last executing test programs: 11.906626206s ago: executing program 4 (id=2099): socket$nl_generic(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket(0x1e, 0x1, 0x0) connect$tipc(r0, &(0x7f0000000040)=@id, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) sendmsg$NFT_MSG_GETOBJ_RESET(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000400)={0x0, 0xec}, 0x1, 0x0, 0x0, 0x40}, 0x20004001) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a5050000000077d8f3b423cdac8d80000000000000002be16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f7535f7866907dc0200000000000000ae669e17fd6587d452d6453559c3421eed73d56615fe6c54c3b3ffe1b4ce25d7c983c044c03bf3a48dfe47ec9dd6c091c30b93bfae76d9ebacd3ed3e26e7a23129d6606fd28a69989d552af6bda9df2c3af36effff9af2551ce896165127cb3f011a7d06602e2fc40848228567ffb400000000003ed38ae89d24e1cebfba2f87925bfacba83109751fe6c05405d027edd68149ee99eef6a6992308a4fc0b7c70bc677d6dd4aed4af7500d7900a820b6347184e9a217b5614cd50cbe43a1ed2526814bc0000e9e086ce48e90defb6670c3df2624f56da648d28ad0a97aec7291c25447c106a99893e10db21901eb397b2f5fd71400fa7a050fbbef9e326ea27e513e96068fd1e8a43e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e49ee52b59d13182e1f24ed200ada10eb1affb87ba55b2d72078e9f40b4ae7d01000000d11cd22c35d32940000088dde499000000fdffffff00000000000f000000ef0000000000000000000000000c52f4ebd2c893bb97a068bd10734a83584898eccb26f7b789cfc4cd995fa3e11a5c74c85404e2df3ad37b729ac83b0dcb4f48f3c3356b9997fc455a17690b6f7f9ccbe4b1701941b18aba6b16455a66c3b84b138efc20a546d3d5227e23b03f2a834391ade2ff3e93ee296c4082ee73e7c353312c9d75711ce1623e9c54bdff59d2a69dcb7d84c235b23a4480c2461b405cfd1a38992f295ad3adc94cd07c850d1ce6d0b2fea02c24e9280333152fb794e4ddea02017a6c139b50101caecaf2abc0847a1ff2f7fc3c2b99a96fc4275ad107274e2934a87a4ddcdb112754ca5bdec0ead14b6c0f19a43a2f05c7f0be31491eb8c9ff68236c8600040000000000000000000066e034c81c3cab64e4fc8dc55ce0ada18dcbf31c6e82893add3bee3e10fc873d1d922b0877cbcd95b839d3059d5140a1f742f6e75741e39e5cb6a193e06a1043375b0f61b5d4e17c81baa31b924d84f224baf1221c15fa12313ffbfa7c2730309f66705b71e6205e7cbf3643561eabb9a63fcd604d5cc27e1317ad94cf438d71873e540be16b6ca205081173bd03c4754fc4674812daab482fd390a1c903b5d28a1eb247b5837d7603b92495d5c569f6433c3fca5206cb0000003fdbbd3892c52c2e7612e05de32322e980a3d69931e2c9312dd517c96f2ee90362476ed853c4c9b7d4ebf13cbaa795860e92a3d7d004f2c491db38eb769f094d5d48b262cc35c40682138cf13a49aa9f27abec00002f01ba1251aaf2385416ca719300"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0) 10.85713989s ago: executing program 4 (id=2108): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r0, 0x220c) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r1, 0x0) listen(0xffffffffffffffff, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r2, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r3, 0x0) r4 = socket$inet6_mptcp(0xa, 0x1, 0x106) listen(r4, 0xfffffff8) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r5, 0x0) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r6, 0x0) r7 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r7, &(0x7f0000000040)=[{&(0x7f0000000200)="580000001400192340834b80040d8c560a0677bc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd0000001000010002081000418e00000004fcff", 0x58}], 0x1) 10.676893872s ago: executing program 2 (id=2111): r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f00000002c0)=ANY=[], 0x8) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) recvmmsg(r0, 0x0, 0x0, 0x2b, 0x0) setsockopt$inet6_int(r0, 0x29, 0x5, &(0x7f0000000040)=0x7, 0x4) setsockopt$inet6_int(r0, 0x29, 0x4, &(0x7f0000000000)=0x1, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c) 10.557977554s ago: executing program 4 (id=2112): socket$tipc(0x1e, 0x5, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$packet(0x11, 0x3, 0x300) unshare(0x6a040000) mmap(&(0x7f00002ad000/0xc00000)=nil, 0xc00000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) gettid() r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_RATE_GET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, 0x0, 0x701, 0x0, 0xffffffff, {0x41}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x4c000) 8.040204329s ago: executing program 2 (id=2115): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) setsockopt$sock_linger(r2, 0x1, 0xd, 0x0, 0x0) syz_usb_connect(0x0, 0x5e, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000c291492099042a102d850102030109024c0001000010000904100002e51de5000b2402010302057ff49bfd052406000105240002000d240f010500000009000700080624037f000109050602ff030000000905820208"], 0x0) 6.448995221s ago: executing program 1 (id=2117): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000fc850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) syz_mount_image$exfat(&(0x7f00000005c0), &(0x7f0000000240)='./file0\x00', 0x8418, &(0x7f0000000600)=ANY=[], 0x2, 0x14fe, &(0x7f0000002180)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cpuset.effective_mems\x00', 0x275a, 0x0) r1 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0) close(r1) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00') bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) r2 = syz_open_procfs(0x0, &(0x7f0000000300)='net/udp\x00') bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c) preadv(r2, &(0x7f00000001c0)=[{&(0x7f0000002380)=""/169, 0xa9}], 0x1, 0x80, 0x1) 6.119348846s ago: executing program 1 (id=2121): syz_open_dev$tty20(0xc, 0x4, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) clock_gettime(0x0, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) socket$inet(0x2, 0x2, 0x1) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=@ipv6_newroute={0x1c, 0x18, 0xffffffffffffffff, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x9}}, 0x1c}}, 0x0) setsockopt$inet6_mreq(r3, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14) 5.02320971s ago: executing program 0 (id=2125): r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f00000002c0)=ANY=[], 0x8) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) recvmmsg(r0, 0x0, 0x0, 0x2b, 0x0) setsockopt$inet6_int(r0, 0x29, 0x5, &(0x7f0000000040)=0x7, 0x4) setsockopt$inet6_int(r0, 0x29, 0x4, &(0x7f0000000000)=0x1, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c) 4.917612872s ago: executing program 1 (id=2126): recvmsg$unix(0xffffffffffffffff, 0x0, 0x101) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r1 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000006c0)=@newtfilter={0x64, 0x2c, 0xd27, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r2, {0xfff2, 0x4}, {}, {0x5, 0x10}}, [@filter_kind_options=@f_flow={{0x9}, {0x34, 0x2, [@TCA_FLOW_EMATCHES={0x30, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x24, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x7, 0x7, 0x2}, {{0x0, 0x1, 0x0, 0x1}, {0x0, 0x1, 0x1, 0x1}}}}, @TCF_EM_META={0xc, 0x2, 0x0, 0x0, {{0xfffb, 0x4, 0x4}}}]}]}]}}]}, 0x64}, 0x1, 0x0, 0x0, 0x400c021}, 0x20040054) 4.915603622s ago: executing program 2 (id=2127): socketpair$unix(0x1, 0x5, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000005c0)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(0xffffffffffffffff, 0x2, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0}, 0x20) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) syz_emit_ethernet(0x86, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1ff, @void, @value}, 0x94) bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYRES32, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0x1fffffffffffffcd, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000072"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) openat(0xffffffffffffff9c, 0x0, 0x2040, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'sit0\x00', 0x0}) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=@newqdisc={0x70, 0x24, 0x4ee4e6a52ff56541, 0x40000, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x18}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x44, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x8, 0x0, 0x2, 0x8, 0xc, 0x7}, {0x1, 0x0, 0x9, 0x401, 0x0, 0x7fffffff}, 0x2000001, 0x1000, 0x575}}, @TCA_TBF_RATE64={0xc, 0x4, 0x274bdcb7db3981e2}, @TCA_TBF_PRATE64={0xc, 0x5, 0xe1e31d5aa9748ab8}]}}]}, 0x70}, 0x1, 0x0, 0x0, 0x404}, 0x0) 4.640015946s ago: executing program 0 (id=2129): r0 = socket$inet6(0x10, 0x3, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000dc0)={&(0x7f0000000300)='neigh_update\x00', r2}, 0x10) sendto$inet6(r0, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0) 4.553597367s ago: executing program 3 (id=2130): sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000140), 0x14) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r0, 0x84, 0x81, &(0x7f00000002c0)="1a000000", 0x4) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='freezer.self_freezing\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x32600) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, 0x0, &(0x7f0000000040)) 4.179790132s ago: executing program 0 (id=2131): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000fc850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) syz_mount_image$exfat(&(0x7f00000005c0), &(0x7f0000000240)='./file0\x00', 0x8418, &(0x7f0000000600)=ANY=[], 0x2, 0x14fe, &(0x7f0000002180)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cpuset.effective_mems\x00', 0x275a, 0x0) r1 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0) close(r1) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00') bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) r2 = syz_open_procfs(0x0, &(0x7f0000000300)='net/udp\x00') bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c) preadv(r2, &(0x7f00000001c0)=[{&(0x7f0000002380)=""/169, 0xa9}], 0x1, 0x80, 0x1) 3.791912888s ago: executing program 1 (id=2132): syz_open_dev$sg(0x0, 0x0, 0x5) r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) r1 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000200)=0x4533, 0x4) bind$inet(r1, &(0x7f0000000240)={0x2, 0x0, @local}, 0x6f) connect$inet(r1, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x0) sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x0) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10) sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0) recvmmsg(r0, 0x0, 0x0, 0x45833af92e4b39ff, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000600)={'dvmrp1\x00', 0x0}) r3 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000000c0)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x40, 0x44e, 0x1215, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x9, [{{0x9, 0x4, 0x0, 0x4, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x4, 0x4, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x20, 0x0, 0x0, 0x5}}}}}]}}]}}, 0x0) syz_usb_connect$hid(0x3, 0x0, 0x0, &(0x7f0000000580)={0xa, &(0x7f0000000080)={0xa, 0x6, 0x300, 0x2, 0x1, 0x9, 0x10, 0x8c}, 0x5, &(0x7f0000000100)={0x5, 0xf, 0x5}}) r4 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=r3, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500"/133], 0xfc}, 0x1, 0x0, 0x0, 0x20040010}, 0x8095) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000600)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000000c0)='kmem_cache_free\x00', r5, 0x0, 0x8}, 0x18) syz_emit_ethernet(0x4e, &(0x7f0000000780)={@local, @empty, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00 \x00', 0x18, 0x3a, 0xff, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, @local, {[], @mld={0x187, 0x0, 0x0, 0x0, 0x0, @local}}}}}}, 0x0) 3.658001439s ago: executing program 3 (id=2133): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/20, @ANYRES32, @ANYBLOB="0000000000000000b7080000002000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) r2 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x80540, 0x188) read$hiddev(r2, &(0x7f0000000080)=""/39, 0x27) 3.535057521s ago: executing program 0 (id=2134): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r0, 0x220c) socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r2, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r3, 0x0) r4 = socket$inet6_mptcp(0xa, 0x1, 0x106) listen(r4, 0xfffffff8) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r5, 0x0) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r6, 0x0) r7 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r7, &(0x7f0000000040)=[{&(0x7f0000000200)="580000001400192340834b80040d8c560a0677bc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd0000001000010002081000418e00000004fcff", 0x58}], 0x1) 3.375745753s ago: executing program 4 (id=2135): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000380)=ANY=[@ANYBLOB="020000000000000001"]) 3.220163476s ago: executing program 3 (id=2136): prctl$PR_SET_NAME(0xf, &(0x7f0000000280)='+}[@\x00') r0 = socket(0x10, 0x3, 0x0) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f00000002c0)={'ip_vti0\x00', &(0x7f0000000480)={'gretap0\x00', 0x0, 0x7800, 0x8, 0x10000, 0x5, {{0x5, 0x4, 0x3, 0x34, 0x14, 0x64, 0x0, 0x5, 0x4, 0x0, @multicast1, @multicast2}}}}) 3.052686798s ago: executing program 0 (id=2137): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x18) close(r1) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0x66) 2.90184139s ago: executing program 3 (id=2138): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[], 0xa0}}, 0x0) r2 = socket(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f00000000000000000a000000000000000800010001000000040004"], 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0) sendmmsg(r2, &(0x7f0000000000), 0x4000000000001f2, 0x0) 2.643100894s ago: executing program 4 (id=2139): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r1 = socket(0x10, 0x803, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x4, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0xc00}}}]}, 0x38}}, 0x0) r4 = socket(0x10, 0x803, 0x0) r5 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r4, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newtfilter={0x44, 0x2c, 0xd2b, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0xb, 0x3}, {}, {0x1, 0x9}}, [@filter_kind_options=@f_u32={{0x8}, {0x18, 0x2, [@TCA_U32_SEL={0x14, 0x5, {0x7, 0x6, 0x0, 0x9, 0x401, 0x1000, 0x8a0, 0xd5}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x81}, 0x800) 2.561663695s ago: executing program 2 (id=2140): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x40f00, 0x78, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000380)={0x3, 0x3}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000002c0)=ANY=[@ANYBLOB="98030000", @ANYRES16=r1, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r2, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c0900005603330080b0c000ffffffffffff0802110000010569ea7fa08e8df3d0edd086922799ded6be01d09a95b66d"], 0x398}, 0x1, 0x0, 0x0, 0x804}, 0x0) 2.373219557s ago: executing program 3 (id=2141): r0 = socket$inet6(0x10, 0x3, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000dc0)={&(0x7f0000000300)='neigh_update\x00', r2}, 0x10) sendto$inet6(r0, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0) 1.684495397s ago: executing program 1 (id=2142): write(0xffffffffffffffff, &(0x7f00000002c0)="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", 0xfc) r0 = socket(0x840000000002, 0x3, 0x100) connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10) sendmmsg$inet(r0, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x4000095, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) ioctl$SIOCGSKNS(0xffffffffffffffff, 0x894c, 0x0) r2 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSARP(r2, 0x8955, &(0x7f0000000180)={{0x2, 0x0, @remote}, {0x20000010304, @dev}, 0x4, {0x2, 0x0, @multicast1=0xe000cc02}}) 166.025567ms ago: executing program 2 (id=2143): sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000140), 0x14) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r0, 0x84, 0x81, &(0x7f00000002c0)="1a000000", 0x4) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='freezer.self_freezing\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x32600) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, 0x0, &(0x7f0000000040)) 105.597288ms ago: executing program 3 (id=2144): unshare(0x42000000) r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f0000000080)={0x0, {0x2, 0x4e24, @remote}, {0x2, 0x0, @multicast2}, {0x2, 0x4e21, @empty}, 0x25}) 91.372949ms ago: executing program 1 (id=2145): syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)) socket$key(0xf, 0x3, 0x2) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_getattr(r0, &(0x7f0000000040)={0x38}, 0x38, 0x0) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d) listxattr(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) socketpair(0x1, 0x20000000000001, 0x0, 0x0) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) fsconfig$FSCONFIG_CMD_RECONFIGURE(0xffffffffffffffff, 0x7, 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10) r6 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0x64, 0x30, 0xb, 0x0, 0x0, {}, [{0x50, 0x1, [@m_ct={0x4c, 0x1, 0x0, 0x0, {{0x7}, {0x24, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x8, 0x0, 0x0, 0x1, 0x3}}, @TCA_CT_MARK={0x8, 0x10, 0x2}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x4004000}, 0x10000000) futex(&(0x7f000000cffc), 0x5, 0x0, 0x0, &(0x7f0000048000), 0x20fffffe) syz_open_dev$usbfs(&(0x7f0000000100), 0x80002, 0x410ac0) r7 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r7, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000004980)=ANY=[@ANYBLOB="38010000100001000000000000000000ac1e0101000000000000000000000000ff020000000000000000000000000001000000002000"/63, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fe8000000000000000000000000000bb000000006c000000ac14141c000000000000000000000000fcffffffffffffff0000000000000000000000000000000003000000f8ffffff00000000000000000000000000000000fdffffffffffff0f0000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0001063500000000000000480003006465666c617465000000000000"], 