last executing test programs: 3m59.255406683s ago: executing program 3 (id=1063): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000002180)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(khazad-generic)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10) r1 = accept4(r0, 0x0, 0x0, 0x80000) recvmmsg(r1, &(0x7f0000001640)=[{{0x0, 0x0, 0x0}, 0x6}], 0x1, 0x40000001, 0x0) writev(r1, &(0x7f0000000080)=[{&(0x7f0000000380)=']:', 0x2}], 0x1) 3m59.022097992s ago: executing program 3 (id=1065): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) bind$inet(0xffffffffffffffff, 0x0, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000300)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) 3m58.859871717s ago: executing program 3 (id=1066): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000001b40)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x20001}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x4000001) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a54000000060a0904000000000000000002000000280004802400018009000100685c7368000000001400028008000240000000000800014000000000090001"], 0x7c}}, 0x0) 3m58.727966769s ago: executing program 3 (id=1067): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0) mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1/file4\x00', 0x1c0) renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./file1/file4\x00', 0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x4) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file0\x00', 0x0) mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000280)='./file1/file0\x00', 0x0, 0x1085408, 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f00000003c0), 0x0, &(0x7f00000004c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1/file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(0x0) unlinkat(0xffffffffffffff9c, &(0x7f0000000180)='./file0/file0\x00', 0x0) unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200) 3m58.590591296s ago: executing program 3 (id=1068): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x51) ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000080)={0x8}) 3m58.43148656s ago: executing program 3 (id=1069): sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)={0x14, 0x0, 0x1, 0x0, 0x0, {0x4, 0x74, 0x609}}, 0x14}, 0x1, 0xffffffff00000003, 0x0, 0x60040}, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_DEL(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="e00000000a06010100000000000000000300000908000940800000010900020073797a31000000000500010007000000080009"], 0x13a}, 0x1, 0x0, 0x0, 0x4800}, 0x48080) 3m43.339491723s ago: executing program 32 (id=1069): sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)={0x14, 0x0, 0x1, 0x0, 0x0, {0x4, 0x74, 0x609}}, 0x14}, 0x1, 0xffffffff00000003, 0x0, 0x60040}, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_DEL(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="e00000000a06010100000000000000000300000908000940800000010900020073797a31000000000500010007000000080009"], 0x13a}, 0x1, 0x0, 0x0, 0x4800}, 0x48080) 9.808963068s ago: executing program 4 (id=3439): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_udp(0xa, 0x2, 0x0) bind$inet6(r2, &(0x7f0000000180)={0xa, 0x4e22, 0x10001, @local, 0x5}, 0x1c) sendmmsg$inet(r2, &(0x7f0000000780)=[{{&(0x7f0000000000)={0x2, 0x5e23, @multicast1=0xe0000201}, 0x10, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x44880) 9.729274552s ago: executing program 4 (id=3440): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x10000, 0x0) openat(0xffffffffffffff9c, 0x0, 0x20842, 0x0) rt_sigaction(0xd, 0x0, 0x0, 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r2 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f0000000040)={'lo\x00'}) 9.626270436s ago: executing program 4 (id=3442): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000480)=ANY=[@ANYRES16, @ANYBLOB="01000000000000000000010000001400020077673100000000000000000000000000f4010880700000804800098028a25880060001000a00000014000200fe8000000000000000000000000000aa0500"], 0x21c}}, 0x0) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="6c01000017000100000000000000000000000000000000000000ffffac1e00010000000000000000e0000002000000000000000000000000fe800000000000000000000000000000fe8000"/104, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac141400000000000000000000000000ffffff7f00000000000000000000000000000000000000000a"], 0x16c}}, 0x0) 9.495699923s ago: executing program 4 (id=3445): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$netlink(0x10, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$packet(0x11, 0x2, 0x300) writev(r2, &(0x7f00000001c0)=[{&(0x7f0000000400)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000200000000000006040000000000f93132", 0x39}], 0x1) 7.507804524s ago: executing program 4 (id=3458): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = socket$inet(0xa, 0x801, 0x84) connect$inet(r3, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) listen(r3, 0x8) r4 = accept4(r3, 0x0, 0x0, 0x80000) setsockopt(r4, 0x84, 0x7f, &(0x7f00000001c0)="020000000980ff", 0x7) r5 = socket$rds(0x15, 0x5, 0x0) setsockopt$RDS_FREE_MR(r5, 0x114, 0x3, 0x0, 0x0) 6.932172271s ago: executing program 2 (id=3460): keyctl$join(0x1, 0x0) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) keyctl$join(0x1, 0x0) 5.849587001s ago: executing program 2 (id=3467): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000780), r0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB="88020000", @ANYRES16=r1, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r2, @ANYBLOB="61023300503001000802110000010802110000"], 0x288}, 0x1, 0x0, 0x0, 0x800}, 0x0) 5.719425011s ago: executing program 4 (id=3468): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, 0x0, 0x0, 0x4) r2 = syz_open_procfs(0x0, &(0x7f00000003c0)='mountinfo\x00') r3 = open(&(0x7f0000000200)='./bus\x00', 0x141a42, 0x0) fchdir(0xffffffffffffffff) sendfile(r3, r2, 0x0, 0xffffffff) 5.635677667s ago: executing program 2 (id=3469): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mkdirat(0xffffffffffffff9c, 0x0, 0x1c0) socket$netlink(0x10, 0x3, 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x35}}, 0x6}, 0x1c) connect$inet6(r2, &(0x7f0000000100)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0xd}, 0x1c) r3 = fcntl$dupfd(r2, 0x0, r2) sendmsg$GTP_CMD_DELPDP(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x14, 0x0, 0x4, 0x70bd2d, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4004}, 0x81) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r3) 5.521793258s ago: executing program 2 (id=3471): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, 0x0) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) socket$inet_tcp(0x2, 0x1, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000540)=ANY=[@ANYBLOB="280000001300010002000000f6dbdf2508000000030000001000"], 0x28}], 0x1}, 0x0) 3.391644264s ago: executing program 2 (id=3480): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) madvise(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x65) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmsg$IEEE802154_LLSEC_LIST_DEVKEY(0xffffffffffffffff, 0x0, 0x20) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) fcntl$setstatus(r2, 0x4, 0x4a000) 2.557975952s ago: executing program 2 (id=3484): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$netlink(0x10, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$packet(0x11, 0x2, 0x300) writev(r2, &(0x7f00000001c0)=[{&(0x7f0000000400)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000200000000000006040000000000f93132", 0x39}], 0x1) 831.401843ms ago: executing program 0 (id=3498): prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0) syz_clone(0x1144280, 0x0, 0x0, 0x0, 0x0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) 743.174916ms ago: executing program 1 (id=3499): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, 0xffffffffffffffff, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r1 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581) ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000000)=@urb_type_interrupt={0x1, {0x9}, 0x7f, 0x20, 0x0, 0x0, 0x4c, 0xe51, 0x0, 0x709, 0x2, 0x0}) 657.585824ms ago: executing program 1 (id=3500): r0 = socket$kcm(0x15, 0x5, 0x0) sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000000)={0xa, 0x0, @dev={0xac, 0x14, 0x14, 0x3c}}, 0x10, 0x0}, 0x0) ioprio_get$pid(0x0, 0xffffffffffffffff) r1 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000280), 0x123880, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000e00), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000e40)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="210f00000000000000002000000008000300", @ANYRES32=r4, @ANYBLOB="42f21ff63f81dce5b9df68ddbefe5c09000641f2ceae2abc43ec17947f7877af0e7cf4ea000074507ff3909d84d277a6"], 0x1c}, 0x1, 0x0, 0x0, 0x20000015}, 0x44000) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_TRIGGER_SCAN(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001440)={0x1c, 0x0, 0x1, 0x80, 0x0, {{0x8}, {@val={0x8, 0x3, r6}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x2000c000) syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), r2) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f00000002c0)=0x0) ioctl$TIOCSPGRP(r1, 0x5410, &(0x7f0000000300)=r7) r8 = getpid() ptrace$setsig(0x4203, r8, 0x1, &(0x7f0000000040)={0x33, 0x0, 0x29}) syz_io_uring_setup(0xefe, 0x0, &(0x7f0000000000), 0x0) r9 = syz_pidfd_open(r8, 0x0) waitid$P_PIDFD(0x3, r9, 0x0, 0x2, &(0x7f00000001c0)) 524.396194ms ago: executing program 0 (id=3501): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.freeze\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) tgkill(0x0, 0x0, 0x21) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x35c, 0x0) 522.246984ms ago: executing program 1 (id=3502): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) syz_io_uring_setup(0x1a34, 0x0, &(0x7f00000001c0), &(0x7f0000000040)) socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = userfaultfd(0x80001) socket$xdp(0x2c, 0x3, 0x0) ioctl$UFFDIO_COPY(r2, 0xc028aa05, &(0x7f0000000100)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000013000/0x4000)=nil, 0x3000, 0x3}) openat$kvm(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket(0xa, 0x3, 0x3a) r4 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000003c0)={'bridge0\x00', 0x0}) setsockopt$MRT6_ADD_MIF(r3, 0x29, 0xca, &(0x7f0000000240)={0x0, 0x0, 0xff, r5, 0x5}, 0xc) 404.616163ms ago: executing program 0 (id=3503): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, 0x0, 0x0, 0x4) socket$inet_tcp(0x2, 0x1, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000540)=ANY=[@ANYBLOB="280000001300010002000000f6dbdf2508000000030000001000"], 0x28}], 0x1}, 0x0) 291.750282ms ago: executing program 1 (id=3504): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x4]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) syz_open_procfs(0x0, &(0x7f0000000080)='auxv\x00') write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket(0xa, 0x3, 0x3a) r3 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000003c0)={'bridge0\x00', 0x0}) setsockopt$MRT6_ADD_MIF(r2, 0x29, 0xca, &(0x7f0000000240)={0x0, 0x0, 0xff, r4, 0x5}, 0xc) 256.008214ms ago: executing program 0 (id=3505): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000036c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) sendmmsg$unix(r3, &(0x7f0000008280)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000003700)=ANY=[@ANYBLOB="20000000000000000100000001000000", @ANYRES32=r4, @ANYRES32=r4, @ANYRES32=r2, @ANYRES32=r2, @ANYBLOB="1c000000000000"], 0xb0}}], 0x2, 0x0) 172.78289ms ago: executing program 1 (id=3506): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80b00, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000bc0)={0x2, 0x0, @ioapic={0x33325000, 0x40b, 0xa, 0xfffffffc, 0x0, [{0xc, 0x6, 0x6, '\x00', 0xb4}, {0x83, 0x7, 0x4, '\x00', 0x4b}, {0xfc, 0xe, 0x7, '\x00', 0xf8}, {0x0, 0xd, 0x40, '\x00', 0x2}, {0x8, 0x10, 0x8, '\x00', 0xa8}, {0x2, 0x6, 0x6, '\x00', 0xff}, {0x6, 0xe, 0x47, '\x00', 0x6}, {0x5, 0x8c, 0x4, '\x00', 0xe9}, {0xe, 0x4, 0x8, '\x00', 0x1}, {0x5, 0x7, 0x6, '\x00', 0x4}, {0x2, 0x69, 0x15, '\x00', 0x8}, {0xe, 0x7, 0x6, '\x00', 0x7}, {0x4, 0x8a, 0x80, '\x00', 0xdd}, {0x3, 0xf1, 0x6, '\x00', 0x9}, {0x7, 0x65, 0xb, '\x00', 0xfd}, {0x6, 0x9b, 0x19, '\x00', 0x5}, {0x7, 0x2, 0x24, '\x00', 0xa}, {0xef, 0x6, 0x9, '\x00', 0x4}, {0xf, 0x6, 0x6, '\x00', 0x9}, {0x9, 0x3, 0x3, '\x00', 0x4}, {0x1, 0x3, 0x7, '\x00', 0x4}, {0xd, 0x40, 0x7, '\x00', 0x9}, {0xfe, 0xfd, 0x7, '\x00', 0xff}, {0x92, 0x6, 0xfa}]}}) 160.570282ms ago: executing program 0 (id=3507): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x100080, 0x0) 12.041128ms ago: executing program 0 (id=3508): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, 0xffffffffffffffff, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r1 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581) ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000000)=@urb_type_interrupt={0x1, {0x9}, 0x7f, 0x20, 0x0, 0x0, 0x4c, 0xe51, 0x0, 0x709, 0x2, 0x0}) 0s ago: executing program 1 (id=3509): unshare(0x22020600) unshare(0x24040000) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.24' (ED25519) to the list of known hosts. [ 67.194532][ T5810] cgroup: Unknown subsys name 'net' [ 67.361211][ T5810] cgroup: Unknown subsys name 'cpuset' [ 67.369642][ T5810] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 68.765073][ T5810] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 71.289554][ T5825] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 71.299992][ T5832] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 71.309715][ T5832] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 71.317776][ T5832] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 71.321985][ T5835] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 71.325678][ T5832] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 71.332958][ T5835] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 71.344165][ T5832] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 71.347371][ T5835] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 71.362824][ T5837] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 71.363788][ T5835] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 71.371562][ T5832] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 71.379017][ T5835] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 71.384938][ T5837] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 71.395054][ T5832] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 71.400700][ T5837] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 71.407123][ T5832] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 71.414680][ T5837] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 71.420446][ T5832] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 71.459772][ T5837] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 71.475999][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.485902][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.873489][ T5820] chnl_net:caif_netlink_parms(): no params data found [ 72.078714][ T5822] chnl_net:caif_netlink_parms(): no params data found [ 72.101048][ T5821] chnl_net:caif_netlink_parms(): no params data found [ 72.146786][ T5820] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.154343][ T5820] bridge0: port 1(bridge_slave_0) entered disabled state [ 72.161809][ T5820] bridge_slave_0: entered allmulticast mode [ 72.169562][ T5820] bridge_slave_0: entered promiscuous mode [ 