last executing test programs: 5m44.08394284s ago: executing program 3 (id=386): socket$packet(0x11, 0x3, 0x300) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, 0x0, 0x0) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r3, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r4 = socket$key(0xf, 0x3, 0x2) connect$unix(r4, &(0x7f0000000040)=@abs={0x0, 0x0, 0x4e20}, 0x6e) r5 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x822b01) r6 = socket$nl_generic(0x10, 0x3, 0x10) fdatasync(r4) sendmsg$netlink(r6, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000006c0)=ANY=[@ANYBLOB="100000002500040026bd7000ff0b15cd03a616aad3a6dbdf2590f94195b68e4763219c49f9fff69daa80c372afdecd3f5546435ccd"], 0x10}], 0x1, 0x0, 0x0, 0x24000801}, 0x40010) bind$netlink(0xffffffffffffffff, &(0x7f0000000080)={0x10, 0x0, 0x25dfdbfb, 0x1}, 0xc) recvmmsg(r6, &(0x7f00000086c0)=[{{0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000340)=""/146, 0x92}, {&(0x7f0000000880)=""/4111, 0x100f}, {&(0x7f00000007c0)=""/97, 0x61}], 0x3}, 0x7}, {{0x0, 0x0, 0x0}, 0x1}, {{0x0, 0x0, &(0x7f0000001980)=[{&(0x7f00000004c0)=""/153, 0x99}, {&(0x7f00000005c0)=""/233, 0xe9}, {&(0x7f0000000100)=""/119, 0x77}, {0x0}, {0x0}, {&(0x7f0000000400)=""/161, 0xa1}], 0x6}, 0x1000}], 0x3, 0x8042, 0x0) write$char_usb(r5, &(0x7f0000000040)="e2", 0x12d8) unshare(0x42000000) 5m43.003733986s ago: executing program 3 (id=390): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10) r4 = socket$inet_smc(0x2b, 0x1, 0x0) r5 = syz_io_uring_setup(0x10d, &(0x7f0000000540)={0x0, 0xd4bb, 0x0, 0xfffffffd}, &(0x7f0000000380)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r6, r7, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r4, 0x0, 0x0, 0x0, 0x80800}) listen(r4, 0x5) io_uring_enter(r5, 0x3517, 0xc2de, 0x9, 0x0, 0x0) close(0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) 5m41.580932008s ago: executing program 4 (id=393): mkdir(&(0x7f0000000000)='./control\x00', 0x0) r0 = open(0x0, 0x0, 0x0) mkdirat(r0, &(0x7f0000000100)='./control\x00', 0x0) r1 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001440), 0x0, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$IMADDTIMER(r1, 0x80044940, &(0x7f00000000c0)=0x32) semctl$GETPID(0x0, 0x3, 0xb, &(0x7f0000000040)=""/29) r5 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'wlan0\x00', 0xfffffffe}) ioctl(r5, 0x8b22, &(0x7f0000000040)) 5m40.162002709s ago: executing program 4 (id=398): r0 = userfaultfd(0x801) r1 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) r2 = fsmount(r1, 0x0, 0x82) r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.threads\x00', 0x2, 0x0) open_by_handle_at(r3, &(0x7f0000000100)=ANY=[@ANYRES32=r0], 0x408940) 5m39.42200964s ago: executing program 4 (id=400): socket$packet(0x11, 0x3, 0x300) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, 0x0, 0x0) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r3, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r4 = socket$key(0xf, 0x3, 0x2) connect$unix(r4, &(0x7f0000000040)=@abs={0x0, 0x0, 0x4e20}, 0x6e) r5 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x822b01) r6 = socket$nl_generic(0x10, 0x3, 0x10) fdatasync(r4) sendmsg$netlink(r6, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000006c0)=ANY=[@ANYBLOB="100000002500040026bd7000ff0b15cd03a616aad3a6dbdf2590f94195b68e4763219c49f9fff69daa80c372afdecd3f5546435ccd"], 0x10}], 0x1, 0x0, 0x0, 0x24000801}, 0x40010) bind$netlink(0xffffffffffffffff, &(0x7f0000000080)={0x10, 0x0, 0x25dfdbfb, 0x1}, 0xc) recvmmsg(r6, &(0x7f00000086c0)=[{{0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000340)=""/146, 0x92}, {&(0x7f0000000880)=""/4111, 0x100f}, {&(0x7f00000007c0)=""/97, 0x61}], 0x3}, 0x7}, {{0x0, 0x0, 0x0}, 0x1}, {{0x0, 0x0, &(0x7f0000001980)=[{&(0x7f00000004c0)=""/153, 0x99}, {&(0x7f00000005c0)=""/233, 0xe9}, {&(0x7f0000000100)=""/119, 0x77}, {0x0}, {0x0}, {&(0x7f0000000400)=""/161, 0xa1}], 0x6}, 0x1000}], 0x3, 0x8042, 0x0) write$char_usb(r5, &(0x7f0000000040)="e2", 0x12d8) unshare(0x42000000) 5m37.117909735s ago: executing program 4 (id=405): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000580)={0x2, @pix_mp={0x2, 0x0, 0x20385655, 0x1, 0x2, [{0x8, 0x7}, {0x8e, 0x3a400}, {0x79, 0x401}, {0x3, 0xfffffff3}, {0x9, 0x7}, {0x2}, {0x0, 0x23cb19bd}, {0x401, 0xc4e}], 0x1, 0x8, 0x0, 0x0, 0x6}}) sendmsg$IPSET_CMD_TEST(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=ANY=[@ANYBLOB="540000000b0601084d520000000000000600000205000100070000002c0007801800018014000240ff02000000000000000000000000000106a2e98c7a77f31ef6000700730000000900020073797a3100"], 0x54}, 0x1, 0x0, 0x0, 0x20008041}, 0x8190) 5m37.089834255s ago: executing program 4 (id=406): setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, 0x0, 0x0) setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000000000000a00000000000000ff02000000000000000000000000000100"/70], 0x210) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r0, 0x0, 0xd}, 0x18) prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7) openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0), 0x80280, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) shutdown(0xffffffffffffffff, 0x2) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000400), r3) ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000100)={'wpan0\x00', 0x0}) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r6, &(0x7f0000000040)={0x0, 0x33, &(0x7f0000000340)={&(0x7f00000000c0)={0x3c, r4, 0x60b, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r5}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x3}, @IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5}]}, 0x3c}}, 0x0) 5m34.793214851s ago: executing program 4 (id=409): r0 = getpid() r1 = syz_pidfd_open(r0, 0x0) setns(r1, 0x24020000) creat(&(0x7f0000000240)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000001900)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15) mount$bind(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0) mount$bind(0x0, 0x0, 0x0, 0x100000, 0x0) syz_clone(0x498144ee5f62e149, 0x0, 0x17, 0x0, 0x0, 0x0) r4 = dup(r3) write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r4, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@cache_mmap}], [], 0x6b}}) 5m31.853005675s ago: executing program 3 (id=415): socket$packet(0x11, 0x3, 0x300) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, 0x0, 0x0) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r3, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r4 = socket$key(0xf, 0x3, 0x2) connect$unix(r4, &(0x7f0000000040)=@abs={0x0, 0x0, 0x4e20}, 0x6e) r5 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x822b01) r6 = socket$nl_generic(0x10, 0x3, 0x10) fdatasync(r4) sendmsg$netlink(r6, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000006c0)=ANY=[@ANYBLOB="100000002500040026bd7000ff0b15cd03a616aad3a6dbdf2590f94195b68e4763219c49f9fff69daa80c372afdecd3f5546435ccd"], 0x10}], 0x1, 0x0, 0x0, 0x24000801}, 0x40010) bind$netlink(0xffffffffffffffff, &(0x7f0000000080)={0x10, 0x0, 0x25dfdbfb, 0x1}, 0xc) recvmmsg(r6, &(0x7f00000086c0)=[{{0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000340)=""/146, 0x92}, {&(0x7f0000000880)=""/4111, 0x100f}, {&(0x7f00000007c0)=""/97, 0x61}], 0x3}, 0x7}, {{0x0, 0x0, 0x0}, 0x1}, {{0x0, 0x0, &(0x7f0000001980)=[{&(0x7f00000004c0)=""/153, 0x99}, {&(0x7f00000005c0)=""/233, 0xe9}, {&(0x7f0000000100)=""/119, 0x77}, {0x0}, {0x0}, {&(0x7f0000000400)=""/161, 0xa1}], 0x6}, 0x1000}], 0x3, 0x8042, 0x0) write$char_usb(r5, &(0x7f0000000040)="e2", 0x12d8) unshare(0x42000000) 5m30.762481541s ago: executing program 3 (id=419): setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, 0x0, 0x0) setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000000000000a00000000000000ff02000000000000000000000000000100"/70], 0x210) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r0, 0x0, 0xd}, 0x18) prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7) openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0), 0x80280, 0x0) syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) shutdown(r1, 0x2) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000400), r3) ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000100)={'wpan0\x00', 0x0}) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r6, &(0x7f0000000040)={0x0, 0x33, &(0x7f0000000340)={&(0x7f00000000c0)={0x3c, r4, 0x60b, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r5}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x3}, @IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5}]}, 0x3c}}, 0x0) 5m28.772837961s ago: executing program 3 (id=423): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40088c0}, 0x20008040) r1 = socket(0x10, 0x3, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, 0x0, 0x44004) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000180), r1) socket$kcm(0x10, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0xffffffffffffff1a, &(0x7f0000000200)=0x400000bce) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = syz_open_dev$MSR(&(0x7f0000000280), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) r4 = socket(0x1d, 0x2, 0x6) r5 = socket$alg(0x26, 0x5, 0x0) bind$alg(r5, &(0x7f0000000940)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r6 = accept$alg(r5, 0x0, 0x0) sendmsg$alg(r6, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=[@assoc={0x18, 0x117, 0x4, 0xd4e5}, @op={0x18, 0x117, 0x3, 0x1}], 0x30}, 0x0) write$binfmt_script(r6, &(0x7f0000000600), 0xfec8) recvmmsg(r6, &(0x7f00000008c0)=[{{&(0x7f00000000c0)=@pptp={0x18, 0x2, {0x0, @initdev}}, 0x80, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/200, 0x6}, {&(0x7f0000000140), 0xa}, {&(0x7f0000000300)=""/225, 0x2}, {&(0x7f0000000400)=""/41, 0xfeb2}, {&(0x7f0000000440)=""/123, 0x7b}, {&(0x7f00000004c0)=""/203, 0xcb}], 0x6, &(0x7f0000000640)=""/123, 0xfffffffffffffe63, 0x2000000}}, {{&(0x7f00000006c0), 0x80, &(0x7f0000000840), 0x0, &(0x7f0000000880)=""/24, 0xffffffffffffffe0}}], 0x2, 0xcb, &(0x7f0000008000)={0x0, 0x989680}) bind$can_j1939(r4, &(0x7f0000000380)={0x1d, 0x0, 0x1, {0x0, 0x0, 0x3}, 0xff}, 0x18) sendmmsg$sock(r4, &(0x7f0000000280), 0x0, 0x0) r7 = bpf$MAP_CREATE(0x0, &(0x7f0000001480)=@base={0x12, 0x3, 0x4, 0x6}, 0x50) socket$inet_udp(0x2, 0x2, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000680)={r7, &(0x7f0000000540), 0x0}, 0x20) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 5m27.371810563s ago: executing program 3 (id=429): socket$packet(0x11, 0x3, 0x300) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, 0x0, 0x0) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r3, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r4 = socket$key(0xf, 0x3, 0x2) connect$unix(r4, &(0x7f0000000040)=@abs={0x0, 0x0, 0x4e20}, 0x6e) r5 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x822b01) r6 = socket$nl_generic(0x10, 0x3, 0x10) fdatasync(r4) sendmsg$netlink(r6, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000006c0)=ANY=[@ANYBLOB="100000002500040026bd7000ff0b15cd03a616aad3a6dbdf2590f94195b68e4763219c49f9fff69daa80c372afdecd3f5546435ccd"], 0x10}], 0x1, 0x0, 0x0, 0x24000801}, 0x40010) syz_genetlink_get_family_id$devlink(&(0x7f0000000000), r6) recvmmsg(r6, &(0x7f00000086c0)=[{{0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000340)=""/146, 0x92}, {&(0x7f0000000880)=""/4111, 0x100f}, {&(0x7f00000007c0)=""/97, 0x61}], 0x3}, 0x7}, {{0x0, 0x0, 0x0}, 0x1}, {{0x0, 0x0, &(0x7f0000001980)=[{&(0x7f00000004c0)=""/153, 0x99}, {&(0x7f00000005c0)=""/233, 0xe9}, {&(0x7f0000000100)=""/119, 0x77}, {0x0}, {0x0}, {&(0x7f0000000400)=""/161, 0xa1}], 0x6}, 0x1000}], 0x3, 0x8042, 0x0) write$char_usb(r5, &(0x7f0000000040)="e2", 0x12d8) unshare(0x42000000) 5m19.250678935s ago: executing program 32 (id=409): r0 = getpid() r1 = syz_pidfd_open(r0, 0x0) setns(r1, 0x24020000) creat(&(0x7f0000000240)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000001900)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15) mount$bind(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0) mount$bind(0x0, 0x0, 0x0, 0x100000, 0x0) syz_clone(0x498144ee5f62e149, 0x0, 0x17, 0x0, 0x0, 0x0) r4 = dup(r3) write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r4, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@cache_mmap}], [], 0x6b}}) 5m11.889961756s ago: executing program 33 (id=429): socket$packet(0x11, 0x3, 0x300) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, 0x0, 0x0) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r3, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r4 = socket$key(0xf, 0x3, 0x2) connect$unix(r4, &(0x7f0000000040)=@abs={0x0, 0x0, 0x4e20}, 0x6e) r5 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x822b01) r6 = socket$nl_generic(0x10, 0x3, 0x10) fdatasync(r4) sendmsg$netlink(r6, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000006c0)=ANY=[@ANYBLOB="100000002500040026bd7000ff0b15cd03a616aad3a6dbdf2590f94195b68e4763219c49f9fff69daa80c372afdecd3f5546435ccd"], 0x10}], 0x1, 0x0, 0x0, 0x24000801}, 0x40010) syz_genetlink_get_family_id$devlink(&(0x7f0000000000), r6) recvmmsg(r6, &(0x7f00000086c0)=[{{0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000340)=""/146, 0x92}, {&(0x7f0000000880)=""/4111, 0x100f}, {&(0x7f00000007c0)=""/97, 0x61}], 0x3}, 0x7}, {{0x0, 0x0, 0x0}, 0x1}, {{0x0, 0x0, &(0x7f0000001980)=[{&(0x7f00000004c0)=""/153, 0x99}, {&(0x7f00000005c0)=""/233, 0xe9}, {&(0x7f0000000100)=""/119, 0x77}, {0x0}, {0x0}, {&(0x7f0000000400)=""/161, 0xa1}], 0x6}, 0x1000}], 0x3, 0x8042, 0x0) write$char_usb(r5, &(0x7f0000000040)="e2", 0x12d8) unshare(0x42000000) 15.608161864s ago: executing program 5 (id=1232): r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000040)=0x9b) 15.507952216s ago: executing program 2 (id=1233): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './cgroup\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) open(0x0, 0x145142, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)=ANY=[@ANYBLOB="3800000054000100010000000000000007000000", @ANYRES32=0x0, @ANYBLOB="12d593d7d781af54f71dfc9cc75c083cb58817c8bf3703d26743c44c4463852d6184fb3b", @ANYRES32=0x0], 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0) r3 = socket$kcm(0x2, 0x5, 0x84) setsockopt$sock_attach_bpf(r3, 0x84, 0x19, &(0x7f0000000000), 0x8) 14.963590763s ago: executing program 5 (id=1234): sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x4000090) bind$alg(0xffffffffffffffff, 0x0, 0x0) r0 = syz_open_dev$ndb(&(0x7f0000002080), 0x0, 0x80083) ioctl$NBD_CLEAR_SOCK(r0, 0x125f) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000001680)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2843ca8725c9de81}, 0x4000) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(0x0, 0x0, 0x0) io_uring_enter(0xffffffffffffffff, 0xdb4, 0x0, 0x0, 0x0, 0x0) read$msr(r2, &(0x7f0000002000)=""/102400, 0x19000) r3 = fsopen(0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1a00000007"], 0x50) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r4, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6) writev(0xffffffffffffffff, &(0x7f00000005c0)=[{&(0x7f0000000000)='U', 0x1}], 0x1) write$binfmt_misc(r4, &(0x7f0000000000), 0xd) 14.782510327s ago: executing program 2 (id=1236): r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000240)=ANY=[@ANYBLOB="1201000000000040f30454070000000000010902240001000040b109040000010300010009210101000122050009058103"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000000)=ANY=[@ANYBLOB="000609000000091146ff44901ad70a1e"], 0x0, 0x0, 0x0, 0x0}, 0x0) openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) r1 = syz_open_dev$hidraw(&(0x7f0000000040), 0x82, 0xa000) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00'}, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) socket$netlink(0x10, 0x3, 0x10) writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) unshare(0x20000400) r3 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c41, 0x0) flock(r4, 0x5) flock(0xffffffffffffffff, 0x2) r5 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0) sendmsg$BATADV_CMD_SET_MESH(r4, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x44010) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000007, 0x38011, r5, 0x0) remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x1, 0x2000) ioctl$HIDIOCGRAWPHYS(r1, 0x80404805, &(0x7f0000000100)) 7.999085049s ago: executing program 2 (id=1251): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, &(0x7f00000002c0)) syz_open_dev$vim2m(&(0x7f00000000c0), 0x8000, 0x2) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3) sched_setaffinity(0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) fcntl$getown(0xffffffffffffffff, 0x9) remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000480)=ANY=[@ANYRES32], 0x103) r2 = inotify_init() inotify_add_watch(r2, &(0x7f0000000000)='.\x00', 0x400017e) mkdir(&(0x7f00000020c0)='./file0\x00', 0x0) lsetxattr$system_posix_acl(&(0x7f0000000280)='./file0\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f0000000540)=ANY=[@ANYBLOB="0200"], 0x4, 0x0) 7.102873673s ago: executing program 2 (id=1254): r0 = io_uring_setup(0x1450, &(0x7f0000000180)={0x0, 0x73d5, 0x80, 0x3, 0x1f}) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x1) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400010bce) r1 = syz_open_dev$MSR(&(0x7f0000000380), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(0xffffffffffffffff, 0x7, 0x0, 0x0, 0x0) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000280)={'nr0\x00', @local}) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB="2400000020000103"], 0x24}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0) ioctl$VIDIOC_G_PARM(0xffffffffffffffff, 0xc0cc5615, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000000)=@framed, 0x0}, 0x94) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f0000000000)=[{0x20, 0x0, 0x20, 0xfffff020}, {0x6, 0x0, 0x0, 0x80000000}]}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000280)={0x0, r3, 0x0, 0x14, &(0x7f00000001c0)='\x00'}, 0x11) socket$nl_route(0x10, 0x3, 0x0) io_uring_register$IORING_REGISTER_SYNC_CANCEL(r0, 0x18, &(0x7f0000000080)={0x9, 0xffffffffffffffff, 0x0, {0x8, 0x7}, 0x8}, 0x1) r4 = socket(0xa, 0x3, 0x3a) ioctl$SIOCSIFMTU(r4, 0x8922, &(0x7f0000000080)={'veth0_vlan\x00', 0x200}) r5 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7f, 0x2) ioctl$vim2m_VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f0000000040)={0x80000004, 0x1, 0x4}) r6 = syz_usb_connect$uac1(0x0, 0x71, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000086b1d010140000102030109025f0003010060000904000000"], 0x0) syz_usb_control_io(r6, &(0x7f0000000480)={0x2c, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0xb}}, 0x0, 0x0, 0x0}, 0x0) 6.053709428s ago: executing program 5 (id=1257): mkdir(&(0x7f0000000000)='./control\x00', 0x0) r0 = open(0x0, 0x0, 0x0) mkdirat(r0, &(0x7f0000000100)='./control\x00', 0x0) r1 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001440), 0x0, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r2}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$IMADDTIMER(r1, 0x80044940, &(0x7f00000000c0)=0x32) semctl$GETPID(0x0, 0x3, 0xb, &(0x7f0000000040)=""/29) r5 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, 0x0) ioctl(r5, 0x8b22, &(0x7f0000000040)) 5.907434671s ago: executing program 0 (id=1258): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000000)={0x11, @empty, 0x0, 0x3, 'none\x00', 0x0, 0x7ff}, 0x2c) getsockopt$IP_VS_SO_GET_SERVICE(r0, 0x0, 0x483, 0x0, &(0x7f0000000180)) 5.724103853s ago: executing program 1 (id=1259): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$KDFONTOP_SET(r5, 0x4b6a, 0x0) setresuid(0x0, 0xffffffffffffffff, 0xee01) setreuid(0xee01, 0xee01) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000140), 0x4924b68, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f0000000180)={'veth1\x00', &(0x7f0000000240)=@ethtool_gstrings}) 5.723879623s ago: executing program 0 (id=1260): sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000f00)=[{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000340)="b92fc8d480737475599f9b3cec0ee7426057350194c5ce866b05f60343d526a746b201784a3ee55de873375a52dadc7e8ab9044dd2665909a0580519f5736b82fd", 0x41}], 0x1, 0x0, 0x0, 0x40000}], 0x1, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, 0x0}], 0x1, 0x4, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x43, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x6, 0x9, 0x96, 0x0, 0x1, 0x2, 0x3, 0xe2, 0x0, 0x3, 0x2, 0xc1, 0x0, 0x3, 0x7, 0x4, 0x77, 0x3, 0x3a, '\x00', 0x7}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 4.778220868s ago: executing program 0 (id=1262): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x3, 0x0, 0x0, 0x41000}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0, 0x0, 0x1}, 0x18) syz_usb_connect(0x5, 0x24, &(0x7f0000002040)=ANY=[@ANYBLOB="12010000fe76181004160780a6af011703010902120001000000000904"], 0x0) r1 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x3, 0xbc01) ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r1, 0x80dc5521, &(0x7f0000000180)=""/135) 4.758685748s ago: executing program 1 (id=1264): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, &(0x7f00000002c0)) syz_open_dev$vim2m(&(0x7f00000000c0), 0x8000, 0x2) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3) sched_setaffinity(0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) fcntl$getown(0xffffffffffffffff, 0x9) remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000480)=ANY=[@ANYRES32], 0x103) r2 = inotify_init() inotify_add_watch(r2, &(0x7f0000000000)='.