/0x5a0 [ 674.284266][ C0] ? kvfree_call_rcu+0x1b2/0x8c0 [ 674.289186][ C0] ? do_exit+0xa6e/0x26a0 [ 674.293502][ C0] ? do_group_exit+0x202/0x2b0 [ 674.298265][ C0] ? get_signal+0x16f7/0x17d0 [ 674.302933][ C0] ? read_lock_is_recursive+0x10/0x10 [ 674.308300][ C0] ? __phys_addr+0xb6/0x170 [ 674.312792][ C0] _raw_spin_lock+0x2a/0x40 [ 674.317288][ C0] ? kvfree_call_rcu+0x1b2/0x8c0 [ 674.322207][ C0] kvfree_call_rcu+0x1b2/0x8c0 [ 674.326958][ C0] ? rcu_leak_callback+0x10/0x10 [ 674.331881][ C0] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 674.337766][ C0] ? _raw_spin_unlock+0x40/0x40 [ 674.342605][ C0] ? longest_prefix_match+0x318/0x640 [ 674.347973][ C0] trie_delete_elem+0x53a/0x690 [ 674.352823][ C0] bpf_prog_2c29ac5cdc6b1842+0x3a/0x3e [ 674.358268][ C0] bpf_trace_run3+0x231/0x440 [ 674.362932][ C0] ? bpf_trace_run3+0x146/0x440 [ 674.367767][ C0] ? bpf_trace_run2+0x410/0x410 [ 674.372603][ C0] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 674.378483][ C0] ? _raw_spin_lock_irqsave+0xdd/0x120 [ 674.383930][ C0] ? _raw_spin_lock+0x40/0x40 [ 674.388595][ C0] enqueue_timer+0x440/0x600 [ 674.393174][ C0] __mod_timer+0x92b/0xee0 [ 674.397576][ C0] ? mod_timer_pending+0x20/0x20 [ 674.402496][ C0] ? _raw_read_unlock_irqrestore+0xd9/0x130 [ 674.408378][ C0] ? _raw_read_unlock+0x40/0x40 [ 674.413217][ C0] ? _raw_spin_lock_irqsave+0xdd/0x120 [ 674.418664][ C0] ? _raw_spin_lock+0x40/0x40 [ 674.423330][ C0] ? ktime_get+0x242/0x270 [ 674.427739][ C0] dsp_cmx_send+0x21bb/0x2240 [ 674.432400][ C0] ? read_lock_is_recursive+0x10/0x10 [ 674.437764][ C0] ? detach_timer+0x26/0x380 [ 674.442340][ C0] ? __rwlock_init+0x140/0x140 [ 674.447095][ C0] call_timer_fn+0x1ad/0x6b0 [ 674.451671][ C0] ? dsp_cmx_receive+0x1370/0x1370 [ 674.456768][ C0] ? call_timer_fn+0xc2/0x6b0 [ 674.461428][ C0] ? __run_timers+0x890/0x890 [ 674.466094][ C0] ? do_raw_spin_unlock+0x137/0x8a0 [ 674.471279][ C0] ? _raw_spin_unlock_irq+0x1f/0x40 [ 674.476466][ C0] ? dsp_cmx_receive+0x1370/0x1370 [ 674.481580][ C0] ? lockdep_hardirqs_on+0x94/0x130 [ 674.486764][ C0] ? dsp_cmx_receive+0x1370/0x1370 [ 674.491859][ C0] __run_timers+0x67c/0x890 [ 674.496352][ C0] ? detach_timer+0x380/0x380 [ 674.501037][ C0] ? print_irqtrace_events+0x210/0x210 [ 674.506485][ C0] ? seqcount_lockdep_reader_access+0x1bd/0x220 [ 674.512724][ C0] run_timer_softirq+0x63/0xf0 [ 674.517481][ C0] handle_softirqs+0x2ee/0xa40 [ 674.522238][ C0] ? __irq_exit_rcu+0x157/0x240 [ 674.527079][ C0] ? do_softirq+0x240/0x240 [ 674.531575][ C0] ? irqtime_account_irq+0xd0/0x1e0 [ 674.536759][ C0] __irq_exit_rcu+0x157/0x240 [ 674.541425][ C0] ? irq_exit_rcu+0x20/0x20 [ 674.545922][ C0] irq_exit_rcu+0x5/0x20 [ 674.550152][ C0] sysvec_apic_timer_interrupt+0xa0/0xc0 [ 674.555781][ C0] [ 674.558695][ C0] [ 674.561616][ C0] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 674.567582][ C0] RIP: 0010:_raw_spin_unlock_irq+0x25/0x40 [ 674.573382][ C0] Code: a1 95 f5 ff 90 53 48 89 fb 48 83 c7 18 48 8b 74 24 08 e8 8e 87 ad f6 48 89 df e8 86 c5 ae f6 e8 11 1d d4 f6 fb bf 01 00 00 00 76 4f a1 f6 65 8b 05 17 2f 45 75 85 c0 74 02 5b c3 e8 c4 52 43 [ 674.592990][ C0] RSP: 0018:ffffc900046371b8 EFLAGS: 00000286 [ 674.599040][ C0] RAX: aca3e693b1793b00 RBX: ffff88807ecfd580 RCX: ffffffff816b127a [ 674.606996][ C0] RDX: dffffc0000000000 RSI: ffffffff8b0c0340 