72.222236][ T5820] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.230514][ T5820] bridge0: port 2(bridge_slave_1) entered disabled state [ 72.237689][ T5820] bridge_slave_1: entered allmulticast mode [ 72.245231][ T5820] bridge_slave_1: entered promiscuous mode [ 72.305793][ T5819] chnl_net:caif_netlink_parms(): no params data found [ 72.322028][ T5820] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 72.350083][ T5820] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 72.442955][ T5821] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.450211][ T5821] bridge0: port 1(bridge_slave_0) entered disabled state [ 72.457343][ T5821] bridge_slave_0: entered allmulticast mode [ 72.464578][ T5821] bridge_slave_0: entered promiscuous mode [ 72.475076][ T5820] team0: Port device team_slave_0 added [ 72.497643][ T5821] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.504939][ T5821] bridge0: port 2(bridge_slave_1) entered disabled state [ 72.512532][ T5821] bridge_slave_1: entered allmulticast mode [ 72.519731][ T5821] bridge_slave_1: entered promiscuous mode [ 72.528734][ T5820] team0: Port device team_slave_1 added [ 72.534505][ T5822] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.541768][ T5822] bridge0: port 1(bridge_slave_0) entered disabled state [ 72.549248][ T5822] bridge_slave_0: entered allmulticast mode [ 72.556266][ T5822] bridge_slave_0: entered promiscuous mode [ 72.591580][ T5822] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.598997][ T5822] bridge0: port 2(bridge_slave_1) entered disabled state [ 72.606147][ T5822] bridge_slave_1: entered allmulticast mode [ 72.613442][ T5822] bridge_slave_1: entered promiscuous mode [ 72.674373][ T5821] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 72.685508][ T5820] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 72.692532][ T5820] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 72.718555][ T5820] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 72.756209][ T5821] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 72.766346][ T5820] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 72.773498][ T5820] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 72.799919][ T5820] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 72.813704][ T5822] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 72.823747][ T5819] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.831123][ T5819] bridge0: port 1(bridge_slave_0) entered disabled state [ 72.838416][ T5819] bridge_slave_0: entered allmulticast mode [ 72.845392][ T5819] bridge_slave_0: entered promiscuous mode [ 72.873369][ T5822] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 72.902586][ T5819] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.910243][ T5819] bridge0: port 2(bridge_slave_1) entered disabled state [ 72.917545][ T5819] bridge_slave_1: entered allmulticast mode [ 72.924881][ T5819] bridge_slave_1: entered promiscuous mode [ 72.945634][ T5821] team0: Port device team_slave_0 added [ 72.995699][ T5821] team0: Port device team_slave_1 added [ 73.003665][ T5822] team0: Port device team_slave_0 added [ 73.023022][ T5819] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 73.045873][ T5822] team0: Port device team_slave_1 added [ 73.066000][ T5819] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 73.124468][ T5820] hsr_slave_0: entered promiscuous mode [ 73.131297][ T5820] hsr_slave_1: entered promiscuous mode [ 73.150567][ T5821] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 73.157531][ T5821] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 73.183739][ T5821] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 73.206744][ T5822] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 73.213752][ T5822] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 73.239728][ T5822] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 73.252708][ T5819] team0: Port device team_slave_0 added [ 73.259354][ T5821] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 73.266301][ T5821] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 73.292363][ T5821] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 73.304832][ T5822] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 73.312107][ T5822] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 73.338058][ T5822] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 73.351124][ T5819] team0: Port device team_slave_1 added [ 73.438810][ T5819] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 73.445974][ T5819] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 73.468923][ T5837] Bluetooth: hci2: command tx timeout [ 73.472446][ T5823] Bluetooth: hci0: command tx timeout [ 73.477670][ T5832] Bluetooth: hci3: command tx timeout [ 73.483297][ T5819] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 73.526784][ T5819] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 73.533871][ T5819] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 73.559915][ T5819] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 73.568862][ T5832] Bluetooth: hci1: command tx timeout [ 73.611095][ T5822] hsr_slave_0: entered promiscuous mode [ 73.617394][ T5822] hsr_slave_1: entered promiscuous mode [ 73.623745][ T5822] debugfs: 'hsr0' already exists in 'hsr' [ 73.629737][ T5822] Cannot create hsr debugfs directory [ 73.645832][ T5821] hsr_slave_0: entered promiscuous mode [ 73.652598][ T5821] hsr_slave_1: entered promiscuous mode [ 73.658935][ T5821] debugfs: 'hsr0' already exists in 'hsr' [ 73.664658][ T5821] Cannot create hsr debugfs directory [ 73.721156][ T5819] hsr_slave_0: entered promiscuous mode [ 73.727458][ T5819] hsr_slave_1: entered promiscuous mode [ 73.733816][ T5819] debugfs: 'hsr0' already exists in 'hsr' [ 73.739919][ T5819] Cannot create hsr debugfs directory [ 74.130273][ T5820] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 74.160926][ T5820] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 74.172397][ T5820] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 74.189351][ T5820] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 74.232099][ T5822] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 74.247440][ T5822] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 74.259311][ T5822] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 74.272386][ T5822] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 74.360680][ T5821] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 74.374960][ T5821] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 74.385199][ T5821] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 74.401181][ T5821] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 74.506840][ T5819] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 74.519254][ T5819] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 74.532349][ T5819] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 74.542686][ T5819] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 74.582316][ T5820] 8021q: adding VLAN 0 to HW filter on device bond0 [ 74.645686][ T5822] 8021q: adding VLAN 0 to HW filter on device bond0 [ 74.672887][ T5820] 8021q: adding VLAN 0 to HW filter on device team0 [ 74.697808][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.705054][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 74.715015][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.722151][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 74.753426][ T5822] 8021q: adding VLAN 0 to HW filter on device team0 [ 74.790304][ T79] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.797406][ T79] bridge0: port 1(bridge_slave_0) entered forwarding state [ 74.815326][ T5821] 8021q: adding VLAN 0 to HW filter on device bond0 [ 74.839739][ T2985] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.846889][ T2985] bridge0: port 2(bridge_slave_1) entered forwarding state [ 74.872366][ T5821] 8021q: adding VLAN 0 to HW filter on device team0 [ 74.892347][ T2985] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.899547][ T2985] bridge0: port 1(bridge_slave_0) entered forwarding state [ 74.936130][ T2985] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.943307][ T2985] bridge0: port 2(bridge_slave_1) entered forwarding state [ 75.022158][ T5819] 8021q: adding VLAN 0 to HW filter on device bond0 [ 75.119753][ T5819] 8021q: adding VLAN 0 to HW filter on device team0 [ 75.163822][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.171062][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 75.226061][ T2985] bridge0: port 2(bridge_slave_1) entered blocking state [ 75.233296][ T2985] bridge0: port 2(bridge_slave_1) entered forwarding state [ 75.316718][ T5820] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 75.375509][ T5819] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 75.483839][ T5822] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 75.548928][ T5832] Bluetooth: hci3: command tx timeout [ 75.550883][ T5837] Bluetooth: hci0: command tx timeout [ 75.554345][ T5823] Bluetooth: hci2: command tx timeout [ 75.582838][ T5820] veth0_vlan: entered promiscuous mode [ 75.592190][ T5821] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 75.623973][ T5820] veth1_vlan: entered promiscuous mode [ 75.628955][ T5832] Bluetooth: hci1: command tx timeout [ 75.673707][ T5822] veth0_vlan: entered promiscuous mode [ 75.735699][ T5820] veth0_macvtap: entered promiscuous mode [ 75.754447][ T5821] veth0_vlan: entered promiscuous mode [ 75.761362][ T5822] veth1_vlan: entered promiscuous mode [ 75.779197][ T5820] veth1_macvtap: entered promiscuous mode [ 75.802266][ T5819] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 75.826449][ T5821] veth1_vlan: entered promiscuous mode [ 75.840002][ T5820] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 75.870425][ T5822] veth0_macvtap: entered promiscuous mode [ 75.892613][ T5822] veth1_macvtap: entered promiscuous mode [ 75.901753][ T5820] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 75.933172][ T36] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.943559][ T36] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.961356][ T36] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.970373][ T36] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.988968][ T5822] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 76.015272][ T5822] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 76.049451][ T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.059349][ T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.072524][ T5819] veth0_vlan: entered promiscuous mode [ 76.081125][ T5821] veth0_macvtap: entered promiscuous mode [ 76.090432][ T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.101597][ T5821] veth1_macvtap: entered promiscuous mode [ 76.111605][ T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.135294][ T5819] veth1_vlan: entered promiscuous mode [ 76.223029][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 76.227105][ T5821] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 76.240680][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 76.246781][ T5821] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 76.291767][ T36] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.300815][ T36] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.310400][ T12] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.329260][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 76.331858][ T12] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.337084][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 76.377666][ T5819] veth0_macvtap: entered promiscuous mode [ 76.412577][ T5819] veth1_macvtap: entered promiscuous mode [ 76.421534][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 76.435663][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 76.479377][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 76.488051][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 76.519765][ T5820] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 76.526128][ T5819] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 76.550159][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 76.569236][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 76.613660][ T5819] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 76.629828][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 76.637677][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 76.662681][ T2985] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.738578][ T2985] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.747345][ T2985] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.775749][ T5911] overlayfs: overlapping lowerdir path [ 76.776407][ T2985] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.951169][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 76.994679][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.132601][ T2985] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.157257][ T2985] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.199390][ T5924] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8'. [ 77.530524][ T5933] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 77.603597][ T5936] overlayfs: maximum fs stacking depth exceeded [ 77.632179][ T5823] Bluetooth: hci3: command tx timeout [ 77.632708][ T5837] Bluetooth: hci2: command tx timeout [ 77.637682][ T5832] Bluetooth: hci0: command tx timeout [ 77.708597][ T5832] Bluetooth: hci1: command tx timeout [ 77.841199][ T5942] binder: 5941:5942 ioctl c0306201 2000000004c0 returned -22 [ 78.607540][ T5967] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 79.709325][ T5832] Bluetooth: hci0: command tx timeout [ 79.709340][ T5837] Bluetooth: hci3: command tx timeout [ 79.709372][ T5837] Bluetooth: hci2: command tx timeout [ 79.788528][ T5837] Bluetooth: hci1: command tx timeout [ 82.800580][ T6077] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 82.849636][ T6077] overlayfs: missing 'lowerdir' [ 82.938626][ T6085] netlink: 204 bytes leftover after parsing attributes in process `syz.3.78'. [ 83.363187][ T5907] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 83.528757][ T5907] usb 3-1: Using ep0 maxpacket: 32 [ 83.542168][ T5907] usb 3-1: config index 0 descriptor too short (expected 29220, got 36) [ 83.567981][ T5907] usb 3-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 83.577227][ T5907] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 83.597418][ T5907] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 83.638247][ T5907] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 83.659447][ T5907] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 83.674119][ T5907] usb 3-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 83.683436][ T5907] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 83.745942][ T5907] usb 3-1: config 0 descriptor?? [ 83.853283][ T6124] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 83.969945][ T5907] usblp 3-1:0.0: usblp0: USB Bidirectional printer dev 2 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 84.001923][ T5907] usb 3-1: USB disconnect, device number 2 [ 84.042187][ T5907] usblp0: removed [ 84.814294][ T6161] netlink: 8 bytes leftover after parsing attributes in process `syz.1.112'. [ 85.735238][ T6208] netlink: 'syz.0.128': attribute type 4 has an invalid length. [ 85.854816][ T6212] binder: 6211:6212 ioctl c0306201 2000000001c0 returned -14 [ 86.840685][ T794] cfg80211: failed to load regulatory.db [ 87.785281][ T6284] capability: warning: `syz.2.165' uses 32-bit capabilities (legacy support in use) [ 87.861804][ T6286] input: syz0 as /devices/virtual/input/input5 [ 88.291655][ T6303] ======================================================= [ 88.291655][ T6303] WARNING: The mand mount option has been deprecated and [ 88.291655][ T6303] and is ignored by this kernel. Remove the mand [ 88.291655][ T6303] option from the mount to silence this warning. [ 88.291655][ T6303] ======================================================= [ 88.357732][ T6303] binder: Unknown parameter 'context' [ 94.883111][ T6507] tipc: Started in network mode [ 94.888225][ T6507] tipc: Node identity 0e04450fc923, cluster identity 4711 [ 94.895573][ T6507] tipc: Enabled bearer , priority 0 [ 94.905032][ T6506] tipc: Resetting bearer [ 96.243762][ T6535] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 97.205111][ T6506] tipc: Disabling bearer [ 97.267445][ T794] tipc: Node number set to 3341239567 [ 97.703715][ T6562] Bluetooth: MGMT ver 1.23 [ 98.329165][ T30] audit: type=1326 audit(1763104846.798:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6567 comm="syz.3.