last executing test programs: 6.218274925s ago: executing program 2 (id=5506): syz_usb_ep_write(0xffffffffffffffff, 0xa, 0x7e, &(0x7f0000000400)="ed6c64b3c363e342d84509e632bda55f3182d585c393390851629129fb4b3e41fb8494af119536dc87986c92d6b9f5eae506263e9ab0fa0b8a867b3484d3fb4212ebe5178b770bedb4d73447a0303fc14cb3ec59739b9d8de05c2ed0512bf1d11db445dfedecabbc42f6cc2313c3bdf3b1f47824f6d6ca19c0e78b9a6a9a") sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xfa) sched_setscheduler(r0, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeea, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) socket$inet6(0xa, 0x3, 0x7) socket$inet(0xa, 0x801, 0x84) syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040ed5000410"], 0x11) 4.914192997s ago: executing program 0 (id=5516): r0 = syz_usb_connect(0x2, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000e5cf01406e0510401c20000000010902120001000000000904"], 0x0) syz_usb_control_io$uac1(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io$printer(r0, 0x0, &(0x7f00000005c0)={0x34, &(0x7f0000000280)={0x20, 0x14, 0x1, '%'}, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f00000009c0)={0x18, &(0x7f00000007c0)=ANY=[@ANYBLOB="000306"], 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000a80)={0x44, &(0x7f00000002c0)=ANY=[@ANYBLOB="0018290000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 4.610023966s ago: executing program 2 (id=5518): open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0) r0 = openat$uhid(0xffffffffffffff9c, &(0x7f00000006c0), 0x802, 0x0) write$UHID_CREATE(r0, &(0x7f0000000240)={0x0, {'syz0\x00', 'syz1\x00', 'syz1\x00', 0x0}}, 0x120) r1 = socket$key(0xf, 0x3, 0x2) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) recvmmsg(r1, &(0x7f0000000d00)=[{{0x0, 0x0, 0x0}, 0x9}], 0x1, 0x2, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x50) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, 0x0) r2 = syz_io_uring_setup(0x9e, &(0x7f0000000640)={0x0, 0x2556, 0x1000, 0x2, 0x24d}, &(0x7f00000006c0)=0x0, &(0x7f0000000000)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f00000002c0)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000180)=[{&(0x7f0000000300)=""/139, 0x8b}], 0x1}) io_uring_enter(r2, 0x100847c0, 0x0, 0x1, 0x0, 0x0) 4.248475566s ago: executing program 1 (id=5522): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0) munmap(&(0x7f0000647000/0x1000)=nil, 0x1000) munmap(&(0x7f0000fde000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) munmap(&(0x7f0000584000/0x800000)=nil, 0x800000) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x0) r2 = io_uring_setup(0x3f53, 0x0) io_uring_enter(r2, 0x6ce6, 0x189d, 0x28, &(0x7f0000000180)={[0x1]}, 0x8) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000480)=ANY=[@ANYBLOB="78010000", @ANYRES16=r1, @ANYBLOB="010025bd7000000000003b00000008000300", @ANYRES32, @ANYBLOB="5a01330080800300ffffffffffff08021100000050505050505000001e000d01000000000000000064000805000602020202020201000406034001000400060202002a01013c04010557022d1a004012fd07000000000000070000000b000000060000040000077206030303030303710703ff00faff8d6076060e3903000200ddc674"], 0x178}, 0x1, 0x0, 0x0, 0x8090}, 0x20040000) 4.147238252s ago: executing program 4 (id=5523): r0 = socket$inet(0xa, 0x801, 0x84) connect$inet(r0, &(0x7f0000000340)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) listen(r0, 0x8) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmmsg$unix(r1, &(0x7f0000001840)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8054}}], 0x1, 0x4000045) sendto$inet(r1, &(0x7f00000002c0)="cc", 0x1, 0x880, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000100)={0x3}, 0x10) sendto$inet(r1, &(0x7f0000000300)="b3", 0x1, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f00000003c0)={0x0, 0x4}, 0x8) sendto$inet6(r1, &(0x7f00000001c0)="0000000096aafa630573a0778ce5093dd6ea7c4c7c6a6d4715c3ad3c99d7584292aabe4a7f5aa37b2ec0f62a050ef4cd1be0bee54c3c769abb1ead9fb585029a47ea44f92b6aaa5fe69f62c80d88529f300ef9f58ebcd3ede40bcda2cd9261f4dbb87bc13f71eed7a16928a505000000000000009f0656959127934f248dc784ff1df9ed3676be78f32c9e16c35f32827a2f1e01bd59eeca3b0e87dc3ecd917991914a722f", 0xa5, 0x8840, 0x0, 0x0) close(r1) 4.011640016s ago: executing program 1 (id=5524): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a3000000000090003007379"], 0x7c}}, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_MSG_GETRULE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[@ANYBLOB="38000000070a05000000000000000000020000080c00034000000000000000020900020073790100000000000900010073797a30"], 0x38}}, 0x0) 4.010342662s ago: executing program 4 (id=5525): r0 = socket$nl_route(0x10, 0x3, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'}) ioctl(r0, 0x8b1b, &(0x7f0000000040)) 3.90446851s ago: executing program 4 (id=5526): socket(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000280)=0x6) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000380)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, 0x0, 0x0, 0x2, 0x0) bpf$ITER_CREATE(0x21, 0x0, 0x0) r3 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2) ioctl$vim2m_VIDIOC_S_FMT(r3, 0xc0d05605, &(0x7f0000000140)={0x1, @pix={0x99, 0x0, 0x35315241, 0x6, 0xff, 0x0, 0x8, 0x4, 0x0, 0x2, 0x2, 0x3}}) 3.865668918s ago: executing program 1 (id=5527): r0 = openat(0xffffffffffffff9c, &(0x7f00000003c0)='.\x00', 0x80400, 0x0) setreuid(0xffffffffffffffff, 0xee00) fsetxattr$security_evm(r0, &(0x7f00000000c0), &(0x7f0000000580)=ANY=[], 0x1009, 0x3) 3.692597451s ago: executing program 1 (id=5528): syz_usb_ep_write(0xffffffffffffffff, 0xa, 0x7e, &(0x7f0000000400)="ed6c64b3c363e342d84509e632bda55f3182d585c393390851629129fb4b3e41fb8494af119536dc87986c92d6b9f5eae506263e9ab0fa0b8a867b3484d3fb4212ebe5178b770bedb4d73447a0303fc14cb3ec59739b9d8de05c2ed0512bf1d11db445dfedecabbc42f6cc2313c3bdf3b1f47824f6d6ca19c0e78b9a6a9a") sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xfa) sched_setscheduler(r0, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeea, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) socket$inet6(0xa, 0x3, 0x7) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000000000040000000400000000200000000000000000000030000000003000000030000000000000000000000000000010500890000000000000000000000000300000000020000000200000000000000"], 0x0, 0x5a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28) syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040ed5000410"], 0x11) 3.174082452s ago: executing program 2 (id=5534): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0) munmap(&(0x7f0000647000/0x1000)=nil, 0x1000) munmap(&(0x7f0000fde000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) munmap(&(0x7f0000584000/0x800000)=nil, 0x800000) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x0) r2 = io_uring_setup(0x3f53, 0x0) io_uring_enter(r2, 0x6ce6, 0x189d, 0x28, &(0x7f0000000180)={[0x1]}, 0x8) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000480)=ANY=[@ANYBLOB="78010000", @ANYRES16=r1, @ANYBLOB="010025bd7000000000003b00000008000300", @ANYRES32, @ANYBLOB="5a01330080800300ffffffffffff08021100000050505050505000001e000d01000000000000000064000805000602020202020201000406034001000400060202002a01013c04010557022d1a004012fd07000000000000070000000b000000060000040000077206030303030303710703ff00faff8d6076060e3903000200ddc674"], 0x178}, 0x1, 0x0, 0x0, 0x8090}, 0x20040000) 3.034104628s ago: executing program 2 (id=5535): syz_open_dev$sndmidi(&(0x7f0000000300), 0x2, 0x10100) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r2, 0x84, 0x81, &(0x7f0000000280)="1a000000020000", 0x7) setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r2, 0x84, 0x15, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffff}, 0x0) r3 = syz_open_dev$sndmidi(&(0x7f00000002c0), 0x2, 0x141101) dup(r3) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_PROG_DETACH(0x8, 0x0, 0x10) getresuid(&(0x7f0000000040)=0x0, 0x0, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x100) lchown(0x0, r4, r5) ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0) prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000001000/0x4000)=nil) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0) brk(0x200000001000) r6 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r6, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x400, 0x0, 0x30}, 0x9c) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r6, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x8a}, 0x9c) bind$inet6(r6, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendto$inet6(r6, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) mlockall(0x7) shutdown(r6, 0x2) 2.457189971s ago: executing program 4 (id=5536): r0 = socket$nl_route(0x10, 0x3, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'}) ioctl(r0, 0x8b1b, &(0x7f0000000040)) 2.321136642s ago: executing program 4 (id=5537): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014"], 0x7c}}, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_MSG_GETRULE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[@ANYBLOB="38000000070a05000000000000000000020000080c00034000000000000000020900020073790100000000000900010073797a30"], 0x38}}, 0x0) 2.088272158s ago: executing program 1 (id=5538): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$inet_dccp(0x2, 0x6, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000140)={'wlan1\x00', 0x0}) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000003700000008000300", @ANYRES32=r2, @ANYBLOB='\b\x00'], 0x2c}}, 0x0) 1.922944413s ago: executing program 4 (id=5540): getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, 0x0, 0x0) syz_usb_connect(0x3, 0x71, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0}) openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee6, 0x8031, 0xffffffffffffffff, 0x6770c000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) recvmmsg(r3, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x40000000000012d, 0x2, 0x0) setsockopt$inet_int(r3, 0x0, 0x7, &(0x7f0000000140)=0x30, 0x4) bind$inet(r3, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) syz_emit_ethernet(0x2e, &(0x7f0000002840)={@broadcast, @link_local, @void, {@ipv4={0x800, @udp={{0x6, 0x4, 0x0, 0x3, 0x20, 0x68, 0x0, 0x0, 0x11, 0x0, @empty, @empty, {[@rr={0x7, 0x3, 0xc7}]}}, {0x0, 0x4e20, 0x8}}}}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000000cc0)=@newtaction={0x14, 0x30, 0x12f}, 0x14}}, 0x0) 1.851997179s ago: executing program 1 (id=5541): socket$netlink(0x10, 0x3, 0x0) socket(0x400000000010, 0x3, 0x0) r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x80400, 0x0) socket(0x10, 0x803, 0x0) r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0) syz_usb_control_io$hid(r1, 0x0, 0x0) syz_usb_control_io$hid(r1, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000200)={0x0, 0x22, 0xf, {[@global=@item_012={0x0, 0x1, 0x5}, @local=@item_4={0x3, 0x2, 0x0, "45501821"}, @global=@item_012={0x1, 0x1, 0x9, "f5"}, @global=@item_012={0x1, 0x1, 0x7, "84"}, @main=@item_4={0x3, 0x0, 0x8, "9e3ce079"}]}}, 0x0}, 0x0) r2 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0) ioctl$HIDIOCGVERSION(r2, 0x80044801, 0x0) syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[], 0x0) syz_open_dev$char_usb(0xc, 0xb4, 0x0) preadv(0xffffffffffffffff, 0x0, 0x0, 0x4, 0x0) ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(0xffffffffffffffff, 0x3b87, 0x0) pselect6(0x40, &(0x7f0000000600)={0x11, 0xfffffffffffffffc, 0x2, 0x0, 0xfffffffffffffffe, 0x0, 0x4, 0x8}, 0x0, &(0x7f0000000680)={0x7fc, 0x2, 0x800000, 0xfffffffffffffffe, 0x0, 0xc3ad}, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 1.778246775s ago: executing program 2 (id=5542): syz_usb_connect$uac1(0x0, 0x9b, &(0x7f0000000000)=ANY=[@ANYBLOB="12010002000000106b1d01014000090203010902890003011690030904000000010100000a2401220d09020102132406030106030002000500090009000300f90904010000010200000904010101010200000905010940000403180725018001050009040200000102000009040201010102000008248dc20004ff090824021706010801072401090e021009058209ff"], 0x0) 1.645032743s ago: executing program 3 (id=5545): r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x103201, 0x0) write$P9_RSTATu(r0, &(0x7f0000000080)=ANY=[], 0xfd85) 1.518190416s ago: executing program 0 (id=5546): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@ipv6_newroute={0x30, 0x18, 0x1ef, 0x0, 0x25dfdbfc, {0xa, 0x0, 0x0, 0x0, 0x0, 0x2}, [@RTA_GATEWAY={0x14, 0x5, @loopback={0x0, 0x2}}]}, 0x30}, 0x1, 0x11}, 0x0) 1.493992248s ago: executing program 3 (id=5547): r0 = socket$nl_route(0x10, 0x3, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'}) ioctl(r0, 0x8b1b, &(0x7f0000000040)) 1.414285656s ago: executing program 0 (id=5548): getpid() ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x49) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000003c0)=[@text64={0x40, 0x0}], 0x1, 0x74, 0x0, 0x0) sendmsg$TIPC_NL_MEDIA_GET(0xffffffffffffffff, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f00000004c0)={0x14, 0x0, 0x303, 0x70bd26, 0x25dfdbff}, 0x14}}, 0x84) ioctl$KVM_RUN(r2, 0xae80, 0x0) 1.404275943s ago: executing program 3 (id=5549): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000005c0)={{0x8180000, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x10}, {0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x6, 0x0, 0xb}, {0x2000, 0x5000, 0xc, 0x0, 0x7, 0x2, 0x6, 0x0, 0x3, 0x0, 0xfe, 0xfc}, {0x3000, 0x8000000, 0x0, 0x8, 0x0, 0x0, 0x6, 0x6, 0x0, 0x0, 0x10}, {0x10000, 0x1, 0xd, 0x0, 0x0, 0x4, 0x0, 0x3, 0x0, 0x3c, 0x0, 0xff}, {0x0, 0x3000, 0x0, 0x0, 0x0, 0x3, 0x2}, {0x0, 0x5000, 0xe, 0xfe, 0x0, 0x0, 0x0, 0xb0}, {0xeeee8000, 0x0, 0x0, 0x0, 0x0, 0x89, 0x0, 0xc, 0x26, 0x4}, {0x80a0000, 0x3}, {0xdddd1000, 0x8}, 0x9dfcffd3, 0x0, 0x0, 0x2b, 0x0, 0xa4abab79ec66b0e6, 0x0, [0x0, 0x20000000, 0x1, 0xfffffffffffffffc]}) ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000)={0x1000, 0x155540004, 0x4, 0x20, 0x8}) 902.093728ms ago: executing program 3 (id=5550): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014"], 0x7c}}, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_MSG_GETRULE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[@ANYBLOB="38000000070a05000000000000000000020000080c00034000000000000000020900020073790100000000000900010073797a30"], 0x38}}, 0x0) 631.452839ms ago: executing program 3 (id=5551): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$inet_dccp(0x2, 0x6, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000140)={'wlan1\x00', 0x0}) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000003700000008000300", @ANYRES32=r2, @ANYBLOB='\b\x00'], 0x2c}}, 0x0) 382.978086ms ago: executing program 3 (id=5552): r0 = socket(0x400000000010, 0x3, 0x0) setsockopt$RXRPC_SECURITY_KEY(r0, 0x110, 0x1, &(0x7f0000000000)='#!.