\x00', 0x400017e) mkdir(&(0x7f00000020c0)='./file0\x00', 0x0) lsetxattr$system_posix_acl(&(0x7f0000000280)='./file0\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f0000000540)=ANY=[@ANYBLOB="0200"], 0x4, 0x0) 4.752005208s ago: executing program 5 (id=1265): r0 = syz_open_dev$vim2m(&(0x7f0000000640), 0x7fc, 0x2) ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000040)={0xf0f024}) ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000540)={0x2, @pix={0x3, 0x401, 0x3132564e, 0x1, 0x3, 0x3, 0xc, 0x7, 0x0, 0x0, 0x0, 0x3}}) socket$netlink(0x10, 0x3, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r1 = socket$phonet_pipe(0x23, 0x5, 0x2) ioctl$sock_SIOCETHTOOL(r1, 0x8946, 0x0) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}}) r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) readv(r3, &(0x7f0000000480)=[{&(0x7f0000000080)=""/87, 0x57}, {&(0x7f0000000100)=""/217, 0xd9}], 0x2) mmap$dsp(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0xf, 0x12, r3, 0x0) read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) r5 = socket$inet_sctp(0x2, 0x1, 0x84) prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3) sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x10, 0xe, &(0x7f0000001540)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r5, 0x84, 0x65, &(0x7f00000002c0)=[@in6={0xa, 0x0, 0x0, @mcast1={0xff, 0x3}}], 0x1c) unlinkat(0xffffffffffffff9c, &(0x7f0000000040)='./file0/file0\x00', 0x0) write$FUSE_INIT(r2, &(0x7f0000000400)={0x50, 0x0, r4, {0x7, 0x1f, 0x1, 0x50, 0x0, 0x0, 0x5}}, 0x50) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'macsec0\x00'}) r7 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r7, 0x0, 0x0) 3.919137221s ago: executing program 2 (id=1266): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x4, &(0x7f0000000340)=ANY=[@ANYRESHEX=0x0], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) socketpair$unix(0x1, 0x2, 0x0, 0x0) unshare(0x22020600) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r0 = socket(0x10, 0x3, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000000)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]}) chdir(&(0x7f0000000140)='./bus\x00') r2 = open(&(0x7f0000000580)='./file0\x00', 0x80242, 0x1df2a23c5997fa5f) write$FUSE_CREATE_OPEN(r2, 0x0, 0x0) sendfile(r2, r2, &(0x7f0000000080), 0x7f03) sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x48, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, 0x0, {0x0, 0xc}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0x8}}}]}, 0x48}}, 0x0) socket(0x400000000010, 0x3, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00'}) r4 = socket$can_raw(0x1d, 0x3, 0x1) openat$mice(0xffffffffffffff9c, &(0x7f00000003c0), 0x200) ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000100)={'vcan0\x00', 0x0}) bind$can_raw(r4, &(0x7f00000001c0)={0x1d, r5}, 0x10) recvmmsg(r4, &(0x7f0000003b80)=[{{0x0, 0x0, &(0x7f0000000180)=[{0x0}, {&(0x7f0000000240)=""/122, 0x7a}], 0x2}, 0xdc}], 0x1, 0x40000002, 0x0) sendmsg$can_raw(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@can={{}, 0x0, 0x0, 0x0, 0x0, "0000000000000003"}, 0x10}}, 0x0) 3.843744402s ago: executing program 6 (id=1267): sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x4000090) bind$alg(0xffffffffffffffff, 0x0, 0x0) r0 = syz_open_dev$ndb(&(0x7f0000002080), 0x0, 0x80083) ioctl$NBD_CLEAR_SOCK(r0, 0x125f) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x400}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000001680)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2843ca8725c9de81}, 0x4000) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(0x0, 0x0, 0x0) io_uring_enter(0xffffffffffffffff, 0xdb4, 0x0, 0x0, 0x0, 0x0) read$msr(r2, &(0x7f0000002000)=""/102400, 0x19000) r3 = fsopen(0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1a00000007"], 0x50) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r4, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6) writev(0xffffffffffffffff, &(0x7f00000005c0)=[{&(0x7f0000000000)='U', 0x1}], 0x1) write$binfmt_misc(r4, &(0x7f0000000000), 0xd) 3.764809613s ago: executing program 6 (id=1268): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000280)={0x28, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_STRSET_STRINGSETS={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}]}, @ETHTOOL_A_STRSET_HEADER={0x4}]}, 0x28}}, 0x0) 3.746447293s ago: executing program 1 (id=1269): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000060a0b0400000000000000000200fffe2c0004802800018007000100637400001c0002800800014000000002080002400000001505000300060000000900010073797a30000000000900020073797a32"], 0x80}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) 1.787675983s ago: executing program 6 (id=1270): r0 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000580)=ANY=[@ANYBLOB="4800000010001fff0000056800080000faff0000", @ANYRES32=0x0, @ANYBLOB="c30c424700000000280012800a00010076786c616e00000018000280140010ecec1f4dc45079a41742333877d17b88be", @ANYRES8=0x0, @ANYBLOB="6d64adcf821487bc41da6c3eb03ecd693cc154d2de464db7caf0176593f891949cc3feae837ea43e3fd3a323f6a940208c8104f3296350f0a525218eee46034a4588d0372ffe8d37c9c2838b56267dc71d3c63cd233472f4"], 0x48}, 0x1, 0x0, 0x0, 0x14}, 0x0) mount(0x0, 0x0, 0x0, 0x2080000, 0x0) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt(r1, 0x84, 0x82, 0x0, 0x0) r2 = bpf$MAP_CREATE(0x0, 0x0, 0x50) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x800001000088}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000032680)=""/102400, 0x19000) fanotify_mark(0xffffffffffffffff, 0x1, 0x40001012, 0xffffffffffffffff, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000500)={{r2}, &(0x7f0000000480), &(0x7f00000004c0)}, 0x20) accept4$packet(r0, &(0x7f0000000240)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000280)=0x14, 0x800) mount$bind(0x0, 0x0, 0x0, 0x100000, 0x0) r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000000)={0xffffffffffffffff}, 0x111, 0x4}}, 0x20) write$RDMA_USER_CM_CMD_LISTEN(r4, &(0x7f0000000040)={0x7, 0x8, 0xfa00, {r5, 0x8001}}, 0x10) migrate_pages(0x0, 0x5, &(0x7f0000000380)=0x7, &(0x7f00000003c0)=0x7) r6 = open_tree(0xffffffffffffffff, 0x0, 0x89000) dup(r6) r7 = syz_pidfd_open(0x0, 0x0) setns(r7, 0x24020000) syz_clone3(&(0x7f0000000300)={0x136820100, 0x0, 0x0, 0x0, {0x2c}, 0x0, 0x0, 0x0, 0x0}, 0x58) sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0xac, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x84, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_OFFSET={0x8}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x22}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x7}]}}}, {0x4c, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0x3c, 0x2, 0x0, 0x1, [@NFTA_BITWISE_LEN={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_BITWISE_SREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_BITWISE_DREG={0x8, 0x2, 0x1, 0x0, 0x12}, @NFTA_BITWISE_XOR={0x4}, @NFTA_BITWISE_MASK={0x1c, 0x4, 0x0, 0x1, [@NFTA_DATA_VALUE={0x15, 0x1, "cbcd315b3f7118dc74621a50a14d696c61"}]}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x100}}, 0x0) 1.711829394s ago: executing program 0 (id=1271): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000340)={0x0, 0xcc}, 0x8) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000090000008500000011000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'bridge0\x00', 0x0}) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000001240)=ANY=[@ANYBLOB="400000001000030528bd7000fbdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="15460100ef000000180012800e0001007769726567756172640000000400028008000a00", @ANYRES32=r3, @ANYBLOB="bd334590d348520fd6d0897c5c17c260fe821bb172b4c9956c64d45083da078e79a5e1f44a4ba6fc442666d6645a5d0a6a5fe92020a644e4beb7b1bd37d86240446dd4e7d92e39b6"], 0x40}}, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x0, 0xe, 0x0, &(0x7f0000000300)="0000f1bcd399b81e1011f5aa5e5c", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) socketpair$unix(0x1, 0x3, 0x0, 0x0) setresgid(0xee00, 0xee01, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r5 = syz_open_procfs(0x0, &(0x7f0000000180)='net/ipv6_route\x00') preadv(r5, &(0x7f0000000140)=[{&(0x7f00000001c0)=""/4096, 0x1000}], 0x1, 0x96, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r6 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r6, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r7 = timerfd_create(0x7, 0x0) timerfd_gettime(r7, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x8, 0x17, &(0x7f0000001340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000fc507cb1fcdc798887c9232c6060", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000c3030000000000008500000083000000bf09000000000000b60901000000000065000c000000000018010000646c6c2500000000002020207b92f8ff000000002d9a00000000000037090000f8ffffffb702000008000000b70300000000000015000000060000003d93000000000000b5030000000000008500000000000000b7000000000000009543710000000000"], &(0x7f00000009c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r3, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) syz_clone(0x23802400, 0x0, 0x0, 0x0, 0x0, 0x0) 1.676086665s ago: executing program 6 (id=1272): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, &(0x7f0000000480)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2f, &(0x7f00000004c0)={0x2, {{0x2, 0x0, @multicast2}}, {{0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, 0x108) setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2b, &(0x7f0000000040)={0x2, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @multicast2}}}, 0x108) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000200)={0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="01001000000000005e00000000000000440f704e0d85642e410f2167b930080000b871de0000ba000000000f30"], 0x5e}) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x35, 0x7, 0x10000000000000, 0x180, 0x4, 0x10, 0xf1, 0x0, 0x7fffffffffffe, 0x5, 0x0, 0x9, 0x0, 0x5, 0x0, 0xbdb], 0x1, 0x3c4210}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 1.600112886s ago: executing program 1 (id=1273): bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_ext={0x1c, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x1f075, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x10000}, 0x94) r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$setregs(0xd, r0, 0x80000001, &(0x7f00000003c0)) ptrace$getregset(0x4205, r0, 0x1, &(0x7f0000000080)={0x0}) 1.579357026s ago: executing program 2 (id=1274): socket(0x3, 0x3, 0x6) r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000740)=ANY=[@ANYBLOB="12010000ed3ec908cd0cb300042e010203010902120001000000000904"], 0x0) syz_usb_control_io$uac1(r0, 0x0, 0x0) gettid() openat$kvm(0xffffffffffffff9c, 0x0, 0x400, 0x0) r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2) ioctl$vim2m_VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000040)={0xf0f024}) r2 = syz_open_dev$video(&(0x7f0000000440), 0x8, 0x0) ioctl$VIDIOC_S_SELECTION(r2, 0xc040565f, &(0x7f0000000940)={0xa, 0x0, 0x7, {0x8000, 0x1000, 0x4, 0x86c}}) ioctl$SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, &(0x7f0000000240)={0x100, "062f682569bca16bdc7221b0d41ee11d2f9470012e20f49cb24fac7a3ba1b81b"}) ioctl$vim2m_VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f0000000100)={0x2, @vbi={0x9, 0x7, 0x80000000, 0x34524742, [0x1000, 0x7], [0x9, 0xfff], 0x108}}) 1.491531837s ago: executing program 5 (id=1275): mkdir(&(0x7f0000000000)='./control\x00', 0x0) r0 = open(0x0, 0x0, 0x0) mkdirat(r0, &(0x7f0000000100)='./control\x00', 0x0) r1 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001440), 0x0, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r2}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$IMADDTIMER(r1, 0x80044940, &(0x7f00000000c0)=0x32) semctl$GETPID(0x0, 0x3, 0xb, &(0x7f0000000040)=""/29) r5 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, 0x0) ioctl(r5, 0x8b22, &(0x7f0000000040)) 1.427473818s ago: executing program 1 (id=1276): io_uring_setup(0x1450, &(0x7f0000000180)={0x0, 0x73d5, 0x80, 0x3, 0x1f}) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x1) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400010bce) r0 = syz_open_dev$MSR(&(0x7f0000000380), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(0xffffffffffffffff, 0x7, 0x0, 0x0, 0x0) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000280)={'nr0\x00', @local}) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB="2400000020000103"], 0x24}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0) ioctl$VIDIOC_G_PARM(0xffffffffffffffff, 0xc0cc5615, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000000)=@framed, 0x0}, 0x94) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f0000000000)=[{0x20, 0x0, 0x20, 0xfffff020}, {0x6, 0x0, 0x0, 0x80000000}]}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000280)={0x0, r2, 0x0, 0x14, &(0x7f00000001c0)='\x00'}, 0x11) socket$nl_route(0x10, 0x3, 0x0) setsockopt$XDP_TX_RING(0xffffffffffffffff, 0x11b, 0x3, 0x0, 0x0) r3 = socket(0xa, 0x3, 0x3a) ioctl$SIOCSIFMTU(r3, 0x8922, &(0x7f0000000080)={'veth0_vlan\x00', 0x200}) r4 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7f, 0x2) ioctl$vim2m_VIDIOC_REQBUFS(r4, 0xc0145608, &(0x7f0000000040)={0x80000004, 0x1, 0x4}) r5 = syz_usb_connect$uac1(0x0, 0x71, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000086b1d010140000102030109025f0003010060000904000000"], 0x0) syz_usb_control_io(r5, &(0x7f0000000480)={0x2c, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0xb}}, 0x0, 0x0, 0x0}, 0x0) 961.257595ms ago: executing program 6 (id=1277): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) socket$netlink(0x10, 0x3, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = syz_open_dev$sndpcmc(&(0x7f0000000480), 0x1, 0x0) ioctl$SNDRV_PCM_IOCTL_CHANNEL_INFO(r3, 0x80184132, 0x0) open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x88) r4 = open(0x0, 0x0, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r6 = openat$cgroup_int(r5, &(0x7f0000000100)='blkio.reset_stats\x00', 0x2, 0x0) write$cgroup_int(r6, &(0x7f00000000c0)=0x7, 0x12) fcntl$setlease(r4, 0x400, 0x0) 950.371455ms ago: executing program 1 (id=1278): sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x4000090) bind$alg(0xffffffffffffffff, 0x0, 0x0) r0 = syz_open_dev$ndb(&(0x7f0000002080), 0x0, 0x80083) ioctl$NBD_CLEAR_SOCK(r0, 0x125f) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x400}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000001680)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2843ca8725c9de81}, 0x4000) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(0x0, 0x0, 0x0) io_uring_enter(0xffffffffffffffff, 0xdb4, 0x0, 0x0, 0x0, 0x0) read$msr(r2, &(0x7f0000002000)=""/102400, 0x19000) r3 = fsopen(0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1a00000007"], 0x50) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r4, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6) writev(0xffffffffffffffff, &(0x7f00000005c0)=[{&(0x7f0000000000)='U', 0x1}], 0x1) write$binfmt_misc(r4, &(0x7f0000000000), 0xd) 838.489517ms ago: executing program 0 (id=1279): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, &(0x7f00000002c0)) ioctl$vim2m_VIDIOC_ENUM_FMT(0xffffffffffffffff, 0xc0405602, &(0x7f0000000040)={0x2d, 0x2, 0x1, "0b69e8e1f41910b2eafa4496ba216bc11e00", 0x3132564e}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3) sched_setaffinity(0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) fcntl$getown(0xffffffffffffffff, 0x9) remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000480)=ANY=[@ANYRES32], 0x103) r2 = inotify_init() inotify_add_watch(r2, &(0x7f0000000000)='.\x00', 0x400017e) mkdir(&(0x7f00000020c0)='./file0\x00', 0x0) lsetxattr$system_posix_acl(&(0x7f0000000280)='./file0\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f0000000540)=ANY=[@ANYBLOB="0200"], 0x4, 0x0) 26.080519ms ago: executing program 6 (id=1280): mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x100, 0x0) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000000)={0x18}, 0x18) write$FUSE_DIRENTPLUS(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0) mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',dfltuid=']) 25.510489ms ago: executing program 5 (id=1281): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x0, {{@in6=@dev={0xfe, 0x80, '\x00', 0x3b}, @in6=@local, 0x0, 0x0, 0x0, 0xc9c, 0xa, 0x60, 0x30, 0x0, 0x0, 0xee01}, {0x0, 0x7f, 0x7, 0x0, 0x0, 0xfffffffffffffffd, 0x5, 0xffffffffffffffff}, {0xffffffff, 0x0, 0x0, 0x6}, 0x0, 0x0, 0x1, 0x0, 0x2}}, 0xb8}, 0x1, 0x0, 0x0, 0x90}, 0x0) setsockopt$inet6_int(r0, 0x29, 0x2, &(0x7f00000001c0)=0x7, 0x4) getsockopt$inet6_buf(r0, 0x29, 0x6, &(0x7f0000000300)=""/29, &(0x7f0000000240)=0x1d) syz_emit_ethernet(0x3b6, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)) sendmmsg(r0, &(0x7f0000000940), 0x0, 0x20040010) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[], 0x50}}, 0x4000000) sendto$inet6(r0, &(0x7f0000000040)="eca727e4a7d0dacebece68d033d58d05dede71cd8afe590897aa78ccb16ced4442e5718559a35326b93d5b8d6f99019c853ad34b8255226e135cdf5de5b00bc2a13edb6103fb5a8fabb4daa9f5d61ce0899fa0556cb837e776fc10f55abb4897c3b98af3a565c0b899a0346f2102ec0d44054410ed5fc07e11d0df271c64d273db575b7642f1d1818ee61021b9eb894324643940b2f4c544edc0ea0bb3aa79dea2b8220a0f1c117dc748c628ceadd8138de9858e057bd39716a264aaac576a10f5143b31839d163794b5db767e199d5d728d", 0xd2, 0x800, &(0x7f0000000140)={0xa, 0x4e23, 0x6, @private0, 0x74}, 0x1c) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000c40)='./cgroup/syz1\x00', 0x200002, 0x0) r3 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r3, &(0x7f0000000380)={0x2, 0x4e22, @empty}, 0x10) r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) bind$ax25(r5, &(0x7f0000000100)={{0x3, @default, 0x1}, [@null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null]}, 0x48) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) setsockopt$ax25_SO_BINDTODEVICE(r5, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0xe5a01e6e238456fc) ioctl$sock_netdev_private(r4, 0x8914, &(0x7f0000000000)) 0s ago: executing program 0 (id=1282): renameat2(0xffffffffffffffff, &(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0xffffffffffffffff, 0x0, 0x4) sendmsg$IPSET_CMD_RENAME(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000100)=ANY=[@ANYBLOB="200000000506010200000000000000000a000001"], 0x20}, 0x1, 0x0, 0x0, 0x20004010}, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r1 = socket$igmp6(0xa, 0x3, 0x2) r2 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000300)={0x0, 'syzkaller1\x00'}) write$tun(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="06000000bbbbbbbbbbbbaaaaaaaaaabb88f5"], 0x72) kernel console output (not intermixed with test programs): " sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 177.084992][ C0] vkms_vblank_simulate: vblank timer overrun [ 177.155565][ T5516] binder: 5515:5516 ioctl c0306201 0 returned -14 [ 178.374794][ T26] audit: type=1326 audit(1751482730.092:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5496 comm="syz.2.336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 178.398675][ T26] audit: type=1326 audit(1751482730.092:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5496 comm="syz.2.336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 179.232852][ T26] audit: type=1326 audit(1751482730.092:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5496 comm="syz.2.336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 179.263165][ T4224] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 179.284051][ T26] audit: type=1326 audit(1751482730.092:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5496 comm="syz.2.336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 179.606941][ T26] audit: type=1326 audit(1751482730.092:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5496 comm="syz.2.336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 179.722969][ T4224] usb 2-1: Using ep0 maxpacket: 8 [ 179.834876][ T26] audit: type=1326 audit(1751482730.112:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5508 comm="syz.2.336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fac62a661e5 code=0x7ffc0000 [ 179.859807][ T26] audit: type=1326 audit(1751482730.122:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5496 comm="syz.2.336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 180.117855][ T4224] usb 2-1: device descriptor read/all, error -71 [ 180.725201][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 180.725215][ T26] audit: type=1326 audit(1751482735.152:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5547 comm="syz.2.