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d73b8f6c9 code=0x7ffc0000 [ 98.398959][ T30] audit: type=1326 audit(1763104846.838:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6567 comm="syz.3.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f7d73b8f6c9 code=0x7ffc0000 [ 98.510460][ T30] audit: type=1326 audit(1763104846.838:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6567 comm="syz.3.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d73b8f6c9 code=0x7ffc0000 [ 98.593960][ T30] audit: type=1326 audit(1763104846.838:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6567 comm="syz.3.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d73b8f6c9 code=0x7ffc0000 [ 98.621482][ T30] audit: type=1326 audit(1763104846.838:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6567 comm="syz.3.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f7d73b8f6c9 code=0x7ffc0000 [ 98.677367][ T30] audit: type=1326 audit(1763104846.838:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6567 comm="syz.3.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d73b8f6c9 code=0x7ffc0000 [ 98.740432][ T30] audit: type=1326 audit(1763104846.838:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6567 comm="syz.3.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d73b8f6c9 code=0x7ffc0000 [ 98.803321][ T30] audit: type=1326 audit(1763104846.838:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6567 comm="syz.3.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f7d73b8f6c9 code=0x7ffc0000 [ 98.832398][ T794] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 98.851060][ T30] audit: type=1326 audit(1763104846.838:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6567 comm="syz.3.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d73b8f6c9 code=0x7ffc0000 [ 98.881651][ T30] audit: type=1326 audit(1763104846.838:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6567 comm="syz.3.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f7d73b8f6c9 code=0x7ffc0000 [ 98.997988][ T794] usb 4-1: Using ep0 maxpacket: 8 [ 99.020794][ T794] usb 4-1: config 0 has an invalid interface number: 154 but max is 0 [ 99.043351][ T794] usb 4-1: config 0 has no interface number 0 [ 99.056007][ T794] usb 4-1: config 0 interface 154 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7 [ 99.102623][ T794] usb 4-1: config 0 interface 154 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 99.136447][ T794] usb 4-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=9e.bc [ 99.168005][ T794] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 99.209563][ T794] usb 4-1: Product: syz [ 99.225691][ T794] usb 4-1: Manufacturer: syz [ 99.241453][ T794] usb 4-1: SerialNumber: syz [ 99.280257][ T794] usb 4-1: config 0 descriptor?? [ 99.356012][ T794] appletouch 4-1:0.154: Could not find int-in endpoint [ 99.372934][ T794] appletouch 4-1:0.154: probe with driver appletouch failed with error -5 [ 99.396501][ T794] usbhid 4-1:0.154: couldn't find an input interrupt endpoint [ 99.787986][ T5823] Bluetooth: hci0: command tx timeout [ 100.952147][ T6634] usb usb7: usbfs: process 6634 (syz.1.312) did not claim interface 0 before use [ 101.566973][ T43] usb 4-1: USB disconnect, device number 2 [ 103.198427][ T6687] Set syz1 is full, maxelem 46 reached [ 103.227182][ T794] IPVS: starting estimator thread 0... [ 103.261007][ T6692] tmpfs: Bad value for 'mpol' [ 103.315118][ T5823] Bluetooth: hci3: hcon ffff88807e09c000 sent 1 < count 65533 [ 103.323681][ T6690] IPVS: using max 30 ests per chain, 72000 per kthread [ 103.375089][ T6697] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 103.390064][ T6697] block device autoloading is deprecated and will be removed. [ 104.018006][ T6721] syz.0.347 uses obsolete (PF_INET,SOCK_PACKET) [ 104.245990][ T6728] netlink: 'syz.2.349': attribute type 10 has an invalid length. [ 104.260396][ T6728] bridge0: port 2(bridge_slave_1) entered disabled state [ 104.268838][ T6728] bridge0: port 1(bridge_slave_0) entered disabled state [ 104.300853][ T6728] bridge0: port 2(bridge_slave_1) entered blocking state [ 104.308161][ T6728] bridge0: port 2(bridge_slave_1) entered forwarding state [ 104.316300][ T6728] bridge0: port 1(bridge_slave_0) entered blocking state [ 104.323591][ T6728] bridge0: port 1(bridge_slave_0) entered forwarding state [ 104.361653][ T6728] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 104.583045][ T6741] capability: warning: `syz.1.355' uses deprecated v2 capabilities in a way that may be insecure [ 105.818455][ T6757] warning: `syz.3.360' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 106.795871][ T5823] Bluetooth: Unknown BR/EDR signaling command 0x0e [ 106.803300][ T5823] Bluetooth: Wrong link type (-22) [ 107.779420][ T6805] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1280 [ 108.546829][ T794] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 108.709407][ T794] usb 2-1: Using ep0 maxpacket: 8 [ 108.721618][ T794] usb 2-1: config 0 interface 0 altsetting 5 endpoint 0x81 has invalid wMaxPacketSize 0 [ 108.739619][ T794] usb 2-1: config 0 interface 0 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 108.768515][ T794] usb 2-1: config 0 interface 0 has no altsetting 0 [ 108.782487][ T794] usb 2-1: New USB device found, idVendor=5543, idProduct=0042, bcdDevice= 0.00 [ 108.792039][ T794] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 108.806547][ T794] usb 2-1: config 0 descriptor?? [ 108.817525][ T794] usbhid 2-1:0.0: couldn't find an input interrupt endpoint [ 111.305166][ T794] usb 2-1: USB disconnect, device number 2 [ 112.796176][ T6892] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb [ 112.825634][ T6892] tipc: Enabled bearer , priority 10 [ 112.974122][ T6896] 9p: Bad value for 'rfdno' [ 114.297258][ T6915] process 'syz.2.421' launched './file0' with NULL argv: empty string added [ 115.248617][ T6923] netlink: 4 bytes leftover after parsing attributes in process `syz.2.426'. [ 115.377989][ T6925] faux_driver vkms: [drm] Unknown color mode 6; guessing buffer size. [ 115.827961][ T6935] 9p: Bad value for 'rfdno' [ 116.431141][ T6954] netlink: 'syz.1.436': attribute type 37 has an invalid length. [ 118.434778][ T6981] netlink: 133536 bytes leftover after parsing attributes in process `syz.0.447'. [ 119.819526][ T794] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 119.849655][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 119.869754][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 119.878076][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 119.910369][ T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!! [ 119.920082][ T0] NOHZ tick-stop error: local softirq work is pending, handler #82!!! [ 120.594583][ T794] usb 2-1: Using ep0 maxpacket: 16 [ 120.635571][ T794] usb 2-1: unable to get BOS descriptor or descriptor too short [ 120.655606][ T794] usb 2-1: no configurations [ 120.660236][ T794] usb 2-1: can't read configurations, error -22 [ 122.618731][ T7056] netlink: 'syz.3.475': attribute type 12 has an invalid length. [ 122.806400][ T7063] wg2: entered promiscuous mode [ 122.817488][ T7063] wg2: entered allmulticast mode [ 123.884883][ T7091] netlink: 'syz.2.487': attribute type 10 has an invalid length. [ 123.912320][ T7091] team0: Port device dummy0 added [ 123.922271][ T7091] netlink: 'syz.2.487': attribute type 10 has an invalid length. [ 123.938665][ T7091] team0: Port device dummy0 removed [ 123.950622][ T7091] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 124.270147][ T7113] wg2: entered promiscuous mode [ 124.275206][ T7113] wg2: entered allmulticast mode [ 124.285043][ T7114] netlink: 12 bytes leftover after parsing attributes in process `syz.3.496'. [ 125.465381][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 125.707970][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 125.771238][ T7151] netlink: 20 bytes leftover after parsing attributes in process `syz.3.508'. [ 126.168192][ T43] Process accounting resumed [ 129.586754][ T7218] pim6reg1: entered allmulticast mode [ 129.648651][ T7220] overlayfs: failed to resolve './file1/file0': -2 [ 130.845839][ T30] kauditd_printk_skb: 6 callbacks suppressed [ 130.845855][ T30] audit: type=1326 audit(1763105647.170:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7228 comm="syz.0.535" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2f6758f6c9 code=0x0 [ 130.938033][ T5823] Bluetooth: Wrong link type (-71) [ 130.944253][ T5823] Bluetooth: hci3: link tx timeout [ 131.220228][ T7247] overlayfs: failed to resolve './file1/file0': -2 [ 132.108106][ T7254] binder: 7253:7254 ioctl 40046210 0 returned -14 [ 132.123759][ T7254] binder: 7253:7254 ioctl c00c620f 0 returned -14 [ 133.151839][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.151958][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 136.975228][ T7356] netlink: 32 bytes leftover after parsing attributes in process `syz.2.574'. [ 138.269875][ T7401] netlink: 24 bytes leftover after parsing attributes in process `syz.1.588'. [ 138.789067][ T5823] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 138.796148][ T5823] Bluetooth: Wrong link type (-22) [ 138.809412][ T5823] Bluetooth: hci2: link tx timeout [ 138.815097][ T5823] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa [ 139.235499][ T7423] netlink: 32 bytes leftover after parsing attributes in process `syz.0.594'. [ 139.446388][ T5823] Bluetooth: hci2: link tx timeout [ 139.452964][ T5823] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa [ 140.869466][ T5823] Bluetooth: hci2: command 0x0406 tx timeout [ 142.707359][ T43] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 142.735277][ T43] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz1] on syz0 [ 143.508952][ T7515] fido_id[7515]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 145.526037][ T5837] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 145.533367][ T5837] Bluetooth: Wrong link type (-22) [ 145.539346][ T5837] Bluetooth: hci1: link tx timeout [ 145.545442][ T5837] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa [ 146.540795][ T7586] netlink: 'syz.0.645': attribute type 16 has an invalid length. [ 146.549000][ T7586] netlink: 64138 bytes leftover after parsing attributes in process `syz.0.645'. [ 147.095301][ T7593] wg2: entered promiscuous mode [ 147.100815][ T7593] wg2: entered allmulticast mode [ 147.478900][ T7595] syzkaller1: entered promiscuous mode [ 147.484395][ T7595] syzkaller1: entered allmulticast mode [ 147.619705][ T5837] Bluetooth: hci1: command 0x0406 tx timeout [ 147.889110][ T7609] wg2: entered promiscuous mode [ 147.894366][ T7609] wg2: entered allmulticast mode [ 149.235434][ T5912] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 149.414694][ T5912] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 149.438192][ T5912] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 149.451134][ T5912] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 149.467455][ T5912] usb 1-1: config 0 descriptor?? [ 149.958407][ T5912] keytouch 0003:0926:3333.0002: fixing up Keytouch IEC report descriptor [ 150.013006][ T5912] input: HID 0926:3333 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0926:3333.0002/input/input6 [ 150.123285][ T7625] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 150.137990][ T7625] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 150.251451][ T5912] keytouch 0003:0926:3333.0002: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.0-1/input0 [ 150.373155][ T794] usb 1-1: USB disconnect, device number 2 [ 150.473391][ T7681] fido_id[7681]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/1-1/report_descriptor': No such file or directory [ 150.717425][ T7699] o2cb: This node has not been configured. [ 150.724247][ T7699] o2cb: Cluster check failed. Fix errors before retrying. [ 150.732825][ T7699] (syz.2.692,7699,1):user_dlm_register:674 ERROR: status = -22 [ 150.740470][ T7699] (syz.2.692,7699,1):dlmfs_mkdir:438 ERROR: Error -22 could not register domain "mnt" [ 152.664627][ T7743] binder_alloc: 7740: pid 7740 spamming oneway? 1 buffers allocated for a total size of 4096 [ 152.830847][ T7751] binder: 7750:7751 ioctl 84009422 0 returned -22 [ 153.791942][ T7768] overlayfs: failed to resolve './file1/file0': -2 [ 154.323605][ T7795] overlayfs: failed to resolve './file1/file0': -2 [ 154.752942][ T7822] overlayfs: failed to resolve './file1/file0': -2 [ 155.157557][ T7846] overlayfs: overlapping lowerdir path [ 155.526594][ T7870] syz.0.769 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 157.156528][ T7934] netlink: 32 bytes leftover after parsing attributes in process `syz.3.800'. [ 157.165484][ T7934] netlink: 32 bytes leftover after parsing attributes in process `syz.3.800'. [ 157.364198][ T7944] overlayfs: overlapping lowerdir path [ 157.855508][ T7966] overlayfs: overlapping lowerdir path [ 158.044643][ T7976] netlink: 32 bytes leftover after parsing attributes in process `syz.3.821'. [ 158.455797][ T7995] netlink: 32 bytes leftover after parsing attributes in process `syz.3.831'. [ 158.908822][ T8022] netlink: 32 bytes leftover after parsing attributes in process `syz.2.843'. [ 159.313600][ T8047] netlink: 128 bytes leftover after parsing attributes in process `syz.1.855'. [ 159.394271][ T8051] netlink: 32 bytes leftover after parsing attributes in process `syz.3.857'. [ 160.235478][ T8080] binder: 8079:8080 ioctl c0306201 0 returned -14 [ 160.346404][ T8085] netlink: 32 bytes leftover after parsing attributes in process `syz.0.870'. [ 160.877271][ T8111] netlink: 32 bytes leftover after parsing attributes in process `syz.2.882'. [ 161.569095][ T8132] overlayfs: missing 'lowerdir' [ 161.662271][ T8137] netlink: 32 bytes leftover after parsing attributes in process `syz.2.893'. [ 162.304755][ T8161] netlink: 32 bytes leftover after parsing attributes in process `syz.1.904'. [ 162.659345][ T8173] overlayfs: missing 'lowerdir' [ 162.919792][ T8181] netlink: 32 bytes leftover after parsing attributes in process `syz.0.914'. [ 163.147388][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 163.320028][ T24] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 163.478215][ T24] usb 4-1: Using ep0 maxpacket: 8 [ 163.489838][ T24] usb 4-1: config 179 has an invalid interface number: 65 but max is 0 [ 163.498681][ T24] usb 4-1: config 179 has no interface number 0 [ 163.505252][ T24] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 163.539328][ T24] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 163.554359][ T24] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 163.566015][ T24] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0 [ 163.578836][ T24] usb 4-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 163.594858][ T24] usb 4-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 163.606397][ T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 163.626602][ T8189] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 163.643894][ T24] xpad 4-1:179.65: probe with driver xpad failed with error -5 [ 163.843463][ T794] usb 4-1: USB disconnect, device number 3 [ 164.267149][ T8221] overlayfs: missing 'lowerdir' [ 164.729620][ T8243] overlayfs: missing 'lowerdir' [ 165.171754][ T8265] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 165.180624][ T8265] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 166.106970][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 167.254599][ T8306] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 167.291135][ T8306] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 167.337911][ T8309] netlink: 16 bytes leftover after parsing attributes in process `syz.0.974'. [ 167.942777][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 168.556377][ T8344] netlink: 16 bytes leftover after parsing attributes in process `syz.2.990'. [ 169.402155][ T8371] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1004'. [ 169.665127][ T8389] overlayfs: missing 'lowerdir' [ 169.679728][ T8392] netlink: 'syz.3.1010': attribute type 21 has an invalid length. [ 169.687666][ T8392] netlink: 'syz.3.1010': attribute type 6 has an invalid length. [ 169.706910][ T8392] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1010'. [ 173.009822][ T8467] netlink: 184 bytes leftover after parsing attributes in process `syz.3.1046'. [ 173.138658][ T30] audit: type=1326 audit(1763105689.288:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8472 comm="syz.3.