0x138}, 0x1, 0x0, 0x0, 0x4004050}, 0x8000) 48.093239ms ago: executing program 0 (id=2146): socket$tipc(0x1e, 0x5, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$packet(0x11, 0x3, 0x300) unshare(0x6a040000) mmap(&(0x7f00002ad000/0xc00000)=nil, 0xc00000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) gettid() r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_RATE_GET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, 0x0, 0x701, 0x0, 0xffffffff, {0x41}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x4c000) 47.572019ms ago: executing program 4 (id=2147): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) unshare(0x22020600) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, 0x0) 0s ago: executing program 2 (id=2148): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r0, 0x220c) socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r2, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r3, 0x0) r4 = socket$inet6_mptcp(0xa, 0x1, 0x106) listen(r4, 0xfffffff8) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r5, 0x0) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r6, 0x0) r7 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r7, &(0x7f0000000040)=[{&(0x7f0000000200)="580000001400192340834b80040d8c560a0677bc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd0000001000010002081000418e00000004fcff", 0x58}], 0x1) kernel console output (not intermixed with test programs): stem being mounted at /50/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 137.578951][ T5333] loop1: detected capacity change from 0 to 2048 [ 137.678204][ T5333] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 137.700986][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 137.705226][ T5335] loop2: detected capacity change from 0 to 2048 [ 137.794483][ T5335] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 137.953729][ T4252] EXT4-fs (loop2): unmounting filesystem. [ 138.017398][ T4251] EXT4-fs (loop1): unmounting filesystem. [ 138.270278][ T5357] loop2: detected capacity change from 0 to 1024 [ 138.277594][ T5357] EXT4-fs: Ignoring removed i_version option [ 138.294329][ T5357] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 138.326879][ T5357] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 138.369473][ T5357] EXT4-fs (loop2): orphan cleanup on readonly fs [ 138.413983][ T5357] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5914: Corrupt filesystem [ 138.477864][ T5357] EXT4-fs (loop2): Remounting filesystem read-only [ 138.495836][ T5370] random: crng reseeded on system resumption [ 138.511646][ T5357] EXT4-fs error (device loop2): ext4_dirty_inode:6118: inode #3: comm syz.2.312: mark_inode_dirty error [ 138.533405][ T5357] EXT4-fs (loop2): Remounting filesystem read-only [ 138.556512][ T5371] Set syz1 is full, maxelem 65536 reached [ 138.574912][ T5357] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:477: comm syz.2.312: Invalid block bitmap block 3 in block_group 0 [ 138.599992][ T5357] EXT4-fs (loop2): Remounting filesystem read-only [ 138.607462][ T5357] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5914: Corrupt filesystem [ 138.622873][ T5357] EXT4-fs (loop2): Remounting filesystem read-only [ 138.632161][ T5357] EXT4-fs error (device loop2): ext4_dirty_inode:6118: inode #3: comm syz.2.312: mark_inode_dirty error [ 138.649099][ T5357] EXT4-fs (loop2): Remounting filesystem read-only [ 138.676721][ T5357] Quota error (device loop2): write_blk: dquota write failed [ 138.695329][ T5357] EXT4-fs error (device loop2): ext4_map_blocks:635: inode #3: block 1: comm syz.2.312: lblock 6 mapped to illegal pblock 1 (length 1) [ 138.716771][ T5357] EXT4-fs (loop2): Remounting filesystem read-only [ 138.739383][ T5357] Quota error (device loop2): write_blk: dquota write failed [ 138.746890][ T5357] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota [ 138.777216][ T5357] EXT4-fs error (device loop2): ext4_map_blocks:635: inode #3: block 48: comm syz.2.312: lblock 0 mapped to illegal pblock 48 (length 1) [ 138.799904][ T5357] EXT4-fs (loop2): Remounting filesystem read-only [ 138.824695][ T5357] Quota error (device loop2): v2_write_file_info: Can't write info structure [ 138.852389][ T5357] EXT4-fs error (device loop2): ext4_acquire_dquot:6802: comm syz.2.312: Failed to acquire dquot type 0 [ 138.891963][ T5357] EXT4-fs (loop2): Remounting filesystem read-only [ 138.906412][ T5357] EXT4-fs error (device loop2): ext4_map_blocks:635: inode #3: block 49: comm syz.2.312: lblock 1 mapped to illegal pblock 49 (length 1) [ 138.949374][ T5357] EXT4-fs (loop2): Remounting filesystem read-only [ 138.969418][ T5357] Quota error (device loop2): do_insert_tree: Can't read tree quota block 1 [ 138.998613][ T5357] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 139.022373][ T5357] EXT4-fs error (device loop2): ext4_acquire_dquot:6802: comm syz.2.312: Failed to acquire dquot type 0 [ 139.055087][ T5357] EXT4-fs (loop2): Remounting filesystem read-only [ 139.074723][ T5357] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5914: Corrupt filesystem [ 139.128036][ T5357] EXT4-fs (loop2): Remounting filesystem read-only [ 139.147289][ T5357] EXT4-fs error (device loop2): ext4_evict_inode:279: inode #15: comm syz.2.312: mark_inode_dirty error [ 139.160226][ T5357] EXT4-fs (loop2): Remounting filesystem read-only [ 139.168328][ T5357] EXT4-fs warning (device loop2): ext4_evict_inode:282: couldn't mark inode dirty (err -117) [ 139.184574][ T5357] EXT4-fs (loop2): 1 orphan inode deleted [ 139.190880][ T5357] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 139.380200][ T4252] EXT4-fs (loop2): unmounting filesystem. [ 140.402644][ T5390] loop4: detected capacity change from 0 to 512 [ 140.482422][ T5390] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 140.497468][ T5390] ext4 filesystem being mounted at /59/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 140.857247][ T5408] netlink: 8 bytes leftover after parsing attributes in process `syz.1.328'. [ 143.037390][ T5443] program syz.0.347 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 143.403040][ T5453] 9pnet_fd: Insufficient options for proto=fd [ 143.411946][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 145.155427][ T5472] loop2: detected capacity change from 0 to 128 [ 145.238389][ T26] audit: type=1326 audit(1747687095.828:1599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5473 comm="syz.0.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 145.304880][ T5472] netlink: 4 bytes leftover after parsing attributes in process `syz.2.359'. [ 145.355162][ T26] audit: type=1326 audit(1747687095.878:1600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5473 comm="syz.0.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 145.389574][ T5472] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 145.428525][ T5472] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 145.488800][ T5472] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 145.502152][ T26] audit: type=1326 audit(1747687095.878:1601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5473 comm="syz.0.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 145.539553][ T5472] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 145.663546][ T26] audit: type=1326 audit(1747687095.878:1602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5473 comm="syz.0.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 145.740266][ T26] audit: type=1326 audit(1747687095.878:1603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5471 comm="syz.2.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 145.773095][ T26] audit: type=1326 audit(1747687095.878:1604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5471 comm="syz.2.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 145.863138][ T26] audit: type=1326 audit(1747687095.878:1605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5471 comm="syz.2.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 145.912553][ T26] audit: type=1326 audit(1747687095.878:1606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5471 comm="syz.2.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 145.962511][ T5481] netlink: 'syz.4.364': attribute type 21 has an invalid length. [ 145.963397][ T26] audit: type=1326 audit(1747687095.878:1607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5471 comm="syz.2.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 145.997808][ T26] audit: type=1326 audit(1747687095.878:1608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5471 comm="syz.2.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 146.348122][ T5483] random: crng reseeded on system resumption [ 146.640935][ T5486] netlink: 16 bytes leftover after parsing attributes in process `syz.4.364'. [ 146.667520][ T5489] 9pnet_fd: Insufficient options for proto=fd [ 147.529568][ T5516] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 147.729711][ T5516] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 147.874643][ T5516] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 148.027539][ T5516] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 148.202360][ T5516] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 148.234253][ T5516] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 148.305541][ T5516] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 148.400420][ T5516] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 148.502654][ T5537] random: crng reseeded on system resumption [ 150.214216][ T5589] netlink: 36 bytes leftover after parsing attributes in process `syz.3.406'. [ 150.238865][ T5591] netlink: 165 bytes leftover after parsing attributes in process `syz.2.407'. [ 150.387651][ T5593] random: crng reseeded on system resumption [ 150.442094][ T5597] Set syz1 is full, maxelem 65536 reached [ 151.457142][ T5609] loop1: detected capacity change from 0 to 1024 [ 151.611491][ T5609] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 151.942834][ T5626] device bond0 entered promiscuous mode [ 151.993039][ T5626] device bond_slave_0 entered promiscuous mode [ 152.014574][ T5626] device bond_slave_1 entered promiscuous mode [ 152.508814][ T5633] netlink: 36 bytes leftover after parsing attributes in process `syz.2.422'. [ 152.604932][ T26] kauditd_printk_skb: 115 callbacks suppressed [ 152.604948][ T26] audit: type=1326 audit(1747687103.198:1724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5635 comm="syz.3.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 152.667805][ T5636] netlink: 'syz.3.423': attribute type 21 has an invalid length. [ 152.721800][ T26] audit: type=1326 audit(1747687103.228:1725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5635 comm="syz.3.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 152.742181][ T5640] netlink: 36 bytes leftover after parsing attributes in process `syz.0.426'. [ 152.756945][ T5640] netlink: 4 bytes leftover after parsing attributes in process `syz.0.426'. [ 152.768154][ T5641] netlink: 16 bytes leftover after parsing attributes in process `syz.3.423'. [ 152.796693][ T4251] EXT4-fs (loop1): unmounting filesystem. [ 152.820557][ T26] audit: type=1326 audit(1747687103.228:1726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5635 comm="syz.3.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 152.843518][ T26] audit: type=1326 audit(1747687103.228:1727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5635 comm="syz.3.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 152.866167][ T26] audit: type=1326 audit(1747687103.238:1728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5635 comm="syz.3.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 152.890870][ T26] audit: type=1326 audit(1747687103.238:1729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5635 comm="syz.3.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 152.923621][ T26] audit: type=1326 audit(1747687103.238:1730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5635 comm="syz.3.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 152.977016][ T26] audit: type=1326 audit(1747687103.238:1731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5635 comm="syz.3.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 153.028627][ T26] audit: type=1326 audit(1747687103.238:1732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5635 comm="syz.3.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 153.091981][ T26] audit: type=1326 audit(1747687103.238:1733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5635 comm="syz.3.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 154.245521][ T4297] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 154.310710][ T5668] netlink: 36 bytes leftover after parsing attributes in process `syz.3.435'. [ 154.425442][ T5673] loop3: detected capacity change from 0 to 1024 [ 154.436205][ T4297] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 154.460107][ T4297] usb 3-1: config 0 interface 0 has no altsetting 0 [ 154.467026][ T4297] usb 3-1: New USB device found, idVendor=044e, idProduct=1215, bcdDevice= 0.00 [ 154.476534][ T4297] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 154.488398][ T4297] usb 3-1: config 0 descriptor?? [ 154.520707][ T5673] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 155.173360][ T5649] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 155.189652][ T5649] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 155.225857][ T4297] usbhid 3-1:0.0: can't add hid device: -71 [ 155.234900][ T4297] usbhid: probe of 3-1:0.0 failed with error -71 [ 155.281348][ T4297] usb 3-1: USB disconnect, device number 2 [ 155.306590][ T5685] netlink: 4 bytes leftover after parsing attributes in process `syz.0.440'. [ 155.381175][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 155.563999][ T5690] netlink: 4 bytes leftover after parsing attributes in process `syz.0.440'. [ 155.944305][ T5698] netlink: 16 bytes leftover after parsing attributes in process `syz.1.443'. [ 157.126120][ T5693] netlink: 'syz.1.443': attribute type 21 has an invalid length. [ 157.374691][ T5712] netlink: 36 bytes leftover after parsing attributes in process `syz.1.447'. [ 157.753002][ T5732] netlink: 96 bytes leftover after parsing attributes in process `syz.1.456'. [ 157.934678][ T26] kauditd_printk_skb: 122 callbacks suppressed [ 157.934693][ T26] audit: type=1326 audit(1747687108.528:1856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.0.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 157.974585][ T5739] netlink: 'syz.0.458': attribute type 21 has an invalid length. [ 157.984025][ T26] audit: type=1326 audit(1747687108.558:1857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.0.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 158.007643][ T26] audit: type=1326 audit(1747687108.558:1858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.0.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 158.031208][ T26] audit: type=1326 audit(1747687108.558:1859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.0.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 158.061681][ T5740] netlink: 16 bytes leftover after parsing attributes in process `syz.0.458'. [ 158.082778][ T26] audit: type=1326 audit(1747687108.558:1860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.0.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 158.106881][ T26] audit: type=1326 audit(1747687108.558:1861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.0.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 158.148115][ T26] audit: type=1326 audit(1747687108.558:1862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.0.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 158.190486][ T5746] netlink: 36 bytes leftover after parsing attributes in process `syz.1.462'. [ 158.199658][ T26] audit: type=1326 audit(1747687108.558:1863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.0.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 158.199701][ T26] audit: type=1326 audit(1747687108.558:1864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.0.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 158.199737][ T26] audit: type=1326 audit(1747687108.558:1865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.0.