last executing test programs: 26m53.349368898s ago: executing program 1 (id=221): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) pselect6(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400), 0x0) 26m49.338917701s ago: executing program 1 (id=223): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0x6, 0x1008, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0) sendmsg$NFT_BATCH(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000020000a3c000000120a09080000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a"], 0x64}}, 0x0) 26m45.326827924s ago: executing program 1 (id=224): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000080000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000040008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000100)={{0x1, 0x0, 0x0, 0x3}}) close_range(r2, 0xffffffffffffffff, 0x400000000000000) 26m42.761352086s ago: executing program 1 (id=225): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10) r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) setpgid(r2, r2) waitid(0x2, r2, 0x0, 0x4, 0x0) 26m36.703587398s ago: executing program 1 (id=227): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000010000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0) 26m31.705758979s ago: executing program 1 (id=231): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x21, 0x0, 0x0, 0x100000, 0x400, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2000000, 0x0, 0x200000000000000, @void, @value, @void, @value}, 0x50) 25m44.538910031s ago: executing program 32 (id=231): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x21, 0x0, 0x0, 0x100000, 0x400, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2000000, 0x0, 0x200000000000000, @void, @value, @void, @value}, 0x50) 1m0.445653315s ago: executing program 0 (id=632): write$RDMA_USER_CM_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000200)={0x6, 0x118, 0xfa00, {{0x101, 0x0, "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", 0xfc, 0x5, 0x0, 0x5, 0xc4, 0x6, 0xb6, 0x1}}}, 0x120) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000580)=@ipv6_newnexthop={0x20, 0x68, 0x1, 0x0, 0x0, {}, [@NHA_OIF={0x8}]}, 0x20}}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) tee(r1, r0, 0xb, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0xb8, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_DST={0x24, 0xd, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @dev}, @CTA_NAT_PROTO={0xc, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6}]}]}]}, 0xb8}}, 0x0) r4 = socket$igmp6(0xa, 0x3, 0x2) setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488) syz_emit_ethernet(0x66, &(0x7f0000000000)={@random="cf702e8cf675", @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x30, 0x3a, 0xff, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @ndisc_redir={0x89, 0x0, 0x0, '\x00', @dev, @dev, [{0x4, 0x1, "703b744dc5c6"}]}}}}}}, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) ioctl$VHOST_SET_VRING_ERR(0xffffffffffffffff, 0x4008af22, 0x0) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x12, 0x24, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000780)={{r5, 0xffffffffffffffff}, &(0x7f0000000700), &(0x7f0000000740)=r2}, 0x20) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000040)={r6, &(0x7f0000000300), &(0x7f00000005c0)=""/255}, 0x20) fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000340), &(0x7f0000000380), 0x2, 0x2) 45.11327645s ago: executing program 0 (id=634): syz_usb_connect(0x0, 0x24, &(0x7f0000000700)=ANY=[@ANYBLOB="120100003ace440844100d805c57010203410902120001000000000904000000ef0101"], 0x0) socket$kcm(0x11, 0xa, 0x300) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x54, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x560b0007, &(0x7f0000000000)="259a53f271a76d2608064c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 34.61556337s ago: executing program 2 (id=635): r0 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0) r1 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000940)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r1, 0xc05064a7, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000008c0)=[0x0], &(0x7f0000000900), 0x0, 0x1, 0x0, 0x0, r2}) ioctl$DRM_IOCTL_MODE_SETPROPERTY(r0, 0xc01064ab, &(0x7f0000000000)={0x1, r3, r2}) r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000480)=[0x0], 0x1}) ioctl$DRM_IOCTL_MODE_GETPLANE(r4, 0xc02064b6, &(0x7f00000001c0)={r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r4, 0xc02064b9, &(0x7f00000002c0)={&(0x7f0000000400)=[0x0], &(0x7f0000000280), 0x1, r6, 0xffdd}) 28.184731669s ago: executing program 2 (id=636): r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r0, 0xc01064bd, &(0x7f0000000040)={&(0x7f00000000c0)="82", 0x1}) ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r0, 0xc01064bd, &(0x7f00000004c0)={&(0x7f0000000480)="a8", 0x1}) close(r0) (fail_nth: 6) 27.145014518s ago: executing program 0 (id=637): r0 = socket$nl_route(0x10, 0x3, 0x0) write$P9_RLERRORu(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="190000000f0063ea947a21d023235e2d2c2e2a252107000000"], 0x19) r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$BLKRRPART(0xffffffffffffffff, 0x125f, 0x0) lseek(r1, 0x0, 0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10) socket$nl_sock_diag(0x10, 0x3, 0x4) r3 = socket$inet(0x2, 0x2, 0x1) r4 = socket(0x840000000002, 0x3, 0xff) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r5, 0x10e, 0x1, &(0x7f0000000600)=0x1, 0x4) setsockopt$IPT_SO_SET_REPLACE(r4, 0x4000000000000, 0x40, &(0x7f0000000080)=@raw={'raw\x00', 0xc01, 0x3, 0x250, 0x128, 0x5002004a, 0x0, 0x128, 0x0, 0x1b8, 0x3c8, 0x3c8, 0x1b8, 0x3c8, 0x3, 0x0, {[{{@ip={@multicast1, @empty, 0x0, 0x0, 'veth0_virt_wifi\x00', 'ip6tnl0\x00'}, 0x0, 0xe0, 0x128, 0x0, {}, [@common=@unspec=@connlimit={{0x40}}, @common=@unspec=@connmark={{0x30}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x6}}}, {{@uncond, 0x0, 0x70, 0x90}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x2b0) sendmsg$inet(r3, &(0x7f0000000600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000002100)="0800a9fc0da6b30a", 0x8}], 0x1, &(0x7f0000001d00)=ANY=[@ANYBLOB="18000000000000000000000007000000890704ac1414aa0011000000000000000001"], 0x30}, 0x0) sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff) r7 = socket(0x10, 0x3, 0x0) getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0) r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001f80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r9, 0x20e, 0xe40, 0xfd000004, &(0x7f00000004c0)="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", 0x0, 0x31, 0x6000000000000000, 0xfffffffffffffe7e, 0x1d4}, 0x28) setresuid(0x0, r8, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r8, @ANYBLOB="0100ed000000000000000200000008000100ff"], 0x1c}}, 0x0) r10 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000c80)={'lo\x00', 0x0}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x28, 0x2, {{}, [@TCA_NETEM_CORRUPT={0xc, 0x4, {0xfffffffd}}]}}}]}, 0x58}}, 0x0) sendto$inet(r2, &(0x7f0000000900)="01", 0x1, 0x0, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@ipv6_deladdrlabel={0x38, 0x49, 0x1, 0x70bd26, 0x25dfdbfe, {0xa, 0x0, 0x80, 0x0, r11, 0x36ab}, [@IFAL_ADDRESS={0x14, 0x1, @loopback}, @IFAL_LABEL={0x8, 0x2, 0x4}]}, 0x38}}, 0x0) 23.10336851s ago: executing program 2 (id=638): socket$nl_route(0x10, 0x3, 0x0) r0 = openat$sysfs(0xffffff9c, &(0x7f0000000040)='/sys/kernel/notes', 0x101800, 0x81) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x2c, &(0x7f0000000180)={0x0, 0x3d2}}, 0x0) getsockname$packet(r1, &(0x7f0000003880)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000300)=0x14) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8, 0x1, r2}]}}}]}, 0x3c}}, 0x0) r3 = socket(0x10, 0x803, 0x0) getsockname$packet(r1, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000300)=0x14) sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r4}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_TYPE={0x6, 0xf, 0x8}]}}}]}, 0x3c}}, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=@ipv4_newroute={0x1c, 0x18, 0x35f32a6dfa748ddd, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}}, 0x1c}}, 0x0) finit_module(r0, 0x0, 0x1) r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/icmp\x00') preadv(r7, &(0x7f0000000840)=[{&(0x7f0000000880)=""/183, 0xb7}], 0x1, 0x180, 0x0) fanotify_mark(r0, 0x0, 0x8000000, r7, &(0x7f0000000180)='./file0\x00') socket$inet_udplite(0x2, 0x2, 0x88) sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0xd0, 0x0, 0x1, 0x4, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x1}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSCATLST={0xac, 0xc, 0x0, 0x1, [{0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb583}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8da5}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x21d3952}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xfcca}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x624a6e81}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5174}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xefaa}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x31f0fc5}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe1ca}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1338ced0}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5215836c}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x50f}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xea62}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4554796}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x53da}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x372}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3f3d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x302f}]}]}]}, 0xd0}, 0x1, 0x0, 0x0, 0x24048000}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000100)=ANY=[@ANYBLOB="4c0000001800010000000000f8dbdf2102200008000000090000000008000100e000000206001c004e20000008000700e0000002080002"], 0x4c}}, 0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) r8 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e000000180002"], 0x50}}, 0x0) 20.030133884s ago: executing program 0 (id=639): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = userfaultfd(0x801) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000000)) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) write$UHID_CREATE2(r2, &(0x7f00000000c0)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r2, 0x0) ioctl$UFFDIO_CONTINUE(r1, 0x8010aa02, &(0x7f0000000040)={{&(0x7f0000000000/0x2000)=nil, 0x2000}}) r3 = socket$inet(0x2, 0x1, 0x100) setsockopt$sock_int(r3, 0x1, 0x2, &(0x7f0000000040)=0x7f, 0x4) bind$inet(r3, &(0x7f0000e15000)={0x2, 0x4e20, @multicast2}, 0x10) io_setup(0x83, &(0x7f00000003c0)=0x0) io_submit(r4, 0x0, 0x0) madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15) r5 = socket$inet(0x2, 0x1, 0x0) setsockopt$sock_int(r5, 0x1, 0x2, &(0x7f0000000040)=0x1f, 0x4) bind$inet(r5, &(0x7f0000e15000)={0x2, 0x4e20, @multicast2}, 0x10) listen(r5, 0x0) listen(r3, 0x0) r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff) socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)={0x2c, r6, 0x1, 0x0, 0x25dfdbfe, {0x25}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}]}]}, 0x2c}}, 0x0) 16.475789633s ago: executing program 2 (id=640): r0 = signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0) prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) timer_create(0x5, &(0x7f0000000680)={0x0, 0x0, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) timer_settime(0x0, 0x0, 0x0, 0x0) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6}]}) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0) r2 = epoll_create1(0x0) r3 = fcntl$dupfd(r2, 0x2, 0xffffffffffffffff) r4 = fanotify_init(0x20, 0x0) fanotify_mark(r4, 0x1, 0x4000101b, r3, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) r5 = io_uring_setup(0x3d07, &(0x7f0000000080)) mmap(&(0x7f0000000000/0x1000)=nil, 0x1fffff, 0x0, 0x12071, 0xffffffffffffffff, 0x0) io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x1c, &(0x7f00000011c0)=[{0x0}], 0x1) mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x931, 0xffffffffffffffff, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) setsockopt$sock_int(r6, 0x1, 0x7, 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) memfd_create(&(0x7f0000000700)='\xc0\x87:*\x18\xc1k\xa7\x87[\xa0o8\xaaK\xa5\xd3\v\x86\xca<\x7f\xfd6\x8d}\xd8\xf2G\x82E6\x8f\xee\x88e\x7f\b\xe0\xfa\xb1\xd8N\xb2W\xcb\x8d}3lm8\xa57\xc9\x00HOA\xc8\x80k\xde%\x00\xb1\x9aF\xe2\xba[\xc7%\x88 \xeeQR\x9f\x81\x8b\xdc\xc7\xdc\xdem\xbe\x7f2\x11)W\x9c\x82\x91\x17\xd8\xda@4\x9f\xc5\xe3\x8d.\xd1=\xcf\xbf\x81\xb5\x8d%K\x1d\xe7_\xda\x87\xdd\xc1\xf0\x91\x1a!\x9c\xd3\v\xc9\x95d\xe3*\xa9\xfa\x99\x9d\xc0\x89>\xc9\xf2/\x13{\x1a\x7f\x00\x00\x00\x00+$\xedX\xb7KV\x90\xc3D\x82`\xea\x16\xc6\xcef\xab\x05\x19\x96\xb9_6*-\xf3\x8c\x9a\x15\x9c\xf5\xb4O\x17@d\x81+\xf6\xe6+\xed\r\xd2\xb3\xaa\x9b\x7fC\'\xa2\xf6\x12\xa1\x15Punfo\x7f\x92G\x0e.\xcekh\xb9p2\xccC\xbaH\xc4\xdc\xe2\xa1%)\x85\xc7O]\'9\x92\xad\xfbJ\x02\x1d\x91-\xc99\t&\xbdq\x06`T\xc8\x9f\t5\x06\xdd\xaf\x84\xf4\"\x13\xcf\xe5\x93D\xad~F\xe5\x19\xaa\xaa\xb2\xb1\x03m\x82+\x06\x1bF^\xd3n\xc4F\xc1\xc08\x94\xe6\xe5\x1f\xa7\xf6\xcaA\x90T\x1b\xe6\xb9\xe7\xff\xc5H\x04\x8d\xca\xad\x17UlY\x9a}\r4\xac\x93\xac\v2\xc6\xf9\xbe\xfeI\x8b\xd0/`\xab\x1e\xcf\x7f\b\x94 2.{\xc1\xbe\x80th~\xcb\xb9E\x10W\xed\xed51[\xc5\xeb\xb1ux\x94\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xdem\xe3+q:3\xfa*\x98o\'f\xbcY\x8e?\xf9\x84y\x89Y\x1c]\xad$\x7fp\xf1\xa3\xff\xff\xff\x1f\x94\xc2\xdb\xbaG\xa6UD\x88YY\xd4\xff\x00\x9a{]\xe2\x98W\xb9\x13\x17<\x8b!?\x8e\xbc\xae\xf9\xcc\b\x90n\x15\x7f\xd5WS\xfbN\xec)B\xe7R\xa5\xd7O\x83\x80}\xcc7\x99\xdb\xd6\xbd\x9c\x05l\xfc.\xf4\xbbeF\xa3\xea}\xf1\x86z\xca\xad\x82\xd9IRV5\xa77\'\x1a\x1c\x89\xef:\xee\x10\xb2\xd6\xc8\xf4\xb5\xdd\xd8c!@JRYX\xfc\xd4D\x13\"\xb2\x06\xbd&\xf86\xddXv\xc9\x1322L\xd6\xded\x16A!\x8b#1\xf9\x05\x00G\x02\xa3\xe6Bl\xd2\x02\xfb[\x82J\xca\xdf:\x8ft\xe0\xf8\a\x00\x00\x00\x00\x00\x00\x00\x00\xde-U\xd8\xc5\x85\x9d\xb6~p;\xe3\"`\x83\x12\xc1\xa5\xa7\tf\xf2\xde\xe2\x01\xcc\xf7\x1cjq0\x90\xa9g{\x9b6\xc4cN\xcd\xc6\xfbw\x01\xe3Z\x02\xed\xab\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\r?\x1e\xee,\xca\xffn\x1eq\xd6\xccs\x92;\xf5*\xa3\xe6_S\f12+\xf7\x98\x9a\xc0{j\xbb\x1c\x05k\xea#2\xa2U\xfc\xd3c\xe0E\xcc\'\xe7s\xa2\x7f\xd1 ,\x91\x8b(L\x00\xc0\xaf\xd2\xc5', 0x0) ptrace(0x10, 0x1) syz_clone3(&(0x7f0000000300)={0x10000000, 0x0, &(0x7f0000000140), &(0x7f0000000180)=0x0, {0x2e}, &(0x7f00000001c0)=""/6, 0x6, &(0x7f0000000200)=""/151, &(0x7f00000002c0)=[0x0], 0x1, {r0}}, 0x58) waitid(0x2, r7, 0x0, 0x4, &(0x7f0000000440)) 13.260387842s ago: executing program 0 (id=641): syz_usb_connect(0x0, 0x24, 0x0, 0x0) socket$kcm(0x11, 0xa, 0x300) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x54, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x560b0007, &(0x7f0000000000)="259a53f271a76d2608064c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 7.758901905s ago: executing program 2 (id=642): timer_create(0x0, 0x0, &(0x7f00000022c0)) timer_delete(0x0) r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) add_key$fscrypt_v1(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xfffffffffffffff8) r1 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r1, &(0x7f00000003c0)='@', 0x1, 0x0, &(0x7f0000000380)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10) r2 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x7b, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f00000000c0)={r3, @in={{0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}}}, &(0x7f0000000180)=0x9c) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f0000000080)={0x7, 0x8, 0xfa00, {r4}}, 0x10) r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) ppoll(&(0x7f00000001c0)=[{r0, 0x8480}, {r5, 0x8}, {r2, 0x8700}], 0x3, &(0x7f0000000100)={0x77359400}, &(0x7f0000000140)={[0x400000]}, 0x8) close_range(r5, r0, 0x2) 229.199123ms ago: executing program 0 (id=643): r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/kcm\x00') r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="180200000400000000000000000000008500000041000000950000000000000083ba04f400ad2dcb1e9fc37d145d163936ee7f3a0052413a22d57fe5bc5c0dad98d07fa61e4897446e55a4c4bdade0b56ead4b3943473b08adbc4149"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.current\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000780), 0xb) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) syz_usb_connect(0x0, 0x24, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x9f, 0xe, 0x5b, 0x40, 0x1235, 0x18, 0xf0ee, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xa7, 0xdd, 0x2d}}]}}]}}, 0x0) syz_emit_ethernet(0x8a, &(0x7f0000000200)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x7c, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x1a, 0x0, 0x0, 0x0, 0x0, {[@mptcp=@remove_addr={0x1e, 0x51, 0x2, 0x0, "b7e5e06fd17170ec0100e43d221cdab34d5be5383dd106c0a73ff0463a2c626ee52d92e6eeacc74bcb8d3e8ecb219f38ceabbe108ef6c5370c800e2dc2d2d81e3a11eb4d5da29bbfc86ea217943f"}]}}}}}}}, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="70000000100037042cbd70006b901a8345ee9349", @ANYRES32=0x0, @ANYBLOB="8b040400000000001000128008000100736974000400028040001a803c000a"], 0x70}}, 0x0) sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000340)={0x48, r4, 0x8d61ddcfedb48df, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x1c, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'sit0\x00'}]}]}, 0x48}}, 0x0) pread64(r0, &(0x7f0000000000)=""/193, 0xc1, 0x96) 0s ago: executing program 2 (id=644): bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000200)=@base={0x12, 0x40, 0x8, 0x2000002, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/4\x00') syz_usb_connect(0x0, 0x2d, &(0x7f0000000400)=ANY=[@ANYBLOB="120100001ed472082a110500a8140002180109021b00010000000009040000015a07660009059f8e"], 0x0) r1 = openat$binfmt_register(0xffffff9c, &(0x7f0000000040), 0x1, 0x0) write$binfmt_register(r1, &(0x7f00000003c0)={0x3a, 'syz1', 0x3a, 'M', 0x3a, 0x87fff, 0x3a, '\\x\xf2v/kus/uDb/00#/00#\x00', 0x3a, '/dev/bus/usb/00#/00#\x00\xf3<\xfe\xe0\x97MSi\tQAK\xe3J\xaex\xaf\xc0\\B=S\xc3K\xa6\xcde{F\xa4O\xd37\xb7M\xd2\xb5qWu\xe4\xe5\xa6vy\x9d\xda\xb3\xf7C-\xba\xe1\xd6\xe5\x00\xccu\xe4%n\xaa\x96\xae\xd5)\x1c7tB\x99\x97Geq\x0fiU\xde\x9f\xfe\x1e\x90\vk\x04\xfe\xfc\x0e\x9c\xec\xfc\xc1\r\xe5\xec\xfa)\xff\x1c\x9b4\xb8y\x8c$M1]@\x05\x01\x99\x95`x\x18\xb4l#\xd8_e:\xf7\xe5\x89\x13\x9b\xc9\xa9\xd3W\xb2\xbc\xeb\x1e\xb8\x00\x00\x00\x00\x00\x00\x00\x00.