last executing test programs: 22.509361323s ago: executing program 0 (id=17693): creat(0x0, 0xd931d3864d39dca5) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x18, 0x4, &(0x7f0000000a40)=ANY=[@ANYBLOB="1801000000050000000000000000ea0485000000d000000095"], &(0x7f0000000a00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = syz_open_dev$usbfs(&(0x7f0000000080), 0xf, 0x8041) r5 = socket$netlink(0x10, 0x3, 0xc) bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) ioctl$USBDEVFS_ALLOC_STREAMS(r4, 0x8008551c, 0x0) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r6, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00) sendmsg$tipc(r7, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0) io_setup(0x9, &(0x7f0000000000)) 20.667011918s ago: executing program 0 (id=17697): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_serviced\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8=0x0, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) socket$can_raw(0x1d, 0x3, 0x1) getpeername$packet(0xffffffffffffffff, 0x0, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r4, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r4, @ANYRES64], 0x118) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x1000004, 0x50, 0xffffffffffffffff, 0xc006d000) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, 0x0) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x5a, 0x0}}], 0x1, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) 19.376803781s ago: executing program 0 (id=17700): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r2, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r2, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r6, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r7 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r7, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="180000007600"], 0x1c}], 0x1, 0x0, 0x0, 0x4004000}, 0x0) 17.28380726s ago: executing program 4 (id=17704): r0 = socket$packet(0x11, 0x3, 0x300) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$ethtool(0x0, r1) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000340)=0x2) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r5, 0x0, 0x0) setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48) 13.489742386s ago: executing program 0 (id=17708): mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x50, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff) sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) socket$inet_smc(0x2b, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_route(0x10, 0x3, 0x0) socket(0x200000000000011, 0x2, 0x0) r2 = syz_open_dev$sg(&(0x7f0000000280), 0x5dc, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="000000000f"]) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bridge0\x00'}) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFNL_MSG_ACCT_NEW(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000180)={0x40, 0x0, 0x7, 0x201, 0x0, 0x0, {0x1, 0x0, 0x8}, [@NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x3}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x4}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}]}, 0x40}, 0x1, 0x0, 0x0, 0x810}, 0x4004090) 13.123320046s ago: executing program 4 (id=17711): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r3, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r6, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) 11.70652136s ago: executing program 4 (id=17714): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='binder\x00', 0x0, 0x0) r4 = fspick(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) fsconfig$FSCONFIG_SET_BINARY(r4, 0x2, &(0x7f0000000340)='lowerdir', &(0x7f0000000400)="6bfc", 0x2) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000700)={r5}, 0xc) openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) syz_usb_connect(0x2, 0x0, 0x0, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="300000001000010021bd7000ffdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="858804000300000008001b000000000008000d0008"], 0x30}, 0x1, 0x0, 0x0, 0x40801}, 0x4000000) 10.113270827s ago: executing program 1 (id=17717): timer_create(0x3, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94) setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x14, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10) r4 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/asound/card1/oss_mixer\x00', 0x16527c7d18914f91, 0x0) r5 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/asound/card0/oss_mixer\x00', 0x0, 0x0) r6 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x1ff, 0x1501) ioctl$USBDEVFS_SUBMITURB(r6, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x80, &(0x7f00000004c0)={0x4b5a9da54893e123, 0x1, 0x2, 0x11}, 0x8, 0x200, 0x8, 0x0, 0x0, 0x0, 0x0}) dup3(r5, r4, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e27, 0xffffffff, @mcast2, 0x7}, 0x1c) r7 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$WG_CMD_SET_DEVICE(r7, 0x0, 0x40) 9.005114788s ago: executing program 1 (id=17720): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, 0xffffffffffffffff, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r5, &(0x7f0000000180)={0xa, 0x4e22, 0x0, @loopback}, 0x58) listen(r5, 0x5) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r6, 0x0, 0x0, 0x24040014, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @empty}, 0x1c) close_range(r5, 0xffffffffffffffff, 0x0) 7.092076192s ago: executing program 3 (id=17723): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) writev(r0, &(0x7f0000000040)=[{&(0x7f0000000380)="ea", 0x1}], 0x1) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r3, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r6, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) bind$bt_l2cap(0xffffffffffffffff, 0x0, 0x0) 7.090437829s ago: executing program 1 (id=17724): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) close_range(r2, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='pids.events\x00', 0x275a, 0x0) write$UHID_CREATE2(r3, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r3, 0x0) creat(&(0x7f0000000380)='./bus\x00', 0xbc) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r5, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r5, @ANYRES64=r4], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r5, 0x0) ioctl$KVM_X86_SETUP_MCE(r5, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) symlinkat(0x0, 0xffffffffffffff9c, 0x0) 6.648645716s ago: executing program 2 (id=17725): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r3, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r3, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r2, 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r6, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r7, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmsg$NL80211_CMD_SET_QOS_MAP(r3, 0x0, 0x10) 6.601760676s ago: executing program 1 (id=17726): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000380)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=0x0) r5 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0) flock(r5, 0x2) r6 = open(&(0x7f0000000300)='.\x00', 0x100000, 0x0) flock(r6, 0x1) r7 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0) flock(r7, 0x2) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(r4, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) 6.535096535s ago: executing program 0 (id=17727): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r5, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc) connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x7, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r5, 0x6, 0x14, &(0x7f0000000400)=0x1, 0x4) recvfrom(r5, 0x0, 0x0, 0x2, 0x0, 0x0) 6.51385884s ago: executing program 3 (id=17728): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x805, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r2, 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r6, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0) 6.447470253s ago: executing program 2 (id=17729): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = dup(r5) sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x4004}, 0x10000) r7 = socket$inet_tcp(0x2, 0x1, 0x0) sendmmsg$inet(r7, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40040) r8 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r8, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) 6.347662857s ago: executing program 2 (id=17730): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) socket$nl_sock_diag(0x10, 0x3, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = socket$inet_udp(0x2, 0x2, 0x0) close(r6) socket$netlink(0x10, 0x3, 0x0) writev(r5, &(0x7f00000000c0)=[{&(0x7f0000000140)="390000001100090468fe0700000000000700ff3f0800000045000e070000001419001a00", 0x24}], 0x1) write$binfmt_misc(r5, &(0x7f00000002c0), 0x15) splice(r4, 0x0, r6, 0x0, 0x19404, 0x0) 5.803305451s ago: executing program 3 (id=17731): rt_sigaction(0xd, &(0x7f0000000140)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000100)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r6, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r7, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000004500), 0x0, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=', @ANYRESHEX]) 5.551490966s ago: executing program 0 (id=17732): syz_emit_vhci(&(0x7f0000003780)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x3, 0x0, 0x4}}, 0x9) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000000c0)=0x7) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x14, 0x38, 0x1, 0x7fffc, 0x2, {0x7}}, 0x14}, 0x1, 0x0, 0x0, 0x404c850}, 0x4008094) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000100)=0x3) bpf$PROG_LOAD(0x5, 0x0, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000680)={'bridge0\x00', 0x0}) sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x300, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4800000010000104000000000007000000000000", @ANYRES32=r5, @ANYBLOB="3f00000006020400280012800b0001006272696467650000180002800c002e0003000000030000000500070008"], 0x48}, 0x1, 0x0, 0x0, 0x44000}, 0x0) syz_usb_connect(0x5, 0x0, 0x0, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x0}) r6 = syz_open_dev$swradio(0x0, 0x0, 0x2) ioctl$VIDIOC_G_TUNER(r6, 0xc054561d, &(0x7f0000000ac0)={0x3, "12f7f538cc9ad9f769d66e3d248161f81dd9cd911e9a080ba3b3d4d3ae2ae3ea"}) r7 = socket$nl_route(0x10, 0x3, 0x0) r8 = socket(0x200000000000011, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) syz_emit_vhci(&(0x7f0000000340)=@HCI_EVENT_PKT={0x4, @inquiry_info={{0x2, 0x2b}, {0x3, [{@none, 0x33, 0xf8, 0x5, "0e6017", 0x5}, {@any, 0x9, 0x0, 0xff, "38f38f", 0xa}, {@none, 0x0, 0x0, 0x9, 'a\t>', 0x6d}]}}}, 0x2e) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)) sendmsg$nl_route(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@RTM_NEWMDB={0x38, 0x54, 0x1e5, 0x0, 0xfffffffd, {0x7, r9}, [@MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x1, 0x1, 0x1, {@ip4=@loopback, 0x86dd}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0) 5.078251201s ago: executing program 4 (id=17733): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0xc}, 0x48) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x2001) mount(0x0, 0x0, 0x0, 0x1001, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) openat$vsock(0xffffffffffffff9c, &(0x7f0000000440), 0x40000, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f00000002c0)=@abs={0x0, 0x0, 0x8004e60}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r5}, 0x18) dup(0xffffffffffffffff) sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000340)=@newsa={0x184, 0x10, 0x713, 0x0, 0x0, {{@in=@loopback, @in6=@remote}, {@in6=@remote, 0x0, 0x32}, @in6=@mcast1, {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}, 0x0, 0x2}}]}, 0x184}}, 0x0) 4.910270689s ago: executing program 3 (id=17734): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x0, 0x0) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000400)=@file={0x0, './file0\x00'}, 0x6e) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, 0x0}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000680)=@newsa={0xf8, 0x10, 0x200, 0x70bd25, 0x25dfdbfe, {{@in=@empty, @in6=@mcast2, 0x4e23, 0x3, 0x4e21, 0x8f, 0x2, 0xa0, 0x1c0, 0x2f}, {@in=@rand_addr=0x64010102, 0x4d4, 0x32}, @in=@broadcast, {0x101, 0x2, 0x1, 0x9, 0x3, 0x7, 0x1, 0x50}, {0x8, 0x8, 0x6, 0x1d}, {0x8001, 0x9, 0x7}, 0x70bd26, 0x0, 0x2, 0x2, 0xa1, 0x1c}, [@replay_thresh={0x8, 0xb, 0x2}]}, 0xf8}}, 0x4000000) r3 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r3, &(0x7f0000000200)={0xa, 0x4e22, 0x0, @empty}, 0x1c) r4 = dup2(r3, r3) bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) ioctl$TIOCL_PASTESEL(r4, 0x541c, &(0x7f0000000040)) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000a00)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000838500000071000000950000000000000092e876903de13d6088ae77f9395849bffd5225d14a64a963953f79b8c509fd1f73bdae3ebaa5bd569362a66b818a257f09cb86bd988d35b7201f2dea7c5f71619d20defc41a14d4992ca1f7d741bccbcb333600d4874d305c419262824d48d3bb7bd9997549d8a492f"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$wireguard(&(0x7f00000003c0), 0xffffffffffffffff) sendmsg$WG_CMD_SET_DEVICE(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000007c0)={0xc4, r7, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PEERS={0x78, 0x8, 0x0, 0x1, [{0x28, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}]}, {0x4c, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @c_g}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x9, 0x7, @empty, 0x3}}, @WGPEER_A_ALLOWEDIPS={0x4}]}]}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @b}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0xc4}, 0x1, 0x0, 0x0, 0x4004840}, 0x40000) 3.906880519s ago: executing program 1 (id=17735): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$can_raw(r5, &(0x7f0000000100)={0x1d, r6}, 0x10) r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]}) setsockopt$CAN_RAW_FILTER(r5, 0x65, 0x1, &(0x7f0000000400)=[{{0x2, 0x1}, {0x1, 0x0, 0x1}}, {{0x3, 0x0, 0x1}, {0x1, 0x0, 0x0, 0x1}}], 0x10) close_range(r7, 0xffffffffffffffff, 0x0) 1.633323173s ago: executing program 2 (id=17736): mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000040)='k', 0x1}], 0x1) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r6, &(0x7f0000000040)={0x15, 0x65, 0xffff, 0x1000, 0x8, '9P2000.u'}, 0x15) r7 = dup(r6) mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000004380), 0x1814800, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r7}, 0x2c, {[], [], 0x6b}}) 1.632117655s ago: executing program 4 (id=17737): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x22004002}, 0x4040800) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x23e69000) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r5, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) connect$inet(r5, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r5, 0x0, 0x11, &(0x7f0000000080)={{{@in=@broadcast, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee00}, {0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x20000000000, 0xffffffffffffffff}, {0xfffffffffffffffe}, 0x0, 0x0, 0x1, 0x0, 0x2, 0x2}, {{@in6=@remote, 0x4d5, 0x32}, 0x0, @in6=@loopback, 0x1, 0x3, 0x0, 0xb7, 0x1fb, 0xffffffff, 0xfffffff9}}, 0xe8) r6 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r6, &(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8822d55593a2179}, 0xc) sendmmsg(r5, &(0x7f0000000180), 0x400000000000077, 0x7600) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0) syz_emit_vhci(0x0, 0x8) 1.32840043s ago: executing program 3 (id=17738): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) close_range(r2, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='pids.events\x00', 0x275a, 0x0) write$UHID_CREATE2(r3, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r3, 0x0) creat(&(0x7f0000000380)='./bus\x00', 0xbc) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r5, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r5, @ANYRES64=r4], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r5, 0x0) ioctl$KVM_X86_SETUP_MCE(r5, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) rt_sigprocmask(0x0, 0x0, 0x0, 0x0) 222.708999ms ago: executing program 2 (id=17739): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r3, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r3, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r2, 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r6, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r7, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) creat(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x182) 107.782944ms ago: executing program 3 (id=17740): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000140)=0x1, 0x4) connect$inet6(r3, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x1}}, 0x80001}, 0x1c) ioctl$sock_SIOCADDRT(r3, 0x890b, &(0x7f0000000300)={0x0, @phonet={0x23, 0x0, 0x7c, 0x9}, @ax25={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x7}, @l2={0x1f, 0x3, @any, 0x4, 0x2}, 0x6, 0x0, 0x0, 0x0, 0x2, 0x0, 0x784928ec, 0x1, 0x1}) bpf$PROG_LOAD(0x5, 0x0, 0xfffffffffffffe24) setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f00000002c0), 0x3) socket$inet6_tcp(0xa, 0x1, 0x0) bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000780)=ANY=[@ANYBLOB="1400000004000000080000000600000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/15, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000000b0a24aee619d7fa110c2d483c51761fb2a2b2517eeac47a5c0aa637f917b49632d84"], 0x48) ioperm(0x1, 0x9, 0x2) r4 = syz_io_uring_setup(0xf00, &(0x7f0000000080)={0x0, 0x0, 0x3c00, 0x3, 0x0, 0x0, 0x0}, &(0x7f0000000100), &(0x7f0000000140)) ppoll(&(0x7f00000000c0)=[{r4, 0x8000}], 0x1, &(0x7f0000000200), 0x0, 0x0) 56.598511ms ago: executing program 4 (id=17741): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000740)=ANY=[@ANYBLOB="180000000000000000000000000080000000000000000000"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r2}, 0x10) r3 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0) mmap(&(0x7f0000ff4000/0xc000)=nil, 0xc000, 0x1000003, 0x20031, 0xffffffffffffffff, 0xffffe000) prlimit64(0x0, 0xe, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x4, 0x0) fsconfig$FSCONFIG_SET_BINARY(r3, 0x6, 0x0, 0x0, 0x0) r6 = fsmount(r3, 0x1, 0x0) r7 = openat$cgroup_subtree(r6, &(0x7f0000000100), 0x2, 0x0) write$cgroup_subtree(r7, &(0x7f0000000300)=ANY=[@ANYBLOB='-cpu'], 0x5) 1.249666ms ago: executing program 1 (id=17742): r0 = socket$inet6(0xa, 0x80003, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r2, 0x8983, &(0x7f0000000100)={0x0, 'erspan0\x00', {0x1}, 0x26}) read$FUSE(0xffffffffffffffff, &(0x7f0000009780)={0x2020}, 0x2020) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) timer_create(0x0, 0x0, &(0x7f0000bbdffc)) sched_getattr(0x0, 0x0, 0x0, 0x0) ioctl$HCIINQUIRY(r4, 0x400448ca, 0x0) ioctl$sock_bt_hci(r4, 0x400448c9, 0x0) unshare(0x40020000) sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={0x0, 0xc8}}, 0x0) sendmmsg(r0, &(0x7f0000000480), 0x2e9, 0xc800) 0s ago: executing program 2 (id=17743): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_SET_BINARY(r6, 0x6, 0x0, 0x0, 0x0) r7 = fsmount(r6, 0x0, 0x0) r8 = openat$cgroup_subtree(r7, &(0x7f0000000100), 0x2, 0x0) write$cgroup_subtree(r8, &(0x7f0000000180)={[{0x2d, 'cpuacct'}]}, 0x9) kernel console output (not intermixed with test programs): 4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30329 comm="syz.4.10856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 988.342645][ T37] audit: type=1326 audit(2016777674.773:926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30329 comm="syz.4.10856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 988.342687][ T37] audit: type=1326 audit(2016777674.773:927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30329 comm="syz.4.10856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 988.342728][ T37] audit: type=1326 audit(2016777674.773:928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30329 comm="syz.4.10856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 989.174332][T30369] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10873'. [ 989.174355][T30369] netlink: 12 bytes leftover after parsing attributes in process `syz.0.10873'. [ 989.174379][T30369] netlink: 'syz.0.10873': attribute type 20 has an invalid length. [ 989.248450][T30369] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10873'. [ 989.248471][T30369] netlink: 12 bytes leftover after parsing attributes in process `syz.0.10873'. [ 989.248495][T30369] netlink: 'syz.0.10873': attribute type 20 has an invalid length. [ 989.248543][ T147] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 989.253532][ T12] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 989.253575][ T12] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 989.253610][ T12] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 989.982860][T30404] netlink: 'syz.4.10888': attribute type 17 has an invalid length. [ 990.157232][T30412] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 990.157572][T30412] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 991.917291][T30434] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10899'. [ 991.970081][T30433] netlink: 20 bytes leftover after parsing attributes in process `syz.3.10900'. [ 992.294470][T30444] overlay: Unknown parameter 'appraise' [ 992.506304][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 992.613956][T30452] overlayfs: missing 'lowerdir' [ 997.541097][T30542] netlink: 96 bytes leftover after parsing attributes in process `syz.0.10948'. [ 1001.558705][T30643] TCP: TCP_TX_DELAY enabled [ 1001.767573][ T37] kauditd_printk_skb: 14 callbacks suppressed [ 1001.767591][ T37] audit: type=1326 audit(2016777688.210:943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30647 comm="syz.0.10993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1001.767637][ T37] audit: type=1326 audit(2016777688.210:944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30647 comm="syz.0.10993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1001.767680][ T37] audit: type=1326 audit(2016777688.210:945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30647 comm="syz.0.10993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1001.770946][ T37] audit: type=1326 audit(2016777688.210:946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30647 comm="syz.0.10993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1001.777902][ T37] audit: type=1326 audit(2016777688.220:947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30647 comm="syz.0.10993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1001.777950][ T37] audit: type=1326 audit(2016777688.220:948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30647 comm="syz.0.10993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1001.777992][ T37] audit: type=1326 audit(2016777688.220:949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30647 comm="syz.0.10993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1001.778032][ T37] audit: type=1326 audit(2016777688.220:950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30647 comm="syz.0.10993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1001.780423][ T37] audit: type=1326 audit(2016777688.220:951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30647 comm="syz.0.10993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1001.780468][ T37] audit: type=1326 audit(2016777688.220:952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30647 comm="syz.0.10993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1001.833070][T30651] binder: 30650:30651 ioctl 4018620d 0 returned -22 [ 1002.843261][T30672] ecryptfs_validate_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 1002.843287][T30672] Error validating options; rc = [-22] [ 1003.434327][T30690] netlink: 12 bytes leftover after parsing attributes in process `syz.4.11013'. [ 1005.322749][T30742] bridge0: port 2(bridge_slave_1) entered disabled state [ 1005.323682][T30742] bridge0: port 1(bridge_slave_0) entered disabled state [ 1005.593486][T30768] 9pnet_fd: p9_fd_create_tcp (30768): problem connecting socket to 127.0.0.1 [ 1006.733975][ T1512] netdevsim netdevsim4 eth0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1006.734168][ T1512] netdevsim netdevsim4 eth1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1006.734207][ T1512] netdevsim netdevsim4 eth2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1006.734241][ T1512] netdevsim netdevsim4 eth3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1007.904617][T30849] FAT-fs (loop9): unable to read boot sector [ 1008.621600][T30851] netlink: 8 bytes leftover after parsing attributes in process `syz.0.11087'. [ 1008.719998][T30855] overlayfs: failed to resolve '/Jтv ‚Шz/@«FДтжк7БрАG¬зµАЁ!®Iй«$‚@VА': -2 [ 1014.929343][T30994] netlink: 12 bytes leftover after parsing attributes in process `syz.1.11149'. [ 1015.080967][T30998] overlayfs: failed to clone upperpath [ 1015.209900][T31005] netlink: 84 bytes leftover after parsing attributes in process `syz.1.11154'. [ 1016.827159][T31071] 9pnet_fd: Insufficient options for proto=fd [ 1017.783033][T31103] FAT-fs (loop7): unable to read boot sector [ 1021.110680][ T37] kauditd_printk_skb: 50 callbacks suppressed [ 1021.110698][ T37] audit: type=1326 audit(2016777707.560:1003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31150 comm="syz.2.11219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1021.111345][ T37] audit: type=1326 audit(2016777707.560:1004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31150 comm="syz.2.11219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1021.111630][ T37] audit: type=1326 audit(2016777707.560:1005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31150 comm="syz.2.11219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1021.113922][ T37] audit: type=1326 audit(2016777707.560:1006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31150 comm="syz.2.11219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1021.209057][ T37] audit: type=1326 audit(2016777707.560:1007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31150 comm="syz.2.11219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1022.011976][T31187] netlink: 12 bytes leftover after parsing attributes in process `syz.3.11236'. [ 1022.503037][T31210] netlink: 'syz.0.11246': attribute type 1 has an invalid length. [ 1022.503057][T31210] netlink: 'syz.0.11246': attribute type 2 has an invalid length. [ 1023.902453][T31252] netlink: 4 bytes leftover after parsing attributes in process `syz.1.11264'. [ 1025.441807][T31295] netlink: 'syz.3.11282': attribute type 1 has an invalid length. [ 1025.486212][T31295] 8021q: adding VLAN 0 to HW filter on device bond1 [ 1025.687089][T31305] netlink: 8 bytes leftover after parsing attributes in process `syz.2.11288'. [ 1026.095349][T31330] netlink: 148 bytes leftover after parsing attributes in process `syz.1.11297'. [ 1026.095369][T31330] A link change request failed with some changes committed already. Interface ip6_vti0 may have been left with an inconsistent configuration, please check. [ 1026.095403][T31329] tipc: Enabling of bearer rejected, already enabled [ 1026.136161][ T37] audit: type=1326 audit(2016777712.572:1008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31331 comm="syz.2.11299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1026.136215][ T37] audit: type=1326 audit(2016777712.572:1009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31331 comm="syz.2.11299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1026.136258][ T37] audit: type=1326 audit(2016777712.572:1010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31331 comm="syz.2.11299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1026.136301][ T37] audit: type=1326 audit(2016777712.572:1011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31331 comm="syz.2.11299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1026.136343][ T37] audit: type=1326 audit(2016777712.572:1012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31331 comm="syz.2.11299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1026.136385][ T37] audit: type=1326 audit(2016777712.572:1013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31331 comm="syz.2.11299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1026.136426][ T37] audit: type=1326 audit(2016777712.572:1014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31331 comm="syz.2.11299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1026.136468][ T37] audit: type=1326 audit(2016777712.572:1015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31331 comm="syz.2.11299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1026.636630][T31356] netlink: 16 bytes leftover after parsing attributes in process `syz.1.11311'. [ 1026.924536][T31361] netlink: 20 bytes leftover after parsing attributes in process `syz.1.11313'. [ 1026.924574][T31361] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 1029.613242][T31386] netlink: 'syz.1.11323': attribute type 4 has an invalid length. [ 1029.613264][T31386] netlink: 17 bytes leftover after parsing attributes in process `syz.1.11323'. [ 1032.924962][T31469] overlayfs: missing 'lowerdir' [ 1033.429114][ C0] vkms_vblank_simulate: vblank timer overrun [ 1033.583608][ C0] vkms_vblank_simulate: vblank timer overrun [ 1034.065998][ C0] vkms_vblank_simulate: vblank timer overrun [ 1034.261037][T31496] ip6gre1: left promiscuous mode [ 1034.261062][T31496] ip6gre1: left allmulticast mode [ 1034.341187][ C0] vkms_vblank_simulate: vblank timer overrun [ 1034.606512][T31508] netlink: 84 bytes leftover after parsing attributes in process `syz.1.11376'. [ 1034.606543][T31508] netlink: 68 bytes leftover after parsing attributes in process `syz.1.11376'. [ 1036.135357][ C0] vkms_vblank_simulate: vblank timer overrun [ 1036.608542][ C0] vkms_vblank_simulate: vblank timer overrun [ 1036.879352][ C0] vkms_vblank_simulate: vblank timer overrun [ 1040.424374][T31645] overlayfs: failed to clone upperpath [ 1040.725653][ T6035] usb 4-1: new full-speed USB device number 15 using dummy_hcd [ 1040.915726][ T6035] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1040.915752][ T6035] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 1040.919052][ T6035] usb 4-1: New USB device found, idVendor=06cd, idProduct=0121, bcdDevice=dd.3d [ 1040.919077][ T6035] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1040.919096][ T6035] usb 4-1: Product: syz [ 1040.919109][ T6035] usb 4-1: Manufacturer: syz [ 1040.919122][ T6035] usb 4-1: SerialNumber: syz [ 1041.132644][ T6035] usb 4-1: config 0 descriptor?? [ 1041.544003][T26016] usb 4-1: USB disconnect, device number 15 [ 1041.753725][T31693] overlayfs: failed to resolve './file0': -2 [ 1043.820248][T31745] overlayfs: workdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection. [ 1043.825571][T31729] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 1043.825601][T31729] overlayfs: failed to set xattr on upper [ 1043.825608][T31729] overlayfs: ...falling back to redirect_dir=nofollow. [ 1043.825616][T31729] overlayfs: ...falling back to index=off. [ 1043.825623][T31729] overlayfs: ...falling back to uuid=null. [ 1050.091299][T31875] netlink: 8 bytes leftover after parsing attributes in process `syz.1.11532'. [ 1050.216436][T31868] pim6reg1: entered promiscuous mode [ 1050.216461][T31868] pim6reg1: entered allmulticast mode [ 1050.397131][T31887] netlink: 8 bytes leftover after parsing attributes in process `syz.1.11538'. [ 1052.748687][T31944] tipc: Enabled bearer , priority 0 [ 1052.750106][T31944] syzkaller0: entered promiscuous mode [ 1052.750127][T31944] syzkaller0: entered allmulticast mode [ 1052.963027][T31948] tipc: Resetting bearer [ 1053.024145][T31943] tipc: Resetting bearer [ 1053.211458][T31943] tipc: Disabling bearer [ 1053.510041][T31971] overlayfs: failed to resolve './file1': -2 [ 1053.914117][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 1054.393862][T32013] netlink: 40 bytes leftover after parsing attributes in process `syz.0.11596'. [ 1054.479063][T32008] 9pnet: Could not find request transport: 0xffffffffffffffff [ 1055.099536][T32045] netlink: 120 bytes leftover after parsing attributes in process `syz.2.11613'. [ 1055.099566][T32045] netlink: 12 bytes leftover after parsing attributes in process `syz.2.11613'. [ 1055.099580][T32045] netlink: 8 bytes leftover after parsing attributes in process `syz.2.11613'. [ 1055.675324][ T37] audit: type=1326 audit(2016777742.137:1016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32034 comm="syz.0.11608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1055.675379][ T37] audit: type=1326 audit(2016777742.137:1017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32034 comm="syz.0.11608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1055.675431][ T37] audit: type=1326 audit(2016777742.137:1018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32034 comm="syz.0.11608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1055.684926][ T37] audit: type=1326 audit(2016777742.147:1019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32034 comm="syz.0.11608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1055.684977][ T37] audit: type=1326 audit(2016777742.147:1020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32034 comm="syz.0.11608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1055.685020][ T37] audit: type=1326 audit(2016777742.147:1021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32034 comm="syz.0.11608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1055.685070][ T37] audit: type=1326 audit(2016777742.147:1022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32034 comm="syz.0.11608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1055.685112][ T37] audit: type=1326 audit(2016777742.147:1023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32034 comm="syz.0.11608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1055.685154][ T37] audit: type=1326 audit(2016777742.147:1024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32034 comm="syz.0.11608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1055.685196][ T37] audit: type=1326 audit(2016777742.147:1025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32034 comm="syz.0.11608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1065.492829][T32231] tipc: Failed to remove unknown binding: 66,1,1/4:563602408/563602410 [ 1065.494068][T32231] tipc: Failed to remove unknown binding: 66,1,1/4:563602408/563602410 [ 1065.494103][T32231] tipc: Failed to remove unknown binding: 66,1,1/4:563602408/563602410 [ 1066.730913][T32257] tipc: Failed to remove unknown binding: 66,1,1/4:3963423460/3963423462 [ 1068.016116][ T37] kauditd_printk_skb: 14 callbacks suppressed [ 1068.016134][ T37] audit: type=1326 audit(2016777754.483:1040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32302 comm="syz.1.11720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1068.019150][ T37] audit: type=1326 audit(2016777754.483:1041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32302 comm="syz.1.11720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1068.019443][ T37] audit: type=1326 audit(2016777754.483:1042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32302 comm="syz.1.11720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1068.019739][ T37] audit: type=1326 audit(2016777754.483:1043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32302 comm="syz.1.11720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1068.020001][ T37] audit: type=1326 audit(2016777754.483:1044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32302 comm="syz.1.11720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1068.020756][ T37] audit: type=1326 audit(2016777754.483:1045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32302 comm="syz.1.11720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1068.021244][ T37] audit: type=1326 audit(2016777754.483:1046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32302 comm="syz.1.11720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1068.021546][ T37] audit: type=1326 audit(2016777754.483:1047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32302 comm="syz.1.11720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1068.025266][ T37] audit: type=1326 audit(2016777754.493:1048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32302 comm="syz.1.11720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1068.026130][ T37] audit: type=1326 audit(2016777754.493:1049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32302 comm="syz.1.11720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1071.073187][T32394] : renamed from bond_slave_0 [ 1074.149909][T32511] netlink: 'syz.2.11813': attribute type 4 has an invalid length. [ 1074.642121][T32539] netlink: 8 bytes leftover after parsing attributes in process `syz.4.11827'. [ 1076.192085][T32584] overlayfs: failed to resolve './file0': -2 [ 1076.823600][T32601] netlink: 8 bytes leftover after parsing attributes in process `syz.3.11852'. [ 1077.014047][T32601] macvlan2: entered allmulticast mode [ 1077.014121][T32601] veth1_to_hsr: entered allmulticast mode [ 1078.405950][T32647] netlink: 172 bytes leftover after parsing attributes in process `syz.3.11874'. [ 1079.459991][T32669] binder: Bad value for 'stats' [ 1080.914864][T32689] kthread_run failed with err -4 [ 1082.294684][ T37] kauditd_printk_skb: 36 callbacks suppressed [ 1082.294702][ T37] audit: type=1326 audit(2016777768.760:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32736 comm="syz.4.11914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1082.296286][ T37] audit: type=1326 audit(2016777768.770:1087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32736 comm="syz.4.11914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1082.367167][ T37] audit: type=1326 audit(2016777768.840:1088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32736 comm="syz.4.11914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1082.367221][ T37] audit: type=1326 audit(2016777768.840:1089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32736 comm="syz.4.11914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1082.367264][ T37] audit: type=1326 audit(2016777768.840:1090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32736 comm="syz.4.11914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1082.367306][ T37] audit: type=1326 audit(2016777768.840:1091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32736 comm="syz.4.11914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1082.367348][ T37] audit: type=1326 audit(2016777768.840:1092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32736 comm="syz.4.11914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1082.367390][ T37] audit: type=1326 audit(2016777768.840:1093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32736 comm="syz.4.11914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1082.369596][ T37] audit: type=1326 audit(2016777768.840:1094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32736 comm="syz.4.11914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1082.369645][ T37] audit: type=1326 audit(2016777768.840:1095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32736 comm="syz.4.11914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1082.788282][ T1488] bond1: (slave dummy0): link status definitely down, disabling slave [ 1082.789193][ T1488] dummy0: left promiscuous mode [ 1082.789855][ T1488] dummy0: left allmulticast mode [ 1082.793535][ T1488] bond1: now running without any active interface! [ 1085.486985][ T368] netlink: 8 bytes leftover after parsing attributes in process `syz.2.11957'. [ 1085.620320][ T368] veth1_to_hsr: entered promiscuous mode [ 1085.622728][ T368] macvlan2: entered allmulticast mode [ 1085.622771][ T368] veth1_to_hsr: entered allmulticast mode [ 1089.999606][ T536] 9pnet: Unknown protocol version 9 [ 1093.210030][ T598] overlayfs: missing 'lowerdir' [ 1095.397106][ T692] netlink: 16 bytes leftover after parsing attributes in process `syz.2.12101'. [ 1096.862021][ T674] Bluetooth: hci4: command 0x0406 tx timeout [ 1102.382553][ T795] netlink: 756 bytes leftover after parsing attributes in process `syz.3.12146'. [ 1103.943136][ T836] netlink: 'syz.0.12162': attribute type 11 has an invalid length. [ 1103.943160][ T836] netlink: 'syz.0.12162': attribute type 1 has an invalid length. [ 1103.943172][ T836] netlink: 3593 bytes leftover after parsing attributes in process `syz.0.12162'. [ 1105.734436][ T876] overlayfs: option "index=on" is useless in a non-upper mount, ignore [ 1105.734453][ T876] overlayfs: missing 'lowerdir' [ 1106.503163][ T900] netlink: 72 bytes leftover after parsing attributes in process `syz.2.12191'. [ 1107.043129][ T935] netlink: 8 bytes leftover after parsing attributes in process `syz.2.12204'. [ 1107.648339][ T962] fuse: Bad value for 'user_id' [ 1107.648357][ T962] fuse: Bad value for 'user_id' [ 1110.076952][ T1000] netlink: 'syz.2.12229': attribute type 1 has an invalid length. [ 1110.076972][ T1000] netlink: 'syz.2.12229': attribute type 2 has an invalid length. [ 1110.076985][ T1000] netlink: 20 bytes leftover after parsing attributes in process `syz.2.12229'. [ 1111.775771][ T37] kauditd_printk_skb: 42 callbacks suppressed [ 1111.775788][ T37] audit: type=1326 audit(2016777798.265:1138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1034 comm="syz.2.12241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1111.775837][ T37] audit: type=1326 audit(2016777798.265:1139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1034 comm="syz.2.12241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1111.778914][ T37] audit: type=1326 audit(2016777798.265:1140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1034 comm="syz.2.12241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1111.778966][ T37] audit: type=1326 audit(2016777798.265:1141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1034 comm="syz.2.12241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1111.779007][ T37] audit: type=1326 audit(2016777798.265:1142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1034 comm="syz.2.12241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1111.779049][ T37] audit: type=1326 audit(2016777798.265:1143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1034 comm="syz.2.12241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1111.779095][ T37] audit: type=1326 audit(2016777798.265:1144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1034 comm="syz.2.12241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1111.781003][ T37] audit: type=1326 audit(2016777798.265:1145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1034 comm="syz.2.12241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1111.835666][ T37] audit: type=1326 audit(2016777798.325:1146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1034 comm="syz.2.12241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1111.835726][ T37] audit: type=1326 audit(2016777798.325:1147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1034 comm="syz.2.12241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1112.837278][ T1086] netlink: 104 bytes leftover after parsing attributes in process `syz.0.12260'. [ 1114.486105][ T1118] netlink: 24 bytes leftover after parsing attributes in process `syz.2.12272'. [ 1114.623127][ T1118] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12272'. [ 1114.742822][ T1133] netlink: 'syz.4.12278': attribute type 3 has an invalid length. [ 1114.742843][ T1133] netlink: 52 bytes leftover after parsing attributes in process `syz.4.12278'. [ 1115.323698][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 1117.864265][ T5813] Bluetooth: hci4: unexpected event for opcode 0x0c5b [ 1120.126659][ T1269] 9pnet_fd: Insufficient options for proto=fd [ 1121.752387][ T1297] netlink: 44 bytes leftover after parsing attributes in process `syz.4.12345'. [ 1121.752412][ T1297] netlink: 12 bytes leftover after parsing attributes in process `syz.4.12345'. [ 1121.752426][ T1297] netlink: 16 bytes leftover after parsing attributes in process `syz.4.12345'. [ 1122.134987][ T1314] netlink: 4 bytes leftover after parsing attributes in process `syz.1.12349'. [ 1122.240292][ T1316] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12346'. [ 1124.435016][ T1343] netlink: 248 bytes leftover after parsing attributes in process `syz.4.12363'. [ 1125.762858][T26016] usb 1-1: new full-speed USB device number 13 using dummy_hcd [ 1125.925192][T26016] usb 1-1: unable to get BOS descriptor or descriptor too short [ 1125.926643][T26016] usb 1-1: no configurations [ 1125.926659][T26016] usb 1-1: can't read configurations, error -22 [ 1127.619479][ T1399] Invalid source name [ 1127.619522][ T1399] UBIFS error (pid: 1399): cannot open "./file0", error -22 [ 1130.265489][ T1462] netlink: 72 bytes leftover after parsing attributes in process `syz.4.12415'. [ 1132.621730][ T1484] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1132.622072][ T1484] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1132.622335][ T1484] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1132.622600][ T1484] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 1132.622740][ T1484] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 1133.399165][T26243] usb 1-1: new full-speed USB device number 15 using dummy_hcd [ 1133.488485][ T1539] netlink: 44 bytes leftover after parsing attributes in process `syz.4.12448'. [ 1133.591407][T26243] usb 1-1: config 0 has an invalid interface number: 133 but max is 0 [ 1133.591435][T26243] usb 1-1: config 0 has no interface number 0 [ 1133.594161][T26243] usb 1-1: New USB device found, idVendor=06cd, idProduct=0121, bcdDevice=dd.3d [ 1133.594186][T26243] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1133.594206][T26243] usb 1-1: Product: syz [ 1133.594219][T26243] usb 1-1: Manufacturer: syz [ 1133.594233][T26243] usb 1-1: SerialNumber: syz [ 1133.621321][T26243] usb 1-1: config 0 descriptor?? [ 1134.038806][ T674] Bluetooth: hci2: command 0x0c1a tx timeout [ 1134.147740][ T1552] netlink: 56 bytes leftover after parsing attributes in process `syz.2.12454'. [ 1134.669642][ T674] Bluetooth: hci4: command 0x0406 tx timeout [ 1134.669684][ T674] Bluetooth: hci3: command 0x0c1a tx timeout [ 1134.669711][ T674] Bluetooth: hci1: command 0x0c1a tx timeout [ 1135.902012][T26243] keyspan 1-1:0.133: Keyspan 1 port adapter converter detected [ 1135.935056][T26243] keyspan 1-1:0.133: found no endpoint descriptor for endpoint 81 [ 1135.935149][T26243] keyspan 1-1:0.133: found no endpoint descriptor for endpoint 1 [ 1135.935240][T26243] keyspan 1-1:0.133: found no endpoint descriptor for endpoint 2 [ 1135.962895][T26243] usb 1-1: Keyspan 1 port adapter converter now attached to ttyUSB0 [ 1135.978477][T26243] usb 1-1: USB disconnect, device number 15 [ 1135.986111][T26243] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0 [ 1135.987087][T26243] keyspan 1-1:0.133: device disconnected [ 1136.769540][ T5813] Bluetooth: hci4: command 0x0406 tx timeout [ 1137.766940][ T31] usb 1-1: new full-speed USB device number 16 using dummy_hcd [ 1137.921140][ T1594] pim6reg1: entered promiscuous mode [ 1137.921156][ T1594] pim6reg1: entered allmulticast mode [ 1137.950483][ T31] usb 1-1: config 0 has an invalid interface number: 133 but max is 0 [ 1137.950508][ T31] usb 1-1: config 0 has no interface number 0 [ 1137.979229][ T31] usb 1-1: New USB device found, idVendor=06cd, idProduct=0121, bcdDevice=dd.3d [ 1137.979245][ T31] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1137.979255][ T31] usb 1-1: Product: syz [ 1137.979262][ T31] usb 1-1: Manufacturer: syz [ 1137.979269][ T31] usb 1-1: SerialNumber: syz [ 1137.982745][ T31] usb 1-1: config 0 descriptor?? [ 1138.345499][ T31] keyspan 1-1:0.133: Keyspan 1 port adapter converter detected [ 1138.377310][ T31] keyspan 1-1:0.133: found no endpoint descriptor for endpoint 81 [ 1138.379189][ T31] keyspan 1-1:0.133: found no endpoint descriptor for endpoint 1 [ 1138.379329][ T31] keyspan 1-1:0.133: found no endpoint descriptor for endpoint 2 [ 1138.398476][ T31] usb 1-1: Keyspan 1 port adapter converter now attached to ttyUSB0 [ 1138.599493][T26243] usb 1-1: USB disconnect, device number 16 [ 1138.609502][T26243] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0 [ 1138.610034][T26243] keyspan 1-1:0.133: device disconnected [ 1140.209456][ T1616] tipc: Failed to remove unknown binding: 66,1,1/2886997007:3848929148/3848929150 [ 1140.209481][ T1616] tipc: Failed to remove unknown binding: 66,1,1/2886997007:3848929148/3848929150 [ 1140.558821][ T1621] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12478'. [ 1144.212704][ T1723] pim6reg1: entered promiscuous mode [ 1144.212728][ T1723] pim6reg1: entered allmulticast mode [ 1145.043598][ T1767] netlink: 'syz.4.12547': attribute type 3 has an invalid length. [ 1145.717876][ T1797] netlink: 596 bytes leftover after parsing attributes in process `syz.4.12561'. [ 1145.723541][ T37] kauditd_printk_skb: 28 callbacks suppressed [ 1145.723556][ T37] audit: type=1326 audit(2016777832.232:1176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1762 comm="syz.0.12545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7fc00000 [ 1145.725067][ T37] audit: type=1326 audit(2016777832.232:1177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1762 comm="syz.0.12545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f69a748f6c9 code=0x7fc00000 [ 1145.727211][ T37] audit: type=1326 audit(2016777832.232:1178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1762 comm="syz.0.12545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7fc00000 [ 1145.727501][ T37] audit: type=1326 audit(2016777832.232:1179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1762 comm="syz.0.12545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7fc00000 [ 1145.728263][ T37] audit: type=1326 audit(2016777832.232:1180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1762 comm="syz.0.12545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7fc00000 [ 1146.142909][ T1805] 9pnet: Could not find request transport: 0xffffffffffffffff [ 1147.006355][ T37] audit: type=1326 audit(2016777833.513:1181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1860 comm="syz.4.12590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1147.007566][ T37] audit: type=1326 audit(2016777833.513:1182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1860 comm="syz.4.12590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1147.017826][ T37] audit: type=1326 audit(2016777833.523:1183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1860 comm="syz.4.12590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1147.018124][ T37] audit: type=1326 audit(2016777833.523:1184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1860 comm="syz.4.12590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1147.019427][ T37] audit: type=1326 audit(2016777833.523:1185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1860 comm="syz.4.12590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1149.916445][ T1920] netem: change failed [ 1151.383115][ T1955] netlink: 24 bytes leftover after parsing attributes in process `syz.0.12632'. [ 1153.675532][ T2020] netlink: 52 bytes leftover after parsing attributes in process `syz.1.12659'. [ 1154.072347][ T2038] netlink: 388 bytes leftover after parsing attributes in process `syz.0.12668'. [ 1154.180999][ T37] kauditd_printk_skb: 73 callbacks suppressed [ 1154.181016][ T37] audit: type=1326 audit(2016777840.696:1259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2041 comm="syz.4.12670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1154.184054][ T37] audit: type=1326 audit(2016777840.696:1260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2041 comm="syz.4.12670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1154.211213][ T37] audit: type=1326 audit(2016777840.696:1261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2041 comm="syz.4.12670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1154.211263][ T37] audit: type=1326 audit(2016777840.696:1262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2041 comm="syz.4.12670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1154.211305][ T37] audit: type=1326 audit(2016777840.696:1263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2041 comm="syz.4.12670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1154.211348][ T37] audit: type=1326 audit(2016777840.726:1264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2041 comm="syz.4.12670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1154.211389][ T37] audit: type=1326 audit(2016777840.726:1265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2041 comm="syz.4.12670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1154.211429][ T37] audit: type=1326 audit(2016777840.726:1266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2041 comm="syz.4.12670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1154.211468][ T37] audit: type=1326 audit(2016777840.726:1267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2041 comm="syz.4.12670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1154.213612][ T37] audit: type=1326 