last executing test programs: 4.167486337s ago: executing program 3 (id=1817): r0 = socket(0x40000000015, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x2d, @remote, 0x2a0}, 0x1c) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) getpid() sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00') syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RELOAD(r1, 0x0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', 0x0}) bpf$MAP_CREATE(0x0, &(0x7f0000000900)=@base={0x1, 0x7, 0x2261, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', r3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) syz_usb_connect$hid(0x3, 0x90, 0x0, 0x0) socket$inet_mptcp(0x2, 0x1, 0x106) 2.91632188s ago: executing program 3 (id=1821): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0xfffffffd, 0x0, 0x8000, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x28, 0x3, 0x8, 0x101, 0x0, 0x0, {}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0xffffffffffffffff}, @CTA_TIMEOUT_DATA={0x4, 0x4, 0x0, 0x1, @icmp}, @CTA_TIMEOUT_L3PROTO={0x6}]}, 0x28}}, 0x0) recvfrom$x25(0xffffffffffffffff, &(0x7f00000002c0)=""/252, 0xfc, 0x0, 0x0, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r3}, 0x10) mkdir(0x0, 0x80) write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000140), 0x1e) syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x414, &(0x7f0000000000)=ANY=[], 0x1, 0x2a1, &(0x7f0000000f40)="$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") openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r5 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)) fadvise64(r5, 0xe0ffff, 0x4101, 0x3) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r6 = getpid() sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10) socket$nl_xfrm(0x10, 0x3, 0x6) 2.539924532s ago: executing program 2 (id=1827): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0a00000003000000ff0f000007"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x5c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x3}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x23}, @NFTA_SET_EXPR={0x20, 0x11, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}]}], {0x14, 0x10}}, 0xa4}}, 0x4) 2.427611267s ago: executing program 2 (id=1828): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0xfffffffb}, 0x10) sendmsg$nl_route(r0, 0x0, 0x0) 2.199740249s ago: executing program 2 (id=1830): r0 = syz_init_net_socket$llc(0x1a, 0x801, 0x0) bind$llc(r0, &(0x7f0000000080), 0x10) listen(r0, 0x0) accept4$llc(r0, 0x0, 0x0, 0x0) 2.00324157s ago: executing program 3 (id=1831): r0 = socket(0x40000000015, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x2d, @remote, 0x2a0}, 0x1c) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) getpid() sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00') syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RELOAD(r1, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', 0x0}) bpf$MAP_CREATE(0x0, &(0x7f0000000900)=@base={0x1, 0x7, 0x2261, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', r3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) syz_usb_connect$hid(0x3, 0x90, 0x0, 0x0) socket$inet_mptcp(0x2, 0x1, 0x106) 1.708630499s ago: executing program 4 (id=1835): r0 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r2}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r1}, &(0x7f0000000200), &(0x7f0000000340)=r2}, 0x20) write$binfmt_elf32(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="7f454c46000000000000000000000000030006"], 0x69) close(r0) execve(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) 1.57057356s ago: executing program 4 (id=1837): r0 = socket(0x28, 0x5, 0x0) connect$vsock_stream(r0, 0x0, 0x0) connect$vsock_stream(r0, &(0x7f0000000400)={0x28, 0x0, 0x2710, @host}, 0x10) 1.423023277s ago: executing program 1 (id=1839): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000010000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="0107000000000000000020000000040003"], 0x1c}, 0x1, 0x0, 0x0, 0x8041}, 0x0) 1.324712799s ago: executing program 0 (id=1840): r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000c80)=""/4079, 0xfef) 1.262433551s ago: executing program 4 (id=1841): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0a00000003000000ff0f000007"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x5c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x3}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x23}, @NFTA_SET_EXPR={0x20, 0x11, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}]}], {0x14, 0x10}}, 0xa4}}, 0x4) 1.261746882s ago: executing program 2 (id=1851): r0 = socket(0x28, 0x5, 0x0) connect$vsock_stream(r0, &(0x7f0000000180)={0x28, 0x0, 0x0, @local}, 0x10) connect$vsock_stream(r0, 0x0, 0x0) 1.259231706s ago: executing program 3 (id=1842): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0xfffffffb}, 0x10) sendmsg$nl_route(r0, 0x0, 0x0) 1.24138778s ago: executing program 0 (id=1843): r0 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401) ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, 0x0) 1.221780968s ago: executing program 1 (id=1844): r0 = socket$inet_sctp(0x2, 0x5, 0x84) sendmsg$inet_sctp(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="2000000000000000840000000200000006000400080000000b000002687e"], 0x20, 0x6044}, 0x6) 1.114052837s ago: executing program 0 (id=1845): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0x7}, 0x18) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x18) socket$inet6_dccp(0xa, 0x6, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001800)={&(0x7f0000000580)='kfree\x00'}, 0x9) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={0xffffffffffffffff, &(0x7f0000000d80)="54850412cef23f888d9c5b12a53b252d21f7734310a350bfef68694304f655b53c47f117233f67df6ded994790aa1d396011dab38e43e6fb7e3762adb33b404cb48fd3c969068a73d36b4603319a2d26ce80454b6793b73811049c3ff5adc3d00b13e715ca6516b1f333cedc14e57632f51df2b922ebffe21c1a18433cca0000b2f32ce4f9e76c9e0a4e69b3eb10da434f8646a2120182a4bca33b460000000000e0ff005788398be60ed8fe5176ed137f5ef4ef3e7af15523b8e933fddf0a58134bfbda5887b2def3431676e2854bce4ec6902a753a7ea42524b854ba4cb8770c3697801b20694a4dfc57c255f88648be", &(0x7f00000005c0)=""/155}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000008000000000000000000000181100", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x71, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r3, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0) getsockname$packet(r3, &(0x7f0000000600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB], 0x3c}}, 0x0) sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="540000001000030500"/20, @ANYRES32=0x0, @ANYRES32=r4], 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x4000) r5 = socket$inet6_udp(0xa, 0x2, 0x0) sendmsg$inet(r5, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0, 0x0, 0x18}, 0x880) sendmsg$nl_route(r1, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x204092, &(0x7f0000000d00)={[], [{@dont_measure}, {@measure}, {@fowner_gt}, {@smackfshat}, {@permit_directio}, {@obj_role={'obj_role', 0x3d, '\xff\xff'}}]}, 0x6, 0x50d, &(0x7f00000006c0)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000c40)='freezer.parent_freezing\x00', 0x275a, 0x0) r6 = socket$inet6(0xa, 0x1, 0x0) r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/kernel/profiling', 0x88401, 0x15a) write$P9_RAUTH(r7, 0x0, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f00000003c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x308, 0x130, 0x12, 0x60a, 0x600, 0x202, 0x238, 0x2e8, 0x2e8, 0x238, 0x2c0, 0x4, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @dev}, @mcast2, [], [], 'veth1_to_bond\x00', 'xfrm0\x00'}, 0x0, 0x108, 0x130, 0x0, {}, [@common=@unspec=@statistic={{0x38}}, @common=@inet=@socket2={{0x28}}]}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff}, {0xffffffffffffffff, 0xf9}}}}, {{@ipv6={@private2, @loopback, [], [], 'vxcan1\x00', 'geneve0\x00'}, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@empty}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x368) 1.11352458s ago: executing program 2 (id=1846): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8, 0x1014, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x2, 0x8, 0x8, 0x2, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x5, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10) bpf$PROG_BIND_MAP(0x23, &(0x7f00000001c0)={r2, r0}, 0xc) 1.012393267s ago: executing program 2 (id=1847): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000280)={0x0, 0xfe, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}}, 0x0) sync() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0xffffe000) mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0) 1.011986194s ago: executing program 3 (id=1848): r0 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r2}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r1}, &(0x7f0000000200), &(0x7f0000000340)=r2}, 0x20) write$binfmt_elf32(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="7f454c46000000000000000000000000030006"], 0x69) close(r0) execve(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) 1.011736212s ago: executing program 4 (id=1849): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x99, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r1 = syz_io_uring_setup(0x82e, &(0x7f00000005c0)={0x0, 0x20000020, 0x10100, 0x1, 0xfffffffd}, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) io_uring_register$IORING_REGISTER_PBUF_RING(r1, 0x16, &(0x7f0000000000)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x9, 0xe, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x59, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r4 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x20, 0x0, r4, 0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0}}) io_uring_enter(r1, 0x5b43, 0x8200, 0x0, 0x0, 0x0) 1.011386693s ago: executing program 1 (id=1858): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0a00000003000000ff0f000007"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x5c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x3}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x23}, @NFTA_SET_EXPR={0x20, 0x11, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}]}], {0x14, 0x10}}, 0xa4}}, 0x4) 911.923898ms ago: executing program 0 (id=1850): r0 = epoll_create1(0x80000) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000240)={0xa0000000}) epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r0, &(0x7f0000000280)) 883.373626ms ago: executing program 3 (id=1852): r0 = syz_init_net_socket$llc(0x1a, 0x801, 0x0) bind$llc(r0, &(0x7f0000000080), 0x10) listen(r0, 0x0) accept4$llc(r0, 0x0, 0x0, 0x0) 882.387943ms ago: executing program 4 (id=1853): r0 = socket(0x40000000015, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x2d, @remote, 0x2a0}, 0x1c) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) getpid() sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00') syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RELOAD(r1, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', 0x0}) bpf$MAP_CREATE(0x0, &(0x7f0000000900)=@base={0x1, 0x7, 0x2261, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', r3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) syz_usb_connect$hid(0x3, 0x90, 0x0, 0x0) socket$inet_mptcp(0x2, 0x1, 0x106) 783.819741ms ago: executing program 1 (id=1854): r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000c80)=""/4079, 0xfef) 160.724605ms ago: executing program 4 (id=1855): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10) r0 = socket(0x2, 0x5, 0x0) sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{&(0x7f0000002e40)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}], 0x1, 0x880) sendmmsg$inet_sctp(r0, &(0x7f0000000bc0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000001c0)=[{0x0, 0x2}], 0x1, &(0x7f0000000140)=ANY=[@ANYBLOB="30000000000000008400000001000000000000000c0000000000000002002b0388edb6556900"/51, @ANYRES32=0x0], 0x30}], 0x1, 0x0) 160.00277ms ago: executing program 0 (id=1866): r0 = epoll_create1(0x80000) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000240)={0xa0000000}) epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r0, &(0x7f0000000280)) 159.64187ms ago: executing program 1 (id=1856): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000010000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="0107000000000000000020000000040003"], 0x1c}, 0x1, 0x0, 0x0, 0x8041}, 0x0) 57.00928ms ago: executing program 0 (id=1857): r0 = socket(0x28, 0x5, 0x0) connect$vsock_stream(r0, &(0x7f0000000180)={0x28, 0x0, 0x0, @local}, 0x10) connect$vsock_stream(r0, 0x0, 0x0) 0s ago: executing program 1 (id=1859): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0xfffffffb}, 0x10) sendmsg$nl_route(r0, 0x0, 0x0) kernel console output (not intermixed with test programs): T5833] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.593644][ T5833] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.635021][ T5840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 61.646154][ T5840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 61.657043][ T5840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 61.668278][ T5840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 61.679679][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 61.706990][ T5829] veth0_macvtap: entered promiscuous mode [ 61.734056][ T5829] veth1_macvtap: entered promiscuous mode [ 61.757296][ T197] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.766136][ T197] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.779412][ T5840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 61.792225][ T5840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 61.802708][ T5840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 61.813214][ T5840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 61.825460][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 61.838636][ T5840] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.847521][ T5840] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.856330][ T5840] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.865098][ T5840] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.875930][ T5828] veth0_vlan: entered promiscuous mode [ 61.919298][ T5828] veth1_vlan: entered promiscuous mode [ 61.953497][ T5829] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 61.965767][ T5829] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 61.976376][ T5829] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 61.988435][ T5829] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 61.998495][ T5829] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 62.010153][ T5829] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 62.020989][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 62.032341][ T5829] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 62.042977][ T5829] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 62.053125][ T5829] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 62.064856][ T5829] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 62.075041][ T5829] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 62.085561][ T5829] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 62.096300][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 62.105142][ T2952] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 62.113258][ T2952] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 62.126109][ T5829] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.135370][ T5829] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.145000][ T5829] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.154439][ T5829] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.235565][ T67] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 62.250847][ T5828] veth0_macvtap: entered promiscuous mode [ 62.257232][ T5832] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 62.277358][ T67] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 62.286385][ T2952] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 62.298820][ T2952] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 62.322403][ T5828] veth1_macvtap: entered promiscuous mode [ 62.343882][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 62.355713][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 62.375702][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 