last executing test programs: 3.427187731s ago: executing program 0 (id=383): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) r2 = io_uring_setup(0x161a, &(0x7f0000000200)={0x0, 0x8, 0x100, 0x0, 0x130}) io_uring_register$IORING_REGISTER_BUFFERS2(r2, 0xf, &(0x7f0000001580)={0x1, 0x0, 0x0, &(0x7f0000001300)=[{&(0x7f0000000040)=""/155, 0x9b}], &(0x7f00000012c0)=[0x3]}, 0x20) 3.196674053s ago: executing program 0 (id=384): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x10) setpriority(0x1, 0x0, 0x2) 2.974747695s ago: executing program 0 (id=385): socket(0x2, 0x2, 0x0) r0 = socket(0x1e, 0x4, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000040000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001d80)={&(0x7f0000000040)='kmem_cache_free\x00', r2, 0x0, 0x10000000000000}, 0x18) set_mempolicy(0x1, 0x0, 0x4) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x401, 0xfffffffe, 0x0, 0xffffffff}, 0x10) close(r0) 2.50209534s ago: executing program 0 (id=386): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff}) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000000)=0x14) sendmsg$nl_route_sched(r1, &(0x7f0000006280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)=@newtaction={0x98, 0x30, 0x1, 0x4000000, 0x0, {0x0, 0x0, 0x6a00}, [{0x84, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x10000000, 0x0, 0x4}, 0x3, r3}}]}, {0x4, 0xa}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}, @m_mpls={0x30, 0x2, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x98}}, 0x4c040) 2.260553112s ago: executing program 0 (id=388): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0xe, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0, 0x0, 0x7}, 0x18) r1 = socket$netlink(0x10, 0x3, 0xf) bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x1, &(0x7f0000000000)=[{0x6, 0xf}]}, 0x10) openat$nci(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0) 1.878748912s ago: executing program 0 (id=391): bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e0000000000000005000000"], 0x48) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=@newlink={0x40, 0x10, 0x44b, 0x0, 0x0, {0x7a, 0x0, 0x0, 0x0, 0x8840}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @gre={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GRE_OFLAGS={0x6, 0x3, 0x80}, @IFLA_GRE_REMOTE={0x8, 0x7, @multicast2}]}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x4040000}, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00'}, 0x10) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ptype\x00') preadv(r3, &(0x7f0000000200)=[{&(0x7f0000000340)=""/212, 0xd4}], 0x1, 0x1a, 0x0) getsockopt$IP_VS_SO_GET_SERVICES(r3, 0x0, 0x482, &(0x7f0000000240)=""/67, &(0x7f0000000180)=0x43) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000001480)={'syzkaller0\x00', 0x7101}) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f}) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)) r4 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0) fcntl$setlease(r4, 0x400, 0x1) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/locks\x00', 0x0, 0x0) open(&(0x7f0000000040)='./file1\x00', 0x80, 0x24) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0) truncate(&(0x7f0000000900)='./file1\x00', 0xbf37) pread64(r5, &(0x7f00000002c0)=""/124, 0x7c, 0x7) 1.407203146s ago: executing program 1 (id=393): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x1a3) writev(r2, &(0x7f0000000200)=[{&(0x7f0000000380)='\f', 0x1}], 0x1) 1.245981805s ago: executing program 1 (id=394): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='br_fdb_add\x00', r1}, 0x10) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'bridge0\x00', 0x0}) sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000001c000100000000000000000007000000", @ANYRES32=r4, @ANYBLOB="4000aa000a0002"], 0x28}}, 0x0) 674.275215ms ago: executing program 1 (id=395): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)=ANY=[@ANYBLOB="380000000314010027bd7000000000000900020073797a32000000000800410083697700140033"], 0x38}}, 0x0) 546.908842ms ago: executing program 1 (id=396): writev(0xffffffffffffffff, 0x0, 0x0) r0 = memfd_secret(0x80000) fcntl$setlease(r0, 0x400, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000003c0)='kfree\x00'}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0) getsockname$packet(r3, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r4, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}, 0x1, 0xfffc}, 0x4000800) sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000003080)=@delchain={0x50, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x4, 0x1b}}, [@filter_kind_options=@f_flower={{0xb}, {0x20, 0x2, [@TCA_FLOWER_INDEV={0x14, 0x2, 'bond_slave_0\x00'}, @TCA_FLOWER_KEY_IPV4_SRC={0x8, 0xa, @initdev={0xac, 0x1e, 0x0, 0x0}}]}}]}, 0x50}, 0x1, 0x0, 0x0, 0x10}, 0x0) 216.708729ms ago: executing program 1 (id=397): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @rand_addr, 0x2}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4) r1 = fcntl$dupfd(r0, 0x0, r0) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4) sendmsg$WG_CMD_GET_DEVICE(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000002e80)={&(0x7f0000000340)=ANY=[], 0x2b08}}, 0x4004006) setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000100)=@ccm_128={{0x304}, "2697312e4e898ca7", "35e23ca3a988def7dfbd438c536346cd", "11398f4a", "50cc97386065eda9"}, 0x28) setsockopt$sock_int(r0, 0x1, 0x12, &(0x7f0000002080)=0x3, 0x4) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) gettid() seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, 0x0) syz_io_uring_setup(0xbdc, 0x0, 0x0, 0x0) getcwd(0x0, 0x0) sendmsg$ETHTOOL_MSG_PAUSE_GET(0xffffffffffffffff, 0x0, 0x0) memfd_secret(0x0) 0s ago: executing program 1 (id=398): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xffd, 0x7}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000040), &(0x7f0000000080)=r1}, 0x20) r2 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000, 0x0, 0x4000000}, 0x1c) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) syz_clone(0x40200080, 0x0, 0x0, 0x0, 0x0, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:45770' (ED25519) to the list of known hosts. syzkaller login: [ 129.207075][ T3307] cgroup: Unknown subsys name 'net' [ 129.400795][ T3307] cgroup: Unknown subsys name 'cpuset' [ 