\x00', 0x4) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) syz_open_dev$evdev(&(0x7f00000003c0), 0x742, 0x40) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x2, 0x800, 0x0, 0x8001, 0x8000000, 0xfffffffffffffffe, 0x0, 0x4}, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109842, 0x0) syz_open_dev$media(0x0, 0x8, 0x10b482) ioctl$SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, &(0x7f00000000c0)=0xfffffff8) r3 = socket$kcm(0x10, 0x2, 0x4) sendmsg$inet(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="5c00000014006b0300000000006c1d0010047e0c8131a6080c000af32c6e020075f800250002000f00e5aa000017d34460bc24eab556a705251e6182949a36c2d13b48df000000000000ecb8f6ec63c9f4d4938037e786a6d1bdd700", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) unshare(0x24060400) r4 = socket$pppl2tp(0x18, 0x1, 0x1) socket$inet_udp(0x2, 0x2, 0x0) connect$pppl2tp(r4, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, r4, {0x2, 0x4e22, @local}, 0x0, 0x1, 0x0, 0x2}}, 0x26) getpeername(r4, 0x0, &(0x7f00000000c0)) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a0b040000000000000000020000004000048018000180080001006f7366000c000280080001400000000424000180090001006d6574610000000014000280080002400000000c08000340000000170900010073797a30000000000900020073797a32"], 0x94}}, 0x0) 244.213316ms ago: executing program 0 (id=5553): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000000000000001000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000280)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff) sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)={0x28, r2, 0x70f, 0x0, 0x0, {{}, {@void, @val={0x8, 0xe}, @val={0xc, 0x99, {0x0, 0x39}}}}}, 0x28}}, 0x0) 133.67364ms ago: executing program 2 (id=5554): r0 = open(&(0x7f0000000040)='./file0\x00', 0x101040, 0x0) fcntl$setlease(r0, 0x400, 0x1) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) truncate(&(0x7f0000000000)='./file0\x00', 0x6) dup2(r1, r0) 73.992064ms ago: executing program 0 (id=5555): fsopen(0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{}, &(0x7f0000000040), &(0x7f0000000280)='%-010d \x00'}, 0x20) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001240)={&(0x7f0000000200)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18) syz_open_dev$evdev(0x0, 0x2, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, &(0x7f0000000000)=[{{0x3}, {0x1, 0x1}}, {{0x1, 0x0, 0x1}, {0x2, 0x0, 0x1}}], 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000180)={'vxcan1\x00', 0x0}) bind$can_raw(r2, &(0x7f0000000200)={0x1d, r3}, 0x10) sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=@getchain={0x24, 0x11, 0x839, 0x70bd25, 0x0, {0x0, 0x0, 0x0, r3, {0x1, 0x6}, {0xffff, 0xe}, {0x1}}}, 0x24}}, 0x0) 0s ago: executing program 0 (id=5556): r0 = syz_usb_connect(0x0, 0x1cb, &(0x7f0000000540)=ANY=[@ANYBLOB="12010000122f0d4071040403dfe4000000010902b901010000003f0904"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) ioctl$VIDIOC_TRY_EXT_CTRLS(0xffffffffffffffff, 0xc0205649, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000e00)={0x44, &(0x7f0000000500)=ANY=[@ANYBLOB="0003e9"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) kernel console output (not intermixed with test programs): 249 > 9 [ 790.788217][ T5151] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 790.798163][ T5151] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 790.807595][ T5151] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 791.387240][T16392] IPv6: Can't replace route, no match found [ 792.072158][T16434] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 32 [ 792.119456][T16383] chnl_net:caif_netlink_parms(): no params data found [ 792.151122][T16435] IPv6: Can't replace route, no match found [ 792.573821][T16383] bridge0: port 1(bridge_slave_0) entered blocking state [ 792.592826][T16383] bridge0: port 1(bridge_slave_0) entered disabled state [ 792.622307][T16383] bridge_slave_0: entered allmulticast mode [ 792.631057][T16383] bridge_slave_0: entered promiscuous mode [ 792.662714][T16383] bridge0: port 2(bridge_slave_1) entered blocking state [ 792.680650][T16383] bridge0: port 2(bridge_slave_1) entered disabled state [ 792.701338][T16383] bridge_slave_1: entered allmulticast mode [ 792.727947][T16383] bridge_slave_1: entered promiscuous mode [ 792.885705][ T5151] Bluetooth: hci1: command tx timeout [ 793.042641][T16383] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 793.166531][T16383] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 793.188926][T16475] IPv6: Can't replace route, no match found [ 793.475655][T16383] team0: Port device team_slave_0 added [ 793.567997][T16383] team0: Port device team_slave_1 added [ 793.677074][ T6670] batman_adv: batadv0: Interface deactivated: ip6gretap2 [ 793.944516][ T30] kauditd_printk_skb: 23 callbacks suppressed [ 793.944536][ T30] audit: type=1326 audit(1745306935.529:3296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16521 comm="syz.2.3253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b0ff8e169 code=0x7ffc0000 [ 794.047510][ T30] audit: type=1326 audit(1745306935.559:3297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16519 comm="syz.4.3252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 794.075861][ T6670] batman_adv: batadv0: Removing interface: ip6gretap2 [ 794.130666][ T30] audit: type=1326 audit(1745306935.559:3298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16519 comm="syz.4.3252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 794.156333][ T30] audit: type=1326 audit(1745306935.559:3299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16519 comm="syz.4.3252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=460 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 794.181214][ T30] audit: type=1326 audit(1745306935.559:3300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16519 comm="syz.4.3252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 794.207084][ T30] audit: type=1326 audit(1745306935.559:3301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16519 comm="syz.4.3252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 794.274072][ T30] audit: type=1326 audit(1745306935.569:3302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16521 comm="syz.2.3253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2b0ff8e169 code=0x7ffc0000 [ 794.342301][ T30] audit: type=1326 audit(1745306935.569:3303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16521 comm="syz.2.3253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b0ff8e169 code=0x7ffc0000 [ 794.365614][ T30] audit: type=1326 audit(1745306935.569:3304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16521 comm="syz.2.3253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b0ff8e169 code=0x7ffc0000 [ 794.388949][ T30] audit: type=1326 audit(1745306935.569:3305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16521 comm="syz.2.3253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2b0ff8e169 code=0x7ffc0000 [ 794.676169][ T6670] bond0 (unregistering): (slave 4): Releasing backup interface [ 794.687132][ T6670] : left promiscuous mode [ 794.693158][ T6670] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 794.702407][ T6670] bond_slave_1: left promiscuous mode [ 794.709849][ T6670] bond0 (unregistering): (slave team0): Releasing backup interface [ 794.719706][ T6670] team0: left promiscuous mode [ 794.725457][ T6670] team_slave_0: left promiscuous mode [ 794.731026][ T6670] team_slave_1: left promiscuous mode [ 794.737483][ T6670] bond0 (unregistering): Released all slaves [ 794.849753][ T6670] bond1 (unregistering): Released all slaves [ 794.963095][ T6670] bond2 (unregistering): Released all slaves [ 794.965365][ T5151] Bluetooth: hci1: command tx timeout [ 795.002129][T16383] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 795.009655][T16383] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 795.036169][T16383] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 795.052219][T16513] tipc: Started in network mode [ 795.066441][T16513] tipc: Node identity ac14140f, cluster identity 4711 [ 795.073638][T16513] tipc: New replicast peer: 255.255.255.255 [ 795.098439][T16513] tipc: Enabled bearer , priority 10 [ 795.109434][T16532] IPv6: Can't replace route, no match found [ 795.155957][T16383] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 795.184466][T16383] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 795.239465][T16383] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 795.261236][ T6670] tipc: Disabling bearer [ 795.272997][ T6670] tipc: Left network mode [ 795.632150][T16383] hsr_slave_0: entered promiscuous mode [ 795.650553][T16383] hsr_slave_1: entered promiscuous mode [ 795.689822][T16383] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 795.725172][T16383] Cannot create hsr debugfs directory [ 796.097242][T16572] IPv6: Can't replace route, no match found [ 796.116369][ T6670] hsr_slave_0: left promiscuous mode [ 796.134123][ T6670] hsr_slave_1: left promiscuous mode [ 796.146691][ T6670] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 796.204146][ T6769] tipc: Node number set to 2886997007 [ 796.931989][ T6670] team0 (unregistering): Port device team_slave_1 removed [ 796.979597][ T6670] team0 (unregistering): Port device team_slave_0 removed [ 797.044460][ T5151] Bluetooth: hci1: command tx timeout [ 797.420467][T16574] tipc: Enabling of bearer rejected, failed to enable media [ 797.458365][T16603] IPv6: Can't replace route, no match found [ 797.666597][T16609] program syz.0.3282 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 798.037598][ T6670] IPVS: stop unused estimator thread 0... [ 798.403243][T16633] IPv6: Can't replace route, no match found [ 798.430771][T16631] block device autoloading is deprecated and will be removed. [ 798.430781][T15679] block device autoloading is deprecated and will be removed. [ 798.474330][T16631] syz.2.3289: attempt to access beyond end of device [ 798.474330][T16631] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 798.659276][T16641] tipc: Started in network mode [ 798.689265][T16641] tipc: Node identity ac14140f, cluster identity 4711 [ 798.724508][T16641] tipc: New replicast peer: 255.255.255.255 [ 798.731206][T16641] tipc: Enabled bearer , priority 10 [ 798.916294][T16383] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 798.960332][T16383] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 799.041874][T16383] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 799.097043][T16661] netlink: 60 bytes leftover after parsing attributes in process `syz.4.3299'. [ 799.111166][T16383] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 799.129076][ T5151] Bluetooth: hci1: command tx timeout [ 799.448248][T16668] syz.4.3303: attempt to access beyond end of device [ 799.448248][T16668] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 799.511458][T16383] 8021q: adding VLAN 0 to HW filter on device bond0 [ 799.590543][T16383] 8021q: adding VLAN 0 to HW filter on device team0 [ 799.642470][ T6674] bridge0: port 1(bridge_slave_0) entered blocking state [ 799.649773][ T6674] bridge0: port 1(bridge_slave_0) entered forwarding state [ 799.732503][ T6674] bridge0: port 2(bridge_slave_1) entered blocking state [ 799.739801][ T6674] bridge0: port 2(bridge_slave_1) entered forwarding state [ 799.844371][ T47] tipc: Node number set to 2886997007 [ 800.056142][T16383] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 800.173453][T16703] netlink: 48 bytes leftover after parsing attributes in process `syz.0.3313'. [ 800.213449][T16383] veth0_vlan: entered promiscuous mode [ 800.280957][T16383] veth1_vlan: entered promiscuous mode [ 800.417511][T16383] veth0_macvtap: entered promiscuous mode [ 800.471408][T16383] veth1_macvtap: entered promiscuous mode [ 800.572742][T16383] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 800.617630][T16383] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 800.652063][T16383] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 800.682830][T16721] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3319'. [ 800.704263][T16383] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 800.743647][T16721] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3319'. [ 800.759232][T16383] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 800.801153][T16721] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3319'. [ 800.836455][T16383] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 800.864064][T16383] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 800.877693][T16383] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 800.917481][T16383] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 800.968129][T16383] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 801.056538][T16383] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 801.097441][T16383] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 801.135445][T16383] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 801.163182][T16383] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 801.604658][T16492] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 801.633025][T16492] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 801.722582][T16492] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 801.771686][T16492] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 801.811285][T16764] binfmt_misc: register: failed to install interpreter file ./file2 [ 802.734083][ T30] kauditd_printk_skb: 71 callbacks suppressed [ 802.734105][ T30] audit: type=1326 audit(1745306944.319:3377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16793 comm="syz.3.3344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 802.854134][ T30] audit: type=1326 audit(1745306944.319:3378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16793 comm="syz.3.3344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 802.940340][ T30] audit: type=1326 audit(1745306944.329:3379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16793 comm="syz.3.3344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 803.054671][ T30] audit: type=1326 audit(1745306944.329:3380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16793 comm="syz.3.3344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 803.164015][ T30] audit: type=1326 audit(1745306944.329:3381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16793 comm="syz.3.3344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 803.290331][ T30] audit: type=1326 audit(1745306944.329:3382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16793 comm="syz.3.3344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 803.390032][ T30] audit: type=1326 audit(1745306944.479:3383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16793 comm="syz.3.3344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 803.487665][ T30] audit: type=1326 audit(1745306944.479:3384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16793 comm="syz.3.3344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 803.738705][ T5846] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 803.752697][ T5846] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 803.762315][ T5846] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 803.770536][ T5846] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 803.778660][ T5846] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 804.581506][ T6681] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 804.703321][T16821] chnl_net:caif_netlink_parms(): no params data found [ 804.893404][ T6681] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 805.012738][T16852] netlink: 132 bytes leftover after parsing attributes in process `wg1'. [ 805.093447][ T6681] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 805.250443][ T6681] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 805.427075][T16821] bridge0: port 1(bridge_slave_0) entered blocking state [ 805.484400][T16821] bridge0: port 1(bridge_slave_0) entered disabled state [ 805.491810][T16821] bridge_slave_0: entered allmulticast mode [ 805.527047][T16821] bridge_slave_0: entered promiscuous mode [ 805.538306][T16821] bridge0: port 2(bridge_slave_1) entered blocking state [ 805.554872][T16821] bridge0: port 2(bridge_slave_1) entered disabled state [ 805.572454][T16821] bridge_slave_1: entered allmulticast mode [ 805.589763][T16821] bridge_slave_1: entered promiscuous mode [ 805.845043][ T5151] Bluetooth: hci4: command tx timeout [ 805.961507][T16821] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 805.983772][T16821] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 806.225643][T16821] team0: Port device team_slave_0 added [ 806.297576][T16821] team0: Port device team_slave_1 added [ 806.463017][T16821] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 806.484502][T16821] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 806.533439][T16821] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 806.551841][T16821] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 806.558909][T16821] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 806.613359][T16821] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 807.075750][T16910] program syz.0.3383 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 807.154946][ T6681] geneve0 (unregistering): left promiscuous mode [ 807.177593][ T6681] team0: Port device geneve0 removed [ 807.361385][ T6681] bond0 (unregistering): (slave 4): Releasing backup interface [ 807.369760][ T6681] : left promiscuous mode [ 807.378378][ T6681] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 807.387684][ T6681] bond_slave_1: left promiscuous mode [ 807.394975][ T6681] bond0 (unregistering): (slave team0): Releasing backup interface [ 807.403513][ T6681] team0: left promiscuous mode [ 807.409123][ T6681] team_slave_0: left promiscuous mode [ 807.415520][ T6681] team_slave_1: left promiscuous mode [ 807.422824][ T6681] bond0 (unregistering): Released all slaves [ 807.460080][T16914] $H: renamed from bond0 (while UP) [ 807.535625][T16914] $H: entered promiscuous mode [ 807.558714][T16914] bond_slave_0: entered promiscuous mode [ 807.580295][T16914] bond_slave_1: entered promiscuous mode [ 807.736228][ T30] audit: type=1326 audit(1745306949.319:3385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16924 comm="syz.1.3387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 807.810200][ T30] audit: type=1326 audit(1745306949.319:3386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16924 comm="syz.1.3387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 807.883362][T16821] hsr_slave_0: entered promiscuous mode [ 807.897191][ T30] audit: type=1326 audit(1745306949.319:3387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16924 