62.395444][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 62.405804][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 62.416385][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 62.428350][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 62.450588][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 62.465454][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 62.477364][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 62.493965][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 62.593695][ T3001] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 62.595139][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 62.601586][ T3001] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 62.620859][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 62.632370][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 62.643505][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 62.654877][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 62.665622][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 62.675776][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 62.686772][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 62.698478][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 62.724636][ T5828] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.733884][ T5828] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.743190][ T5828] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.752466][ T5828] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.802042][ T3001] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 62.820415][ T3001] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 62.903228][ T3001] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 62.935682][ T5922] loop2: detected capacity change from 0 to 512 [ 62.947027][ T3001] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 63.060714][ T67] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 63.068558][ T67] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 63.099805][ T5844] Bluetooth: hci1: command tx timeout [ 63.106400][ T5844] Bluetooth: hci4: command tx timeout [ 63.112327][ T5844] Bluetooth: hci3: command tx timeout [ 63.115753][ T5846] Bluetooth: hci2: command tx timeout [ 63.117725][ T5844] Bluetooth: hci0: command tx timeout [ 63.135746][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 63.144888][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 63.161039][ T5922] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 63.186454][ T5922] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 63.217067][ T5931] geneve2: entered promiscuous mode [ 63.239170][ T5931] geneve2: entered allmulticast mode [ 63.380926][ T29] audit: type=1326 audit(1733438027.738:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5920 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f397ff19 code=0x7ffc0000 [ 63.407591][ T29] audit: type=1326 audit(1733438027.738:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5920 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f397ff19 code=0x7ffc0000 [ 63.434639][ T5937] syz.0.10 uses obsolete (PF_INET,SOCK_PACKET) [ 63.443689][ T5934] hsr_slave_0: left promiscuous mode [ 63.484697][ T29] audit: type=1326 audit(1733438027.738:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5920 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fd8f397ff19 code=0x7ffc0000 [ 63.507382][ T29] audit: type=1326 audit(1733438027.738:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5920 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd8f397ff53 code=0x7ffc0000 [ 63.530669][ T29] audit: type=1326 audit(1733438027.748:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5920 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fd8f397e9cf code=0x7ffc0000 [ 63.552450][ T29] audit: type=1326 audit(1733438027.748:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5920 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fd8f397ffa7 code=0x7ffc0000 [ 63.574744][ T5934] hsr_slave_1: left promiscuous mode [ 63.576253][ T29] audit: type=1326 audit(1733438027.758:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5920 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd8f397e880 code=0x7ffc0000 [ 63.602984][ T29] audit: type=1326 audit(1733438027.758:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5920 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fd8f397eb7a code=0x7ffc0000 [ 63.626127][ T29] audit: type=1326 audit(1733438027.758:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5920 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f397ff19 code=0x7ffc0000 [ 63.648253][ T29] audit: type=1326 audit(1733438027.758:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5920 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f397ff19 code=0x7ffc0000 [ 63.947628][ T5840] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 64.295372][ T5957] loop3: detected capacity change from 0 to 512 [ 64.327834][ T5957] ======================================================= [ 64.327834][ T5957] WARNING: The mand mount option has been deprecated and [ 64.327834][ T5957] and is ignored by this kernel. Remove the mand [ 64.327834][ T5957] option from the mount to silence this warning. [ 64.327834][ T5957] ======================================================= [ 64.438385][ T5954] mmap: syz.2.12 (5954) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 64.463195][ T5957] EXT4-fs (loop3): DAX unsupported by block device. [ 64.554628][ T5963] netlink: 28 bytes leftover after parsing attributes in process `syz.1.16'. [ 64.570065][ T5962] netlink: 'syz.0.17': attribute type 1 has an invalid length. [ 65.238640][ T5844] Bluetooth: hci0: command tx timeout [ 65.244348][ T5836] Bluetooth: hci2: command tx timeout [ 65.250296][ T5836] Bluetooth: hci3: command tx timeout [ 65.256924][ T5836] Bluetooth: hci4: command tx timeout [ 65.262900][ T5844] Bluetooth: hci1: command tx timeout [ 65.586033][ T5987] loop0: detected capacity change from 0 to 1024 [ 65.929936][ T5987] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 66.076412][ T5985] loop1: detected capacity change from 0 to 512 [ 66.112518][ T5985] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 66.166520][ T5985] EXT4-fs error (device loop1): ext4_orphan_get:1389: inode #17: comm syz.1.25: iget: bad i_size value: -6917529027641081756 [ 66.282420][ T5985] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.25: couldn't read orphan inode 17 (err -117) [ 66.345124][ T5985] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 66.376919][ T5833] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 66.597950][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 66.721431][ T6005] loop4: detected capacity change from 0 to 2048 [ 66.829721][ T6009] program syz.0.35 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 66.869562][ T6009] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 67.165812][ T6020] netlink: 'syz.2.37': attribute type 21 has an invalid length. [ 67.190377][ T6020] netlink: 'syz.2.37': attribute type 6 has an invalid length. [ 67.217689][ T6005] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 67.239994][ T6020] netlink: 132 bytes leftover after parsing attributes in process `syz.2.37'. [ 67.407920][ T6028] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 67.860924][ T5206] udevd[5206]: worker [5842] terminated by signal 32 (Unknown signal 32) [ 67.869715][ T5206] udevd[5206]: worker [5842] failed while handling '/devices/virtual/block/loop3' [ 68.112425][ T5829] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.123966][ T6082] loop2: detected capacity change from 0 to 512 [ 68.157723][ T6082] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 68.254891][ T6082] EXT4-fs error (device loop2): ext4_orphan_get:1389: inode #17: comm syz.2.44: iget: bad i_size value: -6917529027641081756 [ 68.278168][ T6082] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.44: couldn't read orphan inode 17 (err -117) [ 68.321390][ T6082] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 68.340596][ T6092] netlink: 'syz.0.56': attribute type 21 has an invalid length. [ 68.357962][ T6092] netlink: 'syz.0.56': attribute type 6 has an invalid length. [ 68.365846][ T6092] netlink: 132 bytes leftover after parsing attributes in process `syz.0.56'. [ 68.526809][ T5840] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.596496][ T6095] netlink: 'syz.3.46': attribute type 1 has an invalid length. [ 68.755202][ T6096] loop4: detected capacity change from 0 to 1024 [ 68.964245][ T6096] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 69.716369][ T5829] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.735324][ T6103] netlink: 'syz.1.61': attribute type 1 has an invalid length. [ 69.929771][ T6109] netlink: 28 bytes leftover after parsing attributes in process `syz.2.47'. [ 69.944699][ T29] kauditd_printk_skb: 61 callbacks suppressed [ 69.944715][ T29] audit: type=1326 audit(1733438034.298:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6106 comm="syz.1.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb09177ff19 code=0x7ffc0000 [ 70.009899][ T6110] loop1: detected capacity change from 0 to 512 [ 70.050484][ T6110] EXT4-fs (loop1): DAX unsupported by block device. [ 70.059227][ T29] audit: type=1326 audit(1733438034.338:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6106 comm="syz.1.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb09177ff19 code=0x7ffc0000 [ 70.123774][ T29] audit: type=1326 audit(1733438034.338:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6106 comm="syz.1.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fb09177ff19 code=0x7ffc0000 [ 70.188113][ T29] audit: type=1326 audit(1733438034.338:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6106 comm="syz.1.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fb09177ff53 code=0x7ffc0000 [ 70.210962][ T29] audit: type=1326 audit(1733438034.338:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6106 comm="syz.1.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fb09177e9cf code=0x7ffc0000 [ 70.267713][ T29] audit: type=1326 audit(1733438034.338:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6106 comm="syz.1.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fb09177ffa7 code=0x7ffc0000 [ 70.352024][ T29] audit: type=1326 audit(1733438034.368:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6106 comm="syz.1.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb09177e880 code=0x7ffc0000 [ 70.422269][ T29] audit: type=1326 audit(1733438034.368:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6106 comm="syz.1.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb09177fb1b code=0x7ffc0000 [ 70.483197][ T29] audit: type=1326 audit(1733438034.388:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6106 comm="syz.1.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fb09177eb7a code=0x7ffc0000 [ 70.549825][ T29] audit: type=1326 audit(1733438034.388:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6106 comm="syz.1.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fb09177eb7a code=0x7ffc0000 [ 70.890714][ T6132] netlink: 'syz.4.62': attribute type 21 has an invalid length. [ 70.940157][ T6132] netlink: 'syz.4.62': attribute type 6 has an invalid length. [ 70.995364][ T6132] netlink: 132 bytes leftover after parsing attributes in process `syz.4.62'. [ 71.228035][ T6136] loop1: detected capacity change from 0 to 1024 [ 71.430032][ T6136] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 71.609976][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.616869][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.903080][ T6139] netlink: 'syz.3.65': attribute type 1 has an invalid length. [ 71.977082][ T5828] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.203405][ T6150] netlink: 28 bytes leftover after parsing attributes in process `syz.4.69'. [ 73.398754][ T6159] hsr_slave_0: left promiscuous mode [ 73.422437][ T6159] hsr_slave_1: left promiscuous mode [ 73.911621][ T6179] loop3: detected capacity change from 0 to 1024 [ 73.922889][ T6179] /dev/loop3: Can't open blockdev [ 75.235250][ T6191] tipc: Started in network mode [ 75.255367][ T6191] tipc: Node identity ac14140f, cluster identity 4711 [ 75.286320][ T6191] tipc: New replicast peer: 255.255.255.255 [ 75.339242][ T6191] tipc: Enabled bearer , priority 10 [ 76.485691][ T5881] tipc: Node number set to 2886997007 [ 77.269992][ T6232] hsr_slave_0: left promiscuous mode [ 77.287708][ T6232] hsr_slave_1: left promiscuous mode [ 77.331093][ T6234] netlink: 'syz.2.105': attribute type 21 has an invalid length. [ 77.342239][ T6234] netlink: 'syz.2.105': attribute type 6 has an invalid length. [ 77.358845][ T6234] netlink: 132 bytes leftover after parsing attributes in process `syz.2.105'. [ 77.377102][ T6236] tipc: Started in network mode [ 77.383150][ T6236] tipc: Node identity ac14140f, cluster identity 4711 [ 77.410572][ T6236] tipc: New replicast peer: 255.255.255.255 [ 77.464290][ T6236] tipc: Enabled bearer , priority 10 [ 78.589165][ T5885] tipc: Node number set to 2886997007 [ 78.845040][ T6266] netlink: 'syz.0.119': attribute type 21 has an invalid length. [ 78.870996][ T6266] netlink: 'syz.0.119': attribute type 6 has an invalid length. [ 78.921401][ T6266] netlink: 132 bytes leftover after parsing attributes in process `syz.0.119'. [ 78.980211][ T6278] tipc: Started in network mode [ 78.985210][ T6278] tipc: Node identity 800, cluster identity 2 [ 78.991492][ T6278] tipc: Node number set to 2048 [ 78.996977][ T6278] tipc: Cannot configure node identity twice [ 79.504559][ T6295] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 79.533225][ T6303] netlink: 'syz.3.136': attribute type 21 has an invalid length. [ 79.542062][ T6303] netlink: 'syz.3.136': attribute type 6 has an invalid length. [ 79.552031][ T6303] netlink: 132 bytes leftover after parsing attributes in process `syz.3.136'. [ 79.561518][ T6303] Zero length message leads to an empty skb [ 79.610741][ T6295] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 79.774614][ T6295] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 79.955194][ T6295] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 80.125565][ T6295] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.171487][ T6295] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.213653][ T6295] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.257244][ T6295] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.295405][ T6340] netlink: 'syz.3.149': attribute type 21 has an invalid length. [ 80.327271][ T6340] netlink: 'syz.3.149': attribute type 6 has an invalid length. [ 80.367934][ T6340] netlink: 132 bytes leftover after parsing attributes in process `syz.3.149'. [ 80.578499][ T6354] geneve2: entered promiscuous mode [ 80.583916][ T6354] geneve2: entered allmulticast mode [ 80.977296][ T6374] netlink: 'syz.3.163': attribute type 21 has an invalid length. [ 81.005695][ T6374] netlink: 'syz.3.163': attribute type 6 has an invalid length. [ 81.040722][ T6374] netlink: 132 bytes leftover after parsing attributes in process `syz.3.163'. [ 81.906961][ T974] cfg80211: failed to load regulatory.db [ 82.102779][ T6436] tipc: Started in network mode [ 82.121172][ T6436] tipc: Node identity ac14140f, cluster identity 4711 [ 82.144645][ T6436] tipc: New replicast peer: 255.255.255.255 [ 82.170302][ T6436] tipc: Enabled bearer , priority 10 [ 82.741350][ T6480] tipc: Enabling of bearer rejected, already enabled [ 82.909700][ T6484] tipc: Cannot configure node identity twice [ 82.932406][ T6484] tipc: Cannot configure node identity twice [ 83.667438][ T2148] tipc: Node number set to 2886997007 [ 84.433175][ T6520] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 84.653532][ T6520] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 84.934846][ T6520] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 85.125344][ T6520] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 85.323087][ T6520] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.413429][ T6520] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.451317][ T6520] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.497601][ T6520] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.220778][ T6600] tipc: Enabling of bearer rejected, already enabled [ 87.132836][ T6642] tipc: Started in network mode [ 87.147938][ T6642] tipc: Node identity ac14140f, cluster identity 4711 [ 87.174167][ T6642] tipc: New replicast peer: 255.255.255.255 [ 87.197015][ T6642] tipc: Enabled bearer , priority 10 [ 87.492296][ T6661] geneve2: entered promiscuous mode [ 87.520589][ T6661] geneve2: entered allmulticast mode [ 88.245848][ T6699] tipc: Enabling of bearer rejected, already enabled [ 88.290601][ T6701] geneve2: entered promiscuous mode [ 88.297490][ T6701] geneve2: entered allmulticast mode [ 88.309036][ T974] tipc: Node number set to 2886997007 [ 89.403339][ T6770] geneve2: entered promiscuous mode [ 89.408611][ T6770] geneve2: entered allmulticast mode [ 89.685897][ T6784] netlink: 100 bytes leftover after parsing attributes in process `syz.0.325'. [ 91.237409][ T6806] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 91.304031][ T6819] geneve2: entered promiscuous mode [ 91.331153][ T6819] geneve2: entered allmulticast mode [ 91.392193][ T6829] netlink: 100 bytes leftover after parsing attributes in process `syz.0.342'. [ 91.545321][ T6806] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 91.559108][ T6837] netlink: 12 bytes leftover after parsing attributes in process `syz.4.346'. [ 91.665731][ T6806] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 91.804553][ T6806] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 92.807126][ T6806] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.877409][ T6806] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.991720][ T6806] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.062246][ T6806] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.109499][ T6874] geneve2: entered promiscuous mode [ 93.133892][ T6874] geneve2: entered allmulticast mode [ 94.484503][ T6910] netlink: 48 bytes leftover after parsing attributes in process `syz.2.371'. [ 95.700137][ T6978] netlink: 36 bytes leftover after parsing attributes in process `syz.4.399'. [ 96.306213][ T7010] netlink: 36 bytes leftover after parsing attributes in process `syz.2.413'. [ 97.501793][ T7035] program syz.2.421 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 97.575087][ T7035] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 97.956111][ T7065] geneve2: entered promiscuous mode [ 97.961497][ T7065] geneve2: entered allmulticast mode [ 98.631086][ T7107] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 98.751953][ T7107] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 98.897583][ T7126] program syz.1.444 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 98.898168][ T7107] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 98.918898][ T7126] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 99.094531][ T7107] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.255055][ T7107] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.280135][ T7146] geneve2: entered promiscuous mode [ 99.285976][ T7146] geneve2: entered allmulticast mode [ 99.346024][ T7107] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.361955][ T7107] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.378060][ T7107] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.522149][ T7222] netlink: 28 bytes leftover after parsing attributes in process `syz.3.472'. [ 101.133664][ T7258] geneve2: entered promiscuous mode [ 101.139572][ T7258] geneve2: entered allmulticast mode [ 101.950285][ T7293] geneve2: entered promiscuous mode [ 101.955553][ T7293] geneve2: entered allmulticast mode [ 103.823130][ T7358] netlink: 28 bytes leftover after parsing attributes in process `syz.0.527'. [ 104.434996][ T7389] geneve2: entered promiscuous mode [ 104.467346][ T7389] geneve2: entered allmulticast mode [ 104.563390][ T7396] netlink: 28 bytes leftover after parsing attributes in process `syz.4.542'. [ 105.169294][ T7428] netlink: 28 bytes leftover after parsing attributes in process `syz.3.556'. [ 105.775178][ T7455] tipc: Enabling of bearer rejected, already enabled [ 106.266237][ T7479] tipc: Enabling of bearer rejected, already enabled [ 106.537053][ T7490] tipc: Enabling of bearer rejected, already enabled [ 108.063925][ T7529] netlink: 28 bytes leftover after parsing attributes in process `syz.1.596'. [ 108.316851][ T7545] tipc: Enabling of bearer rejected, already enabled [ 108.785232][ T7572] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 108.954207][ T7572] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 109.075163][ T7572] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 109.320744][ T7572] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 109.486951][ T7572] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.511454][ T7608] geneve2: entered promiscuous mode [ 109.516714][ T7608] geneve2: entered allmulticast mode [ 109.634911][ T7572] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.658368][ T7572] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.675291][ T7572] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.774799][ T7618] netlink: 52 bytes leftover after parsing attributes in process `syz.4.632'. [ 109.797203][ T7618] SET target dimension over the limit! [ 110.801796][ T7661] syz.0.649 (7661) used greatest stack depth: 19216 bytes left [ 111.099015][ T29] kauditd_printk_skb: 37 callbacks suppressed [ 111.099034][ T29] audit: type=1326 audit(1733438075.448:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7672 comm="syz.0.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 111.179343][ T29] audit: type=1326 audit(1733438075.448:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7672 comm="syz.0.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 111.279033][ T29] audit: type=1326 audit(1733438075.448:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7672 comm="syz.0.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 111.347710][ T29] audit: type=1326 audit(1733438075.498:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7672 comm="syz.0.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 111.409439][ T29] audit: type=1326 audit(1733438075.518:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7672 comm="syz.0.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 111.468010][ T29] audit: type=1326 audit(1733438075.518:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7672 comm="syz.0.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 111.549142][ T29] audit: type=1326 audit(1733438075.518:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7672 comm="syz.0.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=129 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 111.599115][ T29] audit: type=1326 audit(1733438075.518:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7672 comm="syz.0.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 111.667528][ T29] audit: type=1326 audit(1733438075.518:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7672 comm="syz.0.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=5 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 111.738063][ T29] audit: type=1326 audit(1733438075.518:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7672 comm="syz.0.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 112.453386][ T7747] netlink: 20 bytes leftover after parsing attributes in process `syz.1.683'. [ 114.284015][ T7840] batadv1: entered promiscuous mode [ 114.290711][ T7840] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 115.779994][ T7918] netlink: 'syz.4.749': attribute type 3 has an invalid length. [ 116.301045][ T7932] Cannot find del_set index 4 as target [ 117.374998][ T7985] xt_hashlimit: max too large, truncated to 1048576 [ 117.455439][ T29] kauditd_printk_skb: 35 callbacks suppressed [ 117.455459][ T29] audit: type=1326 audit(1733438081.738:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7982 comm="syz.2.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f397ff19 code=0x7ffc0000 [ 117.498119][ T29] audit: type=1326 audit(1733438081.738:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7982 comm="syz.2.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f397ff19 code=0x7ffc0000 [ 117.585931][ T29] audit: type=1326 audit(1733438081.738:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7982 comm="syz.2.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd8f397ff19 code=0x7ffc0000 [ 117.624227][ T7981] syz.1.775 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 117.648547][ T29] audit: type=1326 audit(1733438081.738:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7982 comm="syz.2.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f397ff19 code=0x7ffc0000 [ 117.676754][ T29] audit: type=1326 audit(1733438081.738:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7982 comm="syz.2.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f397ff19 code=0x7ffc0000 [ 117.701796][ T29] audit: type=1326 audit(1733438081.738:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7982 comm="syz.2.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd8f397ff19 code=0x7ffc0000 [ 117.725451][ T29] audit: type=1326 audit(1733438081.738:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7982 comm="syz.2.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f397ff19 code=0x7ffc0000 [ 117.809054][ T29] audit: type=1326 audit(1733438081.738:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7982 comm="syz.2.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd8f397ff19 code=0x7ffc0000 [ 117.859071][ T29] audit: type=1326 audit(1733438081.738:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7982 comm="syz.2.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8f397ff19 code=0x7ffc0000 [ 117.882742][ T29] audit: type=1326 audit(1733438081.738:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7982 comm="syz.2.776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7fd8f397ff19 code=0x7ffc0000 [ 118.196462][ T8017] IPv4: Oversized IP packet from 127.202.26.0 [ 118.368602][ T8028] IPv6: Can't replace route, no match found [ 118.506039][ T8030] veth0_to_team: entered promiscuous mode [ 118.565612][ T8030] veth0_to_team: entered allmulticast mode [ 118.824062][ T8039] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app [ 118.857650][ T8038] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5) [ 118.864376][ T8038] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 118.905281][ T8038] vhci_hcd vhci_hcd.0: Device attached [ 118.943905][ T8040] vhci_hcd: connection closed [ 118.956850][ T8047] netlink: 24 bytes leftover after parsing attributes in process `syz.2.799'. [ 118.997045][ T3001] vhci_hcd: stop threads [ 119.002176][ T3001] vhci_hcd: release socket [ 119.007681][ T3001] vhci_hcd: disconnect device [ 119.429525][ T8066] hub 5-0:1.0: USB hub found [ 119.434655][ T8066] hub 5-0:1.0: 1 port detected [ 120.187544][ T8103] process 'syz.1.822' launched './file0' with NULL argv: empty string added [ 120.812889][ T8128] syzkaller0: entered allmulticast mode [ 121.104781][ T8127] syzkaller0: left allmulticast mode [ 121.735665][ T8149] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 121.922379][ T8149] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 122.023173][ T8149] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 122.098190][ T8149] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 122.169806][ T8170] tipc: Enabling of bearer rejected, already enabled [ 122.232568][ T8180] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1280 [ 122.244686][ T8149] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 122.264475][ T8149] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 122.279451][ T8149] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 122.296317][ T8149] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 123.408545][ T8210] tipc: Enabling of bearer rejected, already enabled [ 123.900931][ T8227] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 124.116642][ T8227] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 124.145175][ T8246] tipc: New replicast peer: 255.255.255.255 [ 124.161643][ T8246] tipc: Enabled bearer , priority 10 [ 124.273267][ T8227] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 124.464688][ T8227] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 124.640726][ T8227] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 124.688626][ T8227] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 124.745591][ T8227] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 124.783566][ T8227] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 124.916733][ T8269] bridge0: port 3(vlan2) entered blocking state [ 124.924244][ T8269] bridge0: port 3(vlan2) entered disabled state [ 124.930990][ T8269] vlan2: entered allmulticast mode [ 124.938334][ T8269] vlan2: left allmulticast mode [ 125.305665][ T8286] tipc: Enabling of bearer rejected, already enabled [ 126.077143][ T8320] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 126.139059][ T8323] tipc: Enabling of bearer rejected, already enabled [ 126.148067][ T8321] netlink: 256 bytes leftover after parsing attributes in process `syz.3.904'. [ 126.243204][ T8320] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 126.375427][ T8320] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 126.457255][ T8320] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 126.641388][ T8320] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.758669][ T8320] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.774924][ T8320] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.789203][ T8320] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.892463][ T8358] vlan2: entered allmulticast mode [ 126.911525][ T8356] tipc: Enabling of bearer rejected, already enabled [ 127.444371][ T29] kauditd_printk_skb: 134 callbacks suppressed [ 127.444388][ T29] audit: type=1326 audit(1733438091.798:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8379 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 127.503994][ T8384] tipc: Enabling of bearer rejected, already enabled [ 127.525849][ T29] audit: type=1326 audit(1733438091.798:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8379 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 127.550005][ T29] audit: type=1326 audit(1733438091.798:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8379 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 127.573166][ T29] audit: type=1326 audit(1733438091.798:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8379 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 127.597481][ T29] audit: type=1326 audit(1733438091.798:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8379 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 127.624588][ T29] audit: type=1326 audit(1733438091.798:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8379 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 127.660441][ T29] audit: type=1326 audit(1733438091.798:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8379 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 127.692661][ T29] audit: type=1326 audit(1733438091.798:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8379 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 127.724620][ T29] audit: type=1326 audit(1733438091.798:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8379 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 127.764592][ T29] audit: type=1326 audit(1733438091.798:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8379 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 128.010596][ T8409] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 128.068565][ T8409] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 128.207518][ T8418] tipc: Enabling of bearer rejected, already enabled [ 128.271346][ T8409] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 128.406030][ T8409] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 128.455305][ T8433] netlink: 28 bytes leftover after parsing attributes in process `syz.4.948'. [ 128.505988][ T8409] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.566494][ T8409] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.612889][ T8409] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.655625][ T8409] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.721787][ T8445] tipc: Enabling of bearer rejected, already enabled [ 128.959469][ T5881] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 