129.445103][ T3307] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 130.217769][ T3307] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 145.772411][ T3312] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 145.884311][ T3312] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 146.006145][ T3313] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 146.125940][ T3313] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 147.905240][ T3312] hsr_slave_0: entered promiscuous mode [ 147.917349][ T3312] hsr_slave_1: entered promiscuous mode [ 148.490365][ T3313] hsr_slave_0: entered promiscuous mode [ 148.503489][ T3313] hsr_slave_1: entered promiscuous mode [ 148.513564][ T3313] debugfs: 'hsr0' already exists in 'hsr' [ 148.516757][ T3313] Cannot create hsr debugfs directory [ 149.793000][ T3312] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 149.855738][ T3312] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 149.896757][ T3312] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 149.952434][ T3312] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 150.213884][ T3313] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 150.257107][ T3313] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 150.296056][ T3313] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 150.337259][ T3313] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 152.334915][ T3312] 8021q: adding VLAN 0 to HW filter on device bond0 [ 152.571643][ T3313] 8021q: adding VLAN 0 to HW filter on device bond0 [ 157.930616][ T3313] veth0_vlan: entered promiscuous mode [ 158.026053][ T3313] veth1_vlan: entered promiscuous mode [ 158.306091][ T3312] veth0_vlan: entered promiscuous mode [ 158.426221][ T3313] veth0_macvtap: entered promiscuous mode [ 158.456691][ T3312] veth1_vlan: entered promiscuous mode [ 158.528168][ T3313] veth1_macvtap: entered promiscuous mode [ 158.887817][ T3312] veth0_macvtap: entered promiscuous mode [ 158.996472][ T3312] veth1_macvtap: entered promiscuous mode [ 159.093236][ T112] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 159.133264][ T40] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 159.134386][ T40] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 159.134739][ T40] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 159.621305][ T14] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 159.622337][ T14] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 159.623160][ T14] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 159.623670][ T14] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 159.955980][ T3313] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 160.594784][ T3463] netlink: 'syz.1.3': attribute type 13 has an invalid length. [ 160.598242][ T3463] netlink: 'syz.1.3': attribute type 17 has an invalid length. [ 167.647106][ T30] audit: type=1326 audit(167.370:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3502 comm="syz.1.19" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 167.665253][ T30] audit: type=1326 audit(167.390:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3502 comm="syz.1.19" exe="/syz-executor" sig=0 arch=c00000b7 syscall=194 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 167.666077][ T30] audit: type=1326 audit(167.390:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3502 comm="syz.1.19" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 170.267485][ T3520] netlink: 4 bytes leftover after parsing attributes in process `syz.1.27'. [ 170.374935][ T3519] netlink: 4 bytes leftover after parsing attributes in process `syz.1.27'. [ 174.061299][ T3548] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 174.124425][ T3548] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 175.533014][ T3558] netlink: 'syz.1.40': attribute type 1 has an invalid length. [ 176.660762][ T3570] mmap: syz.0.46 (3570) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 177.172160][ T3577] netlink: 4 bytes leftover after parsing attributes in process `syz.1.48'. [ 177.191828][ T3577] netlink: 4 bytes leftover after parsing attributes in process `syz.1.48'. [ 182.663636][ T3613] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 183.827213][ T3613] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 183.836064][ T3613] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 183.856467][ T3613] netlink: 4 bytes leftover after parsing attributes in process `syz.1.64'. [ 184.141430][ T3631] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 185.055256][ T30] audit: type=1326 audit(184.780:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3641 comm="syz.1.72" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 185.072642][ T30] audit: type=1326 audit(184.780:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3641 comm="syz.1.72" exe="/syz-executor" sig=0 arch=c00000b7 syscall=424 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 185.090721][ T30] audit: type=1326 audit(184.780:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3641 comm="syz.1.72" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 187.405928][ T30] audit: type=1326 audit(187.130:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3647 comm="syz.0.74" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 187.415724][ T30] audit: type=1326 audit(187.140:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3647 comm="syz.0.74" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 187.436828][ T30] audit: type=1326 audit(187.150:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3647 comm="syz.0.74" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 187.440266][ T30] audit: type=1326 audit(187.160:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3647 comm="syz.0.74" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 187.440618][ T30] audit: type=1326 audit(187.160:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3647 comm="syz.0.74" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 187.470147][ T30] audit: type=1326 audit(187.190:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3647 comm="syz.0.74" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 187.491148][ T30] audit: type=1326 audit(187.210:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3647 comm="syz.0.74" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 