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 180.767171][ T5556] netlink: 8 bytes leftover after parsing attributes in process `syz.3.349'. [ 181.978773][ T26] audit: type=1326 audit(1751482735.862:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5547 comm="syz.2.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 182.002815][ T26] audit: type=1326 audit(1751482735.862:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5547 comm="syz.2.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 182.025387][ T26] audit: type=1326 audit(1751482735.862:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5547 comm="syz.2.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 182.083259][ T26] audit: type=1326 audit(1751482735.862:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5547 comm="syz.2.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 182.107284][ T26] audit: type=1326 audit(1751482735.862:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5547 comm="syz.2.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 182.130203][ T26] audit: type=1326 audit(1751482735.862:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5547 comm="syz.2.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 182.153458][ T26] audit: type=1326 audit(1751482735.862:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5547 comm="syz.2.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 182.265841][ T26] audit: type=1326 audit(1751482735.882:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5560 comm="syz.2.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fac62a661e5 code=0x7ffc0000 [ 182.322913][ T26] audit: type=1326 audit(1751482735.882:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5547 comm="syz.2.351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 183.989980][ T5588] netlink: 8 bytes leftover after parsing attributes in process `syz.1.352'. [ 184.022976][ T4224] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 184.247775][ T5597] netlink: 12 bytes leftover after parsing attributes in process `syz.0.360'. [ 184.472802][ T4224] usb 4-1: Using ep0 maxpacket: 32 [ 185.572994][ T4224] usb 4-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f [ 186.250669][ T4224] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 186.389944][ T4224] usb 4-1: Product: syz [ 186.394329][ T4224] usb 4-1: Manufacturer: syz [ 186.401956][ T4224] usb 4-1: SerialNumber: syz [ 186.415923][ T4224] usb 4-1: config 0 descriptor?? [ 186.473029][ T4224] usb 4-1: can't set config #0, error -71 [ 187.202365][ T4224] usb 4-1: USB disconnect, device number 6 [ 187.484761][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 187.484803][ T26] audit: type=1326 audit(1751482741.912:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5623 comm="syz.1.370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 189.166167][ T26] audit: type=1326 audit(1751482741.942:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5623 comm="syz.1.370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 189.189363][ T26] audit: type=1326 audit(1751482741.942:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5623 comm="syz.1.370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 189.212662][ T26] audit: type=1326 audit(1751482741.942:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5623 comm="syz.1.370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 189.235209][ T26] audit: type=1326 audit(1751482741.942:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5623 comm="syz.1.370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 189.258006][ T26] audit: type=1326 audit(1751482741.942:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5623 comm="syz.1.370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 189.296876][ T26] audit: type=1326 audit(1751482741.942:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5623 comm="syz.1.370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 189.319277][ T26] audit: type=1326 audit(1751482741.942:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5623 comm="syz.1.370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 189.419087][ T5639] netlink: 132 bytes leftover after parsing attributes in process `syz.4.373'. [ 189.533926][ T5639] device bridge1 entered promiscuous mode [ 189.536173][ T26] audit: type=1326 audit(1751482741.962:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5634 comm="syz.1.370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f5c3a2121e5 code=0x7ffc0000 [ 189.856135][ T1111] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 189.909461][ T1111] Bluetooth: hci0: Injecting HCI hardware error event [ 189.919603][ T26] audit: type=1326 audit(1751482741.962:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5623 comm="syz.1.370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 189.954229][ T4178] Bluetooth: hci0: hardware error 0x00 [ 190.251027][ T5645] netlink: 12 bytes leftover after parsing attributes in process `syz.0.375'. [ 192.027305][ T5662] device ip6tnl1 entered promiscuous mode [ 192.257181][ T5669] overlayfs: "xino" feature enabled using 2 upper inode bits. [ 194.153682][ T1420] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.160106][ T1420] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.032780][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 195.032815][ T26] audit: type=1326 audit(1751482749.442:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5680 comm="syz.2.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 195.758256][ T26] audit: type=1326 audit(1751482749.452:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5680 comm="syz.2.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 195.810325][ T26] audit: type=1326 audit(1751482749.452:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5680 comm="syz.2.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 196.790676][ T26] audit: type=1326 audit(1751482749.492:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5680 comm="syz.2.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 201.063101][ T21] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 201.350804][ T26] audit: type=1326 audit(1751482755.772:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5751 comm="syz.2.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 201.373667][ T21] usb 1-1: Using ep0 maxpacket: 8 [ 201.495517][ T21] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 202.536820][ T21] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 202.619658][ T26] audit: type=1326 audit(1751482755.802:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5751 comm="syz.2.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 202.674292][ T21] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 202.778028][ T21] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 202.889963][ T26] audit: type=1326 audit(1751482755.802:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5751 comm="syz.2.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 202.959428][ T21] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 203.075277][ T21] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 203.161323][ T26] audit: type=1326 audit(1751482755.812:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5751 comm="syz.2.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 203.459393][ T26] audit: type=1326 audit(1751482755.812:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5751 comm="syz.2.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 203.493564][ T21] usb 1-1: can't set config #16, error -71 [ 203.549121][ T21] usb 1-1: USB disconnect, device number 4 [ 203.858192][ T26] audit: type=1326 audit(1751482755.812:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5751 comm="syz.2.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 204.074234][ T26] audit: type=1326 audit(1751482755.812:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5751 comm="syz.2.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 204.667808][ T26] audit: type=1326 audit(1751482755.812:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5751 comm="syz.2.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 204.768180][ T26] audit: type=1326 audit(1751482755.832:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5758 comm="syz.2.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fac62a661e5 code=0x7ffc0000 [ 204.887849][ T26] audit: type=1326 audit(1751482755.832:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5751 comm="syz.2.407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 209.023481][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 209.023641][ T26] audit: type=1326 audit(1751482763.442:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5808 comm="syz.1.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 209.453339][ T26] audit: type=1326 audit(1751482763.482:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5808 comm="syz.1.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 209.476171][ T26] audit: type=1326 audit(1751482763.482:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5808 comm="syz.1.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 209.500216][ T26] audit: type=1326 audit(1751482763.482:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5808 comm="syz.1.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 209.522977][ T26] audit: type=1326 audit(1751482763.482:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5808 comm="syz.1.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 209.549353][ T26] audit: type=1326 audit(1751482763.482:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5808 comm="syz.1.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 209.572676][ T26] audit: type=1326 audit(1751482763.492:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5808 comm="syz.1.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 209.595357][ T26] audit: type=1326 audit(1751482763.492:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5808 comm="syz.1.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 209.617902][ T26] audit: type=1326 audit(1751482763.532:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5818 comm="syz.1.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f5c3a2121e5 code=0x7ffc0000 [ 209.640521][ T26] audit: type=1326 audit(1751482763.532:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5808 comm="syz.1.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 209.734487][ T5807] syz.3.423 sent an empty control message without MSG_MORE. [ 214.422846][ T4215] usb 2-1: new full-speed USB device number 6 using dummy_hcd [ 215.433009][ T4215] usb 2-1: config 8 has an invalid interface number: 223 but max is 0 [ 215.441208][ T4215] usb 2-1: config 8 contains an unexpected descriptor of type 0x1, skipping [ 215.470443][ T4215] usb 2-1: config 8 has an invalid descriptor of length 101, skipping remainder of the config [ 215.511551][ T4215] usb 2-1: config 8 has no interface number 0 [ 215.534723][ T4215] usb 2-1: config 8 interface 223 altsetting 0 endpoint 0x7 has invalid maxpacket 15872, setting to 64 [ 215.571077][ T4215] usb 2-1: config 8 interface 223 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 215.774238][ T4215] usb 2-1: New USB device found, idVendor=a6da, idProduct=7458, bcdDevice=2d.4d [ 215.803829][ T4215] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 215.832818][ T4215] usb 2-1: Product: syz [ 215.837119][ T4215] usb 2-1: Manufacturer: syz [ 215.841982][ T4215] usb 2-1: SerialNumber: syz [ 216.182889][ T4215] usb 2-1: can't set config #8, error -71 [ 216.234078][ T4215] usb 2-1: USB disconnect, device number 6 [ 220.019699][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 220.019740][ T26] audit: type=1326 audit(1751482774.442:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5915 comm="syz.0.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 220.182329][ T26] audit: type=1326 audit(1751482774.472:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5915 comm="syz.0.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 220.322918][ T26] audit: type=1326 audit(1751482774.472:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5915 comm="syz.0.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 220.490087][ T26] audit: type=1326 audit(1751482774.472:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5915 comm="syz.0.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 220.703926][ T26] audit: type=1326 audit(1751482774.472:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5915 comm="syz.0.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 221.213714][ T26] audit: type=1326 audit(1751482774.482:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5915 comm="syz.0.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 221.709809][ T26] audit: type=1326 audit(1751482774.482:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5915 comm="syz.0.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 221.738376][ T4210] Bluetooth: hci5: command 0x0409 tx timeout [ 221.923203][ T26] audit: type=1326 audit(1751482774.482:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5915 comm="syz.0.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 221.946168][ T26] audit: type=1326 audit(1751482774.502:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5920 comm="syz.0.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f83d4a521e5 code=0x7ffc0000 [ 221.983083][ T26] audit: type=1326 audit(1751482774.502:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5915 comm="syz.0.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 223.972039][ T5760] bond0: (slave syz_tun): Releasing backup interface [ 224.159733][ T4397] Bluetooth: hci5: command 0x041b tx timeout [ 224.277452][ T5912] chnl_net:caif_netlink_parms(): no params data found [ 224.910217][ T5912] bridge0: port 1(bridge_slave_0) entered blocking state [ 224.927069][ T5912] bridge0: port 1(bridge_slave_0) entered disabled state [ 225.031705][ T5912] device bridge_slave_0 entered promiscuous mode [ 225.044622][ T5912] bridge0: port 2(bridge_slave_1) entered blocking state [ 225.052083][ T5912] bridge0: port 2(bridge_slave_1) entered disabled state [ 225.491787][ T5912] device bridge_slave_1 entered promiscuous mode [ 226.212991][ T4210] Bluetooth: hci5: command 0x040f tx timeout [ 226.258005][ T5912] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 226.447059][ T5912] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 226.572212][ T5912] team0: Port device team_slave_0 added [ 226.744106][ T5912] team0: Port device team_slave_1 added [ 227.053343][ T4210] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 227.333274][ T4210] usb 1-1: Using ep0 maxpacket: 8 [ 227.452668][ T5912] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 227.493060][ T4210] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 227.533767][ T4210] usb 1-1: config 0 interface 0 altsetting 252 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 227.546900][ T5912] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 227.611896][ T4210] usb 1-1: config 0 interface 0 altsetting 252 endpoint 0x81 has invalid wMaxPacketSize 0 [ 227.652621][ T4210] usb 1-1: config 0 interface 0 altsetting 252 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 227.686199][ T5912] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 227.739275][ T4210] usb 1-1: config 0 interface 0 has no altsetting 0 [ 227.772843][ T4210] usb 1-1: New USB device found, idVendor=1e7d, idProduct=3232, bcdDevice= 0.00 [ 227.784995][ T5912] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 227.812811][ T5912] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 227.849344][ T4210] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 227.889071][ T4210] usb 1-1: config 0 descriptor?? [ 227.898785][ T5912] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 228.074954][ T5912] device hsr_slave_0 entered promiscuous mode [ 228.083515][ T5912] device hsr_slave_1 entered promiscuous mode [ 228.090187][ T5912] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 228.098919][ T5912] Cannot create hsr debugfs directory [ 228.259716][ T5987] chnl_net:caif_netlink_parms(): no params data found [ 228.273991][ T4175] syz-executor (4175) used greatest stack depth: 20320 bytes left [ 228.283032][ T4287] Bluetooth: hci5: command 0x0419 tx timeout [ 228.370478][ T4210] ryos 0003:1E7D:3232.0003: hidraw0: USB HID vff.ff Device [HID 1e7d:3232] on usb-dummy_hcd.0-1/input0 [ 228.488153][ T5912] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 228.501931][ T5987] bridge0: port 1(bridge_slave_0) entered blocking state [ 228.512891][ T5987] bridge0: port 1(bridge_slave_0) entered disabled state [ 228.521225][ T5987] device bridge_slave_0 entered promiscuous mode [ 228.530813][ T5912] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 228.543113][ T5987] bridge0: port 2(bridge_slave_1) entered blocking state [ 228.550183][ T5987] bridge0: port 2(bridge_slave_1) entered disabled state [ 228.606309][ T5987] device bridge_slave_1 entered promiscuous mode [ 228.723666][ T5912] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 228.747791][ T5912] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 228.772491][ T4287] Bluetooth: hci0: command 0x0409 tx timeout [ 228.789738][ T5993] netlink: 40 bytes leftover after parsing attributes in process `syz.0.475'. [ 228.807130][ T4210] usb 1-1: USB disconnect, device number 5 [ 228.831826][ T5987] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 228.882638][ T5987] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 229.482154][ T5987] team0: Port device team_slave_0 added [ 229.490527][ T5987] team0: Port device team_slave_1 added [ 229.692341][ T5987] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 229.727175][ T5987] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 229.753090][ C1] vkms_vblank_simulate: vblank timer overrun [ 229.872379][ T5987] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 230.553355][ T5912] 8021q: adding VLAN 0 to HW filter on device bond0 [ 230.866290][ T5987] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 230.874279][ T5987] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 230.902867][ T5987] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 231.081972][ T4479] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 231.114061][ T4479] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 231.157824][ T4210] Bluetooth: hci0: command 0x041b tx timeout [ 231.174553][ T5912] 8021q: adding VLAN 0 to HW filter on device team0 [ 231.332470][ T5987] device hsr_slave_0 entered promiscuous mode [ 231.378696][ T5987] device hsr_slave_1 entered promiscuous mode [ 231.416067][ T5987] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 231.453833][ T5987] Cannot create hsr debugfs directory [ 231.673927][ T4479] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 231.689974][ T4479] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 231.721896][ T4479] bridge0: port 1(bridge_slave_0) entered blocking state [ 231.729068][ T4479] bridge0: port 1(bridge_slave_0) entered forwarding state [ 231.794206][ T4479] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 231.829030][ T4479] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 231.838983][ T4479] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 231.847836][ T4479] bridge0: port 2(bridge_slave_1) entered blocking state [ 231.854958][ T4479] bridge0: port 2(bridge_slave_1) entered forwarding state [ 231.868578][ T4479] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 231.878677][ T4479] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 231.962621][ T4434] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 231.981703][ T4434] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 231.993452][ T4434] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 232.004451][ T4434] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 232.027317][ T4434] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 232.039974][ T4434] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 232.051014][ T4434] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 232.115746][ T5912] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 232.148760][ T5912] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 232.174236][ T4285] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 232.196127][ T4285] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 232.497991][ T856] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 233.243195][ T4245] Bluetooth: hci0: command 0x040f tx timeout [ 233.260224][ T856] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 233.807579][ T856] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 234.303481][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 234.314411][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 234.348095][ T5912] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 234.371316][ T856] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 234.686815][ T856] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 234.781343][ T856] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 234.895651][ T856] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 234.988965][ T4285] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 235.016693][ T4285] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 235.065717][ T856] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 235.108881][ T4285] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 235.127732][ T4285] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 235.176045][ T5912] device veth0_vlan entered promiscuous mode [ 235.194282][ T4285] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 235.214722][ T4285] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 235.240514][ T5912] device veth1_vlan entered promiscuous mode [ 235.323419][ T4321] Bluetooth: hci0: command 0x0419 tx timeout [ 235.397140][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 235.416111][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 235.444006][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 235.468410][ T4477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 235.524240][ T5912] device veth0_macvtap entered promiscuous mode [ 235.578025][ T5912] device veth1_macvtap entered promiscuous mode [ 235.662630][ T5987] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 235.731064][ T6145] netlink: 168 bytes leftover after parsing attributes in process `syz.2.506'. [ 236.432151][ T5987] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 236.441673][ T5987] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 236.469335][ T5987] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 236.540262][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 236.636024][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 237.569985][ T5912] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 237.593953][ T5912] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.607186][ T5912] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 237.624848][ T5912] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.635366][ T5912] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 237.649918][ T5912] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.670574][ T5912] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 237.682147][ T5912] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.699644][ T5912] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 237.711769][ T5912] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.730565][ T5912] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 237.743009][ T5912] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 237.815926][ T5912] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 238.156030][ T5912] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 238.191682][ T5912] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 238.231792][ T5912] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 238.247324][ T5912] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 238.257387][ T5912] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 238.268064][ T5912] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 238.277999][ T5912] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 238.289474][ T5912] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 238.301029][ T5912] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 238.315414][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 238.347474][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 238.367107][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 238.383469][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 238.405100][ T5912] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 238.414487][ T5912] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 238.423295][ T5912] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 238.432692][ T5912] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 239.042987][ T4319] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 239.179685][ T4319] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 239.494856][ T5987] 8021q: adding VLAN 0 to HW filter on device bond0 [ 239.512451][ T5987] 8021q: adding VLAN 0 to HW filter on device team0 [ 239.627847][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 239.663483][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 239.800033][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 239.827266][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 239.842401][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 240.076986][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 240.077077][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 240.078589][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 240.080669][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 240.082141][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 240.082177][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 240.083788][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 240.086707][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 240.089820][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 240.093355][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 240.096458][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 240.101289][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 240.104996][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 240.107862][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 240.110717][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 240.112635][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 240.958479][ T4285] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 240.969780][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 240.998814][ T4285] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 241.000476][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 241.022818][ T4321] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 241.029664][ T5987] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 241.072547][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 242.103090][ T4321] usb 2-1: config 0 has no interfaces? [ 242.194849][ T4321] usb 2-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 242.213761][ T4321] usb 2-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 242.790435][ T4321] usb 2-1: Manufacturer: syz [ 242.796910][ T4321] usb 2-1: config 0 descriptor?? [ 242.885556][ T5987] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 242.909868][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 242.938322][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 245.093727][ T5340] usb 2-1: USB disconnect, device number 7 [ 245.389674][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 245.389723][ T26] audit: type=1326 audit(1751482799.812:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6276 comm="syz.1.535" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x0 [ 245.480353][ T6283] netlink: 48 bytes leftover after parsing attributes in process `syz.1.535'. [ 247.071060][ T856] device hsr_slave_0 left promiscuous mode [ 247.092425][ T856] device hsr_slave_1 left promiscuous mode [ 247.132948][ T856] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 247.141348][ T856] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 247.343121][ T856] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 247.350569][ T856] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 247.650074][ T856] device bridge_slave_1 left promiscuous mode [ 247.671192][ T856] bridge0: port 2(bridge_slave_1) entered disabled state [ 247.720653][ T856] device bridge_slave_0 left promiscuous mode [ 247.734619][ T856] bridge0: port 1(bridge_slave_0) entered disabled state [ 247.808908][ T856] device hsr_slave_0 left promiscuous mode [ 247.832055][ T856] device hsr_slave_1 left promiscuous mode [ 247.839291][ T856] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 247.847979][ T856] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 247.863967][ T856] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 247.871399][ T856] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 247.879876][ T856] device bridge_slave_1 left promiscuous mode [ 247.888726][ T856] bridge0: port 2(bridge_slave_1) entered disabled state [ 247.899876][ T856] device bridge_slave_0 left promiscuous mode [ 247.909367][ T856] bridge0: port 1(bridge_slave_0) entered disabled state [ 247.928700][ T856] device veth1_macvtap left promiscuous mode [ 247.935293][ T856] device veth0_macvtap left promiscuous mode [ 247.941447][ T856] device veth1_vlan left promiscuous mode [ 247.948577][ T856] device veth0_vlan left promiscuous mode [ 247.970461][ T856] device veth1_macvtap left promiscuous mode [ 247.984131][ T856] device veth0_macvtap left promiscuous mode [ 247.990476][ T856] device veth1_vlan left promiscuous mode [ 248.005901][ T856] device veth0_vlan left promiscuous mode [ 250.225761][ T856] team0 (unregistering): Port device team_slave_1 removed [ 250.242058][ T856] team0 (unregistering): Port device team_slave_0 removed [ 250.259354][ T856] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 250.277839][ T856] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 250.511692][ T856] bond0 (unregistering): Released all slaves [ 251.436252][ T856] team0 (unregistering): Port device team_slave_1 removed [ 251.472289][ T856] team0 (unregistering): Port device team_slave_0 removed [ 251.515812][ T856] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 251.533174][ T856] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 251.598357][ T6350] netlink: 8 bytes leftover after parsing attributes in process `syz.0.552'. [ 251.721279][ T856] bond0 (unregistering): Released all slaves [ 251.868932][ T6302] device syzkaller0 entered promiscuous mode [ 252.100597][ T26] audit: type=1326 audit(1751482806.522:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6355 comm="syz.5.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 252.210723][ T4283] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 252.267078][ T4283] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 252.443472][ T26] audit: type=1326 audit(1751482806.552:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6355 comm="syz.5.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 253.248918][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 253.320053][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 253.383891][ T26] audit: type=1326 audit(1751482806.552:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6355 comm="syz.5.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 253.495149][ T5987] device veth0_vlan entered promiscuous mode [ 253.501899][ T26] audit: type=1326 audit(1751482806.552:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6355 comm="syz.5.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 253.524223][ T26] audit: type=1326 audit(1751482806.552:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6355 comm="syz.5.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 253.546784][ T26] audit: type=1326 audit(1751482806.552:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6355 comm="syz.5.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 253.563884][ T5987] device veth1_vlan entered promiscuous mode [ 253.569596][ T26] audit: type=1326 audit(1751482806.552:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6355 comm="syz.5.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 253.645286][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 253.668465][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 253.776517][ T26] audit: type=1326 audit(1751482806.552:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6355 comm="syz.5.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 253.843743][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 253.887260][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 253.895514][ T26] audit: type=1326 audit(1751482806.572:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6361 comm="syz.5.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdb9ada91e5 code=0x7ffc0000 [ 253.936266][ T5987] device veth0_macvtap entered promiscuous mode [ 253.977356][ T5987] device veth1_macvtap entered promiscuous mode [ 253.999572][ T26] audit: type=1326 audit(1751482806.572:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6355 comm="syz.5.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 254.063658][ T5987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 254.093428][ T5987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 254.122907][ T5987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 254.165650][ T5987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 254.190908][ T5987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 254.203987][ T6379] 9pnet: Insufficient options for proto=fd [ 254.233201][ T5987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 254.263735][ T5987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 254.310494][ T5987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 254.359264][ T5987] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 254.384460][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 254.413343][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 254.463391][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 254.494295][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 254.532996][ T5987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 254.556894][ T5987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 254.614443][ T5987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 254.662751][ T5987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 254.672587][ T5987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 254.732816][ T5987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 254.742664][ T5987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 254.785087][ T5987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 254.824077][ T5987] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 254.842284][ T4434] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 254.867134][ T4434] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 254.956169][ T5987] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 254.986772][ T5987] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 255.027002][ T5987] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 255.233041][ T5987] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 255.565962][ T1420] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.572257][ T1420] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.611992][ T4286] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 255.643398][ T4286] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 255.696495][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 255.704692][ T4319] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 255.730251][ T4319] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 255.776717][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 258.249103][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 258.249144][ T26] audit: type=1326 audit(1751482812.672:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6429 comm="syz.6.566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 258.643560][ T26] audit: type=1326 audit(1751482812.702:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6429 comm="syz.6.566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 258.941396][ T26] audit: type=1326 audit(1751482812.702:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6429 comm="syz.6.566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 258.965157][ T26] audit: type=1326 audit(1751482812.702:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6429 comm="syz.6.566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 258.991255][ T26] audit: type=1326 audit(1751482812.702:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6429 comm="syz.6.566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 259.014661][ T26] audit: type=1326 audit(1751482812.712:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6429 comm="syz.6.566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 259.037021][ T26] audit: type=1326 audit(1751482812.712:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6429 comm="syz.6.566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 259.059418][ T26] audit: type=1326 audit(1751482812.712:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6429 comm="syz.6.566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 259.083011][ T26] audit: type=1326 audit(1751482812.732:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6439 comm="syz.6.566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f9bcf9991e5 code=0x7ffc0000 [ 259.118894][ T26] audit: type=1326 audit(1751482812.732:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6429 comm="syz.6.566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 259.578493][ T6456] netlink: 8 bytes leftover after parsing attributes in process `syz.6.568'. [ 259.587916][ T6458] 9pnet: Insufficient options for proto=fd [ 264.412077][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 264.412118][ T26] audit: type=1326 audit(1751482818.832:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6509 comm="syz.1.580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 264.813996][ T26] audit: type=1326 audit(1751482818.872:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6509 comm="syz.1.580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 