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 158.494890][ T5754] loop3: detected capacity change from 0 to 128 [ 158.564991][ T5758] netlink: 16 bytes leftover after parsing attributes in process `syz.2.467'. [ 158.746777][ T5769] loop4: detected capacity change from 0 to 1024 [ 158.810658][ T5769] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 159.556656][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 159.584978][ T5789] loop2: detected capacity change from 0 to 512 [ 159.616105][ T5789] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 159.641671][ T5789] ext4 filesystem being mounted at /89/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 159.857941][ T5803] loop3: detected capacity change from 0 to 128 [ 159.921598][ T4252] EXT4-fs (loop2): unmounting filesystem. [ 159.966002][ T5807] netlink: 28 bytes leftover after parsing attributes in process `syz.4.486'. [ 160.060746][ T5813] netlink: 8 bytes leftover after parsing attributes in process `syz.2.484'. [ 160.106418][ T5815] program syz.4.488 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 160.145182][ T5816] 8021q: adding VLAN 0 to HW filter on device bond0 [ 160.176761][ T5813] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 160.187557][ T5813] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 160.208518][ T5813] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 160.223302][ T5813] device bridge_slave_0 left promiscuous mode [ 160.231974][ T5813] bridge0: port 1(bridge_slave_0) entered disabled state [ 160.244903][ T5813] device bridge_slave_1 left promiscuous mode [ 160.255179][ T5813] bridge0: port 2(bridge_slave_1) entered disabled state [ 160.274274][ T5813] bond0: (slave bond_slave_0): Releasing backup interface [ 160.293105][ T5813] device bond_slave_0 left promiscuous mode [ 160.328012][ T5813] bond0: (slave bond_slave_1): Releasing backup interface [ 160.342675][ T5813] device bond_slave_1 left promiscuous mode [ 160.434382][ T5813] team0: Port device team_slave_0 removed [ 160.480223][ T5813] team0: Port device team_slave_1 removed [ 160.546100][ T5818] netlink: 96 bytes leftover after parsing attributes in process `syz.4.489'. [ 160.869751][ T4333] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 160.906413][ T5838] netlink: 28 bytes leftover after parsing attributes in process `syz.3.497'. [ 160.948980][ T5840] random: crng reseeded on system resumption [ 161.081187][ T4333] usb 2-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 161.103646][ T4333] usb 2-1: config 0 interface 0 has no altsetting 0 [ 161.125537][ T4333] usb 2-1: New USB device found, idVendor=044e, idProduct=1215, bcdDevice= 0.00 [ 161.127518][ T5847] netlink: 188 bytes leftover after parsing attributes in process `syz.0.501'. [ 161.150414][ T4333] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 161.191554][ T4333] usb 2-1: config 0 descriptor?? [ 161.399113][ T5858] netlink: 96 bytes leftover after parsing attributes in process `syz.0.506'. [ 161.430763][ T5822] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 161.459765][ T5822] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 161.484448][ T4333] usbhid 2-1:0.0: can't add hid device: -71 [ 161.492310][ T4333] usbhid: probe of 2-1:0.0 failed with error -71 [ 161.502946][ T4333] usb 2-1: USB disconnect, device number 2 [ 161.641376][ T5868] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 162.248416][ T5887] random: crng reseeded on system resumption [ 162.324577][ T5890] Set syz1 is full, maxelem 65536 reached [ 162.450718][ T5894] loop2: detected capacity change from 0 to 128 [ 162.526853][ T5896] device bond0 entered promiscuous mode [ 162.553113][ T5896] device bond_slave_0 entered promiscuous mode [ 162.569556][ T5896] device bond_slave_1 entered promiscuous mode [ 163.155748][ T5922] __nla_validate_parse: 4 callbacks suppressed [ 163.155765][ T5922] netlink: 96 bytes leftover after parsing attributes in process `syz.0.532'. [ 163.319710][ T4334] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 163.348319][ T5926] loop1: detected capacity change from 0 to 128 [ 163.384768][ T26] kauditd_printk_skb: 380 callbacks suppressed [ 163.384785][ T26] audit: type=1800 audit(1747687113.978:2246): pid=5926 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.533" name="file2" dev="loop1" ino=1048605 res=0 errno=0 [ 163.531551][ T4334] usb 4-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 163.549146][ T5935] netlink: 8 bytes leftover after parsing attributes in process `syz.2.536'. [ 163.558257][ T4334] usb 4-1: config 0 interface 0 has no altsetting 0 [ 163.558328][ T4334] usb 4-1: New USB device found, idVendor=044e, idProduct=1215, bcdDevice= 0.00 [ 163.558352][ T4334] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 163.560386][ T4334] usb 4-1: config 0 descriptor?? [ 163.851076][ T5906] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 163.872995][ T5941] random: crng reseeded on system resumption [ 163.879639][ T5906] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 163.923362][ T4334] usbhid 4-1:0.0: can't add hid device: -71 [ 163.930082][ T4334] usbhid: probe of 4-1:0.0 failed with error -71 [ 163.959701][ T4334] usb 4-1: USB disconnect, device number 7 [ 163.991299][ T5944] device bond0 entered promiscuous mode [ 164.006039][ T5944] device bond_slave_0 entered promiscuous mode [ 164.021484][ T5944] device bond_slave_1 entered promiscuous mode [ 164.703474][ T5958] netlink: 96 bytes leftover after parsing attributes in process `syz.4.544'. [ 165.605303][ T5970] loop1: detected capacity change from 0 to 512 [ 165.642661][ T5973] netlink: 28 bytes leftover after parsing attributes in process `syz.3.551'. [ 165.724461][ T5970] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 165.739709][ T5970] ext4 filesystem being mounted at /105/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 165.976143][ T5986] 9pnet_fd: Insufficient options for proto=fd [ 166.172153][ T4251] EXT4-fs (loop1): unmounting filesystem. [ 166.272972][ T5994] netlink: 8 bytes leftover after parsing attributes in process `syz.2.558'. [ 166.286679][ T5994] netlink: 4 bytes leftover after parsing attributes in process `syz.2.558'. [ 166.598467][ T6001] netlink: 8 bytes leftover after parsing attributes in process `syz.4.561'. [ 167.625359][ T6012] 9pnet_fd: Insufficient options for proto=fd [ 167.682650][ T6014] netlink: 96 bytes leftover after parsing attributes in process `syz.4.566'. [ 167.932900][ T6028] netlink: 8 bytes leftover after parsing attributes in process `syz.2.572'. [ 168.290749][ T26] audit: type=1326 audit(1747687118.888:2247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6040 comm="syz.1.579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 168.324519][ T6042] 9pnet_fd: Insufficient options for proto=fd [ 168.344077][ T26] audit: type=1326 audit(1747687118.888:2248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6040 comm="syz.1.579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 168.386883][ T26] audit: type=1326 audit(1747687118.888:2249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6040 comm="syz.1.579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 168.423493][ T26] audit: type=1326 audit(1747687118.888:2250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6040 comm="syz.1.579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 168.430309][ T6046] random: crng reseeded on system resumption [ 168.450448][ T26] audit: type=1326 audit(1747687118.888:2251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6040 comm="syz.1.579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 168.496881][ T6048] netlink: 96 bytes leftover after parsing attributes in process `syz.0.582'. [ 168.574913][ T26] audit: type=1326 audit(1747687119.168:2252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6050 comm="syz.1.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 168.615906][ T6051] netlink: 'syz.1.583': attribute type 21 has an invalid length. [ 168.644306][ T26] audit: type=1326 audit(1747687119.168:2253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6050 comm="syz.1.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 168.676606][ T6056] program syz.0.585 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 168.693971][ T26] audit: type=1326 audit(1747687119.198:2254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6050 comm="syz.1.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 168.747078][ T26] audit: type=1326 audit(1747687119.198:2255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6050 comm="syz.1.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 168.805348][ T26] audit: type=1326 audit(1747687119.198:2256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6050 comm="syz.1.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 168.839839][ T6058] netlink: 8 bytes leftover after parsing attributes in process `syz.0.586'. [ 168.841888][ T26] audit: type=1326 audit(1747687119.198:2257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6050 comm="syz.1.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 168.873321][ T26] audit: type=1326 audit(1747687119.198:2258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6050 comm="syz.1.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 168.915883][ T26] audit: type=1326 audit(1747687119.198:2259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6050 comm="syz.1.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 169.297493][ T6075] netlink: 96 bytes leftover after parsing attributes in process `syz.0.595'. [ 169.584195][ T6092] random: crng reseeded on system resumption [ 169.902438][ T6097] netlink: 100 bytes leftover after parsing attributes in process `syz.3.604'. [ 170.021441][ T6101] loop3: detected capacity change from 0 to 1024 [ 170.030495][ T6103] netlink: 96 bytes leftover after parsing attributes in process `syz.4.607'. [ 170.071801][ T6101] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 170.137832][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 170.282422][ T6112] raw_sendmsg: syz.3.609 forgot to set AF_INET. Fix it! [ 170.417293][ T6118] random: crng reseeded on system resumption [ 170.679770][ T6130] netlink: 96 bytes leftover after parsing attributes in process `syz.2.618'. [ 170.881835][ T6132] loop4: detected capacity change from 0 to 1024 [ 170.943485][ T6132] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 171.064762][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 171.712263][ T6158] device bond0 entered promiscuous mode [ 171.725818][ T6158] device bond_slave_0 entered promiscuous mode [ 171.739489][ T6158] device bond_slave_1 entered promiscuous mode [ 171.958747][ T6162] random: crng reseeded on system resumption [ 172.982532][ T6174] loop3: detected capacity change from 0 to 1024 [ 173.062701][ T6174] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 173.115400][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 173.218654][ T6186] netlink: 'syz.0.639': attribute type 21 has an invalid length. [ 173.281025][ T6191] loop3: detected capacity change from 0 to 512 [ 173.295602][ T6192] netlink: 16 bytes leftover after parsing attributes in process `syz.0.639'. [ 173.372190][ T6191] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 173.430936][ T26] kauditd_printk_skb: 179 callbacks suppressed [ 173.430953][ T26] audit: type=1326 audit(1747687124.028:2439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6185 comm="syz.0.639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7faec43c1225 code=0x7ffc0000 [ 173.455426][ T6191] ext4 filesystem being mounted at /120/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 173.589134][ T26] audit: type=1326 audit(1747687124.028:2440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6185 comm="syz.0.639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7faec43c1225 code=0x7ffc0000 [ 173.642972][ T26] audit: type=1326 audit(1747687124.028:2441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6185 comm="syz.0.639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7faec43c1225 code=0x7ffc0000 [ 173.685141][ T26] audit: type=1326 audit(1747687124.028:2442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6185 comm="syz.0.639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7faec43c1225 code=0x7ffc0000 [ 173.738233][ T26] audit: type=1326 audit(1747687124.028:2443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6185 comm="syz.0.639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7faec43c1225 code=0x7ffc0000 [ 173.796451][ T26] audit: type=1326 audit(1747687124.028:2444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6185 comm="syz.0.639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7faec43c1225 code=0x7ffc0000 [ 173.832342][ T26] audit: type=1326 audit(1747687124.028:2445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6185 comm="syz.0.639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7faec43c1225 code=0x7ffc0000 [ 173.855727][ T26] audit: type=1326 audit(1747687124.028:2446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6185 comm="syz.0.639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7faec43c1225 code=0x7ffc0000 [ 173.879538][ T5243] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 173.887497][ T26] audit: type=1326 audit(1747687124.038:2447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6185 comm="syz.0.639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7faec43c1225 code=0x7ffc0000 [ 173.914349][ T26] audit: type=1326 audit(1747687124.038:2448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6185 comm="syz.0.639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7faec43c1225 code=0x7ffc0000 [ 173.997528][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 174.088198][ T5243] usb 5-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 174.109803][ T5243] usb 5-1: config 0 interface 0 has no altsetting 0 [ 174.128956][ T5243] usb 5-1: New USB device found, idVendor=044e, idProduct=1215, bcdDevice= 0.00 [ 174.148635][ T5243] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 174.196159][ T5243] usb 5-1: config 0 descriptor?? [ 174.633263][ T6218] netlink: 4 bytes leftover after parsing attributes in process `syz.0.649'. [ 174.689227][ T6184] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 174.934918][ T6184] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 175.082011][ T5243] usbhid 5-1:0.0: can't add hid device: -71 [ 175.088091][ T5243] usbhid: probe of 5-1:0.0 failed with error -71 [ 175.096932][ T5243] usb 5-1: USB disconnect, device number 2 [ 175.163551][ T6221] loop3: detected capacity change from 0 to 1024 [ 175.200339][ T6221] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 175.266312][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 175.327162][ T6233] loop2: detected capacity change from 0 to 512 [ 175.376631][ T6240] device bond0 entered promiscuous mode [ 175.384253][ T6233] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 175.389865][ T6240] device bond_slave_0 entered promiscuous mode [ 175.393441][ T6233] ext4 filesystem being mounted at /133/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 175.417521][ T6240] device bond_slave_1 entered promiscuous mode [ 175.448314][ T6239] netlink: 'syz.0.658': attribute type 21 has an invalid length. [ 175.659224][ T4252] EXT4-fs (loop2): unmounting filesystem. [ 176.079027][ T6275] loop4: detected capacity change from 0 to 512 [ 176.145298][ T6275] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 176.172740][ T6275] ext4 filesystem being mounted at /121/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 176.439460][ T4297] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 176.532139][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 176.642115][ T4297] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 176.667479][ T4297] usb 3-1: config 0 interface 0 has no altsetting 0 [ 176.680972][ T4297] usb 3-1: New USB device found, idVendor=044e, idProduct=1215, bcdDevice= 0.00 [ 176.692445][ T4297] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 176.714992][ T4297] usb 3-1: config 0 descriptor?? [ 176.941387][ T6271] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 176.974595][ T6271] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 176.999114][ T4297] usbhid 3-1:0.0: can't add hid device: -71 [ 177.006009][ T4297] usbhid: probe of 3-1:0.0 failed with error -71 [ 177.035378][ T4297] usb 3-1: USB disconnect, device number 3 [ 178.042244][ T6361] loop4: detected capacity change from 0 to 1024 [ 178.091962][ T6361] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 178.257516][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 178.533615][ T5243] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 178.746371][ T5243] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 178.763617][ T5243] usb 3-1: config 0 interface 0 has no altsetting 0 [ 178.779385][ T5243] usb 3-1: New USB device found, idVendor=044e, idProduct=1215, bcdDevice= 0.00 [ 178.803331][ T5243] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 178.829141][ T5243] usb 3-1: config 0 descriptor?? [ 179.051167][ T6365] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 179.073993][ T6365] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 179.106084][ T5243] usbhid 3-1:0.0: can't add hid device: -71 [ 179.113909][ T5243] usbhid: probe of 3-1:0.0 failed with error -71 [ 179.147973][ T5243] usb 3-1: USB disconnect, device number 4 [ 179.226123][ T26] kauditd_printk_skb: 158 callbacks suppressed [ 179.226139][ T26] audit: type=1326 audit(1747687129.818:2607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.0.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 179.266069][ T26] audit: type=1326 audit(1747687129.818:2608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.0.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 179.293262][ T26] audit: type=1326 audit(1747687129.858:2609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.0.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 179.382407][ T26] audit: type=1326 audit(1747687129.858:2610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.0.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 179.469510][ T26] audit: type=1326 audit(1747687129.858:2611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.0.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 179.522046][ T6409] netlink: 'syz.0.722': attribute type 21 has an invalid length. [ 179.539477][ T26] audit: type=1326 audit(1747687129.888:2612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.0.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 179.589366][ T26] audit: type=1326 audit(1747687129.888:2613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.0.