audit(2016777840.726:1268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2041 comm="syz.4.12670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1154.777032][ T2058] netlink: 40 bytes leftover after parsing attributes in process `syz.1.12678'. [ 1156.827963][ T2160] netlink: 8 bytes leftover after parsing attributes in process `syz.4.12727'. [ 1156.942336][ T2164] @: renamed from vlan0 [ 1157.921372][ T2189] netlink: 16 bytes leftover after parsing attributes in process `syz.0.12739'. [ 1157.921570][ T2189] sit0: entered allmulticast mode [ 1158.257601][ T2196] netlink: 92 bytes leftover after parsing attributes in process `syz.2.12742'. [ 1159.106781][ T2231] netlink: 56 bytes leftover after parsing attributes in process `syz.0.12758'. [ 1159.325613][ T2239] 9pnet_fd: Insufficient options for proto=fd [ 1159.677699][ T2260] netlink: 8 bytes leftover after parsing attributes in process `syz.1.12771'. [ 1159.709018][ T2254] netlink: 188 bytes leftover after parsing attributes in process `syz.2.12769'. [ 1160.353231][ T2279] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12781'. [ 1160.717937][ T2286] netlink: 'syz.2.12786': attribute type 1 has an invalid length. [ 1162.882628][ T2279] team0 (unregistering): Port device team_slave_0 removed [ 1162.915423][ T2279] team0 (unregistering): Port device team_slave_1 removed [ 1162.965831][ T2279] team0 (unregistering): Port device geneve0 removed [ 1163.065450][ T2286] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR [ 1163.087767][ T2327] cgroup: noprefix used incorrectly [ 1163.634732][ T2351] overlay: Bad value for 'verity' [ 1164.693780][ T2409] netlink: 104 bytes leftover after parsing attributes in process `syz.1.12840'. [ 1165.102879][ T2437] trusted_key: encrypted_key: insufficient parameters specified [ 1165.308980][ T37] kauditd_printk_skb: 25 callbacks suppressed [ 1165.309011][ T37] audit: type=1326 audit(2016777851.812:1294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2439 comm="syz.1.12858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1165.309065][ T37] audit: type=1326 audit(2016777851.812:1295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2439 comm="syz.1.12858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1165.309105][ T37] audit: type=1326 audit(2016777851.812:1296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2439 comm="syz.1.12858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=261 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1165.309146][ T37] audit: type=1326 audit(2016777851.812:1297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2439 comm="syz.1.12858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1165.309186][ T37] audit: type=1326 audit(2016777851.812:1298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2439 comm="syz.1.12858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1165.863472][ T2485] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12872'. [ 1166.054941][ T2495] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12877'. [ 1167.682872][ T2599] netlink: 628 bytes leftover after parsing attributes in process `syz.2.12914'. [ 1167.815065][ T2608] netlink: 8 bytes leftover after parsing attributes in process `syz.2.12918'. [ 1167.815093][ T2608] netlink: 12 bytes leftover after parsing attributes in process `syz.2.12918'. [ 1167.815108][ T2608] netlink: 16 bytes leftover after parsing attributes in process `syz.2.12918'. [ 1167.992720][ T2620] fuse: Bad value for 'rootmode' [ 1168.294463][ T2630] netlink: 8 bytes leftover after parsing attributes in process `syz.2.12927'. [ 1168.455723][ T2643] netlink: 'syz.0.12931': attribute type 4 has an invalid length. [ 1168.455743][ T2643] netlink: 17 bytes leftover after parsing attributes in process `syz.0.12931'. [ 1174.904514][ T2826] netlink: 20 bytes leftover after parsing attributes in process `syz.0.12997'. [ 1175.421329][ T2860] overlayfs: failed to clone upperpath [ 1176.742987][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 1177.547279][ T2915] netlink: 'syz.0.13026': attribute type 4 has an invalid length. [ 1183.045437][ T5813] Bluetooth: hci1: unexpected event for opcode 0x202d [ 1183.308910][ T3043] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma? [ 1186.216170][ T3102] netlink: 188 bytes leftover after parsing attributes in process `syz.2.13107'. [ 1186.537341][ T3112] netlink: 12 bytes leftover after parsing attributes in process `syz.4.13112'. [ 1186.698373][ T3117] overlayfs: missing 'lowerdir' [ 1190.354335][ T3184] overlayfs: failed to resolve './file0': -2 [ 1196.088940][ T3281] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1196.089000][ T3281] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1197.898606][ T3326] overlayfs: failed to clone upperpath [ 1198.133859][ T37] audit: type=1326 audit(2016777884.668:1299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3331 comm="syz.3.13204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1198.134153][ T37] audit: type=1326 audit(2016777884.668:1300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3331 comm="syz.3.13204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1198.134717][ T37] audit: type=1326 audit(2016777884.668:1301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3331 comm="syz.3.13204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1198.135490][ T37] audit: type=1326 audit(2016777884.668:1302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3331 comm="syz.3.13204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1198.136192][ T37] audit: type=1326 audit(2016777884.668:1303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3331 comm="syz.3.13204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1198.136479][ T37] audit: type=1326 audit(2016777884.668:1304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3331 comm="syz.3.13204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1198.138699][ T37] audit: type=1326 audit(2016777884.678:1305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3331 comm="syz.3.13204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1198.139097][ T37] audit: type=1326 audit(2016777884.678:1306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3331 comm="syz.3.13204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1198.139629][ T37] audit: type=1326 audit(2016777884.678:1307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3331 comm="syz.3.13204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1198.139931][ T37] audit: type=1326 audit(2016777884.678:1308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3331 comm="syz.3.13204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1200.143746][ T3377] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13222'. [ 1200.143768][ T3377] netlink: 36 bytes leftover after parsing attributes in process `syz.2.13222'. [ 1201.813323][ T3428] fuse: Bad value for 'group_id' [ 1201.813342][ T3428] fuse: Bad value for 'group_id' [ 1202.089142][ T3446] netlink: 44 bytes leftover after parsing attributes in process `syz.2.13248'. [ 1202.089169][ T3446] netlink: 12 bytes leftover after parsing attributes in process `syz.2.13248'. [ 1202.089184][ T3446] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13248'. [ 1208.210135][ T3581] tipc: Failed to remove unknown binding: 66,1,1/4:3911213740/3911213742 [ 1208.362553][ T3584] netlink: 36 bytes leftover after parsing attributes in process `syz.3.13306'. [ 1210.718537][ T3662] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=null. [ 1210.879643][ C1] vkms_vblank_simulate: vblank timer overrun [ 1211.879910][ T3670] tipc: Enabling of bearer rejected, failed to enable media [ 1211.907631][ C1] vkms_vblank_simulate: vblank timer overrun [ 1211.988343][ C1] vkms_vblank_simulate: vblank timer overrun [ 1212.036705][ C1] vkms_vblank_simulate: vblank timer overrun [ 1213.633154][ T3710] netlink: 68 bytes leftover after parsing attributes in process `syz.0.13360'. [ 1213.778048][ T3720] netlink: 48 bytes leftover after parsing attributes in process `syz.3.13364'. [ 1213.778355][ T3720] netlink: 48 bytes leftover after parsing attributes in process `syz.3.13364'. [ 1214.464947][ T3755] bridge_slave_1: entered allmulticast mode [ 1214.618063][ T3765] netlink: 'syz.2.13387': attribute type 4 has an invalid length. [ 1214.618084][ T3765] netlink: 17 bytes leftover after parsing attributes in process `syz.2.13387'. [ 1216.387572][T26243] usb 4-1: new low-speed USB device number 16 using dummy_hcd [ 1216.546085][T26243] usb 4-1: config 16 has an invalid interface number: 236 but max is 0 [ 1216.546123][T26243] usb 4-1: config 16 has no interface number 0 [ 1216.551076][T26243] usb 4-1: string descriptor 0 read error: -22 [ 1216.551231][T26243] usb 4-1: New USB device found, idVendor=2040, idProduct=c61a, bcdDevice=f4.96 [ 1216.551253][T26243] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1216.691818][ T3844] tipc: Enabling of bearer rejected, failed to enable media [ 1216.784134][T26243] usb 4-1: USB disconnect, device number 16 [ 1217.490283][ T3872] overlayfs: failed to resolve './file1/file0': -2 [ 1218.121990][ T3896] netlink: 8 bytes leftover after parsing attributes in process `syz.1.13441'. [ 1218.514040][ T3908] overlayfs: failed to clone upperpath [ 1219.807043][ T3951] netlink: 8 bytes leftover after parsing attributes in process `syz.1.13466'. [ 1219.807071][ T3951] netlink: 12 bytes leftover after parsing attributes in process `syz.1.13466'. [ 1227.360148][ T4064] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 1227.454157][ T4065] netlink: 'syz.2.13511': attribute type 4 has an invalid length. [ 1230.681665][ T4133] overlayfs: failed to resolve './file1': -2 [ 1231.175605][ T4147] 9pnet_fd: Insufficient options for proto=fd [ 1232.722358][ T4165] overlayfs: failed to clone upperpath [ 1234.090427][ T4191] overlayfs: conflicting lowerdir path [ 1235.243080][ T4238] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13589'. [ 1238.151119][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 1238.170575][ T4238] bond0 (unregistering): Released all slaves [ 1238.226730][ T4255] netlink: 288 bytes leftover after parsing attributes in process `syz.4.13596'. [ 1240.700896][ T4349] netlink: 9 bytes leftover after parsing attributes in process `syz.4.13638'. [ 1240.701358][ T4349] gretap0: entered promiscuous mode [ 1244.785551][ T4384] kthread_run failed with err -4 [ 1245.285406][ T4409] overlayfs: missing 'lowerdir' [ 1245.533300][ T4424] netlink: 'syz.2.13669': attribute type 1 has an invalid length. [ 1246.057178][ T37] kauditd_printk_skb: 281 callbacks suppressed [ 1246.057196][ T37] audit: type=1326 audit(2016777932.612:1590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4447 comm="syz.1.13679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1246.058545][ T37] audit: type=1326 audit(2016777932.612:1591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4447 comm="syz.1.13679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1246.059706][ T37] audit: type=1326 audit(2016777932.612:1592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4447 comm="syz.1.13679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1246.060444][ T37] audit: type=1326 audit(2016777932.612:1593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4447 comm="syz.1.13679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbc273815e7 code=0x7ffc0000 [ 1246.061418][ T37] audit: type=1326 audit(2016777932.612:1594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4447 comm="syz.1.13679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7fbc2738155c code=0x7ffc0000 [ 1246.067732][ T37] audit: type=1326 audit(2016777932.612:1595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4447 comm="syz.1.13679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fbc27381494 code=0x7ffc0000 [ 1246.067779][ T37] audit: type=1326 audit(2016777932.622:1596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4447 comm="syz.1.13679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fbc27381494 code=0x7ffc0000 [ 1246.067819][ T37] audit: type=1326 audit(2016777932.622:1597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4447 comm="syz.1.13679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fbc2737e32a code=0x7ffc0000 [ 1246.068494][ T37] audit: type=1326 audit(2016777932.622:1598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4447 comm="syz.1.13679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1246.069548][ T37] audit: type=1326 audit(2016777932.622:1599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4447 comm="syz.1.13679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1246.989276][ T4476] overlayfs: missing 'lowerdir' [ 1247.793242][ T4497] netlink: 48 bytes leftover after parsing attributes in process `syz.2.13699'. [ 1251.678740][ T4592] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13743'. [ 1254.078896][T26243] usb 1-1: new high-speed USB device number 17 using dummy_hcd [ 1254.228967][T26243] usb 1-1: Using ep0 maxpacket: 32 [ 1254.239616][T26243] usb 1-1: config 0 has an invalid interface number: 172 but max is 0 [ 1254.239640][T26243] usb 1-1: config 0 has no interface number 0 [ 1254.239689][T26243] usb 1-1: config 0 interface 172 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 1254.329540][T26243] usb 1-1: New USB device found, idVendor=06f8, idProduct=301b, bcdDevice=bb.39 [ 1254.329567][T26243] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1254.329585][T26243] usb 1-1: Product: syz [ 1254.329598][T26243] usb 1-1: Manufacturer: syz [ 1254.329611][T26243] usb 1-1: SerialNumber: syz [ 1254.371655][T26243] usb 1-1: config 0 descriptor?? [ 1254.385372][T26243] gspca_main: gspca_pac7302-2.14.0 probing 06f8:301b [ 1255.477023][T26243] gspca_pac7302: reg_w() failed i: 78 v: 00 error -110 [ 1255.477127][T26243] gspca_pac7302 1-1:0.172: probe with driver gspca_pac7302 failed with error -110 [ 1255.544316][ T4665] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13776'. [ 1256.178029][ T4665] hsr_slave_1 (unregistering): left promiscuous mode [ 1256.288796][ T4704] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13789'. [ 1256.367042][ T31] usb 1-1: USB disconnect, device number 17 [ 1257.211586][ T4746] netlink: 'syz.3.13812': attribute type 4 has an invalid length. [ 1257.211608][ T4746] netlink: 'syz.3.13812': attribute type 5 has an invalid length. [ 1257.211621][ T4746] netlink: 3657 bytes leftover after parsing attributes in process `syz.3.13812'. [ 1257.644612][ T4768] mac80211_hwsim hwsim8 wlan0: entered promiscuous mode [ 1258.020626][ T4787] netlink: 20 bytes leftover after parsing attributes in process `syz.3.13830'. [ 1258.020649][ T4787] netlink: 12 bytes leftover after parsing attributes in process `syz.3.13830'. [ 1258.101337][ T4787] netlink: 20 bytes leftover after parsing attributes in process `syz.3.13830'. [ 1258.101360][ T4787] netlink: 12 bytes leftover after parsing attributes in process `syz.3.13830'. [ 1258.736693][ T4811] netlink: 44 bytes leftover after parsing attributes in process `syz.3.13842'. [ 1258.736720][ T4811] netlink: 32 bytes leftover after parsing attributes in process `syz.3.13842'. [ 1261.321170][ T4849] netlink: 20 bytes leftover after parsing attributes in process `syz.3.13857'. [ 1262.307222][ T4853] veth5: entered allmulticast mode [ 1266.303407][ T4967] fuse: Bad value for 'rootmode' [ 1267.153854][ T4998] netlink: 4 bytes leftover after parsing attributes in process `syz.1.13919'. [ 1268.115023][ T5007] overlayfs: failed to clone upperpath [ 1269.314018][ T5019] tipc: Started in network mode [ 1269.314047][ T5019] tipc: Node identity 822567e086fc, cluster identity 4711 [ 1269.314248][ T5019] tipc: Enabled bearer , priority 0 [ 1269.452679][ T5021] netlink: 24 bytes leftover after parsing attributes in process `syz.1.13933'. [ 1270.440288][ T31] tipc: Node number set to 81356768 [ 1273.668865][ T37] audit: type=1326 audit(2016777960.226:1600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5120 comm="syz.1.13973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1273.668917][ T37] audit: type=1326 audit(2016777960.236:1601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5120 comm="syz.1.13973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1273.669849][ T37] audit: type=1326 audit(2016777960.246:1602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5120 comm="syz.1.13973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1273.669897][ T37] audit: type=1326 audit(2016777960.246:1603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5120 comm="syz.1.13973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1273.671061][ T37] audit: type=1326 audit(2016777960.246:1604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5120 comm="syz.1.13973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1273.671109][ T37] audit: type=1326 audit(2016777960.246:1605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5120 comm="syz.1.13973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1273.678100][ T37] audit: type=1326 audit(2016777960.246:1606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5120 comm="syz.1.13973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1273.678151][ T37] audit: type=1326 audit(2016777960.246:1607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5120 comm="syz.1.13973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1273.678773][ T37] audit: type=1326 audit(2016777960.246:1608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5120 comm="syz.1.13973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1273.718998][ T37] audit: type=1326 audit(2016777960.246:1609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5120 comm="syz.1.13973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1274.030931][ T5134] netlink: 16 bytes