RDI: 0000000000000001 [ 674.614950][ C0] RBP: 1ffff1100fd9faaf R08: dffffc0000000000 R09: fffffbfff224a04e [ 674.622925][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: ffffea0001416ac0 [ 674.630881][ C0] R13: 000000000000000c R14: ffffea0001416ac0 R15: ffff88807ecfd578 [ 674.638840][ C0] ? mark_lock+0x9a/0x340 [ 674.643167][ C0] ? _raw_spin_unlock_irq+0x1f/0x40 [ 674.648440][ C0] filemap_remove_folio+0x10d/0x2e0 [ 674.653629][ C0] truncate_inode_folio+0x59/0x70 [ 674.658638][ C0] shmem_undo_range+0x570/0x2390 [ 674.663573][ C0] ? shmem_truncate_range+0xb0/0xb0 [ 674.668774][ C0] shmem_evict_inode+0x265/0xa60 [ 674.673698][ C0] ? inode_wait_for_writeback+0x21f/0x280 [ 674.679413][ C0] ? shmem_free_in_core_inode+0xb0/0xb0 [ 674.684942][ C0] ? bit_waitqueue+0x30/0x30 [ 674.689523][ C0] ? do_raw_spin_unlock+0x137/0x8a0 [ 674.694710][ C0] ? shmem_free_in_core_inode+0xb0/0xb0 [ 674.700241][ C0] evict+0x529/0x930 [ 674.704129][ C0] ? proc_nr_inodes+0x310/0x310 [ 674.708971][ C0] ? _raw_spin_unlock+0x24/0x40 [ 674.713810][ C0] ? iput+0x73f/0x980 [ 674.717785][ C0] __dentry_kill+0x436/0x650 [ 674.722366][ C0] dentry_kill+0xbb/0x290 [ 674.726679][ C0] ? dput+0x37/0x1d0 [ 674.730559][ C0] dput+0xfb/0x1d0 [ 674.734267][ C0] __fput+0x62e/0x8d0 [ 674.738240][ C0] task_work_run+0x246/0x300 [ 674.742819][ C0] ? task_work_cancel+0x2e0/0x2e0 [ 674.747834][ C0] ? exit_task_namespaces+0xdd/0xf0 [ 674.753018][ C0] do_exit+0xa6e/0x26a0 [ 674.757169][ C0] ? put_task_struct+0x80/0x80 [ 674.761919][ C0] ? get_signal+0x137e/0x17d0 [ 674.766608][ C0] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 674.772577][ C0] ? print_irqtrace_events+0x210/0x210 [ 674.778022][ C0] ? _raw_spin_lock_irq+0xdb/0x110 [ 674.783125][ C0] do_group_exit+0x202/0x2b0 [ 674.787708][ C0] ? _raw_spin_unlock_irq+0x1f/0x40 [ 674.792894][ C0] ? lockdep_hardirqs_on+0x94/0x130 [ 674.798076][ C0] get_signal+0x16f7/0x17d0 [ 674.802572][ C0] ? ptrace_notify+0x370/0x370 [ 674.807324][ C0] ? futex_wake+0x4bd/0x590 [ 674.811816][ C0] arch_do_signal_or_restart+0xb0/0x1a10 [ 674.817442][ C0] ? __lock_acquire+0x1f80/0x1f80 [ 674.822459][ C0] ? get_sigframe_size+0x10/0x10 [ 674.827387][ C0] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 674.833364][ C0] ? exit_to_user_mode_loop+0x39/0x100 [ 674.838808][ C0] exit_to_user_mode_loop+0x6a/0x100 [ 674.844080][ C0] exit_to_user_mode_prepare+0xb1/0x140 [ 674.849611][ C0] syscall_exit_to_user_mode+0x60/0x270 [ 674.855145][ C0] do_syscall_64+0x47/0xb0 [ 674.859542][ C0] ? clear_bhb_loop+0x45/0xa0 [ 674.864210][ C0] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 674.870095][ C0] RIP: 0033:0x7f532db8cde9 [ 674.874495][ C0] Code: Unable to access opcode bytes at 0x7f532db8cdbf. [ 674.881509][ C0] RSP: 002b:00007f532eab4038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 674.889907][ C0] RAX: 0000000000010106 RBX: 00007f532dda6080 RCX: 00007f532db8cde9 [ 674.897882][ C0] RDX: 0000000000010106 RSI: 00002000000000c0 RDI: 0000000000000003 [ 674.905847][ C0] RBP: 00007f532dc0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 674.913805][ C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000 [ 674.921763][ C0] R13: 0000000000000000 R14: 00007f532dda6080 R15: 00007fff43dba5a8 [ 674.929725][ C0] [ 674.993384][T10645] lo speed is unknown, defaulting to 1000