129.109334][ T5881] usb 1-1: device descriptor read/64, error -71 [ 129.223899][ T8480] tipc: Enabling of bearer rejected, already enabled [ 129.349893][ T5881] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 129.599199][ T5881] usb 1-1: device descriptor read/64, error -71 [ 129.699700][ T8510] netlink: 4 bytes leftover after parsing attributes in process `syz.1.985'. [ 129.712092][ T5881] usb usb1-port1: attempt power cycle [ 129.886954][ T8508] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 129.910643][ T8512] tipc: Enabling of bearer rejected, already enabled [ 129.957401][ T8508] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 130.038718][ T8508] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 130.059235][ T5881] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 130.083063][ T5881] usb 1-1: device descriptor read/8, error -71 [ 130.168382][ T8508] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 130.277264][ T8508] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 130.297598][ T8508] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 130.313896][ T8508] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 130.322575][ T5881] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 130.337907][ T8508] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 130.349717][ T5881] usb 1-1: device descriptor read/8, error -71 [ 130.469402][ T5881] usb usb1-port1: unable to enumerate USB device [ 130.626287][ T8551] tipc: Enabling of bearer rejected, already enabled [ 130.945959][ T8565] geneve2: entered promiscuous mode [ 130.969017][ T8565] geneve2: entered allmulticast mode [ 131.245789][ T8582] tipc: Enabling of bearer rejected, already enabled [ 131.518726][ T8593] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 131.615592][ T8593] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 131.677868][ T8593] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 131.763456][ T8586] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1015'. [ 131.792574][ T8593] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 131.838311][ T8606] geneve2: entered promiscuous mode [ 131.843705][ T8606] geneve2: entered allmulticast mode [ 131.914577][ T8593] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 131.960975][ T8610] batadv_slave_1: entered promiscuous mode [ 131.974511][ T8593] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 131.984155][ T8610] batadv_slave_1: left promiscuous mode [ 132.003132][ T8593] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 132.032661][ T8593] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 132.256004][ T8626] tipc: Enabling of bearer rejected, already enabled [ 132.361449][ T8632] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1032'. [ 132.735077][ T8649] tipc: Enabling of bearer rejected, already enabled [ 132.948629][ T8666] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1048'. [ 133.021264][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.027604][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.216560][ T8677] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 133.352255][ T8677] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 133.408670][ T8693] tipc: Enabling of bearer rejected, already enabled [ 133.473703][ T8677] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 133.588396][ T29] kauditd_printk_skb: 233 callbacks suppressed [ 133.588414][ T29] audit: type=1326 audit(1733438097.928:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8701 comm="syz.3.1062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e3e37ff19 code=0x7ffc0000 [ 133.623411][ T29] audit: type=1326 audit(1733438097.928:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8701 comm="syz.3.1062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e3e37ff19 code=0x7ffc0000 [ 133.646159][ T29] audit: type=1326 audit(1733438097.928:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8701 comm="syz.3.1062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f6e3e37ff19 code=0x7ffc0000 [ 133.648179][ T8705] vlan0: entered promiscuous mode [ 133.670805][ T29] audit: type=1326 audit(1733438097.998:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8701 comm="syz.3.1062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e3e37ff19 code=0x7ffc0000 [ 133.683475][ T8705] vlan0: entered allmulticast mode [ 133.697751][ T29] audit: type=1326 audit(1733438097.998:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8701 comm="syz.3.1062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e3e37ff19 code=0x7ffc0000 [ 133.724656][ T29] audit: type=1326 audit(1733438098.058:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8701 comm="syz.3.1062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f6e3e37ff19 code=0x7ffc0000 [ 133.747089][ T29] audit: type=1326 audit(1733438098.058:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8701 comm="syz.3.1062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e3e37ff19 code=0x7ffc0000 [ 133.769698][ T29] audit: type=1326 audit(1733438098.058:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8701 comm="syz.3.1062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e3e37ff19 code=0x7ffc0000 [ 133.792639][ T29] audit: type=1326 audit(1733438098.068:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8701 comm="syz.3.1062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6e3e31c129 code=0x7ffc0000 [ 133.815127][ T29] audit: type=1326 audit(1733438098.068:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8701 comm="syz.3.1062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e3e37ff19 code=0x7ffc0000 [ 133.842229][ T8677] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 133.844191][ T8708] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1065'. [ 134.001200][ T8677] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 134.046106][ T8677] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 134.107886][ T8677] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 134.127405][ T8677] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 134.199565][ T8723] tipc: Enabling of bearer rejected, already enabled [ 134.298472][ T8730] atomic_op ffff888029389198 conn xmit_atomic 0000000000000000 [ 134.680363][ T8741] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1079'. [ 134.956398][ T8736] capability: warning: `+}[@' uses 32-bit capabilities (legacy support in use) [ 135.047460][ T8757] 9pnet: Could not find request transport: f0xffffffffffffffff [ 135.166765][ T8764] tipc: Enabling of bearer rejected, already enabled [ 135.451713][ T8780] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 135.536491][ T8780] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 135.625108][ T8780] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 135.667612][ T8792] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1096'. [ 135.752279][ T8780] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 135.905093][ T8800] tipc: Enabling of bearer rejected, already enabled [ 136.496842][ T8825] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1112'. [ 136.578603][ T8830] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 136.591449][ T8831] tipc: Enabling of bearer rejected, already enabled [ 136.977675][ T8845] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1118'. [ 137.217305][ T8851] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1121'. [ 137.367594][ T8859] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1126'. [ 137.466486][ T8863] tipc: Enabling of bearer rejected, already enabled [ 138.466408][ T8780] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 138.531951][ T8780] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 138.594428][ T8780] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 138.620096][ T8893] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1139'. [ 138.629123][ T8893] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1139'. [ 138.693125][ T8895] bridge0: port 1(bridge_slave_0) entered disabled state [ 138.719173][ T8895] bridge0: port 2(bridge_slave_1) entered disabled state [ 138.818422][ T8780] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 138.833275][ T8893] geneve2: entered promiscuous mode [ 138.838531][ T8893] geneve2: entered allmulticast mode [ 139.077446][ T8902] tipc: Enabling of bearer rejected, already enabled [ 139.189130][ T29] kauditd_printk_skb: 76 callbacks suppressed [ 139.189149][ T29] audit: type=1326 audit(1733438103.528:638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.1.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb09177ff19 code=0x7ffc0000 [ 139.256202][ T29] audit: type=1326 audit(1733438103.528:639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.1.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb09177ff19 code=0x7ffc0000 [ 139.344009][ T29] audit: type=1326 audit(1733438103.538:640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.1.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7fb09177ff19 code=0x7ffc0000 [ 139.366433][ T29] audit: type=1326 audit(1733438103.538:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.1.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb09177ff19 code=0x7ffc0000 [ 139.388882][ T29] audit: type=1326 audit(1733438103.538:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.1.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb09177ff19 code=0x7ffc0000 [ 139.411915][ T29] audit: type=1326 audit(1733438103.548:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.1.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=71 compat=0 ip=0x7fb09177ff19 code=0x7ffc0000 [ 139.434738][ T29] audit: type=1326 audit(1733438103.548:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.1.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb09177ff19 code=0x7ffc0000 [ 139.457248][ T29] audit: type=1326 audit(1733438103.578:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.1.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb09177ff19 code=0x7ffc0000 [ 139.669729][ T8926] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1152'. [ 139.688814][ T8926] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1152'. [ 139.845444][ T29] audit: type=1326 audit(1733438104.198:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8938 comm="syz.3.1158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e3e37ff19 code=0x7ffc0000 [ 139.905144][ T29] audit: type=1326 audit(1733438104.198:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8938 comm="syz.3.1158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6e3e37ff19 code=0x7ffc0000 [ 139.929520][ T8935] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 139.950789][ T8941] tipc: Enabling of bearer rejected, already enabled [ 140.048293][ T8935] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 140.157615][ T8935] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 140.206320][ T8935] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 140.340859][ T8935] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 140.368521][ T8935] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 140.392747][ T8935] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 140.434738][ T8935] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 140.471740][ T8967] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1168'. [ 140.496579][ T8967] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1168'. [ 140.542783][ T8967] geneve2: entered promiscuous mode [ 140.549526][ T8967] geneve2: entered allmulticast mode [ 140.629960][ T8975] tipc: Enabling of bearer rejected, already enabled [ 141.099976][ T9006] IPv4: Oversized IP packet from 127.202.26.0 [ 141.159518][ T9008] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1185'. [ 141.223892][ T9011] tipc: Enabling of bearer rejected, already enabled [ 141.722444][ T9030] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 141.858542][ T9030] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 141.966241][ T9030] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 142.009192][ T9046] tipc: Enabling of bearer rejected, already enabled [ 142.039315][ T9030] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 142.175851][ T9030] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 142.231187][ T9030] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 142.281462][ T9030] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 142.315738][ T9030] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 142.804388][ T9074] __nla_validate_parse: 3 callbacks suppressed [ 142.804407][ T9074] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1213'. [ 142.841528][ T9074] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1213'. [ 142.923261][ T9048] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 142.939454][ T9048] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 142.972536][ T9078] tipc: Enabling of bearer rejected, already enabled [ 143.076907][ T9048] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 143.312912][ T9048] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 143.325414][ T9048] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 143.352997][ T9048] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 143.366458][ T9048] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 143.374160][ T9048] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 143.385591][ T9048] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 143.394163][ T9048] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 143.400388][ T9048] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 143.421478][ T9048] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 143.429669][ T9048] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 143.438699][ T9048] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 143.576341][ T9048] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 143.967981][ T9108] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1227'. [ 144.081000][ T9112] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 144.172043][ T9112] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 144.219040][ T5846] Bluetooth: hci0: command 0x0c1a tx timeout [ 144.239281][ T9120] tipc: Enabling of bearer rejected, already enabled [ 144.330718][ T9112] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 144.411346][ T9112] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 144.458072][ T29] kauditd_printk_skb: 89 callbacks suppressed [ 144.458089][ T29] audit: type=1326 audit(1733438108.808:737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9126 comm="syz.4.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 144.527441][ T29] audit: type=1326 audit(1733438108.808:738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9126 comm="syz.4.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 144.571337][ T9112] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.582240][ T29] audit: type=1326 audit(1733438108.808:739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9126 comm="syz.4.