comm="syz.1.3387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 807.923321][T16821] hsr_slave_1: entered promiscuous mode [ 807.937345][ T5151] Bluetooth: hci4: command tx timeout [ 807.967670][T16821] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 807.975924][T16821] Cannot create hsr debugfs directory [ 808.009835][ T30] audit: type=1326 audit(1745306949.319:3388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16924 comm="syz.1.3387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 808.104029][ T30] audit: type=1326 audit(1745306949.319:3389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16924 comm="syz.1.3387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 808.225234][ T30] audit: type=1326 audit(1745306949.319:3390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16924 comm="syz.1.3387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 808.287688][ T30] audit: type=1326 audit(1745306949.319:3391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16924 comm="syz.1.3387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 808.579763][ T30] audit: type=1326 audit(1745306950.169:3392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16948 comm="syz.3.3394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 808.642367][ T30] audit: type=1326 audit(1745306950.169:3393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16948 comm="syz.3.3394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 808.740385][ T30] audit: type=1326 audit(1745306950.199:3394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16948 comm="syz.3.3394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=234 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 808.859820][ T30] audit: type=1326 audit(1745306950.199:3395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16948 comm="syz.3.3394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 809.661385][ T6681] tipc: Left network mode [ 809.668757][T16984] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3407'. [ 810.014661][ T5151] Bluetooth: hci4: command tx timeout [ 810.373068][ T6681] hsr_slave_0: left promiscuous mode [ 810.395014][ T6681] hsr_slave_1: left promiscuous mode [ 810.405572][ T6681] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 810.449788][ T6681] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 810.473313][ T6681] batman_adv: batadv0: Removing interface: macvtap0 [ 811.211997][ T6681] team0 (unregistering): Port device team_slave_1 removed [ 811.280172][ T6681] team0 (unregistering): Port device team_slave_0 removed [ 811.936246][T16821] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 811.948515][T16821] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 812.077901][T16821] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 812.094606][ T5151] Bluetooth: hci4: command tx timeout [ 812.111814][T16821] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 812.637755][T16821] 8021q: adding VLAN 0 to HW filter on device bond0 [ 812.763422][T16821] 8021q: adding VLAN 0 to HW filter on device team0 [ 812.807504][ T6678] bridge0: port 1(bridge_slave_0) entered blocking state [ 812.814836][ T6678] bridge0: port 1(bridge_slave_0) entered forwarding state [ 812.833002][ T6678] bridge0: port 2(bridge_slave_1) entered blocking state [ 812.840278][ T6678] bridge0: port 2(bridge_slave_1) entered forwarding state [ 812.932497][T17087] veth0_macvtap: left promiscuous mode [ 812.951012][T17087] macvtap0: entered promiscuous mode [ 813.062248][T16821] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 813.156504][ T30] kauditd_printk_skb: 15 callbacks suppressed [ 813.156533][ T30] audit: type=1326 audit(1745306954.749:3411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17100 comm="syz.4.3452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 813.218941][T16821] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 813.282853][ T30] audit: type=1326 audit(1745306954.779:3412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17100 comm="syz.4.3452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=245 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 813.418354][ T30] audit: type=1326 audit(1745306954.779:3413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17100 comm="syz.4.3452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 813.485120][T16821] veth0_vlan: entered promiscuous mode [ 813.502957][T16821] veth1_vlan: entered promiscuous mode [ 813.510225][T17113] netlink: 17 bytes leftover after parsing attributes in process `syz.0.3456'. [ 813.548305][ T30] audit: type=1326 audit(1745306955.119:3414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17109 comm="syz.3.3457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 813.622051][ T30] audit: type=1326 audit(1745306955.119:3415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17109 comm="syz.3.3457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 813.666784][T16821] veth0_macvtap: entered promiscuous mode [ 813.709055][T16821] veth1_macvtap: entered promiscuous mode [ 813.734036][ T30] audit: type=1326 audit(1745306955.119:3416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17109 comm="syz.3.3457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 813.812353][T16821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 813.837542][ T30] audit: type=1326 audit(1745306955.119:3417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17109 comm="syz.3.3457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 813.863854][T17123] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3461'. [ 813.867690][T16821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 813.887051][T17123] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 813.903603][T16821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 813.925582][ T30] audit: type=1326 audit(1745306955.119:3418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17109 comm="syz.3.3457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 813.950013][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 813.956579][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 813.973988][T16821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 813.984804][T16821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 813.996093][ T30] audit: type=1326 audit(1745306955.119:3419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17109 comm="syz.3.3457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 814.019070][T16821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 814.039335][T16821] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 814.052856][ T30] audit: type=1326 audit(1745306955.119:3420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17109 comm="syz.3.3457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 814.087480][T16821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 814.101709][T16821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 814.119101][T16821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 814.130473][T16821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 814.165546][T16821] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 814.208404][T16821] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 814.239386][T16821] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 814.300631][T16821] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 814.343239][T16821] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 814.352978][T16821] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 814.381205][ T47] hid-generic 0000:0000:0000.0027: unknown main item tag 0x0 [ 814.396870][ T47] hid-generic 0000:0000:0000.0027: hidraw0: HID v0.00 Device [syz1] on syz0 [ 814.423675][T16821] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 814.713465][ T6670] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 814.756690][ T6670] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 814.870454][ T6672] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 814.895814][ T6672] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 815.333560][T17170] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3473'. [ 815.395209][T17175] netlink: 100 bytes leftover after parsing attributes in process `syz.0.3474'. [ 816.405683][T17217] netlink: 100 bytes leftover after parsing attributes in process `syz.3.3490'. [ 817.411758][T17238] syz.2.3498: attempt to access beyond end of device [ 817.411758][T17238] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 817.631886][T17247] netlink: 100 bytes leftover after parsing attributes in process `syz.0.3503'. [ 818.046704][T17267] netlink: 104 bytes leftover after parsing attributes in process `syz.3.3513'. [ 818.136208][T17270] syz.1.3514: attempt to access beyond end of device [ 818.136208][T17270] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 818.169653][T17272] netlink: 100 bytes leftover after parsing attributes in process `syz.4.3517'. [ 818.855569][ T30] kauditd_printk_skb: 61 callbacks suppressed [ 818.855591][ T30] audit: type=1326 audit(1745306960.449:3482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17290 comm="syz.4.3524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 818.992061][ T30] audit: type=1326 audit(1745306960.529:3483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17290 comm="syz.4.3524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 819.021225][T17293] netlink: 104 bytes leftover after parsing attributes in process `syz.2.3527'. [ 819.084117][ T30] audit: type=1326 audit(1745306960.529:3484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17290 comm="syz.4.3524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 819.125849][ T30] audit: type=1326 audit(1745306960.529:3485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17290 comm="syz.4.3524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 819.185367][T17301] netlink: 100 bytes leftover after parsing attributes in process `syz.1.3528'. [ 819.264438][ T30] audit: type=1326 audit(1745306960.529:3486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17290 comm="syz.4.3524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 819.314073][ T30] audit: type=1326 audit(1745306960.529:3487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17290 comm="syz.4.3524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 819.394203][ T30] audit: type=1326 audit(1745306960.529:3488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17290 comm="syz.4.3524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 819.486722][ T30] audit: type=1326 audit(1745306960.529:3489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17290 comm="syz.4.3524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 819.547685][ T30] audit: type=1326 audit(1745306960.529:3490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17290 comm="syz.4.3524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 819.594156][ T30] audit: type=1326 audit(1745306960.549:3491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17290 comm="syz.4.3524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 820.024599][T17327] netlink: 104 bytes leftover after parsing attributes in process `syz.0.3540'. [ 820.197122][T17334] netlink: 100 bytes leftover after parsing attributes in process `syz.1.3543'. [ 820.752760][T17355] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3554'. [ 820.766588][T17355] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3554'. [ 820.880816][T17355] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3554'. [ 820.909309][T17355] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3554'. [ 820.913625][T17362] netlink: 100 bytes leftover after parsing attributes in process `syz.2.3557'. [ 821.126332][T17355] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3554'. [ 821.249896][T17378] syz.2.3563: attempt to access beyond end of device [ 821.249896][T17378] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 822.652863][T17444] syz.0.3593: attempt to access beyond end of device [ 822.652863][T17444] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 823.999842][T17509] IPv6: Can't replace route, no match found [ 824.057958][T17512] syz.3.3624: attempt to access beyond end of device [ 824.057958][T17512] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 824.125302][ T30] kauditd_printk_skb: 127 callbacks suppressed [ 824.125325][ T30] audit: type=1326 audit(1745306965.719:3619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17513 comm="syz.0.3627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 824.234097][ T30] audit: type=1326 audit(1745306965.719:3620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17513 comm="syz.0.3627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 824.291979][ T30] audit: type=1326 audit(1745306965.749:3621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17513 comm="syz.0.3627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=30 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 824.336685][T17520] __nla_validate_parse: 16 callbacks suppressed [ 824.336708][T17520] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3630'. [ 824.364011][ T30] audit: type=1326 audit(1745306965.749:3622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17513 comm="syz.0.3627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 824.404091][ T30] audit: type=1326 audit(1745306965.749:3623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17513 comm="syz.0.3627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 824.494111][ T30] audit: type=1326 audit(1745306965.749:3624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17513 comm="syz.0.3627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 824.607612][ T30] audit: type=1326 audit(1745306965.749:3625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17513 comm="syz.0.3627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=67 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 824.633657][T17527] x_tables: ip6_tables: mh match: only valid for protocol 135 [ 824.713541][ T30] audit: type=1326 audit(1745306965.749:3626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17513 comm="syz.0.3627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 824.840277][T17535] netlink: 64 bytes leftover after parsing attributes in process `syz.1.3638'. [ 825.231044][T17550] netlink: 'syz.2.3644': attribute type 11 has an invalid length. [ 825.267224][T17550] netlink: 448 bytes leftover after parsing attributes in process `syz.2.3644'. [ 825.643316][T17567] netlink: 56 bytes leftover after parsing attributes in process `syz.1.3653'. [ 825.696622][T17568] tipc: Enabling of bearer rejected, failed to enable media [ 826.214073][T17594] netlink: 56 bytes leftover after parsing attributes in process `syz.0.3665'. [ 827.099985][T17624] netlink: 56 bytes leftover after parsing attributes in process `syz.4.3677'. [ 827.519062][T17641] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3685'. [ 827.609334][T17648] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3688'. [ 827.775020][T17656] netlink: 56 bytes leftover after parsing attributes in process `syz.4.3690'. [ 828.144068][ T30] audit: type=1326 audit(1745306969.729:3627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17669 comm="syz.0.3698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 828.228307][ T30] audit: type=1326 audit(1745306969.729:3628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17669 comm="syz.0.3698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 828.507504][T17686] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3706'. [ 828.598555][T17690] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 828.622283][T17690] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported [ 829.803742][ T30] kauditd_printk_skb: 67 callbacks suppressed [ 829.803811][ T30] audit: type=1326 audit(1745306971.389:3696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17743 comm="syz.1.3733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 829.884470][ T30] audit: type=1326 audit(1745306971.429:3697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17743 comm="syz.1.3733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 829.960642][ T30] audit: type=1326 audit(1745306971.429:3698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17743 comm="syz.1.3733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 830.024068][ T30] audit: type=1326 audit(1745306971.429:3699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17743 comm="syz.1.3733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 830.118382][ T30] audit: type=1326 audit(1745306971.429:3700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17743 comm="syz.1.3733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 