\xd7}%r\xb1\xb2\xa6C\xb8 0l\xe7\a\x84\x11\x1a\xd8\f\xa4X\x8b\xf94\x10\xa9\xdd\x1ez\xa7\xf8\xe8\xc1cg \f\xb71qk\xebje\x10<\x15\xb5\xb8\xbay\xf5\x1cN\x00e\xc4$\xec\xcc|Y\xf4\x99\x1a#\xe1g\xcd\xeaNT\xd7V\xb6W2\\\xc6', 0x3a, './file0'}, 0x133) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(r3, 0x8933, &(0x7f0000000000)={'wg0\x00', 0x0}) sendmsg$nl_route(r3, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@bridge_delneigh={0x28, 0x1e, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r4}, [@NDA_LLADDR={0xa}]}, 0x28}}, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) preadv2(r5, 0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$NFNL_MSG_ACCT_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x20, 0x1, 0x7, 0x3, 0x0, 0x0, {0x1, 0x0, 0x9}, [@NFACCT_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x20801}, 0x4) preadv(r0, &(0x7f0000000b80)=[{&(0x7f0000000580)=""/85, 0x69}], 0x1, 0x0, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) r7 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(r7, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) sendto$inet(r7, &(0x7f0000000300)="ab", 0x1a000, 0x0, &(0x7f0000000380)={0x2, 0x4e22, @local}, 0x10) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r7, 0x84, 0xf, &(0x7f00000003c0)={0x0, @in={{0x2, 0x4e22, @local}}, 0x8, 0x101, 0x9, 0x2, 0x7}, &(0x7f0000000280)=0x98) sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000a00)=ANY=[@ANYBLOB="940000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="444dc9fe000000006400128009000100766c616e000000005400028006000100000000000c000200020000000a000000040004801c0003800c00010068e30000030000000c0001007f000000070000001c0004800c0001a90200000060d506000c000100000000000200000008000500", @ANYRES32=r6], 0x94}}, 0x0) kernel console output (not intermixed with test programs): d=4155 comm="syz.0.118" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 776.673479][ T35] audit: type=1326 audit(775.870:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4155 comm="syz.0.118" exe="/syz-executor" sig=0 arch=c00000f3 syscall=57 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 776.707746][ T35] audit: type=1326 audit(775.900:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4155 comm="syz.0.118" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 776.732994][ T35] audit: type=1326 audit(775.910:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4155 comm="syz.0.118" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 776.900760][ T4154] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 780.134913][ T4161] netlink: 24 bytes leftover after parsing attributes in process `syz.1.120'. [ 796.140681][ T35] kauditd_printk_skb: 23 callbacks suppressed [ 796.141097][ T35] audit: type=1326 audit(795.340:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4199 comm="syz.0.129" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 796.163142][ T35] audit: type=1326 audit(795.350:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4199 comm="syz.0.129" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 796.279080][ T35] audit: type=1326 audit(795.470:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4199 comm="syz.0.129" exe="/syz-executor" sig=0 arch=c00000f3 syscall=133 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 801.152609][ T35] audit: type=1326 audit(800.350:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4204 comm="syz.0.133" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 801.252692][ T35] audit: type=1326 audit(800.440:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4204 comm="syz.0.133" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 801.261734][ T35] audit: type=1326 audit(800.450:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4204 comm="syz.0.133" exe="/syz-executor" sig=0 arch=c00000f3 syscall=280 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 801.263700][ T35] audit: type=1326 audit(800.450:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4204 comm="syz.0.133" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 801.270500][ T35] audit: type=1326 audit(800.470:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4204 comm="syz.0.133" exe="/syz-executor" sig=0 arch=c00000f3 syscall=81 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 801.842239][ T35] audit: type=1326 audit(801.030:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4204 comm="syz.0.133" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 801.847473][ T35] audit: type=1326 audit(801.050:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4204 comm="syz.0.133" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 806.840743][ T35] audit: type=1326 audit(805.990:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4208 comm="syz.0.134" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 808.057906][ T35] audit: type=1326 audit(807.170:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4208 comm="syz.0.134" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 825.260518][ T35] audit: type=1326 audit(824.450:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4243 comm="syz.1.140" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 825.322950][ T35] audit: type=1326 audit(824.480:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4243 comm="syz.1.140" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 825.632628][ T35] audit: type=1326 audit(824.830:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4243 comm="syz.1.140" exe="/syz-executor" sig=0 arch=c00000f3 syscall=280 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 825.643088][ T35] audit: type=1326 audit(824.840:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4243 comm="syz.1.140" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 825.676219][ T35] audit: type=1326 audit(824.870:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4243 comm="syz.1.140" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 825.701919][ T35] audit: type=1326 audit(824.900:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4243 comm="syz.1.140" exe="/syz-executor" sig=0 arch=c00000f3 syscall=280 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 825.755239][ T35] audit: type=1326 audit(824.940:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4243 comm="syz.1.140" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 825.766425][ T35] audit: type=1326 audit(824.960:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4243 comm="syz.1.140" exe="/syz-executor" sig=0 arch=c00000f3 syscall=280 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 825.783394][ T35] audit: type=1326 audit(824.970:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4243 comm="syz.1.140" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 825.790593][ T35] audit: type=1326 audit(824.980:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4243 comm="syz.1.140" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 844.609769][ T4271] netlink: 36 bytes leftover after parsing attributes in process `syz.1.150'. [ 848.969918][ T4277] bond0: (slave macvlan0): Error -98 calling set_mac_address [ 875.986777][ T3775] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x4 [ 875.988941][ T3775] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x2 [ 875.991288][ T3775] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x3 [ 876.171040][ T3775] hid-generic 0000:3000000:0000.0001: hidraw0: HID v0.00 Device [sy] on syz0 [ 877.409119][ T4329] bridge_slave_0: default FDB implementation only supports local addresses [ 878.986069][ T35] kauditd_printk_skb: 8 callbacks suppressed [ 878.986530][ T35] audit: type=1326 audit(878.180:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4330 comm="syz.1.166" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 879.013239][ T35] audit: type=1326 audit(878.210:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4330 comm="syz.1.166" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 879.261554][ T35] audit: type=1326 audit(878.460:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4330 comm="syz.1.166" exe="/syz-executor" sig=0 arch=c00000f3 syscall=280 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 879.286189][ T35] audit: type=1326 audit(878.470:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4330 comm="syz.1.166" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 879.293477][ T35] audit: type=1326 audit(878.480:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4330 comm="syz.1.166" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 879.327697][ T35] audit: type=1326 audit(878.490:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4330 comm="syz.1.166" exe="/syz-executor" sig=0 arch=c00000f3 syscall=280 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 879.330205][ T35] audit: type=1326 audit(878.510:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4330 comm="syz.1.166" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 879.356796][ T35] audit: type=1326 audit(878.540:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4330 comm="syz.1.166" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 879.379507][ T35] audit: type=1326 audit(878.580:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4330 comm="syz.1.166" exe="/syz-executor" sig=0 arch=c00000f3 syscall=280 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 879.385009][ T35] audit: type=1326 audit(878.580:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4330 comm="syz.1.166" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 887.988739][ T4342] netem: change failed [ 905.293101][ T4357] netlink: 24 bytes leftover after parsing attributes in process `syz.0.176'. [ 944.193469][ T3758] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x4 [ 944.200939][ T3758] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x2 [ 944.203125][ T3758] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 944.206972][ T3758] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 944.208746][ T3758] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 944.212858][ T3758] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 944.216173][ T3758] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 944.217955][ T3758] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 944.219679][ T3758] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 944.221399][ T3758] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 944.232012][ T3758] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 944.235614][ T3758] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 944.237515][ T3758] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 944.240629][ T3758] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 944.250451][ T3758] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 944.276240][ T3758] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 944.397711][ T3758] hid-generic 0000:3000000:0000.0002: hidraw0: HID v0.00 Device [sy] on syz0 [ 952.969404][ T4437] IPv6: Can't replace route, no match found [ 967.418993][ T4446] netlink: 28 bytes leftover after parsing attributes in process `syz.0.203'. [ 967.421568][ T4446] netlink: 28 bytes leftover after parsing attributes in process `syz.0.203'. [ 973.327242][ T4454] wireguard0: entered promiscuous mode [ 973.329901][ T4454] wireguard0: entered allmulticast mode [ 992.515491][ T35] kauditd_printk_skb: 7 callbacks suppressed [ 992.516013][ T35] audit: type=1326 audit(991.200:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4467 comm="syz.0.210" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 992.520844][ T35] audit: type=1326 audit(991.220:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4467 comm="syz.0.210" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 992.535903][ T35] audit: type=1326 audit(991.230:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4467 comm="syz.0.210" exe="/syz-executor" sig=0 arch=c00000f3 syscall=134 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 992.541729][ T35] audit: type=1326 audit(991.240:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4467 comm="syz.0.210" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 992.552576][ T35] audit: type=1326 audit(991.250:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4467 comm="syz.0.210" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 992.572067][ T35] audit: type=1326 audit(991.260:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4467 comm="syz.0.210" exe="/syz-executor" sig=0 arch=c00000f3 syscall=279 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 992.586217][ T35] audit: type=1326 audit(991.280:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4467 comm="syz.0.210" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 992.590601][ T35] audit: type=1326 audit(991.290:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4467 comm="syz.0.210" exe="/syz-executor" sig=0 arch=c00000f3 syscall=47 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 992.605928][ T35] audit: type=1326 audit(991.300:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4467 comm="syz.0.210" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 992.610298][ T35] audit: type=1326 audit(991.310:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4467 comm="syz.0.210" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1001.916858][ T35] kauditd_printk_skb: 7 callbacks suppressed [ 1001.917420][ T35] audit: type=1326 audit(1001.070:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4481 comm="syz.1.217" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1002.306396][ T35] audit: type=1326 audit(1001.500:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4481 comm="syz.1.217" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1002.310365][ T35] audit: type=1326 audit(1001.500:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4481 comm="syz.1.217" exe="/syz-executor" sig=0 arch=c00000f3 syscall=280 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1002.332039][ T35] audit: type=1326 audit(1001.510:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4481 comm="syz.1.217" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1002.386917][ T35] audit: type=1326 audit(1001.550:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4481 comm="syz.1.217" exe="/syz-executor" sig=0 arch=c00000f3 syscall=280 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1002.416122][ T35] audit: type=1326 audit(1001.550:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4481 comm="syz.1.217" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1002.419767][ T35] audit: type=1326 audit(1001.550:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4481 comm="syz.1.217" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1002.436419][ T35] audit: type=1326 audit(1001.570:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4481 comm="syz.1.217" exe="/syz-executor" sig=0 arch=c00000f3 syscall=280 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1002.440430][ T35] audit: type=1326 audit(1001.590:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4481 comm="syz.1.217" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1002.443818][ T35] audit: type=1326 audit(1001.630:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4481 comm="syz.1.217" exe="/syz-executor" sig=0 arch=c00000f3 syscall=280 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1021.540236][ T35] kauditd_printk_skb: 11 callbacks suppressed [ 1021.540736][ T35] audit: type=1326 audit(1020.740:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4504 comm="syz.1.221" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1021.640916][ T35] audit: type=1326 audit(1020.790:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4504 comm="syz.1.221" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1022.008169][ T35] audit: type=1326 audit(1021.190:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4504 comm="syz.1.221" exe="/syz-executor" sig=0 arch=c00000f3 syscall=72 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1022.016704][ T35] audit: type=1326 audit(1021.210:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4504 comm="syz.1.221" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1022.020722][ T35] audit: type=1326 audit(1021.210:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4504 comm="syz.1.221" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1025.813170][ T4507] netlink: 4 bytes leftover after parsing attributes in process `syz.1.223'. [ 1026.250247][ T4507] netlink: 4 bytes leftover after parsing attributes in process `syz.1.223'. [ 1031.319224][ T35] audit: type=1326 audit(1030.500:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4510 comm="syz.1.225" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1031.336023][ T35] audit: type=1326 audit(1030.500:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4510 comm="syz.1.225" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1031.559792][ T35] audit: type=1326 audit(1030.760:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4510 comm="syz.1.225" exe="/syz-executor" sig=0 arch=c00000f3 syscall=280 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1031.648320][ T35] audit: type=1326 audit(1030.840:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4510 comm="syz.1.225" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1031.760442][ T35] audit: type=1326 audit(1030.840:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4510 comm="syz.1.225" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1031.926045][ T35] audit: type=1326 audit(1031.110:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4510 comm="syz.1.225" exe="/syz-executor" sig=0 arch=c00000f3 syscall=280 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1031.928718][ T35] audit: type=1326 audit(1031.120:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4510 comm="syz.1.225" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1031.961476][ T35] audit: type=1326 audit(1031.140:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4510 comm="syz.1.225" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1031.979335][ T35] audit: type=1326 audit(1031.170:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4510 comm="syz.1.225" exe="/syz-executor" sig=0 arch=c00000f3 syscall=280 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1032.017085][ T35] audit: type=1326 audit(1031.200:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4510 comm="syz.1.225" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1033.001326][ T4503] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1033.022387][ T4503] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1033.036964][ T4503] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1033.038678][ T4503] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1071.031369][ T4556] netlink: 8 bytes leftover after parsing attributes in process `syz.0.237'. [ 1073.036983][ T4556] bond1: entered promiscuous mode [ 1073.040055][ T4556] bond1: entered allmulticast mode [ 1073.220619][ T4556] 8021q: adding VLAN 0 to HW filter on device bond1 [ 1077.877476][ T4594] netlink: 36 bytes leftover after parsing attributes in process `syz.0.239'. [ 1077.879779][ T4594] netlink: 16 bytes leftover after parsing attributes in process `syz.0.239'. [ 1077.881756][ T4594] netlink: 36 bytes leftover after parsing attributes in process `syz.0.239'. [ 1077.916361][ T4594] netlink: 36 bytes leftover after parsing attributes in process `syz.0.239'. [ 1083.207283][ T35] kauditd_printk_skb: 9 callbacks suppressed [ 1083.207737][ T35] audit: type=1326 audit(1082.400:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4597 comm="syz.0.241" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1083.249853][ T35] audit: type=1326 audit(1082.440:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4597 comm="syz.0.241" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1083.666150][ T35] audit: type=1326 audit(1082.840:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4597 comm="syz.0.241" exe="/syz-executor" sig=0 arch=c00000f3 syscall=280 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1083.712685][ T35] audit: type=1326 audit(1082.910:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4597 comm="syz.0.241" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1083.792511][ T35] audit: type=1326 audit(1082.940:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4597 comm="syz.0.241" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1083.877455][ T35] audit: type=1326 audit(1083.070:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4597 comm="syz.0.241" exe="/syz-executor" sig=0 arch=c00000f3 syscall=280 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1083.892519][ T35] audit: type=1326 audit(1083.090:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4597 comm="syz.0.241" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1084.036342][ T35] audit: type=1326 audit(1083.110:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4597 comm="syz.0.241" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1084.061968][ T35] audit: type=1326 audit(1083.250:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4597 comm="syz.0.241" exe="/syz-executor" sig=0 arch=c00000f3 syscall=56 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1084.083587][ T35] audit: type=1326 audit(1083.280:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4597 comm="syz.0.241" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1148.012011][ T4606] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1148.330969][ T4756] block device autoloading is deprecated and will be removed. [ 1148.411230][ T4606] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1151.018804][ T4756] md: could not open device unknown-block(0,0). [ 1151.023341][ T4756] md: md_import_device returned -6 [ 1171.933674][ T4606] hsr_slave_0: entered promiscuous mode [ 1171.979549][ T4606] hsr_slave_1: entered promiscuous mode [ 1172.027271][ T4606] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1172.028537][ T4606] Cannot create hsr debugfs directory [ 1188.823641][ T4606] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 1188.956954][ T4606] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 1189.297522][ T4606] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 1189.712868][ T4606] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 1193.219269][ T3792] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 1193.936907][ T3792] usb 1-1: Using ep0 maxpacket: 8 [ 1194.115896][ T3792] usb 1-1: config 0 has an invalid interface number: 32 but max is 0 [ 1194.118663][ T3792] usb 1-1: config 0 has no interface number 0 [ 1194.121054][ T3792] usb 1-1: config 0 interface 32 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1194.123246][ T3792] usb 1-1: config 0 interface 32 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1194.229811][ T3792] usb 1-1: New USB device found, idVendor=046d, idProduct=c24f, bcdDevice= 0.00 [ 1194.237951][ T3792] usb 1-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 1194.239839][ T3792] usb 1-1: Manufacturer: syz [ 1194.412660][ T3792] usb 1-1: config 0 descriptor?? [ 1197.702284][ T3792] usb 1-1: USB disconnect, device number 2 [ 1208.566642][ T4606] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1210.551647][ T4989] netlink: 8 bytes leftover after parsing attributes in process `syz.0.257'. [ 1210.569507][ T4989] netlink: 12 bytes leftover after parsing attributes in process `syz.0.257'. [ 1217.867328][ T3497] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1218.948191][ T3497] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1219.957797][ T3497] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1220.692185][ T3497] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1237.363673][ T3497] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1237.529639][ T3497] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1237.679863][ T3497] bond0 (unregistering): Released all slaves [ 1239.823556][ T3497] hsr_slave_0: left promiscuous mode [ 1240.001212][ T3497] hsr_slave_1: left promiscuous mode [ 1240.730858][ T3497] veth1_macvtap: left promiscuous mode [ 1240.746606][ T3497] veth0_macvtap: left promiscuous mode [ 1240.791139][ T3497] veth1_vlan: left promiscuous mode [ 1240.857236][ T3497] veth0_vlan: left promiscuous mode [ 1246.736010][ T35] kauditd_printk_skb: 3 callbacks suppressed [ 1246.736463][ T35] audit: type=1326 audit(1245.930:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5022 comm="syz.0.262" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x0 [ 1249.942404][ T5024] ptrace attach of "/syz-executor exec"[3161] was attempted by "/syz-executor exec"[5024] [ 1277.913759][ T8] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 1278.268173][ T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1278.270870][ T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1278.273326][ T8] usb 1-1: New USB device found, idVendor=045e, idProduct=009d, bcdDevice= 0.00 [ 1278.300491][ T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1278.472819][ T8] usb 1-1: config 0 descriptor?? [ 1279.523281][ T8] microsoft 0003:045E:009D.0004: item fetching failed at offset 5/7 [ 1279.583871][ T8] microsoft 0003:045E:009D.0004: parse failed [ 1279.592325][ T8] microsoft 0003:045E:009D.0004: probe with driver microsoft failed with error -22 [ 1279.759071][ T5051] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1279.886942][ T5051] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1291.265858][ T8] usb 1-1: USB disconnect, device number 3 [ 1295.941233][ T5094] netlink: 4 bytes leftover after parsing attributes in process `syz.0.267'. [ 1295.997758][ T5094] netlink: 12 bytes leftover after parsing attributes in process `syz.0.267'. [ 1306.621705][ T4606] veth0_vlan: entered promiscuous mode [ 1308.471584][ T4606] veth1_vlan: entered promiscuous mode [ 1309.556813][ T4606] veth0_macvtap: entered promiscuous mode [ 1309.914902][ T4606] veth1_macvtap: entered promiscuous mode [ 1310.991217][ T4606] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1310.992900][ T4606] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1311.023662][ T4606] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1311.028524][ T4606] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1315.460514][ T35] audit: type=1326 audit(1314.610:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5128 comm="syz.2.243" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1315.480093][ T35] audit: type=1326 audit(1314.630:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5128 comm="syz.2.243" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1315.483408][ T35] audit: type=1326 audit(1314.640:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5128 comm="syz.2.243" exe="/syz-executor" sig=0 arch=c00000f3 syscall=216 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1315.536238][ T35] audit: type=1326 audit(1314.650:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5128 comm="syz.2.243" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1315.539813][ T35] audit: type=1326 audit(1314.660:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5128 comm="syz.2.243" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1321.751229][ T5142] syz.2.272 uses obsolete (PF_INET,SOCK_PACKET) [ 1321.957488][ T5142] netlink: 16 bytes leftover after parsing attributes in process `syz.2.272'. [ 1322.337881][ T5142] netlink: 16 bytes leftover after parsing attributes in process `syz.2.272'. [ 1336.977598][ T33] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 1337.922164][ T33] usb 1-1: Using ep0 maxpacket: 16 [ 1338.089619][ T33] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1338.091329][ T33] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1338.093847][ T33] usb 1-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00 [ 1338.110210][ T33] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1338.191373][ T33] usb 1-1: config 0 descriptor?? [ 1339.958992][ T33] hid-steam 0003:28DE:1142.0005: item fetching failed at offset 3/5 [ 1340.002770][ T33] hid-steam 0003:28DE:1142.0005: steam_probe:parse of hid interface failed [ 1340.026989][ T33] hid-steam 0003:28DE:1142.0005: probe with driver hid-steam failed with error -22 [ 1343.617764][ T5196] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1343.650597][ T5196] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1344.727722][ T5196] binder: 5176:5196 ioctl c00c620f 0 returned -14 [ 1344.777218][ T5196] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1344.795694][ T5196] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1345.128785][ T5196] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1345.212582][ T5196] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1352.486819][ T5189] usb 1-1: USB disconnect, device number 4 [ 1364.137419][ T9] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 1368.966488][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1368.969006][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1368.971753][ T9] usb 1-1: New USB device found, idVendor=046d, idProduct=ca04, bcdDevice= 0.00 [ 1368.973803][ T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1369.918197][ T9] usb 1-1: config 0 descriptor?? [ 1374.079035][ T9] usbhid 1-1:0.0: can't add hid device: -71 [ 1374.120027][ T9] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 1374.339622][ T9] usb 1-1: USB disconnect, device number 5 [ 1381.962500][ T5273] FAULT_INJECTION: forcing a failure. [ 1381.962500][ T5273] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 1381.971623][ T5273] CPU: 1 UID: 0 PID: 5273 Comm: syz.2.287 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 1381.974436][ T5273] Hardware name: riscv-virtio,qemu (DT) [ 1381.976022][ T5273] Call Trace: [ 1381.977770][ T5273] [] dump_backtrace+0x2e/0x3c [ 1381.981561][ T5273] [] show_stack+0x34/0x40 [ 1381.984529][ T5273] [] dump_stack_lvl+0x122/0x196 [ 1381.986282][ T5273] [] dump_stack+0x1c/0x24 [ 1381.988826][ T5273] [] should_fail_ex+0x3f8/0x4e0 [ 1381.990527][ T5273] [] should_fail+0xe/0x16 [ 1381.992192][ T5273] [] should_fail_usercopy+0x1e/0x26 [ 1381.993845][ T5273] [] _copy_to_iter+0x446/0x16f4 [ 1381.995400][ T5273] [] seq_read_iter+0xad2/0x101e [ 1381.997147][ T5273] [] seq_read+0x29e/0x360 [ 1381.998746][ T5273] [] proc_reg_read+0x1ac/0x266 [ 1382.000803][ T5273] [] vfs_read+0x1b0/0x86c [ 1382.003080][ T5273] [] __riscv_sys_pread64+0x1ea/0x21c [ 1382.005509][ T5273] [] syscall_handler+0x94/0x118 [ 1382.006976][ T5273] [] do_trap_ecall_u+0x1aa/0x216 [ 1382.008696][ T5273] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 1385.477206][ T33] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 1385.707111][ T33] usb 1-1: Using ep0 maxpacket: 16 [ 1385.765014][ T33] usb 1-1: config 0 has an invalid interface number: 214 but max is 0 [ 1385.769223][ T33] usb 1-1: config 0 has no interface number 0 [ 1385.785115][ T33] usb 1-1: config 0 interface 214 altsetting 0 endpoint 0x83 has invalid maxpacket 1023, setting to 64 [ 1385.892209][ T33] usb 1-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5 [ 1385.899207][ T33] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1385.901510][ T33] usb 1-1: Product: syz [ 1385.903157][ T33] usb 1-1: Manufacturer: syz [ 1385.920784][ T33] usb 1-1: SerialNumber: syz [ 1386.043518][ T33] usb 1-1: config 0 descriptor?? [ 1386.998372][ T5279] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1387.103621][ T5279] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1388.257208][ T33] usbtouchscreen 1-1:0.214: probe with driver usbtouchscreen failed with error -71 [ 1388.337479][ T33] usb 1-1: USB disconnect, device number 6 [ 1394.156303][ T5298] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1394.199069][ T5298] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1396.557063][ T3758] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 1396.807401][ T3758] usb 1-1: Using ep0 maxpacket: 8 [ 1396.953526][ T3758] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 1396.958602][ T3758] usb 1-1: New USB device found, idVendor=0421, idProduct=008f, bcdDevice=ba.de [ 1396.960875][ T3758] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1397.139272][ T3758] usb 1-1: config 0 descriptor?? [ 1397.237268][ T3758] rndis_host 1-1:0.0: invalid descriptor buffer length [ 1397.240394][ T3758] usb 1-1: bad CDC descriptors [ 1397.269684][ T3758] cdc_acm 1-1:0.0: invalid descriptor buffer length [ 1397.995958][ T5302] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1398.017106][ T5302] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1402.728749][ T5312] netlink: 3 bytes leftover after parsing attributes in process `syz.2.293'. [ 1410.707323][ T3758] usb 1-1: USB disconnect, device number 7 [ 1418.500447][ T5334] fuse: Bad value for 'rootmode' [ 1420.490856][ T5333] xt_CT: No such helper "pptp" [ 1420.532818][ T5334] xt_CT: No such helper "pptp" [ 1425.823504][ T35] audit: type=1326 audit(1424.990:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5340 comm="syz.0.300" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x0 [ 1427.481219][ T5343] ptrace attach of "/syz-executor exec"[3161] was attempted by "/syz-executor exec"[5343] [ 1428.029623][ T5344] netlink: 8 bytes leftover after parsing attributes in process `syz.2.301'. [ 1428.031944][ T5344] netlink: 24 bytes leftover after parsing attributes in process `syz.2.301'. [ 1435.130806][ T5356] netlink: 'syz.2.302': attribute type 3 has an invalid length. [ 1448.491531][ T5373] netlink: 'syz.2.305': attribute type 21 has an invalid length. [ 1448.510217][ T5373] netlink: 168 bytes leftover after parsing attributes in process `syz.2.305'. [ 1448.931783][ T35] audit: type=1326 audit(1448.130:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5374 comm="syz.0.307" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x0 [ 1450.582627][ T5377] ptrace attach of "/syz-executor exec"[3161] was attempted by "/syz-executor exec"[5377] [ 1462.282630][ T5385] mmap: syz.0.310 (5385) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 1473.376295][ T5404] netlink: 'syz.0.313': attribute type 21 has an invalid length. [ 1473.378916][ T5404] netlink: 168 bytes leftover after parsing attributes in process `syz.0.313'. [ 1496.529322][ T5425] FAULT_INJECTION: forcing a failure. [ 1496.529322][ T5425] name failslab, interval 1, probability 