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d73b8f6c9 code=0x7ffc0000 [ 173.218264][ T30] audit: type=1326 audit(1763105689.288:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8472 comm="syz.3.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d73b8f6c9 code=0x7ffc0000 [ 173.278594][ T30] audit: type=1326 audit(1763105689.328:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8472 comm="syz.3.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f7d73b8f6c9 code=0x7ffc0000 [ 173.338622][ T30] audit: type=1326 audit(1763105689.328:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8472 comm="syz.3.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d73b8f6c9 code=0x7ffc0000 [ 173.404116][ T30] audit: type=1326 audit(1763105689.328:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8472 comm="syz.3.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d73b8f6c9 code=0x7ffc0000 [ 173.433143][ T30] audit: type=1326 audit(1763105689.328:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8472 comm="syz.3.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f7d73b8f6c9 code=0x7ffc0000 [ 173.459280][ T5875] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 173.513900][ T30] audit: type=1326 audit(1763105689.328:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8472 comm="syz.3.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d73b8f6c9 code=0x7ffc0000 [ 173.539449][ T8490] netlink: 184 bytes leftover after parsing attributes in process `syz.2.1057'. [ 173.539751][ T30] audit: type=1326 audit(1763105689.328:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8472 comm="syz.3.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d73b8f6c9 code=0x7ffc0000 [ 173.581843][ T30] audit: type=1326 audit(1763105689.328:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8472 comm="syz.3.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f7d73b8f6c9 code=0x7ffc0000 [ 173.636301][ T5875] usb 2-1: Using ep0 maxpacket: 32 [ 173.651067][ T5875] usb 2-1: config index 0 descriptor too short (expected 29220, got 36) [ 173.669711][ T5875] usb 2-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 173.683705][ T30] audit: type=1326 audit(1763105689.328:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8472 comm="syz.3.1049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d73b8f6c9 code=0x7ffc0000 [ 173.686552][ T5875] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 173.722721][ T5875] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 173.732185][ T5875] usb 2-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 173.759062][ T5875] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18 [ 173.776012][ T5875] usb 2-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 173.785418][ T5875] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 173.811154][ T5875] usb 2-1: config 0 descriptor?? [ 174.038487][ T5875] usb 2-1: USB disconnect, device number 5 [ 174.327792][ T8512] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1066'. [ 174.481821][ T43] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 174.669856][ T43] usb 2-1: Using ep0 maxpacket: 32 [ 174.699479][ T43] usb 2-1: config index 0 descriptor too short (expected 29220, got 36) [ 174.718207][ T43] usb 2-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 174.739808][ T43] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 174.770142][ T43] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 174.790400][ T43] usb 2-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 174.821616][ T43] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18 [ 174.851324][ T43] usb 2-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 174.871553][ T43] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 174.902064][ T43] usb 2-1: config 0 descriptor?? [ 175.121346][ T5875] usb 2-1: USB disconnect, device number 6 [ 175.772536][ T8534] overlayfs: failed to clone upperpath [ 175.923393][ T8536] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1078'. [ 177.040373][ T8561] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1089'. [ 178.738336][ T30] kauditd_printk_skb: 11 callbacks suppressed [ 178.738353][ T30] audit: type=1800 audit(1763105694.883:40): pid=8579 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1100" name="file1" dev="overlay" ino=1470 res=0 errno=0 [ 179.094577][ T8585] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1097'. [ 182.097794][ T8628] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1122'. [ 183.353972][ T8656] 9p: Bad value for 'version' [ 183.704324][ T8666] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1138'. [ 183.740406][ T8668] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1139'. [ 185.421332][ T8698] Zero length message leads to an empty skb [ 186.076497][ T8721] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1164'. [ 187.370731][ T8750] can0: slcan on ttyS3. [ 187.485458][ T8749] can0 (unregistered): slcan off ttyS3. [ 190.061080][ T5837] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 190.070408][ T5837] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 190.080752][ T5837] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 190.100919][ T5837] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 190.108556][ T5837] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 190.497348][ T8803] chnl_net:caif_netlink_parms(): no params data found [ 190.869086][ T8803] bridge0: port 1(bridge_slave_0) entered blocking state [ 190.876609][ T8803] bridge0: port 1(bridge_slave_0) entered disabled state [ 190.895070][ T8803] bridge_slave_0: entered allmulticast mode [ 190.912715][ T8803] bridge_slave_0: entered promiscuous mode [ 190.962164][ T8803] bridge0: port 2(bridge_slave_1) entered blocking state [ 190.973068][ T8803] bridge0: port 2(bridge_slave_1) entered disabled state [ 190.990563][ T8803] bridge_slave_1: entered allmulticast mode [ 191.023007][ T8803] bridge_slave_1: entered promiscuous mode [ 191.096171][ T8803] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 191.127223][ T8803] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 191.232871][ T8803] team0: Port device team_slave_0 added [ 191.265749][ T8803] team0: Port device team_slave_1 added [ 191.337012][ T8803] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 191.344559][ T8803] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 191.405457][ T8803] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 191.427866][ T8803] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 191.436858][ T8803] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 191.464618][ T8803] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 191.561362][ T8803] hsr_slave_0: entered promiscuous mode [ 191.578232][ T8803] hsr_slave_1: entered promiscuous mode [ 191.595487][ T8803] debugfs: 'hsr0' already exists in 'hsr' [ 191.601266][ T8803] Cannot create hsr debugfs directory [ 192.037377][ T8803] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 192.056860][ T8803] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 192.089419][ T8803] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 192.111130][ T8803] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 192.155377][ T5823] Bluetooth: hci4: command tx timeout [ 192.387071][ T8803] 8021q: adding VLAN 0 to HW filter on device bond0 [ 192.443292][ T8803] 8021q: adding VLAN 0 to HW filter on device team0 [ 192.461808][ T79] bridge0: port 1(bridge_slave_0) entered blocking state [ 192.469220][ T79] bridge0: port 1(bridge_slave_0) entered forwarding state [ 192.517928][ T79] bridge0: port 2(bridge_slave_1) entered blocking state [ 192.525167][ T79] bridge0: port 2(bridge_slave_1) entered forwarding state [ 192.955473][ T8803] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 193.449418][ T8803] veth0_vlan: entered promiscuous mode [ 193.487027][ T8803] veth1_vlan: entered promiscuous mode [ 193.555806][ T8803] veth0_macvtap: entered promiscuous mode [ 193.572700][ T8803] veth1_macvtap: entered promiscuous mode [ 193.630734][ T8803] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 193.661740][ T8803] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 193.698846][ T36] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 193.709281][ T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 193.728799][ T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 193.753338][ T12] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 193.932786][ T2985] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 193.968867][ T2985] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 194.033723][ T50] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 194.051341][ T50] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 194.250378][ T5823] Bluetooth: hci4: command tx timeout [ 194.332471][ T8883] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1212'. [ 194.733586][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.739996][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.783139][ T8907] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1222'. [ 195.238255][ T8930] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1233'. [ 195.682216][ T8956] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1246'. [ 195.775761][ T8958] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1247'. [ 196.475111][ T5832] Bluetooth: hci4: command tx timeout [ 196.804613][ T5832] Bluetooth: hci1: command 0x0406 tx timeout [ 196.810913][ T5832] Bluetooth: hci3: command 0x0406 tx timeout [ 197.167397][ T8986] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1256'. [ 197.183465][ T8990] overlayfs: missing 'lowerdir' [ 197.494527][ T9007] EXT4-fs (nullb0): VFS: Can't find ext4 filesystem [ 197.744606][ T9016] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1273'. [ 198.489516][ T5837] Bluetooth: hci4: command tx timeout [ 198.640334][ T9055] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10) [ 198.647128][ T9055] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 198.656664][ T9055] vhci_hcd vhci_hcd.0: Device attached [ 198.959011][ T5889] usb 41-1: new high-speed USB device number 2 using vhci_hcd [ 199.502551][ T9056] vhci_hcd: connection reset by peer [ 199.647811][ T36] vhci_hcd vhci_hcd.4: stop threads [ 199.690734][ T36] vhci_hcd vhci_hcd.4: release socket [ 199.722419][ T36] vhci_hcd vhci_hcd.4: disconnect device [ 201.605815][ T9090] 9pnet_virtio: no channels available for device ./file0 [ 202.487396][ T9137] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1317'. [ 203.204981][ T9181] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1328'. [ 204.539981][ T5889] vhci_hcd vhci_hcd.4: vhci_device speed not set [ 205.363373][ T9194] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 205.374295][ T9194] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 205.389355][ T9194] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 205.399694][ T9194] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 205.406489][ T9194] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 205.420601][ T9194] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 205.439230][ T9194] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 205.445626][ T9194] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 205.456810][ T9194] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 206.288352][ T9240] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1347'. [ 206.663235][ T5823] Bluetooth: hci3: command 0x0406 tx timeout [ 206.742746][ T5875] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 206.905748][ T5875] usb 2-1: no configurations [ 206.910389][ T5875] usb 2-1: can't read configurations, error -22 [ 207.063221][ T5875] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 207.235805][ T5875] usb 2-1: no configurations [ 207.240530][ T5875] usb 2-1: can't read configurations, error -22 [ 207.255922][ T5875] usb usb2-port1: attempt power cycle [ 207.464046][ T5823] Bluetooth: hci4: command 0x0c1a tx timeout [ 207.465725][ T5837] Bluetooth: hci2: command 0x0406 tx timeout [ 207.474469][ T5832] Bluetooth: hci1: command 0x0406 tx timeout [ 207.635066][ T5875] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 207.684279][ T5875] usb 2-1: no configurations [ 207.688918][ T5875] usb 2-1: can't read configurations, error -22 [ 207.824591][ T5875] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 207.875786][ T5875] usb 2-1: no configurations [ 207.880390][ T5875] usb 2-1: can't read configurations, error -22 [ 207.894956][ T5875] usb usb2-port1: unable to enumerate USB device [ 208.756346][ T5837] Bluetooth: hci3: command 0x0406 tx timeout [ 209.547571][ T5832] Bluetooth: hci2: command 0x0406 tx timeout [ 209.553771][ T5837] Bluetooth: hci4: command 0x0c1a tx timeout [ 210.835830][ T5837] Bluetooth: hci3: command 0x0406 tx timeout [ 211.630837][ T5837] Bluetooth: hci4: command 0x0c1a tx timeout [ 215.296946][ T9361] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 215.304304][ T9361] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 215.311008][ T9361] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 215.319009][ T9361] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 215.535478][ T9382] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1414'. [ 215.566660][ T24] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 215.748713][ T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 215.766959][ T24] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 215.796967][ T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 215.819501][ T24] usb 2-1: config 0 descriptor?? [ 215.858558][ T24] usbhid 2-1:0.0: couldn't find an input interrupt endpoint [ 216.032022][ T24] usb 2-1: USB disconnect, device number 11 [ 216.508865][ T9400] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1424'. [ 