830.206410][ T30] audit: type=1326 audit(1745306971.429:3701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17743 comm="syz.1.3733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 830.298381][ T30] audit: type=1326 audit(1745306971.429:3702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17743 comm="syz.1.3733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 830.384337][ T30] audit: type=1326 audit(1745306971.429:3703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17743 comm="syz.1.3733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 830.506960][ T30] audit: type=1326 audit(1745306971.429:3704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17743 comm="syz.1.3733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 830.593895][ T30] audit: type=1326 audit(1745306971.429:3705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17743 comm="syz.1.3733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 830.989050][T17770] syz.0.3745: attempt to access beyond end of device [ 830.989050][T17770] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 831.718474][T17800] xt_hashlimit: max too large, truncated to 1048576 [ 833.780417][T17864] __nla_validate_parse: 1 callbacks suppressed [ 833.780443][T17864] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3783'. [ 834.346499][T17879] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3785'. [ 834.365390][T17879] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3785'. [ 835.406772][T17902] syz.2.3799: attempt to access beyond end of device [ 835.406772][T17902] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 836.679437][T17930] syz.3.3811: attempt to access beyond end of device [ 836.679437][T17930] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 837.492581][T17971] syz.1.3828: attempt to access beyond end of device [ 837.492581][T17971] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 838.149446][ T30] kauditd_printk_skb: 32 callbacks suppressed [ 838.149468][ T30] audit: type=1326 audit(1745306979.739:3738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17989 comm="syz.0.3841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 838.235936][ T30] audit: type=1326 audit(1745306979.739:3739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17989 comm="syz.0.3841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 838.363996][ T30] audit: type=1326 audit(1745306979.769:3740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17989 comm="syz.0.3841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 838.473291][ T30] audit: type=1326 audit(1745306979.769:3741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17989 comm="syz.0.3841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 838.539884][ T30] audit: type=1326 audit(1745306979.769:3742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17989 comm="syz.0.3841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 838.621169][ T30] audit: type=1326 audit(1745306979.769:3743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17989 comm="syz.0.3841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 838.753282][ T30] audit: type=1326 audit(1745306979.769:3744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17989 comm="syz.0.3841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 838.835761][ T30] audit: type=1326 audit(1745306979.769:3745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17989 comm="syz.0.3841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 838.863614][T18016] netlink: 68 bytes leftover after parsing attributes in process `syz.1.3851'. [ 838.889077][T18015] IPv4: Oversized IP packet from 127.202.26.0 [ 838.947768][ T30] audit: type=1326 audit(1745306979.769:3746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17989 comm="syz.0.3841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 838.980168][ T30] audit: type=1326 audit(1745306979.769:3747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17989 comm="syz.0.3841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 840.872397][T18084] netlink: 'syz.1.3883': attribute type 32 has an invalid length. [ 842.485265][T18136] syz.1.3908: attempt to access beyond end of device [ 842.485265][T18136] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 844.341853][T18200] syz.2.3938: attempt to access beyond end of device [ 844.341853][T18200] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 844.602057][T18213] loop9: detected capacity change from 0 to 7 [ 844.612351][ T5891] buffer_io_error: 4 callbacks suppressed [ 844.612373][ T5891] Buffer I/O error on dev loop9, logical block 0, async page read [ 844.627250][ T5891] Buffer I/O error on dev loop9, logical block 0, async page read [ 844.635618][ T5891] Buffer I/O error on dev loop9, logical block 0, async page read [ 844.643602][ T5891] Buffer I/O error on dev loop9, logical block 0, async page read [ 844.655731][ T5891] Buffer I/O error on dev loop9, logical block 0, async page read [ 844.663713][ T5891] Buffer I/O error on dev loop9, logical block 0, async page read [ 844.671957][ T5891] Buffer I/O error on dev loop9, logical block 0, async page read [ 844.680914][ T5891] ldm_validate_partition_table(): Disk read failed. [ 844.687731][ T5891] Buffer I/O error on dev loop9, logical block 0, async page read [ 844.697419][ T5891] Buffer I/O error on dev loop9, logical block 0, async page read [ 844.705555][ T5891] Buffer I/O error on dev loop9, logical block 0, async page read [ 844.713625][ T5891] Dev loop9: unable to read RDB block 0 [ 844.719754][ T5891] loop9: unable to read partition table [ 844.726120][ T5891] loop9: partition table beyond EOD, truncated [ 844.741016][T18213] ldm_validate_partition_table(): Disk read failed. [ 844.755668][T18213] Dev loop9: unable to read RDB block 0 [ 844.774386][T18213] loop9: unable to read partition table [ 844.780754][T18213] loop9: partition table beyond EOD, truncated [ 844.790487][T18213] loop_reread_partitions: partition scan of loop9 (被ڬdƤݡ [ 844.790487][T18213] U) failed (rc=-5) [ 844.918784][ T30] kauditd_printk_skb: 86 callbacks suppressed [ 844.918806][ T30] audit: type=1326 audit(1745306986.509:3834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18219 comm="syz.1.3948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 844.984424][ T30] audit: type=1326 audit(1745306986.539:3835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18219 comm="syz.1.3948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 845.008749][ T30] audit: type=1326 audit(1745306986.539:3836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18219 comm="syz.1.3948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=261 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 845.045076][ T30] audit: type=1326 audit(1745306986.539:3837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18219 comm="syz.1.3948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 845.070703][ T30] audit: type=1326 audit(1745306986.539:3838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18219 comm="syz.1.3948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 845.082686][T18226] xt_hashlimit: max too large, truncated to 1048576 [ 845.121914][ T30] audit: type=1326 audit(1745306986.689:3839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18223 comm="syz.3.3950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 845.150229][ T30] audit: type=1326 audit(1745306986.689:3840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18223 comm="syz.3.3950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 845.179789][ T30] audit: type=1326 audit(1745306986.689:3841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18223 comm="syz.3.3950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 845.267455][T18230] syz.1.3953: attempt to access beyond end of device [ 845.267455][T18230] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 845.453120][ T30] audit: type=1326 audit(1745306987.039:3842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18235 comm="syz.3.3959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 845.537003][ T30] audit: type=1326 audit(1745306987.039:3843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18235 comm="syz.3.3959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 845.853726][T18261] syz.0.3968: attempt to access beyond end of device [ 845.853726][T18261] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 846.167685][T18275] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3975'. [ 846.363535][T18279] hub 9-0:1.0: USB hub found [ 846.370075][T18279] hub 9-0:1.0: 1 port detected [ 846.615830][T18288] openvswitch: netlink: Message has 8 unknown bytes. [ 847.729050][T18329] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3998'. [ 847.771544][T18329] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3998'. [ 847.802247][T18331] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4000'. [ 848.562383][T18356] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4011'. [ 848.592528][T18356] openvswitch: netlink: Flow key attr not present in new flow. [ 848.791006][T18364] syz.4.4015: attempt to access beyond end of device [ 848.791006][T18364] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 850.038299][T18423] syz.2.4041: attempt to access beyond end of device [ 850.038299][T18423] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 850.184497][T18428] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4047'. [ 850.200995][T18428] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4047'. [ 850.592600][T18447] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4055'. [ 850.784536][T18455] syz.0.4058: attempt to access beyond end of device [ 850.784536][T18455] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 851.015893][T18461] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4060'. [ 851.590727][ T30] kauditd_printk_skb: 43 callbacks suppressed [ 851.590749][ T30] audit: type=1326 audit(1745306993.179:3887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18473 comm="syz.1.4067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 851.744090][ T30] audit: type=1326 audit(1745306993.209:3888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18473 comm="syz.1.4067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 851.822653][ T30] audit: type=1326 audit(1745306993.229:3889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18473 comm="syz.1.4067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 851.927076][T18486] syz.3.4071: attempt to access beyond end of device [ 851.927076][T18486] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 851.964911][ T30] audit: type=1326 audit(1745306993.229:3890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18473 comm="syz.1.4067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 852.094034][ T30] audit: type=1326 audit(1745306993.229:3891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18473 comm="syz.1.4067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 852.179061][ T30] audit: type=1326 audit(1745306993.309:3892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18473 comm="syz.1.4067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 852.284041][ T30] audit: type=1326 audit(1745306993.309:3893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18473 comm="syz.1.4067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 852.344068][ T30] audit: type=1326 audit(1745306993.309:3894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18473 comm="syz.1.4067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 852.456154][T18501] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4078'. [ 853.018666][T18530] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4094'. [ 853.213534][ T30] audit: type=1326 audit(1745306994.799:3895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18536 comm="syz.3.4096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 853.256580][T18541] block device autoloading is deprecated and will be removed. [ 853.270274][T18541] syz.4.4100: attempt to access beyond end of device [ 853.270274][T18541] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 853.291951][ T30] audit: type=1326 audit(1745306994.799:3896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18536 comm="syz.3.4096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 855.659544][T18645] syz.4.4147: attempt to access beyond end of device [ 855.659544][T18645] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 855.823872][T18650] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4149'. [ 855.857096][T18650] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4149'. [ 856.698443][T18703] random: crng reseeded on system resumption [ 858.078809][ T30] kauditd_printk_skb: 21 callbacks suppressed [ 858.078832][ T30] audit: type=1804 audit(1745306999.669:3918): pid=18763 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.4203" name="/newroot/187/file0" dev="tmpfs" ino=965 res=1 errno=0 [ 858.217471][T18766] syz.2.4204: attempt to access beyond end of device [ 858.217471][T18766] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 858.444255][T18779] netlink: 'syz.1.4208': attribute type 10 has an invalid length. [ 858.509624][T18779] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 858.531572][T18780] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4209'. [ 859.309857][T18813] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4224'. [ 860.306933][T18848] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4239'. [ 860.404467][ T30] audit: type=1326 audit(1745307001.979:3919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18849 comm="syz.4.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 860.476794][ T30] audit: type=1326 audit(1745307001.979:3920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18849 comm="syz.4.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 860.549309][ T30] audit: type=1326 audit(1745307001.979:3921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18849 comm="syz.4.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=459 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 860.656923][ T30] audit: type=1326 audit(1745307001.979:3922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18849 comm="syz.4.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 860.723678][ T30] audit: type=1326 audit(1745307001.979:3923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18849 comm="syz.4.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 860.787489][ T30] audit: type=1326 audit(1745307001.989:3924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18849 comm="syz.4.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 860.860262][ T30] audit: type=1326 audit(1745307001.989:3925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18849 comm="syz.4.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 860.896888][ T30] audit: type=1326 audit(1745307001.989:3926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18849 comm="syz.4.