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 144.614260][ T9112] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.667171][ T9112] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.671491][ T29] audit: type=1326 audit(1733438108.818:740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9126 comm="syz.4.1233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 144.721306][ T9112] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.786155][ T29] audit: type=1326 audit(1733438108.848:741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9128 comm="syz.0.1234" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 144.859295][ T29] audit: type=1326 audit(1733438108.848:742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9128 comm="syz.0.1234" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 144.919180][ T29] audit: type=1326 audit(1733438108.848:743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9128 comm="syz.0.1234" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 144.968258][ T29] audit: type=1326 audit(1733438108.848:744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9128 comm="syz.0.1234" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 144.992323][ T9139] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1239'. [ 145.009180][ T29] audit: type=1326 audit(1733438108.848:745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9128 comm="syz.0.1234" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 145.040816][ T29] audit: type=1326 audit(1733438108.848:746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9128 comm="syz.0.1234" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 145.327384][ T9034] syz.1.1196: vmalloc error: size 536870912, failed to allocated page array size 1048576, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 145.350152][ T5846] Bluetooth: hci1: command 0x0c1a tx timeout [ 145.416355][ T9034] CPU: 0 UID: 0 PID: 9034 Comm: syz.1.1196 Not tainted 6.13.0-rc1-next-20241205-syzkaller #0 [ 145.426581][ T9034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 145.436661][ T9034] Call Trace: [ 145.439975][ T9034] [ 145.442924][ T9034] dump_stack_lvl+0x241/0x360 [ 145.447648][ T9034] ? __pfx_dump_stack_lvl+0x10/0x10 [ 145.452877][ T9034] ? __pfx__printk+0x10/0x10 [ 145.457503][ T9034] ? cpuset_print_current_mems_allowed+0x1f/0x350 [ 145.463947][ T9034] ? cpuset_print_current_mems_allowed+0x31e/0x350 [ 145.470474][ T9034] warn_alloc+0x278/0x410 [ 145.474816][ T9034] ? __pfx_warn_alloc+0x10/0x10 [ 145.479672][ T9034] ? translate_table+0x174/0x2260 [ 145.484705][ T9034] ? __get_vm_area_node+0x1c8/0x2d0 [ 145.489902][ T9034] ? __get_vm_area_node+0x25c/0x2d0 [ 145.495101][ T9034] __vmalloc_node_range_noprof+0x62f/0x1380 [ 145.501012][ T9034] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 145.507339][ T9034] ? rcu_is_watching+0x15/0xb0 [ 145.512099][ T9034] ? trace_kmalloc+0x1f/0xd0 [ 145.516683][ T9034] ? __kmalloc_node_noprof+0x2ad/0x4d0 [ 145.522145][ T9034] ? __kvmalloc_node_noprof+0x72/0x190 [ 145.527609][ T9034] __kvmalloc_node_noprof+0x142/0x190 [ 145.532981][ T9034] ? translate_table+0x174/0x2260 [ 145.538007][ T9034] translate_table+0x174/0x2260 [ 145.542882][ T9034] ? __pfx_translate_table+0x10/0x10 [ 145.548168][ T9034] ? __might_fault+0xaa/0x120 [ 145.552846][ T9034] ? __pfx_lock_release+0x10/0x10 [ 145.557869][ T9034] ? __virt_addr_valid+0x183/0x530 [ 145.562976][ T9034] ? __might_fault+0xaa/0x120 [ 145.567652][ T9034] ? __might_fault+0xc6/0x120 [ 145.572335][ T9034] ? _copy_from_user+0x99/0xc0 [ 145.577096][ T9034] ? copy_from_sockptr_offset+0x6b/0xb0 [ 145.582642][ T9034] do_ipt_set_ctl+0xe3d/0x1250 [ 145.587414][ T9034] ? __pfx___mutex_trylock_common+0x10/0x10 [ 145.593307][ T9034] ? __pfx_do_ipt_set_ctl+0x10/0x10 [ 145.598505][ T9034] ? __pfx_lock_release+0x10/0x10 [ 145.603527][ T9034] ? rcu_is_watching+0x15/0xb0 [ 145.608286][ T9034] ? trace_contention_end+0x3c/0x120 [ 145.613577][ T9034] ? __mutex_unlock_slowpath+0x21e/0x790 [ 145.619212][ T9034] ? __pfx___mutex_lock+0x10/0x10 [ 145.624231][ T9034] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 145.630208][ T9034] ? smc_setsockopt+0x1c3/0xe50 [ 145.635055][ T9034] ? __pfx___mutex_lock+0x10/0x10 [ 145.640087][ T9034] nf_setsockopt+0x295/0x2c0 [ 145.644684][ T9034] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 145.650637][ T9034] smc_setsockopt+0x275/0xe50 [ 145.655322][ T9034] ? __pfx_smc_setsockopt+0x10/0x10 [ 145.660516][ T9034] ? aa_sock_opt_perm+0x79/0x120 [ 145.665458][ T9034] ? __pfx_smc_setsockopt+0x10/0x10 [ 145.670653][ T9034] do_sock_setsockopt+0x3af/0x720 [ 145.675691][ T9034] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 145.681238][ T9034] ? __fget_files+0x395/0x410 [ 145.685913][ T9034] ? __fget_files+0x2a/0x410 [ 145.690507][ T9034] __x64_sys_setsockopt+0x1ee/0x280 [ 145.695710][ T9034] do_syscall_64+0xf3/0x230 [ 145.700209][ T9034] ? clear_bhb_loop+0x35/0x90 [ 145.704884][ T9034] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 145.710772][ T9034] RIP: 0033:0x7fb09177ff19 [ 145.715195][ T9034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 145.734797][ T9034] RSP: 002b:00007fb09256e058 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 145.743233][ T9034] RAX: ffffffffffffffda RBX: 00007fb091945fa0 RCX: 00007fb09177ff19 [ 145.751209][ T9034] RDX: 0000000000000040 RSI: 0004000000000000 RDI: 0000000000000003 [ 145.759176][ T9034] RBP: 00007fb0917f3986 R08: 0000000000000298 R09: 0000000000000000 [ 145.767142][ T9034] R10: 0000000020000300 R11: 0000000000000246 R12: 0000000000000000 [ 145.775123][ T9034] R13: 0000000000000000 R14: 00007fb091945fa0 R15: 00007ffd38e867b8 [ 145.783104][ T9034] [ 145.795159][ T9034] Mem-Info: [ 145.796268][ T9149] tipc: Enabling of bearer rejected, already enabled [ 145.798430][ T9034] active_anon:5308 inactive_anon:3910 isolated_anon:0 [ 145.798430][ T9034] active_file:11020 inactive_file:38222 isolated_file:0 [ 145.798430][ T9034] unevictable:768 dirty:4 writeback:0 [ 145.798430][ T9034] slab_reclaimable:11052 slab_unreclaimable:94146 [ 145.798430][ T9034] mapped:28855 shmem:4631 pagetables:766 [ 145.798430][ T9034] sec_pagetables:0 bounce:0 [ 145.798430][ T9034] kernel_misc_reclaimable:0 [ 145.798430][ T9034] free:1308350 free_pcp:3746 free_cma:0 [ 145.894406][ T5846] Bluetooth: hci3: command 0x0c1a tx timeout [ 145.900659][ T5846] Bluetooth: hci2: command 0x0c1a tx timeout [ 145.906736][ T5846] Bluetooth: hci4: command 0x0c1a tx timeout [ 145.913185][ T9034] Node 0 active_anon:19332kB inactive_anon:15440kB active_file:44080kB inactive_file:152816kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:115420kB dirty:16kB writeback:0kB shmem:16788kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11012kB pagetables:2964kB sec_pagetables:0kB all_unreclaimable? no [ 145.947360][ T9034] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 145.977622][ T9034] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 146.014846][ T9034] lowmem_reserve[]: 0 2465 2466 0 0 [ 146.021870][ T9034] Node 0 DMA32 free:1307616kB boost:0kB min:34200kB low:42748kB high:51296kB reserved_highatomic:0KB active_anon:17096kB inactive_anon:9236kB active_file:44080kB inactive_file:151988kB unevictable:1536kB writepending:16kB present:3129332kB managed:2552772kB mlocked:0kB bounce:0kB free_pcp:23772kB local_pcp:2056kB free_cma:0kB [ 146.155269][ T9034] lowmem_reserve[]: 0 0 0 0 0 [ 146.185661][ T9034] Node 0 Normal free:0kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:36kB inactive_anon:4kB active_file:0kB inactive_file:828kB unevictable:0kB writepending:0kB present:1048580kB managed:876kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB [ 146.217820][ T9164] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1249'. [ 146.226973][ T9158] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1247'. [ 146.246024][ T9034] lowmem_reserve[]: 0 0 0 0 0 [ 146.251841][ T9164] batadv1: entered promiscuous mode [ 146.253014][ T9034] Node 1 [ 146.257723][ T9164] batadv1: entered allmulticast mode [ 146.274922][ T9034] Normal free:3909688kB boost:0kB min:55688kB low:69608kB high:83528kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 146.310632][ T9034] lowmem_reserve[]: 0 0 0 0 0 [ 146.312318][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout [ 146.315458][ T9034] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 146.334800][ T9034] Node 0 DMA32: 18*4kB (UME) 9*8kB (UM) 1*16kB (U) 3*32kB (UME) 301*64kB (ME) 200*128kB (UME) 149*256kB (UM) 106*512kB (UME) 75*1024kB (UME) 32*2048kB (UME) 251*4096kB (UM) = 1307968kB [ 146.354391][ T9034] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 146.362752][ T9158] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1247'. [ 146.366637][ T9034] Node 1 Normal: 208*4kB (UME) 63*8kB (UME) 52*16kB (UME) 212*32kB (UME) 95*64kB (UME) 27*128kB (UME) 10*256kB (UME) 7*512kB (UME) 4*1024kB (UM) 3*2048kB (UE) 946*4096kB (M) = 3909688kB [ 146.394741][ T9034] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 146.404990][ T9034] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 146.430651][ T9034] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 146.443506][ T9034] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 146.453702][ T9034] 50623 total pagecache pages [ 146.460104][ T9034] 0 pages in swap cache [ 146.471231][ T9034] Free swap = 124684kB [ 146.476387][ T9034] Total swap = 124996kB [ 146.486834][ T9034] 2097051 pages RAM [ 146.490731][ T9034] 0 pages HighMem/MovableOnly [ 146.520992][ T9034] 427008 pages reserved [ 146.525183][ T9034] 0 pages cma reserved [ 146.557476][ T9170] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1253'. [ 146.765797][ T9176] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 146.790894][ T9182] tipc: Enabling of bearer rejected, already enabled [ 146.862151][ T9176] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 147.051636][ T9176] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 147.146877][ T9176] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 147.419006][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout [ 147.496641][ T9217] tipc: Enabling of bearer rejected, already enabled [ 147.510027][ T9220] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1269'. [ 147.716715][ T9229] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1275'. [ 147.979633][ T5836] Bluetooth: hci4: command 0x0c1a tx timeout [ 147.979652][ T5846] Bluetooth: hci2: command 0x0c1a tx timeout [ 147.979687][ T5846] Bluetooth: hci3: command 0x0c1a tx timeout [ 148.033193][ T9246] __nla_validate_parse: 2 callbacks suppressed [ 148.033211][ T9246] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1282'. [ 148.083540][ T9248] tipc: Enabling of bearer rejected, already enabled [ 148.222334][ T9255] binfmt_misc: register: failed to install interpreter file ./file0 [ 148.282719][ T9258] capability: warning: `syz.0.1289' uses deprecated v2 capabilities in a way that may be insecure [ 148.379541][ T5846] Bluetooth: hci0: command 0x0c1a tx timeout [ 148.478320][ T9267] netlink: 'syz.0.1292': attribute type 1 has an invalid length. [ 148.520990][ T9267] netlink: 83992 bytes leftover after parsing attributes in process `syz.0.1292'. [ 148.635542][ T9276] tipc: Enabling of bearer rejected, already enabled [ 148.641390][ T9280] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1298'. [ 148.988673][ T9296] Illegal XDP return value 4294967282 on prog (id 586) dev N/A, expect packet loss! [ 149.106095][ T9296] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 149.115580][ T9296] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 149.124914][ T9296] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 149.134197][ T9296] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 149.143867][ T9296] vxlan0: entered promiscuous mode [ 149.150514][ T9296] vxlan0: entered allmulticast mode [ 149.164816][ T9296] netdevsim netdevsim1 eth0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 149.173342][ T9296] netdevsim netdevsim1 eth1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 149.182040][ T9296] netdevsim netdevsim1 eth2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 149.190557][ T9296] netdevsim netdevsim1 eth3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 149.212295][ T9308] tipc: Enabling of bearer rejected, already enabled [ 149.225725][ T9309] smc: net device bond0 applied user defined pnetid SYZ0 [ 149.245117][ T9309] netlink: 116 bytes leftover after parsing attributes in process `syz.0.1311'. [ 149.266534][ T9309] smc: net device bond0 erased user defined pnetid SYZ0 [ 149.499728][ T5844] Bluetooth: hci1: command 0x0c1a tx timeout [ 149.655042][ T29] kauditd_printk_skb: 30 callbacks suppressed [ 149.655071][ T29] audit: type=1326 audit(1733438114.008:777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9331 comm="syz.3.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e3e37ff19 code=0x7ffc0000 [ 149.727795][ T29] audit: type=1326 audit(1733438114.008:778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9331 comm="syz.3.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f6e3e37ff19 code=0x7ffc0000 [ 149.739268][ T9334] tipc: Enabling of bearer rejected, already enabled [ 149.773821][ T29] audit: type=1326 audit(1733438114.008:779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9331 comm="syz.3.1324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e3e37ff19 code=0x7ffc0000 [ 149.786213][ T9176] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 149.852539][ T9176] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 149.886951][ T9176] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 149.933182][ T9176] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 149.983179][ T9329] bridge0: port 3(syz_tun) entered blocking state [ 150.011271][ T9329] bridge0: port 3(syz_tun) entered disabled state [ 150.017951][ T9329] syz_tun: entered allmulticast mode [ 150.055200][ T9329] syz_tun: entered promiscuous mode [ 150.061457][ T5844] Bluetooth: hci3: command 0x0c1a tx timeout [ 150.069626][ T5844] Bluetooth: hci4: command 0x0c1a tx timeout [ 150.072068][ T9329] bridge0: port 3(syz_tun) entered blocking state [ 150.075647][ T5844] Bluetooth: hci2: command 0x0c1a tx timeout [ 150.082288][ T9329] bridge0: port 3(syz_tun) entered forwarding state [ 150.243399][ T9349] syz_tun: entered promiscuous mode [ 150.300400][ T9349] vlan2: entered promiscuous mode [ 150.390109][ T9349] syz_tun: left promiscuous mode [ 150.450510][ T9365] pim6reg1: entered promiscuous mode [ 150.456473][ T9365] pim6reg1: entered allmulticast mode [ 150.474284][ T9367] tipc: Enabling of bearer rejected, already enabled [ 150.570643][ T9371] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 150.723067][ T9371] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 150.831965][ T9371] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 150.864470][ T9392] ieee802154 phy1 wpan1: encryption failed: -22 [ 150.897230][ T9371] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 150.933689][ T9393] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1350'. [ 150.971930][ T9397] netlink: 'syz.0.1353': attribute type 10 has an invalid length. [ 150.990340][ T9399] tipc: Enabling of bearer rejected, already enabled [ 151.000975][ T9397] bridge0: port 3(team0) entered blocking state [ 151.024674][ T9397] bridge0: port 3(team0) entered disabled state [ 151.037806][ T9397] team0: entered allmulticast mode [ 151.044618][ T9397] team_slave_0: entered allmulticast mode [ 151.056977][ T29] audit: type=1326 audit(1733438115.408:780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9400 comm="syz.3.1356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e3e37ff19 code=0x7ffc0000 [ 151.086317][ T9397] team_slave_1: entered allmulticast mode [ 151.098113][ T9397] team0: entered promiscuous mode [ 151.113452][ T29] audit: type=1326 audit(1733438115.408:781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9400 comm="syz.3.1356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e3e37ff19 code=0x7ffc0000 [ 151.136483][ T9397] team_slave_0: entered promiscuous mode [ 151.142642][ T9397] team_slave_1: entered promiscuous mode [ 151.150341][ T29] audit: type=1326 audit(1733438115.408:782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9400 comm="syz.3.1356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6e3e37ff19 code=0x7ffc0000 [ 151.228179][ T29] audit: type=1326 audit(1733438115.418:783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9400 comm="syz.3.1356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e3e37ff19 code=0x7ffc0000 [ 151.289860][ T29] audit: type=1326 audit(1733438115.418:784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9400 comm="syz.3.1356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e3e37ff19 code=0x7ffc0000 [ 151.338033][ T29] audit: type=1326 audit(1733438115.418:785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9400 comm="syz.3.1356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6e3e37ff19 code=0x7ffc0000 [ 151.338444][ T9411] batadv_slave_1: entered promiscuous mode [ 151.390476][ T29] audit: type=1326 audit(1733438115.438:786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9400 comm="syz.3.1356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e3e37ff19 code=0x7ffc0000 [ 151.409743][ T9411] batadv_slave_1: left promiscuous mode [ 151.869892][ T9433] tipc: Enabling of bearer rejected, already enabled [ 152.735718][ T9460] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1384'. [ 152.752022][ T9460] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1384'. [ 152.820534][ T9462] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 152.900481][ T9462] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 153.026344][ T9469] tipc: Enabling of bearer rejected, already enabled [ 153.087527][ T9462] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 153.175407][ T9462] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 153.294984][ T9477] wireguard0: entered promiscuous mode [ 153.329067][ T9477] wireguard0: entered allmulticast mode [ 153.360714][ T9462] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.380954][ T9462] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.400305][ T9462] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.416033][ T9462] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.918459][ T9500] netlink: 'syz.0.1400': attribute type 3 has an invalid length. [ 154.012306][ T9504] tipc: Enabling of bearer rejected, already enabled [ 154.162156][ T9371] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 154.179248][ T9371] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 154.193130][ T9371] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 154.206947][ T9371] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 154.467209][ T9525] wg2: entered promiscuous mode [ 154.476224][ T9525] wg2: entered allmulticast mode [ 154.979790][ T9542] tipc: Enabling of bearer rejected, already enabled [ 155.152114][ T9549] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 155.188369][ T29] kauditd_printk_skb: 29 callbacks suppressed [ 155.188385][ T29] audit: type=1326 audit(1733438119.538:816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9553 comm="syz.0.1420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 155.216883][ C0] vkms_vblank_simulate: vblank timer overrun [ 155.258631][ T29] audit: type=1326 audit(1733438119.588:817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9553 comm="syz.0.1420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 155.280930][ C0] vkms_vblank_simulate: vblank timer overrun [ 155.310564][ T9549] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 155.319324][ T29] audit: type=1326 audit(1733438119.658:818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9553 comm="syz.0.1420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 155.342764][ T29] audit: type=1326 audit(1733438119.658:819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9553 comm="syz.0.1420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 155.364994][ C0] vkms_vblank_simulate: vblank timer overrun [ 155.371746][ T29] audit: type=1326 audit(1733438119.658:820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9553 comm="syz.0.1420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 155.394702][ T29] audit: type=1326 audit(1733438119.678:821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9553 comm="syz.0.1420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=310 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 155.416935][ C0] vkms_vblank_simulate: vblank timer overrun [ 155.423622][ T29] audit: type=1326 audit(1733438119.678:822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9553 comm="syz.0.1420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 155.449277][ T29] audit: type=1326 audit(1733438119.678:823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9553 comm="syz.0.1420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 155.509153][ T9549] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 155.636413][ T9549] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 155.804080][ T9549] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 155.860882][ T9549] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 155.904673][ T9549] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 155.956992][ T9549] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 155.999656][ T9584] 9pnet_fd: Insufficient options for proto=fd [ 156.032800][ T29] audit: type=1326 audit(1733438120.388:824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9586 comm="syz.1.1429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb09177ff19 code=0x7ffc0000 [ 156.083342][ T29] audit: type=1326 audit(1733438120.438:825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9586 comm="syz.1.1429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb09177ff19 code=0x7ffc0000 [ 156.284841][ T9599] tipc: Enabling of bearer rejected, already enabled [ 156.571883][ T9607] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1436'. [ 156.591583][ T9607] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 156.605745][ T9607] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 156.620154][ T9607] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 156.644844][ T9607] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 157.028615][ T9626] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 157.174210][ T25] hid (null): unknown global tag 0x11 [ 157.185403][ T25] hid-generic 0005:0007:0005.0001: ignoring exceeding usage max [ 157.239188][ T9633] tipc: Enabling of bearer rejected, already enabled [ 157.247973][ T25] hid-generic 0005:0007:0005.0001: unexpected long global item [ 157.266667][ T9626] 9pnet: Could not find request transport: f [ 157.289643][ T25] hid-generic 0005:0007:0005.0001: probe with driver hid-generic failed with error -22 [ 157.431725][ T9621] infiniband syz0: set active [ 157.441151][ T9621] infiniband syz0: added bond0 [ 157.468365][ T9638] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 157.605168][ T9621] RDS/IB: syz0: added [ 157.611641][ T9638] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 157.645906][ T9621] smc: adding ib device syz0 with port count 1 [ 157.675948][ T9621] smc: ib device syz0 port 1 has pnetid [ 157.839765][ T9638] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 157.979927][ T9638] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 158.543832][ T9666] tipc: Enabling of bearer rejected, already enabled [ 159.386857][ T9717] binfmt_misc: register: failed to install interpreter file ./file0 [ 159.650161][ T9728] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1490'. [ 160.298200][ T9761] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1504'. [ 160.312272][ T29] kauditd_printk_skb: 85 callbacks suppressed [ 160.312289][ T29] audit: type=1326 audit(1733438124.668:911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9755 comm="syz.0.1501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 160.319678][ T9761] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1504'. [ 160.376580][ T29] audit: type=1326 audit(1733438124.718:912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9751 comm="syz.0.1501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd9b4f1c129 code=0x7ffc0000 [ 160.401540][ T29] audit: type=1326 audit(1733438124.718:913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9751 comm="syz.0.1501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 160.424341][ T29] audit: type=1326 audit(1733438124.718:914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9751 comm="syz.0.1501" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9b4f7ff19 code=0x7ffc0000 [ 160.473925][ T9638] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 160.505292][ T9638] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 160.538084][ T9638] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 160.585952][ T9638] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 160.701482][ T9776] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1511'. [ 160.924716][ T29] audit: type=1326 audit(1733438125.278:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9790 comm="syz.2.1519" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd8f397ff19 code=0x0 [ 161.177152][ T9807] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 161.193144][ T29] audit: type=1326 audit(1733438125.548:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9808 comm="syz.1.1525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb09177ff19 code=0x7ffc0000 [ 161.223094][ T29] audit: type=1326 audit(1733438125.548:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9808 comm="syz.1.1525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb09177ff19 code=0x7ffc0000 [ 161.251152][ T29] audit: type=1326 audit(1733438125.548:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9808 comm="syz.1.1525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7fb09177ff19 code=0x7ffc0000 [ 161.278697][ T9811] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1526'. [ 161.329717][ T9807] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 161.396816][ T29] audit: type=1326 audit(1733438125.748:919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9808 comm="syz.1.1525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb09177ff19 code=0x7ffc0000 [ 161.399108][ T9807] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 161.427262][ T29] audit: type=1326 audit(1733438125.748:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9808 comm="syz.1.1525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb09177ff19 code=0x7ffc0000 [ 161.560365][ T9807] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 161.693245][ T9807] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 161.731328][ T9807] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 161.768804][ T9807] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 161.824256][ T9807] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 161.867760][ T9835] openvswitch: netlink: Flow key attr not present in new flow. [ 161.969124][ T9841] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1538'. [ 162.504784][ T9872] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1553'. [ 162.523161][ T9870] siw: device registration error -23 [ 163.316733][ T9914] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 163.341986][ T9918] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1567'. [ 163.387623][ T9914] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 163.533361][ T9914] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 163.670296][ T9914] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 163.807604][ T9914] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 163.818715][ T9945] 9pnet_fd: Insufficient options for proto=fd [ 163.844272][ T9914] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 163.878181][ T9914] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 163.921365][ T9914] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 163.958231][ T9950] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1582'. [ 164.465325][ T9978] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1595'. [ 164.647081][ T9986] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 164.674135][ T9986] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 165.133487][T10003] netlink: 256 bytes leftover after parsing attributes in process `syz.4.1607'. [ 165.303083][T10009] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 165.982637][T10014] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1610'. [ 166.167841][T10009] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 166.234095][T10009] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 166.320633][T10009] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 166.435747][T10009] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 166.456200][T10009] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 166.474460][T10009] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 166.489952][T10009] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 166.532296][T10040] sch_tbf: burst 4398 is lower than device lo mtu (65550) ! [ 166.611628][T10041] 9pnet_fd: Insufficient options for proto=fd [ 166.822854][T10049] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1625'. [ 167.951053][T10081] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1638'. [ 168.189276][T10086] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.281818][T10086] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.397448][T10086] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.425070][T10106] xt_TCPMSS: Only works on TCP SYN packets [ 168.509557][T10086] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.571458][T10110] macvtap0: entered promiscuous mode [ 168.591732][T10110] macvtap0: left promiscuous mode [ 168.610652][T10116] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1653'. [ 168.676532][T10086] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 168.729993][T10086] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 168.744836][T10118] netlink: 'syz.4.1654': attribute type 27 has an invalid length. [ 168.805249][ T29] kauditd_printk_skb: 126 callbacks suppressed [ 168.805267][ T29] audit: type=1326 audit(1733438133.158:1047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10117 comm="syz.4.1654" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff53fd7ff19 code=0x0 [ 168.971042][T10118] bridge0: port 2(bridge_slave_1) entered disabled state [ 168.979467][T10118] bridge0: port 1(bridge_slave_0) entered disabled state [ 169.149641][T10118] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 169.179266][T10118] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 169.331274][T10146] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1667'. [ 169.347783][T10118] netdevsim netdevsim4 eth0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 169.357142][T10118] netdevsim netdevsim4 eth1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 169.365718][T10118] netdevsim netdevsim4 eth2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 169.374605][T10118] netdevsim netdevsim4 eth3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 169.383407][T10118] geneve2: left promiscuous mode [ 169.388589][T10118] geneve2: left allmulticast mode [ 169.397959][T10118] wireguard0: left promiscuous mode [ 169.403449][T10118] wireguard0: left allmulticast mode [ 169.413642][T10086] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 169.428690][T10086] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 169.550543][T10149] macvtap0: entered promiscuous mode [ 169.564955][T10149] macvtap0: left promiscuous mode [ 169.684222][T10156] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1672'. [ 169.778158][T10156] bond0: (slave bond_slave_0): Releasing backup interface [ 170.325867][T10188] macvtap0: entered promiscuous mode [ 170.339984][T10188] macvtap0: left promiscuous mode [ 170.345352][T10194] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1690'. [ 170.354916][T10194] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1690'. [ 170.452992][ T29] audit: type=1326 audit(1733438134.808:1048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10197 comm="syz.3.1692" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6e3e37ff19 code=0x0 [ 170.475582][T10194] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1690'. [ 170.487112][T10194] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1690'. [ 170.619626][T10194] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1690'. [ 170.630491][T10194] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1690'. [ 170.851626][T10222] hub 9-0:1.0: USB hub found [ 170.857846][T10222] hub 9-0:1.0: 1 port detected [ 171.405275][T10204] syz.1.1694: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 171.423524][T10204] CPU: 0 UID: 0 PID: 10204 Comm: syz.1.1694 Not tainted 6.13.0-rc1-next-20241205-syzkaller #0 [ 171.433802][T10204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 171.443876][T10204] Call Trace: [ 171.447164][T10204] [ 171.450090][T10204] dump_stack_lvl+0x241/0x360 [ 171.454766][T10204] ? __pfx_dump_stack_lvl+0x10/0x10 [ 171.459959][T10204] ? __pfx__printk+0x10/0x10 [ 171.464543][T10204] ? cpuset_print_current_mems_allowed+0x1f/0x350 [ 171.470952][T10204] ? cpuset_print_current_mems_allowed+0x31e/0x350 [ 171.477449][T10204] warn_alloc+0x278/0x410 [ 171.481797][T10204] ? __pfx_warn_alloc+0x10/0x10 [ 171.486670][T10204] ? hash_netiface_create+0x356/0x1040 [ 171.492126][T10204] ? __get_vm_area_node+0x1c8/0x2d0 [ 171.497320][T10204] ? __get_vm_area_node+0x25c/0x2d0 [ 171.502516][T10204] __vmalloc_node_range_noprof+0x62f/0x1380 [ 171.508422][T10204] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 171.514745][T10204] ? hash_netiface_create+0x356/0x1040 [ 171.520201][T10204] ? __get_vm_area_node+0x1c8/0x2d0 [ 171.525396][T10204] ? __get_vm_area_node+0x25c/0x2d0 [ 171.530608][T10204] __vmalloc_node_range_noprof+0x53a/0x1380 [ 171.536521][T10204] ? hash_netiface_create+0x356/0x1040 [ 