187.666143][ T3650] $Hÿ: renamed from dummy0 (while UP) [ 187.762417][ T3650] $Hÿ: entered promiscuous mode [ 189.018877][ T3658] netlink: 'syz.0.79': attribute type 1 has an invalid length. [ 189.024232][ T3658] netlink: 224 bytes leftover after parsing attributes in process `syz.0.79'. [ 192.577762][ T3669] netlink: 'syz.0.83': attribute type 3 has an invalid length. [ 192.584524][ T3669] netlink: 'syz.0.83': attribute type 3 has an invalid length. [ 195.325079][ T3676] netlink: 20 bytes leftover after parsing attributes in process `syz.0.85'. [ 195.351775][ T3676] x_tables: ip_tables: udp match: only valid for protocol 17 [ 196.338152][ T30] kauditd_printk_skb: 9 callbacks suppressed [ 196.340266][ T30] audit: type=1326 audit(196.050:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3684 comm="syz.1.90" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 196.340812][ T30] audit: type=1326 audit(196.060:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3684 comm="syz.1.90" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 196.341133][ T30] audit: type=1326 audit(196.060:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3684 comm="syz.1.90" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 196.341424][ T30] audit: type=1326 audit(196.060:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3684 comm="syz.1.90" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 196.341685][ T30] audit: type=1326 audit(196.060:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3684 comm="syz.1.90" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 196.354139][ T30] audit: type=1326 audit(196.080:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3684 comm="syz.1.90" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 196.369640][ T30] audit: type=1326 audit(196.090:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3684 comm="syz.1.90" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 196.405647][ T30] audit: type=1326 audit(196.120:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3684 comm="syz.1.90" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 196.457780][ T30] audit: type=1326 audit(196.160:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3684 comm="syz.1.90" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 196.467677][ T30] audit: type=1326 audit(196.190:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3684 comm="syz.1.90" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 202.245110][ T3703] syz.1.98: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0 [ 202.250930][ T3703] CPU: 1 UID: 0 PID: 3703 Comm: syz.1.98 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT [ 202.251481][ T3703] Hardware name: linux,dummy-virt (DT) [ 202.251878][ T3703] Call trace: [ 202.252321][ T3703] show_stack+0x18/0x24 (C) [ 202.253344][ T3703] dump_stack_lvl+0x78/0x90 [ 202.253690][ T3703] dump_stack+0x18/0x24 [ 202.254056][ T3703] warn_alloc+0x124/0x1a8 [ 202.254327][ T3703] __vmalloc_node_range_noprof+0x7e4/0x804 [ 202.254588][ T3703] vmalloc_user_noprof+0x98/0xa8 [ 202.254854][ T3703] xskq_create+0x64/0x98 [ 202.255143][ T3703] xsk_setsockopt+0x1f4/0x320 [ 202.255408][ T3703] do_sock_setsockopt+0xa0/0x18c [ 202.255680][ T3703] __sys_setsockopt+0x80/0xfc [ 202.255935][ T3703] __arm64_sys_setsockopt+0x28/0x38 [ 202.256209][ T3703] invoke_syscall+0x48/0x110 [ 202.256482][ T3703] el0_svc_common.constprop.0+0x40/0xe0 [ 202.256748][ T3703] do_el0_svc+0x1c/0x28 [ 202.257007][ T3703] el0_svc+0x34/0x10c [ 202.257261][ T3703] el0t_64_sync_handler+0xa0/0xe4 [ 202.257523][ T3703] el0t_64_sync+0x1a4/0x1a8 [ 202.258141][ T3703] Mem-Info: [ 202.259413][ T3703] active_anon:11 inactive_anon:6364 isolated_anon:0 [ 202.259413][ T3703] active_file:1622 inactive_file:5799 isolated_file:0 [ 202.259413][ T3703] unevictable:768 dirty:18 writeback:0 [ 202.259413][ T3703] slab_reclaimable:3271 slab_unreclaimable:36355 [ 202.259413][ T3703] mapped:5540 shmem:3695 pagetables:432 [ 202.259413][ T3703] sec_pagetables:0 bounce:0 [ 202.259413][ T3703] kernel_misc_reclaimable:0 [ 202.259413][ T3703] free:431894 free_pcp:5950 free_cma:8000 [ 202.260218][ T3703] Node 0 active_anon:44kB inactive_anon:25456kB active_file:6488kB inactive_file:23196kB unevictable:3072kB isolated(anon):0kB isolated(file):0kB mapped:22160kB dirty:72kB writeback:0kB shmem:14780kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:3008kB pagetables:1728kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 202.260983][ T3703] Node 0 DMA free:1727576kB boost:0kB min:22528kB low:28160kB high:33792kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:25456kB active_file:6488kB inactive_file:23196kB unevictable:3072kB writepending:72kB present:2097152kB managed:1988772kB mlocked:0kB bounce:0kB free_pcp:23800kB local_pcp:13848kB free_cma:32000kB [ 202.261739][ T3703] lowmem_reserve[]: 0 0 0 0 0 [ 202.262430][ T3703] Node 0 DMA: 52*4kB (UM) 35*8kB (UM) 9*16kB (UE) 7*32kB (UE) 10*64kB (UME) 13*128kB (UM) 12*256kB (UMC) 8*512kB (UM) 7*1024kB (UMC) 7*2048kB (UMEC) 414*4096kB (UMC) = 1727576kB [ 202.265486][ T3703] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 202.265707][ T3703] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=32768kB [ 202.265871][ T3703] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 202.266065][ T3703] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=64kB [ 202.266307][ T3703] 11112 total pagecache pages [ 202.266489][ T3703] 0 pages in swap cache [ 202.266642][ T3703] Free swap = 124996kB [ 202.266766][ T3703] Total swap = 124996kB [ 202.267035][ T3703] 524288 pages RAM [ 202.267176][ T3703] 0 pages HighMem/MovableOnly [ 202.267280][ T3703] 27095 pages reserved [ 202.267404][ T3703] 8192 pages cma reserved [ 202.267514][ T3703] 0 pages hwpoisoned [ 206.062319][ T3730] netlink: 7 bytes leftover after parsing attributes in process `syz.1.108'. [ 206.135413][ T3730] netlink: 7 bytes leftover after parsing attributes in process `syz.1.108'. [ 208.067750][ T3744] netlink: 404 bytes leftover after parsing attributes in process `syz.0.113'. [ 208.075022][ T3744] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 208.468915][ T3750] netlink: 52 bytes leftover after parsing attributes in process `syz.1.117'. [ 210.266425][ T3769] netlink: 'syz.1.125': attribute