216.600307][ T5837] Bluetooth: hci3: command 0x0406 tx timeout [ 216.773763][ T9406] IPv6: NLM_F_CREATE should be specified when creating new route [ 217.319229][ T5837] Bluetooth: hci2: command 0x0406 tx timeout [ 217.325296][ T5837] Bluetooth: hci1: command 0x0406 tx timeout [ 217.356078][ T9424] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1435'. [ 217.399376][ T5832] Bluetooth: hci4: command 0x0c1a tx timeout [ 218.061221][ T9445] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1446'. [ 218.773406][ T9463] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1455'. [ 219.560977][ T9482] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1465'. [ 219.577791][ T9482] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1465'. [ 219.642307][ T9488] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1466'. [ 220.493043][ T9518] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1479'. [ 220.523766][ T9518] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1479'. [ 220.788533][ T9531] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1482'. [ 221.280440][ T9546] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1492'. [ 221.292016][ T9546] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1492'. [ 222.217132][ T9567] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1502'. [ 222.227728][ T9567] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1502'. [ 222.248464][ T5875] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 222.416916][ T5875] usb 3-1: too many configurations: 244, using maximum allowed: 8 [ 222.457247][ T5875] usb 3-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00 [ 222.487501][ T5875] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 222.511734][ T5875] usb 3-1: Product: syz [ 222.523408][ T5875] usb 3-1: Manufacturer: syz [ 222.539650][ T5875] usb 3-1: SerialNumber: syz [ 222.616034][ T9578] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1507'. [ 222.833122][ T5875] rtl8150 3-1:1.0: couldn't reset the device [ 222.848876][ T5875] rtl8150 3-1:1.0: probe with driver rtl8150 failed with error -5 [ 222.868958][ T5875] usb 3-1: USB disconnect, device number 3 [ 222.918589][ T9591] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1513'. [ 222.951907][ T9591] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1513'. [ 222.963676][ T9591] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1513'. [ 223.240744][ T9604] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1519'. [ 224.252706][ T5832] Bluetooth: hci4: ACL packet too small [ 225.830590][ T9709] __nla_validate_parse: 15 callbacks suppressed [ 225.830609][ T9709] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1568'. [ 226.213740][ T9731] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1580'. [ 226.751206][ T9752] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1590'. [ 227.079027][ T9764] usb usb7: usbfs: process 9764 (syz.2.1596) did not claim interface 0 before use [ 227.316056][ T9775] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1602'. [ 227.905104][ T9803] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1615'. [ 228.350247][ T9826] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1626'. [ 229.098448][ T9853] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1639'. [ 229.488272][ T5875] usb 3-1: new full-speed USB device number 4 using dummy_hcd [ 229.658995][ T5875] usb 3-1: config 8 has an invalid interface number: 80 but max is 0 [ 229.678664][ T5875] usb 3-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config [ 229.705358][ T5875] usb 3-1: config 8 has no interface number 0 [ 229.711510][ T5875] usb 3-1: config 8 interface 80 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 229.744138][ T5875] usb 3-1: config 8 interface 80 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0 [ 229.767378][ T5875] usb 3-1: config 8 interface 80 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 14 [ 229.795344][ T5875] usb 3-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=c1.6f [ 229.804414][ T5875] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 229.841005][ T5875] usb 3-1: NFC: intf ffff888031ada000 id ffffffff8ed2e5e0 [ 230.056967][ T43] usb 3-1: USB disconnect, device number 4 [ 230.298323][ T9879] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1651'. [ 231.116761][ T9902] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1663'. [ 231.843613][ T9922] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1672'. [ 233.320754][ T9941] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1682'. [ 235.421396][ T9972] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1693'. [ 237.791494][T10013] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1703'. [ 238.868435][T10039] binder: BINDER_SET_CONTEXT_MGR already set [ 238.875747][T10039] binder: 10038:10039 ioctl 4018620d 200000000140 returned -16 [ 239.056267][T10046] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1714'. [ 239.723495][T10066] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1724'. [ 240.282441][T10090] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1735'. [ 241.121232][T10113] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1745'. [ 241.492183][T10127] tipc: Enabling of bearer rejected, failed to enable media [ 241.618488][T10135] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1756'. [ 242.131463][T10156] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1767'. [ 248.731621][T10301] pim6reg: entered allmulticast mode [ 248.763708][T10301] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1833'. [ 248.814720][T10301] bridge_slave_1: left allmulticast mode [ 248.820401][T10301] bridge_slave_1: left promiscuous mode [ 248.874914][T10301] bridge0: port 2(bridge_slave_1) entered disabled state [ 248.915810][T10301] bridge_slave_0: left allmulticast mode [ 248.921497][T10301] bridge_slave_0: left promiscuous mode [ 248.935083][T10301] bridge0: port 1(bridge_slave_0) entered disabled state [ 248.978817][T10301] bond0: (slave bridge0): Releasing backup interface [ 253.336121][T10365] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1866'. [ 254.972789][T10394] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1878'. [ 255.142106][T10401] netlink: 'syz.2.1881': attribute type 4 has an invalid length. [ 255.481038][T10416] overlayfs: failed to clone upperpath [ 255.512762][T10418] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1890'. [ 256.261570][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.267928][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 257.113803][T10446] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1902'. [ 258.109947][T10471] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1914'. [ 258.748324][T10495] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1926'. [ 259.453525][ T5824] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 259.582791][T10517] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1937'. [ 259.614299][ T5824] usb 2-1: Using ep0 maxpacket: 32 [ 259.635738][ T5824] usb 2-1: config 0 has an invalid interface number: 132 but max is 0 [ 259.645443][ T5824] usb 2-1: config 0 has no interface number 0 [ 259.651559][ T5824] usb 2-1: config 0 interface 132 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 259.672649][ T5824] usb 2-1: New USB device found, idVendor=0413, idProduct=6023, bcdDevice=ec.e5 [ 259.691859][ T5824] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 259.700954][ T5824] usb 2-1: Product: syz [ 259.705781][ T5824] usb 2-1: Manufacturer: syz [ 259.710390][ T5824] usb 2-1: SerialNumber: syz [ 259.729734][ T5824] usb 2-1: config 0 descriptor?? [ 259.741184][ T5824] em28xx 2-1:0.132: New device syz syz @ 480 Mbps (0413:6023, interface 132, class 132) [ 259.756913][ T5824] em28xx 2-1:0.132: Video interface 132 found: [ 260.142686][ T5824] em28xx 2-1:0.132: unknown em28xx chip ID (0) [ 260.231161][T10542] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1948'. [ 260.682656][T10565] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1960'. [ 260.778267][ T5824] em28xx 2-1:0.132: failed to trigger write to i2c address 0xa0 (error=-5) [ 260.803385][ T5824] em28xx 2-1:0.132: failed to read eeprom (err=-5) [ 260.821044][ T5824] em28xx 2-1:0.132: em28xx_i2c_register: em28xx_i2_eeprom failed! retval [-5] [ 260.905152][ T5824] em28xx 2-1:0.132: Identified as Leadtek Winfast USB II (card=7) [ 260.924308][ T5824] em28xx 2-1:0.132: analog set to bulk mode. [ 260.932367][ T5888] em28xx 2-1:0.132: Registering V4L2 extension [ 260.949924][ T5824] usb 2-1: USB disconnect, device number 12 [ 260.975813][ T5824] em28xx 2-1:0.132: Disconnecting em28xx [ 261.292679][ T5888] em28xx 2-1:0.132: Config register raw data: 0xffffffed [ 261.338786][ T5888] em28xx 2-1:0.132: AC97 chip type couldn't be determined [ 261.454997][ T5888] em28xx 2-1:0.132: No AC97 audio processor [ 261.626528][ T5888] usb 2-1: Decoder not found [ 261.678091][ T5888] em28xx 2-1:0.132: failed to create media graph [ 261.743917][ T5888] em28xx 2-1:0.132: V4L2 device video103 deregistered [ 261.803196][ T5888] em28xx 2-1:0.132: Remote control support is not available for this card. [ 261.831957][ T5824] em28xx 2-1:0.132: Closing input extension [ 261.866209][ T5824] em28xx 2-1:0.132: Freeing device [ 264.803166][T10714] netlink: 'syz.4.2025': attribute type 4 has an invalid length. [ 267.442559][T10754] overlayfs: failed to resolve './file1/file0': -2 [ 268.141005][T10778] netlink: 'syz.2.2053': attribute type 4 has an invalid length. [ 268.159122][T10778] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.2053'. [ 269.344604][ T30] audit: type=1326 audit(1763105785.356:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10771 comm="syz.0.2050" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2f6758f6c9 code=0x0 [ 271.412238][T10852] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2084'. [ 273.865384][T10912] binder: 10907:10912 ioctl c0306201 0 returned -14 [ 275.293854][T10937] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2122'. [ 275.638848][T10938] syzkaller0: entered promiscuous mode [ 275.644835][T10938] syzkaller0: entered allmulticast mode [ 278.742615][T10960] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2132'. [ 278.753150][ T5837] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 278.762595][ T5837] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 278.775609][ T5837] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 278.791228][ T5837] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 278.799118][ T5837] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 280.330444][T10970] binder: 10969:10970 ioctl c0306201 2000000001c0 returned -14 [ 280.909119][ T5837] Bluetooth: hci0: command tx timeout [ 283.135784][ T9164] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 283.152519][ T5837] Bluetooth: hci0: command tx timeout [ 283.257629][T10996] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2145'. [ 283.282100][ T9164] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 283.314352][T10959] chnl_net:caif_netlink_parms(): no params data found [ 283.484508][ T9164] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 283.633212][ T9164] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 283.863073][T10959] bridge0: port 1(bridge_slave_0) entered blocking state [ 283.874308][T10959] bridge0: port 1(bridge_slave_0) entered disabled state [ 283.882244][T10959] bridge_slave_0: entered allmulticast mode [ 283.890368][T10959] bridge_slave_0: entered promiscuous mode [ 283.899907][T10959] bridge0: port 2(bridge_slave_1) entered blocking state [ 283.907139][T10959] bridge0: port 2(bridge_slave_1) entered disabled state [ 283.915115][T10959] bridge_slave_1: entered allmulticast mode [ 283.923250][T10959] bridge_slave_1: entered promiscuous mode [ 283.975066][T10959] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 283.987673][T10959] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 284.079662][T10959] team0: Port device team_slave_0 added [ 284.139356][T11022] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2155'. [ 284.156708][T10959] team0: Port device team_slave_1 added [ 284.273574][T10959] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 284.283755][T10959] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 284.310359][T10959] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 284.371777][T10959] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 284.398950][T10959] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 284.548412][T10959] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 284.642391][T11036] random: crng reseeded on system resumption [ 284.797326][T10959] hsr_slave_0: entered promiscuous mode [ 284.816512][T10959] hsr_slave_1: entered promiscuous mode [ 284.836298][T10959] debugfs: 'hsr0' already exists in 'hsr' [ 284.865858][T10959] Cannot create hsr debugfs directory [ 284.879494][ T9164] bridge_slave_1: left allmulticast mode [ 284.885521][ T9164] bridge_slave_1: left promiscuous mode [ 284.920099][ T9164] bridge0: port 2(bridge_slave_1) entered disabled state [ 284.952198][ T9164] bridge_slave_0: left allmulticast mode [ 284.966385][ T9164] bridge_slave_0: left promiscuous mode [ 284.977444][ T9164] bridge0: port 1(bridge_slave_0) entered disabled state [ 284.987431][T11051] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2164'. [ 285.006836][T11053] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2165'. [ 285.218963][ T5832] Bluetooth: hci0: command tx timeout [ 285.738212][ T9164] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 285.753990][ T9164] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 285.764493][ T9164] bond0 (unregistering): Released all slaves [ 285.905365][T11069] random: crng reseeded on system resumption [ 286.432021][T11092] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2177'. [ 286.477735][ T9164] hsr_slave_0: left promiscuous mode [ 286.494998][ T9164] hsr_slave_1: left promiscuous mode [ 286.507888][ T9164] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 286.516231][ T9164] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 286.539048][ T9164] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 286.547373][ T9164] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 286.586930][ T9164] veth1_macvtap: left promiscuous mode [ 286.593209][ T9164] veth0_macvtap: left promiscuous mode [ 286.599032][ T9164] veth1_vlan: left promiscuous mode [ 286.604798][ T9164] veth0_vlan: left promiscuous mode [ 287.016437][ T9164] team0 (unregistering): Port device team_slave_1 removed [ 287.049342][ T9164] team0 (unregistering): Port device team_slave_0 removed [ 287.309961][ T5832] Bluetooth: hci0: command tx timeout [ 287.848793][ T9164] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 287.913208][T10959] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 287.930944][T10959] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 287.958454][ T9164] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 287.975718][T10959] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 287.994613][T10959] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 288.041939][ T9164] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 288.124943][ T9164] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 288.154643][T10959] 8021q: adding VLAN 0 to HW filter on device bond0 [ 288.194770][T10959] 8021q: adding VLAN 0 to HW filter on device team0 [ 288.225251][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 288.232524][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 