leftover after parsing attributes in process `syz.0.13976'. [ 1275.731325][ T5182] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null. [ 1275.731342][ T5182] overlayfs: missing 'lowerdir' [ 1276.525094][ T5214] netlink: 120 bytes leftover after parsing attributes in process `syz.2.14011'. [ 1276.525125][ T5214] netlink: 12 bytes leftover after parsing attributes in process `syz.2.14011'. [ 1276.525138][ T5214] netlink: 8 bytes leftover after parsing attributes in process `syz.2.14011'. [ 1276.647047][ T5220] netlink: 156 bytes leftover after parsing attributes in process `syz.2.14014'. [ 1276.647073][ T5220] netlink: 32 bytes leftover after parsing attributes in process `syz.2.14014'. [ 1277.940755][ T5258] netlink: 8 bytes leftover after parsing attributes in process `syz.1.14034'. [ 1280.260976][ T5326] 9pnet_fd: Insufficient options for proto=fd [ 1280.909392][ T5350] overlayfs: failed to resolve './file0': -2 [ 1282.024280][ T5367] netlink: 'syz.2.14080': attribute type 10 has an invalid length. [ 1282.118343][ T5367] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 1282.285465][ T5387] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1282.285496][ T5387] overlayfs: missing 'lowerdir' [ 1282.372184][ T37] kauditd_printk_skb: 25 callbacks suppressed [ 1282.372202][ T37] audit: type=1326 audit(2016777968.930:1635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5388 comm="syz.2.14090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1282.372248][ T37] audit: type=1326 audit(2016777968.940:1636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5388 comm="syz.2.14090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1282.658657][ T37] audit: type=1326 audit(2016777969.230:1637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5401 comm="syz.4.14095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1282.878454][ T5406] netlink: 12 bytes leftover after parsing attributes in process `syz.0.14098'. [ 1282.902415][ T37] audit: type=1800 audit(2016777969.471:1638): pid=5409 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.2.14100" name="nullb0" dev="tmpfs" ino=9193 res=0 errno=0 [ 1283.449199][ T5430] overlayfs: failed to clone upperpath [ 1283.737913][ T5445] overlay: Unknown parameter 'appraise' [ 1287.121347][ T5516] tipc: New replicast peer: 255.255.255.255 [ 1287.122862][ T5516] tipc: Enabled bearer , priority 10 [ 1288.111770][ T37] audit: type=1326 audit(2016777974.663:1639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5539 comm="syz.3.14154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1288.111825][ T37] audit: type=1326 audit(2016777974.663:1640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5539 comm="syz.3.14154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1288.111865][ T37] audit: type=1326 audit(2016777974.673:1641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5539 comm="syz.3.14154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1288.111905][ T37] audit: type=1326 audit(2016777974.673:1642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5539 comm="syz.3.14154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1288.111946][ T37] audit: type=1326 audit(2016777974.673:1643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5539 comm="syz.3.14154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1288.111985][ T37] audit: type=1326 audit(2016777974.673:1644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5539 comm="syz.3.14154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1288.112026][ T37] audit: type=1326 audit(2016777974.673:1645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5539 comm="syz.3.14154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1288.112066][ T37] audit: type=1326 audit(2016777974.673:1646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5539 comm="syz.3.14154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1288.112105][ T37] audit: type=1326 audit(2016777974.673:1647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5539 comm="syz.3.14154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1288.112148][ T37] audit: type=1326 audit(2016777974.673:1648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5539 comm="syz.3.14154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1288.431164][ T5552] netlink: 72 bytes leftover after parsing attributes in process `syz.3.14158'. [ 1288.668807][ T5557] mac80211_hwsim hwsim10 wlan0: entered promiscuous mode [ 1291.537665][ T5642] overlayfs: missing 'lowerdir' [ 1293.597322][ T5667] trusted_key: encrypted_key: master key parameter is missing [ 1294.080123][ T5692] netlink: 4 bytes leftover after parsing attributes in process `syz.0.14215'. [ 1296.104029][ T5740] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 1296.104049][ T5740] overlayfs: missing 'lowerdir' [ 1298.406791][ T5776] netlink: 236 bytes leftover after parsing attributes in process `syz.2.14253'. [ 1299.533057][ T5809] overlayfs: failed to resolve './file1/file0': -2 [ 1299.563309][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 1301.871334][ T5855] overlayfs: failed to resolve './file1': -2 [ 1302.187370][ T5869] overlayfs: failed to clone upperpath [ 1305.785433][ T5959] tipc: Enabling of bearer rejected, failed to enable media [ 1306.178179][ T5942] fuse: Bad value for 'group_id' [ 1306.178198][ T5942] fuse: Bad value for 'group_id' [ 1306.728450][ T5995] binder: Binderfs stats mode cannot be changed during a remount [ 1311.246780][ T6132] netlink: 104 bytes leftover after parsing attributes in process `syz.0.14381'. [ 1311.532763][ T6144] sctp: [Deprecated]: syz.1.14387 (pid 6144) Use of int in maxseg socket option. [ 1311.532763][ T6144] Use struct sctp_assoc_value instead [ 1317.033808][ T6243] netlink: 56 bytes leftover after parsing attributes in process `syz.1.14428'. [ 1317.338619][ T6257] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1317.338659][ T6257] overlayfs: missing 'lowerdir' [ 1319.293756][ T37] kauditd_printk_skb: 2 callbacks suppressed [ 1319.293774][ T37] audit: type=1326 audit(2016778005.889:1651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6299 comm="syz.0.14453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1319.293879][ T37] audit: type=1326 audit(2016778005.889:1652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6299 comm="syz.0.14453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1319.309934][ T37] audit: type=1326 audit(2016778005.909:1653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6299 comm="syz.0.14453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1319.309986][ T37] audit: type=1326 audit(2016778005.909:1654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6299 comm="syz.0.14453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1319.310027][ T37] audit: type=1326 audit(2016778005.909:1655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6299 comm="syz.0.14453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1319.313527][ T37] audit: type=1326 audit(2016778005.909:1656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6299 comm="syz.0.14453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1319.313574][ T37] audit: type=1326 audit(2016778005.909:1657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6299 comm="syz.0.14453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1319.313614][ T37] audit: type=1326 audit(2016778005.909:1658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6299 comm="syz.0.14453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1319.313653][ T37] audit: type=1326 audit(2016778005.909:1659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6299 comm="syz.0.14453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1319.313699][ T37] audit: type=1326 audit(2016778005.909:1660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6299 comm="syz.0.14453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1320.901082][ T6308] Invalid ELF header magic: != ELF [ 1323.322418][ T6361] 9pnet_fd: Insufficient options for proto=fd [ 1324.349593][ T6387] netlink: 4 bytes leftover after parsing attributes in process `syz.4.14484'. [ 1325.458857][ T37] kauditd_printk_skb: 33 callbacks suppressed [ 1325.458873][ T37] audit: type=1326 audit(2016778012.052:1694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6426 comm="syz.3.14508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1325.459009][ T37] audit: type=1326 audit(2016778012.052:1695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6426 comm="syz.3.14508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1325.471968][ T6421] netlink: 92 bytes leftover after parsing attributes in process `syz.1.14506'. [ 1325.525183][ T37] audit: type=1326 audit(2016778012.122:1696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6426 comm="syz.3.14508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1325.525322][ T37] audit: type=1326 audit(2016778012.122:1697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6426 comm="syz.3.14508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1325.525479][ T37] audit: type=1326 audit(2016778012.122:1698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6426 comm="syz.3.14508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1325.526998][ T37] audit: type=1326 audit(2016778012.122:1699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6426 comm="syz.3.14508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1325.527386][ T37] audit: type=1326 audit(2016778012.122:1700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6426 comm="syz.3.14508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1325.527517][ T37] audit: type=1326 audit(2016778012.122:1701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6426 comm="syz.3.14508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1325.528085][ T37] audit: type=1326 audit(2016778012.122:1702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6426 comm="syz.3.14508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1325.528808][ T37] audit: type=1326 audit(2016778012.122:1703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6426 comm="syz.3.14508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1329.379525][ T6525] tipc: Failed to remove unknown binding: 66,1,1/2886997007:1545229688/1545229690 [ 1336.325358][ T6725] overlayfs: failed to clone upperpath [ 1337.176054][ T6760] netlink: 84 bytes leftover after parsing attributes in process `syz.1.14659'. [ 1337.176085][ T6760] netlink: 56 bytes leftover after parsing attributes in process `syz.1.14659'. [ 1338.084443][ T6799] overlayfs: failed to clone upperpath [ 1338.753648][ T6821] netlink: 'syz.1.14691': attribute type 13 has an invalid length. [ 1339.516400][ T6821] erspan0: refused to change device tx_queue_len [ 1339.634571][ T6828] netlink: 28 bytes leftover after parsing attributes in process `syz.4.14683'. [ 1342.331729][ T6876] overlayfs: missing 'lowerdir' [ 1342.975936][ T6907] netlink: 192 bytes leftover after parsing attributes in process `syz.3.14721'. [ 1343.515541][ T6931] 9pnet_fd: Insufficient options for proto=fd [ 1351.245201][ T7068] overlayfs: failed to clone upperpath [ 1355.424934][ T7174] overlayfs: missing 'lowerdir' [ 1357.966631][ T7248] netlink: 8 bytes leftover after parsing attributes in process `syz.2.14873'. [ 1358.019870][ T7248] vlan0: entered allmulticast mode [ 1358.019892][ T7248] bridge_slave_0: entered allmulticast mode [ 1360.618388][ T7284] netlink: 368 bytes leftover after parsing attributes in process `syz.1.14888'. [ 1360.799772][ T7290] netlink: 104 bytes leftover after parsing attributes in process `syz.4.14891'. [ 1360.971022][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 1362.554745][ T37] kauditd_printk_skb: 29 callbacks suppressed [ 1362.554762][ T37] audit: type=1326 audit(2016778049.160:1733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7339 comm="syz.4.14914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1362.554809][ T37] audit: type=1326 audit(2016778049.160:1734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7339 comm="syz.4.14914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1362.554852][ T37] audit: type=1326 audit(2016778049.160:1735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7339 comm="syz.4.14914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1362.554893][ T37] audit: type=1326 audit(2016778049.160:1736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7339 comm="syz.4.14914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1362.554937][ T37] audit: type=1326 audit(2016778049.160:1737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7339 comm="syz.4.14914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1362.554979][ T37] audit: type=1326 audit(2016778049.160:1738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7339 comm="syz.4.14914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1362.555021][ T37] audit: type=1326 audit(2016778049.160:1739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7339 comm="syz.4.14914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1362.555065][ T37] audit: type=1326 audit(2016778049.160:1740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7339 comm="syz.4.14914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1362.555107][ T37] audit: type=1326 audit(2016778049.160:1741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7339 comm="syz.4.14914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1362.555156][ T37] audit: type=1326 audit(2016778049.160:1742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7339 comm="syz.4.14914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1369.781676][ T7508] netlink: 48 bytes leftover after parsing attributes in process `syz.3.14991'. [ 1371.200567][ T7521] netlink: 'syz.3.14996': attribute type 4 has an invalid length. [ 1371.224987][ T7518] netlink: 'syz.3.14996': attribute type 4 has an invalid length. [ 1372.153005][ T7545] netlink: 60 bytes leftover after parsing attributes in process `syz.3.15007'. [ 1375.034985][ T7614] netlink: 288 bytes leftover after parsing attributes in process `syz.2.15037'. [ 1375.340969][ T7635] overlayfs: failed to resolve './file0': -2 [ 1377.266701][ T7673] netlink: 'syz.3.15062': attribute type 4 has an invalid length. [ 1378.409089][ T7691] netlink: 4 bytes leftover after parsing attributes in process `syz.1.15068'. [ 1379.403583][ T7695] netlink: 'syz.3.15071': attribute type 4 has an invalid length. [ 1379.413260][ T7697] netlink: 12 bytes leftover after parsing attributes in process `syz.2.15074'. [ 1379.435019][ T7695] netlink: 'syz.3.15071': attribute type 17 has an invalid length. [ 1383.236794][ T7781] 9pnet: Unknown protocol version 9 [ 1388.453283][ T7924] netlink: 120 bytes leftover after parsing attributes in process `syz.1.15176'. [ 1388.453332][ T7924] netlink: 12 bytes leftover after parsing attributes in process `syz.1.15176'. [ 1388.685791][ T37] kauditd_printk_skb: 81 callbacks suppressed [ 1388.685807][ T37] audit: type=1326 audit(2016778075.313:1824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7935 comm="syz.3.15183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1388.687315][ T37] audit: type=1326 audit(2016778075.313:1825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7935 comm="syz.3.15183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1388.691173][ T37] audit: type=1326 audit(2016778075.313:1826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7935 comm="syz.3.15183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1388.692030][ T37] audit: type=1326 audit(2016778075.313:1827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7935 comm="syz.3.15183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1388.692076][ T37] audit: type=1326 audit(2016778075.323:1828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7935 comm="syz.3.15183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1388.692124][ T37] audit: type=1326 audit(2016778075.323:1829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7935 comm="syz.3.15183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1388.701477][ T37] audit: type=1326 audit(2016778075.323:1830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7935 comm="syz.3.15183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1388.701522][ T37] audit: type=1326 audit(2016778075.323:1831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7935 comm="syz.3.15183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1388.701565][ T37] audit: type=1326 audit(2016778075.323:1832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7935 comm="syz.3.15183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1388.701607][ T37] audit: type=1326 audit(2016778075.323:1833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7935 comm="syz.3.15183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1390.417808][ T8010] netlink: 64 bytes leftover after parsing attributes in process `syz.4.15219'. [ 1395.018198][ T37] kauditd_printk_skb: 35 callbacks suppressed [ 1395.018216][ T37] audit: type=1326 audit(2016778081.647:1869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8122 comm="syz.4.15270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1395.018270][ T37] audit: type=1326 audit(2016778081.647:1870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8122 comm="syz.4.15270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1395.042542][ T37] audit: type=1326 audit(2016778081.677:1871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8122 comm="syz.4.15270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1395.042594][ T37] audit: type=1326 audit(2016778081.677:1872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8122 comm="syz.4.15270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1395.042635][ T37] audit: type=1326 