type 30 has an invalid length. [ 210.575071][ T3769] Zero length message leads to an empty skb [ 211.606491][ T30] kauditd_printk_skb: 15 callbacks suppressed [ 211.619347][ T30] audit: type=1326 audit(211.330:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3774 comm="syz.1.128" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 211.620261][ T30] audit: type=1326 audit(211.330:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3774 comm="syz.1.128" exe="/syz-executor" sig=0 arch=c00000b7 syscall=215 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 211.637861][ T30] audit: type=1326 audit(211.340:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3774 comm="syz.1.128" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 211.651651][ T30] audit: type=1326 audit(211.340:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3774 comm="syz.1.128" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 212.116781][ T30] audit: type=1326 audit(211.840:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3782 comm="syz.0.130" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 212.132017][ T30] audit: type=1326 audit(211.860:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3782 comm="syz.0.130" exe="/syz-executor" sig=0 arch=c00000b7 syscall=34 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 212.181324][ T30] audit: type=1326 audit(211.890:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3782 comm="syz.0.130" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 212.182076][ T30] audit: type=1326 audit(211.900:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3782 comm="syz.0.130" exe="/syz-executor" sig=0 arch=c00000b7 syscall=34 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 212.200064][ T30] audit: type=1326 audit(211.920:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3782 comm="syz.0.130" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 212.229447][ T30] audit: type=1326 audit(211.950:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3782 comm="syz.0.130" exe="/syz-executor" sig=0 arch=c00000b7 syscall=34 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 212.657570][ T3789] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 213.094387][ T3794] process 'syz.1.136' launched '/dev/fd/4' with NULL argv: empty string added [ 215.026254][ T3805] netlink: 'syz.0.138': attribute type 10 has an invalid length. [ 215.036120][ T3805] netdevsim netdevsim0 netdevsim3: entered promiscuous mode [ 216.946561][ T3813] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 219.217967][ T3823] netlink: 4 bytes leftover after parsing attributes in process `syz.0.148'. [ 220.599505][ T3825] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 220.755459][ T3825] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 220.991744][ T3825] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 221.200795][ T3825] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 221.356405][ T3834] netlink: 'syz.1.153': attribute type 21 has an invalid length. [ 221.686954][ T112] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 221.757780][ T1119] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 221.974388][ T12] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.222910][ T1119] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 226.615419][ T3873] netlink: 'syz.0.170': attribute type 21 has an invalid length. [ 226.630569][ T3873] netlink: 132 bytes leftover after parsing attributes in process `syz.0.170'. [ 227.003266][ T30] kauditd_printk_skb: 20 callbacks suppressed [ 227.003755][ T30] audit: type=1326 audit(226.730:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3878 comm="syz.0.173" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 227.017660][ T30] audit: type=1326 audit(226.740:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3878 comm="syz.0.173" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 227.023350][ T30] audit: type=1326 audit(226.750:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3878 comm="syz.0.173" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 227.066470][ T30] audit: type=1326 audit(226.760:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3878 comm="syz.0.173" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 227.079514][ T30] audit: type=1326 audit(226.800:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3878 comm="syz.0.173" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 227.095424][ T30] audit: type=1326 audit(226.820:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3878 comm="syz.0.173" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 227.103572][ T30] audit: type=1326 audit(226.830:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3878 comm="syz.0.173" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 227.113108][ T30] audit: type=1326 audit(226.830:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3878 comm="syz.0.173" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 227.122264][ T30] audit: type=1326 audit(226.840:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3878 comm="syz.0.173" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 227.130832][ T30] audit: type=1326 audit(226.840:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3878 comm="syz.0.173" exe="/syz-executor" sig=0 arch=c00000b7 syscall=158 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 227.846598][ T3884] netlink: 4 bytes leftover after parsing attributes in process `syz.0.175'. [ 228.057415][ T3884] hsr_slave_0 (unregistering): left promiscuous mode [ 228.736429][ T3887] netem: incorrect ge model size [ 228.744645][ T3887] netem: change failed [ 230.697627][ T3906] netlink: 4 bytes leftover after parsing attributes in process `syz.0.184'. [ 231.495376][ T3919] netlink: 7 bytes leftover after parsing attributes in process `syz.0.190'. [ 231.534526][ T3919] netlink: 7 bytes leftover after parsing attributes in process `syz.0.190'. [ 232.337489][ T3929] netlink: 'syz.1.195': attribute type 13 has an invalid length. [ 232.524463][ T3931] random: crng reseeded on system resumption [ 232.564641][ T30] kauditd_printk_skb: 50 callbacks suppressed [ 232.565405][ T30] audit: type=1326 audit(232.290:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3930 comm="syz.0.196" exe="/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x0 [ 232.573346][ T3929] gretap0: refused to change device tx_queue_len [ 232.573723][ T3929] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 232.872109][ T3933] dvmrp1: entered allmulticast mode [ 232.890965][ T3933] dvmrp1: left allmulticast mode [ 234.095040][ T30] audit: type=1326 audit(233.820:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3943 comm="syz.1.202" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 234.109061][ T30] audit: type=1326 audit(233.830:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3943 comm="syz.1.202" exe="/syz-executor" sig=0 arch=c00000b7 syscall=135 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 234.125873][ T30] audit: type=1326 audit(233.840:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3943 comm="syz.1.202" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 234.139544][ T30] audit: type=1326 audit(233.840:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3943 comm="syz.1.202" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 234.140944][ T30] audit: type=1326 audit(233.850:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3943 comm="syz.1.202" exe="/syz-executor" sig=0 arch=c00000b7 syscall=178 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 234.141497][ T30] audit: type=1326 audit(233.860:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3943 comm="syz.1.202" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 234.141967][ T30] audit: type=1326 audit(233.860:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3943 comm="syz.1.202" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 234.142425][ T30] audit: type=1326 audit(233.870:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3943 comm="syz.1.202" exe="/syz-executor" sig=0 arch=c00000b7 syscall=137 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 234.647807][ T30] audit: type=1326 audit(234.370:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3943 comm="syz.1.202" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 235.246151][ T3949] netlink: 28 bytes leftover after parsing attributes in process `syz.0.204'. [ 235.246687][ T3949] netlink: 28 bytes leftover after parsing attributes in process `syz.0.204'. [ 237.761588][ T3971] Driver unsupported XDP return value 0 on prog (id 16) dev N/A, expect packet loss! [ 238.639453][ T3978] netlink: 4 bytes leftover after parsing attributes in process `syz.0.216'. [ 238.646548][ T3978] netlink: 4 bytes leftover after parsing attributes in process `syz.0.216'. [ 238.972775][ T3980] bond_slave_0: entered promiscuous mode [ 238.973643][ T3980] bond_slave_1: entered promiscuous mode [ 238.982639][ T3980] macvtap1: entered allmulticast mode [ 238.990539][ T3980] bond0: entered allmulticast mode [ 238.991079][ T3980] bond_slave_0: entered allmulticast mode [ 238.991306][ T3980] bond_slave_1: entered allmulticast mode [ 239.011188][ T3980] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 239.030540][ T3980] bond0: left allmulticast mode [ 239.033304][ T3980] bond_slave_0: left allmulticast mode [ 239.041009][ T3980] bond_slave_1: left allmulticast mode [ 239.046884][ T3980] bond_slave_0: left promiscuous mode [ 239.047859][ T3980] bond_slave_1: left promiscuous mode [ 240.077286][ T30] audit: type=1326 audit(239.800:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3990 comm="syz.0.222" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 240.097677][ T30] audit: type=1326 audit(239.800:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3990 comm="syz.0.222" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 240.103089][ T30] audit: type=1326 audit(239.820:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3990 comm="syz.0.222" exe="/syz-executor" sig=0 arch=c00000b7 syscall=172 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 240.103428][ T30] audit: type=1326 audit(239.820:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3990 comm="syz.0.222" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 240.103816][ T30] audit: type=1326 audit(239.820:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3990 comm="syz.0.222" exe="/syz-executor" sig=0 arch=c00000b7 syscall=178 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 240.104135][ T30] audit: type=1326 audit(239.820:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3990 comm="syz.0.222" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 240.116089][ T30] audit: type=1326 audit(239.820:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3990 comm="syz.0.222" exe="/syz-executor" sig=0 arch=c00000b7 syscall=240 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 240.142023][ T30] audit: type=1326 audit(239.830:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3990 comm="syz.0.222" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 240.319950][ T30] audit: type=1326 audit(240.040:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3992 comm="syz.0.223" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 240.329122][ T30] audit: type=1326 audit(240.050:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3992 comm="syz.0.223" exe="/syz-executor" sig=0 arch=c00000b7 syscall=87 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 244.157772][ T4006] netlink: 4 bytes leftover after parsing attributes in process `syz.0.229'. [ 248.565611][ T4029] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 248.565611][ T4029] The task syz.0.238 (4029) triggered the difference, watch for misbehavior. [ 251.021852][ T4038] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 254.541153][ T4050] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 260.434100][ T30] kauditd_printk_skb: 1 callbacks suppressed [ 260.434856][ T30] audit: type=1326 audit(260.160:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4056 comm="syz.0.250" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 260.439622][ T30] audit: type=1326 audit(260.160:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4056 comm="syz.0.250" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 260.442748][ T30] audit: type=1326 audit(260.170:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4056 comm="syz.0.250" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 260.446689][ T30] audit: type=1326 