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 179.616241][ T6414] netlink: 16 bytes leftover after parsing attributes in process `syz.0.722'. [ 179.659945][ T26] audit: type=1326 audit(1747687129.888:2614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.0.720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 179.723082][ T26] audit: type=1326 audit(1747687130.068:2615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6408 comm="syz.0.722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 179.799190][ T26] audit: type=1326 audit(1747687130.068:2616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6408 comm="syz.0.722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 180.925409][ T6457] netlink: 'syz.2.744': attribute type 21 has an invalid length. [ 180.935575][ T6461] 9pnet_fd: Insufficient options for proto=fd [ 181.023521][ T6467] netlink: 16 bytes leftover after parsing attributes in process `syz.2.744'. [ 182.382442][ T6502] 9pnet_fd: Insufficient options for proto=fd [ 182.572099][ T6509] loop4: detected capacity change from 0 to 1024 [ 182.609946][ T6509] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 182.764780][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 182.851356][ T6523] netlink: 'syz.4.769': attribute type 21 has an invalid length. [ 183.654890][ T6526] Bluetooth: MGMT ver 1.22 [ 183.664201][ T6529] netlink: 16 bytes leftover after parsing attributes in process `syz.4.769'. [ 184.179941][ T6547] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 184.311933][ T6547] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 184.460075][ T6561] loop4: detected capacity change from 0 to 1024 [ 184.473888][ T6563] program syz.1.784 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 184.561171][ T6547] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 184.590259][ T6561] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 185.423917][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 185.438978][ T6547] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 185.607668][ T6547] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 185.647841][ T6547] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 185.726110][ T6547] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 185.771358][ T6547] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 185.945070][ T6596] random: crng reseeded on system resumption [ 186.157840][ T6602] netlink: 8 bytes leftover after parsing attributes in process `syz.2.793'. [ 186.992408][ T6605] netlink: 4 bytes leftover after parsing attributes in process `syz.1.798'. [ 187.139025][ T6611] program syz.0.800 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 187.242019][ T6605] netlink: 4 bytes leftover after parsing attributes in process `syz.1.798'. [ 188.605901][ T6642] netlink: 16 bytes leftover after parsing attributes in process `syz.3.813'. [ 189.497103][ T6646] netlink: 8 bytes leftover after parsing attributes in process `syz.0.810'. [ 189.826995][ T6668] netlink: 4 bytes leftover after parsing attributes in process `syz.4.820'. [ 189.896864][ T6668] netlink: 4 bytes leftover after parsing attributes in process `syz.4.820'. [ 190.854352][ T6703] netlink: 4 bytes leftover after parsing attributes in process `syz.4.837'. [ 191.035641][ T6711] netlink: 16 bytes leftover after parsing attributes in process `syz.4.840'. [ 192.572811][ T6742] netlink: 4 bytes leftover after parsing attributes in process `syz.3.851'. [ 192.986066][ T4299] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 193.148829][ T6765] netlink: 8 bytes leftover after parsing attributes in process `syz.0.861'. [ 193.216126][ T4299] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 193.247444][ T4299] usb 3-1: config 0 interface 0 has no altsetting 0 [ 193.275413][ T4299] usb 3-1: New USB device found, idVendor=044e, idProduct=1215, bcdDevice= 0.00 [ 193.285646][ T4299] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 193.300670][ T4299] usb 3-1: config 0 descriptor?? [ 193.323990][ T6768] 8021q: adding VLAN 0 to HW filter on device bond0 [ 193.339149][ T6771] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 193.359049][ T6771] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 193.374065][ T6771] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 193.391009][ T6771] bond0: (slave bond_slave_0): Releasing backup interface [ 193.399186][ T6771] device bond_slave_0 left promiscuous mode [ 193.442556][ T6771] bond0: (slave bond_slave_1): Releasing backup interface [ 193.466425][ T6771] device bond_slave_1 left promiscuous mode [ 193.559170][ T6737] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 193.608648][ T6737] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 193.626074][ T6771] team0: Port device team_slave_0 removed [ 193.636949][ T4299] usbhid 3-1:0.0: can't add hid device: -71 [ 193.644025][ T4299] usbhid: probe of 3-1:0.0 failed with error -71 [ 193.654669][ T4299] usb 3-1: USB disconnect, device number 5 [ 193.691065][ T6771] team0: Port device team_slave_1 removed [ 193.718908][ T6771] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 193.727084][ T6771] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 193.736085][ T6771] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 193.751876][ T6771] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 194.250520][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.845657][ T6786] netlink: 4 bytes leftover after parsing attributes in process `syz.0.866'. [ 195.091922][ T6795] program syz.1.874 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 196.489429][ T4333] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 196.664017][ T6833] netlink: 96 bytes leftover after parsing attributes in process `syz.1.888'. [ 196.682034][ T4333] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 196.703392][ T4333] usb 3-1: config 0 interface 0 has no altsetting 0 [ 196.724420][ T4333] usb 3-1: New USB device found, idVendor=044e, idProduct=1215, bcdDevice= 0.00 [ 196.753917][ T4333] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 196.780300][ T4333] usb 3-1: config 0 descriptor?? [ 196.844806][ T6840] program syz.4.891 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 197.054178][ T6809] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 197.073123][ T6809] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 197.190695][ T6850] netlink: 72 bytes leftover after parsing attributes in process `syz.1.892'. [ 197.419595][ T4333] usbhid 3-1:0.0: can't add hid device: -71 [ 197.462947][ T4333] usbhid: probe of 3-1:0.0 failed with error -71 [ 197.728847][ T4333] usb 3-1: USB disconnect, device number 6 [ 197.811430][ T6852] netlink: 8 bytes leftover after parsing attributes in process `syz.4.896'. [ 197.839254][ T6852] netlink: 4 bytes leftover after parsing attributes in process `syz.4.896'. [ 198.053914][ T6866] netlink: 96 bytes leftover after parsing attributes in process `syz.3.902'. [ 198.165776][ T6868] program syz.0.904 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 198.278021][ T6875] loop4: detected capacity change from 0 to 1024 [ 198.505607][ T6875] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 198.646887][ T6891] netlink: 72 bytes leftover after parsing attributes in process `syz.0.909'. [ 199.376863][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 199.507408][ T6902] netlink: 96 bytes leftover after parsing attributes in process `syz.2.918'. [ 199.682453][ T6909] program syz.3.919 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 199.839664][ T952] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 200.050759][ T952] usb 1-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 200.067885][ T952] usb 1-1: config 0 interface 0 has no altsetting 0 [ 200.080109][ T952] usb 1-1: New USB device found, idVendor=044e, idProduct=1215, bcdDevice= 0.00 [ 200.098933][ T952] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 200.118349][ T6925] loop3: detected capacity change from 0 to 512 [ 200.139090][ T952] usb 1-1: config 0 descriptor?? [ 200.200186][ T6925] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 200.209253][ T6925] ext4 filesystem being mounted at /185/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 200.377723][ T6900] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 200.390199][ T6900] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 200.410030][ T952] usbhid 1-1:0.0: can't add hid device: -71 [ 200.416172][ T952] usbhid: probe of 1-1:0.0 failed with error -71 [ 200.439785][ T952] usb 1-1: USB disconnect, device number 2 [ 200.531987][ T6943] loop2: detected capacity change from 0 to 1024 [ 200.573578][ T6947] netlink: 96 bytes leftover after parsing attributes in process `syz.1.934'. [ 200.591972][ T6943] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 200.628731][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 200.733805][ T4252] EXT4-fs (loop2): unmounting filesystem. [ 200.742214][ T26] kauditd_printk_skb: 652 callbacks suppressed [ 200.742230][ T26] audit: type=1326 audit(1747687151.338:3269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.1.938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 200.782296][ T26] audit: type=1326 audit(1747687151.368:3270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.1.938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 200.839535][ T26] audit: type=1326 audit(1747687151.378:3271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.1.938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 200.867343][ T26] audit: type=1326 audit(1747687151.378:3272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.1.938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 200.890781][ T26] audit: type=1326 audit(1747687151.378:3273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.1.938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 200.931956][ T26] audit: type=1326 audit(1747687151.378:3274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.1.938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 201.062906][ T6966] netlink: 4 bytes leftover after parsing attributes in process `syz.0.942'. [ 201.106904][ T6966] netlink: 4 bytes leftover after parsing attributes in process `syz.0.942'. [ 201.286933][ T6976] netlink: 96 bytes leftover after parsing attributes in process `syz.1.947'. [ 201.348129][ T6979] loop2: detected capacity change from 0 to 1024 [ 201.382242][ T6979] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 201.439519][ T4268] Bluetooth: hci3: command 0x0406 tx timeout [ 201.439648][ T4267] Bluetooth: hci1: command 0x0406 tx timeout [ 201.445558][ T4268] Bluetooth: hci2: command 0x0406 tx timeout [ 201.445590][ T4268] Bluetooth: hci4: command 0x0406 tx timeout [ 201.451992][ T4266] Bluetooth: hci0: command 0x0406 tx timeout [ 201.466916][ T26] audit: type=1326 audit(1747687152.058:3275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6985 comm="syz.1.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 201.505369][ T4252] EXT4-fs (loop2): unmounting filesystem. [ 201.606377][ T26] audit: type=1326 audit(1747687152.098:3276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6985 comm="syz.1.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 201.674027][ T26] audit: type=1326 audit(1747687152.098:3277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6985 comm="syz.1.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 201.722548][ T6998] netlink: 4 bytes leftover after parsing attributes in process `syz.4.957'. [ 201.752860][ T26] audit: type=1326 audit(1747687152.098:3278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6985 comm="syz.1.951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 202.139492][ T4334] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 202.181668][ T7015] loop4: detected capacity change from 0 to 1024 [ 202.201669][ T7019] netlink: 'syz.3.965': attribute type 21 has an invalid length. [ 202.228236][ T7015] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 202.292224][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 202.341278][ T4334] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 202.361877][ T4334] usb 3-1: config 0 interface 0 has no altsetting 0 [ 202.375345][ T4334] usb 3-1: New USB device found, idVendor=044e, idProduct=1215, bcdDevice= 0.00 [ 202.387663][ T4334] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 202.415235][ T4334] usb 3-1: config 0 descriptor?? [ 202.643001][ T6994] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 202.664942][ T6994] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 202.701772][ T4334] usbhid 3-1:0.0: can't add hid device: -71 [ 202.707933][ T4334] usbhid: probe of 3-1:0.0 failed with error -71 [ 202.721794][ T4334] usb 3-1: USB disconnect, device number 7 [ 202.912417][ T7052] loop1: detected capacity change from 0 to 1024 [ 202.952554][ T7052] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 203.041027][ T4251] EXT4-fs (loop1): unmounting filesystem. [ 203.185499][ T7066] __nla_validate_parse: 6 callbacks suppressed [ 203.185516][ T7066] netlink: 96 bytes leftover after parsing attributes in process `syz.3.985'. [ 203.224376][ T7068] netlink: 4 bytes leftover after parsing attributes in process `syz.4.986'. [ 203.307609][ T7068] netlink: 4 bytes leftover after parsing attributes in process `syz.4.986'. [ 203.575851][ T7082] netlink: 'syz.1.993': attribute type 21 has an invalid length. [ 203.657872][ T7089] netlink: 16 bytes leftover after parsing attributes in process `syz.1.993'. [ 204.379516][ T952] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 204.574520][ T952] usb 5-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 204.587492][ T7109] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1002'. [ 204.615282][ T952] usb 5-1: config 0 interface 0 has no altsetting 0 [ 204.645595][ T952] usb 5-1: New USB device found, idVendor=044e, idProduct=1215, bcdDevice= 0.00 [ 204.671353][ T952] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 204.696109][ T952] usb 5-1: config 0 descriptor?? [ 204.854778][ T7119] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1007'. [ 204.902123][ T7119] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1007'. [ 204.947319][ T7095] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 204.978169][ T7095] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 205.018595][ T952] usbhid 5-1:0.0: can't add hid device: -71 [ 205.048733][ T952] usbhid: probe of 5-1:0.0 failed with error -71 [ 205.058522][ T952] usb 5-1: USB disconnect, device number 3 [ 205.111118][ T7131] program syz.3.1012 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 205.205023][ T7133] netlink: 'syz.2.1013': attribute type 21 has an invalid length. [ 205.228461][ T7136] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1015'. [ 205.279669][ T7139] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1013'. [ 205.749928][ T26] kauditd_printk_skb: 1360 callbacks suppressed [ 205.749944][ T26] audit: type=1326 audit(1747687156.348:4639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7132 comm="syz.2.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd2b21c1225 code=0x7ffc0000 [ 205.936430][ T26] audit: type=1326 audit(1747687156.458:4640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7132 comm="syz.2.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd2b21c1225 code=0x7ffc0000 [ 206.044035][ T26] audit: type=1326 audit(1747687156.458:4641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7132 comm="syz.2.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd2b21c1225 code=0x7ffc0000 [ 206.117827][ T7160] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1024'. [ 206.128245][ T26] audit: type=1326 audit(1747687156.458:4642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7132 comm="syz.2.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd2b21c1225 code=0x7ffc0000 [ 206.201468][ T26] audit: type=1326 audit(1747687156.458:4643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7132 comm="syz.2.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd2b21c1225 code=0x7ffc0000 [ 206.225102][ T26] audit: type=1326 audit(1747687156.458:4644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7132 comm="syz.2.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd2b21c1225 code=0x7ffc0000 [ 206.248231][ T26] audit: type=1326 audit(1747687156.458:4645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7132 comm="syz.2.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd2b21c1225 code=0x7ffc0000 [ 206.270745][ T26] audit: type=1326 audit(1747687156.458:4646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7132 comm="syz.2.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd2b21c1225 code=0x7ffc0000 [ 206.294078][ T26] audit: type=1326 audit(1747687156.468:4647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7132 comm="syz.2.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd2b21c1225 code=0x7ffc0000 [ 206.345226][ T26] audit: type=1326 audit(1747687156.468:4648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7132 comm="syz.2.