0, space 0, times 0 [ 1496.531843][ T5425] CPU: 1 UID: 0 PID: 5425 Comm: syz.2.323 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 1496.533509][ T5425] Hardware name: riscv-virtio,qemu (DT) [ 1496.535195][ T5425] Call Trace: [ 1496.536234][ T5425] [] dump_backtrace+0x2e/0x3c [ 1496.537823][ T5425] [] show_stack+0x34/0x40 [ 1496.539177][ T5425] [] dump_stack_lvl+0x122/0x196 [ 1496.540709][ T5425] [] dump_stack+0x1c/0x24 [ 1496.542252][ T5425] [] should_fail_ex+0x3f8/0x4e0 [ 1496.543927][ T5425] [] should_failslab+0xba/0x102 [ 1496.545495][ T5425] [] __kmalloc_cache_noprof+0x144/0x318 [ 1496.547108][ T5425] [] binder_transaction+0xd06/0x98c4 [ 1496.548540][ T5425] [] binder_thread_write+0x1096/0x4af6 [ 1496.550024][ T5425] [] binder_ioctl+0x200e/0x727a [ 1496.551478][ T5425] [] __riscv_sys_ioctl+0x182/0x1e6 [ 1496.552888][ T5425] [] syscall_handler+0x94/0x118 [ 1496.554807][ T5425] [] do_trap_ecall_u+0x1aa/0x216 [ 1496.556387][ T5425] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 1500.061842][ T35] audit: type=1326 audit(1499.260:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5429 comm="syz.2.324" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x0 [ 1502.070179][ T5431] ptrace attach of "/syz-executor exec"[4606] was attempted by "/syz-executor exec"[5431] [ 1504.541922][ T5434] syzkaller1: entered promiscuous mode [ 1504.560573][ T5434] syzkaller1: entered allmulticast mode [ 1526.519309][ T5467] netlink: 64 bytes leftover after parsing attributes in process `syz.2.332'. [ 1526.586567][ T5467] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1526.598517][ T5467] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1529.197605][ T5477] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1529.222773][ T5477] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1531.863530][ T5467] nci: __nci_request: wait_for_completion_interruptible_timeout failed 0 [ 1536.732472][ T5485] FAULT_INJECTION: forcing a failure. [ 1536.732472][ T5485] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1536.740272][ T5485] CPU: 0 UID: 0 PID: 5485 Comm: syz.0.334 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 1536.742398][ T5485] Hardware name: riscv-virtio,qemu (DT) [ 1536.743568][ T5485] Call Trace: [ 1536.744954][ T5485] [] dump_backtrace+0x2e/0x3c [ 1536.746722][ T5485] [] show_stack+0x34/0x40 [ 1536.748317][ T5485] [] dump_stack_lvl+0x122/0x196 [ 1536.750049][ T5485] [] dump_stack+0x1c/0x24 [ 1536.751556][ T5485] [] should_fail_ex+0x3f8/0x4e0 [ 1536.753108][ T5485] [] should_fail+0xe/0x16 [ 1536.755846][ T5485] [] should_fail_usercopy+0x1e/0x26 [ 1536.759344][ T5485] [] _copy_from_user+0x3a/0xfe [ 1536.760683][ T5485] [] kstrtouint_from_user+0xd0/0x1a0 [ 1536.763665][ T5485] [] proc_fail_nth_write+0x96/0x274 [ 1536.766988][ T5485] [] vfs_write+0x272/0x9b4 [ 1536.768682][ T5485] [] ksys_write+0x128/0x266 [ 1536.771411][ T5485] [] __riscv_sys_write+0x6e/0x94 [ 1536.773249][ T5485] [] syscall_handler+0x94/0x118 [ 1536.775532][ T5485] [] do_trap_ecall_u+0x1aa/0x216 [ 1536.777355][ T5485] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 1539.271820][ T5488] fuse: Bad value for 'fd' [ 1543.731361][ T5492] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1543.765903][ T5492] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1550.271018][ T3775] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 1550.780531][ T3775] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1551.060243][ T3775] usb 1-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b [ 1551.062453][ T3775] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1551.063515][ T3775] usb 1-1: Product: syz [ 1551.094121][ T3775] usb 1-1: Manufacturer: syz [ 1551.113577][ T3775] usb 1-1: SerialNumber: syz [ 1551.549686][ T3775] usb 1-1: config 0 descriptor?? [ 1551.761260][ T3775] garmin_gps 1-1:0.0: Garmin GPS usb/tty converter detected [ 1551.883217][ T3775] garmin_gps ttyUSB0: failed to submit interrupt urb: -22 [ 1551.911554][ T3775] garmin_gps ttyUSB0: probe with driver garmin_gps failed with error -22 [ 1552.645712][ T3775] usb 1-1: USB disconnect, device number 8 [ 1552.683448][ T3775] garmin_gps 1-1:0.0: device disconnected [ 1560.142888][ T5521] fuse: Bad value for 'fd' [ 1563.632466][ T5526] binder: 5523:5526 ioctl 8918 0 returned -22 [ 1568.682174][ T5533] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1568.853645][ T5533] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1569.547141][ T5536] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1569.617461][ T5536] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1574.798335][ T35] audit: type=1326 audit(1573.990:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5541 comm="syz.0.346" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x0 [ 1576.413566][ T5543] ptrace attach of "/syz-executor exec"[3161] was attempted by "/syz-executor exec"[5543] [ 1583.500254][ T5553] ucma_write: process 122 (syz.2.350) changed security contexts after opening file descriptor, this is not allowed. [ 1604.371503][ T5568] FAULT_INJECTION: forcing a failure. [ 1604.371503][ T5568] name failslab, interval 1, probability 0, space 0, times 0 [ 1604.373809][ T5568] CPU: 1 UID: 0 PID: 5568 Comm: syz.0.357 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 1604.375225][ T5568] Hardware name: riscv-virtio,qemu (DT) [ 1604.376164][ T5568] Call Trace: [ 1604.376953][ T5568] [] dump_backtrace+0x2e/0x3c [ 1604.378275][ T5568] [] show_stack+0x34/0x40 [ 1604.379335][ T5568] [] dump_stack_lvl+0x122/0x196 [ 1604.380570][ T5568] [] dump_stack+0x1c/0x24 [ 1604.381714][ T5568] [] should_fail_ex+0x3f8/0x4e0 [ 1604.382888][ T5568] [] should_failslab+0xba/0x102 [ 1604.384056][ T5568] [] __kmalloc_noprof+0xca/0x4e4 [ 1604.385133][ T5568] [] drm_atomic_state_init+0x170/0x2ec [ 1604.386309][ T5568] [] drm_atomic_state_alloc+0xd6/0x11e [ 1604.387266][ T5568] [] drm_atomic_helper_set_config+0x54/0x180 [ 1604.388442][ T5568] [] drm_mode_setcrtc+0xc6e/0x1bca [ 1604.389732][ T5568] [] drm_ioctl_kernel+0x1dc/0x380 [ 1604.391355][ T5568] [] drm_ioctl+0x504/0xb88 [ 1604.392893][ T5568] [] __riscv_sys_ioctl+0x182/0x1e6 [ 1604.394590][ T5568] [] syscall_handler+0x94/0x118 [ 1604.395861][ T5568] [] do_trap_ecall_u+0x1aa/0x216 [ 1604.396782][ T5568] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 1615.341187][ C1] vkms_vblank_simulate: vblank timer overrun [ 1617.371286][ T5578] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1617.391818][ T5578] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1620.235505][ C1] hrtimer: interrupt took 2375900 ns [ 1630.490672][ T5592] FAULT_INJECTION: forcing a failure. [ 1630.490672][ T5592] name failslab, interval 1, probability 0, space 0, times 0 [ 1630.518831][ T5592] CPU: 0 UID: 0 PID: 5592 Comm: syz.0.367 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 1630.520682][ T5592] Hardware name: riscv-virtio,qemu (DT) [ 1630.521666][ T5592] Call Trace: [ 1630.522739][ T5592] [] dump_backtrace+0x2e/0x3c [ 1630.524986][ T5592] [] show_stack+0x34/0x40 [ 1630.526601][ T5592] [] dump_stack_lvl+0x122/0x196 [ 1630.528377][ T5592] [] dump_stack+0x1c/0x24 [ 1630.530059][ T5592] [] should_fail_ex+0x3f8/0x4e0 [ 1630.532014][ T5592] [] should_failslab+0xba/0x102 [ 1630.533766][ T5592] [] kmem_cache_alloc_noprof+0x60/0x304 [ 1630.535629][ T5592] [] dst_alloc+0x94/0x174 [ 1630.537125][ T5592] [] rt_dst_alloc+0x3a/0x340 [ 1630.538718][ T5592] [] ip_route_output_key_hash_rcu+0x822/0x2748 [ 1630.540523][ T5592] [] ip_route_output_key_hash+0x158/0x31c [ 1630.542334][ T5592] [] ip_route_output_flow+0x2a/0x142 [ 1630.544058][ T5592] [] udp_sendmsg+0x1bd0/0x2b34 [ 1630.545791][ T5592] [] inet_sendmsg+0x9c/0xda [ 1630.547553][ T5592] [] __sock_sendmsg+0xcc/0x160 [ 1630.549277][ T5592] [] sock_sendmsg+0xfa/0x19e [ 1630.551092][ T5592] [] splice_to_socket+0x93e/0xdda [ 1630.552817][ T5592] [] direct_splice_actor+0x162/0xa62 [ 1630.555004][ T5592] [] splice_direct_to_actor+0x30a/0x948 [ 1630.556663][ T5592] [] do_splice_direct+0x162/0x218 [ 1630.558455][ T5592] [] do_sendfile+0x96e/0xbf0 [ 1630.560107][ T5592] [] __riscv_sys_sendfile64+0x1fc/0x220 [ 1630.561998][ T5592] [] syscall_handler+0x94/0x118 [ 1630.564124][ T5592] [] do_trap_ecall_u+0x1aa/0x216 [ 1630.565927][ T5592] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 1637.208975][ T5189] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 1637.652638][ T5189] usb 1-1: Using ep0 maxpacket: 8 [ 1638.005244][ T5189] usb 1-1: config 179 has an invalid interface number: 65 but max is 0 [ 1638.007656][ T5189] usb 1-1: config 179 has no interface number 0 [ 1638.010041][ T5189] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 1638.012300][ T5189] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 1638.043087][ T5189] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 1638.061904][ T5189] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 1638.073625][ T5189] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 1638.110380][ T5189] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 1638.112874][ T5189] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1638.342443][ T5600] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1642.502253][ T5600] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1642.683134][ T5600] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1643.250665][ T5600] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1643.318664][ T5600] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1643.738786][ T5378] usb 1-1: USB disconnect, device number 9 [ 1643.743103][ C1] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 1643.745634][ C1] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 1643.762624][ T33] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input1 [ 1644.381841][ T5378] xpad 1-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19 [ 1657.407175][ T5650] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1657.448045][ T5650] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1666.740695][ T35] audit: type=1326 audit(1665.830:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5656 comm="syz.0.378" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1666.750547][ T35] audit: type=1326 audit(1665.840:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5656 comm="syz.0.378" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1666.856294][ T35] audit: type=1326 audit(1666.040:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5656 comm="syz.0.378" exe="/syz-executor" sig=0 arch=c00000f3 syscall=280 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1666.871949][ T35] audit: type=1326 audit(1666.060:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5656 comm="syz.0.378" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1666.912030][ T35] audit: type=1326 audit(1666.110:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5656 comm="syz.0.378" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1667.018509][ T35] audit: type=1326 audit(1666.210:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5656 comm="syz.0.378" exe="/syz-executor" sig=0 arch=c00000f3 syscall=198 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1667.041784][ T35] audit: type=1326 audit(1666.230:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5656 comm="syz.0.378" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1667.106482][ T35] audit: type=1326 audit(1666.300:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5656 comm="syz.0.378" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1667.144894][ T35] audit: type=1326 audit(1666.340:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5656 comm="syz.0.378" exe="/syz-executor" sig=0 arch=c00000f3 syscall=56 compat=0 ip=0xd9a4e code=0x7ffc0000 [ 1667.382155][ T5658] FAULT_INJECTION: forcing a failure. [ 1667.382155][ T5658] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1667.393042][ T5658] CPU: 1 UID: 0 PID: 5658 Comm: syz.0.378 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 1667.395322][ T5658] Hardware name: riscv-virtio,qemu (DT) [ 1667.396568][ T5658] Call Trace: [ 1667.397726][ T5658] [] dump_backtrace+0x2e/0x3c [ 1667.399447][ T5658] [] show_stack+0x34/0x40 [ 1667.400931][ T5658] [] dump_stack_lvl+0x122/0x196 [ 1667.402650][ T5658] [] dump_stack+0x1c/0x24 [ 1667.404286][ T5658] [] should_fail_ex+0x3f8/0x4e0 [ 1667.406035][ T5658] [] should_fail+0xe/0x16 [ 1667.407644][ T5658] [] should_fail_usercopy+0x1e/0x26 [ 1667.409315][ T5658] [] _copy_from_user+0x3a/0xfe [ 1667.410972][ T5658] [] copy_msghdr_from_user+0xbe/0x176 [ 1667.412545][ T5658] [] ___sys_sendmsg+0x112/0x1e6 [ 1667.414094][ T5658] [] __sys_sendmsg+0x130/0x1f0 [ 1667.415618][ T5658] [] __riscv_sys_sendmsg+0x70/0xa2 [ 1667.417165][ T5658] [] syscall_handler+0x94/0x118 [ 1667.418814][ T5658] [] do_trap_ecall_u+0x1aa/0x216 [ 1667.420473][ T5658] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 1667.423739][ C1] vkms_vblank_simulate: vblank timer overrun [ 1667.612121][ T35] audit: type=1326 audit(1666.540:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5656 comm="syz.0.378" exe="/syz-executor" sig=0 arch=c00000f3 syscall=64 compat=0 ip=0xd9b60 code=0x7ffc0000 [ 1675.111814][ T35] kauditd_printk_skb: 10 callbacks suppressed [ 1675.112409][ T35] audit: type=1326 audit(1674.300:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5656 comm="syz.0.378" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1675.135654][ T35] audit: type=1326 audit(1674.310:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5656 comm="syz.0.378" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1675.167315][ T35] audit: type=1326 audit(1674.350:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5656 comm="syz.0.378" exe="/syz-executor" sig=0 arch=c00000f3 syscall=29 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1675.170718][ T35] audit: type=1326 audit(1674.360:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5656 comm="syz.0.378" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1675.199616][ T35] audit: type=1326 audit(1674.370:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5656 comm="syz.0.378" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1675.203043][ T35] audit: type=1326 audit(1674.380:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5656 comm="syz.0.378" exe="/syz-executor" sig=0 arch=c00000f3 syscall=200 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1675.221659][ T35] audit: type=1326 audit(1674.380:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5656 comm="syz.0.378" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1675.236980][ T35] audit: type=1326 audit(1674.400:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5656 comm="syz.0.378" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7ffc0000 [ 1676.452472][ C1] vkms_vblank_simulate: vblank timer overrun [ 1679.652780][ T5670] FAULT_INJECTION: forcing a failure. [ 1679.652780][ T5670] name failslab, interval 1, probability 0, space 0, times 0 [ 1679.665999][ T5670] CPU: 1 UID: 0 PID: 5670 Comm: syz.2.382 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 1679.667236][ T5670] Hardware name: riscv-virtio,qemu (DT) [ 1679.667885][ T5670] Call Trace: [ 1679.668442][ T5670] [] dump_backtrace+0x2e/0x3c [ 1679.669468][ T5670] [] show_stack+0x34/0x40 [ 1679.670260][ T5670] [] dump_stack_lvl+0x122/0x196 [ 1679.671133][ T5670] [] dump_stack+0x1c/0x24 [ 1679.671967][ T5670] [] should_fail_ex+0x3f8/0x4e0 [ 1679.672879][ T5670] [] should_failslab+0xba/0x102 [ 1679.673775][ T5670] [] __kmalloc_noprof+0xca/0x4e4 [ 1679.674985][ T5670] [] alloc_pipe_info+0x1dc/0x500 [ 1679.676176][ T5670] [] splice_direct_to_actor+0x6bc/0x948 [ 1679.677226][ T5670] [] do_splice_direct+0x162/0x218 [ 1679.678270][ T5670] [] do_sendfile+0x96e/0xbf0 [ 1679.679317][ T5670] [] __riscv_sys_sendfile64+0x1fc/0x220 [ 1679.680414][ T5670] [] syscall_handler+0x94/0x118 [ 1679.681482][ T5670] [] do_trap_ecall_u+0x1aa/0x216 [ 1679.682536][ T5670] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 1685.881201][ T35] audit: type=1326 audit(1685.060:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5674 comm="syz.0.384" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x0 [ 1687.546367][ T5678] FAULT_INJECTION: forcing a failure. [ 1687.546367][ T5678] name failslab, interval 1, probability 0, space 0, times 0 [ 1687.548662][ T5678] CPU: 1 UID: 0 PID: 5678 Comm: syz.2.385 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 1687.550192][ T5678] Hardware name: riscv-virtio,qemu (DT) [ 1687.551220][ T5678] Call Trace: [ 1687.552249][ T5678] [] dump_backtrace+0x2e/0x3c [ 1687.553804][ T5678] [] show_stack+0x34/0x40 [ 1687.555153][ T5678] [] dump_stack_lvl+0x122/0x196 [ 1687.556603][ T5678] [] dump_stack+0x1c/0x24 [ 1687.557977][ T5678] [] should_fail_ex+0x3f8/0x4e0 [ 1687.559463][ T5678] [] should_failslab+0xba/0x102 [ 1687.560825][ T5678] [] __kmalloc_cache_noprof+0x144/0x318 [ 1687.563571][ T5678] [] rtnl_newlink+0x54/0xa2 [ 1687.565085][ T5678] [] rtnetlink_rcv_msg+0x428/0xdbe [ 1687.566772][ T5678] [] netlink_rcv_skb+0x216/0x3dc [ 1687.568310][ T5678] [] rtnetlink_rcv+0x26/0x30 [ 1687.569960][ T5678] [] netlink_unicast+0x4f0/0x82c [ 1687.571498][ T5678] [] netlink_sendmsg+0x864/0xdc6 [ 1687.572982][ T5678] [] __sock_sendmsg+0xcc/0x160 [ 1687.575076][ T5678] [] ____sys_sendmsg+0x5ce/0x79e [ 1687.576602][ T5678] [] ___sys_sendmsg+0x144/0x1e6 [ 1687.577981][ T5678] [] __sys_sendmsg+0x130/0x1f0 [ 1687.579344][ T5678] [] __riscv_sys_sendmsg+0x70/0xa2 [ 1687.580721][ T5678] [] syscall_handler+0x94/0x118 [ 1687.583078][ T5678] [] do_trap_ecall_u+0x1aa/0x216 [ 1687.585056][ T5678] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 