audit(260.170:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4056 comm="syz.0.250" exe="/syz-executor" sig=0 arch=c00000b7 syscall=26 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 260.450704][ T30] audit: type=1326 audit(260.180:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4056 comm="syz.0.250" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 260.454559][ T30] audit: type=1326 audit(260.180:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4056 comm="syz.0.250" exe="/syz-executor" sig=0 arch=c00000b7 syscall=27 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 260.480183][ T30] audit: type=1326 audit(260.200:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4056 comm="syz.0.250" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 260.480943][ T30] audit: type=1326 audit(260.200:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4056 comm="syz.0.250" exe="/syz-executor" sig=0 arch=c00000b7 syscall=23 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 260.481293][ T30] audit: type=1326 audit(260.200:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4056 comm="syz.0.250" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 260.481608][ T30] audit: type=1326 audit(260.210:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4056 comm="syz.0.250" exe="/syz-executor" sig=0 arch=c00000b7 syscall=28 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 264.203502][ T4102] syzkaller1: entered promiscuous mode [ 264.204191][ T4102] syzkaller1: entered allmulticast mode [ 270.497107][ T30] kauditd_printk_skb: 12 callbacks suppressed [ 270.500487][ T30] audit: type=1326 audit(270.220:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4146 comm="syz.0.286" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 270.505152][ T30] audit: type=1326 audit(270.230:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4146 comm="syz.0.286" exe="/syz-executor" sig=0 arch=c00000b7 syscall=32 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 270.515439][ T30] audit: type=1326 audit(270.240:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4146 comm="syz.0.286" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 270.532155][ T30] audit: type=1326 audit(270.250:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4146 comm="syz.0.286" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 270.536926][ T30] audit: type=1326 audit(270.260:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4146 comm="syz.0.286" exe="/syz-executor" sig=0 arch=c00000b7 syscall=57 compat=0 ip=0xffff9675b72c code=0x7ffc0000 [ 270.544590][ T30] audit: type=1326 audit(270.260:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4146 comm="syz.0.286" exe="/syz-executor" sig=0 arch=c00000b7 syscall=115 compat=0 ip=0xffff96787548 code=0x7ffc0000 [ 270.744484][ T30] audit: type=1326 audit(270.460:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4146 comm="syz.0.286" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 270.987377][ T4152] netlink: 9 bytes leftover after parsing attributes in process `syz.0.288'. [ 271.003021][ T4152] gretap0: entered promiscuous mode [ 271.248124][ T4156] capability: warning: `syz.0.290' uses 32-bit capabilities (legacy support in use) [ 271.838254][ T4165] netlink: 8 bytes leftover after parsing attributes in process `syz.1.294'. [ 271.847860][ T4165] netlink: 4 bytes leftover after parsing attributes in process `syz.1.294'. [ 272.265014][ T30] audit: type=1326 audit(271.990:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4171 comm="syz.1.298" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 272.269926][ T30] audit: type=1326 audit(271.990:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4171 comm="syz.1.298" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 272.289677][ T30] audit: type=1326 audit(272.010:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4171 comm="syz.1.298" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 272.872327][ T4180] syz.0.302 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 275.737122][ T4196] netlink: 20 bytes leftover after parsing attributes in process `syz.0.308'. [ 275.835933][ T30] kauditd_printk_skb: 5 callbacks suppressed [ 275.836643][ T30] audit: type=1326 audit(275.560:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4197 comm="syz.1.309" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 275.849991][ T30] audit: type=1326 audit(275.570:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4197 comm="syz.1.309" exe="/syz-executor" sig=0 arch=c00000b7 syscall=85 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 275.861053][ T30] audit: type=1326 audit(275.580:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4197 comm="syz.1.309" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 275.861729][ T30] audit: type=1326 audit(275.580:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4197 comm="syz.1.309" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 275.862044][ T30] audit: type=1326 audit(275.590:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4197 comm="syz.1.309" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 275.876184][ T30] audit: type=1326 audit(275.600:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4197 comm="syz.1.309" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 275.883179][ T30] audit: type=1326 audit(275.600:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4197 comm="syz.1.309" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 275.890071][ T30] audit: type=1326 audit(275.610:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4197 comm="syz.1.309" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 275.896744][ T30] audit: type=1326 audit(275.620:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4197 comm="syz.1.309" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 275.897475][ T30] audit: type=1326 audit(275.620:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4197 comm="syz.1.309" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 276.213432][ T4203] netlink: 8 bytes leftover after parsing attributes in process `syz.0.311'. [ 278.034523][ T4218] netlink: 4 bytes leftover after parsing attributes in process `syz.1.318'. [ 278.892708][ T4225] ªªªªªª: renamed from vlan0 (while UP) [ 285.138641][ C0] hrtimer: interrupt