audit(2016778081.677:1873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8122 comm="syz.4.15270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1395.042676][ T37] audit: type=1326 audit(2016778081.677:1874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8122 comm="syz.4.15270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1395.042717][ T37] audit: type=1326 audit(2016778081.677:1875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8122 comm="syz.4.15270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1395.042756][ T37] audit: type=1326 audit(2016778081.677:1876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8122 comm="syz.4.15270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1395.044422][ T37] audit: type=1326 audit(2016778081.677:1877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8122 comm="syz.4.15270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1395.044468][ T37] audit: type=1326 audit(2016778081.677:1878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8122 comm="syz.4.15270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1513b7f6c9 code=0x7ffc0000 [ 1397.897856][ T8210] netlink: 'syz.3.15303': attribute type 4 has an invalid length. [ 1399.354152][ T8231] overlayfs: missing 'lowerdir' [ 1402.036017][ T8296] netlink: 32 bytes leftover after parsing attributes in process `syz.4.15338'. [ 1404.404720][ T8335] 9p: Unknown Cache mode or invalid value f [ 1405.533487][ T8357] @: renamed from vlan0 (while UP) [ 1409.018128][ T8408] netlink: 36 bytes leftover after parsing attributes in process `syz.3.15387'. [ 1412.276831][ T8496] netlink: 84 bytes leftover after parsing attributes in process `syz.1.15428'. [ 1413.329189][ T8540] netlink: 36 bytes leftover after parsing attributes in process `syz.4.15448'. [ 1413.329590][ T8540] netlink: 36 bytes leftover after parsing attributes in process `syz.4.15448'. [ 1413.514566][ T8542] netlink: 8 bytes leftover after parsing attributes in process `syz.3.15446'. [ 1414.657336][ T8542] netlink: 8 bytes leftover after parsing attributes in process `syz.3.15446'. [ 1414.657922][ T8542] workqueue: Failed to create a rescuer kthread for wq "bond4": -EINTR [ 1419.494716][ T8629] overlayfs: failed to clone upperpath [ 1421.768389][ T8719] netlink: 20 bytes leftover after parsing attributes in process `syz.2.15519'. [ 1421.946314][ T8725] netlink: 'syz.4.15522': attribute type 4 has an invalid length. [ 1421.946335][ T8725] netlink: 'syz.4.15522': attribute type 5 has an invalid length. [ 1421.946347][ T8725] netlink: 3657 bytes leftover after parsing attributes in process `syz.4.15522'. [ 1422.085344][ T8732] netlink: 8 bytes leftover after parsing attributes in process `syz.1.15525'. [ 1422.370003][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 1424.743627][ T8801] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null. [ 1424.743643][ T8801] overlayfs: missing 'lowerdir' [ 1424.917728][ T8804] netlink: 'syz.0.15556': attribute type 10 has an invalid length. [ 1424.917751][ T8804] netlink: 40 bytes leftover after parsing attributes in process `syz.0.15556'. [ 1424.918792][ T8804] dummy0: entered promiscuous mode [ 1424.919486][ T8804] batman_adv: batadv0: Interface activated: dummy0 [ 1424.919506][ T8804] batadv0: mtu less than device minimum [ 1424.940149][ T8804] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 1424.982216][ T8804] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 1425.014679][ T8804] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 1425.048712][ T8804] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 1425.079096][ T8804] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 1425.110731][ T8804] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 1425.118033][ T8811] netlink: 'syz.3.15559': attribute type 4 has an invalid length. [ 1425.118051][ T8811] netlink: 'syz.3.15559': attribute type 5 has an invalid length. [ 1425.118062][ T8811] netlink: 3657 bytes leftover after parsing attributes in process `syz.3.15559'. [ 1425.129429][ T8804] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 1425.149580][ T8804] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 1425.177550][ T8804] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 1425.419140][ T8804] batman_adv: batadv0: Interface deactivated: dummy0 [ 1425.419168][ T8804] batman_adv: batadv0: Removing interface: dummy0 [ 1426.292549][ C0] vkms_vblank_simulate: vblank timer overrun [ 1426.981556][ C0] vkms_vblank_simulate: vblank timer overrun [ 1427.118669][ C0] vkms_vblank_simulate: vblank timer overrun [ 1427.404842][ T8867] netlink: 20 bytes leftover after parsing attributes in process `syz.1.15583'. [ 1427.404865][ T8867] netlink: 12 bytes leftover after parsing attributes in process `syz.1.15583'. [ 1427.456655][ T8867] 8021q: adding VLAN 0 to HW filter on device bond4 [ 1427.457949][ T8867] netlink: 20 bytes leftover after parsing attributes in process `syz.1.15583'. [ 1427.457968][ T8867] netlink: 12 bytes leftover after parsing attributes in process `syz.1.15583'. [ 1427.645805][ T8867] 8021q: adding VLAN 0 to HW filter on device bond5 [ 1428.271666][ T8894] binder: 8892:8894 ioctl c0306201 0 returned -14 [ 1428.953098][ C0] vkms_vblank_simulate: vblank timer overrun [ 1429.928652][ C0] vkms_vblank_simulate: vblank timer overrun [ 1438.168677][ T9028] loop5: detected capacity change from 0 to 7 [ 1439.064398][ T9028] Dev loop5: unable to read RDB block 7 [ 1439.064457][ T9028] loop5: unable to read partition table [ 1439.064930][ T9028] loop5: partition table beyond EOD, truncated [ 1439.064989][ T9028] loop_reread_partitions: partition scan of loop5 (ъщ) failed (rc=-5) [ 1441.491889][ T9094] netlink: 8 bytes leftover after parsing attributes in process `syz.4.15673'. [ 1443.376348][ T9128] netlink: 8 bytes leftover after parsing attributes in process `syz.1.15687'. [ 1443.584179][ T6035] usb 1-1: new full-speed USB device number 18 using dummy_hcd [ 1443.746689][ T6035] usb 1-1: config 0 has an invalid interface number: 133 but max is 0 [ 1443.746716][ T6035] usb 1-1: config 0 has no interface number 0 [ 1443.746764][ T6035] usb 1-1: config 0 interface 133 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 1443.751738][ T6035] usb 1-1: New USB device found, idVendor=06cd, idProduct=0121, bcdDevice=dd.3d [ 1443.751765][ T6035] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1443.751785][ T6035] usb 1-1: Product: syz [ 1443.751797][ T6035] usb 1-1: Manufacturer: syz [ 1443.751810][ T6035] usb 1-1: SerialNumber: syz [ 1443.770954][ T6035] usb 1-1: config 0 descriptor?? [ 1443.856712][ T9139] overlayfs: failed to clone upperpath [ 1444.026622][ T6035] keyspan 1-1:0.133: Keyspan 1 port adapter converter detected [ 1444.026860][ T6035] keyspan 1-1:0.133: unsupported endpoint type 0 [ 1444.029034][ T6035] keyspan 1-1:0.133: found no endpoint descriptor for endpoint 81 [ 1444.029121][ T6035] keyspan 1-1:0.133: found no endpoint descriptor for endpoint 1 [ 1444.029212][ T6035] keyspan 1-1:0.133: found no endpoint descriptor for endpoint 2 [ 1444.042255][ T6035] usb 1-1: Keyspan 1 port adapter converter now attached to ttyUSB0 [ 1444.058404][ T6035] usb 1-1: USB disconnect, device number 18 [ 1444.085779][ T6035] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0 [ 1444.089377][ T6035] keyspan 1-1:0.133: device disconnected [ 1444.108052][ T9130] udevd[9130]: setting owner of /dev/bus/usb/001/018 to uid=0, gid=0 failed: No such file or directory [ 1444.709737][ T9170] netlink: 4 bytes leftover after parsing attributes in process `syz.1.15707'. [ 1445.377579][ T9196] netlink: 288 bytes leftover after parsing attributes in process `syz.0.15719'. [ 1447.043747][ T9222] tmpfs: Bad value for 'grpquota_block_hardlimit' [ 1449.663466][ T9254] overlayfs: missing 'lowerdir' [ 1451.908958][ T9290] overlayfs: failed to clone upperpath [ 1452.509718][ T31] usb 1-1: new high-speed USB device number 19 using dummy_hcd [ 1452.662176][ T31] usb 1-1: config 0 has no interfaces? [ 1452.665215][ T31] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 1452.665242][ T31] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1452.665261][ T31] usb 1-1: Product: syz [ 1452.665275][ T31] usb 1-1: Manufacturer: syz [ 1452.665288][ T31] usb 1-1: SerialNumber: syz [ 1452.710250][ T31] usb 1-1: config 0 descriptor?? [ 1452.950070][ T6035] usb 1-1: USB disconnect, device number 19 [ 1454.375058][ T9364] netlink: 8 bytes leftover after parsing attributes in process `syz.1.15793'. [ 1454.449392][ T9366] netlink: 16 bytes leftover after parsing attributes in process `syz.3.15794'. [ 1455.148537][ T9391] netlink: 84 bytes leftover after parsing attributes in process `syz.3.15805'. [ 1455.148569][ T9391] netlink: 56 bytes leftover after parsing attributes in process `syz.3.15805'. [ 1455.968312][ T6035] usb 1-1: new high-speed USB device number 20 using dummy_hcd [ 1456.167941][ T6035] usb 1-1: Using ep0 maxpacket: 8 [ 1456.208112][ T6035] usb 1-1: unable to get BOS descriptor or descriptor too short [ 1456.252704][ T6035] usb 1-1: config 12 has an invalid descriptor of length 0, skipping remainder of the config [ 1456.252848][ T6035] usb 1-1: config 12 interface 0 altsetting 7 has an invalid descriptor for endpoint zero, skipping [ 1456.252907][ T6035] usb 1-1: config 12 interface 0 altsetting 7 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1456.252985][ T6035] usb 1-1: config 12 interface 0 has no altsetting 0 [ 1456.395565][ T6035] usb 1-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=6a.e5 [ 1456.395593][ T6035] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1456.395668][ T6035] usb 1-1: Product: syz [ 1456.395708][ T6035] usb 1-1: Manufacturer: syz [ 1456.395750][ T6035] usb 1-1: SerialNumber: syz [ 1456.584369][ T9420] netlink: 'syz.1.15820': attribute type 4 has an invalid length. [ 1456.584391][ T9420] netlink: 'syz.1.15820': attribute type 5 has an invalid length. [ 1456.584404][ T9420] netlink: 3657 bytes leftover after parsing attributes in process `syz.1.15820'. [ 1456.943718][ T6035] usb 1-1: Quirk or no altset; falling back to MIDI 1.0 [ 1456.943787][ T6035] usb 1-1: selecting invalid altsetting 0 [ 1457.043765][ T6035] snd-usb-audio 1-1:12.0: probe with driver snd-usb-audio failed with error -2 [ 1457.065675][ T6035] usb 1-1: USB disconnect, device number 20 [ 1457.114442][ T9297] udevd[9297]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:12.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1457.206751][ T9437] overlayfs: failed to clone upperpath [ 1457.386753][ T9447] netlink: 84 bytes leftover after parsing attributes in process `syz.2.15831'. [ 1457.672869][ T9461] netlink: 368 bytes leftover after parsing attributes in process `syz.2.15838'. [ 1458.111277][ T9485] netlink: 4 bytes leftover after parsing attributes in process `syz.3.15849'. [ 1459.484948][ T9508] netlink: 84 bytes leftover after parsing attributes in process `syz.0.15858'. [ 1459.484970][ T9508] netlink: 72 bytes leftover after parsing attributes in process `syz.0.15858'. [ 1460.966756][ T9550] netlink: 12 bytes leftover after parsing attributes in process `syz.4.15877'. [ 1461.175210][ T6236] usb 1-1: new high-speed USB device number 21 using dummy_hcd [ 1461.335362][ T6236] usb 1-1: Using ep0 maxpacket: 16 [ 1461.337855][ T6236] usb 1-1: config 0 has no interfaces? [ 1461.340905][ T6236] usb 1-1: New USB device found, idVendor=056e, idProduct=b338, bcdDevice=7f.56 [ 1461.340933][ T6236] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1461.340952][ T6236] usb 1-1: Product: syz [ 1461.340965][ T6236] usb 1-1: Manufacturer: syz [ 1461.340979][ T6236] usb 1-1: SerialNumber: syz [ 1461.348621][ T6236] usb 1-1: config 0 descriptor?? [ 1461.553704][ T6236] usb 1-1: USB disconnect, device number 21 [ 1462.735877][ T9583] netlink: 4 bytes leftover after parsing attributes in process `syz.1.15874'. [ 1462.736478][ T9583] netlink: 4 bytes leftover after parsing attributes in process `syz.1.15874'. [ 1464.893803][ T9631] 9pnet: Could not find request transport: 0xffffffffffffffff [ 1466.317498][ T9652] tipc: Failed to remove unknown binding: 66,1,1/81356768:3918768921/3918768923 [ 1466.317535][ T9652] tipc: Failed to remove unknown binding: 66,1,1/81356768:3918768921/3918768923 [ 1468.063352][ T9687] netlink: 32 bytes leftover after parsing attributes in process `syz.3.15925'. [ 1468.206703][ T9696] netlink: 4 bytes leftover after parsing attributes in process `syz.4.15928'. [ 1468.836841][ T9709] netlink: 12 bytes leftover after parsing attributes in process `syz.3.15934'. [ 1470.099332][ T9717] overlayfs: failed to resolve './file1/file0': -2 [ 1471.680777][ T9741] netlink: 16 bytes leftover after parsing attributes in process `syz.1.15951'. [ 1473.847293][ T9788] netlink: 'syz.2.15973': attribute type 4 has an invalid length. [ 1473.847314][ T9788] netlink: 'syz.2.15973': attribute type 5 has an invalid length. [ 1473.847327][ T9788] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.15973'. [ 1474.607727][ T9825] netlink: 16 bytes leftover after parsing attributes in process `syz.4.15989'. [ 1476.355789][ T9844] overlay: Unknown parameter 'appraise' [ 1478.050400][ T9863] netlink: 120 bytes leftover after parsing attributes in process `syz.3.16006'. [ 1478.050437][ T9863] netlink: 12 bytes leftover after parsing attributes in process `syz.3.16006'. [ 1478.050452][ T9863] netlink: 8 bytes leftover after parsing attributes in process `syz.3.16006'. [ 1479.854962][ T9921] bond1: (slave dummy0): Releasing active interface [ 1480.972834][ T9948] 9pnet_fd: Insufficient options for proto=fd [ 1482.538526][T10008] netlink: 24 bytes leftover after parsing attributes in process `syz.2.16070'. [ 1483.793690][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 1485.540583][T10077] netlink: 76 bytes leftover after parsing attributes in process `syz.2.16103'. [ 1485.542044][T10077] netlink: 76 bytes leftover after parsing attributes in process `syz.2.16103'. [ 1486.965262][T10099] tipc: Failed to remove unknown binding: 66,1,1/4:1484115914/1484115916 [ 1486.965301][T10099] tipc: Failed to remove unknown binding: 66,1,1/4:1484115914/1484115916 [ 1490.311887][T10186] sctp: [Deprecated]: syz.4.16150 (pid 10186) Use of int in maxseg socket option. [ 1490.311887][T10186] Use struct sctp_assoc_value instead [ 1491.210620][T10220] overlayfs: failed to clone upperpath [ 1492.557560][T10242] batadv_slave_1: entered promiscuous mode [ 1492.568327][T10239] batadv_slave_1: left promiscuous mode [ 1493.378856][T10266] overlayfs: failed to clone lowerpath [ 1494.947870][T10304] netlink: 4 bytes leftover after parsing attributes in process `syz.0.16197'. [ 1494.957358][T10304] netlink: 4 bytes leftover after parsing attributes in process `syz.0.16197'. [ 1495.081976][T10308] netlink: 20 bytes leftover after parsing attributes in process `syz.4.16199'. [ 1495.126106][ T37] kauditd_printk_skb: 35 callbacks suppressed [ 1495.126121][ T37] audit: type=1800 audit(2016778181.807:1914): pid=10313 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.2.16201" name="nullb0" dev="tmpfs" ino=9193 res=0 errno=0 [ 1495.306125][T10318] netlink: 20 bytes leftover after parsing attributes in process `syz.0.16205'. [ 1495.534843][ T37] audit: type=1326 audit(2016778182.217:1915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10331 comm="syz.0.16208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1495.537283][ T37] audit: type=1326 audit(2016778182.217:1916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10331 comm="syz.0.16208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1495.537719][ T37] audit: type=1326 audit(2016778182.217:1917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10331 comm="syz.0.16208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1495.549028][ T37] audit: type=1326 audit(2016778182.237:1918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10331 comm="syz.0.16208" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69a748f6c9 code=0x7ffc0000 [ 1504.124626][T10512] 9pnet: Could not find request transport: 0xffffffffffffffff [ 1505.498052][T10539] netlink: 120 bytes leftover after parsing attributes in process `syz.4.16302'. [ 1505.568575][T10543] overlayfs: missing 'workdir' [ 1505.859459][T10557] netlink: 12 bytes leftover after parsing attributes in process `syz.0.16308'. [ 1510.130916][T10596] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16326'. [ 1511.314309][T10608] overlayfs: failed to clone upperpath [ 1512.669302][ T37] audit: type=1326 audit(2016778199.355:1919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10618 comm="syz.2.16336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1512.669986][ T37] audit: type=1326 audit(2016778199.365:1920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10618 comm="syz.2.16336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1512.671165][ T37] audit: type=1326 audit(2016778199.365:1921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10618 comm="syz.2.16336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1512.676040][ T37] audit: type=1326 audit(2016778199.365:1922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10618 comm="syz.2.16336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1512.676900][ T37] audit: type=1326 audit(2016778199.365:1923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10618 comm="syz.2.16336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1512.676949][ T37] audit: type=1326 audit(2016778199.365:1924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10618 comm="syz.2.16336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1512.677565][ T37] audit: type=1326 audit(2016778199.365:1925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10618 comm="syz.2.16336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1512.681405][ T37] audit: type=1326 audit(2016778199.375:1926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10618 comm="syz.2.16336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1512.681946][ T37] audit: type=1326 audit(2016778199.375:1927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10618 comm="syz.2.16336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1512.686351][ T37] audit: type=1326 audit(2016778199.375:1928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10618 comm="syz.2.16336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1513.063123][T10628] netlink: 24 bytes leftover after parsing attributes in process `syz.3.16340'. [ 1513.964889][T10667] overlayfs: failed to clone upperpath [ 1514.164471][T10675] netlink: 48 bytes leftover after parsing attributes in process `syz.0.16361'. [ 1514.164730][T10675] netlink: 48 bytes leftover after parsing attributes in process `syz.0.16361'. [ 1515.158635][T10717] netlink: 104 bytes leftover after parsing attributes in process `syz.4.16379'. [ 1515.670319][T10732] overlayfs: missing 'lowerdir' [ 1517.479641][T10773] overlayfs: failed to clone upperpath [ 1517.580464][T10774] overlayfs: failed to clone lowerpath [ 1518.925350][T10797] netlink: 8 bytes leftover after parsing attributes in process `syz.3.16414'. [ 1518.925371][T10797] netlink: 12 bytes leftover after parsing attributes in process `syz.3.16414'. [ 1518.925396][T10797] netlink: 8 bytes leftover after parsing attributes in process `syz.3.16414'. [ 1518.979884][T10800] binder: Bad value for 'max' [ 1519.020032][ T147] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 1519.020317][ T147] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 1519.020356][ T147] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 1519.020391][ T147] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 1519.023648][T10797] netlink: 8 bytes leftover after parsing attributes in process `syz.3.16414'. [ 1519.023667][T10797] netlink: 12 bytes leftover after parsing attributes in process `syz.3.16414'. [ 1519.023691][T10797] netlink: 8 bytes leftover after parsing attributes in process `syz.3.16414'. [ 1520.304905][T10820] overlayfs: failed to resolve './file0': -2 [ 1521.539133][T10830] overlayfs: failed to clone upperpath [ 1523.834092][ T6035] IPVS: starting estimator thread 0... [ 1524.113829][T10863] IPVS: using max 7 ests per chain, 16800 per kthread [ 1531.802070][T11058] netlink: 'syz.1.16528': attribute type 1 has an invalid length. [ 1532.038960][T11058] bond6: (slave bridge3): making interface the new active one [ 1532.053940][T11058] bond6: (slave bridge3): Enslaving as an active interface with an up link [ 1532.132393][T11065] bond6: (slave gretap0): Enslaving as an active interface with an up link [ 1532.250684][T11075] netlink: 112 bytes leftover after parsing attributes in process `syz.4.16534'. [ 1538.894787][T11193] overlayfs: missing 'lowerdir' [ 1539.306166][T11202] netlink: 4 bytes leftover after parsing attributes in process `syz.0.16590'. [ 1542.171033][ C1] vkms_vblank_simulate: vblank timer overrun [ 1542.421943][ C1] vkms_vblank_simulate: vblank timer overrun [ 1543.246761][ C1] vkms_vblank_simulate: vblank timer overrun [ 1543.553379][ C1] vkms_vblank_simulate: vblank timer overrun [ 1544.023506][ C1] vkms_vblank_simulate: vblank timer overrun [ 1544.066564][ C1] vkms_vblank_simulate: vblank timer overrun [ 1544.817063][ C1] vkms_vblank_simulate: vblank timer overrun [ 1545.472701][ C1] vkms_vblank_simulate: vblank timer overrun [ 1545.599327][ C1] vkms_vblank_simulate: vblank timer overrun [ 1545.600040][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 1546.421439][T11320] overlayfs: failed to clone upperpath [ 1549.487028][T11364] overlayfs: failed to clone upperpath [ 1551.233211][T11385] netlink: 'syz.0.16662': attribute type 25 has an invalid length. [ 1551.895648][T11407] loop5: detected capacity change from 0 to 7 [ 1552.270240][T11415] netlink: 12 bytes leftover after parsing attributes in process `syz.3.16677'. [ 1552.419169][T11415] 8021q: adding VLAN 0 to HW filter on device bond4 [ 1552.566296][T11407] Dev loop5: unable to read RDB block 7 [ 1552.566350][T11407] loop5: unable to read partition table [ 1552.566590][T11407] loop5: partition table beyond EOD, truncated [ 1552.566625][T11407] loop_reread_partitions: partition scan of loop5 (ъщ) failed (rc=-5) [ 1554.855759][T11473] netlink: 88 bytes leftover after parsing attributes in process `syz.0.16699'. [ 1559.394504][T11554] 9pnet_virtio: no channels available for device syz [ 1563.669348][T11634] netlink: 20 bytes leftover after parsing attributes in process `syz.3.16765'. [ 1566.012102][T11678] can: request_module (can-proto-0) failed. [ 1569.951985][T11755] netlink: 156 bytes leftover after parsing attributes in process `syz.0.16819'. [ 1570.458120][T11775] overlayfs: failed to clone upperpath [ 1570.566297][T11783] netlink: 156 bytes leftover after parsing attributes in process `syz.3.16833'. [ 1572.054388][T11802] fuseblk: Bad value for 'fd' [ 1572.195314][T11808] 9pnet_fd: Insufficient options for proto=fd [ 1576.292840][T11877] netlink: 104 bytes leftover after parsing attributes in process `syz.4.16871'. [ 1578.663413][T11950] 9pnet_fd: Insufficient options for proto=fd [ 1578.823239][T11956] netlink: 156 bytes leftover after parsing attributes in process `syz.2.16909'. [ 1579.074515][T11971] overlay: Unknown parameter 'hash' [ 1579.877727][T12000] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 1579.920522][T12000] kvm: pic: level sensitive irq not supported [ 1579.920602][T12000] picdev_read: 26 callbacks suppressed [ 1579.920622][T12000] kvm: pic: non byte read [ 1579.920879][T12000] kvm: pic: level sensitive irq not supported [ 1579.920934][T12000] kvm: pic: non byte read [ 1579.921188][T12000] kvm: pic: level sensitive irq not supported [ 1579.921241][T12000] kvm: pic: non byte read [ 1580.444710][T12019] overlayfs: missing 'lowerdir' [ 1580.632659][T12026] netlink: 596 bytes leftover after parsing attributes in process `syz.4.16938'. [ 1581.991501][T12058] overlayfs: failed to clone upperpath [ 1582.938914][T12082] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null. [ 1582.938931][T12082] overlayfs: missing 'lowerdir' [ 1585.103204][ T37] kauditd_printk_skb: 11 callbacks suppressed [ 1585.103222][ T37] audit: type=1326 audit(2016778271.802:1940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12120 comm="syz.3.16980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1585.103268][ T37] audit: type=1326 audit(2016778271.802:1941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12120 comm="syz.3.16980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1585.103309][ T37] audit: type=1326 audit(2016778271.812:1942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12120 comm="syz.3.16980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=314 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1585.103350][ T37] audit: type=1326 audit(2016778271.812:1943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12120 comm="syz.3.16980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1585.103394][ T37] audit: type=1326 audit(2016778271.812:1944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12120 comm="syz.3.16980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1585.103434][ T37] audit: type=1326 audit(2016778271.812:1945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12120 comm="syz.3.16980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1585.103474][ T37] audit: type=1326 audit(2016778271.812:1946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12120 comm="syz.3.16980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1585.103513][ T37] audit: type=1326 audit(2016778271.812:1947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12120 comm="syz.3.16980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1585.103553][ T37] audit: type=1326 audit(2016778271.812:1948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12120 comm="syz.3.16980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1585.103592][ T37] audit: type=1326 audit(2016778271.812:1949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12120 comm="syz.3.16980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1586.363469][T12135] netlink: 288 bytes leftover after parsing attributes in process `syz.2.16982'. [ 1589.599049][T12223] netlink: 76 bytes leftover after parsing attributes in process `syz.3.17021'. [ 1589.600414][T12223] netlink: 76 bytes leftover after parsing attributes in process `syz.3.17021'. [ 1591.714212][T12268] netlink: 156 bytes leftover after parsing attributes in process `syz.3.17038'. [ 1595.148790][T12300] netlink: 156 bytes leftover after parsing attributes in process `syz.4.17050'. [ 1599.914196][ T37] kauditd_printk_skb: 22 callbacks suppressed [ 1599.914214][ T37] audit: type=1326 audit(2016778286.649:1972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12396 comm="syz.1.17087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1599.914865][ T37] audit: type=1326 audit(2016778286.649:1973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12396 comm="syz.1.17087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1599.933426][ T37] audit: type=1326 audit(2016778286.669:1974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12398 comm="syz.1.17087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fbc273b1f85 code=0x7ffc0000 [ 1599.933477][ T37] audit: type=1326 audit(2016778286.669:1975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12396 comm="syz.1.17087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1599.933862][ T37] audit: type=1326 audit(2016778286.669:1976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12396 comm="syz.1.17087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1600.425697][ T37] audit: type=1326 audit(2016778286.909:1977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12398 comm="syz.1.17087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7fbc2737f6c9 code=0x7ffc0000 [ 1604.120239][T12443] overlayfs: overlapping lowerdir path [ 1606.280668][T12489] netlink: 120 bytes leftover after parsing attributes in process `syz.0.17125'. [ 1606.824662][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 1607.685003][ T37] audit: type=1800 audit(2016778294.423:1978): pid=12498 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.0.17127" name="blkio.bfq.group_wait_time" dev="overlay" ino=21128 res=0 errno=0 [ 1608.225763][ T37] audit: type=1326 audit(2016778294.953:1979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12506 comm="syz.3.17131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1608.225807][ T37] audit: type=1326 audit(2016778294.953:1980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12506 comm="syz.3.17131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1608.225839][ T37] audit: type=1326 audit(2016778294.953:1981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12506 comm="syz.3.17131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1608.225870][ T37] audit: type=1326 audit(2016778294.953:1982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12506 comm="syz.3.17131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1608.225900][ T37] audit: type=1326 audit(2016778294.953:1983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12506 comm="syz.3.17131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1608.225930][ T37] audit: type=1326 audit(2016778294.953:1984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12506 comm="syz.3.17131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1608.225960][ T37] audit: type=1326 audit(2016778294.953:1985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12506 comm="syz.3.17131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1608.225990][ T37] audit: type=1326 audit(2016778294.953:1986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12506 comm="syz.3.17131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1608.226021][ T37] audit: type=1326 audit(2016778294.953:1987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12506 comm="syz.3.17131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1612.556156][T12553] netlink: 4 bytes leftover after parsing attributes in process `syz.4.17148'. [ 1612.556246][T12553] bridge_slave_1: left promiscuous mode [ 1612.556532][T12553] bridge0: port 2(bridge_slave_1) entered disabled state [ 1613.047496][T12553] bridge_slave_0: left allmulticast mode [ 1613.047524][T12553] bridge_slave_0: left promiscuous mode [ 1613.047781][T12553] bridge0: port 1(bridge_slave_0) entered disabled state [ 1616.565188][T12615] vlan0: entered promiscuous mode [ 1616.565209][T12615] bridge0: entered promiscuous mode [ 1616.565374][T12615] vlan0: entered allmulticast mode [ 1616.565388][T12615] bridge0: entered allmulticast mode [ 1618.986742][ T37] kauditd_printk_skb: 11 callbacks suppressed [ 1618.986760][ T37] audit: type=1326 audit(2016778305.659:1999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12655 comm="syz.3.17190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1618.986808][ T37] audit: type=1326 audit(2016778305.659:2000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12655 comm="syz.3.17190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1618.986852][ T37] audit: type=1326 audit(2016778305.669:2001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12655 comm="syz.3.17190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1618.986893][ T37] audit: type=1326 audit(2016778305.679:2002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12655 comm="syz.3.17190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1618.986937][ T37] audit: type=1326 audit(2016778305.679:2003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12655 comm="syz.3.17190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1618.986980][ T37] audit: type=1326 audit(2016778305.679:2004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12655 comm="syz.3.17190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=249 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1619.475084][ T37] audit: type=1326 audit(2016778306.209:2005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12655 comm="syz.3.17190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1619.475468][ T37] audit: type=1326 audit(2016778306.209:2006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12655 comm="syz.3.17190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f770983f6c9 code=0x7ffc0000 [ 1620.759559][T12690] netlink: 192 bytes leftover after parsing attributes in process `syz.3.17203'. [ 1621.319426][T12711] tipc: Failed to remove unknown binding: 66,1,1/81356768:1671410449/1671410451 [ 1621.371807][T12713] tipc: Failed to remove unknown binding: 66,1,1/81356768:1671410449/1671410451 [ 1621.371845][T12713] tipc: Failed to remove unknown binding: 66,1,1/81356768:1671410449/1671410451 [ 1621.444584][T12716] netlink: 120 bytes leftover after parsing attributes in process `syz.3.17214'. [ 1621.444612][T12716] netlink: 12 bytes leftover after parsing attributes in process `syz.3.17214'. [ 1621.444626][T12716] netlink: 8 bytes leftover after parsing attributes in process `syz.3.17214'. [ 1622.171174][T12739] netlink: 'syz.3.17223': attribute type 1 has an invalid length. [ 1623.059518][T12741] bond5: (slave bridge0): making interface the new active one [ 1623.060571][T12741] bond5: (slave bridge0): Enslaving as an active interface with an up link [ 1623.133922][T12745] bond5: (slave gretap2): Enslaving as an active interface with an up link [ 1625.054083][T12788] netlink: 'syz.3.17242': attribute type 1 has an invalid length. [ 1625.221556][T12786] bond6: (slave bridge1): making interface the new active one [ 1625.242780][T12786] bond6: (slave bridge1): Enslaving as an active interface with an up link [ 1625.243303][T12787] netlink: 20 bytes leftover after parsing attributes in process `syz.4.17241'. [ 1625.243321][T12787] netlink: 12 bytes leftover after parsing attributes in process `syz.4.17241'. [ 1625.331012][T12787] netlink: 20 bytes leftover after parsing attributes in process `syz.4.17241'. [ 1625.331034][T12787] netlink: 12 bytes leftover after parsing attributes in process `syz.4.17241'. [ 1626.925202][T12811] overlayfs: missing 'workdir' [ 1626.940728][ T37] audit: type=1326 audit(2016778313.683:2007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12815 comm="syz.2.17255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1626.942800][ T37] audit: type=1326 audit(2016778313.693:2008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12815 comm="syz.2.17255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1626.944959][ T37] audit: type=1326 audit(2016778313.693:2009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12815 comm="syz.2.17255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1626.945251][ T37] audit: type=1326 audit(2016778313.693:2010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12815 comm="syz.2.17255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1626.945783][ T37] audit: type=1326 audit(2016778313.693:2011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12815 comm="syz.2.17255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1626.946112][ T37] audit: type=1326 audit(2016778313.693:2012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12815 comm="syz.2.17255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1626.946361][ T37] audit: type=1326 audit(2016778313.693:2013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12815 comm="syz.2.17255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1626.946833][ T37] audit: type=1326 audit(2016778313.693:2014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12815 