288.244906][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 288.252116][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 288.425634][ T9164] bridge_slave_1: left allmulticast mode [ 288.432192][ T9164] bridge_slave_1: left promiscuous mode [ 288.437981][ T9164] bridge0: port 2(bridge_slave_1) entered disabled state [ 288.454049][ T9164] bridge_slave_0: left allmulticast mode [ 288.459725][ T9164] bridge_slave_0: left promiscuous mode [ 288.466042][ T9164] bridge0: port 1(bridge_slave_0) entered disabled state [ 288.863397][ T9164] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 288.875599][ T9164] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 288.887067][ T9164] bond0 (unregistering): Released all slaves [ 289.179276][T10959] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 289.199985][ T9164] hsr_slave_0: left promiscuous mode [ 289.207823][ T9164] hsr_slave_1: left promiscuous mode [ 289.215019][ T9164] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 289.223394][ T9164] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 289.234619][ T9164] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 289.242428][ T9164] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 289.265508][ T9164] veth1_macvtap: left promiscuous mode [ 289.271158][ T9164] veth0_macvtap: left promiscuous mode [ 289.282038][ T9164] veth1_vlan: left promiscuous mode [ 289.287426][ T9164] veth0_vlan: left promiscuous mode [ 289.767573][ T9164] team0 (unregistering): Port device team_slave_1 removed [ 289.800045][ T9164] team0 (unregistering): Port device team_slave_0 removed [ 290.179539][T10959] veth0_vlan: entered promiscuous mode [ 290.200274][T10959] veth1_vlan: entered promiscuous mode [ 290.245534][T10959] veth0_macvtap: entered promiscuous mode [ 290.266437][T10959] veth1_macvtap: entered promiscuous mode [ 290.297831][T10959] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 290.321053][T10959] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 290.340473][ T3024] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 290.354815][ T3024] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 290.371022][ T3024] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 290.380727][ T3024] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 290.499165][ T6566] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 290.509383][ T6566] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 290.551066][ T9164] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 290.559440][ T9164] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 293.178731][T11255] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2202'. [ 293.202145][T11256] IPv6: NLM_F_CREATE should be specified when creating new route [ 293.429623][T11265] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2206'. [ 293.936022][T11288] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2214'. [ 295.306102][T11325] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2226'. [ 295.998483][T11345] binder: 11344:11345 ioctl c0306201 0 returned -14 [ 296.159330][T11349] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2234'. [ 296.401223][T11356] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2237'. [ 297.829077][T11386] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2248'. [ 298.770242][T11408] kvm: pic: non byte read [ 298.775103][T11408] kvm: pic: non byte read [ 298.779891][T11408] kvm: pic: single mode not supported [ 298.780010][T11408] kvm: pic: level sensitive irq not supported [ 298.786225][T11408] kvm: pic: non byte read [ 298.825187][T11408] kvm: pic: single mode not supported [ 298.825253][T11408] kvm: pic: non byte read [ 298.849248][T11408] kvm: pic: non byte read [ 298.857184][T11408] kvm: pic: non byte read [ 298.869526][T11408] kvm: pic: single mode not supported [ 298.869544][T11408] kvm: pic: level sensitive irq not supported [ 298.877064][T11408] kvm: pic: non byte read [ 298.932472][T11408] kvm: pic: single mode not supported [ 298.932540][T11408] kvm: pic: non byte read [ 298.943779][T11408] kvm: pic: non byte read [ 299.092282][T11421] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2262'. [ 299.485207][ T5888] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 299.542816][ T30] audit: type=1326 audit(1763105815.541:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11439 comm="syz.4.2270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c50f8f6c9 code=0x7ffc0000 [ 299.595075][ T30] audit: type=1326 audit(1763105815.541:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11439 comm="syz.4.2270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c50f8f6c9 code=0x7ffc0000 [ 299.645088][ T30] audit: type=1326 audit(1763105815.541:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11439 comm="syz.4.2270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7f1c50f8f6c9 code=0x7ffc0000 [ 299.656588][T11444] Invalid logical block size (18) [ 299.675120][ T5888] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 299.695187][ T5888] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 299.725123][ T5888] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 299.734194][ T5888] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 299.746430][ T30] audit: type=1326 audit(1763105815.541:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11439 comm="syz.4.2270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c50f8f6c9 code=0x7ffc0000 [ 299.789460][T11431] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 299.809733][ T5888] usb 2-1: Quirk or no altset; falling back to MIDI 1.0 [ 299.818453][ T30] audit: type=1326 audit(1763105815.541:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11439 comm="syz.4.2270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c50f8f6c9 code=0x7ffc0000 [ 299.822091][T11448] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2273'. [ 299.886272][ T30] audit: type=1326 audit(1763105815.551:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11439 comm="syz.4.2270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f1c50f8f6c9 code=0x7ffc0000 [ 299.975459][ T30] audit: type=1326 audit(1763105815.551:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11439 comm="syz.4.2270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c50f8f6c9 code=0x7ffc0000 [ 300.041017][ T30] audit: type=1326 audit(1763105815.551:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11439 comm="syz.4.2270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c50f8f6c9 code=0x7ffc0000 [ 300.411534][T11470] sctp: [Deprecated]: syz.4.2281 (pid 11470) Use of struct sctp_assoc_value in delayed_ack socket option. [ 300.411534][T11470] Use struct sctp_sack_info instead [ 300.422666][T11471] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2284'. [ 300.589082][T11477] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2287'. [ 302.191145][ T5888] usb 2-1: USB disconnect, device number 13 [ 302.232930][T11498] ALSA: mixer_oss: invalid OSS volume '' [ 302.517759][T11519] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2302'. [ 302.730781][T11528] netlink: 'syz.4.2306': attribute type 4 has an invalid length. [ 303.942745][T11550] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2314'. [ 304.517086][ T5888] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 304.677082][ T5888] usb 5-1: Using ep0 maxpacket: 16 [ 304.687373][ T5888] usb 5-1: config 0 has an invalid interface number: 105 but max is 0 [ 304.702141][ T5888] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 304.732899][ T5888] usb 5-1: config 0 has no interface number 0 [ 304.745318][ T5888] usb 5-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28 [ 304.755427][ T5888] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 304.775068][ T5888] usb 5-1: Product: syz [ 304.785151][ T5888] usb 5-1: Manufacturer: syz [ 304.790557][ T5888] usb 5-1: SerialNumber: syz [ 304.808010][ T5888] usb 5-1: config 0 descriptor?? [ 304.829086][ T5888] uvcvideo 5-1:0.105: Found UVC 0.00 device syz (046d:08f3) [ 304.841684][ T5888] uvcvideo 5-1:0.105: No valid video chain found. [ 305.043437][ T5888] usb 5-1: USB disconnect, device number 2 [ 306.395661][T11625] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2346'. [ 307.046069][T11652] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2354'. [ 307.181555][T11656] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2357'. [ 307.566384][T11670] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3748224792 (119943193344 ns) > initial count (73764093568 ns). Using initial count to start timer. [ 309.587847][T11723] 9p: Bad value for 'rfdno' [ 311.036897][ T5888] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 311.073891][ T5888] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz1] on syz0 [ 311.280726][T11762] 9p: Bad value for 'rfdno' [ 312.891064][T11814] netlink: 80 bytes leftover after parsing attributes in process `syz.1.2408'. [ 314.204381][ T5837] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 314.217236][ T5837] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 314.225959][ T5837] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 314.233959][ T5837] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 314.242501][ T5837] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 314.580305][ T5888] usb 2-1: new high-speed USB device number 14 using dummy_hcd [ 314.678522][T11857] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2427'. [ 314.750434][ T5888] usb 2-1: Using ep0 maxpacket: 8 [ 314.771888][ T5888] usb 2-1: config 2 has an invalid interface number: 31 but max is 0 [ 314.781324][ T5888] usb 2-1: config 2 has no interface number 0 [ 314.787526][ T5888] usb 2-1: config 2 interface 31 has no altsetting 0 [ 314.797565][ T5888] usb 2-1: New USB device found, idVendor=1a86, idProduct=e092, bcdDevice=53.3f [ 314.810369][ T5888] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 314.838882][ T5888] usb 2-1: Product: syz [ 314.849210][ T5888] usb 2-1: Manufacturer: syz [ 314.878967][ T5888] usb 2-1: SerialNumber: syz [ 314.976802][T11845] chnl_net:caif_netlink_parms(): no params data found [ 315.458572][T11845] bridge0: port 1(bridge_slave_0) entered blocking state [ 315.478775][T11845] bridge0: port 1(bridge_slave_0) entered disabled state [ 315.504882][T11845] bridge_slave_0: entered allmulticast mode [ 315.528315][ T5888] ch9200 2-1:2.31: probe with driver ch9200 failed with error -22 [ 315.545791][T11845] bridge_slave_0: entered promiscuous mode [ 315.556825][ T5888] usb 2-1: USB disconnect, device number 14 [ 315.577536][T11845] bridge0: port 2(bridge_slave_1) entered blocking state [ 315.599116][T11845] bridge0: port 2(bridge_slave_1) entered disabled state [ 315.622066][T11845] bridge_slave_1: entered allmulticast mode [ 315.647203][T11845] bridge_slave_1: entered promiscuous mode [ 315.796253][T11845] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 315.869769][T11845] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 315.968828][T11845] team0: Port device team_slave_0 added [ 315.985157][T11845] team0: Port device team_slave_1 added [ 316.165775][ T9172] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 316.274007][ T5837] Bluetooth: hci2: command tx timeout [ 316.285236][T11845] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 316.320715][T11845] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 316.608550][T11845] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 316.880260][ T9172] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 316.996081][T11845] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 317.026158][T11845] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 317.122735][T11845] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 317.198114][ T9172] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 317.210746][T11889] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2438'. [ 317.422563][ T9172] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 317.718123][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.724588][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.392184][ T5837] Bluetooth: hci2: command tx timeout [ 318.452566][T11845] hsr_slave_0: entered promiscuous mode [ 318.479889][T11845] hsr_slave_1: entered promiscuous mode [ 318.502456][T11845] debugfs: 'hsr0' already exists in 'hsr' [ 318.508426][T11845] Cannot create hsr debugfs directory [ 318.930400][T11912] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2448'. [ 319.574116][ T9172] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 319.598754][ T9172] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 319.648649][ T9172] bond0 (unregistering): (slave dummy0): Releasing backup interface [ 319.695237][ T9172] bond0 (unregistering): Released all slaves [ 320.433981][ T5837] Bluetooth: hci2: command tx timeout [ 320.450259][ T9172] hsr_slave_0: left promiscuous mode [ 320.469462][ T9172] hsr_slave_1: left promiscuous mode [ 320.502333][ T9172] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 320.526678][ T9172] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 320.557460][ T9172] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 320.580970][ T9172] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 320.643040][ T9172] veth1_macvtap: left promiscuous mode [ 320.669266][ T9172] veth0_macvtap: left promiscuous mode [ 320.687749][ T9172] veth1_vlan: left promiscuous mode [ 320.722274][ T9172] veth0_vlan: left promiscuous mode [ 321.186006][ T9172] pim6reg (unregistering): left allmulticast mode [ 321.506396][T11940] 9pnet_fd: p9_fd_create_unix (11940): problem connecting socket: ./file0: -111 [ 321.692639][T11947] netlink: 104 bytes leftover after parsing attributes in process `syz.1.2458'. [ 321.893501][T11950] netlink: 104 bytes leftover after parsing attributes in process `syz.1.2458'. [ 322.048052][T11953] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2459'. [ 322.323008][ T9172] team0 (unregistering): Port device team_slave_1 removed [ 322.399337][ T9172] team0 (unregistering): Port device team_slave_0 removed [ 322.515313][ T5837] Bluetooth: hci2: command tx timeout [ 323.425458][T11973] tipc: Started in network mode [ 323.444104][T11973] tipc: Node identity ac14142f, cluster identity 4711 [ 323.462722][T11973] tipc: New replicast peer: 0.0.0.0 [ 323.480692][T11973] tipc: Enabled bearer , priority 10 [ 323.776882][T11845] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 323.837995][T11845] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 323.884606][T11845] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 323.912280][T11845] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 324.262525][T11845] 8021q: adding VLAN 0 to HW filter on device bond0 [ 324.310647][T11845] 8021q: adding VLAN 0 to HW filter on device team0 [ 324.337560][ T3024] bridge0: port 1(bridge_slave_0) entered blocking state [ 324.344808][ T3024] bridge0: port 1(bridge_slave_0) entered forwarding state [ 324.397691][ T9172] bridge0: port 2(bridge_slave_1) entered blocking state [ 324.404920][ T9172] bridge0: port 2(bridge_slave_1) entered forwarding state [ 324.604177][ T794] tipc: Node number set to 2886997039 [ 324.753463][ T5889] usb 2-1: new high-speed USB device number 15 using dummy_hcd [ 324.924150][ T5889] usb 2-1: Using ep0 maxpacket: 32 [ 324.954528][ T5889] usb 2-1: config index 0 descriptor too short (expected 29220, got 36) [ 325.000756][ T5889] usb 2-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 325.165598][ T5889] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 325.290003][ T5889] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 