1687.588217][ C1] vkms_vblank_simulate: vblank timer overrun [ 1687.700088][ T5677] ptrace attach of "/syz-executor exec"[3161] was attempted by "/syz-executor exec"[5677] [ 1688.723184][ C1] vkms_vblank_simulate: vblank timer overrun [ 1688.814708][ C1] vkms_vblank_simulate: vblank timer overrun [ 1689.915249][ T5680] FAULT_INJECTION: forcing a failure. [ 1689.915249][ T5680] name failslab, interval 1, probability 0, space 0, times 0 [ 1689.917743][ T5680] CPU: 1 UID: 0 PID: 5680 Comm: syz.2.386 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 1689.918712][ T5680] Hardware name: riscv-virtio,qemu (DT) [ 1689.919351][ T5680] Call Trace: [ 1689.919915][ T5680] [] dump_backtrace+0x2e/0x3c [ 1689.920915][ T5680] [] show_stack+0x34/0x40 [ 1689.922470][ T5680] [] dump_stack_lvl+0x122/0x196 [ 1689.924004][ T5680] [] dump_stack+0x1c/0x24 [ 1689.926815][ T5680] [] should_fail_ex+0x3f8/0x4e0 [ 1689.928826][ T5680] [] should_failslab+0xba/0x102 [ 1689.930597][ T5680] [] kmem_cache_alloc_noprof+0x146/0x304 [ 1689.932197][ T5680] [] vm_area_dup+0x34/0x2ec [ 1689.933676][ T5680] [] __split_vma+0x198/0x1096 [ 1689.935213][ T5680] [] vms_gather_munmap_vmas+0x3b4/0x15dc [ 1689.936891][ T5680] [] mmap_region+0x2e6/0x2380 [ 1689.938529][ T5680] [] do_mmap+0xaa8/0xe00 [ 1689.939971][ T5680] [] vm_mmap_pgoff+0x19e/0x310 [ 1689.941636][ T5680] [] ksys_mmap_pgoff+0x2c8/0x6f8 [ 1689.943068][ T5680] [] __riscv_sys_mmap+0xfc/0x15e [ 1689.944982][ T5680] [] syscall_handler+0x94/0x118 [ 1689.946504][ T5680] [] do_trap_ecall_u+0x1aa/0x216 [ 1689.948957][ T5680] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 1689.952675][ C1] vkms_vblank_simulate: vblank timer overrun [ 1695.423169][ T5683] netlink: 'syz.0.387': attribute type 3 has an invalid length. [ 1701.228150][ T5189] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 1701.566252][ T5189] usb 1-1: Using ep0 maxpacket: 16 [ 1701.670113][ T5189] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1701.797099][ T5189] usb 1-1: New USB device found, idVendor=0403, idProduct=fa78, bcdDevice=c5.ff [ 1701.799525][ T5189] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1701.801422][ T5189] usb 1-1: Product: syz [ 1701.802911][ T5189] usb 1-1: Manufacturer: syz [ 1701.805758][ T5189] usb 1-1: SerialNumber: syz [ 1701.957112][ T5189] usb 1-1: config 0 descriptor?? [ 1702.047715][ T5696] ptrace attach of "/syz-executor exec"[4606] was attempted by "/syz-executor exec"[5696] [ 1702.160194][ T5189] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected [ 1702.232670][ T5189] ftdi_sio ttyUSB0: unknown device type: 0xc5ff [ 1713.744104][ T5189] usb 1-1: USB disconnect, device number 10 [ 1713.883837][ T5189] ftdi_sio 1-1:0.0: device disconnected [ 1719.762049][ C1] vkms_vblank_simulate: vblank timer overrun [ 1722.166741][ T3859] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 1722.586960][ T3859] usb 1-1: New USB device found, idVendor=05ac, idProduct=1203, bcdDevice=7b.0c [ 1722.589422][ T3859] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1722.591240][ T3859] usb 1-1: Product: syz [ 1722.592464][ T3859] usb 1-1: Manufacturer: syz [ 1722.609042][ T3859] usb 1-1: SerialNumber: syz [ 1722.756474][ T3859] apple-mfi-fastcharge 1-1: config 0 descriptor?? [ 1722.852819][ T3859] usb-storage 1-1:0.0: USB Mass Storage device detected [ 1722.983404][ T3859] usb-storage 1-1:0.0: Quirks match for vid 05ac pid 1203: 10 [ 1724.015098][ C1] vkms_vblank_simulate: vblank timer overrun [ 1725.728993][ T5730] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1725.822871][ T5730] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1727.310972][ T5730] netlink: 8 bytes leftover after parsing attributes in process `syz.0.398'. [ 1738.135152][ T5189] apple-mfi-fastcharge 1-1: USB disconnect, device number 11 [ 1740.738080][ T5773] FAULT_INJECTION: forcing a failure. [ 1740.738080][ T5773] name failslab, interval 1, probability 0, space 0, times 0 [ 1740.742035][ T5773] CPU: 1 UID: 0 PID: 5773 Comm: syz.2.401 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 1740.744094][ T5773] Hardware name: riscv-virtio,qemu (DT) [ 1740.745338][ T5773] Call Trace: [ 1740.746407][ T5773] [] dump_backtrace+0x2e/0x3c [ 1740.748174][ T5773] [] show_stack+0x34/0x40 [ 1740.749652][ T5773] [] dump_stack_lvl+0x122/0x196 [ 1740.751205][ T5773] [] dump_stack+0x1c/0x24 [ 1740.752751][ T5773] [] should_fail_ex+0x3f8/0x4e0 [ 1740.754800][ T5773] [] should_failslab+0xba/0x102 [ 1740.756503][ T5773] [] __kmalloc_noprof+0xca/0x4e4 [ 1740.758108][ T5773] [] lsm_blob_alloc+0x74/0x8a [ 1740.760128][ T5773] [] security_sb_alloc+0x2e/0x2a4 [ 1740.761756][ T5773] [] alloc_super+0x214/0xa52 [ 1740.763432][ T5773] [] sget_fc+0x11a/0x9ca [ 1740.765057][ T5773] [] get_tree_nodev+0x30/0x164 [ 1740.766551][ T5773] [] mqueue_get_tree+0xe8/0x116 [ 1740.768016][ T5773] [] vfs_get_tree+0x7e/0x2e0 [ 1740.769729][ T5773] [] fc_mount+0x1c/0xb4 [ 1740.771241][ T5773] [] mq_init_ns+0x3bc/0x5a6 [ 1740.772669][ T5773] [] copy_ipcs+0x36c/0x5bc [ 1740.774114][ T5773] [] create_new_namespaces+0x1d6/0x9f2 [ 1740.775956][ T5773] [] unshare_nsproxy_namespaces+0xb2/0x1c6 [ 1740.777780][ T5773] [] ksys_unshare+0x420/0x98c [ 1740.779321][ T5773] [] __riscv_sys_unshare+0x34/0x48 [ 1740.780982][ T5773] [] syscall_handler+0x94/0x118 [ 1740.782557][ T5773] [] do_trap_ecall_u+0x1aa/0x216 [ 1740.784257][ T5773] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 1740.786564][ C1] vkms_vblank_simulate: vblank timer overrun [ 1747.536012][ T5784] FAULT_INJECTION: forcing a failure. [ 1747.536012][ T5784] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1747.542920][ T5784] CPU: 1 UID: 0 PID: 5784 Comm: syz.0.404 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 1747.547951][ T5784] Hardware name: riscv-virtio,qemu (DT) [ 1747.550231][ T5784] Call Trace: [ 1747.551809][ T5784] [] dump_backtrace+0x2e/0x3c [ 1747.554706][ T5784] [] show_stack+0x34/0x40 [ 1747.556623][ T5784] [] dump_stack_lvl+0x122/0x196 [ 1747.558232][ T5784] [] dump_stack+0x1c/0x24 [ 1747.559759][ T5784] [] should_fail_ex+0x3f8/0x4e0 [ 1747.561423][ T5784] [] should_fail+0xe/0x16 [ 1747.563041][ T5784] [] should_fail_usercopy+0x1e/0x26 [ 1747.564705][ T5784] [] _copy_to_user+0x3a/0xc6 [ 1747.566282][ T5784] [] simple_read_from_buffer+0xd0/0x154 [ 1747.567839][ T5784] [] proc_fail_nth_read+0x194/0x27c [ 1747.569354][ T5784] [] vfs_read+0x1b0/0x86c [ 1747.570969][ T5784] [] ksys_read+0x128/0x266 [ 1747.572560][ T5784] [] __riscv_sys_read+0x6e/0x94 [ 1747.574262][ T5784] [] syscall_handler+0x94/0x118 [ 1747.575849][ T5784] [] do_trap_ecall_u+0x1aa/0x216 [ 1747.577533][ T5784] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 1747.580939][ C1] vkms_vblank_simulate: vblank timer overrun [ 1754.990619][ T5189] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 1755.201123][ T5189] usb 1-1: Using ep0 maxpacket: 8 [ 1755.233324][ T5189] usb 1-1: no configurations [ 1755.237151][ T5189] usb 1-1: can't read configurations, error -22 [ 1755.409099][ T5189] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 1755.828515][ T5189] usb 1-1: Using ep0 maxpacket: 8 [ 1755.849078][ T5189] usb 1-1: no configurations [ 1755.850150][ T5189] usb 1-1: can't read configurations, error -22 [ 1755.866265][ T5189] usb usb1-port1: attempt power cycle [ 1756.267011][ T5189] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 1756.380967][ T5189] usb 1-1: Using ep0 maxpacket: 8 [ 1756.416815][ T5189] usb 1-1: no configurations [ 1756.418055][ T5189] usb 1-1: can't read configurations, error -22 [ 1756.580866][ T5189] usb 1-1: new high-speed USB device number 15 using dummy_hcd [ 1756.677732][ T5189] usb 1-1: Using ep0 maxpacket: 8 [ 1756.707836][ T5189] usb 1-1: no configurations [ 1756.710859][ T5189] usb 1-1: can't read configurations, error -22 [ 1756.737913][ T5189] usb usb1-port1: unable to enumerate USB device [ 1764.205855][ T5815] can0: slcan on pts0. [ 1765.458683][ T5815] can0 (unregistered): slcan off pts0. [ 1794.739961][ T5870] FAULT_INJECTION: forcing a failure. [ 1794.739961][ T5870] name failslab, interval 1, probability 0, space 0, times 0 [ 1794.752919][ T5870] CPU: 1 UID: 0 PID: 5870 Comm: syz.2.419 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 1794.755411][ T5870] Hardware name: riscv-virtio,qemu (DT) [ 1794.757788][ T5870] Call Trace: [ 1794.758873][ T5870] [] dump_backtrace+0x2e/0x3c [ 1794.760618][ T5870] [] show_stack+0x34/0x40 [ 1794.762061][ T5870] [] dump_stack_lvl+0x122/0x196 [ 1794.763700][ T5870] [] dump_stack+0x1c/0x24 [ 1794.765276][ T5870] [] should_fail_ex+0x3f8/0x4e0 [ 1794.767056][ T5870] [] should_failslab+0xba/0x102 [ 1794.768736][ T5870] [] kmem_cache_alloc_noprof+0x146/0x304 [ 1794.770510][ T5870] [] prepare_creds+0x32/0x6e6 [ 1794.772092][ T5870] [] lookup_user_key+0x64a/0x14a0 [ 1794.773747][ T5870] [] __riscv_sys_add_key+0x2e4/0x4b4 [ 1794.775972][ T5870] [] syscall_handler+0x94/0x118 [ 1794.777629][ T5870] [] do_trap_ecall_u+0x1aa/0x216 [ 1794.779329][ T5870] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 1794.782777][ C1] vkms_vblank_simulate: vblank timer overrun [ 1795.800525][ T5869] netlink: 64 bytes leftover after parsing attributes in process `syz.0.420'. [ 1796.530055][ T3859] usb 1-1: new high-speed USB device number 16 using dummy_hcd [ 1796.985169][ T3859] usb 1-1: Using ep0 maxpacket: 8 [ 1797.002237][ T3859] usb 1-1: too many configurations: 65, using maximum allowed: 8 [ 1797.737630][ T3859] usb 1-1: New USB device found, idVendor=1044, idProduct=800d, bcdDevice=57.5c [ 1797.740280][ T3859] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1797.742469][ T3859] usb 1-1: Product: syz [ 1797.747851][ T3859] usb 1-1: Manufacturer: syz [ 1797.750375][ T3859] usb 1-1: SerialNumber: syz [ 1797.926413][ T3859] usb 1-1: config 0 descriptor?? [ 1798.043661][ T3859] usb 1-1: bad CDC descriptors [ 1801.295334][ T5887] netlink: 4 bytes leftover after parsing attributes in process `syz.2.422'. [ 1803.999165][ T5869] nci: __nci_request: wait_for_completion_interruptible_timeout failed 0 [ 1804.725121][ T5189] usb 1-1: USB disconnect, device number 16 [ 1810.526063][ T35] audit: type=1326 audit(1809.650:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5899 comm="syz.2.424" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x0 [ 1812.433212][ T5903] ptrace attach of "/syz-executor exec"[4606] was attempted by "/syz-executor exec"[5903] [ 1815.654227][ C1] vkms_vblank_simulate: vblank timer overrun [ 1816.382764][ T5907] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1816.511320][ T5907] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1830.802427][ T35] audit: type=1326 audit(1830.000:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5923 comm="syz.0.431" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x0 [ 1832.665977][ T5927] ptrace attach of "/syz-executor exec"[3161] was attempted by "/syz-executor exec"[5927] [ 1836.610254][ T5933] FAULT_INJECTION: forcing a failure. [ 1836.610254][ T5933] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1836.626374][ T5933] CPU: 0 UID: 0 PID: 5933 Comm: syz.2.435 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 1836.630760][ T5933] Hardware name: riscv-virtio,qemu (DT) [ 1836.633600][ T5933] Call Trace: [ 1836.635210][ T5933] [] dump_backtrace+0x2e/0x3c [ 1836.638247][ T5933] [] show_stack+0x34/0x40 [ 1836.639517][ T5933] [] dump_stack_lvl+0x122/0x196 [ 1836.641157][ T5933] [] dump_stack+0x1c/0x24 [ 1836.642718][ T5933] [] should_fail_ex+0x3f8/0x4e0 [ 1836.644558][ T5933] [] should_fail+0xe/0x16 [ 1836.646210][ T5933] [] should_fail_usercopy+0x1e/0x26 [ 1836.647923][ T5933] [] strncpy_from_user+0x44/0x4ce [ 1836.649923][ T5933] [] getname_flags.part.0+0x8e/0x4b6 [ 1836.651604][ T5933] [] getname_flags+0x98/0xd8 [ 1836.654142][ T5933] [] user_path_at+0x28/0x52 [ 1836.655895][ T5933] [] __riscv_sys_mount+0x2c0/0x4da [ 1836.657785][ T5933] [] syscall_handler+0x94/0x118 [ 1836.659302][ T5933] [] do_trap_ecall_u+0x1aa/0x216 [ 1836.660906][ T5933] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 1838.286178][ C1] vkms_vblank_simulate: vblank timer overrun [ 1840.567070][ T5940] FAULT_INJECTION: forcing a failure. [ 1840.567070][ T5940] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1840.570104][ T5940] CPU: 1 UID: 0 PID: 5940 Comm: syz.0.437 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 1840.571734][ T5940] Hardware name: riscv-virtio,qemu (DT) [ 1840.572791][ T5940] Call Trace: [ 1840.573750][ T5940] [] dump_backtrace+0x2e/0x3c [ 1840.575368][ T5940] [] show_stack+0x34/0x40 [ 1840.576717][ T5940] [] dump_stack_lvl+0x122/0x196 [ 1840.578364][ T5940] [] dump_stack+0x1c/0x24 [ 1840.579861][ T5940] [] should_fail_ex+0x3f8/0x4e0 [ 1840.581444][ T5940] [] should_fail+0xe/0x16 [ 1840.582983][ T5940] [] should_fail_usercopy+0x1e/0x26 [ 1840.585912][ T5940] [] _copy_from_user+0x3a/0xfe [ 1840.587516][ T5940] [] vcs_write+0x2d0/0xc5e [ 1840.588997][ T5940] [] vfs_writev+0x482/0x85a [ 1840.590644][ T5940] [] do_writev+0x130/0x34e [ 1840.592156][ T5940] [] __riscv_sys_writev+0x6e/0x94 [ 1840.594112][ T5940] [] syscall_handler+0x94/0x118 [ 1840.595725][ T5940] [] do_trap_ecall_u+0x1aa/0x216 [ 1840.597466][ T5940] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 1854.602993][ T5961] FAULT_INJECTION: forcing a failure. [ 1854.602993][ T5961] name failslab, interval 1, probability 0, space 0, times 0 [ 1854.624887][ T5961] CPU: 0 UID: 0 PID: 5961 Comm: syz.2.444 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 1854.626116][ T5961] Hardware name: riscv-virtio,qemu (DT) [ 1854.626801][ T5961] Call Trace: [ 1854.627356][ T5961] [] dump_backtrace+0x2e/0x3c [ 1854.628278][ T5961] [] show_stack+0x34/0x40 [ 1854.629073][ T5961] [] dump_stack_lvl+0x122/0x196 [ 1854.630069][ T5961] [] dump_stack+0x1c/0x24 [ 1854.630984][ T5961] [] should_fail_ex+0x3f8/0x4e0 [ 1854.631974][ T5961] [] should_failslab+0xba/0x102 [ 1854.632977][ T5961] [] kmem_cache_alloc_node_noprof+0x284/0x34e [ 1854.634070][ T5961] [] __alloc_skb+0x32c/0x42a [ 1854.635173][ T5961] [] netlink_ack+0xc2/0xa36 [ 1854.636050][ T5961] [] netlink_rcv_skb+0x35c/0x3dc [ 1854.636910][ T5961] [] rtnetlink_rcv+0x26/0x30 [ 1854.637843][ T5961] [] netlink_unicast+0x4f0/0x82c [ 1854.638779][ T5961] [] netlink_sendmsg+0x864/0xdc6 [ 1854.639624][ T5961] [] __sock_sendmsg+0xcc/0x160 [ 1854.640787][ T5961] [] ____sys_sendmsg+0x5ce/0x79e [ 1854.641967][ T5961] [] ___sys_sendmsg+0x144/0x1e6 [ 1854.642847][ T5961] [] __sys_sendmsg+0x130/0x1f0 [ 1854.643758][ T5961] [] __riscv_sys_sendmsg+0x70/0xa2 [ 1854.644816][ T5961] [] syscall_handler+0x94/0x118 [ 1854.645722][ T5961] [] do_trap_ecall_u+0x1aa/0x216 [ 1854.646621][ T5961] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 1859.512886][ T5967] netlink: 4 bytes leftover after parsing attributes in process `syz.2.447'. [ 1862.012793][ T5971] FAULT_INJECTION: forcing a failure. [ 1862.012793][ T5971] name failslab, interval 1, probability 0, space 0, times 0 [ 1862.019215][ T5971] CPU: 1 UID: 0 PID: 5971 Comm: syz.2.449 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 1862.021182][ T5971] Hardware name: riscv-virtio,qemu (DT) [ 1862.022453][ T5971] Call Trace: [ 1862.023473][ T5971] [] dump_backtrace+0x2e/0x3c [ 1862.025215][ T5971] [] show_stack+0x34/0x40 [ 1862.026730][ T5971] [] dump_stack_lvl+0x122/0x196 [ 1862.028356][ T5971] [] dump_stack+0x1c/0x24 [ 1862.029938][ T5971] [] should_fail_ex+0x3f8/0x4e0 [ 1862.031605][ T5971] [] should_failslab+0xba/0x102 [ 1862.033229][ T5971] [] kmem_cache_alloc_noprof+0x60/0x304 [ 1862.035010][ T5971] [] xfrm_state_alloc+0x2e/0x44e [ 1862.036615][ T5971] [] __find_acq_core+0x932/0x2816 [ 1862.038317][ T5971] [] xfrm_find_acq+0x60/0x88 [ 1862.039898][ T5971] [] xfrm_alloc_userspi+0x4e4/0xaf4 [ 1862.041658][ T5971] [] xfrm_user_rcv_msg+0x400/0x8e4 [ 1862.043382][ T5971] [] netlink_rcv_skb+0x216/0x3dc [ 1862.045053][ T5971] [] xfrm_netlink_rcv+0x7c/0xa6 [ 1862.046772][ T5971] [] netlink_unicast+0x4f0/0x82c [ 1862.048338][ T5971] [] netlink_sendmsg+0x864/0xdc6 [ 1862.049927][ T5971] [] __sock_sendmsg+0xcc/0x160 [ 1862.051583][ T5971] [] ____sys_sendmsg+0x5ce/0x79e [ 1862.053340][ T5971] [] ___sys_sendmsg+0x144/0x1e6 [ 1862.055240][ T5971] [] __sys_sendmsg+0x130/0x1f0 [ 1862.056689][ T5971] [] __riscv_sys_sendmsg+0x70/0xa2 [ 1862.058372][ T5971] [] syscall_handler+0x94/0x118 [ 1862.059947][ T5971] [] do_trap_ecall_u+0x1aa/0x216 [ 1862.061649][ T5971] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 1862.064984][ C1] vkms_vblank_simulate: vblank timer overrun [ 1862.911168][ C1] vkms_vblank_simulate: vblank timer overrun [ 1862.942445][ C1] vkms_vblank_simulate: vblank timer overrun [ 1871.136157][ T5988] hsr0 speed is unknown, defaulting to 1000 [ 1871.241343][ T5988] hsr0 speed is unknown, defaulting to 1000 [ 1871.341912][ T5988] hsr0 speed is unknown, defaulting to 1000 [ 1874.888064][ T5992] netlink: 36 bytes leftover after parsing attributes in process `syz.0.451'. [ 1877.596332][ T5988] infiniband syz2: set down [ 1877.603484][ T5988] infiniband syz2: added hsr0 [ 1879.650768][ T5988] RDS/IB: syz2: added [ 1879.685857][ T5988] smc: adding ib device syz2 with port count 1 [ 1879.688659][ T5988] smc: ib device syz2 port 1 has pnetid [ 1879.992658][ T5189] hsr0 speed is unknown, defaulting to 1000 [ 1880.026378][ T33] hsr0 speed is unknown, defaulting to 1000 [ 1880.032686][ T5988] hsr0 speed is unknown, defaulting to 1000 [ 1882.021895][ T5988] hsr0 speed is unknown, defaulting to 1000 [ 1887.163184][ T6019] PKCS8: Unsupported PKCS#8 version [ 1887.427866][ T6019] futex_wake_op: syz.0.458 tries to shift op by 32; fix this program [ 