took 678620 ns [ 286.516942][ T4264] syz.1.335 uses obsolete (PF_INET,SOCK_PACKET) [ 289.744466][ T30] kauditd_printk_skb: 31 callbacks suppressed [ 289.747513][ T30] audit: type=1326 audit(289.470:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4304 comm="syz.1.351" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 289.772286][ T30] audit: type=1326 audit(289.490:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4304 comm="syz.1.351" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 289.779348][ T30] audit: type=1326 audit(289.500:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4304 comm="syz.1.351" exe="/syz-executor" sig=0 arch=c00000b7 syscall=19 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 289.787972][ T30] audit: type=1326 audit(289.500:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4304 comm="syz.1.351" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 289.795087][ T30] audit: type=1326 audit(289.510:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4304 comm="syz.1.351" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 289.795418][ T30] audit: type=1326 audit(289.510:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4304 comm="syz.1.351" exe="/syz-executor" sig=0 arch=c00000b7 syscall=292 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 289.867697][ T30] audit: type=1326 audit(289.590:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4308 comm="syz.0.353" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 289.875455][ T30] audit: type=1326 audit(289.600:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4308 comm="syz.0.353" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 289.881039][ T30] audit: type=1326 audit(289.600:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4308 comm="syz.0.353" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 289.886168][ T30] audit: type=1326 audit(289.600:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4308 comm="syz.0.353" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9675ce28 code=0x7ffc0000 [ 292.136064][ T4323] netlink: 20 bytes leftover after parsing attributes in process `syz.1.358'. [ 293.367756][ T4337] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0 [ 294.055967][ T4342] netlink: 'syz.1.365': attribute type 30 has an invalid length. [ 296.037122][ T30] kauditd_printk_skb: 30 callbacks suppressed [ 296.043713][ T30] audit: type=1326 audit(295.760:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4353 comm="syz.1.370" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 296.060090][ T30] audit: type=1326 audit(295.760:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4353 comm="syz.1.370" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 296.061670][ T30] audit: type=1326 audit(295.770:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4353 comm="syz.1.370" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 296.081610][ T30] audit: type=1326 audit(295.810:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4353 comm="syz.1.370" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 296.090606][ T30] audit: type=1326 audit(295.810:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4353 comm="syz.1.370" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 296.117543][ T30] audit: type=1326 audit(295.810:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4353 comm="syz.1.370" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 296.118755][ T30] audit: type=1326 audit(295.810:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4353 comm="syz.1.370" exe="/syz-executor" sig=0 arch=c00000b7 syscall=7 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 296.119333][ T30] audit: type=1326 audit(295.830:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4353 comm="syz.1.370" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8a75ce28 code=0x7ffc0000 [ 303.467298][ T4383] netlink: 8 bytes leftover after parsing attributes in process `syz.1.378'. [ 303.469149][ T4383] netlink: 4 bytes leftover after parsing attributes in process `syz.1.378'. [ 308.836494][ T4428] netlink: 24 bytes leftover after parsing attributes in process `syz.1.396'. [ 310.158388][ T40] ================================================================== [ 310.161511][ T40] BUG: KASAN: invalid-access in __linkwatch_run_queue+0x180/0x2b8 [ 310.163322][ T40] Read at addr fdf0000015570a25 by task kworker/u8:2/40 [ 310.163999][ T40] Pointer tag: [fd], memory tag: [fe] [ 310.164108][ T40] [ 310.165203][ T40] CPU: 0 UID: 0 PID: 40 Comm: kworker/u8:2 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT [ 310.165864][ T40] Hardware name: linux,dummy-virt (DT) [ 310.166392][ T40] Workqueue: events_unbound linkwatch_event [ 310.167811][ T40] Call trace: [ 310.168206][ T40] show_stack+0x18/0x24 (C) [ 310.168810][ T40] dump_stack_lvl+0x78/0x90 [ 310.169094][ T40] print_report+0x108/0x61c [ 310.169309][ T40] kasan_report+0x88/0xac [ 310.169527][ T40] __do_kernel_fault+0x170/0x1c8 [ 310.169768][ T40] do_bad_area+0x68/0x78 [ 310.169981][ T40] do_tag_check_fault+0x34/0x44 [ 310.170235][ T40] do_mem_abort+0x44/0x94 [ 310.170468][ T40] el1_abort+0x40/0x60 [ 310.170690][ T40] el1h_64_sync_handler+0x50/0xac [ 310.170936][ T40] el1h_64_sync+0x6c/0x70 [ 310.171344][ T40] __linkwatch_run_queue+0x180/0x2b8 (P) [ 310.171574][ T40] linkwatch_event+0x30/0x40 [ 310.171780][ T40] process_one_work+0x178/0x2cc [ 310.171991][ T40] worker_thread+0x250/0x358 [ 310.172202][ T40] kthread+0x130/0x1fc [ 310.172405][ T40] ret_from_fork+0x10/0x20 [ 310.172915][ T40] [ 310.173388][ T40] The buggy address belongs to the physical page: [ 310.173953][ T40] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x18 pfn:0x55570 [ 310.174482][ T40] flags: 0x1ffc80000000000(node=0|zone=0|lastcpupid=0x7ff|kasantag=0x2) [ 310.175660][ T40] raw: 01ffc80000000000 ffffc1ffc0556908 fff000007f8f2040 0000000000000000 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 310.175852][ T40] raw: 0000000000000018 0000000000000000 00000000ffffffff 0000000000000000 [ 310.176049][ T40] page dumped because: kasan: bad access detected [ 310.176156][ T40] [ 310.176239][ T40] Memory state around the buggy address: [ 310.176565][ T40] fff0000015570800: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 310.176752][ T40] fff0000015570900: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 310.176907][ T40] >fff0000015570a00: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 310.177051][ T40] ^ [ 310.177372][ T40] fff0000015570b00: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 310.177510][ T40] fff0000015570c00: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 310.177667][ T40] ================================================================== [ 310.191312][ T40] Disabling lock debugging due to kernel taint [ 311.327052][ T112] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 311.446935][ T112] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 311.531264][ T112] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 311.654298][ T112] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 312.927464][ T112] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 313.004920][ T112] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 313.056761][ T112] bond0 (unregistering): Released all slaves [ 313.170056][ T112] hsr_slave_1: left promiscuous mode [ 313.184268][ T112] veth1_macvtap: left promiscuous mode [ 313.184707][ T112] veth0_macvtap: left promiscuous mode [ 314.780524][ T112] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 314.895150][ T112] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 315.050987][ T112] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 315.192789][ T112] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 316.346599][ T112] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 316.381153][ T112] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 316.433025][ T112] bond0 (unregistering): Released all slaves [ 316.735103][ T112] hsr_slave_0: left promiscuous mode [ 316.752056][ T112] hsr_slave_1: left promiscuous mode [ 316.775932][ T112] veth1_macvtap: left promiscuous mode [ 316.779807][ T112] veth0_macvtap: left promiscuous mode [ 316.782423][ T112] veth1_vlan: left promiscuous mode [ 316.784945][ T112] veth0_vlan: left promiscuous mode VM DIAGNOSIS: 21:39:51 Registers: info registers vcpu 0 CPU#0 PC=ffff80008141ee4c X00=0000000000000005 X01=0000000000000007 X02=00000048526718ba X03=ffff800080003e90 X04=0000000000800000 X05=0000004829dd1500 X06=0000004829447e80 X07=7fffffffffffffff X08=0000004829447e80 X09=ffff800082924680 X10=000000000000006b X11=0000000000000001 X12=003be468b2dd9d70 X13=00000ef4f0d5d77c X14=0000ffff96950000 X15=0000000000000001 X16=ffff800080000000 X17=fff07ffffcfd1000 X18=ffff800083cf3b50 X19=fff000007f8d8c80 X20=00000000007511a8 X21=0000000000000000 X22=000000482964d55c X23=0000000000000003 X24=7fffffffffffffff X25=fff000007f8cdacc X26=fff000007f8cdbf8 X27=fff000007f8cdbb8 X28=fff000007f8cdb78 X29=ffff800080003e90 X30=ffff80008017e294 SP=ffff800080003e90 PSTATE=204020c9 --C- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000000000000000 P01=0000000000000000 P02=0000000000000000 P03=0000000000000000 P04=0000000000000000 P05=0000000000000000 P06=0000000000000000 P07=0000000000000000 P08=0000000000000000 P09=0000000000000000 P10=0000000000000000 P11=0000000000000000 P12=0000000000000000 P13=0000000000000000 P14=0000000000000000 P15=0000000000000000 FFR=0000000000000000 Z00=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z01=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:000000000000a2bf:00000000fff88a7b Z02=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:b700000008000003:b7fffffff8000002 Z03=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:9500000001000000:8500000000000004 Z04=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:00000008000003b7:fffffff800000207 Z05=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000100000085:00000000000004b7 Z06=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000ffff8a956468:0000ffff8a956460 Z07=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000ffff8a956478:0000ffff8a956470 Z08=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z16=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000ffffe7927780:0000ffffe7927780 Z17=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffff80ffffffd0:0000ffffe7927750 Z18=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 info registers vcpu 1 CPU#1 PC=ffff8000808f0898 X00=0000000000000002 X01=0000000000000018 X02=ffff800082cf5018 X03=ffff800082abf0e8 X04=f0f00000032d4080 X05=0000000000000036 X06=000000000000003a X07=0000000000000000 X08=7f7f7f7f7f7f7f7f X09=ffff800082abf118 X10=0000000000000001 X11=ffff8000830d3e10 X12=ffff8000829ff210 X13=ffff8000830d3b7d X14=ffff8000830d3b88 X15=ffff8000830d39f0 X16=0000000000000000 X17=0000000000000000 X18=00000000ffffffff X19=f4f00000032c1009 X20=ffff8000808f0948 X21=f0f00000032d4080 X22=f4f00000032c1009 X23=ffff8000808f0948 X24=0000000000000023 X25=0000000000000001 X26=f9f000000316dc80 X27=0000000000000000 X28=0000000000000000 X29=ffff8000830d3c90 X30=ffff8000808f0970 SP=ffff8000830d3c90 PSTATE=814020c9 N--- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000000000000000 P01=0000000000000000 P02=0000000000000000 P03=0000000000000000 P04=0000000000000000 P05=0000000000000000 P06=0000000000000000 P07=0000000000000000 P08=0000000000000000 P09=0000000000000000 P10=0000000000000000 P11=0000000000000000 P12=0000000000000000 P13=0000000000000000 P14=0000000000000000 P15=0000000000000000 FFR=0000000000000000 Z00=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z01=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:000000000000a2bf:00000000fff88a7b Z02=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:b700000008000003:b7fffffff8000002 Z03=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:9500000001000000:8500000000000004 Z04=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:00000008000003b7:fffffff800000207 Z05=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000100000085:00000000000004b7 Z06=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000ffff8a956468:0000ffff8a956460 Z07=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000ffff8a956478:0000ffff8a956470 Z08=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z16=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000ffffe7927780:0000ffffe7927780 Z17=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffff80ffffffd0:0000ffffe7927750 Z18=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000