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd2b21c1225 code=0x7ffc0000 [ 206.369648][ T7163] program syz.1.1025 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 206.723684][ T7177] device gretap0 entered promiscuous mode [ 207.106016][ T7197] program syz.0.1039 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 207.359422][ T4297] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 207.580763][ T4297] usb 2-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 207.630542][ T4297] usb 2-1: config 0 interface 0 has no altsetting 0 [ 207.637224][ T4297] usb 2-1: New USB device found, idVendor=044e, idProduct=1215, bcdDevice= 0.00 [ 207.669354][ T4297] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 207.695183][ T4297] usb 2-1: config 0 descriptor?? [ 207.942785][ T7182] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 207.964944][ T7182] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 208.002792][ T4297] usbhid 2-1:0.0: can't add hid device: -71 [ 208.008914][ T4297] usbhid: probe of 2-1:0.0 failed with error -71 [ 208.035177][ T4297] usb 2-1: USB disconnect, device number 3 [ 208.398206][ T7235] program syz.3.1054 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 209.294794][ T7267] __nla_validate_parse: 6 callbacks suppressed [ 209.294834][ T7267] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1063'. [ 209.801704][ T7268] program syz.3.1069 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 210.038059][ T7272] netlink: 176 bytes leftover after parsing attributes in process `syz.0.1070'. [ 210.734375][ T7300] program syz.4.1084 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 210.872520][ T7302] netlink: 72 bytes leftover after parsing attributes in process `syz.2.1082'. [ 211.947912][ T7318] loop4: detected capacity change from 0 to 512 [ 212.001139][ T7318] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 212.011936][ T7318] ext4 filesystem being mounted at /201/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 212.070341][ T7320] random: crng reseeded on system resumption [ 212.860821][ T7346] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1098'. [ 213.627013][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 213.971270][ T7362] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1106'. [ 214.030725][ T7362] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1106'. [ 214.199351][ T7376] loop1: detected capacity change from 0 to 512 [ 214.330109][ T7376] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 214.354051][ T7376] ext4 filesystem being mounted at /219/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 214.452888][ T7385] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1111'. [ 215.193544][ T7390] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1116'. [ 215.229616][ T7390] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1116'. [ 215.305006][ T7376] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1112'. [ 215.441280][ T4251] EXT4-fs (loop1): unmounting filesystem. [ 215.506109][ T7404] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1123'. [ 215.669183][ T7412] random: crng reseeded on system resumption [ 215.953615][ T7422] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1131'. [ 215.985317][ T7422] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1131'. [ 216.190775][ T7426] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1128'. [ 217.368356][ T7440] program syz.2.1138 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 217.826223][ T7453] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1142'. [ 218.661283][ T7454] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1143'. [ 218.827814][ T7464] random: crng reseeded on system resumption [ 219.780937][ T7509] loop3: detected capacity change from 0 to 512 [ 219.855247][ T7509] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 219.895457][ T7509] ext4 filesystem being mounted at /230/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 219.992115][ T952] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 220.154543][ T7509] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1165'. [ 220.204129][ T952] usb 5-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 220.228708][ T952] usb 5-1: config 0 interface 0 has no altsetting 0 [ 220.248710][ T952] usb 5-1: New USB device found, idVendor=044e, idProduct=1215, bcdDevice= 0.00 [ 220.274552][ T952] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 220.285197][ T952] usb 5-1: config 0 descriptor?? [ 220.300568][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 220.372909][ T7530] random: crng reseeded on system resumption [ 221.215305][ T7498] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 221.230190][ T7498] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 221.280819][ T952] usbhid 5-1:0.0: can't add hid device: -71 [ 221.287179][ T952] usbhid: probe of 5-1:0.0 failed with error -71 [ 221.315577][ T952] usb 5-1: USB disconnect, device number 4 [ 222.950401][ T7608] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1207'. [ 222.986545][ T7608] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1207'. [ 223.460251][ T5243] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 223.624862][ T7641] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1220'. [ 223.651310][ T5243] usb 1-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 223.676874][ T5243] usb 1-1: config 0 interface 0 has no altsetting 0 [ 223.693905][ T5243] usb 1-1: New USB device found, idVendor=044e, idProduct=1215, bcdDevice= 0.00 [ 223.704018][ T5243] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 223.716107][ T5243] usb 1-1: config 0 descriptor?? [ 223.765657][ T7641] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1220'. [ 224.496249][ T7612] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 224.629617][ T7612] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 224.812376][ T5243] usbhid 1-1:0.0: can't add hid device: -71 [ 224.833927][ T5243] usbhid: probe of 1-1:0.0 failed with error -71 [ 224.858547][ T5243] usb 1-1: USB disconnect, device number 3 [ 225.449459][ T26] kauditd_printk_skb: 67 callbacks suppressed [ 225.449479][ T26] audit: type=1326 audit(1747687176.038:4716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.1.1243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 225.511863][ T7689] netlink: 'syz.1.1243': attribute type 21 has an invalid length. [ 225.549079][ T26] audit: type=1326 audit(1747687176.038:4717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.1.1243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 225.572182][ T26] audit: type=1326 audit(1747687176.038:4718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.1.1243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 225.596141][ T26] audit: type=1326 audit(1747687176.078:4719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.1.1243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 225.626722][ T7696] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1243'. [ 225.645506][ T26] audit: type=1326 audit(1747687176.088:4720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.1.1243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 226.289425][ T26] audit: type=1326 audit(1747687176.088:4721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.1.1243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 226.327102][ T7698] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1246'. [ 226.403029][ T26] audit: type=1326 audit(1747687176.088:4722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.1.1243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 226.446541][ T26] audit: type=1326 audit(1747687176.088:4723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.1.1243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 226.460095][ T7698] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1246'. [ 226.473943][ T26] audit: type=1326 audit(1747687176.088:4724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.1.1243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 226.509707][ T26] audit: type=1326 audit(1747687176.088:4725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.1.1243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 226.597470][ T7705] random: crng reseeded on system resumption [ 226.651804][ T7708] Set syz1 is full, maxelem 65536 reached [ 226.825398][ T7717] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1254'. [ 228.103796][ T7741] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1262'. [ 228.306431][ T7747] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1265'. [ 228.349210][ T7747] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1265'. [ 228.433865][ T7753] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1268'. [ 228.586185][ T22] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 228.790637][ T22] usb 2-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 228.924052][ T22] usb 2-1: config 0 interface 0 has no altsetting 0 [ 229.026436][ T22] usb 2-1: New USB device found, idVendor=044e, idProduct=1215, bcdDevice= 0.00 [ 229.169078][ T22] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 229.360181][ T22] usb 2-1: config 0 descriptor?? [ 229.511686][ T7767] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1274'. [ 229.521140][ T7767] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1274'. [ 229.599035][ T7721] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 229.649489][ T7721] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 229.691499][ T22] usbhid 2-1:0.0: can't add hid device: -71 [ 229.701864][ T22] usbhid: probe of 2-1:0.0 failed with error -71 [ 229.727704][ T22] usb 2-1: USB disconnect, device number 4 [ 229.751437][ T7776] netlink: 'syz.0.1278': attribute type 21 has an invalid length. [ 230.462862][ T26] kauditd_printk_skb: 667 callbacks suppressed [ 230.462878][ T26] audit: type=1326 audit(1747687181.058:5393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7773 comm="syz.0.1278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7faec43c1225 code=0x7ffc0000 [ 230.493866][ T26] audit: type=1326 audit(1747687181.088:5394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7773 comm="syz.0.1278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7faec43c1225 code=0x7ffc0000 [ 230.540996][ T26] audit: type=1326 audit(1747687181.088:5395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7773 comm="syz.0.1278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7faec43c1225 code=0x7ffc0000 [ 230.622538][ T26] audit: type=1326 audit(1747687181.108:5396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7773 comm="syz.0.1278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7faec43c1225 code=0x7ffc0000 [ 230.693418][ T26] audit: type=1326 audit(1747687181.108:5397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7773 comm="syz.0.1278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7faec43c1225 code=0x7ffc0000 [ 230.749101][ T26] audit: type=1326 audit(1747687181.118:5398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7773 comm="syz.0.1278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7faec43c1225 code=0x7ffc0000 [ 230.832327][ T26] audit: type=1326 audit(1747687181.118:5399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7773 comm="syz.0.1278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7faec43c1225 code=0x7ffc0000 [ 230.854848][ T7827] __nla_validate_parse: 4 callbacks suppressed [ 230.854865][ T7827] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1299'. [ 230.909458][ T26] audit: type=1326 audit(1747687181.118:5400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7773 comm="syz.0.1278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7faec43c1225 code=0x7ffc0000 [ 230.989245][ T26] audit: type=1326 audit(1747687181.118:5401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7773 comm="syz.0.1278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7faec43c1225 code=0x7ffc0000 [ 231.058063][ T26] audit: type=1326 audit(1747687181.118:5402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7773 comm="syz.0.1278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7faec43c1225 code=0x7ffc0000 [ 231.082505][ T7834] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1302'. [ 231.152483][ T7831] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic [ 231.652063][ T7859] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1309'. [ 231.759441][ T22] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 231.954656][ T22] usb 5-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 231.967177][ T22] usb 5-1: config 0 interface 0 has no altsetting 0 [ 231.974057][ T22] usb 5-1: New USB device found, idVendor=044e, idProduct=1215, bcdDevice= 0.00 [ 231.983215][ T22] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 231.998977][ T22] usb 5-1: config 0 descriptor?? [ 232.235105][ T7839] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 232.245523][ T7839] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 232.313299][ T22] usbhid 5-1:0.0: can't add hid device: -71 [ 232.319463][ T22] usbhid: probe of 5-1:0.0 failed with error -71 [ 232.327486][ T22] usb 5-1: USB disconnect, device number 5 [ 233.612454][ T7855] netlink: 'syz.3.1309': attribute type 21 has an invalid length. [ 233.754039][ T7870] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1314'. [ 233.920483][ T7878] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1318'. [ 234.057928][ T7885] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1322'. [ 234.246194][ T7899] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1324'. [ 234.262657][ T7890] netlink: 'syz.4.1324': attribute type 21 has an invalid length. [ 234.499609][ T4333] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 234.687967][ T7914] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1331'. [ 234.702124][ T4333] usb 1-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 234.725337][ T4333] usb 1-1: config 0 interface 0 has no altsetting 0 [ 234.741270][ T4333] usb 1-1: New USB device found, idVendor=044e, idProduct=1215, bcdDevice= 0.00 [ 234.764997][ T4333] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 234.778850][ T4333] usb 1-1: config 0 descriptor?? [ 234.891935][ T7920] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1334'. [ 235.018237][ T7883] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 235.033640][ T7883] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 235.045321][ T7925] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1337'. [ 235.050012][ T4333] usbhid 1-1:0.0: can't add hid device: -71 [ 235.063657][ T4333] usbhid: probe of 1-1:0.0 failed with error -71 [ 235.072217][ T4333] usb 1-1: USB disconnect, device number 4 [ 235.082322][ T7926] random: crng reseeded on system resumption [ 235.236326][ T7933] loop3: detected capacity change from 0 to 512 [ 235.294917][ T7933] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 235.327014][ T7933] ext4 filesystem being mounted at /271/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 235.667620][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 235.845954][ T26] kauditd_printk_skb: 863 callbacks suppressed [ 235.845971][ T26] audit: type=1326 audit(1747687186.438:6266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7954 comm="syz.0.1348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 235.892961][ T7959] netlink: 'syz.0.1348': attribute type 21 has an invalid length. [ 235.931486][ T26] audit: type=1326 audit(1747687186.438:6267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7954 comm="syz.0.1348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 235.960122][ T7963] __nla_validate_parse: 3 callbacks suppressed [ 235.960140][ T7963] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1350'. [ 235.993838][ T26] audit: type=1326 audit(1747687186.478:6268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7954 comm="syz.0.1348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 236.057228][ T26] audit: type=1326 audit(1747687186.478:6269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7954 comm="syz.0.1348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 236.114358][ T26] audit: type=1326 audit(1747687186.478:6270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7954 comm="syz.0.1348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 236.157367][ T7975] random: crng reseeded on system resumption [ 236.158759][ T26] audit: type=1326 audit(1747687186.478:6271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7954 comm="syz.0.1348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 236.205626][ T26] audit: type=1326 audit(1747687186.478:6272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7954 comm="syz.0.1348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 236.233865][ T26] audit: type=1326 audit(1747687186.478:6273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7954 comm="syz.0.1348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 236.257856][ T7976] Set syz1 is full, maxelem 65536 reached [ 236.273730][ T26] audit: type=1326 audit(1747687186.478:6274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7954 comm="syz.0.1348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 236.306226][ T26] audit: type=1326 audit(1747687186.478:6275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7954 comm="syz.0.1348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 236.332993][ T7979] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1355'. [ 236.458004][ T7984] loop3: detected capacity change from 0 to 512 [ 236.524521][ T7984] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 236.541984][ T7984] ext4 filesystem being mounted at /276/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 236.625023][ T7984] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1358'. [ 236.705192][ T7992] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1360'. [ 237.307518][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 237.744170][ T8006] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1366'. [ 237.894219][ T8014] random: crng reseeded on system resumption [ 237.959926][ T8016] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1371'. [ 238.026468][ T8021] loop3: detected capacity change from 0 to 512 [ 238.078160][ T8021] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 238.098284][ T8021] ext4 filesystem being mounted at /279/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 238.518293][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 238.617271][ T8048] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1380'. [ 238.874307][ T8058] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1385'. [ 238.976655][ T8062] netlink: 176 bytes leftover after parsing attributes