1889.589123][ T6021] FAULT_INJECTION: forcing a failure. [ 1889.589123][ T6021] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1889.592292][ T6021] CPU: 1 UID: 0 PID: 6021 Comm: syz.2.459 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 1889.593979][ T6021] Hardware name: riscv-virtio,qemu (DT) [ 1889.595155][ T6021] Call Trace: [ 1889.596120][ T6021] [] dump_backtrace+0x2e/0x3c [ 1889.597754][ T6021] [] show_stack+0x34/0x40 [ 1889.599164][ T6021] [] dump_stack_lvl+0x122/0x196 [ 1889.600750][ T6021] [] dump_stack+0x1c/0x24 [ 1889.602322][ T6021] [] should_fail_ex+0x3f8/0x4e0 [ 1889.604088][ T6021] [] should_fail+0xe/0x16 [ 1889.605708][ T6021] [] should_fail_usercopy+0x1e/0x26 [ 1889.607387][ T6021] [] _copy_from_iter+0x1da/0x1700 [ 1889.608892][ T6021] [] netlink_sendmsg+0x7c4/0xdc6 [ 1889.610391][ T6021] [] __sock_sendmsg+0xcc/0x160 [ 1889.611978][ T6021] [] ____sys_sendmsg+0x5ce/0x79e [ 1889.613543][ T6021] [] ___sys_sendmsg+0x144/0x1e6 [ 1889.614983][ T6021] [] __sys_sendmsg+0x130/0x1f0 [ 1889.616421][ T6021] [] __riscv_sys_sendmsg+0x70/0xa2 [ 1889.618181][ T6021] [] syscall_handler+0x94/0x118 [ 1889.619901][ T6021] [] do_trap_ecall_u+0x1aa/0x216 [ 1889.621677][ T6021] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 1889.624884][ C1] vkms_vblank_simulate: vblank timer overrun [ 1902.251458][ T6039] FAULT_INJECTION: forcing a failure. [ 1902.251458][ T6039] name failslab, interval 1, probability 0, space 0, times 0 [ 1902.285712][ T6039] CPU: 1 UID: 0 PID: 6039 Comm: syz.0.467 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 1902.287612][ T6039] Hardware name: riscv-virtio,qemu (DT) [ 1902.288608][ T6039] Call Trace: [ 1902.290059][ T6039] [] dump_backtrace+0x2e/0x3c [ 1902.291518][ T6039] [] show_stack+0x34/0x40 [ 1902.292911][ T6039] [] dump_stack_lvl+0x122/0x196 [ 1902.294770][ T6039] [] dump_stack+0x1c/0x24 [ 1902.296163][ T6039] [] should_fail_ex+0x3f8/0x4e0 [ 1902.297722][ T6039] [] should_failslab+0xba/0x102 [ 1902.299125][ T6039] [] kmem_cache_alloc_node_noprof+0x284/0x34e [ 1902.300653][ T6039] [] __alloc_skb+0x32c/0x42a [ 1902.302183][ T6039] [] netlink_alloc_large_skb+0x7a/0x13e [ 1902.303597][ T6039] [] netlink_sendmsg+0x660/0xdc6 [ 1902.305080][ T6039] [] __sock_sendmsg+0xcc/0x160 [ 1902.306605][ T6039] [] ____sys_sendmsg+0x5ce/0x79e [ 1902.308275][ T6039] [] ___sys_sendmsg+0x144/0x1e6 [ 1902.309649][ T6039] [] __sys_sendmsg+0x130/0x1f0 [ 1902.311194][ T6039] [] __riscv_sys_sendmsg+0x70/0xa2 [ 1902.312597][ T6039] [] syscall_handler+0x94/0x118 [ 1902.314084][ T6039] [] do_trap_ecall_u+0x1aa/0x216 [ 1902.315580][ T6039] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 1902.318277][ C1] vkms_vblank_simulate: vblank timer overrun [ 1904.022253][ C1] vkms_vblank_simulate: vblank timer overrun [ 1911.438209][ C1] vkms_vblank_simulate: vblank timer overrun [ 1912.131681][ C1] vkms_vblank_simulate: vblank timer overrun [ 1915.803213][ T6056] lo: entered promiscuous mode [ 1915.807692][ T6056] lo: entered allmulticast mode [ 1916.262908][ T6056] tunl0: entered promiscuous mode [ 1916.285732][ T6056] tunl0: entered allmulticast mode [ 1916.519104][ T6056] gre0: entered promiscuous mode [ 1916.520542][ T6056] gre0: entered allmulticast mode [ 1917.011094][ T6056] gretap0: entered promiscuous mode [ 1917.013250][ T6056] gretap0: entered allmulticast mode [ 1918.246588][ T6056] erspan0: entered promiscuous mode [ 1918.249856][ T6056] erspan0: entered allmulticast mode [ 1918.407900][ T6056] ip_vti0: entered promiscuous mode [ 1918.410098][ T6056] ip_vti0: entered allmulticast mode [ 1918.549602][ T6056] ip6_vti0: entered promiscuous mode [ 1918.551450][ T6056] ip6_vti0: entered allmulticast mode [ 1918.710429][ T6056] sit0: entered promiscuous mode [ 1918.712541][ T6056] sit0: entered allmulticast mode [ 1919.146138][ T6056] ip6tnl0: entered promiscuous mode [ 1919.149833][ T6056] ip6tnl0: entered allmulticast mode [ 1919.578081][ T6056] ip6gre0: entered promiscuous mode [ 1919.580192][ T6056] ip6gre0: entered allmulticast mode [ 1920.187368][ T6056] syz_tun: entered promiscuous mode [ 1920.192158][ T6056] syz_tun: entered allmulticast mode [ 1920.886495][ T6056] ip6gretap0: entered promiscuous mode [ 1920.888280][ T6056] ip6gretap0: entered allmulticast mode [ 1921.068603][ T6056] vcan0: entered promiscuous mode [ 1921.070464][ T6056] vcan0: entered allmulticast mode [ 1921.323301][ T6056] bond0: entered promiscuous mode [ 1921.342289][ T6056] bond_slave_0: entered promiscuous mode [ 1921.370574][ T6056] bond_slave_1: entered promiscuous mode [ 1921.381580][ T6056] bond0: entered allmulticast mode [ 1921.383613][ T6056] bond_slave_0: entered allmulticast mode [ 1921.397525][ T6056] bond_slave_1: entered allmulticast mode [ 1921.707189][ T6056] dummy0: entered promiscuous mode [ 1921.709280][ T6056] dummy0: entered allmulticast mode [ 1921.869748][ T6056] nlmon0: entered promiscuous mode [ 1921.872782][ T6056] nlmon0: entered allmulticast mode [ 1922.106269][ T6056] vxcan0: entered promiscuous mode [ 1922.108103][ T6056] vxcan0: entered allmulticast mode [ 1922.193807][ T6056] vxcan1: entered promiscuous mode [ 1922.207216][ T6056] vxcan1: entered allmulticast mode [ 1922.287261][ T6056] veth0: entered promiscuous mode [ 1922.289123][ T6056] veth0: entered allmulticast mode [ 1922.555829][ T6056] veth1: entered promiscuous mode [ 1922.557957][ T6056] veth1: entered allmulticast mode [ 1922.899608][ T6056] wg0: entered promiscuous mode [ 1922.902111][ T6056] wg0: entered allmulticast mode [ 1923.132097][ T6056] wg1: entered promiscuous mode [ 1923.135923][ T6056] wg1: entered allmulticast mode [ 1923.460837][ T6056] wg2: entered promiscuous mode [ 1923.462909][ T6056] wg2: entered allmulticast mode [ 1923.850401][ T6056] veth0_to_bridge: entered promiscuous mode [ 1923.869949][ T6056] veth0_to_bridge: entered allmulticast mode [ 1924.327722][ T6056] bridge_slave_0: entered promiscuous mode [ 1924.330669][ T6056] bridge_slave_0: entered allmulticast mode [ 1924.597592][ T6056] veth1_to_bridge: entered promiscuous mode [ 1924.599452][ T6056] veth1_to_bridge: entered allmulticast mode [ 1924.669345][ T33] usb 1-1: new high-speed USB device number 17 using dummy_hcd [ 1924.882973][ T33] usb 1-1: Using ep0 maxpacket: 16 [ 1924.947451][ T6056] bridge_slave_1: entered promiscuous mode [ 1924.950275][ T6056] bridge_slave_1: entered allmulticast mode [ 1924.977766][ T33] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0 [ 1924.980140][ T33] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 0 [ 1924.983090][ T33] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1925.001145][ T33] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 0 [ 1925.143702][ T33] usb 1-1: New USB device found, idVendor=04d8, idProduct=0a30, bcdDevice=ce.47 [ 1925.173443][ T33] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1925.182161][ T33] usb 1-1: Product: syz [ 1925.188038][ T33] usb 1-1: Manufacturer: syz [ 1925.189819][ T33] usb 1-1: SerialNumber: syz [ 1925.279931][ T6056] veth0_to_bond: entered promiscuous mode [ 1925.281989][ T6056] veth0_to_bond: entered allmulticast mode [ 1925.342417][ T33] usb 1-1: config 0 descriptor?? [ 1925.716497][ T6056] veth1_to_bond: entered promiscuous mode [ 1925.718425][ T6056] veth1_to_bond: entered allmulticast mode [ 1926.128974][ T6056] veth0_to_team: entered promiscuous mode [ 1926.131537][ T6056] veth0_to_team: entered allmulticast mode [ 1926.256480][ T6056] team_slave_0: entered promiscuous mode [ 1926.258592][ T6056] team_slave_0: entered allmulticast mode [ 1926.310383][ T6056] veth1_to_team: entered promiscuous mode [ 1926.313729][ T6056] veth1_to_team: entered allmulticast mode [ 1926.452719][ T6056] team_slave_1: entered promiscuous mode [ 1926.469631][ T6056] team_slave_1: entered allmulticast mode [ 1926.507605][ T6056] veth0_to_batadv: entered promiscuous mode [ 1926.509654][ T6056] veth0_to_batadv: entered allmulticast mode [ 1926.845496][ T6056] batadv_slave_0: entered promiscuous mode [ 1926.847591][ T6056] batadv_slave_0: entered allmulticast mode [ 1927.127421][ T6056] veth1_to_batadv: entered promiscuous mode [ 1927.129933][ T6056] veth1_to_batadv: entered allmulticast mode [ 1927.347907][ T6056] batadv_slave_1: entered promiscuous mode [ 1927.349697][ T6056] batadv_slave_1: entered allmulticast mode [ 1927.503527][ T6056] xfrm0: entered promiscuous mode [ 1927.507370][ T6056] xfrm0: entered allmulticast mode [ 1927.681755][ T6056] veth0_to_hsr: entered promiscuous mode [ 1927.685616][ T6056] veth0_to_hsr: entered allmulticast mode [ 1927.911322][ T6056] hsr_slave_0: entered allmulticast mode [ 1927.942439][ T6069] process 'syz.0.475' launched '/dev/fd/10' with NULL argv: empty string added [ 1928.051104][ T6056] veth1_to_hsr: entered promiscuous mode [ 1928.053123][ T6056] veth1_to_hsr: entered allmulticast mode [ 1928.327661][ T6056] hsr_slave_1: entered allmulticast mode [ 1928.527514][ T6056] hsr0: entered promiscuous mode [ 1928.529077][ T6056] hsr0: entered allmulticast mode [ 1928.701797][ T6056] veth1_virt_wifi: entered promiscuous mode [ 1928.709435][ T6056] veth1_virt_wifi: entered allmulticast mode [ 1928.961751][ T6056] veth0_virt_wifi: entered promiscuous mode [ 1928.963717][ T6056] veth0_virt_wifi: entered allmulticast mode [ 1929.136593][ T6056] veth1_vlan: entered allmulticast mode [ 1929.312582][ T6056] veth0_vlan: entered allmulticast mode [ 1929.722831][ T6056] vlan0: entered promiscuous mode [ 1929.726831][ T6056] vlan0: entered allmulticast mode [ 1929.730670][ T6056] vlan1: entered promiscuous mode [ 1929.731678][ T6056] vlan1: entered allmulticast mode [ 1929.787237][ T6056] macvlan0: entered promiscuous mode [ 1929.789434][ T6056] macvlan0: entered allmulticast mode [ 1929.892999][ T6056] macvlan1: entered promiscuous mode [ 1929.907629][ T6056] macvlan1: entered allmulticast mode [ 1930.015446][ T6056] ipvlan0: entered promiscuous mode [ 1930.016803][ T6056] ipvlan0: entered allmulticast mode [ 1930.019252][ T6056] ipvlan1: entered promiscuous mode [ 1930.020204][ T6056] ipvlan1: entered allmulticast mode [ 1930.049750][ T6056] veth1_macvtap: entered allmulticast mode [ 1930.138952][ T6056] veth0_macvtap: entered allmulticast mode [ 1930.288048][ T6056] macvtap0: entered promiscuous mode [ 1930.292978][ T6056] macvtap0: entered allmulticast mode [ 1930.462026][ T6056] macsec0: entered promiscuous mode [ 1930.463405][ T6056] macsec0: entered allmulticast mode [ 1930.660741][ T6056] geneve0: entered promiscuous mode [ 1930.662068][ T6056] geneve0: entered allmulticast mode [ 1930.761939][ T6056] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1930.768415][ T6056] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1930.771403][ T6056] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1930.773854][ T6056] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1930.811300][ T6056] geneve1: entered promiscuous mode [ 1930.812879][ T6056] geneve1: entered allmulticast mode [ 1930.931993][ T6056] netdevsim netdevsim2 netdevsim0: entered promiscuous mode [ 1930.937259][ T6056] netdevsim netdevsim2 netdevsim0: entered allmulticast mode [ 1931.032570][ T6056] netdevsim netdevsim2 netdevsim1: entered promiscuous mode [ 1931.037809][ T6056] netdevsim netdevsim2 netdevsim1: entered allmulticast mode [ 1931.170908][ T6056] netdevsim netdevsim2 netdevsim2: entered promiscuous mode [ 1931.173069][ T6056] netdevsim netdevsim2 netdevsim2: entered allmulticast mode [ 1931.321460][ T6056] netdevsim netdevsim2 netdevsim3: entered promiscuous mode [ 1931.323114][ T6056] netdevsim netdevsim2 netdevsim3: entered allmulticast mode [ 1931.363890][ T6056] geneve2: entered promiscuous mode [ 1931.366019][ T6056] geneve2: entered allmulticast mode [ 1931.378170][ T6056] ipip0: entered promiscuous mode [ 1931.379580][ T6056] ipip0: entered allmulticast mode [ 1931.433825][ T6056] vlan2: entered promiscuous mode [ 1931.437397][ T6056] vlan2: entered allmulticast mode [ 1931.872013][ T33] mcba_usb 1-1:0.0 can0: couldn't setup read URBs [ 1931.897521][ T33] mcba_usb 1-1:0.0 can0: couldn't start device: -90 [ 1932.348179][ T33] mcba_usb 1-1:0.0: probe with driver mcba_usb failed with error -90 [ 1933.139021][ T33] usb 1-1: USB disconnect, device number 17 [ 1938.740084][ T6089] pim6reg1: entered allmulticast mode [ 1940.002438][ T6089] pim6reg1: entered promiscuous mode [ 1954.926573][ T6117] capability: warning: `syz.0.485' uses 32-bit capabilities (legacy support in use) [ 1957.416663][ T6120] netlink: 'syz.0.485': attribute type 3 has an invalid length. [ 1960.896767][ T3859] usb 1-1: new high-speed USB device number 18 using dummy_hcd [ 1963.011807][ T3859] usb 1-1: device descriptor read/all, error -71 [ 1967.022935][ T6144] bond0: (slave bond_slave_0): Releasing backup interface [ 1967.469434][ T6144] fuse: Unknown parameter '0x0000000000000007' [ 1974.951861][ T35] audit: type=1326 audit(1974.100:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6148 comm="syz.0.492" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7fc00000 [ 1975.447969][ T35] audit: type=1326 audit(1974.490:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6148 comm="syz.0.492" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7fc00000 [ 1975.612234][ T35] audit: type=1326 audit(1974.790:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6148 comm="syz.0.492" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7fc00000 [ 1975.638261][ T35] audit: type=1326 audit(1974.820:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6148 comm="syz.0.492" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7fc00000 [ 1975.642001][ T35] audit: type=1326 audit(1974.830:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6148 comm="syz.0.492" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7fc00000 [ 1975.681262][ T35] audit: type=1326 audit(1974.870:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6148 comm="syz.0.492" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7fc00000 [ 1975.698825][ T35] audit: type=1326 audit(1974.870:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6148 comm="syz.0.492" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7fc00000 [ 1975.797676][ T35] audit: type=1326 audit(1974.870:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6148 comm="syz.0.492" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7fc00000 [ 1975.867436][ T35] audit: type=1326 audit(1975.050:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6148 comm="syz.0.492" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7fc00000 [ 1975.910280][ T35] audit: type=1326 audit(1975.100:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6148 comm="syz.0.492" exe="/syz-executor" sig=0 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x7fc00000 [ 1981.591941][ T33] usb 1-1: new high-speed USB device number 20 using dummy_hcd [ 1981.970827][ T33] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 1981.973490][ T33] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 1981.987843][ T33] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 1981.989869][ T33] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1982.447610][ T6164] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1982.698763][ T33] usb 1-1: Quirk or no altset; falling back to MIDI 1.0 [ 1985.553357][ T33] usb 1-1: USB disconnect, device number 20 [ 1999.432866][ T6207] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 1999.627829][ T6207] infiniband sƒz2: RDMA CMA: cma_listen_on_dev, error -1 [ 2022.592227][ T6220] hsr0 speed is unknown, defaulting to 1000 [ 2025.782186][ T6238] netlink: 'syz.2.506': attribute type 6 has an invalid length. [ 2030.160280][ T6300] FAULT_INJECTION: forcing a failure. [ 2030.160280][ T6300] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2030.163472][ T6300] CPU: 0 UID: 0 PID: 6300 Comm: syz.2.507 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 2030.165490][ T6300] Hardware name: riscv-virtio,qemu (DT) [ 2030.166741][ T6300] Call Trace: [ 2030.167829][ T6300] [] dump_backtrace+0x2e/0x3c [ 2030.169690][ T6300] [] show_stack+0x34/0x40 [ 2030.171267][ T6300] [] dump_stack_lvl+0x122/0x196 [ 2030.172963][ T6300] [] dump_stack+0x1c/0x24 [ 2030.175243][ T6300] [] should_fail_ex+0x3f8/0x4e0 [ 2030.177230][ T6300] [] should_fail+0xe/0x16 [ 2030.178978][ T6300] [] should_fail_usercopy+0x1e/0x26 [ 2030.180862][ T6300] [] _copy_from_user+0x3a/0xfe [ 2030.183413][ T6300] [] bpf_prog_load+0x185c/0x2114 [ 2030.185161][ T6300] [] __sys_bpf+0xd38/0x42cc [ 2030.186844][ T6300] [] __riscv_sys_bpf+0x6c/0x9e [ 2030.188578][ T6300] [] syscall_handler+0x94/0x118 [ 2030.190217][ T6300] [] do_trap_ecall_u+0x1aa/0x216 [ 2030.192714][ T6300] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 2037.607953][ T6327] netlink: 8 bytes leftover after parsing attributes in process `syz.2.508'. [ 2037.712292][ T6327] FAULT_INJECTION: forcing a failure. [ 2037.712292][ T6327] name failslab, interval 1, probability 0, space 0, times 0 [ 2037.726009][ T6327] CPU: 0 UID: 0 PID: 6327 Comm: syz.2.508 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 2037.727718][ T6327] Hardware name: riscv-virtio,qemu (DT) [ 2037.728607][ T6327] Call Trace: [ 2037.729299][ T6327] [] dump_backtrace+0x2e/0x3c [ 2037.730522][ T6327] [] show_stack+0x34/0x40 [ 2037.731592][ T6327] [] dump_stack_lvl+0x122/0x196 [ 2037.732740][ T6327] [] dump_stack+0x1c/0x24 [ 2037.733845][ T6327] [] should_fail_ex+0x3f8/0x4e0 [ 2037.735027][ T6327] [] should_failslab+0xba/0x102 [ 2037.736204][ T6327] [] __kmalloc_cache_noprof+0x144/0x318 [ 2037.737814][ T6327] [] nf_tables_newtable+0xcd2/0x1912 [ 2037.739660][ T6327] [] nfnetlink_rcv_batch+0x1808/0x22ce [ 2037.741222][ T6327] [] nfnetlink_rcv+0x3d6/0x436 [ 2037.742747][ T6327] [] netlink_unicast+0x4f0/0x82c [ 2037.744310][ T6327] [] netlink_sendmsg+0x864/0xdc6 [ 2037.745241][ T6327] [] __sock_sendmsg+0xcc/0x160 [ 2037.746281][ T6327] [] ____sys_sendmsg+0x5ce/0x79e [ 2037.747234][ T6327] [] ___sys_sendmsg+0x144/0x1e6 [ 2037.748095][ T6327] [] __sys_sendmsg+0x130/0x1f0 [ 2037.748996][ T6327] [] __riscv_sys_sendmsg+0x70/0xa2 [ 2037.749978][ T6327] [] syscall_handler+0x94/0x118 [ 2037.750983][ T6327] [] do_trap_ecall_u+0x1aa/0x216 [ 2037.752081][ T6327] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 2048.542085][ T6220] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2048.650545][ T6220] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2053.320722][ T6424] ptrace attach of "/syz-executor exec"[4606] was attempted by "/syz-executor exec"[6424] [ 2054.410149][ C1] vkms_vblank_simulate: vblank timer overrun [ 2064.933002][ T6220] hsr_slave_0: entered promiscuous mode [ 2065.089752][ T6220] hsr_slave_1: entered promiscuous mode [ 2078.604935][ C1] vkms_vblank_simulate: vblank timer overrun [ 2080.181501][ T6220] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 2080.637031][ T6220] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 2080.821700][ T6220] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 2080.983594][ T6220] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 2095.311238][ T6220] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2098.623125][ T6583] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 2099.043169][ T6583] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 2100.886018][ C1] vkms_vblank_simulate: vblank timer overrun [ 2114.177998][ T6594] ptrace attach of "/syz-executor exec"[4606] was attempted by "/syz-executor exec"[6594] [ 2143.235948][ C1] vkms_vblank_simulate: vblank timer overrun [ 2144.761894][ T6629] ptrace attach of "/syz-executor exec"[4606] was attempted by "/syz-executor exec"[6629] [ 2147.716906][ T6220] veth0_vlan: entered promiscuous mode [ 2148.172066][ T6220] veth1_vlan: entered promiscuous mode [ 2148.666723][ T6634] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 2148.671552][ T6634] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 2150.059086][ T6220] veth0_macvtap: entered promiscuous mode [ 2150.260576][ T6220] veth1_macvtap: entered promiscuous mode [ 2151.983482][ T6220] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2151.995469][ T6220] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2151.997912][ T6220] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2151.999944][ T6220] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2177.941559][ T6656] syz.0.524 (6656): drop_caches: 2 [ 2189.496430][ T6703] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 2189.837989][ T6703] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 2189.848288][ T6703] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 2193.362788][ T6717] FAULT_INJECTION: forcing a failure. [ 2193.362788][ T6717] name failslab, interval 1, probability 0, space 0, times 0 [ 2193.391270][ T6717] CPU: 1 UID: 0 PID: 6717 Comm: syz.0.531 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 2193.393168][ T6717] Hardware name: riscv-virtio,qemu (DT) [ 2193.394326][ T6717] Call Trace: [ 2193.395263][ T6717] [] dump_backtrace+0x2e/0x3c [ 2193.396820][ T6717] [] show_stack+0x34/0x40 [ 2193.398214][ T6717] [] dump_stack_lvl+0x122/0x196 [ 2193.400095][ T6717] [] dump_stack+0x1c/0x24 [ 2193.401967][ T6717] [] should_fail_ex+0x3f8/0x4e0 [ 2193.403666][ T6717] [] should_failslab+0xba/0x102 [ 2193.405244][ T6717] [] __kmalloc_cache_noprof+0x144/0x318 [ 2193.406929][ T6717] [] tcf_chain_create+0xaa/0x310 [ 2193.408557][ T6717] [] tc_ctl_chain+0x764/0x107c [ 2193.410265][ T6717] [] rtnetlink_rcv_msg+0x428/0xdbe [ 2193.411818][ T6717] [] netlink_rcv_skb+0x216/0x3dc [ 2193.413164][ T6717] [] rtnetlink_rcv+0x26/0x30 [ 2193.414689][ T6717] [] netlink_unicast+0x4f0/0x82c [ 2193.416119][ T6717] [] netlink_sendmsg+0x864/0xdc6 [ 2193.417906][ T6717] [] __sock_sendmsg+0xcc/0x160 [ 2193.419400][ T6717] [] ____sys_sendmsg+0x5ce/0x79e [ 2193.420835][ T6717] [] ___sys_sendmsg+0x144/0x1e6 [ 2193.422146][ T6717] [] __sys_sendmsg+0x130/0x1f0 [ 2193.423555][ T6717] [] __riscv_sys_sendmsg+0x70/0xa2 [ 2193.424986][ T6717] [] syscall_handler+0x94/0x118 [ 2193.426487][ T6717] [] do_trap_ecall_u+0x1aa/0x216 [ 2193.427973][ T6717] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 2193.431667][ C1] vkms_vblank_simulate: vblank timer overrun [ 2214.750965][ T6730] netlink: 80 bytes leftover after parsing attributes in process `syz.0.536'. [ 2215.570365][ T6731] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 2215.591073][ T6731] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 2215.901571][ T6646] usb 1-1: new high-speed USB device number 21 using dummy_hcd [ 2216.158364][ T6646] usb 1-1: Using ep0 maxpacket: 16 [ 2216.309767][ T6646] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 2216.321126][ T6646] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 2216.333338][ T6646] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 2216.347950][ T6646] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 2216.352732][ T6646] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 2216.448318][ T6646] usb 1-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 2216.451059][ T6646] usb 1-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 2216.453197][ T6646] usb 1-1: Manufacturer: syz [ 2216.681975][ T6646] usb 1-1: config 0 descriptor?? [ 2218.749426][ T6646] rc_core: IR keymap rc-hauppauge not found [ 2218.752858][ T6646] Registered IR keymap rc-empty [ 2218.766517][ T6646] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 2218.789913][ T6646] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 2218.940072][ T6646] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0 [ 2219.141023][ T6646] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0/input2 [ 2219.620777][ T6646] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 2219.667664][ T6646] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 2219.691899][ T6646] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 2219.769008][ T6646] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 2219.809727][ T6646] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 2219.848782][ T6646] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 2219.911040][ T6646] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 2219.965693][ T6646] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 2219.988902][ T6646] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 2220.008041][ T6646] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 2220.201525][ T6646] mceusb 1-1:0.0: Registered with mce emulator interface version 1 [ 2220.230691][ T6646] mceusb 1-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active) [ 2220.520346][ T6646] usb 1-1: USB disconnect, device number 21 [ 2222.541111][ T6762] tmpfs: Group quota block hardlimit too large. [ 2229.447111][ T6764] FAULT_INJECTION: forcing a failure. [ 2229.447111][ T6764] name failslab, interval 1, probability 0, space 0, times 0 [ 2229.448675][ T6764] CPU: 1 UID: 0 PID: 6764 Comm: syz.2.539 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 2229.449718][ T6764] Hardware name: riscv-virtio,qemu (DT) [ 2229.450372][ T6764] Call Trace: [ 2229.451079][ T6764] [] dump_backtrace+0x2e/0x3c [ 2229.452168][ T6764] [] show_stack+0x34/0x40 [ 2229.453030][ T6764] [] dump_stack_lvl+0x122/0x196 [ 2229.454119][ T6764] [] dump_stack+0x1c/0x24 [ 2229.455132][ T6764] [] should_fail_ex+0x3f8/0x4e0 [ 2229.456120][ T6764] [] should_failslab+0xba/0x102 [ 2229.457073][ T6764] [] __kmalloc_cache_noprof+0x144/0x318 [ 2229.458150][ T6764] [] nfnl_err_add+0x5c/0x2ae [ 2229.459014][ T6764] [] nfnetlink_rcv_batch+0xaba/0x22ce [ 2229.459937][ T6764] [] nfnetlink_rcv+0x3d6/0x436 [ 2229.460872][ T6764] [] netlink_unicast+0x4f0/0x82c [ 2229.461866][ T6764] [] netlink_sendmsg+0x864/0xdc6 [ 2229.462762][ T6764] [] __sock_sendmsg+0xcc/0x160 [ 2229.463758][ T6764] [] ____sys_sendmsg+0x5ce/0x79e [ 2229.464841][ T6764] [] ___sys_sendmsg+0x144/0x1e6 [ 2229.465736][ T6764] [] __sys_sendmsg+0x130/0x1f0 [ 2229.466787][ T6764] [] __riscv_sys_sendmsg+0x70/0xa2 [ 2229.467693][ T6764] [] syscall_handler+0x94/0x118 [ 2229.468653][ T6764] [] do_trap_ecall_u+0x1aa/0x216 [ 2229.469644][ T6764] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 2230.967704][ T6645] usb 1-1: new high-speed USB device number 22 using dummy_hcd [ 2231.216441][ T6645] usb 1-1: Using ep0 maxpacket: 16 [ 2231.611064][ T6645] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 2231.613548][ T6645] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2231.636082][ T6645] usb 1-1: Product: syz [ 2231.638962][ T6645] usb 1-1: Manufacturer: syz [ 2231.640611][ T6645] usb 1-1: SerialNumber: syz [ 2231.966553][ T6645] r8152-cfgselector 1-1: Unknown version 0x0000 [ 2231.972692][ T6645] r8152-cfgselector 1-1: config 0 descriptor?? [ 2234.047629][ T5378] r8152-cfgselector 1-1: USB disconnect, device number 22 [ 2239.802581][ T6784] netlink: 8 bytes leftover after parsing attributes in process `syz.2.542'. [ 2240.686459][ T6784] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 2240.779453][ T6784] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 2241.408574][ T6784] ALSA: seq fatal error: cannot create timer (-22) [ 2246.230794][ T6646] usb 1-1: new high-speed USB device number 23 using dummy_hcd [ 2246.457270][ T6646] usb 1-1: Using ep0 maxpacket: 16 [ 2246.576262][ T6646] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0 [ 2246.579873][ T6646] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 0 [ 2246.582228][ T6646] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 2246.590261][ T6646] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 0 [ 2247.037088][ T6646] usb 1-1: New USB device found, idVendor=04d8, idProduct=0a30, bcdDevice=ce.47 [ 2247.039554][ T6646] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2247.041517][ T6646] usb 1-1: Product: syz [ 2247.043098][ T6646] usb 1-1: Manufacturer: syz [ 2247.056175][ T6646] usb 1-1: SerialNumber: syz [ 2247.221184][ T6646] usb 1-1: config 0 descriptor?? [ 2247.399422][ T6646] mcba_usb 1-1:0.0 can0: couldn't setup read URBs [ 2247.401654][ T6646] mcba_usb 1-1:0.0 can0: couldn't start device: -90 [ 2247.850408][ T6646] mcba_usb 1-1:0.0: probe with driver mcba_usb failed with error -90 [ 2249.512355][ T6646] usb 1-1: USB disconnect, device number 23 [ 2270.655869][ T6834] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 2270.662331][ T6834] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 2277.028019][ C1] vkms_vblank_simulate: vblank timer overrun [ 2277.058282][ C1] vkms_vblank_simulate: vblank timer overrun [ 2277.138873][ T35] kauditd_printk_skb: 36 callbacks suppressed [ 2277.139355][ T35] audit: type=1326 audit(2276.260:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6840 comm="syz.0.554" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x0 [ 2278.706724][ T6842] ptrace attach of "/syz-executor exec"[6220] was attempted by "/syz-executor exec"[6842] [ 2285.412681][ T6844] fuse: Unknown parameter 'grou00000000000000000000' [ 2286.388837][ T5189] usb 1-1: new high-speed USB device number 24 using dummy_hcd [ 2288.893981][ C1] vkms_vblank_simulate: vblank timer overrun [ 2289.249081][ T5189] usb 1-1: Using ep0 maxpacket: 8 [ 2289.385293][ T5189] usb 1-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 2289.389038][ T5189] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 2289.603779][ T5189] usb 1-1: config 0 descriptor?? [ 2293.721861][ T5189] asix 1-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 2293.730716][ T5189] asix 1-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9 [ 2293.739710][ T5189] asix 1-1:0.0: probe with driver asix failed with error -71 [ 2293.932245][ T5189] usb 1-1: USB disconnect, device number 24 [ 2295.770947][ T6867] tmpfs: Bad value for 'mpol' [ 2298.019198][ T35] audit: type=1326 audit(2297.210:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6869 comm="syz.0.560" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x0 [ 2300.520248][ T6872] ptrace attach of "/syz-executor exec"[6220] was attempted by "/syz-executor exec"[6872] [ 2301.656177][ T6874] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 2301.690666][ T6874] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 2302.417579][ T6874] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 2302.463133][ T6874] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 2316.461049][ T35] audit: type=1326 audit(2315.640:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6889 comm="syz.2.566" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x0 [ 2318.382650][ T6892] ptrace attach of "/syz-executor exec"[4606] was attempted by "/syz-executor exec"[6892] [ 2337.705604][ C1] vkms_vblank_simulate: vblank timer overrun [ 2345.763722][ T35] audit: type=1326 audit(2344.930:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6919 comm="syz.0.571" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x0 [ 2347.682647][ T6921] ptrace attach of "/syz-executor exec"[6220] was attempted by "/syz-executor exec"[6921] [ 2351.698028][ T6923] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 2351.702411][ T6923] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 2354.102965][ T6923] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 2354.132911][ T6923] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 2354.170823][ C0] IPv4: Oversized IP packet from 172.20.20.24 [ 2371.458974][ T6941] netlink: 64 bytes leftover after parsing attributes in process `syz.2.577'. [ 2371.705847][ T6941] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 2372.031204][ T6941] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 2387.938867][ C1] vkms_vblank_simulate: vblank timer overrun [ 2388.778517][ T35] audit: type=1326 audit(2387.970:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6976 comm="syz.2.582" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x0 [ 2390.571486][ T6981] ptrace attach of "/syz-executor exec"[4606] was attempted by "/syz-executor exec"[6981] [ 2393.799499][ T6984] FAULT_INJECTION: forcing a failure. [ 2393.799499][ T6984] name failslab, interval 1, probability 0, space 0, times 0 [ 2393.802869][ T6984] CPU: 0 UID: 0 PID: 6984 Comm: syz.0.584 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 2393.804985][ T6984] Hardware name: riscv-virtio,qemu (DT) [ 2393.806111][ T6984] Call Trace: [ 2393.806966][ T6984] [] dump_backtrace+0x2e/0x3c [ 2393.808552][ T6984] [] show_stack+0x34/0x40 [ 2393.809907][ T6984] [] dump_stack_lvl+0x122/0x196 [ 2393.811345][ T6984] [] dump_stack+0x1c/0x24 [ 2393.812880][ T6984] [] should_fail_ex+0x3f8/0x4e0 [ 2393.814950][ T6984] [] should_failslab+0xba/0x102 [ 2393.816348][ T6984] [] kmem_cache_alloc_lru_noprof+0x156/0x31c [ 2393.818578][ T6984] [] hugetlbfs_alloc_inode+0x8e/0x1ca [ 2393.820053][ T6984] [] alloc_inode+0x60/0x210 [ 2393.821959][ T6984] [] new_inode+0x2a/0x1dc [ 2393.823524][ T6984] [] hugetlbfs_get_inode+0x27e/0x4bc [ 2393.825237][ T6984] [] hugetlb_file_setup+0x15a/0x5fe [ 2393.826800][ T6984] [] ksys_mmap_pgoff+0x162/0x6f8 [ 2393.828161][ T6984] [] __riscv_sys_mmap+0xfc/0x15e [ 2393.829559][ T6984] [] syscall_handler+0x94/0x118 [ 2393.830932][ T6984] [] do_trap_ecall_u+0x1aa/0x216 [ 2393.832523][ T6984] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 2394.809938][ C1] vkms_vblank_simulate: vblank timer overrun [ 2397.812833][ T6988] netlink: 64 bytes leftover after parsing attributes in process `syz.0.586'. [ 2398.078092][ T6992] netlink: 64 bytes leftover after parsing attributes in process `syz.2.587'. [ 2398.370970][ T6992] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 2398.421980][ T6992] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 2406.683370][ C1] vkms_vblank_simulate: vblank timer overrun [ 2413.573805][ T35] audit: type=1326 audit(2412.730:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7013 comm="syz.0.589" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x0 [ 2418.785666][ T7023] netlink: 64 bytes leftover after parsing attributes in process `syz.0.592'. [ 2425.220508][ T7036] FAULT_INJECTION: forcing a failure. [ 2425.220508][ T7036] name failslab, interval 1, probability 0, space 0, times 0 [ 2425.223087][ T7036] CPU: 1 UID: 0 PID: 7036 Comm: syz.0.594 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 2425.226472][ T7036] Hardware name: riscv-virtio,qemu (DT) [ 2425.227674][ T7036] Call Trace: [ 2425.228598][ T7036] [] dump_backtrace+0x2e/0x3c [ 2425.230216][ T7036] [] show_stack+0x34/0x40 [ 2425.231592][ T7036] [] dump_stack_lvl+0x122/0x196 [ 2425.233158][ T7036] [] dump_stack+0x1c/0x24 [ 2425.235396][ T7036] [] should_fail_ex+0x3f8/0x4e0 [ 2425.236924][ T7036] [] should_failslab+0xba/0x102 [ 2425.238406][ T7036] [] __kmalloc_cache_noprof+0x144/0x318 [ 2425.240057][ T7036] [] rtnl_newlink+0x54/0xa2 [ 2425.241419][ T7036] [] rtnetlink_rcv_msg+0x428/0xdbe [ 2425.243152][ T7036] [] netlink_rcv_skb+0x216/0x3dc [ 2425.245879][ T7036] [] rtnetlink_rcv+0x26/0x30 [ 2425.247417][ T7036] [] netlink_unicast+0x4f0/0x82c [ 2425.248819][ T7036] [] netlink_sendmsg+0x864/0xdc6 [ 2425.250288][ T7036] [] __sock_sendmsg+0xcc/0x160 [ 2425.252048][ T7036] [] ____sys_sendmsg+0x5ce/0x79e [ 2425.253708][ T7036] [] ___sys_sendmsg+0x144/0x1e6 [ 2425.255353][ T7036] [] __sys_sendmsg+0x130/0x1f0 [ 2425.256902][ T7036] [] __riscv_sys_sendmsg+0x70/0xa2 [ 2425.258342][ T7036] [] syscall_handler+0x94/0x118 [ 