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 860.990903][ T30] audit: type=1326 audit(1745307001.989:3927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18849 comm="syz.4.4241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f147db8e169 code=0x7ffc0000 [ 861.444929][T18889] tipc: Enabling of bearer rejected, already enabled [ 861.489035][ T9] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0 [ 861.507291][ T9] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0 [ 861.537572][ T9] hid-generic 0000:0000:0000.0028: hidraw0: HID v0.00 Device [syz0] on syz1 [ 861.937676][T18927] xt_CT: You must specify a L4 protocol and not use inversions on it [ 862.055528][T18931] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4280'. [ 864.796855][ T30] kauditd_printk_skb: 26 callbacks suppressed [ 864.796875][ T30] audit: type=1326 audit(1745307006.389:3954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19041 comm="syz.3.4331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 864.868264][ T30] audit: type=1326 audit(1745307006.389:3955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19041 comm="syz.3.4331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 864.924063][ T30] audit: type=1326 audit(1745307006.389:3956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19041 comm="syz.3.4331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 865.334308][ T30] audit: type=1326 audit(1745307006.919:3957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19041 comm="syz.3.4331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 865.388694][ T30] audit: type=1326 audit(1745307006.919:3958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19041 comm="syz.3.4331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 865.439168][ T30] audit: type=1326 audit(1745307006.939:3959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19041 comm="syz.3.4331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 865.531333][ T30] audit: type=1326 audit(1745307007.109:3960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19041 comm="syz.3.4331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 865.604366][ T30] audit: type=1326 audit(1745307007.119:3961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19041 comm="syz.3.4331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 865.697769][ T5897] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0 [ 865.707845][ T5897] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0 [ 865.722927][ T5897] hid-generic 0000:0000:0000.0029: hidraw0: HID v0.00 Device [syz0] on syz1 [ 866.600316][T19114] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0 [ 866.617959][T19113] IPVS: stopping master sync thread 19114 ... [ 867.252467][T19130] netlink: 12 bytes leftover after parsing attributes in process `gtp'. [ 867.300212][T19130] vlan2: entered promiscuous mode [ 867.334592][T19130] syz_tun: entered promiscuous mode [ 868.028549][T19159] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4384'. [ 868.653647][T19188] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4397'. [ 868.999810][ T30] audit: type=1326 audit(1745307010.589:3962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19202 comm="syz.2.4404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648d78e169 code=0x7ffc0000 [ 869.044315][ T30] audit: type=1326 audit(1745307010.589:3963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19202 comm="syz.2.4404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648d78e169 code=0x7ffc0000 [ 869.315398][T19213] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4409'. [ 869.501346][T19221] dccp_invalid_packet: P.Data Offset(10) too large [ 869.534192][ T6734] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0 [ 869.545250][ T6734] hid-generic 0000:0000:0000.002A: hidraw0: HID v0.00 Device [syz1] on syz0 [ 869.570099][T19219] vlan0: entered allmulticast mode [ 869.868376][T19225] process '/newroot/225/file0' started with executable stack [ 870.485091][T19242] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4422'. [ 871.289993][T19269] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4435'. [ 871.411466][T19275] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4439'. [ 871.437808][T19275] 8021q: VLANs not supported on gre0 [ 872.035367][T19298] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4449'. [ 874.463075][T19167] Set syz1 is full, maxelem 65536 reached [ 875.015044][ T30] kauditd_printk_skb: 18 callbacks suppressed [ 875.015066][ T30] audit: type=1326 audit(1745307016.609:3982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19395 comm="syz.3.4494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 875.044673][ T30] audit: type=1326 audit(1745307016.609:3983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19395 comm="syz.3.4494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 875.087298][ T30] audit: type=1326 audit(1745307016.609:3984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19395 comm="syz.3.4494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 875.167217][ T30] audit: type=1326 audit(1745307016.609:3985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19395 comm="syz.3.4494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 875.219764][ T30] audit: type=1326 audit(1745307016.609:3986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19395 comm="syz.3.4494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 875.254499][ T30] audit: type=1326 audit(1745307016.609:3987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19395 comm="syz.3.4494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 875.283532][ T30] audit: type=1326 audit(1745307016.609:3988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19395 comm="syz.3.4494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 875.330251][ T30] audit: type=1326 audit(1745307016.609:3989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19395 comm="syz.3.4494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 875.371488][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 875.381844][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 875.390858][ T30] audit: type=1326 audit(1745307016.609:3990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19395 comm="syz.3.4494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 875.467464][ T30] audit: type=1326 audit(1745307016.609:3991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19395 comm="syz.3.4494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 878.785767][T19520] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4545'. [ 878.824027][T19520] openvswitch: netlink: Flow key attr not present in new flow. [ 879.497986][T19541] netlink: 12 bytes leftover after parsing attributes in process `gtp'. [ 880.060949][T19558] tls_set_device_offload_rx: netdev not found [ 881.444279][T19399] Set syz1 is full, maxelem 65536 reached [ 881.825794][T19602] xt_connbytes: Forcing CT accounting to be enabled [ 881.854478][T19602] Cannot find add_set index 0 as target [ 882.257096][ T30] kauditd_printk_skb: 3 callbacks suppressed [ 882.257118][ T30] audit: type=1326 audit(1745307023.849:3995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19622 comm="syz.1.4592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 882.325153][ T30] audit: type=1326 audit(1745307023.849:3996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19622 comm="syz.1.4592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 882.352936][ T30] audit: type=1326 audit(1745307023.849:3997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19622 comm="syz.1.4592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=318 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 882.380475][ T30] audit: type=1326 audit(1745307023.849:3998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19622 comm="syz.1.4592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 882.426007][T19627] netlink: 12 bytes leftover after parsing attributes in process `gtp'. [ 882.431939][ T30] audit: type=1326 audit(1745307023.849:3999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19622 comm="syz.1.4592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe74658e169 code=0x7ffc0000 [ 882.447813][T19627] 8021q: VLANs not supported on ip6gre0 [ 882.960118][T19642] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4600'. [ 883.591521][T19672] block device autoloading is deprecated and will be removed. [ 883.640365][ T30] audit: type=1326 audit(1745307025.229:4000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19673 comm="syz.3.4609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 883.654363][T19672] syz.2.4608: attempt to access beyond end of device [ 883.654363][T19672] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 883.716897][ T30] audit: type=1326 audit(1745307025.229:4001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19673 comm="syz.3.4609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 883.767839][ T30] audit: type=1326 audit(1745307025.239:4002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19673 comm="syz.3.4609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 883.822736][ T30] audit: type=1326 audit(1745307025.239:4003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19673 comm="syz.3.4609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 883.868442][ T30] audit: type=1326 audit(1745307025.239:4004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19673 comm="syz.3.4609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3a738e169 code=0x7ffc0000 [ 884.377906][T19691] netlink: 12 bytes leftover after parsing attributes in process `gtp'. [ 884.387185][T19691] 8021q: VLANs not supported on ip6gre0 [ 884.589293][T19699] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4620'. [ 884.734375][T19704] syz.1.4622: attempt to access beyond end of device [ 884.734375][T19704] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 885.328471][T19733] syz.0.4635: attempt to access beyond end of device [ 885.328471][T19733] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 885.700373][T19750] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4643'. [ 885.724171][T19750] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4643'. [ 885.743718][T19750] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4643'. [ 885.874463][T19750] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4643'. [ 885.894845][T19750] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4643'. [ 885.925991][T19750] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4643'. [ 886.034720][T19764] IPv6: Can't replace route, no match found [ 886.047478][T19764] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4648'. [ 886.057501][T19764] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 886.068044][T19764] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 886.072113][T19750] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4643'. [ 886.085798][T19764] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 886.107398][T19764] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 886.936497][T19800] random: crng reseeded on system resumption [ 887.411061][ T30] kauditd_printk_skb: 56 callbacks suppressed [ 887.411084][ T30] audit: type=1326 audit(1745307028.999:4061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19821 comm="syz.0.4674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 887.475216][ T30] audit: type=1326 audit(1745307029.029:4062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19821 comm="syz.0.4674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 887.535932][ T30] audit: type=1326 audit(1745307029.039:4063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19821 comm="syz.0.4674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 887.559511][ T30] audit: type=1326 audit(1745307029.039:4064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19821 comm="syz.0.4674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 887.643983][ T30] audit: type=1326 audit(1745307029.039:4065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19821 comm="syz.0.4674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 887.693197][T19834] syz.1.4679: attempt to access beyond end of device [ 887.693197][T19834] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 887.708203][ T30] audit: type=1326 audit(1745307029.039:4066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19821 comm="syz.0.4674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 887.779280][ T30] audit: type=1326 audit(1745307029.039:4067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19821 comm="syz.0.4674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 887.841446][ T30] audit: type=1326 audit(1745307029.039:4068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19821 comm="syz.0.4674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 887.937445][ T30] audit: type=1326 audit(1745307029.039:4069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19821 comm="syz.0.4674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 888.046253][ T30] audit: type=1326 audit(1745307029.039:4070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19821 comm="syz.0.4674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 889.004199][T19890] $H: renamed from bond0 (while UP) [ 889.040322][T19890] $H: entered promiscuous mode [ 889.054499][T19890] bond_slave_0: entered promiscuous mode [ 889.107692][T19890] bond_slave_1: entered promiscuous mode [ 889.484854][ T9] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0 [ 889.493748][ T9] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0 [ 889.510335][ T9] hid-generic 0000:0000:0000.002B: hidraw0: HID v0.00 Device [syz0] on syz1 [ 890.420769][T19942] syz.0.4720: attempt to access beyond end of device [ 890.420769][T19942] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 890.567765][T19952] __nla_validate_parse: 5 callbacks suppressed [ 890.567791][T19952] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4724'. [ 891.299103][T19977] syz.1.4735: attempt to access beyond end of device [ 891.299103][T19977] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 891.543545][T19987] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4739'. [ 891.839270][ T9] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0 [ 891.864318][ T9] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0 [ 891.897513][ T9] hid-generic 0000:0000:0000.002C: hidraw0: HID v0.00 Device [syz0] on syz1 [ 892.083642][T19998] netlink: 'syz.0.4743': attribute type 21 has an invalid length. [ 892.095792][T19998] netlink: 100 bytes leftover after parsing attributes in process `syz.0.4743'. [ 892.179189][T20002] vlan0: entered allmulticast mode [ 892.221460][T20004] openvswitch: netlink: Message has 8 unknown bytes. [ 892.278428][T20006] syz.0.4747: attempt to access beyond end of device [ 892.278428][T20006] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 892.354355][T20010] netlink: 76 bytes leftover after parsing attributes in process `syz.4.4749'. [ 892.437969][T20014] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4751'. [ 892.814644][ T5846] Bluetooth: hci3: command 0x0406 tx timeout [ 892.860020][ T30] kauditd_printk_skb: 10 callbacks suppressed [ 892.860043][ T30] audit: type=1326 audit(1745307034.449:4081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20031 comm="syz.0.4758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 892.923352][ T30] audit: type=1326 audit(1745307034.479:4082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20031 comm="syz.0.4758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=68 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 892.951630][ T30] audit: type=1326 audit(1745307034.479:4083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20031 comm="syz.0.4758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 892.977860][ T30] audit: type=1326 audit(1745307034.479:4084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20031 comm="syz.0.4758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 893.368811][T20040] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4762'. [ 894.100554][T20062] syz.2.4772: attempt to access beyond end of device [ 894.100554][T20062] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 894.293035][T20069] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4775'. [ 895.005413][T20091] syz.3.4784: attempt to access beyond end of device [ 895.005413][T20091] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 895.097265][T20093] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4785'. [ 895.142303][T20093] vlan2: entered allmulticast mode [ 895.328183][T20097] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4787'. [ 895.387469][T20100] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4788'. [ 895.667137][T20100] __nla_validate_parse: 3 callbacks suppressed [ 895.667160][T20100] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4788'. [ 895.713000][T20100] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4788'. [ 896.020900][T20118] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4795'. [ 896.642240][ T5846] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 896.661612][ T5846] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 896.670033][ T5846] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 896.678514][ T5846] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 896.686422][ T5846] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 897.198880][T20129] chnl_net:caif_netlink_parms(): no params data found [ 897.655869][T20129] bridge0: port 1(bridge_slave_0) entered blocking state [ 897.670713][T20129] bridge0: port 1(bridge_slave_0) entered disabled state [ 897.684754][T20129] bridge_slave_0: entered allmulticast mode [ 897.701598][T20129] bridge_slave_0: entered promiscuous mode [ 897.728757][T20129] bridge0: port 2(bridge_slave_1) entered blocking state [ 897.737966][T20129] bridge0: port 2(bridge_slave_1) entered disabled state [ 897.755108][T20129] bridge_slave_1: entered allmulticast mode [ 897.784676][T20129] bridge_slave_1: entered promiscuous mode [ 897.919038][T20129] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 897.939892][T20129] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 898.093588][T20129] team0: Port device team_slave_0 added [ 898.129472][T20129] team0: Port device team_slave_1 added [ 