in process `syz.4.1387'. [ 239.099021][ T8064] random: crng reseeded on system resumption [ 239.481117][ T8086] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1394'. [ 240.039430][ T952] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 240.241707][ T952] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 240.266351][ T952] usb 3-1: config 0 interface 0 has no altsetting 0 [ 240.283457][ T952] usb 3-1: New USB device found, idVendor=044e, idProduct=1215, bcdDevice= 0.00 [ 240.303074][ T952] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 240.323933][ T952] usb 3-1: config 0 descriptor?? [ 240.555265][ T8116] random: crng reseeded on system resumption [ 240.615349][ T8119] Set syz1 is full, maxelem 65536 reached [ 241.006765][ T8069] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 241.015662][ T8069] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 241.060289][ T952] usbhid 3-1:0.0: can't add hid device: -71 [ 241.066343][ T952] usbhid: probe of 3-1:0.0 failed with error -71 [ 241.086580][ T952] usb 3-1: USB disconnect, device number 8 [ 241.108376][ T8133] netlink: 'syz.1.1416': attribute type 6 has an invalid length. [ 241.116342][ T8133] netlink: 'syz.1.1416': attribute type 7 has an invalid length. [ 241.124313][ T8133] netlink: 'syz.1.1416': attribute type 8 has an invalid length. [ 241.141516][ T8133] netlink: 'syz.1.1416': attribute type 13 has an invalid length. [ 241.376880][ T8150] __nla_validate_parse: 4 callbacks suppressed [ 241.376899][ T8150] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1424'. [ 241.686450][ T8165] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1431'. [ 241.727469][ T8165] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1431'. [ 242.555535][ T8200] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1444'. [ 242.816149][ T8211] netlink: 176 bytes leftover after parsing attributes in process `syz.1.1448'. [ 242.831082][ T8212] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1449'. [ 242.843559][ T8212] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1449'. [ 242.867716][ T8212] device ip6gretap0 entered promiscuous mode [ 243.328444][ T8234] netlink: 'syz.1.1459': attribute type 12 has an invalid length. [ 243.364075][ T8236] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1460'. [ 243.494460][ T8243] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1462'. [ 243.507547][ T8241] netlink: 176 bytes leftover after parsing attributes in process `syz.0.1461'. [ 243.813120][ T8254] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 243.849741][ T8254] xt_CHECKSUM: unsupported CHECKSUM operation 68 [ 244.479976][ T26] kauditd_printk_skb: 44 callbacks suppressed [ 244.479993][ T26] audit: type=1326 audit(1747687195.078:6320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8273 comm="syz.3.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 244.505891][ T8275] netlink: 'syz.3.1475': attribute type 21 has an invalid length. [ 244.574039][ T26] audit: type=1326 audit(1747687195.078:6321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8273 comm="syz.3.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 244.657515][ T26] audit: type=1326 audit(1747687195.078:6322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8273 comm="syz.3.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 244.708447][ T26] audit: type=1326 audit(1747687195.078:6323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8273 comm="syz.3.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 244.771960][ T26] audit: type=1326 audit(1747687195.078:6324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8273 comm="syz.3.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 244.826459][ T26] audit: type=1326 audit(1747687195.078:6325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8273 comm="syz.3.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 244.855177][ T26] audit: type=1326 audit(1747687195.078:6326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8273 comm="syz.3.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 244.889536][ T26] audit: type=1326 audit(1747687195.078:6327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8273 comm="syz.3.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 244.919954][ T26] audit: type=1326 audit(1747687195.088:6328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8273 comm="syz.3.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 244.993909][ T26] audit: type=1326 audit(1747687195.088:6329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8273 comm="syz.3.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 245.698018][ T8311] random: crng reseeded on system resumption [ 245.759719][ T4266] Bluetooth: hci4: command 0x0405 tx timeout [ 246.489238][ T8337] __nla_validate_parse: 6 callbacks suppressed [ 246.518480][ T8337] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1502'. [ 246.592807][ T8344] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1502'. [ 246.949511][ T8357] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1511'. [ 247.016370][ T8362] random: crng reseeded on system resumption [ 247.312902][ T8370] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1514'. [ 247.876602][ T8384] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1523'. [ 247.940977][ T8387] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1522'. [ 247.959834][ T8384] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1523'. [ 248.185577][ T8396] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1527'. [ 248.194902][ T8396] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1527'. [ 248.215044][ T8396] device ip6gretap0 entered promiscuous mode [ 249.456022][ T8415] random: crng reseeded on system resumption [ 249.821047][ T8432] netlink: 'syz.0.1542': attribute type 12 has an invalid length. [ 251.370321][ T8461] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 251.402989][ T8461] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 251.589672][ T8473] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1558'. [ 251.642266][ T8473] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1558'. [ 252.158150][ T8492] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1562'. [ 253.312601][ T8513] random: crng reseeded on system resumption [ 253.326758][ T26] kauditd_printk_skb: 218 callbacks suppressed [ 253.326774][ T26] audit: type=1326 audit(1747687203.918:6548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.1576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 253.358673][ T8515] netlink: 'syz.1.1576': attribute type 21 has an invalid length. [ 253.384803][ T26] audit: type=1326 audit(1747687203.918:6549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.1576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 253.431762][ T8521] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1576'. [ 253.446667][ T26] audit: type=1326 audit(1747687203.918:6550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.1576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 253.494304][ T26] audit: type=1326 audit(1747687203.918:6551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.1576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 253.537560][ T26] audit: type=1326 audit(1747687203.918:6552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.1576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 253.593491][ T26] audit: type=1326 audit(1747687203.918:6553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.1576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 253.657060][ T26] audit: type=1326 audit(1747687203.918:6554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.1576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 253.730365][ T26] audit: type=1326 audit(1747687203.918:6555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.1576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 253.793903][ T26] audit: type=1326 audit(1747687203.918:6556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.1576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 253.859822][ T26] audit: type=1326 audit(1747687203.918:6557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.1576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56fcb8e969 code=0x7ffc0000 [ 254.110389][ T8533] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1581'. [ 255.470627][ T8558] netlink: 'syz.0.1592': attribute type 21 has an invalid length. [ 255.651683][ T8568] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1592'. [ 255.671839][ T8567] random: crng reseeded on system resumption [ 255.705448][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.757692][ T8574] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1594'. [ 255.801072][ T8574] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1594'. [ 255.968723][ T8576] netlink: 72 bytes leftover after parsing attributes in process `syz.2.1593'. [ 256.943499][ T8592] xt_CHECKSUM: unsupported CHECKSUM operation 68 [ 257.069636][ T8598] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1604'. [ 257.078619][ T8598] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1604'. [ 257.151243][ T8598] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1604'. [ 257.188949][ T8598] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1604'. [ 257.210729][ T8598] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1604'. [ 257.245336][ T8598] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1604'. [ 257.287316][ T8611] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1609'. [ 257.288362][ T8598] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1604'. [ 257.372832][ T8598] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1604'. [ 257.396794][ T8598] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1604'. [ 257.413419][ T8602] netlink: 'syz.1.1609': attribute type 21 has an invalid length. [ 260.532574][ T26] kauditd_printk_skb: 671 callbacks suppressed [ 260.532590][ T26] audit: type=1326 audit(1747687211.128:7229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8679 comm="syz.2.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 260.589036][ T8680] netlink: 'syz.2.1638': attribute type 21 has an invalid length. [ 260.619380][ T26] audit: type=1326 audit(1747687211.178:7230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8679 comm="syz.2.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 260.715903][ T26] audit: type=1326 audit(1747687211.178:7231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8679 comm="syz.2.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 260.766412][ T26] audit: type=1326 audit(1747687211.178:7232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8679 comm="syz.2.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 260.817540][ T26] audit: type=1326 audit(1747687211.178:7233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8679 comm="syz.2.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 260.854368][ T26] audit: type=1326 audit(1747687211.178:7234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8679 comm="syz.2.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 260.897531][ T26] audit: type=1326 audit(1747687211.178:7235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8679 comm="syz.2.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 260.951777][ T26] audit: type=1326 audit(1747687211.178:7236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8679 comm="syz.2.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 261.018517][ T26] audit: type=1326 audit(1747687211.178:7237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8679 comm="syz.2.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 261.062163][ T26] audit: type=1326 audit(1747687211.178:7238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8679 comm="syz.2.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 261.189739][ T8708] device ip6gretap0 entered promiscuous mode [ 261.421153][ T8718] netlink: 'syz.0.1656': attribute type 12 has an invalid length. [ 262.213381][ T8755] netlink: 'syz.4.1674': attribute type 12 has an invalid length. [ 262.375452][ T8762] __nla_validate_parse: 54 callbacks suppressed [ 262.375472][ T8762] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1677'. [ 262.561873][ T8770] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1682'. [ 263.883798][ T8800] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1694'. [ 264.176775][ T8817] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1700'. [ 264.288819][ T8817] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1700'. [ 265.173560][ T8831] xt_TCPMSS: Only works on TCP SYN packets [ 265.222704][ T8836] netlink: 'syz.1.1708': attribute type 12 has an invalid length. [ 265.380726][ T8843] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1709'. [ 265.512677][ T8848] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1714'. [ 265.575712][ T26] kauditd_printk_skb: 232 callbacks suppressed [ 265.575729][ T26] audit: type=1326 audit(1747687216.168:7471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8851 comm="syz.2.1715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 265.581541][ T8848] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1714'. [ 265.584648][ T26] audit: type=1326 audit(1747687216.178:7472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8851 comm="syz.2.1715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 265.670338][ T8853] netlink: 'syz.2.1715': attribute type 21 has an invalid length. [ 265.731556][ T26] audit: type=1326 audit(1747687216.178:7473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8851 comm="syz.2.1715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 265.770218][ T8855] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1715'. [ 265.949065][ T26] audit: type=1326 audit(1747687216.178:7474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8851 comm="syz.2.1715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 265.976189][ T8868] syz.0.1722 sent an empty control message without MSG_MORE. [ 266.317873][ T26] audit: type=1326 audit(1747687216.178:7475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8851 comm="syz.2.1715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 266.717602][ T26] audit: type=1326 audit(1747687216.178:7476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8851 comm="syz.2.1715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 266.788053][ T26] audit: type=1326 audit(1747687216.178:7477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8851 comm="syz.2.1715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 266.871254][ T26] audit: type=1326 audit(1747687216.178:7478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8851 comm="syz.2.1715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 266.928161][ T26] audit: type=1326 audit(1747687216.178:7479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8851 comm="syz.2.1715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 266.973788][ T26] audit: type=1326 audit(1747687216.178:7480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8851 comm="syz.2.1715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2b218e969 code=0x7ffc0000 [ 267.045757][ T8883] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1729'. [ 267.248244][ T8895] xt_CHECKSUM: unsupported CHECKSUM operation 68 [ 267.749778][ T952] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 267.938757][ T8917] netlink: 'syz.2.1742': attribute type 21 has an invalid length. [ 267.949438][ T952] usb 1-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 267.969956][ T952] usb 1-1: config 0 interface 0 has no altsetting 0 [ 267.982917][ T952] usb 1-1: New USB device found, idVendor=044e, idProduct=1215, bcdDevice= 0.00 [ 267.993982][ T952] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 268.004193][ T952] usb 1-1: config 0 descriptor?? [ 268.037703][ T8921] __nla_validate_parse: 54 callbacks suppressed [ 268.037719][ T8921] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1742'. [ 268.248709][ T8885] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 268.270051][ T8885] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 268.295405][ T952] usbhid 1-1:0.0: can't add hid device: -71 [ 268.295640][ T8930] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1748'. [ 268.311334][ T952] usbhid: probe of 1-1:0.0 failed with error -71 [ 268.322015][ T952] usb 1-1: USB disconnect, device number 5 [ 268.478066][ T8937] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1751'. [ 268.930607][ T8949] xt_CHECKSUM: unsupported CHECKSUM operation 68 [ 269.077306][ T8959] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1760'. [ 269.224709][ T8965] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1763'. [ 269.538774][ T8977] netlink: 'syz.0.1769': attribute type 21 has an invalid length. [ 269.688062][ T8979] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1769'. [ 270.173888][ T4300] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 270.517133][ T4300] usb 5-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 270.572464][ T4300] usb 5-1: config 0 interface 0 has no altsetting 0 [ 270.775647][ T4300] usb 5-1: New USB device found, idVendor=044e, idProduct=1215, bcdDevice= 0.00 [ 270.993500][ T4300] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 271.237003][ T4300] usb 5-1: config 0 descriptor?? [ 271.401619][ T9011] xt_CHECKSUM: unsupported CHECKSUM operation 68 [ 271.517509][ T8981] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 271.554800][ T9016] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1780'. [ 271.569171][ T8981] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 271.626658][ T4300] usbhid 5-1:0.0: can't add hid device: -71 [ 271.639567][ T4300] usbhid: probe of 5-1:0.0 failed with error -71 [ 271.654541][ T9016] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1780'. [ 271.658354][ T4300] usb 5-1: USB disconnect, device number 6 [ 271.713176][ T9016] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1780'. [ 271.745236][ T9016] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1780'. [ 272.027394][ T26] kauditd_printk_skb: 916 callbacks suppressed [ 272.027409][ T26] audit: type=1326 audit(1747687222.618:8397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9030 comm="syz.3.1789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 272.057007][ T9031] netlink: 'syz.3.1789': attribute type 21 has an invalid length. [ 272.071612][ T26] audit: type=1326 audit(1747687222.618:8398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9030 comm="syz.3.1789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 272.095455][ T26] audit: type=1326 audit(1747687222.638:8399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9030 comm="syz.3.1789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 272.133590][ T26] audit: type=1326 audit(1747687222.638:8400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9030 comm="syz.3.1789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 272.220170][ T26] audit: type=1326 audit(1747687222.638:8401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9030 comm="syz.3.1789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 272.255081][ T26] audit: type=1326 audit(1747687222.638:8402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9030 comm="syz.3.1789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 272.278364][ T26] audit: type=1326 audit(1747687222.638:8403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9030 comm="syz.3.1789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 272.334426][ T26] audit: type=1326 audit(1747687222.638:8404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9030 comm="syz.3.1789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 272.439026][ T26] audit: type=1326 audit(1747687222.638:8405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9030 comm="syz.3.1789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 272.465674][ T26] audit: type=1326 audit(1747687222.638:8406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9030 comm="syz.3.1789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6aae78e969 code=0x7ffc0000 [ 272.636600][ T9041] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap0 [ 274.183164][ T9041] device ip6gretap0 entered promiscuous mode [ 275.159728][ T952] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 275.382708][ T952] usb 4-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 275.414228][ T952] usb 4-1: config 0 interface 0 has no altsetting 0 [ 275.459379][ T952] usb 4-1: New USB device found, idVendor=044e, idProduct=1215, bcdDevice= 0.00 [ 275.488917][ T952] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 275.496465][ T9096] __nla_validate_parse: 51 callbacks suppressed [ 275.496489][ T9096] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1812'. [ 275.542785][ T952] usb 4-1: config 0 descriptor?? [ 275.805686][ T9062] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 275.843515][ T9062] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 275.898460][ T952] usbhid 4-1:0.0: can't add hid device: -71 [ 275.920700][ T952] usbhid: probe of 4-1:0.0 failed with error -71 [ 275.943642][ T952] usb 4-1: USB disconnect, device number 8 [ 275.952004][ T9112] netlink: 892 bytes leftover after parsing attributes in process `syz.1.1818'. [ 276.034513][ T9111] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1817'. [ 276.056344][ T9116] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1820'. [ 276.747697][ T9144] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1830'. [ 276.833195][ T9146] netlink: 'syz.4.1831': attribute type 21 has an invalid length. [ 278.568678][ T9206] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1856'. [ 280.233484][ T26] kauditd_printk_skb: 200 callbacks suppressed [ 280.233501][ T26] audit: type=1326 audit(1747687230.828:8607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9228 comm="syz.0.1868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 280.268927][ T9231] netlink: 'syz.0.1868': attribute type 21 has an invalid length. [ 280.279407][ T26] audit: type=1326 audit(1747687230.858:8608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9228 comm="syz.0.1868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 280.307319][ T9232] xt_CHECKSUM: unsupported CHECKSUM operation 68 [ 280.314105][ T26] audit: type=1326 audit(1747687230.858:8609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9228 comm="syz.0.1868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 280.358791][ T26] audit: type=1326 audit(1747687230.858:8610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9228 comm="syz.0.1868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 280.410193][ T9235] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1868'. [ 280.436789][ T26] audit: type=1326 audit(1747687230.858:8611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9228 comm="syz.0.1868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 280.460348][ T26] audit: type=1326 audit(1747687230.858:8612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9228 comm="syz.0.1868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 280.513484][ T26] audit: type=1326 audit(1747687230.858:8613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9228 comm="syz.0.1868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 280.599420][ T26] audit: type=1326 audit(1747687230.858:8614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9228 comm="syz.0.1868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 280.659023][ T26] audit: type=1326 audit(1747687230.858:8615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9228 comm="syz.0.1868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 280.693590][ T26] audit: type=1326 audit(1747687230.858:8616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9228 comm="syz.0.1868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7faec438e969 code=0x7ffc0000 [ 280.954494][ T9247] loop3: detected capacity change from 0 to 1024 [ 280.973948][ T9250] netlink: 'syz.1.1874': attribute type 12 has an invalid length. [ 281.021765][ T9247] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 281.037767][ T9247] ext4 filesystem being mounted at /384/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 281.130945][ T9247] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1872: bg 0: block 393: padding at end of block bitmap is not set [ 281.207754][ T9247] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 319 with max blocks 1 with error 117 [ 281.259501][ T9247] EXT4-fs (loop3): This should not happen!! Data will be lost [ 281.259501][ T9247] [ 281.407696][ T9265] binfmt_misc: register: failed to install interpreter file ./file0 [ 281.432023][ T4250] EXT4-fs (loop3): unmounting filesystem. [ 281.759152][ T9286] netlink: 'syz.1.1887': attribute type 12 has an invalid length. [ 282.067270][ T9292] xt_CHECKSUM: unsupported CHECKSUM operation 68 [ 282.140418][ T9296] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1892'. [ 282.177297][ T9297] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1890'. [ 282.231362][ T9297] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1890'. [ 282.255099][ T9297] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1890'. [ 282.267711][ T9297] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1890'. [ 282.278199][ T9297] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1890'. [ 282.287987][ T9297] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1890'. [ 282.297972][ T9297] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1890'. [ 282.320505][ T9297] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1890'. [ 282.349530][ T9297] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1890'. [ 282.747138][ T9314] loop3: detected capacity change from 0 to 128 [ 282.809399][ T9321] capability: warning: `+}[@' uses 32-bit capabilities (legacy support in use) [ 283.086345][ T9321] loop4: detected capacity change from 0 to 2048 [ 283.883569][ T9321] Alternate GPT is invalid, using primary GPT. [ 283.923025][ T9321] loop4: p1 p2 p3 [ 284.499343][ T22] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 284.627159][ T9361] xt_CHECKSUM: unsupported CHECKSUM operation 68 [ 284.716179][ T22] usb 1-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 284.745884][ T22] usb 1-1: config 0 interface 0 has no altsetting 0 [ 284.772963][ T22] usb 1-1: New USB device found, idVendor=044e, idProduct=1215, bcdDevice= 0.00 [ 284.801998][ T22] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 284.827046][ T22] usb 1-1: config 0 descriptor?? [ 285.106923][ T9342] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 285.149645][ T9342] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 285.173659][ T22] usbhid 1-1:0.0: can't add hid device: -71 [ 285.184360][ T22] usbhid: probe of 1-1:0.0 failed with error -71 [ 285.198325][ T22] usb 1-1: USB disconnect, device number 6 [ 285.786715][ T9386] loop2: detected capacity change from 0 to 256 [ 286.214554][ T9407] xt_CHECKSUM: unsupported CHECKSUM operation 68 [ 287.160692][ T9438] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 287.278174][ T9441] loop4: detected capacity change from 0 to 2048 [ 287.376305][ T9441] loop4: p1 < > p3 [ 287.380419][ T9445] __nla_validate_parse: 105 callbacks suppressed [ 287.380436][ T9445] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1951'. [ 287.400153][ T9441] loop4: p3 size 134217728 extends beyond EOD, truncated [ 287.578893][ T9451] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1953'. [ 288.828497][ T9487] loop3: detected capacity change from 0 to 256 [ 288.855217][ T9487] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 288.855295][ T9489] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1966'. [ 288.889406][ T9487] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 288.916276][ T9487] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 289.076563][ T9474] loop1: detected capacity change from 0 to 40427 [ 289.148569][ T9474] F2FS-fs (loop1): Found nat_bits in checkpoint [ 289.310555][ T9474] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 289.523043][ T4251] syz-executor: attempt to access beyond end of device [ 289.523043][ T4251] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 290.057013][ T9528] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1977'. [ 291.079730][ T9543] futex_wake_op: syz.3.1984 tries to shift op by -1; fix this program [ 291.152456][ T9550] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1985'. [ 291.357578][ T9559] random: crng reseeded on system resumption [ 291.502902][ T9568] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1994'. [ 291.749304][ T9574] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1992'. [ 291.963553][ T9573] loop1: detected capacity change from 0 to 512 [ 292.520578][ T9573] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 292.543108][ T9573] ext4 filesystem being mounted at /394/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 292.691014][ T9590] netlink: 96 bytes leftover after parsing attributes in process `syz.4.2000'. [ 292.854276][ T9593] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2001'. [ 292.868809][ T9593] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2001'. [ 293.635640][ T4251] EXT4-fs (loop1): unmounting filesystem. [ 293.730735][ T9604] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2006'. [ 293.769647][ T4297] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 293.918379][ T9615] random: crng reseeded on system resumption [ 293.953085][ T4297] usb 1-1: config 1 has an invalid descriptor of length 146, skipping remainder of the config [ 293.973760][ T4297] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 293.985135][ T9617] netlink: 96 bytes leftover after parsing attributes in process `syz.4.2011'. [ 293.994019][ T4297] usb 1-1: config 1 has no interface number 0 [ 294.013757][ T4297] usb 1-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 294.039624][ T4297] usb 1-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping [ 294.069206][ T4297] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x82 has an invalid bInterval 169, changing to 11 [ 294.089331][ T4297] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 41767, setting to 1024 [ 294.153558][ T4297] usb 1-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 294.199978][ T4297] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 294.209073][ T4297] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 294.225195][ T4297] usb 1-1: Product: syz [ 294.232696][ T4297] usb 1-1: Manufacturer: syz [ 294.238195][ T4297] usb 1-1: SerialNumber: syz [ 295.314564][ T26] kauditd_printk_skb: 229 callbacks suppressed [ 295.314581][ T26] audit: type=1326 audit(1747687245.908:8846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9633 comm="syz.4.2018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db18e969 code=0x7ffc0000 [ 295.384498][ T26] audit: type=1326 audit(1747687245.948:8847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9633 comm="syz.4.2018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db18e969 code=0x7ffc0000 [ 295.434307][ T26] audit: type=1326 audit(1747687245.948:8848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9633 comm="syz.4.2018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f05db18e969 code=0x7ffc0000 [ 295.490416][ T26] audit: type=1326 audit(1747687245.948:8849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9633 comm="syz.4.2018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db18e969 code=0x7ffc0000 [ 295.564489][ T26] audit: type=1326 audit(1747687245.948:8850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9633 comm="syz.4.2018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db18e969 code=0x7ffc0000 [ 295.624519][ T26] audit: type=1326 audit(1747687245.948:8851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9633 comm="syz.4.2018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f05db18e969 code=0x7ffc0000 [ 295.691406][ T26] audit: type=1326 audit(1747687245.948:8852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9633 comm="syz.4.2018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db18e969 code=0x7ffc0000 [ 295.752631][ T26] audit: type=1326 audit(1747687245.948:8853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9633 comm="syz.4.2018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db18e969 code=0x7ffc0000 [ 295.818176][ T9649] netlink: 96 bytes leftover after parsing attributes in process `syz.1.2024'. [ 295.853686][ T26] audit: type=1326 audit(1747687245.968:8854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9633 comm="syz.4.2018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f05db18e969 code=0x7ffc0000 [ 295.881863][ T4297] cdc_ncm 1-1:1.1: bind() failure [ 295.943720][ T26] audit: type=1326 audit(1747687245.968:8855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9633 comm="syz.4.2018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05db18e969 code=0x7ffc0000 [ 296.086181][ T952] usb 1-1: USB disconnect, device number 7 [ 296.239178][ T9661] loop1: detected capacity change from 0 to 256 [ 296.481315][ T9666] random: crng reseeded on system resumption [ 297.190534][ T9676] netlink: 96 bytes leftover after parsing attributes in process `syz.4.2036'. [ 297.375039][ T9683] netlink: 72 bytes leftover after parsing attributes in process `syz.2.2035'. [ 299.372991][ T9703] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2045'. [ 300.038309][ T9718] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2049'. [ 300.434450][ T9729] netlink: 'syz.1.2050': attribute type 4 has an invalid length. [ 301.933728][ T952] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 302.839549][ T952] usb 5-1: Using ep0 maxpacket: 32 [ 302.872947][ T952] usb 5-1: config 0 has an invalid interface number: 16 but max is 0 [ 303.187752][ T952] usb 5-1: config 0 has no interface number 0 [ 303.193998][ T952] usb 5-1: config 0 interface 16 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023 [ 303.204448][ T952] usb 5-1: config 0 interface 16 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8 [ 303.243698][ T9746] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2058'. [ 303.260738][ T952] usb 5-1: New USB device found, idVendor=0499, idProduct=102a, bcdDevice=85.2d [ 303.299498][ T952] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 303.339695][ T952] usb 5-1: Product: syz [ 303.343913][ T952] usb 5-1: Manufacturer: syz [ 303.360941][ T952] usb 5-1: SerialNumber: syz [ 303.442689][ T952] usb 5-1: config 0 descriptor?? [ 303.450153][ T9733] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 303.457529][ T9733] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 303.576290][ T9755] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2061'. [ 303.593451][ T9755] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2061'. [ 303.751460][ T952] usb 5-1: USB disconnect, device number 7 [ 304.279790][ T9763] netlink: 888 bytes leftover after parsing attributes in process `syz.0.2065'. [ 304.661419][ T9769] device veth1_macvtap left promiscuous mode [ 304.667644][ T9769] device macsec0 entered promiscuous mode [ 304.935819][ T9783] loop1: detected capacity change from 0 to 256 [ 304.966380][ T9783] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 304.999360][ T9783] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 305.064141][ T9783] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 