2425.259763][ T7036] [] do_trap_ecall_u+0x1aa/0x216 [ 2425.261251][ T7036] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 2425.264900][ C1] vkms_vblank_simulate: vblank timer overrun [ 2426.882801][ T7037] netlink: 48 bytes leftover after parsing attributes in process `syz.2.593'. [ 2429.536432][ T35] audit: type=1326 audit(2428.730:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7041 comm="syz.2.596" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x0 [ 2431.708847][ T7045] ptrace attach of "/syz-executor exec"[4606] was attempted by "/syz-executor exec"[7045] [ 2437.687551][ T7048] netlink: 64 bytes leftover after parsing attributes in process `syz.2.598'. [ 2439.980016][ T7054] netlink: 52 bytes leftover after parsing attributes in process `syz.0.597'. [ 2444.160925][ T7059] syz.2.600 (7059): drop_caches: 2 [ 2447.420065][ T7062] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 2447.509858][ T7062] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 2447.902649][ T7062] netlink: 36 bytes leftover after parsing attributes in process `syz.2.601'. [ 2450.202372][ T7068] netlink: 4 bytes leftover after parsing attributes in process `syz.2.601'. [ 2450.850030][ T7071] netlink: 16 bytes leftover after parsing attributes in process `syz.0.602'. [ 2451.291179][ T7071] netlink: 100 bytes leftover after parsing attributes in process `syz.0.602'. [ 2475.337679][ T3758] usb 1-1: new high-speed USB device number 25 using dummy_hcd [ 2475.678758][ T3758] usb 1-1: Using ep0 maxpacket: 8 [ 2476.099912][ T3758] usb 1-1: too many configurations: 65, using maximum allowed: 8 [ 2478.558588][ T3758] usb 1-1: New USB device found, idVendor=1044, idProduct=800d, bcdDevice=57.5c [ 2478.559976][ T3758] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2478.562176][ T3758] usb 1-1: Product: syz [ 2478.563054][ T3758] usb 1-1: Manufacturer: syz [ 2478.577838][ T3758] usb 1-1: SerialNumber: syz [ 2478.650905][ T3758] usb 1-1: config 0 descriptor?? [ 2479.127967][ T3758] usb 1-1: bad CDC descriptors [ 2483.387022][ T5378] usb 1-1: USB disconnect, device number 25 [ 2489.493069][ T7134] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.607'. [ 2489.621333][ T7133] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.607'. [ 2496.211056][ T7142] netlink: 64 bytes leftover after parsing attributes in process `syz.2.610'. [ 2496.537986][ T7142] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 2496.600463][ T7142] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 2498.340330][ T7151] input: syz0 as /devices/virtual/input/input4 [ 2510.451590][ T7164] binfmt_misc: register: failed to install interpreter file ./file0 [ 2510.699662][ T7164] fuse: Unknown parameter ')×a{ÿßÕQi00000000000000000000' [ 2512.647569][ T7171] ptrace attach of "/syz-executor exec"[7172] was attempted by "/syz-executor exec"[7171] [ 2532.886382][ T7221] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 2532.931984][ T7221] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 2533.052888][ T7221] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 2533.080479][ T7221] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 2534.723467][ T7227] netlink: 'syz.0.623': attribute type 1 has an invalid length. [ 2537.118194][ T7227] bond3: entered promiscuous mode [ 2538.403322][ T7227] bond3: (slave ip6gretap1): making interface the new active one [ 2538.407658][ T7227] ip6gretap1: entered promiscuous mode [ 2538.473324][ T7227] bond3: (slave ip6gretap1): Enslaving as an active interface with an up link [ 2538.498251][ T7237] netlink: 4 bytes leftover after parsing attributes in process `syz.0.623'. [ 2538.631000][ T7237] bond3: left promiscuous mode [ 2538.649021][ T7237] ip6gretap1: left promiscuous mode [ 2538.682445][ T7237] 8021q: adding VLAN 0 to HW filter on device bond3 [ 2556.621551][ T7288] FAULT_INJECTION: forcing a failure. [ 2556.621551][ T7288] name failslab, interval 1, probability 0, space 0, times 0 [ 2556.629912][ T7288] CPU: 0 UID: 0 PID: 7288 Comm: syz.0.629 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 2556.631856][ T7288] Hardware name: riscv-virtio,qemu (DT) [ 2556.633021][ T7288] Call Trace: [ 2556.634112][ T7288] [] dump_backtrace+0x2e/0x3c [ 2556.635806][ T7288] [] show_stack+0x34/0x40 [ 2556.637201][ T7288] [] dump_stack_lvl+0x122/0x196 [ 2556.638826][ T7288] [] dump_stack+0x1c/0x24 [ 2556.640282][ T7288] [] should_fail_ex+0x3f8/0x4e0 [ 2556.641831][ T7288] [] should_failslab+0xba/0x102 [ 2556.643382][ T7288] [] kmem_cache_alloc_noprof+0x146/0x304 [ 2556.645033][ T7288] [] skb_clone+0x180/0x3ce [ 2556.646496][ T7288] [] nfnetlink_rcv_batch+0x20a/0x22ce [ 2556.648191][ T7288] [] nfnetlink_rcv+0x3d6/0x436 [ 2556.649954][ T7288] [] netlink_unicast+0x4f0/0x82c [ 2556.651554][ T7288] [] netlink_sendmsg+0x864/0xdc6 [ 2556.653188][ T7288] [] __sock_sendmsg+0xcc/0x160 [ 2556.655003][ T7288] [] ____sys_sendmsg+0x5ce/0x79e [ 2556.656694][ T7288] [] ___sys_sendmsg+0x144/0x1e6 [ 2556.659486][ T7288] [] __sys_sendmsg+0x130/0x1f0 [ 2556.661125][ T7288] [] __riscv_sys_sendmsg+0x70/0xa2 [ 2556.662631][ T7288] [] syscall_handler+0x94/0x118 [ 2556.664421][ T7288] [] do_trap_ecall_u+0x1aa/0x216 [ 2556.666117][ T7288] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 2559.537525][ T7291] netlink: 'syz.2.628': attribute type 4 has an invalid length. [ 2561.287579][ T7287] hsr0 speed is unknown, defaulting to 1000 [ 2562.446788][ T7291] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 2562.512101][ T7291] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 2563.971623][ T7291] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 2564.027991][ T7291] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 2595.208390][ T3758] usb 1-1: new high-speed USB device number 26 using dummy_hcd [ 2595.597023][ T3758] usb 1-1: Using ep0 maxpacket: 8 [ 2595.641176][ T3758] usb 1-1: too many configurations: 65, using maximum allowed: 8 [ 2597.025729][ T3758] usb 1-1: New USB device found, idVendor=1044, idProduct=800d, bcdDevice=57.5c [ 2597.028011][ T3758] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2597.029382][ T3758] usb 1-1: Product: syz [ 2597.030437][ T3758] usb 1-1: Manufacturer: syz [ 2597.031513][ T3758] usb 1-1: SerialNumber: syz [ 2597.133208][ T3758] usb 1-1: config 0 descriptor?? [ 2597.391792][ T3758] usb 1-1: bad CDC descriptors [ 2603.321285][ T33] usb 1-1: USB disconnect, device number 26 [ 2607.181926][ T7347] FAULT_INJECTION: forcing a failure. [ 2607.181926][ T7347] name failslab, interval 1, probability 0, space 0, times 0 [ 2607.188467][ T7347] CPU: 1 UID: 0 PID: 7347 Comm: syz.2.636 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 2607.189498][ T7347] Hardware name: riscv-virtio,qemu (DT) [ 2607.190120][ T7347] Call Trace: [ 2607.190717][ T7347] [] dump_backtrace+0x2e/0x3c [ 2607.191645][ T7347] [] show_stack+0x34/0x40 [ 2607.192551][ T7347] [] dump_stack_lvl+0x122/0x196 [ 2607.193441][ T7347] [] dump_stack+0x1c/0x24 [ 2607.194680][ T7347] [] should_fail_ex+0x3f8/0x4e0 [ 2607.195619][ T7347] [] should_failslab+0xba/0x102 [ 2607.196501][ T7347] [] __kmalloc_cache_noprof+0x144/0x318 [ 2607.197503][ T7347] [] vkms_atomic_crtc_duplicate_state+0x78/0x1a6 [ 2607.198470][ T7347] [] drm_atomic_get_crtc_state+0x14e/0x3b4 [ 2607.199516][ T7347] [] drm_atomic_get_plane_state+0x38e/0x4c6 [ 2607.200568][ T7347] [] drm_client_modeset_commit_atomic+0x23e/0x774 [ 2607.201584][ T7347] [] drm_client_modeset_commit_locked+0x134/0x4f0 [ 2607.202550][ T7347] [] drm_client_modeset_commit+0x56/0x86 [ 2607.203453][ T7347] [] drm_fb_helper_lastclose+0xe2/0x162 [ 2607.204870][ T7347] [] drm_fbdev_shmem_client_restore+0x2e/0x46 [ 2607.206017][ T7347] [] drm_client_dev_restore+0x168/0x250 [ 2607.207268][ T7347] [] drm_release+0x276/0x2fe [ 2607.208195][ T7347] [] __fput+0x378/0x9e6 [ 2607.209073][ T7347] [] __fput_sync+0x58/0x6c [ 2607.209993][ T7347] [] __riscv_sys_close+0x76/0xe4 [ 2607.210879][ T7347] [] syscall_handler+0x94/0x118 [ 2607.211761][ T7347] [] do_trap_ecall_u+0x1aa/0x216 [ 2607.212752][ T7347] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 2613.372259][ T7352] Invalid ELF header magic: != ELF [ 2613.657155][ T7352] netlink: 12 bytes leftover after parsing attributes in process `syz.2.638'. [ 2619.701739][ T35] audit: type=1326 audit(2618.890:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7363 comm="syz.2.640" exe="/syz-executor" sig=31 arch=c00000f3 syscall=98 compat=0 ip=0xdabc6 code=0x0 [ 2634.548371][ T33] usb 1-1: new high-speed USB device number 27 using dummy_hcd [ 2634.933443][ T33] usb 1-1: New USB device found, idVendor=1235, idProduct=0018, bcdDevice=f0.ee [ 2634.939149][ T33] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 2635.120753][ T33] usb 1-1: config 0 descriptor?? [ 2635.394965][ T33] usb 1-1: selecting invalid altsetting 1 [ 2636.648495][ T33] snd-usb-audio 1-1:0.0: probe with driver snd-usb-audio failed with error -22 [ 2637.299654][ T7384] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 2637.380771][ T7384] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 2638.461809][ T33] usb 1-1: USB disconnect, device number 27 [ 2638.959796][ T7397] netlink: 8 bytes leftover after parsing attributes in process `syz.2.644'. [ 2639.028554][ T7397] ================================================================== [ 2639.030945][ T7397] BUG: KASAN: global-out-of-bounds in memcmp+0xc0/0xca [ 2639.032539][ T7397] Read of size 1 at addr ffffffff897cc9c0 by task syz.2.644/7397 [ 2639.034027][ T7397] [ 2639.036045][ T7397] CPU: 1 UID: 0 PID: 7397 Comm: syz.2.644 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 2639.038308][ T7397] Hardware name: riscv-virtio,qemu (DT) [ 2639.039470][ T7397] Call Trace: [ 2639.040438][ T7397] [] dump_backtrace+0x2e/0x3c [ 2639.041940][ T7397] [] show_stack+0x34/0x40 [ 2639.043361][ T7397] [] dump_stack_lvl+0x122/0x196 [ 2639.045025][ T7397] [] print_report+0x290/0x5a0 [ 2639.046698][ T7397] [] kasan_report+0xec/0x118 [ 2639.048306][ T7397] [] __asan_report_load1_noabort+0x12/0x1a [ 2639.050015][ T7397] [] memcmp+0xc0/0xca [ 2639.051382][ T7397] [] __hw_addr_add_ex+0xee/0x676 [ 2639.052810][ T7397] [] dev_mc_add+0xac/0x108 [ 2639.054662][ T7397] [] mrp_init_applicant+0xe8/0x56e [ 2639.056170][ T7397] [] vlan_mvrp_init_applicant+0x26/0x30 [ 2639.058077][ T7397] [] register_vlan_dev+0x1b4/0x922 [ 2639.059728][ T7397] [] vlan_newlink+0x3d2/0x5fc [ 2639.061279][ T7397] [] __rtnl_newlink+0xfe2/0x1738 [ 2639.063574][ T7397] [] rtnl_newlink+0x6c/0xa2 [ 2639.065110][ T7397] [] rtnetlink_rcv_msg+0x428/0xdbe [ 2639.066785][ T7397] [] netlink_rcv_skb+0x216/0x3dc [ 2639.068270][ T7397] [] rtnetlink_rcv+0x26/0x30 [ 2639.069976][ T7397] [] netlink_unicast+0x4f0/0x82c [ 2639.071400][ T7397] [] netlink_sendmsg+0x864/0xdc6 [ 2639.073018][ T7397] [] __sock_sendmsg+0xcc/0x160 [ 2639.074856][ T7397] [] ____sys_sendmsg+0x5ce/0x79e [ 2639.076421][ T7397] [] ___sys_sendmsg+0x144/0x1e6 [ 2639.077959][ T7397] [] __sys_sendmsg+0x130/0x1f0 [ 2639.080525][ T7397] [] __riscv_sys_sendmsg+0x70/0xa2 [ 2639.081952][ T7397] [] syscall_handler+0x94/0x118 [ 2639.083453][ T7397] [] do_trap_ecall_u+0x1aa/0x216 [ 2639.085309][ T7397] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 2639.087147][ T7397] [ 2639.088041][ T7397] The buggy address belongs to the variable: [ 2639.089220][ T7397] vlan_mrp_app+0x60/0x3e80 [ 2639.090687][ T7397] [ 2639.091493][ T7397] The buggy address belongs to the physical page: [ 2639.093238][ T7397] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x899cc [ 2639.096067][ T7397] flags: 0xffe000000002000(reserved|node=0|zone=0|lastcpupid=0x7ff) [ 2639.099987][ T7397] raw: 0ffe000000002000 ff1c000000267308 ff1c000000267308 0000000000000000 [ 2639.101681][ T7397] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 2639.103297][ T7397] page dumped because: kasan: bad access detected [ 2639.105521][ T7397] page_owner info is not present (never set?) [ 2639.106861][ T7397] [ 2639.107673][ T7397] Memory state around the buggy address: [ 2639.109741][ T7397] ffffffff897cc880: 00 00 00 00 00 00 00 00 f9 f9 f9 f9 00 00 00 00 [ 2639.111313][ T7397] ffffffff897cc900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 2639.113619][ T7397] >ffffffff897cc980: 00 00 00 00 00 00 00 00 f9 f9 f9 f9 00 00 00 00 [ 2639.115253][ T7397] ^ [ 2639.116523][ T7397] ffffffff897cca00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 2639.118025][ T7397] ffffffff897cca80: f9 f9 f9 f9 00 00 00 00 f9 f9 f9 f9 00 00 00 00 [ 2639.119533][ T7397] ================================================================== [ 2639.123592][ T7397] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 2639.126347][ T7397] CPU: 1 UID: 0 PID: 7397 Comm: syz.2.644 Not tainted 6.12.0-rc6-syzkaller-g57f7c7dc78cd #0 [ 2639.128209][ T7397] Hardware name: riscv-virtio,qemu (DT) [ 2639.129553][ T7397] Call Trace: SYZFAIL: failed to recv rpc [ 2639.130540][ T7397] [] dump_backtrace+0x2e/0x3c [ 2639.133593][ T7397] [] show_stack+0x34/0x40 [ 2639.135134][ T7397] [] dump_stack_lvl+0x108/0x196 [ 2639.136759][ T7397] [] dump_stack+0x1c/0x24 [ 2639.138383][ T7397] [] panic+0x388/0x86c [ 2639.139710][ T7397] [] check_panic_on_warn+0xc0/0xe4 [ 2639.141192][ T7397] [] end_report.part.0+0x4a/0xaa [ 2639.142693][ T7397] [] kasan_report+0x102/0x118 [ 2639.144434][ T7397] [] __asan_report_load1_noabort+0x12/0x1a [ 2639.146100][ T7397] [] memcmp+0xc0/0xca [ 2639.147427][ T7397] [] __hw_addr_add_ex+0xee/0x676 [ 2639.148897][ T7397] [] dev_mc_add+0xac/0x108 [ 2639.150267][ T7397] [] mrp_init_applicant+0xe8/0x56e [ 2639.151578][ T7397] [] vlan_mvrp_init_applicant+0x26/0x30 [ 2639.153471][ T7397] [] register_vlan_dev+0x1b4/0x922 [ 2639.155118][ T7397] [] vlan_newlink+0x3d2/0x5fc [ 2639.156669][ T7397] [] __rtnl_newlink+0xfe2/0x1738 [ 2639.158186][ T7397] [] rtnl_newlink+0x6c/0xa2 [ 2639.159558][ T7397] [] rtnetlink_rcv_msg+0x428/0xdbe [ 2639.161113][ T7397] [] netlink_rcv_skb+0x216/0x3dc [ 2639.162540][ T7397] [] rtnetlink_rcv+0x26/0x30 [ 2639.164089][ T7397] [] netlink_unicast+0x4f0/0x82c [ 2639.165598][ T7397] [] netlink_sendmsg+0x864/0xdc6 [ 2639.167113][ T7397] [] __sock_sendmsg+0xcc/0x160 [ 2639.168721][ T7397] [] ____sys_sendmsg+0x5ce/0x79e [ 2639.170344][ T7397] [] ___sys_sendmsg+0x144/0x1e6 [ 2639.171644][ T7397] [] __sys_sendmsg+0x130/0x1f0 [ 2639.173052][ T7397] [] __riscv_sys_sendmsg+0x70/0xa2 [ 2639.175106][ T7397] [] syscall_handler+0x94/0x118 [ 2639.176604][ T7397] [] do_trap_ecall_u+0x1aa/0x216 [ 2639.178221][ T7397] [] _new_vmalloc_restore_context_a0+0xc2/0xce [ 2639.180410][ T7397] SMP: stopping secondary CPUs [ 2639.183865][ T7397] Rebooting in 86400 seconds.. VM DIAGNOSIS: 17:51:43 Registers: info registers vcpu 0 CPU#0 V = 0 pc ffffffff817022b0 mhartid 0000000000000000 mstatus 0000000a000000a2 hstatus 0000000200000000 vsstatus 0000000a00000000 mip 0000000000000000 mie 000000000000022a mideleg 0000000000001666 hideleg 0000000000000444 medeleg 0000000000f0b509 hedeleg 000000000000b109 mtvec 0000000080000428 stvec ffffffff86002870 vstvec 0000000000000000 mepc ffffffff8001fb0e sepc ffffffff85974b78 vsepc 0000000000000000 mcause 0000000000000009 scause 8000000000000005 vscause 0000000000000000 mtval 0000000000000000 stval 0000000000000000 htval 0000000000000000 mtval2 0000000000000000 mscratch 0000000080029000 sscratch 0000000000000000 satp a02da000000d10c6 x0/zero 0000000000000000 x1/ra ffffffff80010446 x2/sp ff200000000064f0 x3/gp ffffffff899c0180 x4/tp ff6000002d89cec0 x5/t0 ff20000000006840 x6/t1 ffebffff034450c0 x7/t2 ff6000005cdbf680 x8/s0 ff20000000006640 x9/s1 0000000000002820 x10/a0 000000000000001e x11/a1 ff200000000066f4 x12/a2 000000006317ca16 x13/a3 ffffffffc7488000 x14/a4 0000000000000103 x15/a5 0000000000c20d60 x16/a6 0000000000000003 x17/a7 fffffffff555581e x18/s2 0000000000000001 x19/s3 0000000000002820 x20/s4 ffffffffffffffff x21/s5 ffffffff84c98c58 x22/s6 00000000000000f0 x23/s7 00000000000000f0 x24/s8 ff600000211e4dc0 x25/s9 0000000000000002 x26/s10 ffffffff90d62aa0 x27/s11 0000000000000007 x28/t3 1fec000005b13b3b x29/t4 ffebffff034450c0 x30/t5 ffebffff034450c1 x31/t6 1fec000005b13b72 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000 info registers vcpu 1 CPU#1 V = 0 pc ffffffff8042fdaa mhartid 0000000000000001 mstatus 0000000a000001a0 hstatus 0000000200000000 vsstatus 0000000a00000000 mip 0000000000000020 mie 000000000000022a mideleg 0000000000001666 hideleg 0000000000000444 medeleg 0000000000f0b509 hedeleg 000000000000b109 mtvec 0000000080000428 stvec ffffffff86002870 vstvec 0000000000000000 mepc ffffffff802319a6 sepc ffffffff808d953e vsepc 0000000000000000 mcause 8000000000000003 scause 8000000000000005 vscause 0000000000000000 mtval 0000000000000000 stval 0000000000000000 htval 0000000000000000 mtval2 0000000000000000 mscratch 0000000080027000 sscratch 0000000000000000 satp a05b30000009b3b2 x0/zero 0000000000000000 x1/ra ffffffff85f59e2a x2/sp ff20000002c864b0 x3/gp ffffffff899c0180 x4/tp ff6000001be8b480 x5/t0 ffffffff8810ab38 x6/t1 ffe3ffff00590cc4 x7/t2 7320666f20646165 x8/s0 ff20000002c866f0 x9/s1 ffffffff8750cf99 x10/a0 0000000000000001 x11/a1 0000000000000000 x12/a2 0000000000000025 x13/a3 ffffffff85f6b74c x14/a4 0000000000000002 x15/a5 ff6000001be8c480 x16/a6 0000000000000003 x17/a7 ff20000002c86627 x18/s2 0000000000000025 x19/s3 ffffffff8750cfa0 x20/s4 ffffffff90b9da00 x21/s5 ff20000002c86c68 x22/s6 ff20000002c867a0 x23/s7 ffffffff90b9da3d x24/s8 ffffffff87515de4 x25/s9 0000000000000044 x26/s10 000000000000005d x27/s11 0000000000000007 x28/t3 1fe4000000590d74 x29/t4 ffe3ffff00590cc4 x30/t5 ffe3ffff00590cc5 x31/t6 ffffffff90b9da00 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000