265.030659][ T26] audit: type=1326 audit(1751482818.872:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6509 comm="syz.1.580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 265.774904][ T26] audit: type=1326 audit(1751482818.872:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6509 comm="syz.1.580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 266.079184][ T26] audit: type=1326 audit(1751482818.872:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6509 comm="syz.1.580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 266.426346][ T26] audit: type=1326 audit(1751482818.872:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6509 comm="syz.1.580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 266.536327][ T26] audit: type=1326 audit(1751482818.872:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6509 comm="syz.1.580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 266.558604][ T26] audit: type=1326 audit(1751482818.872:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6509 comm="syz.1.580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 266.580791][ T26] audit: type=1326 audit(1751482818.892:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6520 comm="syz.1.580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f5c3a2121e5 code=0x7ffc0000 [ 266.650560][ T26] audit: type=1326 audit(1751482818.892:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6509 comm="syz.1.580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 266.675401][ T6530] netlink: 'syz.6.582': attribute type 10 has an invalid length. [ 266.846818][ T6530] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 270.682835][ T4245] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 271.314024][ T6576] mkiss: ax0: crc mode is auto. [ 272.260110][ T6587] erofs: (device nbd5): erofs_read_superblock: cannot find valid erofs superblock [ 272.911189][ T4245] usb 3-1: Using ep0 maxpacket: 32 [ 273.402884][ T4245] usb 3-1: device descriptor read/all, error -71 [ 275.195284][ T6618] netlink: 12 bytes leftover after parsing attributes in process `syz.6.601'. [ 275.254520][ T6622] netlink: 12 bytes leftover after parsing attributes in process `syz.0.604'. [ 275.544225][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 275.544265][ T26] audit: type=1326 audit(1751482829.972:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6623 comm="syz.1.606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 276.033194][ T26] audit: type=1326 audit(1751482830.002:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6623 comm="syz.1.606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 276.179887][ T26] audit: type=1326 audit(1751482830.002:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6623 comm="syz.1.606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 276.252933][ T26] audit: type=1326 audit(1751482830.002:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6623 comm="syz.1.606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 276.275992][ T26] audit: type=1326 audit(1751482830.002:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6623 comm="syz.1.606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 276.426816][ T26] audit: type=1326 audit(1751482830.002:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6623 comm="syz.1.606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 276.458291][ T6639] netlink: 8 bytes leftover after parsing attributes in process `syz.0.608'. [ 276.482793][ T26] audit: type=1326 audit(1751482830.002:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6623 comm="syz.1.606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 276.511613][ T26] audit: type=1326 audit(1751482830.002:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6623 comm="syz.1.606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 276.558352][ T26] audit: type=1326 audit(1751482830.022:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6634 comm="syz.1.606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f5c3a2121e5 code=0x7ffc0000 [ 276.609803][ T26] audit: type=1326 audit(1751482830.022:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6623 comm="syz.1.606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 277.947707][ T6654] process '/newroot/131/file0' started with executable stack [ 278.769775][ T6680] 9pnet: Insufficient options for proto=fd [ 280.056152][ T6696] netlink: 8 bytes leftover after parsing attributes in process `syz.6.619'. [ 280.185487][ T6704] netlink: 12 bytes leftover after parsing attributes in process `syz.6.620'. [ 281.527036][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 281.527050][ T26] audit: type=1326 audit(1751482835.952:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6714 comm="syz.2.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 281.973475][ T26] audit: type=1326 audit(1751482835.982:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6714 comm="syz.2.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 282.373075][ T26] audit: type=1326 audit(1751482835.992:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6714 comm="syz.2.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 282.395770][ T26] audit: type=1326 audit(1751482835.992:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6714 comm="syz.2.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 282.422892][ T26] audit: type=1326 audit(1751482835.992:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6714 comm="syz.2.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 282.468998][ T26] audit: type=1326 audit(1751482835.992:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6714 comm="syz.2.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 282.874758][ T26] audit: type=1326 audit(1751482835.992:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6714 comm="syz.2.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 282.982892][ T26] audit: type=1326 audit(1751482835.992:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6714 comm="syz.2.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 283.133263][ T26] audit: type=1326 audit(1751482836.012:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6724 comm="syz.2.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fac62a661e5 code=0x7ffc0000 [ 283.332969][ T26] audit: type=1326 audit(1751482836.012:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6714 comm="syz.2.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 284.323838][ T6754] netlink: 8 bytes leftover after parsing attributes in process `syz.0.631'. [ 284.451465][ T6759] netlink: 12 bytes leftover after parsing attributes in process `syz.0.634'. [ 284.653978][ T6773] netlink: 12 bytes leftover after parsing attributes in process `syz.2.630'. [ 285.762878][ T4178] Bluetooth: hci0: unexpected event for opcode 0x200e [ 286.594145][ T26] kauditd_printk_skb: 13 callbacks suppressed [ 286.594186][ T26] audit: type=1326 audit(1751482841.022:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6803 comm="syz.6.640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 289.893483][ T4210] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 289.911387][ T4210] Bluetooth: hci0: Injecting HCI hardware error event [ 289.918684][ T4181] Bluetooth: hci0: hardware error 0x00 [ 290.006757][ T6838] netlink: 8 bytes leftover after parsing attributes in process `syz.6.645'. [ 290.768074][ T6853] 9pnet: Insufficient options for proto=fd [ 291.642847][ T4178] Bluetooth: hci0: unexpected event for opcode 0x200e [ 293.966142][ T26] audit: type=1326 audit(1751482848.392:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6866 comm="syz.5.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 294.058127][ T26] audit: type=1326 audit(1751482848.392:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6866 comm="syz.5.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 294.205187][ T26] audit: type=1326 audit(1751482848.432:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6866 comm="syz.5.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 294.607935][ T26] audit: type=1326 audit(1751482848.432:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6866 comm="syz.5.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 294.638735][ T26] audit: type=1326 audit(1751482848.432:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6866 comm="syz.5.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 294.662543][ T26] audit: type=1326 audit(1751482848.432:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6866 comm="syz.5.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 294.685703][ T26] audit: type=1326 audit(1751482848.432:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6866 comm="syz.5.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 294.709347][ T26] audit: type=1326 audit(1751482848.432:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6866 comm="syz.5.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 294.789348][ T6893] netlink: 12 bytes leftover after parsing attributes in process `syz.6.656'. [ 294.962812][ T26] audit: type=1326 audit(1751482848.432:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6866 comm="syz.5.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 295.346080][ T26] audit: type=1326 audit(1751482848.432:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6866 comm="syz.5.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 295.986588][ T6905] netlink: 8 bytes leftover after parsing attributes in process `syz.0.660'. [ 299.898793][ T26] kauditd_printk_skb: 6 callbacks suppressed [ 299.898807][ T26] audit: type=1326 audit(1751482854.322:255): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=6952 comm="syz.2.670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 300.744010][ T26] audit: type=1326 audit(1751482854.322:256): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=6952 comm="syz.2.670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 300.807579][ T26] audit: type=1326 audit(1751482855.112:257): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=6952 comm="syz.2.670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 300.906951][ T26] audit: type=1326 audit(1751482855.112:258): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=6952 comm="syz.2.670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 301.147453][ T26] audit: type=1326 audit(1751482855.112:259): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=6952 comm="syz.2.670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 301.216021][ T26] audit: type=1326 audit(1751482855.142:260): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=6952 comm="syz.2.670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 301.248736][ T6980] netlink: 8 bytes leftover after parsing attributes in process `syz.2.675'. [ 301.308839][ T26] audit: type=1326 audit(1751482855.142:261): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=6952 comm="syz.2.670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 301.497802][ T26] audit: type=1326 audit(1751482855.142:262): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=6952 comm="syz.2.670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 301.593016][ T26] audit: type=1326 audit(1751482855.142:263): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=6952 comm="syz.2.670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 301.736452][ T26] audit: type=1326 audit(1751482855.142:264): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=6952 comm="syz.2.670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 304.914548][ T26] kauditd_printk_skb: 18 callbacks suppressed [ 304.914594][ T26] audit: type=1326 audit(1751482859.332:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7024 comm="syz.5.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 305.588889][ T7034] netlink: 12 bytes leftover after parsing attributes in process `syz.1.686'. [ 305.884360][ T7039] netlink: 8 bytes leftover after parsing attributes in process `syz.5.689'. [ 309.308540][ T7095] overlayfs: failed to resolve './file0': -2 [ 309.730965][ T26] audit: type=1326 audit(1751482864.152:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7098 comm="syz.2.700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 310.027156][ T26] audit: type=1326 audit(1751482864.182:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7098 comm="syz.2.700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 310.361727][ T26] audit: type=1326 audit(1751482864.182:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7098 comm="syz.2.700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 310.427929][ T26] audit: type=1326 audit(1751482864.192:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7098 comm="syz.2.700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 310.450333][ T26] audit: type=1326 audit(1751482864.192:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7098 comm="syz.2.700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 310.473044][ T26] audit: type=1326 audit(1751482864.192:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7098 comm="syz.2.700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 310.495450][ T26] audit: type=1326 audit(1751482864.192:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7098 comm="syz.2.700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 310.518234][ T26] audit: type=1326 audit(1751482864.192:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7098 comm="syz.2.700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 310.542267][ T26] audit: type=1326 audit(1751482864.222:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7105 comm="syz.2.700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fac62a661e5 code=0x7ffc0000 [ 310.564595][ T26] audit: type=1326 audit(1751482864.222:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7098 comm="syz.2.700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 310.791237][ T26] audit: type=1326 audit(1751482864.232:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7098 comm="syz.2.700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 310.816124][ T7111] netlink: 8 bytes leftover after parsing attributes in process `syz.5.702'. [ 311.004379][ T5002] Bluetooth: hci5: Controller not accepting commands anymore: ncmd = 0 [ 311.049459][ T5002] Bluetooth: hci5: Injecting HCI hardware error event [ 311.074461][ T4178] Bluetooth: hci5: hardware error 0x00 [ 311.303860][ T7125] 9pnet: Insufficient options for proto=fd [ 313.740536][ T7162] overlayfs: failed to resolve './file0': -2 [ 314.684258][ T7172] netlink: 12 bytes leftover after parsing attributes in process `syz.6.708'. [ 316.484984][ T26] kauditd_printk_skb: 1 callbacks suppressed [ 316.485001][ T26] audit: type=1326 audit(1751482870.452:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7183 comm="syz.0.715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 316.590276][ T7192] netlink: 8 bytes leftover after parsing attributes in process `syz.5.718'. [ 316.702932][ T26] audit: type=1326 audit(1751482870.452:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7183 comm="syz.0.715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 316.853327][ T26] audit: type=1326 audit(1751482870.462:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7183 comm="syz.0.715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 316.877631][ T26] audit: type=1326 audit(1751482870.462:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7183 comm="syz.0.715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 316.915305][ T26] audit: type=1326 audit(1751482870.462:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7183 comm="syz.0.715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 317.031051][ T1420] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.037405][ T1420] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.836414][ T26] audit: type=1326 audit(1751482870.462:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7183 comm="syz.0.715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 317.859592][ T26] audit: type=1326 audit(1751482870.462:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7183 comm="syz.0.715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 317.892522][ T26] audit: type=1326 audit(1751482870.462:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7183 comm="syz.0.715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 317.956856][ T26] audit: type=1326 audit(1751482870.482:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7191 comm="syz.0.715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f83d4a521e5 code=0x7ffc0000 [ 318.307830][ T26] audit: type=1326 audit(1751482870.482:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7183 comm="syz.0.715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 319.060180][ T7223] overlayfs: failed to resolve './file0': -2 [ 321.569074][ T7248] netlink: 8 bytes leftover after parsing attributes in process `syz.1.732'. [ 321.610186][ T7219] 9pnet: Insufficient options for proto=fd [ 321.774031][ T7255] netlink: 12 bytes leftover after parsing attributes in process `syz.2.729'. [ 324.293704][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 324.293718][ T26] audit: type=1326 audit(1751482878.722:308): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=7278 comm="syz.0.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 324.660409][ T26] audit: type=1326 audit(1751482878.722:309): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=7278 comm="syz.0.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 324.807455][ T26] audit: type=1326 audit(1751482878.802:310): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=7278 comm="syz.0.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 325.324063][ T26] audit: type=1326 audit(1751482878.802:311): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=7278 comm="syz.0.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 325.356407][ T7295] overlayfs: failed to resolve './file1': -2 [ 325.612858][ T26] audit: type=1326 audit(1751482878.802:312): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=7278 comm="syz.0.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 325.639208][ T26] audit: type=1326 audit(1751482878.802:313): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=7278 comm="syz.0.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 325.662326][ T26] audit: type=1326 audit(1751482878.802:314): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=7278 comm="syz.0.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 325.685555][ T26] audit: type=1326 audit(1751482878.802:315): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=7278 comm="syz.0.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 325.711450][ T26] audit: type=1326 audit(1751482878.802:316): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=7278 comm="syz.0.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 325.734678][ T26] audit: type=1326 audit(1751482878.802:317): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=7278 comm="syz.0.736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 325.898828][ T7306] netlink: 8 bytes leftover after parsing attributes in process `syz.0.743'. [ 331.151741][ T7363] overlayfs: failed to resolve './file1': -2 [ 331.684101][ T7375] netlink: 8 bytes leftover after parsing attributes in process `syz.6.758'. [ 333.932780][ T26] kauditd_printk_skb: 18 callbacks suppressed [ 333.932799][ T26] audit: type=1326 audit(1751482887.482:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7394 comm="syz.5.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 334.009332][ T26] audit: type=1326 audit(1751482887.482:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7394 comm="syz.5.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 334.052028][ T26] audit: type=1326 audit(1751482887.482:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7394 comm="syz.5.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 334.097438][ T26] audit: type=1326 audit(1751482887.482:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7394 comm="syz.5.