898.221077][T20129] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 898.237484][T20129] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 898.305647][T20129] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 898.320053][T20129] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 898.341278][T20129] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 898.370496][T20129] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 898.519297][T20129] hsr_slave_0: entered promiscuous mode [ 898.586557][T20129] hsr_slave_1: entered promiscuous mode [ 898.600894][T20129] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 898.614003][T20129] Cannot create hsr debugfs directory [ 898.728492][T20172] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4816'. [ 898.804200][ T5151] Bluetooth: hci2: command tx timeout [ 899.033271][T20129] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 899.122706][T20129] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 899.250661][T20042] Set syz1 is full, maxelem 65536 reached [ 899.297793][T20129] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 899.566183][T20129] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 899.575583][T20198] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4827'. [ 899.590144][T20129] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 899.619574][T20129] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 899.632364][T20129] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 899.765964][T20129] 8021q: adding VLAN 0 to HW filter on device bond0 [ 899.801883][T20129] 8021q: adding VLAN 0 to HW filter on device team0 [ 899.831893][ T3506] bridge0: port 1(bridge_slave_0) entered blocking state [ 899.839347][ T3506] bridge0: port 1(bridge_slave_0) entered forwarding state [ 899.871827][ T6681] bridge0: port 2(bridge_slave_1) entered blocking state [ 899.879058][ T6681] bridge0: port 2(bridge_slave_1) entered forwarding state [ 900.031363][T20129] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 900.107485][T20129] veth0_vlan: entered promiscuous mode [ 900.122316][T20129] veth1_vlan: entered promiscuous mode [ 900.170107][T20129] veth0_macvtap: entered promiscuous mode [ 900.190812][T20129] veth1_macvtap: entered promiscuous mode [ 900.242739][T20129] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 900.274442][T20129] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 900.304001][T20129] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 900.335046][T20129] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 900.357945][T20129] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 900.394115][T20129] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 900.422333][T20129] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 900.461369][T20129] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 900.506966][T20129] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 900.510843][T20221] netlink: 12 bytes leftover after parsing attributes in process `gtp'. [ 900.519227][T20129] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 900.564787][T20129] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 900.579800][T20129] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 900.590841][T20129] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 900.613199][T20129] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 900.637789][T20221] 8021q: VLANs not supported on ip6gre0 [ 900.701849][T20129] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 900.716304][T20129] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 900.727205][T20129] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 900.736425][T20129] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 900.884693][ T5151] Bluetooth: hci2: command tx timeout [ 900.929830][ T3506] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 900.949538][ T3506] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 901.017732][ T6681] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 901.037674][ T6681] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 901.080863][T20234] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4843'. [ 901.825070][ T30] audit: type=1326 audit(1745307043.419:4085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20263 comm="syz.0.4856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 901.900261][ T30] audit: type=1326 audit(1745307043.419:4086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20263 comm="syz.0.4856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 901.958293][ T30] audit: type=1326 audit(1745307043.419:4087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20263 comm="syz.0.4856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 902.008749][ T30] audit: type=1326 audit(1745307043.419:4088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20263 comm="syz.0.4856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 902.075193][ T6755] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0 [ 902.106440][ T6755] hid-generic 0000:0000:0000.002D: hidraw0: HID v0.00 Device [syz1] on syz0 [ 902.116748][ T30] audit: type=1326 audit(1745307043.419:4089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20263 comm="syz.0.4856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 902.157326][T20269] netlink: 12 bytes leftover after parsing attributes in process `gtp'. [ 902.185829][T20269] 8021q: VLANs not supported on ip6gre0 [ 902.224153][ T30] audit: type=1326 audit(1745307043.419:4090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20263 comm="syz.0.4856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 902.313994][ T30] audit: type=1326 audit(1745307043.419:4091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20263 comm="syz.0.4856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 902.414002][ T30] audit: type=1326 audit(1745307043.419:4092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20263 comm="syz.0.4856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 902.478912][ T30] audit: type=1326 audit(1745307043.419:4093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20263 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 902.527935][ T30] audit: type=1326 audit(1745307043.419:4094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20263 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7fc1afb8e169 code=0x7ffc0000 [ 902.974272][ T5151] Bluetooth: hci2: command tx timeout [ 903.046836][ T5151] Bluetooth: hci5: command 0x0406 tx timeout [ 903.338081][T20305] netlink: 'syz.1.4873': attribute type 3 has an invalid length. [ 903.492146][T20312] netlink: 12 bytes leftover after parsing attributes in process `gtp'. [ 903.523863][T20312] 8021q: VLANs not supported on ip6gre0 [ 904.123018][T20332] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22 [ 904.135576][T20332] netdevsim netdevsim1: Direct firmware load for . failed with error -22 [ 904.202724][T20332] netdevsim netdevsim1: Falling back to sysfs fallback for: . [ 904.361924][ T5846] Bluetooth: hci3: Invalid handle: 0xfc00 > 0x0eff [ 904.422410][ T47] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0 [ 904.435973][ T47] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0 [ 904.449005][ T47] hid-generic 0000:0000:0000.002E: hidraw0: HID v0.00 Device [syz0] on syz1 [ 904.567301][T20355] CUSE: info not properly terminated [ 905.045137][ T5846] Bluetooth: hci2: command tx timeout [ 905.485842][T20372] macsec1: entered allmulticast mode [ 906.177508][T20393] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0) [ 906.427625][ T6769] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0 [ 906.454079][ T6769] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0 [ 906.479378][ T6769] hid-generic 0000:0000:0000.002F: hidraw0: HID v0.00 Device [syz0] on syz1 [ 906.589203][T20404] netlink: 'syz.3.4915': attribute type 4 has an invalid length. [ 906.611094][T20404] netlink: 'syz.3.4915': attribute type 4 has an invalid length. [ 907.459930][ T5846] Bluetooth: hci3: unexpected event for opcode 0x0c6d [ 907.594953][T20434] netlink: 40 bytes leftover after parsing attributes in process `+}[@'. [ 907.798131][T20438] bridge_slave_0: left allmulticast mode [ 907.844413][T20438] bridge_slave_0: left promiscuous mode [ 907.946193][T20438] bridge0: port 1(bridge_slave_0) entered disabled state [ 908.011997][T20438] bridge_slave_1: left allmulticast mode [ 908.035785][T20438] bridge_slave_1: left promiscuous mode [ 908.045766][T20438] bridge0: port 2(bridge_slave_1) entered disabled state [ 908.099453][T20438] $H: (slave bond_slave_0): Releasing backup interface [ 908.135753][T20438] bond_slave_0: left promiscuous mode [ 908.153423][T20438] $H: (slave bond_slave_1): Releasing backup interface [ 908.163730][T20438] bond_slave_1: left promiscuous mode [ 908.270610][ T5897] IPVS: starting estimator thread 0... [ 908.300828][T20438] team0: Port device team_slave_0 removed [ 908.359711][T20438] team0: Port device team_slave_1 removed [ 908.379076][T20451] IPVS: using max 37 ests per chain, 88800 per kthread [ 908.394889][T20438] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 908.427322][T20438] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 908.449346][T20438] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 908.472958][T20438] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 908.675971][T20441] vlan0: entered promiscuous mode [ 908.696291][T20441] team0: Port device vlan0 added [ 908.702719][T20442] tipc: Enabled bearer , priority 0 [ 909.130433][ T47] hid-generic 0000:0000:0000.0030: unknown main item tag 0x0 [ 909.154362][ T47] hid-generic 0000:0000:0000.0030: unknown main item tag 0x0 [ 909.195367][ T47] hid-generic 0000:0000:0000.0030: hidraw0: HID v0.00 Device [syz0] on syz1 [ 910.124648][T20477] netlink: 148 bytes leftover after parsing attributes in process `syz.4.4943'. [ 910.368395][ T30] kauditd_printk_skb: 2 callbacks suppressed [ 910.368417][ T30] audit: type=1326 audit(1745307051.959:4097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20486 comm="syz.4.4948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc20cb8e169 code=0x7ffc0000 [ 910.442145][ T30] audit: type=1326 audit(1745307051.989:4098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20486 comm="syz.4.4948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc20cb8e169 code=0x7ffc0000 [ 910.480344][ T30] audit: type=1326 audit(1745307051.999:4099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20486 comm="syz.4.4948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc20cb8e169 code=0x7ffc0000 [ 910.510419][ T30] audit: type=1326 audit(1745307051.999:4100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20486 comm="syz.4.4948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc20cb8e169 code=0x7ffc0000 [ 910.599601][ T30] audit: type=1326 audit(1745307051.999:4101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20486 comm="syz.4.4948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc20cb8e169 code=0x7ffc0000 [ 910.673510][ T30] audit: type=1326 audit(1745307051.999:4102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20486 comm="syz.4.4948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc20cb8e169 code=0x7ffc0000 [ 910.719531][ T30] audit: type=1326 audit(1745307051.999:4103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20486 comm="syz.4.4948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fc20cb8e169 code=0x7ffc0000 [ 910.769961][T20500] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4953'. [ 910.784815][ T30] audit: type=1326 audit(1745307052.039:4104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20486 comm="syz.4.4948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc20cb8e169 code=0x7ffc0000 [ 910.836886][ T30] audit: type=1326 audit(1745307052.039:4105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20486 comm="syz.4.4948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc20cb8e169 code=0x7ffc0000 [ 910.902747][ T30] audit: type=1326 audit(1745307052.049:4106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20491 comm="syz.4.4948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fc20cbc0a25 code=0x7ffc0000 [ 910.988768][T20510] netlink: 148 bytes leftover after parsing attributes in process `syz.3.4958'. [ 912.205312][T20540] netlink: 148 bytes leftover after parsing attributes in process `syz.2.4970'. [ 913.284089][ T5151] Bluetooth: hci1: command 0x0406 tx timeout [ 914.778247][T20563] wireguard0: entered promiscuous mode [ 914.786951][T20563] wireguard0: entered allmulticast mode [ 915.473595][T20576] netlink: 148 bytes leftover after parsing attributes in process `syz.0.4983'. [ 916.258807][T20589] openvswitch: netlink: nsh attribute has 2 unknown bytes. [ 916.284186][T20589] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 916.624838][T20597] netlink: 12 bytes leftover after parsing attributes in process `gtp'. [ 916.719006][T20597] 8021q: VLANs not supported on ip6gre0 [ 917.092744][T20607] netlink: 148 bytes leftover after parsing attributes in process `syz.1.4996'. [ 917.196159][T20612] loop0: detected capacity change from 0 to 127 [ 917.222967][T20612] loop0: [POWERTEC] p1 [ 917.232722][T20612] loop0: p1 start 809004142 is beyond EOD, truncated [ 918.251190][T20643] netlink: 'syz.3.5010': attribute type 16 has an invalid length. [ 918.279350][T20643] netlink: 'syz.3.5010': attribute type 17 has an invalid length. [ 918.443101][T20643] bridge0: port 1(bridge_slave_0) entered disabled state [ 918.466572][T20643] bridge0: port 2(bridge_slave_1) entered disabled state [ 918.579658][T20651] bond_slave_0: entered promiscuous mode [ 918.585917][T20651] bond_slave_1: entered promiscuous mode [ 918.591754][T20651] dummy0: entered promiscuous mode [ 918.636826][T20653] bond_slave_0: left promiscuous mode [ 918.642721][T20653] bond_slave_1: left promiscuous mode [ 918.648419][T20653] dummy0: left promiscuous mode [ 918.912210][T20657] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5016'. [ 919.238893][ T30] kauditd_printk_skb: 4 callbacks suppressed [ 919.238929][ T30] audit: type=1326 audit(1745307060.829:4111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20664 comm="syz.2.5020" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f648d78e169 code=0x0 [ 919.249830][T20663] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5019'. [ 919.753713][T20682] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5027'. [ 920.332539][T20700] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5033'. [ 920.526803][T20702] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5034'. [ 920.573002][T20702] openvswitch: netlink: nsh attribute has 65532 unknown bytes. [ 920.604351][T20702] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 921.267275][T20719] program syz.3.5040 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 921.441507][T20727] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5045'. [ 921.474073][ T47] usb 5-1: new high-speed USB device number 22 using dummy_hcd [ 921.593411][T16501] tipc: Resetting bearer [ 921.659107][ T47] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 921.687139][ T47] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 921.717837][ T47] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 921.735064][ T47] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 921.778047][ T47] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 921.821526][ T47] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 921.844092][ T47] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 921.852150][ T47] usb 5-1: Product: syz [ 921.866060][ T9] usb 4-1: new high-speed USB device number 39 using dummy_hcd [ 921.904205][ T47] usb 5-1: Manufacturer: syz [ 921.936317][ T47] cdc_wdm 5-1:1.0: skipping garbage [ 921.941652][ T47] cdc_wdm 5-1:1.0: skipping garbage [ 921.965597][ T47] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device [ 921.971573][ T47] cdc_wdm 5-1:1.0: Unknown control protocol [ 922.039376][ T9] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 922.069636][ T9] usb 4-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 922.102359][ T9] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 922.121405][ T9] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 922.133351][ T9] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 922.150394][ T9] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 922.160967][ T9] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 922.173229][ T9] usb 4-1: Product: syz [ 922.177870][ T9] usb 4-1: Manufacturer: syz [ 922.217727][ T9] cdc_wdm 4-1:1.0: skipping garbage [ 922.223014][ T9] cdc_wdm 4-1:1.0: skipping garbage [ 922.246491][ T9] cdc_wdm 4-1:1.0: cdc-wdm1: USB WDM device [ 922.252781][ T9] cdc_wdm 4-1:1.0: Unknown control protocol [ 922.434527][ T6769] usb 4-1: USB disconnect, device number 39 [ 922.709506][ T6769] usb 5-1: USB disconnect, device number 22 [ 923.707271][ T30] audit: type=1804 audit(1745307065.249:4112): pid=20755 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.5054" name="/newroot/42/file0" dev="tmpfs" ino=234 res=1 errno=0 [ 925.037015][T20774] netlink: 12 bytes leftover after parsing attributes in process `gtp'. [ 925.046206][T20774] 8021q: VLANs not supported on ip6gre0 [ 925.265170][T20776] vlan0: entered promiscuous mode [ 925.292059][T20776] team0: Port device vlan0 added [ 927.055759][T20807] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0 [ 927.067867][T20807] Bluetooth: hci4: Injecting HCI hardware error event [ 927.578314][T20817] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 5, id = 0 [ 927.595283][T20816] IPVS: stopping backup sync thread 20817 ... [ 928.315126][T20824] team0: Port device vlan0 removed [ 928.501070][T20829] syz_tun: entered allmulticast mode [ 928.534923][T20828] syz_tun: left allmulticast mode [ 928.644124][T20807] Bluetooth: hci4: command 0x0406 tx timeout [ 928.810796][ T5846] Bluetooth: hci4: hardware error 0x00 [ 930.755773][ T9] hid-generic 0000:0000:0000.0031: unknown main item tag 0x0 [ 930.763332][ T9] hid-generic 0000:0000:0000.0031: unknown main item tag 0x0 [ 930.850308][ T9] hid-generic 0000:0000:0000.0031: hidraw0: HID v0.00 Device [syz0] on syz1 [ 930.889190][ T5846] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 931.542273][T20872] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5092'. [ 931.886341][T20879] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5095'. [ 932.728134][ T5846] Bluetooth: hci2: command tx timeout [ 933.117021][T20898] program syz.4.5100 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 933.680576][ T30] audit: type=1400 audit(1745307075.269:4113): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name="#(%#{//&@\)//&" pid=20902 comm="syz.1.5103" [ 933.729414][ T6734] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0 [ 933.754824][T20910] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5105'. [ 933.801236][ T6734] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0 [ 933.817797][T20910] openvswitch: netlink: nsh attribute has 65532 unknown bytes. [ 933.825755][T20910] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 933.882211][ T6734] hid-generic 0000:0000:0000.0032: hidraw0: HID v0.00 Device [syz0] on syz1 [ 934.479396][T20916] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5107'. [ 935.068423][ T5846] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection [ 936.057215][ T9] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0 [ 936.099150][ T9] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0 [ 936.173428][ T9] hid-generic 0000:0000:0000.0033: hidraw0: HID v0.00 Device [syz0] on syz1 [ 936.809951][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 936.816455][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 937.213501][T20962] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5122'. [ 937.414258][T20968] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5126'. [ 937.478479][T20968] vlan1: entered promiscuous mode [ 937.488787][T20968] syz_tun: entered promiscuous mode [ 937.844066][ T6734] usb 2-1: new high-speed USB device number 51 using dummy_hcd [ 938.035336][ T6734] usb 2-1: Using ep0 maxpacket: 8 [ 938.048941][ T6734] usb 2-1: config index 0 descriptor too short (expected 301, got 45) [ 938.124068][ T6734] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 938.179772][ T6734] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 938.201163][T20857] Bluetooth: hci5: ACL packet for unknown connection handle 200 [ 938.249287][ T6734] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 938.317184][ T6734] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 938.443215][ T6734] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 938.462726][ T6734] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 938.576273][T20985] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5132'. [ 938.593536][T20985] openvswitch: netlink: nsh attribute has 65532 unknown bytes. [ 938.752870][T20985] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 938.762141][ T6734] usb 2-1: usb_control_msg returned -32 [ 938.781731][ T6734] usbtmc 2-1:16.0: can't read capabilities [ 939.116434][T20994] usb 2-1: usbtmc_ioctl_clear_out_halt returned -32 [ 939.524081][T20857] Bluetooth: hci5: command 0x0406 tx timeout [ 939.588110][T21002] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5139'. [ 940.057121][T21015] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5144'. [ 940.072712][T21015] openvswitch: netlink: nsh attribute has 65532 unknown bytes. [ 940.086112][T21015] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 940.599943][ T1055] usb 2-1: USB disconnect, device number 51 [ 940.965609][T20857] Bluetooth: hci5: unexpected event for opcode 0x1004 [ 941.488794][T21054] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5161'. [ 941.988087][ T3506] bridge_slave_1: left allmulticast mode [ 941.994131][ T3506] bridge_slave_1: left promiscuous mode [ 942.011640][ T3506] bridge0: port 2(bridge_slave_1) entered disabled state [ 942.042856][ T3506] bridge_slave_0: left allmulticast mode [ 942.059813][ T3506] bridge_slave_0: left promiscuous mode [ 942.066265][ T3506] bridge0: port 1(bridge_slave_0) entered disabled state [ 943.010694][ T3506] bond0 (unregistering): (slave bridge0): Releasing backup interface [ 943.085181][ T3506] bridge0 (unregistering): left promiscuous mode [ 943.847089][ T3506] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 943.890035][ T3506] bond_slave_0: left promiscuous mode [ 943.938533][ T3506] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 943.948366][ T3506] bond_slave_1: left promiscuous mode [ 943.958725][ T3506] bond0 (unregistering): (slave team0): Releasing backup interface [ 944.014578][ T3506] team0: left promiscuous mode [ 944.019382][ T3506] team_slave_0: left promiscuous mode [ 944.076350][ T3506] team_slave_1: left promiscuous mode [ 944.095042][ T3506] bond0 (unregistering): Released all slaves [ 944.302835][T20857] Bluetooth: min 0 < 6 [ 944.532009][ T3506] bond1 (unregistering): Released all slaves [ 945.048123][T20857] Bluetooth: hci5: Controller not accepting commands anymore: ncmd = 0 [ 945.057155][T20857] Bluetooth: hci5: Injecting HCI hardware error event [ 945.067798][ T5846] Bluetooth: hci5: hardware error 0x00 [ 945.208275][T21104] ip6erspan0: entered promiscuous mode [ 945.593362][ T3506] hsr_slave_0: left promiscuous mode [ 945.619949][ T3506] hsr_slave_1: left promiscuous mode [ 945.792278][ T3506] veth1_macvtap: left promiscuous mode [ 945.816238][ T3506] veth1_vlan: left promiscuous mode [ 945.821770][ T3506] veth0_vlan: left promiscuous mode [ 946.358713][T20857] Bluetooth: hci3: command 0x0406 tx timeout [ 947.204095][ T5846] Bluetooth: hci5: Opcode 0x0c03 failed: -110 [ 948.412434][T21158] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5196'. [ 948.602842][ T3506] team0 (unregistering): Port device team_slave_1 removed [ 948.660473][ T3506] team0 (unregistering): Port device team_slave_0 removed [ 949.230297][T21158] vlan3: entered promiscuous mode [ 949.262196][T21158] syz_tun: entered promiscuous mode [ 950.028365][T21189] loop6: detected capacity change from 0 to 524287999 [ 950.244573][ T9] usb 3-1: new high-speed USB device number 23 using dummy_hcd [ 950.415457][ T9] usb 3-1: Using ep0 maxpacket: 16 [ 950.438618][ T9] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 950.465652][ T9] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 950.507948][ T9] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 22 [ 950.556729][ T9] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 950.573929][ T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 950.603999][ T9] usb 3-1: SerialNumber: syz [ 950.645977][ T9] cdc_acm 3-1:1.0: skipping garbage [ 950.851084][ T1055] usb 3-1: USB disconnect, device number 23 [ 950.870746][T21184] delete_channel: no stack [ 952.859294][T21233] netlink: 'syz.0.5221': attribute type 10 has an invalid length. [ 952.867859][T21233] tipc: Resetting bearer [ 952.904222][T21233] tipc: Resetting bearer [ 952.927023][T21233] 8021q: adding VLAN 0 to HW filter on device team0 [ 952.952670][T21233] team0: entered promiscuous mode [ 953.004953][T21233] $H: (slave team0): Enslaving as an active interface with an up link [ 954.534279][ T6734] usb 2-1: new high-speed USB device number 52 using dummy_hcd [ 954.706199][ T6734] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 954.726367][ T6734] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 954.743945][ T6734] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 954.763788][ T6734] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 954.791498][T21267] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 954.803274][ T6734] usb 2-1: Quirk or no altset; falling back to MIDI 1.0 [ 955.032502][ T1055] usb 2-1: USB disconnect, device number 52 [ 956.627061][ T47] usb 2-1: new high-speed USB device number 53 using dummy_hcd [ 956.804229][ T47] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 956.827214][ T47] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 956.840125][ T47] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 956.849436][ T47] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 956.869827][T21324] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 956.901010][ T47] usb 2-1: Quirk or no altset; falling back to MIDI 1.0 [ 957.097983][ T9] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0 [ 957.147766][ T9] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0 [ 957.203379][ T9] hid-generic 0000:0000:0000.0034: hidraw0: HID v0.00 Device [syz0] on syz1 [ 957.329919][ T5897] usb 2-1: USB disconnect, device number 53 [ 957.736649][T21353] vlan1: entered allmulticast mode [ 957.752165][T21353] bond0: entered allmulticast mode [ 957.758412][T21353] bond_slave_0: entered allmulticast mode [ 957.774671][T21353] bond_slave_1: entered allmulticast mode [ 958.133305][T21365] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5272'. [ 958.229129][T21365] vlan3: entered promiscuous mode [ 958.351233][T21373] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5271'. [ 958.972850][T21379] syz_tun: entered allmulticast mode [ 958.986471][T21378] syz_tun: left allmulticast mode [ 959.941985][ T1055] hid-generic 0000:0000:0000.0035: unknown main item tag 0x0 [ 959.976991][ T1055] hid-generic 0000:0000:0000.0035: unknown main item tag 0x0 [ 960.008588][ T1055] hid-generic 0000:0000:0000.0035: hidraw0: HID v0.00 Device [syz0] on syz1 [ 960.880546][T21406] syz_tun: entered allmulticast mode [ 960.894457][T21405] syz_tun: left allmulticast mode [ 961.049786][T21416] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5291'. [ 962.092848][T21437] syz_tun: entered allmulticast mode [ 962.119699][T21436] syz_tun: left allmulticast mode [ 962.273196][T21429] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5297'. [ 963.047791][T21462] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5305'. [ 963.128670][ T47] hid-generic 0000:0000:0000.0036: unknown main item tag 0x0 [ 963.154116][ T47] hid-generic 0000:0000:0000.0036: unknown main item tag 0x0 [ 963.175361][ T47] hid-generic 0000:0000:0000.0036: hidraw0: HID v0.00 Device [syz0] on syz1 [ 963.588956][T21473] syz_tun: entered allmulticast mode [ 963.608079][T21472] syz_tun: left allmulticast mode [ 963.939262][T21477] netlink: 212 bytes leftover after parsing attributes in process `syz.3.5313'. [ 964.363212][T21491] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5319'. [ 965.192258][T21503] netlink: 212 bytes leftover after parsing attributes in process `syz.0.5325'. [ 965.337640][ T5846] Bluetooth: hci1: unexpected event for opcode 0x0809 [ 966.995656][T21525] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5332'. [ 967.057306][ T6769] hid-generic 0000:0000:0000.0037: unknown main item tag 0x0 [ 967.094104][ T6769] hid-generic 0000:0000:0000.0037: unknown main item tag 0x0 [ 967.109752][ T6769] hid-generic 0000:0000:0000.0037: hidraw0: HID v0.00 Device [syz0] on syz1 [ 967.360647][T21530] loop6: detected capacity change from 0 to 524287999 [ 968.539924][T21536] kvm: pic: level sensitive irq not supported [ 968.540196][T21536] kvm: pic: non byte read [ 968.582311][T21536] kvm: pic: level sensitive irq not supported [ 968.582388][T21536] kvm: pic: non byte read [ 968.630652][T21536] kvm: pic: level sensitive irq not supported [ 968.630728][T21536] kvm: pic: non byte read [ 968.677273][T21539] netlink: 212 bytes leftover after parsing attributes in process `syz.1.5337'. [ 968.701918][T21536] kvm: pic: level sensitive irq not supported [ 968.702000][T21536] kvm: pic: non byte read [ 968.724697][T21536] kvm: pic: level sensitive irq not supported [ 968.724773][T21536] kvm: pic: non byte read [ 968.767777][T21536] kvm: pic: level sensitive irq not supported [ 968.767861][T21536] kvm: pic: non byte read [ 968.787351][T21536] kvm: pic: level sensitive irq not supported [ 968.787428][T21536] kvm: pic: non byte read [ 968.837781][T21536] kvm: pic: level sensitive irq not supported [ 968.837863][T21536] kvm: pic: non byte read [ 968.864352][T21536] kvm: pic: level sensitive irq not supported [ 968.864434][T21536] kvm: pic: non byte read [ 968.909855][T21536] kvm: pic: level sensitive irq not supported [ 968.909933][T21536] kvm: pic: non byte read [ 969.520653][T21553] netlink: 156 bytes leftover after parsing attributes in process `syz.2.5345'. [ 969.841432][ T6769] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 969.861658][ T6769] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 969.895074][ T6769] hid-generic 0000:0000:0000.0038: hidraw0: HID v0.00 Device [syz0] on syz1 [ 970.011671][T21564] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 970.210152][T21568] netlink: 212 bytes leftover after parsing attributes in process `syz.3.5349'. [ 970.496341][T21576] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5343'. [ 972.593966][T21605] netlink: 32 bytes leftover after parsing attributes in process `syz.2.5363'. [ 972.793917][ T1055] hid-generic 0000:0000:0000.0039: unknown main item tag 0x0 [ 972.823553][ T1055] hid-generic 0000:0000:0000.0039: unknown main item tag 0x0 [ 972.867261][ T1055] hid-generic 0000:0000:0000.0039: hidraw0: HID v0.00 Device [syz0] on syz1 [ 972.989593][T21616] IPv6: NLM_F_REPLACE set, but no existing node found! [ 972.997186][ T6734] usb 5-1: new high-speed USB device number 23 using dummy_hcd [ 973.163056][ T6734] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 973.184612][ T6734] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 973.208909][ T6734] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 973.242205][ T6734] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 973.267159][ T6734] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 973.301451][ T6734] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 973.316845][ T6734] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 973.333757][ T6734] usb 5-1: Product: syz [ 973.346094][ T6734] usb 5-1: Manufacturer: syz [ 973.378725][ T6734] cdc_wdm 5-1:1.0: skipping garbage [ 973.386075][ T6734] cdc_wdm 5-1:1.0: skipping garbage [ 973.420922][ T6734] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device [ 973.434389][ T6734] cdc_wdm 5-1:1.0: Unknown control protocol [ 974.155687][ T1055] usb 5-1: USB disconnect, device number 23 [ 974.566532][ T5897] usb 4-1: new high-speed USB device number 40 using dummy_hcd [ 974.728926][ T5897] usb 4-1: too many configurations: 68, using maximum allowed: 8 [ 974.759244][ T5897] usb 4-1: config index 0 descriptor too short (expected 72, got 56) [ 974.789215][ T5897] usb 4-1: config 1 has an invalid descriptor of length 9, skipping remainder of the config [ 974.812185][ T5897] usb 4-1: config 1 interface 0 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 6 [ 974.867442][ T5897] usb 4-1: config index 1 descriptor too short (expected 72, got 56) [ 974.889147][T21641] netlink: 32 bytes leftover after parsing attributes in process `syz.0.5376'. [ 974.919396][ T5897] usb 4-1: config 1 has an invalid descriptor of length 9, skipping remainder of the config [ 974.934274][ T5897] usb 4-1: config 1 interface 0 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 6 [ 974.978878][ T5897] usb 4-1: config index 2 descriptor too short (expected 72, got 56) [ 974.997546][T21644] openvswitch: netlink: Flow key attr not present in new flow. [ 975.005473][ T5897] usb 4-1: config 1 