171.541975][T10204] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 171.548308][T10204] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 171.554635][T10204] ? rcu_is_watching+0x15/0xb0 [ 171.559394][T10204] ? trace_kmalloc+0x1f/0xd0 [ 171.563974][T10204] ? __kmalloc_node_noprof+0x2ad/0x4d0 [ 171.569434][T10204] ? __kvmalloc_node_noprof+0x72/0x190 [ 171.574918][T10204] __kvmalloc_node_noprof+0x142/0x190 [ 171.580306][T10204] ? hash_netiface_create+0x356/0x1040 [ 171.585784][T10204] hash_netiface_create+0x356/0x1040 [ 171.591077][T10204] ? __pfx_hash_netiface_create+0x10/0x10 [ 171.596796][T10204] ip_set_create+0xa31/0x18b0 [ 171.601491][T10204] ? ip_set_create+0x424/0x18b0 [ 171.606361][T10204] ? __pfx_ip_set_create+0x10/0x10 [ 171.611486][T10204] ? nfnetlink_rcv_msg+0x225/0x1180 [ 171.616709][T10204] nfnetlink_rcv_msg+0xbec/0x1180 [ 171.621723][T10204] ? nfnetlink_rcv_msg+0x225/0x1180 [ 171.626923][T10204] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 171.632388][T10204] ? stack_trace_save+0x118/0x1d0 [ 171.637442][T10204] ? dev_hard_start_xmit+0x27a/0x7d0 [ 171.642723][T10204] ? __dev_queue_xmit+0x1b73/0x3f50 [ 171.647911][T10204] ? __netlink_deliver_tap+0x56b/0x7f0 [ 171.653367][T10204] ? netlink_deliver_tap+0x19d/0x1b0 [ 171.658647][T10204] ? netlink_unicast+0x7c4/0x990 [ 171.663576][T10204] ? netlink_sendmsg+0x8e4/0xcb0 [ 171.668516][T10204] ? __sock_sendmsg+0x221/0x270 [ 171.673358][T10204] ? ____sys_sendmsg+0x52a/0x7e0 [ 171.678285][T10204] ? __sys_sendmsg+0x269/0x350 [ 171.683070][T10204] netlink_rcv_skb+0x1e3/0x430 [ 171.687850][T10204] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 171.693321][T10204] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 171.698616][T10204] ? apparmor_capable+0x13b/0x1b0 [ 171.703649][T10204] ? bpf_lsm_capable+0x9/0x10 [ 171.708332][T10204] ? security_capable+0x7e/0x2d0 [ 171.713270][T10204] nfnetlink_rcv+0x297/0x2ab0 [ 171.717940][T10204] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 171.723666][T10204] ? __dev_queue_xmit+0x2f4/0x3f50 [ 171.728789][T10204] ? __dev_queue_xmit+0x1775/0x3f50 [ 171.733989][T10204] ? kasan_save_track+0x51/0x80 [ 171.738874][T10204] ? ____sys_sendmsg+0x52a/0x7e0 [ 171.743809][T10204] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 171.748917][T10204] ? __dev_queue_xmit+0x2f4/0x3f50 [ 171.754047][T10204] ? __pfx___dev_queue_xmit+0x10/0x10 [ 171.759420][T10204] ? ref_tracker_free+0x643/0x7e0 [ 171.764457][T10204] ? __asan_memcpy+0x40/0x70 [ 171.769055][T10204] ? __pfx_ref_tracker_free+0x10/0x10 [ 171.774429][T10204] ? netlink_deliver_tap+0x2e/0x1b0 [ 171.779646][T10204] ? skb_clone+0x240/0x390 [ 171.784072][T10204] ? __pfx_lock_release+0x10/0x10 [ 171.789090][T10204] ? __netlink_deliver_tap+0x7aa/0x7f0 [ 171.794557][T10204] ? netlink_deliver_tap+0x2e/0x1b0 [ 171.799749][T10204] netlink_unicast+0x7f6/0x990 [ 171.804521][T10204] ? __pfx_netlink_unicast+0x10/0x10 [ 171.809800][T10204] ? __virt_addr_valid+0x45f/0x530 [ 171.814902][T10204] ? __phys_addr_symbol+0x2f/0x70 [ 171.819932][T10204] ? __check_object_size+0x47a/0x730 [ 171.825228][T10204] netlink_sendmsg+0x8e4/0xcb0 [ 171.830012][T10204] ? __pfx_netlink_sendmsg+0x10/0x10 [ 171.835320][T10204] ? aa_sock_msg_perm+0x91/0x160 [ 171.840279][T10204] ? __pfx_netlink_sendmsg+0x10/0x10 [ 171.845569][T10204] __sock_sendmsg+0x221/0x270 [ 171.850246][T10204] ____sys_sendmsg+0x52a/0x7e0 [ 171.855019][T10204] ? __pfx_____sys_sendmsg+0x10/0x10 [ 171.860301][T10204] ? __fget_files+0x2a/0x410 [ 171.864888][T10204] ? __fget_files+0x2a/0x410 [ 171.869475][T10204] __sys_sendmsg+0x269/0x350 [ 171.874066][T10204] ? __pfx___sys_sendmsg+0x10/0x10 [ 171.879220][T10204] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 171.885559][T10204] ? do_syscall_64+0x100/0x230 [ 171.890331][T10204] ? do_syscall_64+0xb6/0x230 [ 171.895014][T10204] do_syscall_64+0xf3/0x230 [ 171.899516][T10204] ? clear_bhb_loop+0x35/0x90 [ 171.904188][T10204] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 171.910073][T10204] RIP: 0033:0x7fb09177ff19 [ 171.914478][T10204] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 171.934100][T10204] RSP: 002b:00007fb09256e058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 171.942505][T10204] RAX: ffffffffffffffda RBX: 00007fb091945fa0 RCX: 00007fb09177ff19 [ 171.950496][T10204] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003 [ 171.958459][T10204] RBP: 00007fb0917f3986 R08: 0000000000000000 R09: 0000000000000000 [ 171.966434][T10204] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 171.974395][T10204] R13: 0000000000000000 R14: 00007fb091945fa0 R15: 00007ffd38e867b8 [ 171.982386][T10204] [ 171.987120][T10204] Mem-Info: [ 171.990313][T10204] active_anon:4964 inactive_anon:633 isolated_anon:0 [ 171.990313][T10204] active_file:11037 inactive_file:38234 isolated_file:0 [ 171.990313][T10204] unevictable:768 dirty:19 writeback:0 [ 171.990313][T10204] slab_reclaimable:11108 slab_unreclaimable:96716 [ 171.990313][T10204] mapped:30045 shmem:2722 pagetables:750 [ 171.990313][T10204] sec_pagetables:0 bounce:0 [ 171.990313][T10204] kernel_misc_reclaimable:0 [ 171.990313][T10204] free:1287348 free_pcp:8134 free_cma:0 [ 172.035712][T10204] Node 0 active_anon:19856kB inactive_anon:2532kB active_file:44148kB inactive_file:152864kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:120180kB dirty:76kB writeback:0kB shmem:9352kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11044kB pagetables:3000kB sec_pagetables:0kB all_unreclaimable? no [ 172.071577][T10204] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 172.102506][T10204] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 172.129861][T10204] lowmem_reserve[]: 0 2465 2466 0 0 [ 172.135138][T10204] Node 0 DMA32 free:1224064kB boost:0kB min:34200kB low:42748kB high:51296kB reserved_highatomic:0KB active_anon:19796kB inactive_anon:2528kB active_file:44148kB inactive_file:152036kB unevictable:1536kB writepending:148kB present:3129332kB managed:2552772kB mlocked:0kB bounce:0kB free_pcp:32624kB local_pcp:27468kB free_cma:0kB [ 172.167038][T10204] lowmem_reserve[]: 0 0 0 0 0 [ 172.174485][T10204] Node 0 Normal free:0kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:36kB inactive_anon:4kB active_file:0kB inactive_file:828kB unevictable:0kB writepending:0kB present:1048580kB managed:876kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB [ 172.201360][T10204] lowmem_reserve[]: 0 0 0 0 0 [ 172.206062][T10204] Node 1 Normal free:3909940kB boost:0kB min:55688kB low:69608kB high:83528kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 172.235152][T10204] lowmem_reserve[]: 0 0 0 0 0 [ 172.239958][T10204] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 172.252840][T10204] Node 0 DMA32: 2*4kB (E) 3*8kB (UME) 2*16kB (ME) 46*32kB (UME) 326*64kB (UME) 46*128kB (ME) 27*256kB (M) 30*512kB (UME) 80*1024kB (UME) 31*2048kB (UE) 251*4096kB (UM) = 1224064kB [ 172.271682][T10204] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 172.283359][T10204] Node 1 Normal: 211*4kB (UME) 65*8kB (UME) 52*16kB (UME) 217*32kB (UME) 96*64kB (UME) 27*128kB (UME) 10*256kB (UME) 7*512kB (UME) 4*1024kB (UM) 3*2048kB (UE) 946*4096kB (M) = 3909940kB [ 172.302256][T10204] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 172.312296][T10204] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 172.321666][T10204] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 172.331307][T10204] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 172.340894][T10204] 51998 total pagecache pages [ 172.345582][T10204] 0 pages in swap cache [ 172.349852][T10204] Free swap = 124684kB [ 172.354014][T10204] Total swap = 124996kB [ 172.358151][T10204] 2097051 pages RAM [ 172.362033][T10204] 0 pages HighMem/MovableOnly [ 172.367531][T10204] 427008 pages reserved [ 172.371859][T10204] 0 pages cma reserved [ 173.434819][T10235] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 173.799022][ T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!! [ 174.427029][T10275] netlink: 80 bytes leftover after parsing attributes in process `syz.0.1718'. [ 175.326668][ T29] audit: type=1326 audit(1733438139.678:1049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10316 comm="syz.4.1736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 175.379084][ T29] audit: type=1326 audit(1733438139.678:1050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10316 comm="syz.4.1736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 175.421058][ T29] audit: type=1326 audit(1733438139.718:1051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10316 comm="syz.4.1736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 175.449717][ T29] audit: type=1326 audit(1733438139.718:1052): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=10316 comm="syz.4.1736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 175.494790][ T29] audit: type=1326 audit(1733438139.718:1053): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=10316 comm="syz.4.1736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 175.534740][ T29] audit: type=1326 audit(1733438139.718:1054): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=10316 comm="syz.4.1736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 175.563513][ T29] audit: type=1326 audit(1733438139.718:1055): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=10316 comm="syz.4.1736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 175.586616][ T29] audit: type=1326 audit(1733438139.718:1056): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=10316 comm="syz.4.1736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 175.610028][ T29] audit: type=1326 audit(1733438139.718:1057): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=10316 comm="syz.4.1736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 175.633269][ T29] audit: type=1326 audit(1733438139.718:1058): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=10316 comm="syz.4.1736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7ff53fd7ff19 code=0x7ffc0000 [ 176.156189][T10317] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 176.162377][T10317] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 176.168490][T10317] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 176.199144][T10317] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 176.205325][T10317] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 176.680375][T10352] netlink: 696 bytes leftover after parsing attributes in process `syz.4.1751'. [ 176.954820][T10364] bridge0: port 4(vlan2) entered blocking state [ 176.973791][T10364] bridge0: port 4(vlan2) entered disabled state [ 176.994107][T10364] vlan2: entered allmulticast mode [ 177.021242][T10364] vlan2: left allmulticast mode [ 177.425085][T10378] netlink: 'syz.1.1762': attribute type 3 has an invalid length. [ 177.509333][ T5846] Bluetooth: hci0: command 0x0c1a tx timeout [ 177.974364][T10398] netlink: 256 bytes leftover after parsing attributes in process `syz.4.1770'. [ 178.080909][T10402] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1772'. [ 178.219207][ T5846] Bluetooth: hci4: command 0x0c1a tx timeout [ 178.219257][ T5844] Bluetooth: hci3: command 0x0c1a tx timeout [ 178.225922][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout [ 178.235877][ T5843] Bluetooth: hci1: command 0x0c1a tx timeout [ 178.248259][T10410] netlink: 'syz.0.1774': attribute type 3 has an invalid length. [ 178.844239][T10438] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.1785'. [ 179.258381][T10452] netlink: 'syz.2.1791': attribute type 3 has an invalid length. [ 180.064898][T10483] netlink: 'syz.0.1804': attribute type 3 has an invalid length. [ 180.504995][T10504] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app [ 181.433735][T10436] warn_alloc: 9 callbacks suppressed [ 181.433750][T10436] syz.4.1784: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 181.456729][T10436] CPU: 0 UID: 0 PID: 10436 Comm: syz.4.1784 Not tainted 6.13.0-rc1-next-20241205-syzkaller #0 [ 181.466989][T10436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 181.477041][T10436] Call Trace: [ 181.480319][T10436] [ 181.483247][T10436] dump_stack_lvl+0x241/0x360 [ 181.487932][T10436] ? __pfx_dump_stack_lvl+0x10/0x10 [ 181.493134][T10436] ? __pfx__printk+0x10/0x10 [ 181.497732][T10436] ? cpuset_print_current_mems_allowed+0x1f/0x350 [ 181.504150][T10436] ? cpuset_print_current_mems_allowed+0x31e/0x350 [ 181.510657][T10436] warn_alloc+0x278/0x410 [ 181.515002][T10436] ? __pfx_warn_alloc+0x10/0x10 [ 181.519863][T10436] ? hash_netiface_create+0x356/0x1040 [ 181.525321][T10436] ? __get_vm_area_node+0x1c8/0x2d0 [ 181.530517][T10436] ? __get_vm_area_node+0x25c/0x2d0 [ 181.535715][T10436] __vmalloc_node_range_noprof+0x62f/0x1380 [ 181.541624][T10436] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 181.547951][T10436] ? hash_netiface_create+0x356/0x1040 [ 181.553409][T10436] ? __get_vm_area_node+0x1c8/0x2d0 [ 181.558604][T10436] ? __get_vm_area_node+0x25c/0x2d0 [ 181.563804][T10436] __vmalloc_node_range_noprof+0x53a/0x1380 [ 181.569698][T10436] ? hash_netiface_create+0x356/0x1040 [ 181.575157][T10436] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 181.581496][T10436] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 181.587821][T10436] ? rcu_is_watching+0x15/0xb0 [ 181.592583][T10436] ? trace_kmalloc+0x1f/0xd0 [ 181.597171][T10436] ? __kmalloc_node_noprof+0x2ad/0x4d0 [ 181.602629][T10436] ? __kvmalloc_node_noprof+0x72/0x190 [ 181.608090][T10436] __kvmalloc_node_noprof+0x142/0x190 [ 181.613464][T10436] ? hash_netiface_create+0x356/0x1040 [ 181.618926][T10436] hash_netiface_create+0x356/0x1040 [ 181.624221][T10436] ? __pfx_hash_netiface_create+0x10/0x10 [ 181.629938][T10436] ip_set_create+0xa31/0x18b0 [ 181.634615][T10436] ? ip_set_create+0x424/0x18b0 [ 181.639485][T10436] ? __pfx_ip_set_create+0x10/0x10 [ 181.644632][T10436] ? nfnetlink_rcv_msg+0x225/0x1180 [ 181.649827][T10436] nfnetlink_rcv_msg+0xbec/0x1180 [ 181.654856][T10436] ? nfnetlink_rcv_msg+0x225/0x1180 [ 181.660096][T10436] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 181.665597][T10436] netlink_rcv_skb+0x1e3/0x430 [ 181.670368][T10436] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 181.675826][T10436] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 181.681126][T10436] ? apparmor_capable+0x13b/0x1b0 [ 181.686169][T10436] ? bpf_lsm_capable+0x9/0x10 [ 181.690855][T10436] ? security_capable+0x7e/0x2d0 [ 181.695803][T10436] nfnetlink_rcv+0x297/0x2ab0 [ 181.700483][T10436] ? __pfx_validate_chain+0x10/0x10 [ 181.705710][T10436] ? mark_lock+0x9a/0x360 [ 181.710048][T10436] ? __pfx_validate_chain+0x10/0x10 [ 181.715253][T10436] ? __lock_acquire+0x1397/0x2100 [ 181.720284][T10436] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 181.725400][T10436] ? mark_lock+0x9a/0x360 [ 181.729734][T10436] ? __lock_acquire+0x1397/0x2100 [ 181.734785][T10436] ? __pfx_lock_release+0x10/0x10 [ 181.739811][T10436] ? netlink_deliver_tap+0x2e/0x1b0 [ 181.745032][T10436] ? __pfx_lock_release+0x10/0x10 [ 181.750085][T10436] ? netlink_deliver_tap+0x2e/0x1b0 [ 181.755467][T10436] netlink_unicast+0x7f6/0x990 [ 181.760258][T10436] ? __pfx_netlink_unicast+0x10/0x10 [ 181.765550][T10436] ? __virt_addr_valid+0x45f/0x530 [ 181.770665][T10436] ? __phys_addr_symbol+0x2f/0x70 [ 181.775687][T10436] ? __check_object_size+0x47a/0x730 [ 181.780973][T10436] netlink_sendmsg+0x8e4/0xcb0 [ 181.785751][T10436] ? __pfx_netlink_sendmsg+0x10/0x10 [ 181.791048][T10436] ? aa_sock_msg_perm+0x91/0x160 [ 181.795995][T10436] ? __pfx_netlink_sendmsg+0x10/0x10 [ 181.801279][T10436] __sock_sendmsg+0x221/0x270 [ 181.805958][T10436] ____sys_sendmsg+0x52a/0x7e0 [ 181.810739][T10436] ? __pfx_____sys_sendmsg+0x10/0x10 [ 181.816028][T10436] ? __fget_files+0x2a/0x410 [ 181.820620][T10436] ? __fget_files+0x2a/0x410 [ 181.825216][T10436] __sys_sendmsg+0x269/0x350 [ 181.829810][T10436] ? __pfx___sys_sendmsg+0x10/0x10 [ 181.834948][T10436] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 181.841300][T10436] ? do_syscall_64+0x100/0x230 [ 181.846064][T10436] ? do_syscall_64+0xb6/0x230 [ 181.850745][T10436] do_syscall_64+0xf3/0x230 [ 181.855253][T10436] ? clear_bhb_loop+0x35/0x90 [ 181.859952][T10436] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.865855][T10436] RIP: 0033:0x7ff53fd7ff19 [ 181.870267][T10436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 181.889878][T10436] RSP: 