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 334.140377][ T26] audit: type=1326 audit(1751482887.482:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7394 comm="syz.5.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 334.222841][ T26] audit: type=1326 audit(1751482887.482:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7394 comm="syz.5.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 335.046975][ T26] audit: type=1326 audit(1751482887.492:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7394 comm="syz.5.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 335.306281][ T26] audit: type=1326 audit(1751482887.492:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7394 comm="syz.5.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 335.365016][ T26] audit: type=1326 audit(1751482887.532:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7394 comm="syz.5.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 335.605507][ T26] audit: type=1326 audit(1751482887.542:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7394 comm="syz.5.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 335.841907][ T7433] overlayfs: failed to resolve './file1': -2 [ 336.738264][ T7442] 9pnet: Insufficient options for proto=fd [ 337.672152][ T7454] netlink: 8 bytes leftover after parsing attributes in process `syz.0.773'. [ 339.523239][ T26] kauditd_printk_skb: 5 callbacks suppressed [ 339.523252][ T26] audit: type=1326 audit(1751482893.952:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7465 comm="syz.6.777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 340.292941][ T26] audit: type=1326 audit(1751482893.982:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7465 comm="syz.6.777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 343.858217][ T7539] netlink: 8 bytes leftover after parsing attributes in process `syz.0.787'. [ 345.418111][ T26] audit: type=1326 audit(1751482899.842:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7556 comm="syz.5.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 345.745803][ T26] audit: type=1326 audit(1751482899.872:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7556 comm="syz.5.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 346.124864][ T26] audit: type=1326 audit(1751482899.872:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7556 comm="syz.5.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 346.212361][ T26] audit: type=1326 audit(1751482899.872:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7556 comm="syz.5.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 346.235512][ T26] audit: type=1326 audit(1751482899.872:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7556 comm="syz.5.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 346.258687][ T26] audit: type=1326 audit(1751482899.872:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7556 comm="syz.5.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 347.192645][ T26] audit: type=1326 audit(1751482899.872:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7556 comm="syz.5.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 347.322818][ T26] audit: type=1326 audit(1751482899.882:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7556 comm="syz.5.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 347.373266][ T26] audit: type=1326 audit(1751482899.902:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7562 comm="syz.5.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdb9ada91e5 code=0x7ffc0000 [ 349.501871][ T26] audit: type=1326 audit(1751482899.902:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7556 comm="syz.5.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 349.684191][ T7601] 9pnet: Insufficient options for proto=fd [ 351.295775][ T7620] netlink: 8 bytes leftover after parsing attributes in process `syz.6.800'. [ 353.322206][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 353.322219][ T26] audit: type=1326 audit(1751482907.742:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7636 comm="syz.1.806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 354.067890][ T26] audit: type=1326 audit(1751482907.772:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7636 comm="syz.1.806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 354.095264][ T26] audit: type=1326 audit(1751482907.782:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7636 comm="syz.1.806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 354.131318][ T26] audit: type=1326 audit(1751482907.782:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7636 comm="syz.1.806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 354.154096][ T26] audit: type=1326 audit(1751482907.782:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7636 comm="syz.1.806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 354.176971][ T26] audit: type=1326 audit(1751482907.782:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7636 comm="syz.1.806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 354.210683][ T26] audit: type=1326 audit(1751482907.782:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7636 comm="syz.1.806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 354.951156][ T26] audit: type=1326 audit(1751482907.782:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7636 comm="syz.1.806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 354.979611][ T26] audit: type=1326 audit(1751482907.792:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7641 comm="syz.1.806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f5c3a2121e5 code=0x7ffc0000 [ 356.771328][ T26] audit: type=1326 audit(1751482907.792:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7636 comm="syz.1.806" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 357.936294][ T7678] netlink: 8 bytes leftover after parsing attributes in process `syz.2.813'. [ 359.047667][ T7698] netlink: 12 bytes leftover after parsing attributes in process `syz.1.811'. [ 359.220382][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 359.220395][ T26] audit: type=1326 audit(1751482913.642:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.6.818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 359.250558][ T26] audit: type=1326 audit(1751482913.682:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.6.818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 362.906317][ T7747] 9pnet: Insufficient options for proto=fd [ 363.438360][ T7756] netlink: 8 bytes leftover after parsing attributes in process `syz.1.825'. [ 365.668879][ T26] audit: type=1326 audit(1751482920.092:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7771 comm="syz.1.829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 366.029606][ T26] audit: type=1326 audit(1751482920.122:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7771 comm="syz.1.829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 366.370287][ T26] audit: type=1326 audit(1751482920.122:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7771 comm="syz.1.829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 366.392757][ T26] audit: type=1326 audit(1751482920.122:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7771 comm="syz.1.829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 367.448686][ T26] audit: type=1326 audit(1751482920.122:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7771 comm="syz.1.829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 367.588418][ T26] audit: type=1326 audit(1751482920.122:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7771 comm="syz.1.829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 367.909211][ T26] audit: type=1326 audit(1751482920.122:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7771 comm="syz.1.829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 368.434107][ T26] audit: type=1326 audit(1751482920.132:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7771 comm="syz.1.829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 368.457150][ T26] audit: type=1326 audit(1751482920.152:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7779 comm="syz.1.829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f5c3a2121e5 code=0x7ffc0000 [ 368.480029][ T26] audit: type=1326 audit(1751482920.152:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7771 comm="syz.1.829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3a1df929 code=0x7ffc0000 [ 369.756711][ T7814] netlink: 8 bytes leftover after parsing attributes in process `syz.1.837'. [ 372.320548][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 372.320590][ T26] audit: type=1326 audit(1751482926.742:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7837 comm="syz.6.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 373.100746][ T26] audit: type=1326 audit(1751482926.772:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7837 comm="syz.6.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 373.123593][ T26] audit: type=1326 audit(1751482926.772:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7837 comm="syz.6.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 373.148416][ T26] audit: type=1326 audit(1751482926.782:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7837 comm="syz.6.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 373.170983][ T26] audit: type=1326 audit(1751482926.782:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7837 comm="syz.6.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 373.295040][ T26] audit: type=1326 audit(1751482926.782:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7837 comm="syz.6.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 373.415559][ T26] audit: type=1326 audit(1751482926.782:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7837 comm="syz.6.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 373.451096][ T7855] netlink: 12 bytes leftover after parsing attributes in process `syz.1.838'. [ 373.521459][ T26] audit: type=1326 audit(1751482926.782:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7837 comm="syz.6.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 373.622541][ T26] audit: type=1326 audit(1751482926.802:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7843 comm="syz.6.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f9bcf9991e5 code=0x7ffc0000 [ 373.800422][ T26] audit: type=1326 audit(1751482926.802:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7837 comm="syz.6.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 377.367492][ T7885] netlink: 8 bytes leftover after parsing attributes in process `syz.2.849'. [ 378.445601][ T1420] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.451998][ T1420] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.964574][ T7907] 9pnet: Insufficient options for proto=fd [ 380.117882][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 380.117904][ T26] audit: type=1326 audit(1751482934.542:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7909 comm="syz.2.854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 380.944564][ T26] audit: type=1326 audit(1751482934.572:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7909 comm="syz.2.854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 380.971599][ T26] audit: type=1326 audit(1751482934.572:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7909 comm="syz.2.854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 381.016992][ T26] audit: type=1326 audit(1751482934.572:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7909 comm="syz.2.854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 381.154510][ T26] audit: type=1326 audit(1751482934.572:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7909 comm="syz.2.854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 381.230242][ T26] audit: type=1326 audit(1751482934.572:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7909 comm="syz.2.854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 381.407215][ T26] audit: type=1326 audit(1751482934.582:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7909 comm="syz.2.854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 381.442739][ T26] audit: type=1326 audit(1751482934.582:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7909 comm="syz.2.854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 381.491056][ T26] audit: type=1326 audit(1751482934.592:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7912 comm="syz.2.854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fac62a661e5 code=0x7ffc0000 [ 381.741517][ T26] audit: type=1326 audit(1751482934.592:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7909 comm="syz.2.854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 382.521945][ T7958] netlink: 8 bytes leftover after parsing attributes in process `syz.2.862'. [ 385.521914][ T7980] netlink: 12 bytes leftover after parsing attributes in process `syz.2.866'. [ 386.398070][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 386.398083][ T26] audit: type=1326 audit(1751482940.822:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7981 comm="syz.2.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 388.041757][ T26] audit: type=1326 audit(1751482940.852:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7981 comm="syz.2.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 388.096824][ T26] audit: type=1326 audit(1751482940.852:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7981 comm="syz.2.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 388.121824][ T26] audit: type=1326 audit(1751482940.852:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7981 comm="syz.2.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 388.145094][ T26] audit: type=1326 audit(1751482940.852:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7981 comm="syz.2.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 388.353358][ T26] audit: type=1326 audit(1751482940.852:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7981 comm="syz.2.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 388.376334][ T26] audit: type=1326 audit(1751482940.852:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7981 comm="syz.2.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 388.597122][ T8015] netlink: 8 bytes leftover after parsing attributes in process `syz.6.873'. [ 389.436587][ T26] audit: type=1326 audit(1751482940.862:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7981 comm="syz.2.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 389.460006][ T26] audit: type=1326 audit(1751482940.882:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7990 comm="syz.2.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fac62a661e5 code=0x7ffc0000 [ 390.141878][ T26] audit: type=1326 audit(1751482940.882:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7981 comm="syz.2.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac62a33929 code=0x7ffc0000 [ 391.452400][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 391.452443][ T26] audit: type=1326 audit(1751482945.872:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8044 comm="syz.0.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 392.135169][ T26] audit: type=1326 audit(1751482945.902:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8044 comm="syz.0.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 392.165337][ T26] audit: type=1326 audit(1751482945.912:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8044 comm="syz.0.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 392.715217][ T26] audit: type=1326 audit(1751482945.912:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8044 comm="syz.0.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 392.823020][ T26] audit: type=1326 audit(1751482945.912:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8044 comm="syz.0.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 392.875045][ T26] audit: type=1326 audit(1751482945.912:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8044 comm="syz.0.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 393.141680][ T26] audit: type=1326 audit(1751482945.912:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8044 comm="syz.0.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 393.277760][ T26] audit: type=1326 audit(1751482945.912:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8044 comm="syz.0.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 393.397757][ T26] audit: type=1326 audit(1751482945.942:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8049 comm="syz.0.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f83d4a521e5 code=0x7ffc0000 [ 393.481864][ T26] audit: type=1326 audit(1751482945.942:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8044 comm="syz.0.881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 395.148356][ T8083] 9pnet: Insufficient options for proto=fd [ 395.428994][ T8094] netlink: 12 bytes leftover after parsing attributes in process `syz.6.888'. [ 397.565577][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 397.565619][ T26] audit: type=1326 audit(1751482951.992:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8111 comm="syz.5.895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 399.577567][ T26] audit: type=1326 audit(1751482952.022:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8111 comm="syz.5.895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 399.620238][ T26] audit: type=1326 audit(1751482952.022:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8111 comm="syz.5.895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 399.693038][ T26] audit: type=1326 audit(1751482952.022:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8111 comm="syz.5.895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 399.725506][ T26] audit: type=1326 audit(1751482952.022:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8111 comm="syz.5.895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 399.811090][ T26] audit: type=1326 audit(1751482952.022:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8111 comm="syz.5.895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 400.571170][ T26] audit: type=1326 audit(1751482952.022:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8111 comm="syz.5.895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 401.132232][ T26] audit: type=1326 audit(1751482952.032:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8111 comm="syz.5.895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 401.226600][ T26] audit: type=1326 audit(1751482952.042:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8124 comm="syz.5.895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdb9ada91e5 code=0x7ffc0000 [ 401.350306][ T26] audit: type=1326 audit(1751482952.042:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8111 comm="syz.5.895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb9ad76929 code=0x7ffc0000 [ 403.012480][ T8167] netlink: 12 bytes leftover after parsing attributes in process `syz.0.904'. [ 403.933337][ T8175] overlayfs: missing 'lowerdir' [ 406.421099][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 406.421114][ T26] audit: type=1326 audit(1751482960.842:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8186 comm="syz.6.910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 407.483854][ T26] audit: type=1326 audit(1751482960.882:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8186 comm="syz.6.910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 407.507814][ T26] audit: type=1326 audit(1751482960.882:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8186 comm="syz.6.910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 407.728268][ T26] audit: type=1326 audit(1751482960.882:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8186 comm="syz.6.910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 407.863016][ T26] audit: type=1326 audit(1751482960.882:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8186 comm="syz.6.910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 408.333258][ T26] audit: type=1326 audit(1751482960.882:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8186 