305.348298][ T9794] netlink: 888 bytes leftover after parsing attributes in process `syz.1.2078'. [ 305.810127][ T9782] loop3: detected capacity change from 0 to 40427 [ 306.168244][ T9782] F2FS-fs (loop3): Found nat_bits in checkpoint [ 306.967681][ T9782] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 306.976883][ T9809] syz.4.2083[9809] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 306.976988][ T9809] syz.4.2083[9809] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 307.544972][ T9790] loop2: detected capacity change from 0 to 40427 [ 307.591656][ T4250] syz-executor: attempt to access beyond end of device [ 307.591656][ T4250] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 307.690147][ T9817] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2086'. [ 307.705975][ T9790] F2FS-fs (loop2): build fault injection attr: rate: 771, type: 0x3ffff [ 307.777549][ T9790] F2FS-fs (loop2): invalid crc value [ 307.844268][ T9790] F2FS-fs (loop2): Found nat_bits in checkpoint [ 307.933856][ T9821] loop4: detected capacity change from 0 to 256 [ 308.015001][ T9821] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 308.044538][ T9821] exFAT-fs (loop4): Medium has reported failures. Some data may be lost. [ 308.053442][ T9790] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 308.122351][ T9821] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 308.318353][ T9831] netlink: 888 bytes leftover after parsing attributes in process `syz.4.2091'. [ 309.003645][ T9850] loop2: detected capacity change from 0 to 512 [ 309.371235][ T9850] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 309.382227][ T9850] ext4 filesystem being mounted at /418/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 310.024323][ T9859] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2100'. [ 310.157827][ T9861] loop3: detected capacity change from 0 to 256 [ 310.203902][ T9861] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 310.261163][ T9861] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 310.319458][ T9861] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 310.446354][ T9865] netlink: 888 bytes leftover after parsing attributes in process `syz.1.2103'. [ 310.861665][ T9872] loop1: detected capacity change from 0 to 512 [ 310.931847][ T9872] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 310.973971][ T9872] ext4 filesystem being mounted at /413/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 311.193763][ T4252] EXT4-fs (loop2): unmounting filesystem. [ 312.635985][ T9896] loop3: detected capacity change from 0 to 256 [ 312.643145][ T9896] exfat: Bad value for 'uid' [ 314.025011][ T4251] EXT4-fs (loop1): unmounting filesystem. [ 315.166304][ T9909] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2113'. [ 315.259482][ T952] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 315.388006][ T9911] netlink: 888 bytes leftover after parsing attributes in process `syz.0.2116'. [ 315.509518][ T952] usb 3-1: Using ep0 maxpacket: 32 [ 315.518573][ T952] usb 3-1: config 0 has an invalid interface number: 16 but max is 0 [ 315.557371][ T952] usb 3-1: config 0 has no interface number 0 [ 315.560196][ T9913] loop1: detected capacity change from 0 to 256 [ 315.571347][ T9913] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 315.577688][ T952] usb 3-1: config 0 interface 16 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023 [ 315.589414][ T9913] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 315.604026][ T952] usb 3-1: config 0 interface 16 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8 [ 315.618282][ T952] usb 3-1: New USB device found, idVendor=0499, idProduct=102a, bcdDevice=85.2d [ 315.627736][ T952] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 315.636014][ T952] usb 3-1: Product: syz [ 315.640418][ T952] usb 3-1: Manufacturer: syz [ 315.644951][ T9913] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 315.645023][ T952] usb 3-1: SerialNumber: syz [ 315.681169][ T952] usb 3-1: config 0 descriptor?? [ 315.690770][ T9906] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 315.704715][ T9906] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 316.045805][ T5243] usb 3-1: USB disconnect, device number 9 [ 317.187206][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.197418][ T9944] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2128'. [ 317.287044][ T9946] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2129'. [ 318.893278][ T952] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 319.157149][ T952] usb 2-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 319.205490][ T952] usb 2-1: config 0 interface 0 has no altsetting 0 [ 319.243698][ T952] usb 2-1: New USB device found, idVendor=044e, idProduct=1215, bcdDevice= 0.00 [ 319.287112][ T952] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 319.357991][ T952] usb 2-1: config 0 descriptor?? [ 319.423837][ T9979] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2140'. [ 319.608020][ T952] usbhid 2-1:0.0: can't add hid device: -71 [ 319.614764][ T952] usbhid: probe of 2-1:0.0 failed with error -71 [ 319.628001][ T952] usb 2-1: USB disconnect, device number 5 [ 321.674873][ T9984] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2141'. [ 322.241760][ C1] [ 322.244157][ C1] ============================================ [ 322.250320][ C1] WARNING: possible recursive locking detected [ 322.256493][ C1] 6.1.139-syzkaller #0 Not tainted [ 322.261699][ C1] -------------------------------------------- [ 322.267851][ C1] syz.1.2145/9995 is trying to acquire lock: [ 322.273836][ C1] ffff88801aa93a18 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock){+.-.}-{2:2}, at: __dev_queue_xmit+0x208f/0x3760 [ 322.285895][ C1] [ 322.285895][ C1] but task is already holding lock: [ 322.293273][ C1] ffff8880569f0258 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock){+.-.}-{2:2}, at: __dev_queue_xmit+0x129a/0x3760 [ 322.305319][ C1] [ 322.305319][ C1] other info that might help us debug this: [ 322.313389][ C1] Possible unsafe locking scenario: [ 322.313389][ C1] [ 322.320848][ C1] CPU0 [ 322.324133][ C1] ---- [ 322.327417][ C1] lock(dev->qdisc_tx_busylock ?: &qdisc_tx_busylock); [ 322.334371][ C1] lock(dev->qdisc_tx_busylock ?: &qdisc_tx_busylock); [ 322.341326][ C1] [ 322.341326][ C1] *** DEADLOCK *** [ 322.341326][ C1] [ 322.349475][ C1] May be due to missing lock nesting notation [ 322.349475][ C1] [ 322.357800][ C1] 12 locks held by syz.1.2145/9995: [ 322.363080][ C1] #0: ffffc900001e0bc0 ((&ndev->rs_timer)){+.-.}-{0:0}, at: call_timer_fn+0xc1/0x670 [ 322.372702][ C1] #1: ffffffff8c92ab20 (rcu_read_lock){....}-{1:2}, at: ndisc_send_skb+0x1f2/0x1510 [ 322.382233][ C1] #2: ffffffff8c92ab20 (rcu_read_lock){....}-{1:2}, at: ip6_finish_output2+0x593/0x1590 [ 322.392121][ C1] #3: ffffffff8c92ab80 (rcu_read_lock_bh){....}-{1:2}, at: __dev_queue_xmit+0x26f/0x3760 [ 322.402082][ C1] #4: ffff8880569f0258 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock){+.-.}-{2:2}, at: __dev_queue_xmit+0x129a/0x3760 [ 322.414650][ C1] #5: ffffffff8c92ab20 (rcu_read_lock){....}-{1:2}, at: ip6_finish_output2+0x593/0x1590 [ 322.424530][ C1] #6: ffffffff8c92ab80 (rcu_read_lock_bh){....}-{1:2}, at: __dev_queue_xmit+0x26f/0x3760 [ 322.434463][ C1] #7: ffff88802f9387f0 (k-slock-AF_INET6){+.-.}-{2:2}, at: icmp6_send+0xb5f/0x18d0 [ 322.443959][ C1] #8: ffffffff8c92ab20 (rcu_read_lock){....}-{1:2}, at: icmp6_send+0xaa6/0x18d0 [ 322.453101][ C1] #9: ffffffff8c92ab20 (rcu_read_lock){....}-{1:2}, at: ip6_send_skb+0x10b/0x380 [ 322.462337][ C1] #10: ffffffff8c92ab20 (rcu_read_lock){....}-{1:2}, at: ip6_finish_output2+0x593/0x1590 [ 322.472266][ C1] #11: ffffffff8c92ab80 (rcu_read_lock_bh){....}-{1:2}, at: __dev_queue_xmit+0x26f/0x3760 [ 322.482278][ C1] [ 322.482278][ C1] stack backtrace: [ 322.488193][ C1] CPU: 1 PID: 9995 Comm: syz.1.2145 Not tainted 6.1.139-syzkaller #0 [ 322.496362][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 322.506454][ C1] Call Trace: [ 322.509751][ C1] [ 322.512608][ C1] dump_stack_lvl+0x168/0x22e [ 322.517393][ C1] ? show_regs_print_info+0x12/0x12 [ 322.522604][ C1] ? load_image+0x3b0/0x3b0 [ 322.527120][ C1] __lock_acquire+0x122f/0x7c50 [ 322.532002][ C1] ? verify_lock_unused+0x140/0x140 [ 322.537212][ C1] ? verify_lock_unused+0x140/0x140 [ 322.542429][ C1] ? verify_lock_unused+0x140/0x140 [ 322.547659][ C1] lock_acquire+0x1b4/0x490 [ 322.552186][ C1] ? __dev_queue_xmit+0x208f/0x3760 [ 322.557402][ C1] ? read_lock_is_recursive+0x10/0x10 [ 322.562787][ C1] ? rcu_lockdep_current_cpu_online+0x33/0x120 [ 322.568990][ C1] ? rcu_read_lock_bh_held+0x76/0xe0 [ 322.574280][ C1] ? rcu_read_lock_held+0x40/0x40 [ 322.579314][ C1] ? mark_lock+0x94/0x320 [ 322.583649][ C1] _raw_spin_lock+0x2a/0x40 [ 322.588160][ C1] ? __dev_queue_xmit+0x208f/0x3760 [ 322.593360][ C1] __dev_queue_xmit+0x208f/0x3760 [ 322.598387][ C1] ? ___neigh_create+0x1e06/0x24c0 [ 322.603500][ C1] ? __dev_queue_xmit+0x26f/0x3760 [ 322.608712][ C1] ? netdev_core_pick_tx+0x340/0x340 [ 322.614004][ C1] ? ___neigh_create+0x1e06/0x24c0 [ 322.619117][ C1] ? neigh_connected_output+0x3ac/0x450 [ 322.624679][ C1] ip6_finish_output2+0xda2/0x1590 [ 322.630071][ C1] ? ip6_finish_output2+0x593/0x1590 [ 322.635374][ C1] ? nf_hook+0x370/0x370 [ 322.639647][ C1] ? ip6_mtu+0x79/0x3f0 [ 322.643805][ C1] ? ip6_mtu+0x79/0x3f0 [ 322.647957][ C1] ip6_finish_output+0x5d3/0xa60 [ 322.652906][ C1] ? ip6_send_skb+0x10b/0x380 [ 322.657593][ C1] ip6_send_skb+0x1d1/0x380 [ 322.662127][ C1] icmp6_send+0x1292/0x18d0 [ 322.666677][ C1] ? icmp6_send+0xaa6/0x18d0 [ 322.671283][ C1] ? icmpv6_push_pending_frames+0x4a0/0x4a0 [ 322.677190][ C1] ? ip_route_input_rcu+0x30a0/0x30a0 [ 322.682585][ C1] ? __put_user_ns+0x50/0x50 [ 322.687184][ C1] ? dst_cache_per_cpu_get+0x1bc/0x320 [ 322.692661][ C1] ip6_link_failure+0x37/0x4c0 [ 322.697431][ C1] ? ip6_negative_advice+0x310/0x310 [ 322.702724][ C1] sit_tunnel_xmit+0xaf0/0x1f60 [ 322.707585][ C1] ? ipip6_tunnel_uninit+0x180/0x180 [ 322.712875][ C1] ? dev_queue_xmit_nit+0x29/0xbb0 [ 322.718009][ C1] dev_hard_start_xmit+0x262/0x870 [ 322.723126][ C1] sch_direct_xmit+0x24e/0x4a0 [ 322.727896][ C1] ? mrp_pdu_parse_vecattr_event+0x230/0x230 [ 322.733887][ C1] __qdisc_run+0xadf/0x15f0 [ 322.738395][ C1] ? tbf_enqueue+0x271/0x6e0 [ 322.743009][ C1] __dev_queue_xmit+0x107e/0x3760 [ 322.748038][ C1] ? __dev_queue_xmit+0x26f/0x3760 [ 322.753153][ C1] ? netdev_core_pick_tx+0x340/0x340 [ 322.758440][ C1] ? ___neigh_create+0x1e06/0x24c0 [ 322.763557][ C1] ? neigh_connected_output+0x3ac/0x450 [ 322.769113][ C1] ip6_finish_output2+0xda2/0x1590 [ 322.774238][ C1] ? ip6_finish_output2+0x593/0x1590 [ 322.779531][ C1] ? nf_hook+0x370/0x370 [ 322.783785][ C1] ? ip6_mtu+0x79/0x3f0 [ 322.787940][ C1] ? ip6_mtu+0x79/0x3f0 [ 322.792096][ C1] ip6_finish_output+0x5d3/0xa60 [ 322.797482][ C1] ip6tunnel_xmit+0x1a6/0x3a0 [ 322.802167][ C1] ip6_tnl_xmit+0x225b/0x2ab0 [ 322.806855][ C1] ? ip6_tnl_xmit_ctl+0x650/0x650 [ 322.811895][ C1] ? ip6_tnl_xmit_ctl+0x5c/0x650 [ 322.816843][ C1] ? gre_build_header+0x25b/0x9a0 [ 322.821889][ C1] __gre6_xmit+0x960/0xc70 [ 322.826315][ C1] ip6gre_tunnel_xmit+0xf76/0x13d0 [ 322.831439][ C1] ? ip6gre_tunnel_uninit+0x1e0/0x1e0 [ 322.836818][ C1] ? slab_free_freelist_hook+0x131/0x1a0 [ 322.842463][ C1] ? packet_rcv+0x167/0x13d0 [ 322.847049][ C1] ? kmem_cache_free+0xf7/0x290 [ 322.851953][ C1] ? dev_queue_xmit_nit+0x29/0xbb0 [ 322.857068][ C1] ? __lock_acquire+0x7c50/0x7c50 [ 322.862098][ C1] ? dev_queue_xmit_nit+0x29/0xbb0 [ 322.867216][ C1] dev_hard_start_xmit+0x262/0x870 [ 322.872341][ C1] sch_direct_xmit+0x24e/0x4a0 [ 322.877109][ C1] ? mrp_pdu_parse_vecattr_event+0x230/0x230 [ 322.883092][ C1] ? mark_lock+0x94/0x320 [ 322.887429][ C1] __dev_queue_xmit+0x18cd/0x3760 [ 322.892458][ C1] ? __dev_queue_xmit+0x26f/0x3760 [ 322.897572][ C1] ? netdev_core_pick_tx+0x340/0x340 [ 322.902857][ C1] ? __local_bh_enable_ip+0x12a/0x1b0 [ 322.908257][ C1] ? _local_bh_enable+0xa0/0xa0 [ 322.913117][ C1] ? memcpy+0x3c/0x60 [ 322.917102][ C1] ? eth_header+0x117/0x200 [ 322.921605][ C1] ? llc_sysctl_exit+0x60/0x60 [ 322.926463][ C1] ? neigh_resolve_output+0x614/0x730 [ 322.931945][ C1] ip6_finish_output2+0xda2/0x1590 [ 322.937077][ C1] ? ip6_finish_output2+0x593/0x1590 [ 322.942389][ C1] ? nf_hook+0x370/0x370 [ 322.946728][ C1] ? ip6_mtu+0x79/0x3f0 [ 322.950883][ C1] ? ip6_mtu+0x79/0x3f0 [ 322.955038][ C1] ip6_finish_output+0x5d3/0xa60 [ 322.959994][ C1] ndisc_send_skb+0xbfb/0x1510 [ 322.964787][ C1] ? ndisc_send_skb+0x1f2/0x1510 [ 322.969732][ C1] ? ndisc_mc_map+0x810/0x810 [ 322.974411][ C1] ? skb_dst+0xd0/0xd0 [ 322.978504][ C1] ? memset+0x1e/0x40 [ 322.982494][ C1] addrconf_rs_timer+0x2b8/0x600 [ 322.987438][ C1] ? addrconf_disable_policy_idev+0x4c0/0x4c0 [ 322.993516][ C1] call_timer_fn+0x1a0/0x670 [ 322.998105][ C1] ? addrconf_disable_policy_idev+0x4c0/0x4c0 [ 323.004179][ C1] ? call_timer_fn+0xc1/0x670 [ 323.008862][ C1] ? __run_timers+0x7c0/0x7c0 [ 323.013541][ C1] ? _raw_spin_unlock_irq+0x1f/0x40 [ 323.018745][ C1] ? lockdep_hardirqs_on+0x94/0x140 [ 323.023954][ C1] ? addrconf_disable_policy_idev+0x4c0/0x4c0 [ 323.030025][ C1] __run_timers+0x525/0x7c0 [ 323.034536][ C1] ? detach_timer+0x350/0x350 [ 323.039213][ C1] ? lock_chain_count+0x20/0x20 [ 323.044160][ C1] ? seqcount_lockdep_reader_access+0x15c/0x1c0 [ 323.050413][ C1] run_timer_softirq+0x63/0xf0 [ 323.055231][ C1] handle_softirqs+0x2a1/0x920 [ 323.060025][ C1] ? __irq_exit_rcu+0x12f/0x220 [ 323.064898][ C1] ? do_softirq+0x200/0x200 [ 323.069417][ C1] ? irqtime_account_irq+0xb2/0x1b0 [ 323.074630][ C1] __irq_exit_rcu+0x12f/0x220 [ 323.079321][ C1] ? irq_exit_rcu+0x20/0x20 [ 323.083842][ C1] irq_exit_rcu+0x5/0x20 [ 323.088105][ C1] sysvec_apic_timer_interrupt+0xa0/0xc0 [ 323.093751][ C1] [ 323.096679][ C1] [ 323.099612][ C1] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 323.105594][ C1] RIP: 0010:finish_task_switch+0x26a/0x8f0 [ 323.111406][ C1] Code: 0f 84 3b 01 00 00 48 85 db 0f 85 5a 01 00 00 0f 1f 44 00 00 4c 8b 75 d0 4c 89 e7 e8 e0 b9 c0 08 e8 eb c1 2e 00 fb 4c 8b 65 c0 <49> 8d bc 24 f8 15 00 00 48 89 f8 48 c1 e8 03 42 0f b6 04 28 84 c0 [ 323.131037][ C1] RSP: 0018:ffffc9000c60f338 EFLAGS: 00000282 [ 323.137107][ C1] RAX: e818486bd3ab6e00 RBX: 0000000000000000 RCX: e818486bd3ab6e00 [ 323.145123][ C1] RDX: dffffc0000000000 RSI: ffffffff8a6c0000 RDI: ffffffff8abf1020 [ 323.153129][ C1] RBP: ffffc9000c60f390 R08: dffffc0000000000 R09: ffffed10171e7549 [ 323.161116][ C1] R10: ffffed10171e7549 R11: 1ffff110171e7548 R12: ffff8880192c5940 [ 323.169185][ C1] R13: dffffc0000000000 R14: ffff8880192c0000 R15: 0000000000000000 [ 323.177175][ C1] ? finish_task_switch+0x265/0x8f0 [ 323.182394][ C1] __schedule+0x10f1/0x40d0 [ 323.186928][ C1] ? release_firmware_map_entry+0x18a/0x18a [ 323.192833][ C1] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 323.198826][ C1] schedule+0xb9/0x180 [ 323.202896][ C1] schedule_timeout+0x97/0x280 [ 323.207667][ C1] ? console_conditional_schedule+0x40/0x40 [ 323.213570][ C1] ? __lock_acquire+0x7c50/0x7c50 [ 323.218626][ C1] ? sk_filter_trim_cap+0x15b/0x900 [ 323.223838][ C1] ? prepare_to_wait_exclusive+0x7e/0x220 [ 323.229655][ C1] ? do_raw_spin_unlock+0x11d/0x230 [ 323.234954][ C1] unix_wait_for_peer+0x1e5/0x2e0 [ 323.239988][ C1] ? unix_find_other+0x7f0/0x7f0 [ 323.244963][ C1] ? do_raw_spin_lock+0x11d/0x280 [ 323.250000][ C1] ? wake_bit_function+0x200/0x200 [ 323.255121][ C1] ? __rwlock_init+0x140/0x140 [ 323.259895][ C1] ? kasan_check_range+0x1f/0x290 [ 323.264955][ C1] ? bpf_lsm_unix_may_send+0x5/0x10 [ 323.270155][ C1] unix_dgram_sendmsg+0x102d/0x18d0 [ 323.275367][ C1] ? unix_dgram_poll+0x660/0x660 [ 323.280332][ C1] ? tomoyo_socket_sendmsg_permission+0x1dd/0x2f0 [ 323.286758][ C1] ? aa_sock_msg_perm+0x94/0x150 [ 323.291712][ C1] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 323.297025][ C1] ? security_socket_sendmsg+0x7c/0xa0 [ 323.302588][ C1] ? unix_dgram_poll+0x660/0x660 [ 323.307542][ C1] ____sys_sendmsg+0x59b/0x970 [ 323.312325][ C1] ? __might_fault+0xa6/0x120 [ 323.317006][ C1] ? __sys_sendmsg_sock+0x30/0x30 [ 323.322043][ C1] ? __import_iovec+0x315/0x500 [ 323.326897][ C1] ? __might_fault+0xa6/0x120 [ 323.331577][ C1] ? import_iovec+0x6f/0xa0 [ 323.336083][ C1] ___sys_sendmsg+0x21c/0x290 [ 323.340774][ C1] ? __sys_sendmsg+0x270/0x270 [ 323.345561][ C1] ? __might_fault+0xc2/0x120 [ 323.350242][ C1] ? __might_fault+0xa6/0x120 [ 323.354924][ C1] __sys_sendmmsg+0x272/0x490 [ 323.359615][ C1] ? __ia32_sys_sendmsg+0x80/0x80 [ 323.364645][ C1] ? do_futex+0x310/0x320 [ 323.368996][ C1] ? fput+0x150/0x1a0 [ 323.372989][ C1] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 323.378976][ C1] ? lock_chain_count+0x20/0x20 [ 323.383936][ C1] __x64_sys_sendmmsg+0x9c/0xb0 [ 323.388794][ C1] do_syscall_64+0x4c/0xa0 [ 323.393219][ C1] ? clear_bhb_loop+0x60/0xb0 [ 323.397895][ C1] ? clear_bhb_loop+0x60/0xb0 [ 323.402574][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 323.408477][ C1] RIP: 0033:0x7f56fcb8e969 [ 323.412908][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 323.432785][ C1] RSP: 002b:00007f56fd919038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 323.441202][ C1] RAX: ffffffffffffffda RBX: 00007f56fcdb5fa0 RCX: 00007f56fcb8e969 [ 323.449173][ C1] RDX: 0000000000000651 RSI: 0000200000000000 RDI: 0000000000000005 [ 323.457424][ C1] RBP: 00007f56fcc10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 323.465395][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 323.473374][ C1] R13: 0000000000000000 R14: 00007f56fcdb5fa0 R15: 00007ffeb5507d58 [ 323.481372][ C1] [ 323.495267][T10006] netlink: 72 bytes leftover after parsing attributes in process `syz.1.2145'.