325.305843][T11845] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 325.385305][ T5889] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 325.435337][ T5889] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 325.504184][ T5889] usb 2-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 325.547361][ T5889] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 325.589349][T11845] veth0_vlan: entered promiscuous mode [ 325.609505][ T5889] usb 2-1: config 0 descriptor?? [ 325.695508][T11845] veth1_vlan: entered promiscuous mode [ 325.838299][T11845] veth0_macvtap: entered promiscuous mode [ 325.885598][ T5889] usblp 2-1:0.0: usblp0: USB Bidirectional printer dev 15 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 325.939812][T11845] veth1_macvtap: entered promiscuous mode [ 325.972361][ T5889] usb 2-1: USB disconnect, device number 15 [ 326.006141][ T5889] usblp0: removed [ 326.020700][T11845] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 326.136777][T11845] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 326.196328][ T9172] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 326.222815][ T9172] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 326.270180][ T9172] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 326.383767][ T5889] usb 2-1: new high-speed USB device number 16 using dummy_hcd [ 326.432559][ T9172] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 326.575124][ T5889] usb 2-1: Using ep0 maxpacket: 32 [ 326.586492][ T5889] usb 2-1: config index 0 descriptor too short (expected 29220, got 36) [ 326.614184][ T5889] usb 2-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 326.622823][ T5889] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 326.634024][ T9172] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 326.656586][ T9172] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 326.664450][ T5889] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 326.680035][ T5889] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 326.713822][ T5889] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 326.755149][ T5889] usb 2-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 326.757394][ T9172] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 326.766842][ T5889] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 326.793373][ T9172] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 326.814354][ T5889] usb 2-1: config 0 descriptor?? [ 327.045390][ T5889] usblp 2-1:0.0: usblp0: USB Bidirectional printer dev 16 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 327.392643][ T794] usb 2-1: USB disconnect, device number 16 [ 327.592586][T12019] usblp0: removed [ 327.940080][T12094] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2495'. [ 329.458371][T12151] tmpfs: Unknown parameter 'n' [ 329.479597][T12154] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2517'. [ 330.053264][T12180] tipc: Enabling of bearer rejected, failed to enable media [ 330.212456][T12184] usb usb7: usbfs: process 12184 (syz.4.2531) did not claim interface 0 before use [ 331.003710][T12205] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2542'. [ 332.128906][T12225] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2552'. [ 332.244970][T12228] netlink: 68 bytes leftover after parsing attributes in process `syz.4.2554'. [ 332.821929][T12244] fuse: Bad value for 'fd' [ 332.945414][T12250] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2564'. [ 335.662787][T12274] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2574'. [ 336.023160][ T5832] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 336.036155][ T5832] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 336.044189][ T5832] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 336.052723][ T5832] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 336.060437][ T5832] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 336.694775][T12283] chnl_net:caif_netlink_parms(): no params data found [ 337.027832][ T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 337.266802][ T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 337.839478][T12338] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2592'. [ 337.839701][ T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 337.919883][T12283] bridge0: port 1(bridge_slave_0) entered blocking state [ 337.938169][T12283] bridge0: port 1(bridge_slave_0) entered disabled state [ 337.975234][T12283] bridge_slave_0: entered allmulticast mode [ 337.989120][T12283] bridge_slave_0: entered promiscuous mode [ 338.064376][ T12] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 338.106858][T12283] bridge0: port 2(bridge_slave_1) entered blocking state [ 338.114129][T12283] bridge0: port 2(bridge_slave_1) entered disabled state [ 338.121827][ T5837] Bluetooth: hci1: command tx timeout [ 338.126859][T12283] bridge_slave_1: entered allmulticast mode [ 338.135041][T12283] bridge_slave_1: entered promiscuous mode [ 338.259600][T12283] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 338.299928][T12283] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 338.356657][T12352] VFS: Mount too revealing [ 338.533967][T12283] team0: Port device team_slave_0 added [ 338.660720][T12283] team0: Port device team_slave_1 added [ 338.843356][T12283] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 338.858920][T12283] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 338.891018][T12283] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 338.924324][T12283] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 338.942346][T12283] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 339.023054][T12283] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 339.171298][ T12] bridge_slave_1: left allmulticast mode [ 339.191206][ T12] bridge_slave_1: left promiscuous mode [ 339.212086][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 339.257517][ T12] bridge_slave_0: left allmulticast mode [ 339.263198][ T12] bridge_slave_0: left promiscuous mode [ 339.314632][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 339.353488][T12396] netlink: 'syz.2.2617': attribute type 4 has an invalid length. [ 339.361473][T12396] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.2617'. [ 339.965743][T12419] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2623'. [ 340.183064][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 340.202214][ T5837] Bluetooth: hci1: command tx timeout [ 340.209724][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 340.230652][ T12] bond0 (unregistering): Released all slaves [ 340.284081][T12283] hsr_slave_0: entered promiscuous mode [ 340.345278][T12283] hsr_slave_1: entered promiscuous mode [ 340.385941][ T12] tipc: Disabling bearer [ 340.402934][ T12] tipc: Left network mode [ 340.616539][T12437] tipc: Can't bind to reserved service type 1 [ 341.270109][T12464] VFS: Mount too revealing [ 341.487258][ T12] hsr_slave_0: left promiscuous mode [ 341.493624][ T12] hsr_slave_1: left promiscuous mode [ 341.519453][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 341.538955][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 341.588395][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 341.599203][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 341.657508][T12480] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2645'. [ 341.714090][ T12] veth1_macvtap: left promiscuous mode [ 341.726485][ T12] veth0_macvtap: left promiscuous mode [ 341.739401][ T12] veth1_vlan: left promiscuous mode [ 341.745575][ T12] veth0_vlan: left promiscuous mode [ 342.281384][ T5837] Bluetooth: hci1: command tx timeout [ 342.291058][T12494] VFS: Mount too revealing [ 343.598266][ T12] team0 (unregistering): Port device team_slave_1 removed [ 343.687179][ T12] team0 (unregistering): Port device team_slave_0 removed [ 344.145945][T12515] VFS: Mount too revealing [ 344.357766][ T5837] Bluetooth: hci1: command tx timeout [ 344.924514][T12527] tipc: Started in network mode [ 344.934825][T12527] tipc: Node identity 4, cluster identity 4711 [ 344.952606][T12527] tipc: Node number set to 4 [ 345.491938][ T12] IPVS: stop unused estimator thread 0... [ 345.761158][T12283] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 345.810106][T12283] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 345.861747][T12283] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 345.933126][T12283] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 346.274088][T12283] 8021q: adding VLAN 0 to HW filter on device bond0 [ 346.317109][T12283] 8021q: adding VLAN 0 to HW filter on device team0 [ 346.432062][ T2985] bridge0: port 1(bridge_slave_0) entered blocking state [ 346.439295][ T2985] bridge0: port 1(bridge_slave_0) entered forwarding state [ 346.486400][ T2985] bridge0: port 2(bridge_slave_1) entered blocking state [ 346.493639][ T2985] bridge0: port 2(bridge_slave_1) entered forwarding state [ 347.072353][T12283] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 347.171807][T12283] veth0_vlan: entered promiscuous mode [ 347.203398][T12283] veth1_vlan: entered promiscuous mode [ 347.255402][T12283] veth0_macvtap: entered promiscuous mode [ 347.277633][T12283] veth1_macvtap: entered promiscuous mode [ 347.344703][T12283] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 347.370301][T12283] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 347.413047][ T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 347.436175][ T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 347.549174][ T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 347.602488][ T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 347.829660][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 347.854615][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 347.945147][ T2985] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 347.970461][ T2985] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 349.991790][T12709] binder: Unknown parameter 'context' [ 350.038503][T12712] syzkaller0: entered promiscuous mode [ 350.066617][T12712] syzkaller0: entered allmulticast mode [ 351.949073][ T30] audit: type=1326 audit(1763105867.917:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12766 comm="syz.2.2742" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe937b8f6c9 code=0x7ffc0000 [ 352.010257][ T30] audit: type=1326 audit(1763105867.917:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12766 comm="syz.2.2742" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7fe937b8f6c9 code=0x7ffc0000 [ 352.079075][ T30] audit: type=1326 audit(1763105867.917:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12766 comm="syz.2.2742" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe937b8f6c9 code=0x7ffc0000 [ 352.132043][ T30] audit: type=1326 audit(1763105867.917:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12766 comm="syz.2.2742" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe937b8f6c9 code=0x7ffc0000 [ 352.179081][ T30] audit: type=1326 audit(1763105867.917:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12766 comm="syz.2.2742" exe="/root/syz-executor" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7fe937b8f6c9 code=0x7ffc0000 [ 352.239807][ T30] audit: type=1326 audit(1763105867.917:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12766 comm="syz.2.2742" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe937b8f6c9 code=0x7ffc0000 [ 352.279817][ T30] audit: type=1326 audit(1763105867.917:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12766 comm="syz.2.2742" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe937b8f6c9 code=0x7ffc0000 [ 353.921203][T12832] tipc: Started in network mode [ 353.926116][T12832] tipc: Node identity 4, cluster identity 4711 [ 353.969588][T12832] tipc: Node number set to 4 [ 354.741264][T12852] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2781'. [ 354.975457][ T30] audit: type=1800 audit(1763105870.957:57): pid=12857 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2783" name="cpuacct.usage_percpu" dev="overlay" ino=510 res=0 errno=0 [ 354.975917][T12857] evm: overlay not supported [ 356.335796][T12884] fuse: Bad value for 'fd' [ 356.461187][T12888] binder: Bad value for 'stats' [ 356.581561][T12892] kvm: kvm [12891]: vcpu0, guest rIP: 0x9c Unhandled WRMSR(0xc1) = 0x800 [ 356.590271][T12892] kvm: kvm [12891]: vcpu0, guest rIP: 0x89c Unhandled WRMSR(0xc2) = 0x800 [ 356.627219][T12892] kvm: kvm [12891]: vcpu0, guest rIP: 0x9c Unhandled WRMSR(0x11e) = 0xbe702911 [ 358.994895][T12961] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2829'. [ 362.095395][T13073] overlayfs: failed to resolve './file0': -2 [ 362.223833][T13081] Bluetooth: MGMT ver 1.23 [ 364.062072][T13162] netlink: 68 bytes leftover after parsing attributes in process `syz.1.2920'. [ 364.255170][T13169] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2923'. [ 366.845284][T13245] binder: Bad value for 'stats' [ 367.309581][T13260] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2960'. [ 367.968714][T13293] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2969'. [ 368.247385][T13305] usb usb8: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 368.584613][T13321] fuse: Bad value for 'fd' [ 368.895360][T13338] binder: Unknown parameter 's' [ 369.183666][T13351] overlayfs: failed to clone upperpath [ 369.631249][T13371] binder: 13370:13371 ioctl 400c620e 200000000100 returned -22 [ 370.251260][T13403] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3016'. [ 370.900584][ T30] audit: type=1326 audit(1763105886.875:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13393 comm="syz.4.3012" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1c50f8f6c9 code=0x0 [ 371.190243][T13433] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3027'. [ 371.882847][T13452] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3036'. [ 373.370978][T13489] netlink: 6 bytes leftover after parsing attributes in process `syz.1.3052'. [ 374.808744][T13521] binder: 13520:13521 ioctl c0306201 0 returned -14 [ 377.253385][ T5826] usb 2-1: new high-speed USB device number 17 using dummy_hcd [ 377.459399][ T5826] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 377.509698][ T5826] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 377.523614][ T5826] usb 2-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00 [ 377.533138][ T5826] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 377.558485][ T5826] usb 2-1: config 0 descriptor?? [ 377.895950][T13614] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3106'. [ 377.991573][ T5826] cp2112 0003:10C4:EA90.0004: unknown main item tag 0x0 [ 378.028317][ T5826] cp2112 0003:10C4:EA90.0004: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.1-1/input0 [ 378.193617][ T5826] cp2112 0003:10C4:EA90.0004: Part Number: 0x82 Device Version: 0xFE [ 378.404284][ T5826] cp2112 0003:10C4:EA90.0004: error requesting SMBus config [ 378.419972][ T5826] cp2112 0003:10C4:EA90.0004: probe with driver cp2112 failed with error -32 [ 379.179738][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.186524][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.693015][ T794] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 379.885094][ T794] usb 3-1: Using ep0 maxpacket: 32 [ 379.930123][ T794] usb 3-1: config 0 has an invalid descriptor of length 72, skipping remainder of the config [ 379.992311][ T794] usb 3-1: config 0 has no interfaces? [ 380.044925][ T794] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 380.096993][ T794] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 380.200536][ T794] usb 3-1: Product: syz [ 380.210973][ T794] usb 3-1: Manufacturer: syz [ 380.221355][ T794] usb 3-1: SerialNumber: syz [ 380.229200][ T5824] usb 2-1: USB disconnect, device number 17 [ 380.256035][ T794] usb 3-1: config 0 descriptor?? [ 380.322667][T13688] netlink: 'syz.1.3138': attribute type 10 has an invalid length. [ 380.358562][T13688] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 380.514200][ T794] usb 3-1: USB disconnect, device number 5 [ 380.961396][T13715] random: crng reseeded on system resumption [ 381.873182][T13728] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 381.954596][T13731] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3159'. [ 382.059376][T13728] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 382.147666][T13728] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 382.255371][T13728] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 382.286344][T13745] netlink: 'syz.4.3165': attribute type 4 has an invalid length. [ 382.374001][ T9164] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 382.424478][ T9164] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 382.465476][ T9164] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 382.506266][ T9164] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 383.438277][T13762] kvm: pic: non byte read [ 383.505839][T13762] kvm: pic: non byte read [ 383.526183][T13762] kvm: pic: non byte read [ 383.533726][T13762] kvm: pic: non byte read [ 383.559659][T13762] kvm: pic: non byte read [ 383.572181][T13762] kvm: pic: non byte read [ 383.582237][T13762] kvm: pic: non byte read [ 383.591942][T13762] kvm: pic: non byte read [ 383.600832][T13762] kvm: pic: non byte read [ 383.618870][T13762] kvm: pic: non byte read [ 384.092372][T13785] netlink: 'syz.2.3180': attribute type 15 has an invalid length. [ 384.110553][T13785] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3180'. [ 387.802345][T13851] netlink: 'syz.1.3214': attribute type 4 has an invalid length. [ 388.180106][T13863] netlink: 104 bytes leftover after parsing attributes in process `syz.1.3218'. [ 389.036313][T13885] netlink: 80 bytes leftover after parsing attributes in process `syz.1.3228'. [ 389.192934][ T5907] IPVS: starting estimator thread 0... [ 389.354090][T13897] IPVS: using max 28 ests per chain, 67200 per kthread [ 390.619660][T13932] netlink: 'syz.2.3247': attribute type 4 has an invalid length. [ 393.884945][ T50] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 394.231293][T14068] netlink: 'syz.1.3309': attribute type 4 has an invalid length. [ 395.457426][ T50] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 395.476935][T14044] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 395.498281][T14044] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 395.504798][T14044] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 395.557800][T14044] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 395.601814][T14044] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 395.613910][T14044] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 395.670210][T14044] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 395.738729][ T5837] Bluetooth: hci4: command 0x0c1a tx timeout [ 395.739189][T14044] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 395.766241][T14044] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 395.783505][T14044] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 396.310722][T14105] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3327'. [ 397.381320][T14158] netlink: 'syz.1.3351': attribute type 4 has an invalid length. [ 397.694439][ T5837] Bluetooth: hci0: command 0x0c1a tx timeout [ 397.700606][ T5837] Bluetooth: hci2: command 0x0c1a tx timeout [ 397.906226][ T5832] Bluetooth: hci1: command 0x0c1a tx timeout [ 398.770332][ T5837] Bluetooth: hci3: sending frame failed (-49) [ 398.777802][ T5832] Bluetooth: hci3: Opcode 0x1003 failed: -49 [ 398.961298][T14208] binder: 14205:14208 ioctl c0306201 0 returned -14 [ 399.770614][ T5832] Bluetooth: hci2: command 0x0c1a tx timeout [ 399.776665][ T5832] Bluetooth: hci0: command 0x0c1a tx timeout [ 399.792369][ T6566] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 399.934789][ T5832] Bluetooth: hci1: command 0x0c1a tx timeout [ 400.980928][ T3024] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 401.680076][T14290] netlink: 'syz.4.3409': attribute type 4 has an invalid length. [ 401.872033][ T5832] Bluetooth: hci0: command 0x0c1a tx timeout [ 401.872045][ T5837] Bluetooth: hci2: command 0x0c1a tx timeout [ 401.932258][ T30] audit: type=1326 audit(1763105917.850:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14300 comm="syz.4.3415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c50f8f6c9 code=0x7ffc0000 [ 401.933272][T14302] overlayfs: failed to clone upperpath [ 401.996204][ T30] audit: type=1326 audit(1763105917.850:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14300 comm="syz.4.3415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c50f8f6c9 code=0x7ffc0000 [ 402.037065][ T5837] Bluetooth: hci1: command 0x0c1a tx timeout [ 402.043413][ T30] audit: type=1326 audit(1763105917.899:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14300 comm="syz.4.3415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c50f8f6c9 code=0x7ffc0000 [ 402.065766][ T30] audit: type=1326 audit(1763105917.899:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14300 comm="syz.4.3415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f1c50f8f6c9 code=0x7ffc0000 [ 402.090055][ T30] audit: type=1326 audit(1763105917.899:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14300 comm="syz.4.3415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f1c50f8f6c9 code=0x7ffc0000 [ 402.420436][T14317] netlink: 'syz.0.3421': attribute type 4 has an invalid length. [ 402.974471][T14337] netlink: 'syz.4.3433': attribute type 4 has an invalid length. [ 403.545703][T14357] netlink: 68 bytes leftover after parsing attributes in process `syz.4.3442'. [ 405.505679][ T13] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 406.515076][T14390] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 406.530672][T14390] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 406.540464][T14390] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 406.550957][T14390] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 406.785735][ T13] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 407.337063][T14409] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3467'. [ 407.799885][ T5832] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 407.818466][ T5832] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 407.827296][ T5832] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 407.835498][ T5832] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 407.839187][ T5823] Bluetooth: hci4: command 0x0c1a tx timeout [ 407.849137][ T5832] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 408.409515][T14417] chnl_net:caif_netlink_parms(): no params data found [ 408.553956][ T5837] Bluetooth: hci0: command 0x0c1a tx timeout [ 408.634530][ T5837] Bluetooth: hci1: command 0x0c1a tx timeout [ 408.640737][ T5837] Bluetooth: hci2: command 0x0c1a tx timeout [ 408.692285][T14417] bridge0: port 1(bridge_slave_0) entered blocking state [ 408.709904][T14417] bridge0: port 1(bridge_slave_0) entered disabled state [ 408.725948][T14417] bridge_slave_0: entered allmulticast mode [ 408.744879][T14417] bridge_slave_0: entered promiscuous mode [ 408.764405][T14417] bridge0: port 2(bridge_slave_1) entered blocking state [ 408.782141][T14417] bridge0: port 2(bridge_slave_1) entered disabled state [ 408.792404][T14417] bridge_slave_1: entered allmulticast mode [ 408.807867][T14417] bridge_slave_1: entered promiscuous mode [ 408.889114][ T30] audit: type=1326 audit(1763105924.750:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14421 comm="syz.0.3472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdec2d8f6c9 code=0x7fc00000 [ 408.938388][T14417] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 408.998419][T14417] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 409.162205][T14417] team0: Port device team_slave_0 added [ 409.184899][T14417] team0: Port device team_slave_1 added [ 409.290217][T14417] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 409.305751][T14436] netlink: 'syz.0.3475': attribute type 4 has an invalid length. [ 409.315226][T14417] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 409.329108][T14436] netlink: 3649 bytes leftover after parsing attributes in process `syz.0.3475'. [ 409.380722][T14417] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 409.405387][T14417] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 409.421985][T14417] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 409.463878][T14417] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 409.629734][T14417] hsr_slave_0: entered promiscuous mode [ 409.662436][T14417] hsr_slave_1: entered promiscuous mode [ 409.669279][T14417] debugfs: 'hsr0' already exists in 'hsr' [ 409.694298][T14417] Cannot create hsr debugfs directory [ 409.923201][ T5837] Bluetooth: hci3: command tx timeout [ 410.118854][T14417] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 410.241500][T14417] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 410.369113][T14417] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 410.495060][T14417] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 410.650413][ T9164] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 410.690239][T14417] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 410.702053][T14417] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 410.724126][T14417] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 410.753137][T14417] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 410.946608][T14417] 8021q: adding VLAN 0 to HW filter on device bond0 [ 410.995075][T14417] 8021q: adding VLAN 0 to HW filter on device team0 [ 411.030007][ T9164] bridge0: port 1(bridge_slave_0) entered blocking state [ 411.037271][ T9164] bridge0: port 1(bridge_slave_0) entered forwarding state [ 411.084362][ T9172] bridge0: port 2(bridge_slave_1) entered blocking state [ 411.091602][ T9172] bridge0: port 2(bridge_slave_1) entered forwarding state [ 411.193183][T14417] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 411.221629][T14417] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 412.016821][ T5837] Bluetooth: hci3: command tx timeout [ 412.226651][T14417] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 412.594643][ T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 412.701181][T14417] veth0_vlan: entered promiscuous mode [ 412.707128][T14513] bridge0: entered allmulticast mode [ 412.728907][T14417] veth1_vlan: entered promiscuous mode [ 412.769760][T14515] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3503'. [ 412.789809][T14417] veth0_macvtap: entered promiscuous mode [ 412.828409][T14417] veth1_macvtap: entered promiscuous mode [ 412.865023][T14417] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 412.905558][T14417] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 412.945103][ T6566] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 412.970116][ T6566] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 413.006646][ T6566] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 413.021559][ T6566] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 413.152603][ T9172] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 413.174325][T14525] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000017: 0000 [#1] SMP KASAN PTI [ 413.177626][ T9172] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 413.186242][T14525] KASAN: null-ptr-deref in range [0x00000000000000b8-0x00000000000000bf] [ 413.186280][T14525] CPU: 0 UID: 0 PID: 14525 Comm: syz.1.3509 Not tainted syzkaller #0 PREEMPT(full) [ 413.186300][T14525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 413.186310][T14525] RIP: 0010:put_pid_ns+0x37/0x2a0 [ 413.186345][T14525] Code: 53 48 89 fb e8 0a ba 03 00 48 85 db 0f 84 e8 00 00 00 49 bc 00 00 00 00 00 fc ff df 4c 8d b3 d0 00 00 00 4d 89 f5 49 c1 ed 03 <43> 80 7c 25 00 00 74 08 4c 89 f7 e8 f9 12 6a 00 4d 8b 3e 31 ff 4c [ 413.186359][T14525] RSP: 0018:ffffc9000cd97cd0 EFLAGS: 00010206 [ 413.186382][T14525] RAX: ffffffff81be2646 RBX: ffffffffffffffea RCX: 0000000000080000 [ 413.186395][T14525] RDX: ffffc9000ec79000 RSI: 0000000000000117 RDI: 0000000000000118 [ 413.186406][T14525] RBP: 0000000000000000 R08: 0000000000000003 R09: 0000000000000004 [ 413.186417][T14525] R10: dffffc0000000000 R11: fffff520019b2f78 R12: dffffc0000000000 [ 413.186428][T14525] R13: 0000000000000017 R14: 00000000000000ba R15: ffff8880711855a8 [ 413.186440][T14525] FS: 00007f74a00d66c0(0000) GS:ffff888125a78000(0000) knlGS:0000000000000000 [ 413.186456][T14525] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 413.186467][T14525] CR2: 000000110c274d5b CR3: 000000001ffa8000 CR4: 00000000003526f0 [ 413.186482][T14525] Call Trace: [ 413.186494][T14525] [ 413.186502][T14525] nsproxy_free+0x20f/0x7c0 [ 413.186522][T14525] create_new_namespaces+0x47a/0x540 [ 413.186542][T14525] unshare_nsproxy_namespaces+0x11c/0x170 [ 413.186561][T14525] ksys_unshare+0x4c8/0x8c0 [ 413.186586][T14525] ? __pfx_ksys_unshare+0x10/0x10 [ 413.186614][T14525] __x64_sys_unshare+0x38/0x50 [ 413.186634][T14525] do_syscall_64+0xfa/0xfa0 [ 413.356490][T14525] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 413.362661][T14525] ? clear_bhb_loop+0x60/0xb0 [ 413.367350][T14525] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 413.373234][T14525] RIP: 0033:0x7f749f18f6c9 [ 413.377648][T14525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 413.397247][T14525] RSP: 002b:00007f74a00d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 413.405661][T14525] RAX: ffffffffffffffda RBX: 00007f749f3e5fa0 RCX: 00007f749f18f6c9 [ 413.413619][T14525] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000024040000 [ 413.421574][T14525] RBP: 00007f749f211f91 R08: 0000000000000000 R09: 0000000000000000 [ 413.429532][T14525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 413.437488][T14525] R13: 00007f749f3e6038 R14: 00007f749f3e5fa0 R15: 00007fff30a0fe58 [ 413.445450][T14525] [ 413.448471][T14525] Modules linked in: SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 413.453624][T14525] ---[ end trace 0000000000000000 ]--- [ 413.476465][T14525] RIP: 0010:put_pid_ns+0x37/0x2a0 [ 413.482062][T14525] Code: 53 48 89 fb e8 0a ba 03 00 48 85 db 0f 84 e8 00 00 00 49 bc 00 00 00 00 00 fc ff df 4c 8d b3 d0 00 00 00 4d 89 f5 49 c1 ed 03 <43> 80 7c 25 00 00 74 08 4c 89 f7 e8 f9 12 6a 00 4d 8b 3e 31 ff 4c [ 413.568137][T14525] RSP: 0018:ffffc9000cd97cd0 EFLAGS: 00010206 [ 413.589420][T14525] RAX: ffffffff81be2646 RBX: ffffffffffffffea RCX: 0000000000080000 [ 413.616858][T14525] RDX: ffffc9000ec79000 RSI: 0000000000000117 RDI: 0000000000000118 [ 413.624878][T14525] RBP: 0000000000000000 R08: 0000000000000003 R09: 0000000000000004 [ 413.658163][T14525] R10: dffffc0000000000 R11: fffff520019b2f78 R12: dffffc0000000000 [ 413.666196][T14525] R13: 0000000000000017 R14: 00000000000000ba R15: ffff8880711855a8 [ 413.717469][T14525] FS: 00007f74a00d66c0(0000) GS:ffff888125b78000(0000) knlGS:0000000000000000 [ 413.726447][T14525] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 413.747672][T14525] CR2: 000055faa4ddb000 CR3: 000000001ffa8000 CR4: 00000000003526f0 [ 413.755707][T14525] Kernel panic - not syncing: Fatal exception [ 413.762043][T14525] Kernel Offset: disabled [ 413.766358][T14525] Rebooting in 86400 seconds..