comm="syz.6.910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 408.687471][ T26] audit: type=1326 audit(1751482960.882:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8186 comm="syz.6.910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 408.816208][ T26] audit: type=1326 audit(1751482960.882:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8186 comm="syz.6.910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 409.854356][ T8220] netlink: 12 bytes leftover after parsing attributes in process `syz.1.917'. [ 410.726694][ T26] audit: type=1326 audit(1751482960.902:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8193 comm="syz.6.910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f9bcf9991e5 code=0x7ffc0000 [ 410.874174][ T26] audit: type=1326 audit(1751482960.902:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8186 comm="syz.6.910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 411.294514][ T8236] overlayfs: missing 'lowerdir' [ 414.438610][ T8270] netlink: 12 bytes leftover after parsing attributes in process `syz.5.930'. [ 414.941792][ T8274] netlink: 48 bytes leftover after parsing attributes in process `syz.0.931'. [ 415.089255][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 415.089835][ T26] audit: type=1326 audit(1751482969.262:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8266 comm="syz.0.931" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x0 [ 415.891042][ T8293] overlayfs: missing 'lowerdir' [ 419.602846][ T4321] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 419.952804][ T4321] usb 1-1: Using ep0 maxpacket: 8 [ 420.213705][ T8321] netlink: 12 bytes leftover after parsing attributes in process `syz.6.944'. [ 420.782139][ T4321] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 422.388369][ T4321] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 422.535603][ T4321] usb 1-1: string descriptor 0 read error: -71 [ 422.543309][ T4321] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 422.553263][ T4321] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 422.592933][ T4321] usb 1-1: can't set config #1, error -71 [ 422.605612][ T4321] usb 1-1: USB disconnect, device number 6 [ 425.431800][ T8346] overlayfs: missing 'lowerdir' [ 428.962825][ T4287] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 429.272741][ T4287] usb 6-1: Using ep0 maxpacket: 8 [ 429.660173][ T8386] netlink: 12 bytes leftover after parsing attributes in process `syz.0.958'. [ 429.673016][ T4287] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 429.690834][ T4287] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 430.414573][ T4287] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 430.451548][ T4287] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 430.460534][ T4287] usb 6-1: Product: syz [ 430.475796][ T4287] usb 6-1: Manufacturer: syz [ 430.481094][ T4287] usb 6-1: SerialNumber: syz [ 431.248337][ T8403] ODEBUG: Out of memory. ODEBUG disabled [ 432.675703][ T4246] usb 6-1: USB disconnect, device number 2 [ 432.690338][ T8406] overlayfs: missing 'lowerdir' [ 432.744015][ T8403] syz.1.969 (8403): drop_caches: 2 [ 438.182193][ T5340] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 438.493930][ T5340] usb 3-1: Using ep0 maxpacket: 32 [ 439.513768][ T5340] usb 3-1: config index 0 descriptor too short (expected 29220, got 36) [ 439.572996][ T5340] usb 3-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 439.581623][ T5340] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 439.590952][ T5340] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 439.611386][ T5340] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 439.633707][ T5340] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 439.655032][ T5340] usb 3-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 439.664393][ T5340] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 439.674321][ T5340] usb 3-1: config 0 descriptor?? [ 439.886280][ T1420] ieee802154 phy0 wpan0: encryption failed: -22 [ 439.892871][ T1420] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.457663][ T5340] usblp 3-1:0.0: usblp0: USB Bidirectional printer dev 4 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 440.513842][ T8502] netlink: 12 bytes leftover after parsing attributes in process `syz.1.987'. [ 440.826321][ T5340] usb 3-1: USB disconnect, device number 4 [ 440.983533][ T5340] usblp0: removed [ 441.735176][ T8511] erofs: (device nbd0): erofs_read_superblock: cannot find valid erofs superblock [ 442.883267][ T8515] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1002'. [ 447.271411][ T8549] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1018'. [ 448.541945][ T8562] overlayfs: missing 'workdir' [ 449.252901][ T8565] netlink: 44 bytes leftover after parsing attributes in process `syz.6.1014'. [ 455.445410][ T8605] netlink: 44 bytes leftover after parsing attributes in process `syz.5.1028'. [ 457.592757][ T5340] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 458.174541][ T5340] usb 7-1: Using ep0 maxpacket: 8 [ 459.182956][ T5340] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 459.676634][ T5340] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 460.252792][ T5340] usb 7-1: string descriptor 0 read error: -71 [ 460.272224][ T5340] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 460.301039][ T5340] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 460.363174][ T5340] usb 7-1: can't set config #1, error -71 [ 460.377031][ T5340] usb 7-1: USB disconnect, device number 2 [ 460.646673][ T8658] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1040'. [ 460.793230][ T4246] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 461.354449][ T8661] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 461.947159][ T8661] device batadv_slave_0 entered promiscuous mode [ 461.959995][ T5340] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 462.192843][ T4246] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 462.204209][ T4246] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 462.214112][ T4246] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 462.223291][ T4246] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 462.254261][ T8656] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 462.282743][ T1111] usb 2-1: new full-speed USB device number 8 using dummy_hcd [ 462.325975][ T4162] udevd[4162]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:27.0/sound/card3/controlC3/../uevent} for writing: Read-only file system [ 462.492930][ T4397] usb 3-1: USB disconnect, device number 5 [ 462.563408][ T5340] usb 7-1: New USB device found, idVendor=2770, idProduct=9052, bcdDevice=15.f5 [ 462.572557][ T5340] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 462.581224][ T5340] usb 7-1: Product: syz [ 462.585813][ T5340] usb 7-1: Manufacturer: syz [ 462.590418][ T5340] usb 7-1: SerialNumber: syz [ 462.597268][ T5340] usb 7-1: config 0 descriptor?? [ 462.634339][ T5340] gspca_main: sq905c-2.14.0 probing 2770:9052 [ 462.662919][ T1111] usb 2-1: config index 0 descriptor too short (expected 228, got 36) [ 462.671200][ T1111] usb 2-1: config 255 has too many interfaces: 226, using maximum allowed: 32 [ 462.680658][ T1111] usb 2-1: config 255 has an invalid descriptor of length 0, skipping remainder of the config [ 462.690994][ T1111] usb 2-1: config 255 has 1 interface, different from the descriptor's value: 226 [ 462.700279][ T1111] usb 2-1: config 255 has no interface number 0 [ 462.706712][ T1111] usb 2-1: config 255 interface 11 altsetting 253 endpoint 0x7 has invalid wMaxPacketSize 0 [ 462.716879][ T1111] usb 2-1: config 255 interface 11 altsetting 253 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 462.730829][ T1111] usb 2-1: config 255 interface 11 has no altsetting 0 [ 462.737769][ T1111] usb 2-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b [ 462.746864][ T1111] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 462.796113][ T1111] keyspan 2-1:255.11: Keyspan 2 port adapter converter detected [ 462.804238][ T1111] keyspan 2-1:255.11: found no endpoint descriptor for endpoint 87 [ 462.812544][ T1111] keyspan 2-1:255.11: unsupported endpoint type 0 [ 462.820439][ T1111] keyspan 2-1:255.11: found no endpoint descriptor for endpoint 81 [ 462.851297][ T1111] keyspan 2-1:255.11: found no endpoint descriptor for endpoint 82 [ 462.859460][ T5340] gspca_sq905c: sq905c_command: usb_control_msg failed (-71) [ 462.868081][ T5340] sq905c 7-1:0.0: Get version command failed [ 462.892556][ T1111] keyspan 2-1:255.11: found no endpoint descriptor for endpoint 1 [ 462.909860][ T5340] sq905c: probe of 7-1:0.0 failed with error -71 [ 462.949773][ T1111] keyspan 2-1:255.11: found no endpoint descriptor for endpoint 2 [ 463.448145][ T5340] usb 7-1: USB disconnect, device number 3 [ 463.962864][ T1111] keyspan 2-1:255.11: found no endpoint descriptor for endpoint 85 [ 463.985160][ T1111] keyspan 2-1:255.11: found no endpoint descriptor for endpoint 5 [ 463.998436][ T1111] usb 2-1: Keyspan 2 port adapter converter now attached to ttyUSB0 [ 464.008123][ T1111] keyspan 2-1:255.11: found no endpoint descriptor for endpoint 83 [ 464.020706][ T1111] keyspan 2-1:255.11: found no endpoint descriptor for endpoint 84 [ 464.028849][ T1111] keyspan 2-1:255.11: found no endpoint descriptor for endpoint 3 [ 464.039954][ T1111] keyspan 2-1:255.11: found no endpoint descriptor for endpoint 4 [ 464.146120][ T1111] keyspan 2-1:255.11: found no endpoint descriptor for endpoint 86 [ 464.157345][ T1111] keyspan 2-1:255.11: found no endpoint descriptor for endpoint 6 [ 464.178035][ T1111] usb 2-1: Keyspan 2 port adapter converter now attached to ttyUSB1 [ 464.192922][ T1111] usb 2-1: USB disconnect, device number 8 [ 464.216640][ T1111] keyspan_2 ttyUSB0: Keyspan 2 port adapter converter now disconnected from ttyUSB0 [ 464.234454][ T1111] keyspan_2 ttyUSB1: Keyspan 2 port adapter converter now disconnected from ttyUSB1 [ 464.440359][ T1111] keyspan 2-1:255.11: device disconnected [ 467.972835][ T5340] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 468.473872][ T5340] usb 1-1: Using ep0 maxpacket: 8 [ 468.784405][ T5340] usb 1-1: device descriptor read/all, error -71 [ 469.150539][ T8719] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1055'. [ 471.209428][ T5340] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 471.942894][ T5340] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 472.395554][ T5340] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 472.451876][ T5340] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 472.481360][ T5340] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 472.812794][ T5340] usb 1-1: can't set config #27, error -71 [ 473.293529][ T5340] usb 1-1: USB disconnect, device number 8 [ 474.582815][ T8545] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 474.852868][ T8545] usb 3-1: Using ep0 maxpacket: 8 [ 475.111327][ T8545] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 475.142185][ T8545] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 475.371143][ T8792] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1082'. [ 475.386868][ T8545] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 475.443853][ T8545] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 475.444290][ T8545] usb 3-1: Product: syz [ 475.444471][ T8545] usb 3-1: Manufacturer: syz [ 475.444652][ T8545] usb 3-1: SerialNumber: syz [ 476.812917][ T8814] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1083'. [ 477.123981][ T8545] usb 3-1: USB disconnect, device number 6 [ 477.789036][ T8836] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 478.097654][ T23] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 478.412845][ T23] usb 6-1: Using ep0 maxpacket: 32 [ 478.534472][ T23] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 478.772015][ T23] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 478.782097][ T23] usb 6-1: New USB device found, idVendor=05ac, idProduct=029c, bcdDevice= 0.00 [ 478.791362][ T23] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 478.802567][ T23] usb 6-1: config 0 descriptor?? [ 479.395489][ T8857] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1107'. [ 479.668551][ T8861] MTD: Attempt to mount non-MTD device "/dev/nullb0" [ 479.693403][ T8861] VFS: Can't find a romfs filesystem on dev nullb0. [ 479.693403][ T8861] [ 481.383240][ T23] usbhid 6-1:0.0: can't add hid device: -71 [ 481.390569][ T23] usbhid: probe of 6-1:0.0 failed with error -71 [ 481.410368][ T23] usb 6-1: USB disconnect, device number 3 [ 482.062917][ T23] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 482.156293][ T8883] CUSE: unknown device info "KJ H+ۤ2LhnL1`Ccn80(3նi>f_ٮ,<_eF" [ 482.168114][ T8883] CUSE: unknown device info "3ܟ,̘" [ 482.174201][ T8883] CUSE: unknown device info "J2S Z !e/J+-na4D|G$5O~q [ 482.174201][ T8883] fzXSAxjTǔw xRɐQ(hҏj pVdY0|M?2JIv^R@" [ 482.194236][ T8883] CUSE: unknown device info "!To}ݝ&|L+Uoϲ"FstV:׌E gJ<@c4TMM|" [ 482.212652][ T8883] CUSE: DEVNAME unspecified [ 482.562702][ T23] usb 2-1: Using ep0 maxpacket: 8 [ 482.823282][ T23] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 482.883358][ T23] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 484.642905][ T23] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 487.369448][ T23] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 487.483225][ T23] usb 2-1: Product: syz [ 487.573096][ T23] usb 2-1: can't set config #1, error -71 [ 487.581769][ T23] usb 2-1: USB disconnect, device number 9 [ 487.647635][ T8928] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1121'. [ 487.662450][ T8928] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1121'. [ 488.067651][ T8940] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1120'. [ 488.364313][ T5340] usb 3-1: new full-speed USB device number 7 using dummy_hcd [ 488.454419][ T8942] netlink: zone id is out of range [ 488.754081][ T5340] usb 3-1: device descriptor read/64, error -71 [ 489.982914][ T5340] usb 3-1: new full-speed USB device number 8 using dummy_hcd [ 489.982957][ T4287] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 490.600497][ T4287] usb 6-1: Using ep0 maxpacket: 8 [ 490.770880][ T5340] usb 3-1: device descriptor read/64, error -71 [ 491.780208][ T5340] usb usb3-port1: attempt power cycle [ 492.155979][ T4287] usb 6-1: unable to read config index 0 descriptor/all [ 492.164127][ T4287] usb 6-1: can't read configurations, error -71 [ 492.216527][ T8990] device syz_tun entered promiscuous mode [ 492.244626][ T8990] device batadv_slave_0 entered promiscuous mode [ 492.303843][ T856] IPv6: ADDRCONF(NETDEV_CHANGE): hsr1: link becomes ready [ 494.409763][ T9020] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1145'. [ 495.242907][ T4177] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 496.216894][ T4177] usb 1-1: Using ep0 maxpacket: 8 [ 496.282903][ T4177] usb 1-1: device descriptor read/all, error -71 [ 497.337211][ T9059] overlayfs: failed to clone upperpath [ 501.645390][ T1420] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.651677][ T1420] ieee802154 phy1 wpan1: encryption failed: -22 [ 501.988080][ T1111] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 502.800895][ T9116] overlayfs: failed to clone upperpath [ 503.455995][ T9123] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1178'. [ 504.954194][ T1111] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 508.266500][ T4397] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 508.582746][ T1111] usb 2-1: device not accepting address 11, error -71 [ 509.818438][ T9175] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1191'. [ 514.305547][ T9215] tmpfs: Unknown parameter 'usrquota' [ 515.240001][ T9225] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1209'. [ 515.296844][ T9227] device macsec0 entered promiscuous mode [ 519.624879][ T9268] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1222'. [ 519.884146][ T9272] HTB: quantum of class 80010010 is big. Consider r2q change. [ 521.604397][ T9284] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1230'. [ 521.618956][ T9284] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1230'. [ 522.942683][ T4246] usb 3-1: new full-speed USB device number 11 using dummy_hcd [ 523.683142][ T9321] overlayfs: failed to clone upperpath [ 524.023635][ T4246] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 524.317873][ T4246] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 524.356365][ T4246] usb 3-1: New USB device found, idVendor=04f3, idProduct=0754, bcdDevice= 0.00 [ 524.365923][ T4246] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 524.417224][ T4246] usb 3-1: config 0 descriptor?? [ 524.749648][ T26] audit: type=1326 audit(1751483079.171:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9331 comm="syz.0.1243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 525.384660][ T4246] hid-generic 0003:04F3:0754.0004: failed to start in urb: -90 [ 525.450910][ T26] audit: type=1326 audit(1751483079.201:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9331 comm="syz.0.1243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 525.473801][ T26] audit: type=1326 audit(1751483079.201:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9331 comm="syz.0.1243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 525.502022][ T26] audit: type=1326 audit(1751483079.201:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9331 comm="syz.0.1243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 525.525225][ T26] audit: type=1326 audit(1751483079.201:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9331 comm="syz.0.1243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 525.547812][ T26] audit: type=1326 audit(1751483079.201:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9331 comm="syz.0.1243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 525.571154][ T26] audit: type=1326 audit(1751483079.201:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9331 comm="syz.0.1243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 525.593727][ T26] audit: type=1326 audit(1751483079.201:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9331 comm="syz.0.1243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 525.628137][ T26] audit: type=1326 audit(1751483079.231:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9336 comm="syz.0.1243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f83d4a521e5 code=0x7ffc0000 [ 525.640599][ T4246] hid-generic 0003:04F3:0754.0004: hidraw0: USB HID v1.01 Device [HID 04f3:0754] on usb-dummy_hcd.2-1/input0 [ 525.792479][ T26] audit: type=1326 audit(1751483079.231:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9331 comm="syz.0.1243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d4a1f929 code=0x7ffc0000 [ 529.241833][ T1111] usb 3-1: USB disconnect, device number 11 [ 529.255488][ T9360] syz.6.1250[9360] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 529.259357][ T9360] syz.6.1250[9360] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 530.056100][ T9369] overlayfs: failed to clone upperpath [ 531.342741][ T4245] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 531.369257][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 531.369267][ T26] audit: type=1326 audit(1751483085.791:476): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=9379 comm="syz.6.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 531.515655][ T26] audit: type=1326 audit(1751483085.791:477): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=9379 comm="syz.6.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 531.572276][ T26] audit: type=1326 audit(1751483085.811:478): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=9379 comm="syz.6.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 531.601735][ T26] audit: type=1326 audit(1751483085.811:479): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=9379 comm="syz.6.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 531.634875][ T26] audit: type=1326 audit(1751483085.811:480): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=9379 comm="syz.6.