002b:00007ff53dbf6058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 181.898297][T10436] RAX: ffffffffffffffda RBX: 00007ff53ff45fa0 RCX: 00007ff53fd7ff19 [ 181.906265][T10436] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003 [ 181.914238][T10436] RBP: 00007ff53fdf3986 R08: 0000000000000000 R09: 0000000000000000 [ 181.922205][T10436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 181.930169][T10436] R13: 0000000000000000 R14: 00007ff53ff45fa0 R15: 00007ffc7bd1c9b8 [ 181.938149][T10436] [ 181.969066][T10436] Mem-Info: [ 181.972314][T10436] active_anon:4853 inactive_anon:638 isolated_anon:0 [ 181.972314][T10436] active_file:11037 inactive_file:38238 isolated_file:0 [ 181.972314][T10436] unevictable:768 dirty:64 writeback:0 [ 181.972314][T10436] slab_reclaimable:11090 slab_unreclaimable:96714 [ 181.972314][T10436] mapped:28891 shmem:2729 pagetables:764 [ 181.972314][T10436] sec_pagetables:0 bounce:0 [ 181.972314][T10436] kernel_misc_reclaimable:0 [ 181.972314][T10436] free:1293250 free_pcp:2951 free_cma:0 [ 182.065608][T10436] Node 0 active_anon:19220kB inactive_anon:2564kB active_file:44148kB inactive_file:152880kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:115448kB dirty:268kB writeback:0kB shmem:9392kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10960kB pagetables:3020kB sec_pagetables:0kB all_unreclaimable? no [ 182.126539][T10530] netlink: 'syz.2.1820': attribute type 3 has an invalid length. [ 182.188958][T10436] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 182.258276][T10436] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 182.383548][T10436] lowmem_reserve[]: 0 2465 2466 0 0 [ 182.388872][T10436] Node 0 DMA32 free:1242992kB boost:0kB min:34200kB low:42748kB high:51296kB reserved_highatomic:0KB active_anon:30184kB inactive_anon:2560kB active_file:44148kB inactive_file:152052kB unevictable:1536kB writepending:268kB present:3129332kB managed:2552772kB mlocked:0kB bounce:0kB free_pcp:9324kB local_pcp:272kB free_cma:0kB [ 182.455588][T10436] lowmem_reserve[]: 0 0 0 0 0 [ 182.461952][T10436] Node 0 Normal free:0kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:36kB inactive_anon:4kB active_file:0kB inactive_file:828kB unevictable:0kB writepending:0kB present:1048580kB managed:876kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB [ 182.496911][T10436] lowmem_reserve[]: 0 0 0 0 0 [ 182.506079][T10436] Node 1 Normal free:3909940kB boost:0kB min:55688kB low:69608kB high:83528kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 182.520472][T10544] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app [ 182.541206][T10436] lowmem_reserve[]: 0 0 0 0 0 [ 182.554450][T10436] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 182.583784][T10436] Node 0 DMA32: 115*4kB (ME) 16*8kB (UME) 21*16kB (UE) 197*32kB (UME) 482*64kB (UME) 85*128kB (UME) 28*256kB (UM) 53*512kB (UME) 58*1024kB (UME) 35*2048kB (UME) 251*4096kB (UM) = 1242428kB [ 182.627730][T10436] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 182.650437][T10436] Node 1 Normal: 211*4kB (UME) 65*8kB (UME) 51*16kB (UME) 215*32kB (UME) 98*64kB (UME) 27*128kB (UME) 10*256kB (UME) 7*512kB (UME) 4*1024kB (UM) 3*2048kB (UE) 946*4096kB (M) = 3909988kB [ 182.676363][T10436] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 182.686481][T10436] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 182.705908][T10436] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 182.727154][T10436] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 182.743547][T10436] 56007 total pagecache pages [ 182.748336][T10436] 0 pages in swap cache [ 182.752621][T10436] Free swap = 124684kB [ 182.757148][T10436] Total swap = 124996kB [ 182.766340][T10436] 2097051 pages RAM [ 182.774623][T10436] 0 pages HighMem/MovableOnly [ 182.786004][T10436] 427008 pages reserved [ 182.792622][T10436] 0 pages cma reserved [ 183.800523][T10579] netlink: 'syz.1.1839': attribute type 3 has an invalid length. [ 184.001489][T10592] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1845'. [ 184.105009][T10592] SET target dimension over the limit! [ 185.000878][T10619] netlink: 'syz.1.1856': attribute type 3 has an invalid length. [ 185.062278][T10622] page: refcount:2 mapcount:0 mapping:ffff88807e3f8eb8 index:0x5ee pfn:0x4bfcc [ 185.071889][T10622] memcg:ffff888029dac000 [ 185.076155][T10622] aops:ext4_da_aops ino:78e dentry name(?):"syz.RHadB0" [ 185.083114][T10622] flags: 0xfff20000000908(uptodate|active|owner_2|node=0|zone=1|lastcpupid=0x7ff) [ 185.092309][T10622] raw: 00fff20000000908 0000000000000000 dead000000000122 ffff88807e3f8eb8 [ 185.100886][T10622] raw: 00000000000005ee 0000000000000000 00000002ffffffff ffff888029dac000 [ 185.109455][T10622] page dumped because: VM_WARN_ON_ONCE_FOLIO(gen != -1) [ 185.116385][T10622] page_owner tracks the page as allocated [ 185.122713][T10622] page last allocated via order 0, migratetype Movable, gfp_mask 0x152c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE), pid 10595, tgid 10595 (syz.2.1847), ts 184996405482, free_ts 184383242222 [ 185.145636][T10622] post_alloc_hook+0x1f4/0x240 [ 185.150405][T10622] get_page_from_freelist+0x365c/0x37a0 [ 185.155945][T10622] __alloc_frozen_pages_noprof+0x292/0x710 [ 185.161742][T10622] alloc_pages_mpol+0x30e/0x550 [ 185.166591][T10622] alloc_pages_noprof+0x121/0x190 [ 185.171615][T10622] folio_alloc_noprof+0x1e/0x30 [ 185.176463][T10622] filemap_alloc_folio_noprof+0xe1/0x540 [ 185.182098][T10622] page_cache_ra_unbounded+0x30e/0x720 [ 185.187555][T10622] do_sync_mmap_readahead+0x499/0x970 [ 185.192918][T10622] filemap_fault+0x8a9/0x1490 [ 185.197587][T10622] __do_fault+0x135/0x390 [ 185.201911][T10622] handle_pte_fault+0xfcf/0x5ee0 [ 185.206846][T10622] handle_mm_fault+0x1106/0x1bb0 [ 185.211782][T10622] exc_page_fault+0x459/0x8b0 [ 185.216453][T10622] asm_exc_page_fault+0x26/0x30 [ 185.221299][T10622] page last free pid 10613 tgid 10613 stack trace: [ 185.227786][T10622] free_unref_folios+0xe40/0x18b0 [ 185.232809][T10622] folios_put_refs+0x76c/0x860 [ 185.237569][T10622] free_pages_and_swap_cache+0x2ea/0x690 [ 185.243198][T10622] tlb_flush_mmu+0x3a3/0x680 [ 185.247781][T10622] tlb_finish_mmu+0xd4/0x200 [ 185.252364][T10622] exit_mmap+0x52f/0xd50 [ 185.256602][T10622] __mmput+0x115/0x3c0 [ 185.260667][T10622] exit_mm+0x220/0x310 [ 185.264751][T10622] do_exit+0x9b2/0x28e0 [ 185.268922][T10622] do_group_exit+0x207/0x2c0 [ 185.273529][T10622] __x64_sys_exit_group+0x3f/0x40 [ 185.278557][T10622] x64_sys_call+0x26a8/0x26b0 [ 185.283233][T10622] do_syscall_64+0xf3/0x230 [ 185.287738][T10622] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 185.293731][T10622] ------------[ cut here ]------------ [ 185.299206][T10622] WARNING: CPU: 1 PID: 10622 at ./include/linux/mm_inline.h:265 lru_gen_add_folio+0xad2/0xc30 [ 185.309452][T10622] Modules linked in: [ 185.313351][T10622] CPU: 1 UID: 0 PID: 10622 Comm: syz-executor Not tainted 6.13.0-rc1-next-20241205-syzkaller #0 [ 185.323758][T10622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 185.333825][T10622] RIP: 0010:lru_gen_add_folio+0xad2/0xc30 [ 185.339557][T10622] Code: 44 89 c2 ff ba 01 00 00 00 e9 8b fa ff ff e8 35 89 c2 ff 4c 89 ff 48 c7 c6 c0 c8 13 8c e8 c6 41 0c 00 c6 05 f1 32 27 0e 01 90 <0f> 0b 90 e9 82 f6 ff ff 89 d9 80 e1 07 38 c1 0f 8c 19 f7 ff ff 48 [ 185.359176][T10622] RSP: 0000:ffffc900037573e0 EFLAGS: 00010046 [ 185.365247][T10622] RAX: 33e7150af62d2300 RBX: ffffea00012ff308 RCX: ffffc90003756f03 [ 185.373222][T10622] RDX: 0000000000000005 RSI: ffffffff8c0aa440 RDI: ffffffff8c5fbe80 [ 185.381195][T10622] RBP: ffffc900037574d8 R08: ffffffff9019d9b7 R09: 1ffffffff2033b36 [ 185.389171][T10622] R10: dffffc0000000000 R11: fffffbfff2033b37 R12: 0000000000000000 [ 185.397404][T10622] R13: 1ffffd400025fe60 R14: 0000020000000000 R15: ffffea00012ff300 [ 185.405374][T10622] FS: 000055556be55500(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 185.414301][T10622] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 185.420879][T10622] CR2: 00007fd9b5111520 CR3: 000000004640c000 CR4: 00000000003526f0 [ 185.428847][T10622] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 185.436817][T10622] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 185.444793][T10622] Call Trace: [ 185.448071][T10622] [ 185.451017][T10622] ? __warn+0x165/0x4d0 [ 185.455175][T10622] ? lru_gen_add_folio+0xad2/0xc30 [ 185.460289][T10622] ? report_bug+0x2b3/0x500 [ 185.464790][T10622] ? lru_gen_add_folio+0xad2/0xc30 [ 185.469901][T10622] ? handle_bug+0x60/0x90 [ 185.474231][T10622] ? exc_invalid_op+0x1a/0x50 [ 185.478912][T10622] ? asm_exc_invalid_op+0x1a/0x20 [ 185.483956][T10622] ? lru_gen_add_folio+0xad2/0xc30 [ 185.489069][T10622] ? lru_add+0x1b5/0xdb0 [ 185.493315][T10622] ? __pfx_lru_gen_add_folio+0x10/0x10 [ 185.498766][T10622] ? _raw_spin_lock_irqsave+0xe1/0x120 [ 185.504228][T10622] ? __pfx__raw_spin_lock_irqsave+0x10/0x10 [ 185.510121][T10622] ? lru_add+0x1b5/0xdb0 [ 185.514367][T10622] ? lru_add+0x1b5/0xdb0 [ 185.518607][T10622] lru_add+0x704/0xdb0 [ 185.522683][T10622] folio_batch_move_lru+0x26b/0x420 [ 185.527877][T10622] ? __pfx_lru_add+0x10/0x10 [ 185.532467][T10622] ? __pfx_folio_batch_move_lru+0x10/0x10 [ 185.538188][T10622] ? __lruvec_stat_mod_folio+0x7d/0x300 [ 185.543735][T10622] __folio_batch_add_and_move+0x5bb/0xd70 [ 185.549459][T10622] ? __lruvec_stat_mod_folio+0x7d/0x300 [ 185.555001][T10622] ? __pfx_lru_add+0x10/0x10 [ 185.559594][T10622] ? __pfx___folio_batch_add_and_move+0x10/0x10 [ 185.565836][T10622] ? folio_add_new_anon_rmap+0x844/0x1a30 [ 185.571557][T10622] ? folio_add_lru+0x2d5/0x3e0 [ 185.576322][T10622] do_wp_page+0x1cb1/0x49b0 [ 185.580833][T10622] ? do_wp_page+0x163e/0x49b0 [ 185.585541][T10622] ? __pfx_do_wp_page+0x10/0x10 [ 185.590420][T10622] ? __pfx_lock_acquire+0x10/0x10 [ 185.595446][T10622] ? rcu_is_watching+0x15/0xb0 [ 185.600225][T10622] ? do_raw_spin_lock+0x14f/0x370 [ 185.605281][T10622] ? __pfx___pte_offset_map+0x10/0x10 [ 185.610672][T10622] handle_pte_fault+0xfa5/0x5ee0 [ 185.615608][T10622] ? cgroup_rstat_updated+0x13b/0xc30 [ 185.621005][T10622] ? __pfx_cgroup_rstat_updated+0x10/0x10 [ 185.626735][T10622] ? __pfx_handle_pte_fault+0x10/0x10 [ 185.632118][T10622] ? __lock_acquire+0x1397/0x2100 [ 185.637163][T10622] ? reacquire_held_locks+0x3eb/0x690 [ 185.642535][T10622] ? lock_vma_under_rcu+0x34b/0x790 [ 185.647750][T10622] ? __pfx_reacquire_held_locks+0x10/0x10 [ 185.653478][T10622] handle_mm_fault+0x1106/0x1bb0 [ 185.658440][T10622] ? __pfx_handle_mm_fault+0x10/0x10 [ 185.663724][T10622] ? lock_vma_under_rcu+0x602/0x790 [ 185.668936][T10622] ? lock_vma_under_rcu+0x1dd/0x790 [ 185.674148][T10622] ? exc_page_fault+0x113/0x8b0 [ 185.679013][T10622] exc_page_fault+0x459/0x8b0 [ 185.683709][T10622] asm_exc_page_fault+0x26/0x30 [ 185.688569][T10622] RIP: 0033:0x7fd9b4f3eb87 [ 185.692984][T10622] Code: 00 00 00 80 3d b1 dc d3 00 00 0f 84 84 00 00 00 48 c7 c0 d8 ff ff ff c7 05 aa dc d3 00 00 00 00 00 64 48 8b 08 48 85 c9 74 0b <48> c7 81 80 08 00 00 01 00 00 00 48 c7 05 83 dc d3 00 00 00 00 00 [ 185.712590][T10622] RSP: 002b:00007ffeb2a14368 EFLAGS: 00010206 [ 185.718660][T10622] RAX: ffffffffffffffd8 RBX: 0000000000000000 RCX: 00007fd9b5110ca0 [ 185.726631][T10622] RDX: 0000000000000000 RSI: 0000000000000018 RDI: 000055556be557e0 [ 185.734605][T10622] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 185.742577][T10622] R10: 000055556be557d0 R11: 0000000000000246 R12: 0000000000000000 [ 185.750544][T10622] R13: 000000000002d277 R14: 000000000002d262 R15: 00007ffeb2a144f0 [ 185.758526][T10622] [ 185.761555][T10622] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 185.768827][T10622] CPU: 1 UID: 0 PID: 10622 Comm: syz-executor Not tainted 6.13.0-rc1-next-20241205-syzkaller #0 [ 185.779238][T10622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 185.789298][T10622] Call Trace: [ 185.792579][T10622] [ 185.795503][T10622] dump_stack_lvl+0x241/0x360 [ 185.800188][T10622] ? __pfx_dump_stack_lvl+0x10/0x10 [ 185.805385][T10622] ? __pfx__printk+0x10/0x10 [ 185.809970][T10622] ? _printk+0xd5/0x120 [ 185.814125][T10622] ? __init_begin+0x41000/0x41000 [ 185.819150][T10622] ? vscnprintf+0x5d/0x90 [ 185.823474][T10622] panic+0x349/0x880 [ 185.827368][T10622] ? __warn+0x174/0x4d0 [ 185.831519][T10622] ? __pfx_panic+0x10/0x10 [ 185.835946][T10622] __warn+0x344/0x4d0 [ 185.839929][T10622] ? lru_gen_add_folio+0xad2/0xc30 [ 185.845040][T10622] report_bug+0x2b3/0x500 [ 185.849365][T10622] ? lru_gen_add_folio+0xad2/0xc30 [ 185.854475][T10622] handle_bug+0x60/0x90 [ 185.858629][T10622] exc_invalid_op+0x1a/0x50 [ 185.863133][T10622] asm_exc_invalid_op+0x1a/0x20 [ 185.867981][T10622] RIP: 0010:lru_gen_add_folio+0xad2/0xc30 [ 185.873697][T10622] Code: 44 89 c2 ff ba 01 00 00 00 e9 8b fa ff ff e8 35 89 c2 ff 4c 89 ff 48 c7 c6 c0 c8 13 8c e8 c6 41 0c 00 c6 05 f1 32 27 0e 01 90 <0f> 0b 90 e9 82 f6 ff ff 89 d9 80 e1 07 38 c1 0f 8c 19 f7 ff ff 48 [ 185.893320][T10622] RSP: 0000:ffffc900037573e0 EFLAGS: 00010046 [ 185.899390][T10622] RAX: 33e7150af62d2300 RBX: ffffea00012ff308 RCX: ffffc90003756f03 [ 185.907356][T10622] RDX: 0000000000000005 RSI: ffffffff8c0aa440 RDI: ffffffff8c5fbe80 [ 185.915323][T10622] RBP: ffffc900037574d8 R08: ffffffff9019d9b7 R09: 1ffffffff2033b36 [ 185.923290][T10622] R10: dffffc0000000000 R11: fffffbfff2033b37 R12: 0000000000000000 [ 185.931255][T10622] R13: 1ffffd400025fe60 R14: 0000020000000000 R15: ffffea00012ff300 [ 185.939235][T10622] ? lru_add+0x1b5/0xdb0 [ 185.943487][T10622] ? __pfx_lru_gen_add_folio+0x10/0x10 [ 185.948943][T10622] ? _raw_spin_lock_irqsave+0xe1/0x120 [ 185.954395][T10622] ? __pfx__raw_spin_lock_irqsave+0x10/0x10 [ 185.960280][T10622] ? lru_add+0x1b5/0xdb0 [ 185.964524][T10622] ? lru_add+0x1b5/0xdb0 [ 185.968763][T10622] lru_add+0x704/0xdb0 [ 185.972838][T10622] folio_batch_move_lru+0x26b/0x420 [ 185.978031][T10622] ? __pfx_lru_add+0x10/0x10 [ 185.982617][T10622] ? __pfx_folio_batch_move_lru+0x10/0x10 [ 185.988341][T10622] ? __lruvec_stat_mod_folio+0x7d/0x300 [ 185.993895][T10622] __folio_batch_add_and_move+0x5bb/0xd70 [ 185.999618][T10622] ? __lruvec_stat_mod_folio+0x7d/0x300 [ 186.005163][T10622] ? __pfx_lru_add+0x10/0x10 [ 186.009754][T10622] ? __pfx___folio_batch_add_and_move+0x10/0x10 [ 186.015995][T10622] ? folio_add_new_anon_rmap+0x844/0x1a30 [ 186.021712][T10622] ? folio_add_lru+0x2d5/0x3e0 [ 186.026502][T10622] do_wp_page+0x1cb1/0x49b0 [ 186.031005][T10622] ? do_wp_page+0x163e/0x49b0 [ 186.035687][T10622] ? __pfx_do_wp_page+0x10/0x10 [ 186.040544][T10622] ? __pfx_lock_acquire+0x10/0x10 [ 186.045560][T10622] ? rcu_is_watching+0x15/0xb0 [ 186.050322][T10622] ? do_raw_spin_lock+0x14f/0x370 [ 186.055344][T10622] ? __pfx___pte_offset_map+0x10/0x10 [ 186.060727][T10622] handle_pte_fault+0xfa5/0x5ee0 [ 186.065659][T10622] ? cgroup_rstat_updated+0x13b/0xc30 [ 186.071035][T10622] ? __pfx_cgroup_rstat_updated+0x10/0x10 [ 186.076750][T10622] ? __pfx_handle_pte_fault+0x10/0x10 [ 186.082122][T10622] ? __lock_acquire+0x1397/0x2100 [ 186.087154][T10622] ? reacquire_held_locks+0x3eb/0x690 [ 186.092523][T10622] ? lock_vma_under_rcu+0x34b/0x790 [ 186.097741][T10622] ? __pfx_reacquire_held_locks+0x10/0x10 [ 186.103468][T10622] handle_mm_fault+0x1106/0x1bb0 [ 186.108431][T10622] ? __pfx_handle_mm_fault+0x10/0x10 [ 186.113713][T10622] ? lock_vma_under_rcu+0x602/0x790 [ 186.118920][T10622] ? lock_vma_under_rcu+0x1dd/0x790 [ 186.124134][T10622] ? exc_page_fault+0x113/0x8b0 [ 186.128992][T10622] exc_page_fault+0x459/0x8b0 [ 186.133669][T10622] asm_exc_page_fault+0x26/0x30 [ 186.138525][T10622] RIP: 0033:0x7fd9b4f3eb87 [ 186.142935][T10622] Code: 00 00 00 80 3d b1 dc d3 00 00 0f 84 84 00 00 00 48 c7 c0 d8 ff ff ff c7 05 aa dc d3 00 00 00 00 00 64 48 8b 08 48 85 c9 74 0b <48> c7 81 80 08 00 00 01 00 00 00 48 c7 05 83 dc d3 00 00 00 00 00 [ 186.162534][T10622] RSP: 002b:00007ffeb2a14368 EFLAGS: 00010206 [ 186.168596][T10622] RAX: ffffffffffffffd8 RBX: 0000000000000000 RCX: 00007fd9b5110ca0 [ 186.176561][T10622] RDX: 0000000000000000 RSI: 0000000000000018 RDI: 000055556be557e0 [ 186.184525][T10622] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 186.192490][T10622] R10: 000055556be557d0 R11: 0000000000000246 R12: 0000000000000000 [ 186.200455][T10622] R13: 000000000002d277 R14: 000000000002d262 R15: 00007ffeb2a144f0 [ 186.208434][T10622] [ 186.211693][T10622] Kernel Offset: disabled [ 186.216015][T10622] Rebooting in 86400 seconds..