has an invalid descriptor of length 9, skipping remainder of the config [ 975.044052][ T5897] usb 4-1: config 1 interface 0 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 6 [ 975.125066][ T5897] usb 4-1: config index 3 descriptor too short (expected 72, got 56) [ 975.133311][ T5897] usb 4-1: config 1 has an invalid descriptor of length 9, skipping remainder of the config [ 975.172377][ T5897] usb 4-1: config 1 interface 0 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 6 [ 975.205015][ T5897] usb 4-1: config index 4 descriptor too short (expected 72, got 56) [ 975.213746][ T5897] usb 4-1: config 1 has an invalid descriptor of length 9, skipping remainder of the config [ 975.416613][ T5897] usb 4-1: config 1 interface 0 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 6 [ 975.479932][ T5897] usb 4-1: config index 5 descriptor too short (expected 72, got 56) [ 975.504572][ T5897] usb 4-1: config 1 has an invalid descriptor of length 9, skipping remainder of the config [ 975.649548][ T5897] usb 4-1: config 1 interface 0 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 6 [ 975.689026][ T5897] usb 4-1: config index 6 descriptor too short (expected 72, got 56) [ 975.707738][ T5897] usb 4-1: config 1 has an invalid descriptor of length 9, skipping remainder of the config [ 975.730595][ T5897] usb 4-1: config 1 interface 0 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 6 [ 975.780877][ T5897] usb 4-1: config index 7 descriptor too short (expected 72, got 56) [ 975.797871][ T5897] usb 4-1: config 1 has an invalid descriptor of length 9, skipping remainder of the config [ 975.850320][ T5897] usb 4-1: config 1 interface 0 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 6 [ 975.948196][ T5897] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 976.066912][ T5897] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 976.129902][ T5897] usb 4-1: Product: syz [ 976.143600][ T5897] usb 4-1: Manufacturer: syz [ 976.153903][ T5897] usb 4-1: SerialNumber: syz [ 976.180241][ T5897] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 976.207467][ T47] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 976.425160][T21635] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 976.447037][ T1055] usb 4-1: USB disconnect, device number 40 [ 976.646910][T21635] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5374'. [ 977.304015][ T47] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive [ 977.344433][ T47] ath9k_htc: Failed to initialize the device [ 977.377147][ T1055] usb 4-1: ath9k_htc: USB layer deinitialized [ 977.462486][T21687] dvmrp9: entered allmulticast mode [ 978.021135][T21707] syz_tun: entered allmulticast mode [ 978.071448][T21706] syz_tun: left allmulticast mode [ 979.811163][ T5846] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection [ 979.833194][ T5846] Bluetooth: hci2: unexpected event 0x06 length: 4 > 3 [ 979.852059][T21739] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 979.928979][T21741] syz_tun: entered allmulticast mode [ 979.946525][T21740] syz_tun: left allmulticast mode [ 980.061273][T21743] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 980.096852][ T47] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01) [ 980.107116][ T47] wlan1: send auth to 08:02:11:00:00:00 (try 1/3) [ 980.138256][T16501] wlan1: authenticated [ 980.138524][T21743] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 980.160524][T16501] wlan1: RX AssocResp from 08:02:11:00:00:00 (capab=0x1 status=0 aid=1) [ 980.169663][T21743] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 980.183350][T16501] wlan1: associated [ 980.284137][ T47] usb 2-1: new full-speed USB device number 54 using dummy_hcd [ 980.445735][ T47] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 980.459107][ T47] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 980.469083][ T47] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 980.480764][ T47] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 980.491692][ T47] usb 2-1: config 0 descriptor?? [ 980.923168][T21760] lo: entered allmulticast mode [ 980.958972][T21759] lo: left allmulticast mode [ 981.118375][ T47] usb 2-1: string descriptor 0 read error: -22 [ 981.319724][ T47] uclogic 0003:256C:006D.003A: interface is invalid, ignoring [ 981.524824][ T1055] usb 2-1: USB disconnect, device number 54 [ 982.405176][ T1055] usb 2-1: new high-speed USB device number 55 using dummy_hcd [ 982.576191][ T1055] usb 2-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0x53, changing to 0x3 [ 982.598250][ T1055] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7 [ 982.628884][ T1055] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 982.642359][ T1055] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 982.662387][ T1055] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice= 0.40 [ 982.672645][ T1055] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 982.681055][ T1055] usb 2-1: SerialNumber: syz [ 982.879245][ T9] usb 3-1: new high-speed USB device number 24 using dummy_hcd [ 982.901648][ T1055] usbtest 2-1:1.0: couldn't get endpoints, -22 [ 982.919683][ T1055] usbtest 2-1:1.0: probe with driver usbtest failed with error -22 [ 982.944877][ T1055] usb 2-1: USB disconnect, device number 55 [ 983.044576][ T9] usb 3-1: Using ep0 maxpacket: 16 [ 983.055945][ T9] usb 3-1: config 0 has an invalid interface number: 8 but max is 0 [ 983.068299][ T9] usb 3-1: config 0 has no interface number 0 [ 983.082225][ T9] usb 3-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 983.107795][ T9] usb 3-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 983.139978][ T9] usb 3-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 983.160314][ T9] usb 3-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 983.180760][ T9] usb 3-1: Product: syz [ 983.190740][ T9] usb 3-1: SerialNumber: syz [ 983.203120][ T9] usb 3-1: config 0 descriptor?? [ 983.214259][ T9] cm109 3-1:0.8: invalid payload size 0, expected 4 [ 983.234344][ T9] input: CM109 USB driver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.8/input/input33 [ 983.427703][ C0] cm109 3-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90 [ 983.596804][T21820] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5455'. [ 983.660467][ C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 983.675691][ C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 983.683285][ C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 983.690763][ C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 983.698600][ C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 983.706245][ C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 983.713743][ C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 983.721249][ C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 983.728680][ C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 983.735950][ C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 983.744862][ T1055] usb 3-1: USB disconnect, device number 24 [ 983.744926][ C0] cm109 3-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 983.779274][ T1055] cm109 3-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 983.927386][ T5846] Bluetooth: hci2: command 0x0406 tx timeout [ 984.834181][T21843] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5466'. [ 985.072131][T20857] Bluetooth: hci3: unexpected event for opcode 0x1004 [ 986.734492][T21888] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5481'. [ 987.962646][ T30] audit: type=1326 audit(1745307129.549:4114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21907 comm="syz.0.5489" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc1afb8e169 code=0x0 [ 989.124108][T20857] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 989.132904][T20857] Bluetooth: hci3: Injecting HCI hardware error event [ 989.166077][ T5846] Bluetooth: hci3: hardware error 0x00 [ 991.352538][ T5846] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 992.750978][ T5846] Bluetooth: hci1: unexpected event for opcode 0x1004 [ 994.044130][T22030] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5538'. [ 994.342112][T22042] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5544'. [ 994.483987][ T9] usb 2-1: new high-speed USB device number 56 using dummy_hcd [ 994.517776][ T6733] usb 3-1: new high-speed USB device number 25 using dummy_hcd [ 994.560671][T22047] IPv6: NLM_F_REPLACE set, but no existing node found! [ 994.656107][ T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 994.689672][ T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 994.708400][ T6733] usb 3-1: Using ep0 maxpacket: 16 [ 994.720040][ T6733] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 994.735837][ T6733] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 994.762908][ T6733] usb 3-1: config 1 has no interface number 1 [ 994.785453][ T6733] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 994.848463][ T6733] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 994.888051][ T6733] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 994.902312][ T6733] usb 3-1: New USB device strings: Mfr=9, Product=2, SerialNumber=3 [ 994.927940][ T6733] usb 3-1: Product: syz [ 994.936758][ T6733] usb 3-1: Manufacturer: syz [ 994.957758][ T6733] usb 3-1: SerialNumber: syz [ 994.974420][ T9] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 994.987695][ T9] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 994.997168][ T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 995.014816][ T9] usb 2-1: config 0 descriptor?? [ 995.380555][ T6733] usb 3-1: 2:1 : no or invalid class specific endpoint descriptor [ 995.400184][ T6733] usb 3-1: 2:1 : format type 23 is not supported yet [ 995.439677][ T9] plantronics 0003:047F:FFFF.003B: No inputs registered, leaving [ 995.464869][ T6733] usb 3-1: USB disconnect, device number 25 [ 995.512937][ T9] plantronics 0003:047F:FFFF.003B: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 995.516891][T22063] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5551'. [ 995.727776][T22034] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 995.749575][T22034] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 995.760894][T21940] udevd[21940]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 995.941461][T22072] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5555'. [ 995.954025][ T6733] usb 2-1: USB disconnect, device number 56 [ 996.006921][ T6670] ------------[ cut here ]------------ [ 996.012510][ T6670] WARNING: CPU: 0 PID: 6670 at net/mac80211/mlme.c:4306 ieee80211_mgd_probe_ap_send+0x4e3/0x5c0 [ 996.023419][ T6670] Modules linked in: [ 996.027896][ T6670] CPU: 0 UID: 0 PID: 6670 Comm: kworker/u8:9 Not tainted 6.15.0-rc3-syzkaller-00008-ga33b5a08cbbd #0 PREEMPT(full) [ 996.040627][ T6670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 996.051958][ T6670] Workqueue: events_unbound cfg80211_wiphy_work [ 996.059055][ T6670] RIP: 0010:ieee80211_mgd_probe_ap_send+0x4e3/0x5c0 [ 996.066010][ T6670] Code: 5d 41 5e 41 5f 5d e9 ac 28 fa f5 e8 b7 89 0d f6 90 0f 0b 90 eb b6 e8 ac 89 0d f6 90 0f 0b 90 e9 fc fb ff ff e8 9e 89 0d f6 90 <0f> 0b 90 e9 bf fc ff ff e8 90 89 0d f6 90 0f 0b 90 e9 30 ff ff ff [ 996.086407][ T6670] RSP: 0018:ffffc9000b417a80 EFLAGS: 00010293 [ 996.092539][ T6670] RAX: ffffffff8bb53382 RBX: 0000000000000001 RCX: ffff888061d35a00 [ 996.100786][ T6670] RDX: 0000000000000000 RSI: ffffffff8e4db4c4 RDI: ffffffff8ca1b680 [ 996.109076][ T6670] RBP: 1ffff1100aecbb8e R08: ffffffff8b943dd5 R09: ffffffff8503b2c9 [ 996.117352][ T6670] R10: 000000000000000c R11: ffff888061d35a00 R12: ffff88805765ea22 [ 996.125440][ T6670] R13: dffffc0000000000 R14: dffffc0000000000 R15: ffff88805765cd80 [ 996.133463][ T6670] FS: 0000000000000000(0000) GS:ffff888124f9a000(0000) knlGS:0000000000000000 [ 996.143141][ T6670] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 996.150237][ T6670] CR2: 0000200000077030 CR3: 00000000578e4000 CR4: 00000000003526f0 [ 996.158632][ T6670] DR0: 0000000000000005 DR1: 0000000000000000 DR2: 0000000000000000 [ 996.166767][ T6670] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 996.174991][ T6670] Call Trace: [ 996.178308][ T6670] [ 996.181545][ T6670] ? ieee80211_mgd_probe_ap+0x2ed/0x420 [ 996.187211][ T6670] cfg80211_wiphy_work+0x2f0/0x490 [ 996.192530][ T6670] ? process_scheduled_works+0x9cb/0x18e0 [ 996.198376][ T6670] process_scheduled_works+0xac3/0x18e0 [ 996.204096][ T6670] ? __pfx_process_scheduled_works+0x10/0x10 [ 996.210156][ T6670] ? assign_work+0x367/0x3d0 [ 996.214875][ T6670] worker_thread+0x870/0xd50 [ 996.219703][ T6670] ? __kthread_parkme+0x1a8/0x200 [ 996.224854][ T6670] ? __pfx_worker_thread+0x10/0x10 [ 996.230015][ T6670] kthread+0x7b7/0x940 [ 996.234347][ T6670] ? __pfx_worker_thread+0x10/0x10 [ 996.239597][ T6670] ? __pfx_kthread+0x10/0x10 [ 996.244410][ T6670] ? __pfx_kthread+0x10/0x10 [ 996.249553][ T6670] ? __pfx_kthread+0x10/0x10 [ 996.254570][ T6670] ? __pfx_kthread+0x10/0x10 [ 996.259208][ T6670] ? _raw_spin_unlock_irq+0x23/0x50 [ 996.264535][ T6670] ? lockdep_hardirqs_on+0x9d/0x150 [ 996.269782][ T6670] ? __pfx_kthread+0x10/0x10 [ 996.274594][ T6670] ret_from_fork+0x4b/0x80 [ 996.279233][ T6670] ? __pfx_kthread+0x10/0x10 [ 996.283971][ T6670] ret_from_fork_asm+0x1a/0x30 [ 996.288779][ T6670] [ 996.291823][ T6670] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 996.299157][ T6670] CPU: 0 UID: 0 PID: 6670 Comm: kworker/u8:9 Not tainted 6.15.0-rc3-syzkaller-00008-ga33b5a08cbbd #0 PREEMPT(full) [ 996.311507][ T6670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 996.321713][ T6670] Workqueue: events_unbound cfg80211_wiphy_work [ 996.327992][ T6670] Call Trace: [ 996.331402][ T6670] [ 996.334357][ T6670] dump_stack_lvl+0x241/0x360 [ 996.339107][ T6670] ? __pfx_dump_stack_lvl+0x10/0x10 [ 996.344454][ T6670] ? __pfx__printk+0x10/0x10 [ 996.349114][ T6670] ? vscnprintf+0x5d/0x90 [ 996.353589][ T6670] panic+0x349/0x880 [ 996.357537][ T6670] ? __warn+0x174/0x4d0 [ 996.361753][ T6670] ? __pfx_panic+0x10/0x10 [ 996.366237][ T6670] ? ret_from_fork_asm+0x1a/0x30 [ 996.371216][ T6670] __warn+0x344/0x4d0 [ 996.375215][ T6670] ? ieee80211_mgd_probe_ap_send+0x4e3/0x5c0 [ 996.381215][ T6670] report_bug+0x2b3/0x500 [ 996.385594][ T6670] ? ieee80211_mgd_probe_ap_send+0x4e3/0x5c0 [ 996.391605][ T6670] ? ieee80211_mgd_probe_ap_send+0x4e3/0x5c0 [ 996.397605][ T6670] ? ieee80211_mgd_probe_ap_send+0x4e5/0x5c0 [ 996.403627][ T6670] handle_bug+0x89/0x170 [ 996.407886][ T6670] exc_invalid_op+0x1a/0x50 [ 996.412401][ T6670] asm_exc_invalid_op+0x1a/0x20 [ 996.417263][ T6670] RIP: 0010:ieee80211_mgd_probe_ap_send+0x4e3/0x5c0 [ 996.423871][ T6670] Code: 5d 41 5e 41 5f 5d e9 ac 28 fa f5 e8 b7 89 0d f6 90 0f 0b 90 eb b6 e8 ac 89 0d f6 90 0f 0b 90 e9 fc fb ff ff e8 9e 89 0d f6 90 <0f> 0b 90 e9 bf fc ff ff e8 90 89 0d f6 90 0f 0b 90 e9 30 ff ff ff [ 996.443510][ T6670] RSP: 0018:ffffc9000b417a80 EFLAGS: 00010293 [ 996.449605][ T6670] RAX: ffffffff8bb53382 RBX: 0000000000000001 RCX: ffff888061d35a00 [ 996.457599][ T6670] RDX: 0000000000000000 RSI: ffffffff8e4db4c4 RDI: ffffffff8ca1b680 [ 996.465591][ T6670] RBP: 1ffff1100aecbb8e R08: ffffffff8b943dd5 R09: ffffffff8503b2c9 [ 996.473585][ T6670] R10: 000000000000000c R11: ffff888061d35a00 R12: ffff88805765ea22 [ 996.481574][ T6670] R13: dffffc0000000000 R14: dffffc0000000000 R15: ffff88805765cd80 [ 996.489652][ T6670] ? jhash+0x269/0x760 [ 996.493737][ T6670] ? sta_info_get+0x1c5/0x2b0 [ 996.498436][ T6670] ? ieee80211_mgd_probe_ap_send+0x4e2/0x5c0 [ 996.504535][ T6670] ? ieee80211_mgd_probe_ap+0x2ed/0x420 [ 996.510243][ T6670] cfg80211_wiphy_work+0x2f0/0x490 [ 996.515396][ T6670] ? process_scheduled_works+0x9cb/0x18e0 [ 996.521142][ T6670] process_scheduled_works+0xac3/0x18e0 [ 996.526729][ T6670] ? __pfx_process_scheduled_works+0x10/0x10 [ 996.532809][ T6670] ? assign_work+0x367/0x3d0 [ 996.537435][ T6670] worker_thread+0x870/0xd50 [ 996.542131][ T6670] ? __kthread_parkme+0x1a8/0x200 [ 996.547255][ T6670] ? __pfx_worker_thread+0x10/0x10 [ 996.552382][ T6670] kthread+0x7b7/0x940 [ 996.556478][ T6670] ? __pfx_worker_thread+0x10/0x10 [ 996.561687][ T6670] ? __pfx_kthread+0x10/0x10 [ 996.566290][ T6670] ? __pfx_kthread+0x10/0x10 [ 996.570919][ T6670] ? __pfx_kthread+0x10/0x10 [ 996.575553][ T6670] ? __pfx_kthread+0x10/0x10 [ 996.580261][ T6670] ? _raw_spin_unlock_irq+0x23/0x50 [ 996.585576][ T6670] ? lockdep_hardirqs_on+0x9d/0x150 [ 996.590843][ T6670] ? __pfx_kthread+0x10/0x10 [ 996.595471][ T6670] ret_from_fork+0x4b/0x80 [ 996.600045][ T6670] ? __pfx_kthread+0x10/0x10 [ 996.604653][ T6670] ret_from_fork_asm+0x1a/0x30 [ 996.609438][ T6670] [ 996.612768][ T6670] Kernel Offset: disabled [ 996.617164][ T6670] Rebooting in 86400 seconds..