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 531.662724][ T4245] usb 3-1: Using ep0 maxpacket: 8 [ 531.672223][ T26] audit: type=1326 audit(1751483085.811:481): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=9379 comm="syz.6.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 531.767534][ T26] audit: type=1326 audit(1751483085.811:482): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=9379 comm="syz.6.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 531.790499][ T26] audit: type=1326 audit(1751483085.811:483): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=9379 comm="syz.6.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 532.478359][ T26] audit: type=1326 audit(1751483085.811:484): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=9379 comm="syz.6.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 532.610840][ T4245] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 533.432739][ T4245] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 533.454649][ T26] audit: type=1326 audit(1751483085.811:485): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=9379 comm="syz.6.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bcf966929 code=0x7ffc0000 [ 533.502769][ T4245] usb 3-1: string descriptor 0 read error: -71 [ 533.517994][ T4245] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 533.557100][ T4245] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 535.432755][ T4245] usb 3-1: can't set config #1, error -71 [ 535.467652][ T4245] usb 3-1: USB disconnect, device number 12 [ 535.514175][ T9426] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 535.523389][ T9426] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 535.532116][ T9426] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 535.540857][ T9426] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 535.572658][ T1111] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 536.418732][ T9179] usb 3-1: new high-speed USB device number 13 using dummy_hcd [ 537.328572][ T9461] syz.0.1282 uses obsolete (PF_INET,SOCK_PACKET) [ 537.341094][ T9463] [ 537.343429][ T9463] ====================================================== [ 537.350421][ T9463] WARNING: possible circular locking dependency detected [ 537.357439][ T9463] 5.15.186-syzkaller #0 Not tainted [ 537.362618][ T9463] ------------------------------------------------------ [ 537.369612][ T9463] syz.5.1281/9463 is trying to acquire lock: [ 537.375558][ T9463] ffff888063b3f120 (sk_lock-AF_AX25){+.+.}-{0:0}, at: ax25_device_event+0x217/0x4f0 [ 537.385057][ T9463] [ 537.385057][ T9463] but task is already holding lock: [ 537.392409][ T9463] ffffffff8d22a808 (rtnl_mutex){+.+.}-{3:3}, at: dev_ioctl+0x54e/0xe50 [ 537.400675][ T9463] [ 537.400675][ T9463] which lock already depends on the new lock. [ 537.400675][ T9463] [ 537.411059][ T9463] [ 537.411059][ T9463] the existing dependency chain (in reverse order) is: [ 537.420048][ T9463] [ 537.420048][ T9463] -> #1 (rtnl_mutex){+.+.}-{3:3}: [ 537.427232][ T9463] __mutex_lock_common+0x1eb/0x2390 [ 537.432983][ T9463] mutex_lock_nested+0x17/0x20 [ 537.438250][ T9463] ax25_setsockopt+0x830/0xa40 [ 537.443522][ T9463] __sys_setsockopt+0x3d6/0x5e0 [ 537.448897][ T9463] __x64_sys_setsockopt+0xb1/0xc0 [ 537.454422][ T9463] do_syscall_64+0x4c/0xa0 [ 537.459356][ T9463] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 537.465743][ T9463] [ 537.465743][ T9463] -> #0 (sk_lock-AF_AX25){+.+.}-{0:0}: [ 537.473357][ T9463] __lock_acquire+0x2c33/0x7c60 [ 537.478711][ T9463] lock_acquire+0x197/0x3f0 [ 537.483710][ T9463] lock_sock_nested+0x44/0x100 [ 537.488973][ T9463] ax25_device_event+0x217/0x4f0 [ 537.494412][ T9463] raw_notifier_call_chain+0xcb/0x160 [ 537.500301][ T9463] __dev_notify_flags+0x178/0x2d0 [ 537.505949][ T9463] dev_change_flags+0xe3/0x1a0 [ 537.511330][ T9463] dev_ifsioc+0x147/0xe70 [ 537.516171][ T9463] dev_ioctl+0x55f/0xe50 [ 537.520917][ T9463] sock_do_ioctl+0x222/0x2f0 [ 537.526002][ T9463] sock_ioctl+0x4ed/0x6e0 [ 537.530827][ T9463] __se_sys_ioctl+0xfa/0x170 [ 537.536046][ T9463] do_syscall_64+0x4c/0xa0 [ 537.540977][ T9463] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 537.547375][ T9463] [ 537.547375][ T9463] other info that might help us debug this: [ 537.547375][ T9463] [ 537.557588][ T9463] Possible unsafe locking scenario: [ 537.557588][ T9463] [ 537.565018][ T9463] CPU0 CPU1 [ 537.570363][ T9463] ---- ---- [ 537.575702][ T9463] lock(rtnl_mutex); [ 537.579661][ T9463] lock(sk_lock-AF_AX25); [ 537.586569][ T9463] lock(rtnl_mutex); [ 537.593048][ T9463] lock(sk_lock-AF_AX25); [ 537.597467][ T9463] [ 537.597467][ T9463] *** DEADLOCK *** [ 537.597467][ T9463] [ 537.605584][ T9463] 1 lock held by syz.5.1281/9463: [ 537.610580][ T9463] #0: ffffffff8d22a808 (rtnl_mutex){+.+.}-{3:3}, at: dev_ioctl+0x54e/0xe50 [ 537.619249][ T9463] [ 537.619249][ T9463] stack backtrace: [ 537.625109][ T9463] CPU: 0 PID: 9463 Comm: syz.5.1281 Not tainted 5.15.186-syzkaller #0 [ 537.633246][ T9463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 537.644251][ T9463] Call Trace: [ 537.647515][ T9463] [ 537.650427][ T9463] dump_stack_lvl+0x168/0x230 [ 537.655107][ T9463] ? load_image+0x3b0/0x3b0 [ 537.659609][ T9463] ? show_regs_print_info+0x20/0x20 [ 537.664781][ T9463] ? print_circular_bug+0x12b/0x1a0 [ 537.669957][ T9463] check_noncircular+0x274/0x310 [ 537.674876][ T9463] ? add_chain_block+0x940/0x940 [ 537.679784][ T9463] ? lockdep_lock+0xdc/0x1e0 [ 537.684348][ T9463] ? lockdep_unlock+0x134/0x2d0 [ 537.689174][ T9463] ? mark_lock+0x94/0x320 [ 537.693487][ T9463] __lock_acquire+0x2c33/0x7c60 [ 537.698343][ T9463] ? lock_chain_count+0x20/0x20 [ 537.703171][ T9463] ? mark_lock+0x94/0x320 [ 537.707476][ T9463] ? verify_lock_unused+0x140/0x140 [ 537.712652][ T9463] ? verify_lock_unused+0x140/0x140 [ 537.717827][ T9463] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 537.723783][ T9463] ? lockdep_hardirqs_on_prepare+0x760/0x760 [ 537.729744][ T9463] ? __local_bh_enable_ip+0x12a/0x1b0 [ 537.735091][ T9463] ? mark_lock+0x94/0x320 [ 537.739399][ T9463] lock_acquire+0x197/0x3f0 [ 537.743882][ T9463] ? ax25_device_event+0x217/0x4f0 [ 537.748971][ T9463] ? lock_chain_count+0x20/0x20 [ 537.753797][ T9463] ? read_lock_is_recursive+0x10/0x10 [ 537.759144][ T9463] ? __local_bh_enable_ip+0x12a/0x1b0 [ 537.764496][ T9463] ? lockdep_hardirqs_on+0x94/0x140 [ 537.769674][ T9463] ? __local_bh_enable_ip+0x12a/0x1b0 [ 537.775018][ T9463] ? _local_bh_enable+0xa0/0xa0 [ 537.779842][ T9463] lock_sock_nested+0x44/0x100 [ 537.784586][ T9463] ? ax25_device_event+0x217/0x4f0 [ 537.789676][ T9463] ax25_device_event+0x217/0x4f0 [ 537.794600][ T9463] raw_notifier_call_chain+0xcb/0x160 [ 537.799966][ T9463] __dev_notify_flags+0x178/0x2d0 [ 537.804984][ T9463] ? __dev_change_flags+0x6a0/0x6a0 [ 537.810178][ T9463] ? __dev_change_flags+0x4bb/0x6a0 [ 537.815362][ T9463] ? dev_get_flags+0x1c0/0x1c0 [ 537.820122][ T9463] ? dev_ioctl+0x54e/0xe50 [ 537.824534][ T9463] ? dev_ioctl+0x54e/0xe50 [ 537.828927][ T9463] dev_change_flags+0xe3/0x1a0 [ 537.833671][ T9463] dev_ifsioc+0x147/0xe70 [ 537.837976][ T9463] ? dev_ioctl+0xe50/0xe50 [ 537.842367][ T9463] ? apparmor_capable+0x12c/0x190 [ 537.847376][ T9463] ? full_name_hash+0x8e/0xe0 [ 537.852035][ T9463] dev_ioctl+0x55f/0xe50 [ 537.856252][ T9463] ? _copy_from_user+0x111/0x170 [ 537.861183][ T9463] sock_do_ioctl+0x222/0x2f0 [ 537.865763][ T9463] ? sock_show_fdinfo+0xb0/0xb0 [ 537.870598][ T9463] sock_ioctl+0x4ed/0x6e0 [ 537.874908][ T9463] ? sock_poll+0x3f0/0x3f0 [ 537.879328][ T9463] ? bpf_lsm_file_ioctl+0x5/0x10 [ 537.884242][ T9463] ? security_file_ioctl+0x7c/0xa0 [ 537.889336][ T9463] ? sock_poll+0x3f0/0x3f0 [ 537.893730][ T9463] __se_sys_ioctl+0xfa/0x170 [ 537.898298][ T9463] do_syscall_64+0x4c/0xa0 [ 537.902691][ T9463] ? clear_bhb_loop+0x30/0x80 [ 537.907342][ T9463] ? clear_bhb_loop+0x30/0x80 [ 537.911993][ T9463] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 537.917869][ T9463] RIP: 0033:0x7fdb9ad76929 [ 537.922266][ T9463] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 537.941935][ T9463] RSP: 002b:00007fdb98bde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 537.950329][ T9463] RAX: ffffffffffffffda RBX: 00007fdb9af9dfa0 RCX: 00007fdb9ad76929 [ 537.958306][ T9463] RDX: 0000200000000000 RSI: 0000000000008914 RDI: 000000000000000a [ 537.966260][ T9463] RBP: 00007fdb9adf8b39 R08: 0000000000000000 R09: 0000000000000000 [ 537.974211][ T9463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 537.982158][ T9463] R13: 0000000000000000 R14: 00007fdb9af9dfa0 R15: 00007ffcf28e74d8 [ 537.990109][ T9463] [ 537.994453][ T9179] usb 3-1: Using ep0 maxpacket: 8 [ 538.022838][ T9463] ================================================================== [ 538.031009][ T9463] BUG: KASAN: use-after-free in ax25_dev_device_down+0x35e/0x520 [ 538.038724][ T9463] Write of size 4 at addr ffff8880637e3db8 by task syz.5.1281/9463 [ 538.046594][ T9463] [ 538.048901][ T9463] CPU: 1 PID: 9463 Comm: syz.5.1281 Not tainted 5.15.186-syzkaller #0 [ 538.057032][ T9463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 538.067074][ T9463] Call Trace: [ 538.070354][ T9463] [ 538.073271][ T9463] dump_stack_lvl+0x168/0x230 [ 538.077930][ T9463] ? show_regs_print_info+0x20/0x20 [ 538.083115][ T9463] ? load_image+0x3b0/0x3b0 [ 538.087615][ T9463] ? _raw_spin_lock_irqsave+0xb0/0xf0 [ 538.092984][ T9463] print_address_description+0x60/0x2d0 [ 538.098536][ T9463] ? ax25_dev_device_down+0x35e/0x520 [ 538.103901][ T9463] kasan_report+0xdf/0x130 [ 538.108305][ T9463] ? ax25_dev_device_down+0x35e/0x520 [ 538.113662][ T9463] ? kfree+0xef/0x2a0 [ 538.117624][ T9463] kasan_check_range+0x27b/0x290 [ 538.122546][ T9463] ax25_dev_device_down+0x35e/0x520 [ 538.127732][ T9463] ax25_device_event+0x4b4/0x4f0 [ 538.132658][ T9463] raw_notifier_call_chain+0xcb/0x160 [ 538.138026][ T9463] __dev_notify_flags+0x178/0x2d0 [ 538.143043][ T9463] ? __dev_change_flags+0x6a0/0x6a0 [ 538.148227][ T9463] ? __dev_change_flags+0x4bb/0x6a0 [ 538.153424][ T9463] ? dev_get_flags+0x1c0/0x1c0 [ 538.158182][ T9463] ? dev_ioctl+0x54e/0xe50 [ 538.162581][ T9463] ? dev_ioctl+0x54e/0xe50 [ 538.166989][ T9463] dev_change_flags+0xe3/0x1a0 [ 538.171821][ T9463] dev_ifsioc+0x147/0xe70 [ 538.176149][ T9463] ? dev_ioctl+0xe50/0xe50 [ 538.180549][ T9463] ? apparmor_capable+0x12c/0x190 [ 538.185555][ T9463] ? full_name_hash+0x8e/0xe0 [ 538.190217][ T9463] dev_ioctl+0x55f/0xe50 [ 538.194442][ T9463] ? _copy_from_user+0x111/0x170 [ 538.199360][ T9463] sock_do_ioctl+0x222/0x2f0 [ 538.203932][ T9463] ? sock_show_fdinfo+0xb0/0xb0 [ 538.208768][ T9463] sock_ioctl+0x4ed/0x6e0 [ 538.213081][ T9463] ? sock_poll+0x3f0/0x3f0 [ 538.217505][ T9463] ? bpf_lsm_file_ioctl+0x5/0x10 [ 538.222432][ T9463] ? security_file_ioctl+0x7c/0xa0 [ 538.227529][ T9463] ? sock_poll+0x3f0/0x3f0 [ 538.231922][ T9463] __se_sys_ioctl+0xfa/0x170 [ 538.236493][ T9463] do_syscall_64+0x4c/0xa0 [ 538.240892][ T9463] ? clear_bhb_loop+0x30/0x80 [ 538.245547][ T9463] ? clear_bhb_loop+0x30/0x80 [ 538.250200][ T9463] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 538.256073][ T9463] RIP: 0033:0x7fdb9ad76929 [ 538.260471][ T9463] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 538.272756][ T9179] usb 3-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04 [ 538.280056][ T9463] RSP: 002b:00007fdb98bde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 538.280082][ T9463] RAX: ffffffffffffffda RBX: 00007fdb9af9dfa0 RCX: 00007fdb9ad76929 [ 538.280095][ T9463] RDX: 0000200000000000 RSI: 0000000000008914 RDI: 000000000000000a [ 538.289755][ T9179] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 538.297476][ T9463] RBP: 00007fdb9adf8b39 R08: 0000000000000000 R09: 0000000000000000 [ 538.297493][ T9463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 538.297503][ T9463] R13: 0000000000000000 R14: 00007fdb9af9dfa0 R15: 00007ffcf28e74d8 [ 538.297520][ T9463] [ 538.297526][ T9463] [ 538.297531][ T9463] Allocated by task 4923: [ 538.297540][ T9463] __kasan_kmalloc+0xb5/0xf0 [ 538.309553][ T9179] usb 3-1: Product: syz [ 538.313634][ T9463] ax25_dev_device_up+0x50/0x580 [ 538.313658][ T9463] ax25_device_event+0x483/0x4f0 [ 538.313674][ T9463] raw_notifier_call_chain+0xcb/0x160 [ 538.313692][ T9463] __dev_notify_flags+0x178/0x2d0 [ 538.322193][ T9179] usb 3-1: Manufacturer: syz [ 538.329601][ T9463] dev_change_flags+0xe3/0x1a0 [ 538.329627][ T9463] dev_ifsioc+0x147/0xe70 [ 538.329640][ T9463] dev_ioctl+0x55f/0xe50 [ 538.329652][ T9463] sock_do_ioctl+0x222/0x2f0 [ 538.329667][ T9463] sock_ioctl+0x4ed/0x6e0 [ 538.329678][ T9463] __se_sys_ioctl+0xfa/0x170 [ 538.329692][ T9463] do_syscall_64+0x4c/0xa0 [ 538.329707][ T9463] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 538.338717][ T9179] usb 3-1: SerialNumber: syz [ 538.345620][ T9463] [ 538.345627][ T9463] Freed by task 9463: [ 538.345634][ T9463] kasan_set_track+0x4b/0x70 [ 538.345655][ T9463] kasan_set_free_info+0x1f/0x40 [ 538.345668][ T9463] ____kasan_slab_free+0xd5/0x110 [ 538.345684][ T9463] slab_free_freelist_hook+0xea/0x170 [ 538.345700][ T9463] kfree+0xef/0x2a0 [ 538.345715][ T9463] ax25_dev_device_down+0x1c0/0x520 [ 538.350622][ T9179] usb 3-1: config 0 descriptor?? [ 538.351029][ T9463] ax25_device_event+0x4b4/0x4f0 [ 538.351051][ T9463] raw_notifier_call_chain+0xcb/0x160 [ 538.480235][ T9463] __dev_notify_flags+0x178/0x2d0 [ 538.485244][ T9463] dev_change_flags+0xe3/0x1a0 [ 538.489990][ T9463] dev_ifsioc+0x147/0xe70 [ 538.494301][ T9463] dev_ioctl+0x55f/0xe50 [ 538.498521][ T9463] sock_do_ioctl+0x222/0x2f0 [ 538.503092][ T9463] sock_ioctl+0x4ed/0x6e0 [ 538.507398][ T9463] __se_sys_ioctl+0xfa/0x170 [ 538.511963][ T9463] do_syscall_64+0x4c/0xa0 [ 538.516357][ T9463] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 538.522238][ T9463] [ 538.524540][ T9463] The buggy address belongs to the object at ffff8880637e3d00 [ 538.524540][ T9463] which belongs to the cache kmalloc-192 of size 192 [ 538.538583][ T9463] The buggy address is located 184 bytes inside of [ 538.538583][ T9463] 192-byte region [ffff8880637e3d00, ffff8880637e3dc0) [ 538.551835][ T9463] The buggy address belongs to the page: [ 538.557445][ T9463] page:ffffea00018df8c0 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff8880637e3100 pfn:0x637e3 [ 538.568884][ T9463] flags: 0xfff00000000200(slab|node=0|zone=1|lastcpupid=0x7ff) [ 538.576433][ T9463] raw: 00fff00000000200 ffffea00007f0988 ffffea000075a948 ffff888016841a00 [ 538.585012][ T9463] raw: ffff8880637e3100 000000000010000c 00000001ffffffff 0000000000000000 [ 538.593576][ T9463] page dumped because: kasan: bad access detected [ 538.599976][ T9463] page_owner tracks the page as allocated [ 538.605676][ T9463] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x112cc0(GFP_USER|__GFP_NOWARN|__GFP_NORETRY), pid 4449, ts 76442135203, free_ts 76431691697 [ 538.613122][ T9179] usb 3-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state [ 538.621626][ T9463] get_page_from_freelist+0x1b77/0x1c60 [ 538.621648][ T9463] __alloc_pages+0x1e1/0x470 [ 538.640024][ T9463] new_slab+0xc0/0x4b0 [ 538.644076][ T9463] ___slab_alloc+0x81e/0xdf0 [ 538.648647][ T9463] kmem_cache_alloc_trace+0x1a5/0x2a0 [ 538.654003][ T9463] push_stack+0x90/0x510 [ 538.658223][ T9463] do_check+0xc414/0xeac0 [ 538.662529][ T9463] do_check_common+0xe67/0x16c0 [ 538.667365][ T9463] bpf_check+0x31f3/0xf090 [ 538.671773][ T9463] bpf_prog_load+0x1043/0x1550 [ 538.676522][ T9463] __sys_bpf+0x4c2/0x670 [ 538.680748][ T9463] __x64_sys_bpf+0x78/0x90 [ 538.685145][ T9463] do_syscall_64+0x4c/0xa0 [ 538.689544][ T9463] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 538.695422][ T9463] page last free stack trace: [ 538.700072][ T9463] free_unref_page_prepare+0x637/0x6c0 [ 538.705517][ T9463] free_unref_page+0x94/0x280 [ 538.710176][ T9463] qlist_free_all+0x35/0x90 [ 538.714655][ T9463] kasan_quarantine_reduce+0x150/0x160 [ 538.720095][ T9463] __kasan_krealloc+0xa7/0x1b0 [ 538.724958][ T9463] krealloc+0xb1/0xf0 [ 538.728921][ T9463] do_check+0x2d3d/0xeac0 [ 538.733230][ T9463] do_check_common+0xe67/0x16c0 [ 538.738060][ T9463] bpf_check+0x31f3/0xf090 [ 538.742458][ T9463] bpf_prog_load+0x1043/0x1550 [ 538.747206][ T9463] __sys_bpf+0x4c2/0x670 [ 538.751452][ T9463] __x64_sys_bpf+0x78/0x90 [ 538.755947][ T9463] do_syscall_64+0x4c/0xa0 [ 538.760344][ T9463] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 538.766217][ T9463] [ 538.768519][ T9463] Memory state around the buggy address: [ 538.774128][ T9463] ffff8880637e3c80: 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc fc [ 538.782203][ T9463] ffff8880637e3d00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 538.790534][ T9463] >ffff8880637e3d80: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 538.798577][ T9463] ^ [ 538.804454][ T9463] ffff8880637e3e00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 538.812860][ T9463] ffff8880637e3e80: 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc fc [ 538.820920][ T9463] ================================================================== [ 538.858724][ T9463] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 538.865940][ T9463] CPU: 0 PID: 9463 Comm: syz.5.1281 Tainted: G B 5.15.186-syzkaller #0 [ 538.875468][ T9463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 538.885509][ T9463] Call Trace: [ 538.888774][ T9463] [ 538.891685][ T9463] dump_stack_lvl+0x168/0x230 [ 538.896346][ T9463] ? show_regs_print_info+0x20/0x20 [ 538.901526][ T9463] ? load_image+0x3b0/0x3b0 [ 538.906007][ T9463] panic+0x2c9/0x7f0 [ 538.909881][ T9463] ? bpf_jit_dump+0xd0/0xd0 [ 538.914359][ T9463] ? _raw_spin_unlock_irqrestore+0xf6/0x100 [ 538.920232][ T9463] ? _raw_spin_unlock+0x40/0x40 [ 538.925061][ T9463] ? ax25_dev_device_down+0x35e/0x520 [ 538.930409][ T9463] check_panic_on_warn+0x80/0xa0 [ 538.935325][ T9463] ? ax25_dev_device_down+0x35e/0x520 [ 538.940680][ T9463] end_report+0x6d/0xf0 [ 538.944811][ T9463] kasan_report+0x102/0x130 [ 538.949294][ T9463] ? ax25_dev_device_down+0x35e/0x520 [ 538.954642][ T9463] ? kfree+0xef/0x2a0 [ 538.958602][ T9463] kasan_check_range+0x27b/0x290 [ 538.963527][ T9463] ax25_dev_device_down+0x35e/0x520 [ 538.968726][ T9463] ax25_device_event+0x4b4/0x4f0 [ 538.973648][ T9463] raw_notifier_call_chain+0xcb/0x160 [ 538.978999][ T9463] __dev_notify_flags+0x178/0x2d0 [ 538.984005][ T9463] ? __dev_change_flags+0x6a0/0x6a0 [ 538.989179][ T9463] ? __dev_change_flags+0x4bb/0x6a0 [ 538.994359][ T9463] ? dev_get_flags+0x1c0/0x1c0 [ 538.999100][ T9463] ? dev_ioctl+0x54e/0xe50 [ 539.003495][ T9463] ? dev_ioctl+0x54e/0xe50 [ 539.007886][ T9463] dev_change_flags+0xe3/0x1a0 [ 539.012632][ T9463] dev_ifsioc+0x147/0xe70 [ 539.016951][ T9463] ? dev_ioctl+0xe50/0xe50 [ 539.021346][ T9463] ? apparmor_capable+0x12c/0x190 [ 539.026346][ T9463] ? full_name_hash+0x8e/0xe0 [ 539.031003][ T9463] dev_ioctl+0x55f/0xe50 [ 539.035226][ T9463] ? _copy_from_user+0x111/0x170 [ 539.040158][ T9463] sock_do_ioctl+0x222/0x2f0 [ 539.044736][ T9463] ? sock_show_fdinfo+0xb0/0xb0 [ 539.049563][ T9463] sock_ioctl+0x4ed/0x6e0 [ 539.053869][ T9463] ? sock_poll+0x3f0/0x3f0 [ 539.058262][ T9463] ? bpf_lsm_file_ioctl+0x5/0x10 [ 539.063176][ T9463] ? security_file_ioctl+0x7c/0xa0 [ 539.068270][ T9463] ? sock_poll+0x3f0/0x3f0 [ 539.072664][ T9463] __se_sys_ioctl+0xfa/0x170 [ 539.077240][ T9463] do_syscall_64+0x4c/0xa0 [ 539.081635][ T9463] ? clear_bhb_loop+0x30/0x80 [ 539.086284][ T9463] ? clear_bhb_loop+0x30/0x80 [ 539.090936][ T9463] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 539.096803][ T9463] RIP: 0033:0x7fdb9ad76929 [ 539.101203][ T9463] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 539.120786][ T9463] RSP: 002b:00007fdb98bde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 539.129180][ T9463] RAX: ffffffffffffffda RBX: 00007fdb9af9dfa0 RCX: 00007fdb9ad76929 [ 539.137138][ T9463] RDX: 0000200000000000 RSI: 0000000000008914 RDI: 000000000000000a [ 539.145089][ T9463] RBP: 00007fdb9adf8b39 R08: 0000000000000000 R09: 0000000000000000 [ 539.153036][ T9463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 539.160985][ T9463] R13: 0000000000000000 R14: 00007fdb9af9dfa0 R15: 00007ffcf28e74d8 [ 539.168936][ T9463] [ 539.172169][ T9463] Kernel Offset: disabled [ 539.176527][ T9463] Rebooting in 86400 seconds..