comm="syz.2.17255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1626.947110][ T37] audit: type=1326 audit(2016778313.693:2015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12815 comm="syz.2.17255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1626.947592][ T37] audit: type=1326 audit(2016778313.693:2016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12815 comm="syz.2.17255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1627.254712][T12821] overlayfs: failed to resolve './file1/file0': -2 [ 1627.453855][T12826] netlink: 'syz.1.17259': attribute type 1 has an invalid length. [ 1627.788706][T12829] bond7: (slave bridge4): making interface the new active one [ 1627.819293][T12829] bond7: (slave bridge4): Enslaving as an active interface with an up link [ 1630.522628][T12874] netlink: 4 bytes leftover after parsing attributes in process `syz.1.17278'. [ 1637.695795][T12997] overlayfs: failed to resolve './file1': -2 [ 1642.536866][T13037] netlink: 12 bytes leftover after parsing attributes in process `syz.0.17338'. [ 1645.076533][T13086] netlink: 'syz.1.17359': attribute type 1 has an invalid length. [ 1647.627602][T13127] netlink: 'syz.0.17373': attribute type 1 has an invalid length. [ 1652.024976][T13192] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 1652.024995][T13192] overlayfs: missing 'lowerdir' [ 1652.082687][T13194] overlayfs: failed to clone upperpath [ 1652.252536][T13203] overlayfs: failed to clone upperpath [ 1652.989468][T13225] netlink: 8 bytes leftover after parsing attributes in process `syz.0.17413'. [ 1652.989490][T13225] netlink: 12 bytes leftover after parsing attributes in process `syz.0.17413'. [ 1652.989515][T13225] netlink: 'syz.0.17413': attribute type 20 has an invalid length. [ 1652.992501][T13225] netlink: 8 bytes leftover after parsing attributes in process `syz.0.17413'. [ 1652.992519][T13225] netlink: 12 bytes leftover after parsing attributes in process `syz.0.17413'. [ 1652.992542][T13225] netlink: 'syz.0.17413': attribute type 20 has an invalid length. [ 1653.295766][T13235] batadv_slave_1: entered promiscuous mode [ 1653.296398][T13234] batadv_slave_1: left promiscuous mode [ 1653.348211][T13239] netlink: 104 bytes leftover after parsing attributes in process `syz.1.17419'. [ 1656.897862][T13293] netlink: 32 bytes leftover after parsing attributes in process `syz.1.17436'. [ 1657.014756][T13298] 9pnet_fd: Insufficient options for proto=fd [ 1668.022527][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 1668.366126][T13423] netlink: 8 bytes leftover after parsing attributes in process `syz.4.17483'. [ 1668.431139][T13423] 8021q: adding VLAN 0 to HW filter on device bond3 [ 1670.646983][T13470] overlayfs: missing 'lowerdir' [ 1673.281618][ T37] kauditd_printk_skb: 49 callbacks suppressed [ 1673.281635][ T37] audit: type=1800 audit(2016778360.056:2066): pid=13507 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.2.17515" name="nullb0" dev="tmpfs" ino=9193 res=0 errno=0 [ 1674.115767][T13529] netlink: 28 bytes leftover after parsing attributes in process `syz.1.17525'. [ 1676.790026][T13566] overlayfs: missing 'lowerdir' [ 1676.906521][T13572] netlink: 28 bytes leftover after parsing attributes in process `syz.3.17539'. [ 1684.165207][T13644] 9pnet: Could not find request transport: 0xffffffffffffffff [ 1687.566999][T13716] 9pnet_fd: Insufficient options for proto=fd [ 1688.219548][T13729] input: syz0 as /devices/virtual/input/input21 [ 1691.302086][T13750] netlink: 8 bytes leftover after parsing attributes in process `syz.4.17605'. [ 1691.302108][T13750] netlink: 4 bytes leftover after parsing attributes in process `syz.4.17605'. [ 1691.318853][T13750] netlink: 8 bytes leftover after parsing attributes in process `syz.4.17605'. [ 1691.318873][T13750] netlink: 4 bytes leftover after parsing attributes in process `syz.4.17605'. [ 1691.340254][ T1488] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 1691.340569][ T1488] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 1691.340625][ T1488] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 1691.340659][ T1488] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 1692.110004][ T37] audit: type=1326 audit(2016778378.235:2067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13755 comm="syz.2.17607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1692.110065][ T37] audit: type=1326 audit(2016778378.235:2068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13755 comm="syz.2.17607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1692.110108][ T37] audit: type=1326 audit(2016778378.235:2069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13755 comm="syz.2.17607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1692.110149][ T37] audit: type=1326 audit(2016778378.235:2070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13755 comm="syz.2.17607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1692.110190][ T37] audit: type=1326 audit(2016778378.235:2071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13755 comm="syz.2.17607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1692.110232][ T37] audit: type=1326 audit(2016778378.235:2072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13755 comm="syz.2.17607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1692.110273][ T37] audit: type=1326 audit(2016778378.235:2073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13755 comm="syz.2.17607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1692.110316][ T37] audit: type=1326 audit(2016778378.235:2074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13755 comm="syz.2.17607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1692.110358][ T37] audit: type=1326 audit(2016778378.235:2075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13755 comm="syz.2.17607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1692.110399][ T37] audit: type=1326 audit(2016778378.235:2076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13755 comm="syz.2.17607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feea5b4f6c9 code=0x7ffc0000 [ 1692.596410][T13770] netlink: 104 bytes leftover after parsing attributes in process `syz.0.17611'. [ 1694.594571][T13799] overlayfs: failed to clone upperpath [ 1694.869284][T13806] overlayfs: failed to clone lowerpath [ 1695.328660][T13824] overlayfs: failed to clone lowerpath [ 1695.774289][T13837] overlayfs: missing 'lowerdir' [ 1699.280856][T13886] netlink: 28 bytes leftover after parsing attributes in process `syz.1.17662'. [ 1699.381528][T13890] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 1699.390768][T13890] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 1700.283588][T13923] 9pnet: Could not find request transport: 0xffffffffffffffff [ 1700.424932][T13934] bond8: (slave bridge5): Enslaving as an active interface with an up link [ 1703.049589][T13959] netlink: 'syz.3.17691': attribute type 4 has an invalid length. [ 1703.074552][T13959] netlink: 'syz.3.17691': attribute type 4 has an invalid length. [ 1705.560249][T13974] bond4: (slave bridge0): Enslaving as an active interface with an up link [ 1705.617308][T13977] bond4: (slave gretap2): Enslaving as an active interface with an up link [ 1710.991261][T14011] netlink: 'syz.1.17706': attribute type 3 has an invalid length. [ 1713.950138][T14021] program syz.0.17708 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1714.828534][ T37] kauditd_printk_skb: 4 callbacks suppressed [ 1714.828590][ T37] audit: type=1326 audit(2016778401.336:2081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14026 comm="syz.1.17712" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fbc2737f6c9 code=0x0 [ 1716.445607][T14029] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1716.598532][T14029] veth1: left promiscuous mode [ 1716.599906][T14029] veth1: entered promiscuous mode [ 1719.178959][T14029] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 1719.179005][T14029] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1719.815121][T14029] 8021q: adding VLAN 0 to HW filter on device bond1 [ 1720.073242][T14029] 8021q: adding VLAN 0 to HW filter on device bond2 [ 1720.151778][ T5813] Bluetooth: hci2: ACL packet for unknown connection handle 200 [ 1720.199487][T14029] 8021q: adding VLAN 0 to HW filter on device bond4 [ 1720.427587][T14086] 9pnet: Could not find request transport: 0xffffffffffffffff [ 1720.728928][T10281] syz1: Port: 1 Link ACTIVE [ 1720.739659][ T13] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1723.993079][T14098] kthread_run failed with err -4 [ 1724.172248][T14091] net_ratelimit: 10 callbacks suppressed [ 1724.172282][T14091] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 1724.204571][ T13] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1724.208013][ T13] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1725.300131][ T13] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1725.495050][ T12] ip6_tunnel: M xmit: Local address not yet configured! [ 1725.510747][ T12] bond1: (slave veth5): link status definitely up, 10000 Mbps full duplex [ 1725.531336][T26243] [ 1725.531346][T26243] ============================================ [ 1725.531354][T26243] WARNING: possible recursive locking detected [ 1725.531373][T26243] syzkaller #0 Not tainted [ 1725.531382][T26243] -------------------------------------------- [ 1725.531398][T26243] kworker/0:1/26243 is trying to acquire lock: [ 1725.531412][T26243] ffff888025ed8318 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#3){+...}-{3:3}, at: __dev_queue_xmit+0xd58/0x3b70 [ 1725.531551][T26243] [ 1725.531551][T26243] but task is already holding lock: [ 1725.531557][T26243] ffff888037c96398 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#3){+...}-{3:3}, at: __dev_queue_xmit+0x1370/0x3b70 [ 1725.531608][T26243] [ 1725.531608][T26243] other info that might help us debug this: [ 1725.531614][T26243] Possible unsafe locking scenario: [ 1725.531614][T26243] [ 1725.531621][T26243] CPU0 [ 1725.531630][T26243] ---- [ 1725.531634][T26243] lock(dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#3); [ 1725.531653][T26243] lock(dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#3); [ 1725.531671][T26243] [ 1725.531671][T26243] *** DEADLOCK *** [ 1725.531671][T26243] [ 1725.531679][T26243] May be due to missing lock nesting notation [ 1725.531679][T26243] [ 1725.531689][T26243] 21 locks held by kworker/0:1/26243: [ 1725.531701][T26243] #0: ffff88814d692938 ((wq_completion)mld){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0 [ 1725.531749][T26243] #1: ffffc9001d6c7ba0 ((work_completion)(&(&idev->mc_ifc_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0 [ 1725.531797][T26243] #2: ffff888035930628 (&idev->mc_lock){+.+.}-{4:4}, at: mld_ifc_work+0x2d/0xd60 [ 1725.531875][T26243] #3: ffffffff8d5aa880 (rcu_read_lock){....}-{1:3}, at: mld_sendpack+0x1e7/0xe60 [ 1725.531921][T26243] #4: ffffffff8d5aa880 (rcu_read_lock){....}-{1:3}, at: ip6_output+0x126/0x550 [ 1725.531988][T26243] #5: ffffffff8d44aca0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x540 [ 1725.532036][T26243] #6: ffffffff8d5aa880 (rcu_read_lock){....}-{1:3}, at: __local_bh_disable_ip+0xa1/0x540 [ 1725.532080][T26243] #7: ffffffff8d5aa8e0 (rcu_read_lock_bh){....}-{1:3}, at: __dev_queue_xmit+0x26f/0x3b70 [ 1725.532126][T26243] #8: ffffffff8d5aa880 (rcu_read_lock){....}-{1:3}, at: bond_start_xmit+0xf8/0x1a10 [ 1725.532202][T26243] #9: ffffffff8d44aca0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x540 [ 1725.532246][T26243] #10: ffffffff8d5aa8e0 (rcu_read_lock_bh){....}-{1:3}, at: __dev_queue_xmit+0x26f/0x3b70 [ 1725.532295][T26243] #11: ffff888037c96398 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#3){+...}-{3:3}, at: __dev_queue_xmit+0x1370/0x3b70 [ 1725.532349][T26243] #12: ffffffff8d5aa880 (rcu_read_lock){....}-{1:3}, at: rt_spin_trylock+0x10d/0x2b0 [ 1725.532402][T26243] #13: ffff88805a136198 (&qdisc_xmit_lock_key#4){+...}-{3:3}, at: sch_direct_xmit+0x153/0x4b0 [ 1725.532506][T26243] #14: ffffffff8d5aa880 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1c1/0x3e0 [ 1725.532556][T26243] #15: ffffffff8d5aa880 (rcu_read_lock){....}-{1:3}, at: ip_output+0x5b/0x450 [ 1725.532629][T26243] #16: ffffffff8d5aa880 (rcu_read_lock){....}-{1:3}, at: ip_finish_output2+0x452/0x11d0 [ 1725.532701][T26243] #17: ffffffff8d44aca0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x540 [ 1725.532745][T26243] #18: ffffffff8d5aa880 (rcu_read_lock){....}-{1:3}, at: arp_xmit+0x23/0x270 [ 1725.532817][T26243] #19: ffffffff8d44aca0 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x540 [ 1725.532862][T26243] #20: ffffffff8d5aa8e0 (rcu_read_lock_bh){....}-{1:3}, at: __dev_queue_xmit+0x26f/0x3b70 [ 1725.532910][T26243] [ 1725.532910][T26243] stack backtrace: [ 1725.532926][T26243] CPU: 0 UID: 0 PID: 26243 Comm: kworker/0:1 Not tainted syzkaller #0 PREEMPT_{RT,(full)} [ 1725.532945][T26243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1725.532957][T26243] Workqueue: mld mld_ifc_work [ 1725.532975][T26243] Call Trace: [ 1725.532982][T26243] [ 1725.532994][T26243] dump_stack_lvl+0x189/0x250 [ 1725.533021][T26243] ? __pfx_dump_stack_lvl+0x10/0x10 [ 1725.533045][T26243] ? __pfx__printk+0x10/0x10 [ 1725.533066][T26243] ? print_lock_name+0xde/0x100 [ 1725.533087][T26243] print_deadlock_bug+0x28b/0x2a0 [ 1725.533105][T26243] validate_chain+0x1a3f/0x2140 [ 1725.533128][T26243] ? __lock_acquire+0xab9/0xd20 [ 1725.533152][T26243] __lock_acquire+0xab9/0xd20 [ 1725.533177][T26243] ? __dev_queue_xmit+0xd58/0x3b70 [ 1725.533199][T26243] lock_acquire+0x120/0x360 [ 1725.533222][T26243] ? __dev_queue_xmit+0xd58/0x3b70 [ 1725.533246][T26243] ? __lock_acquire+0xab9/0xd20 [ 1725.533272][T26243] rt_spin_lock+0x88/0x3e0 [ 1725.533290][T26243] ? __dev_queue_xmit+0xd58/0x3b70 [ 1725.533310][T26243] ? __pfx_rt_spin_lock+0x10/0x10 [ 1725.533325][T26243] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 1725.533349][T26243] __dev_queue_xmit+0xd58/0x3b70 [ 1725.533366][T26243] ? __neigh_event_send+0xf68/0x1580 [ 1725.533442][T26243] ? __dev_queue_xmit+0x26f/0x3b70 [ 1725.533460][T26243] ? mld_ifc_work+0x83e/0xd60 [ 1725.533474][T26243] ? kthread+0x711/0x8a0 [ 1725.533494][T26243] ? ret_from_fork_asm+0x1a/0x30 [ 1725.533512][T26243] ? __pfx___dev_queue_xmit+0x10/0x10 [ 1725.533535][T26243] ? __lock_acquire+0xab9/0xd20 [ 1725.533560][T26243] ? NF_HOOK+0x9e/0x3a0 [ 1725.533580][T26243] NF_HOOK+0x310/0x3a0 [ 1725.533600][T26243] ? __pfx_arp_xmit_finish+0x10/0x10 [ 1725.533620][T26243] ? NF_HOOK+0x9e/0x3a0 [ 1725.533638][T26243] ? __pfx_NF_HOOK+0x10/0x10 [ 1725.533657][T26243] ? arp_xmit+0x23/0x270 [ 1725.533680][T26243] arp_xmit+0x16c/0x270 [ 1725.533699][T26243] ? arp_xmit+0x23/0x270 [ 1725.533719][T26243] arp_solicit+0xc6a/0xeb0 [ 1725.533763][T26243] ? arp_solicit+0x115/0xeb0 [ 1725.533784][T26243] ? rt_mutex_slowunlock+0x493/0x8a0 [ 1725.533800][T26243] ? __pfx_arp_solicit+0x10/0x10 [ 1725.533820][T26243] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 1725.533841][T26243] ? __pfx_rt_mutex_slowunlock+0x10/0x10 [ 1725.533862][T26243] ? rt_write_unlock+0x191/0x230 [ 1725.533879][T26243] ? __pfx_arp_solicit+0x10/0x10 [ 1725.533898][T26243] __neigh_event_send+0xf68/0x1580 [ 1725.533920][T26243] ? __neigh_event_send+0x38/0x1580 [ 1725.533943][T26243] neigh_resolve_output+0x19f/0x780 [ 1725.533965][T26243] ? __pfx_ip_neigh_gw4+0x10/0x10 [ 1725.533988][T26243] ip_finish_output2+0xd97/0x11d0 [ 1725.534008][T26243] ? ip_finish_output2+0x452/0x11d0 [ 1725.534030][T26243] ? __pfx_ip_finish_output2+0x10/0x10 [ 1725.534049][T26243] ? ip_skb_dst_mtu+0x18d/0xb70 [ 1725.534066][T26243] ? ip_skb_dst_mtu+0x917/0xb70 [ 1725.534085][T26243] ? ip_finish_output+0x33a/0x3f0 [ 1725.534103][T26243] ip_output+0x29f/0x450 [ 1725.534120][T26243] ? ip_output+0x5b/0x450 [ 1725.534138][T26243] iptunnel_xmit+0x5f8/0xa90 [ 1725.534183][T26243] ip_tunnel_xmit+0x1c44/0x2390 [ 1725.534234][T26243] ? __pfx_ip_tunnel_xmit+0x10/0x10 [ 1725.534253][T26243] ? gre_build_header+0x3fd/0xa40 [ 1725.534295][T26243] ? __pfx_gre_build_header+0x10/0x10 [ 1725.534317][T26243] gre_tap_xmit+0x590/0x7a0 [ 1725.534337][T26243] ? __pfx_gre_tap_xmit+0x10/0x10 [ 1725.534358][T26243] dev_hard_start_xmit+0x2f0/0x870 [ 1725.534382][T26243] sch_direct_xmit+0x241/0x4b0 [ 1725.534410][T26243] ? __pfx_sch_direct_xmit+0x10/0x10 [ 1725.534431][T26243] ? rcu_needs_cpu+0x50/0xb0 [ 1725.534444][T26243] ? rt_spin_trylock+0x13b/0x2b0 [ 1725.534462][T26243] __dev_queue_xmit+0x1826/0x3b70 [ 1725.534484][T26243] ? __dev_queue_xmit+0x26f/0x3b70 [ 1725.534503][T26243] ? __lock_acquire+0xab9/0xd20 [ 1725.534525][T26243] ? __pfx___dev_queue_xmit+0x10/0x10 [ 1725.534545][T26243] ? unwind_next_frame+0xa5/0x2390 [ 1725.534571][T26243] ? __pfx_bond_get_slave_by_id+0x10/0x10 [ 1725.534617][T26243] bond_start_xmit+0xdc7/0x1a10 [ 1725.534636][T26243] ? bond_start_xmit+0xf8/0x1a10 [ 1725.534651][T26243] ? __pfx_bond_start_xmit+0x10/0x10 [ 1725.534669][T26243] ? netif_skb_features+0xa69/0x1540 [ 1725.534686][T26243] ? validate_xmit_xfrm+0xbf/0x1160 [ 1725.534745][T26243] ? __pfx_validate_xmit_xfrm+0x10/0x10 [ 1725.534761][T26243] ? __pfx_netif_skb_features+0x10/0x10 [ 1725.534784][T26243] dev_hard_start_xmit+0x2f0/0x870 [ 1725.534808][T26243] __dev_queue_xmit+0x1b50/0x3b70 [ 1725.534829][T26243] ? __dev_queue_xmit+0x26f/0x3b70 [ 1725.534852][T26243] ? __pfx___dev_queue_xmit+0x10/0x10 [ 1725.534869][T26243] ? read_seqbegin+0x128/0x2e0 [ 1725.534889][T26243] ? neigh_resolve_output+0x46e/0x780 [ 1725.534910][T26243] ? lockdep_hardirqs_on+0x9c/0x150 [ 1725.534930][T26243] ? read_seqbegin+0x27c/0x2e0 [ 1725.534950][T26243] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 1725.534968][T26243] ? __pfx_read_seqbegin+0x10/0x10 [ 1725.534988][T26243] ? eth_header+0x11b/0x200 [ 1725.535004][T26243] ? __asan_memcpy+0x40/0x70 [ 1725.535045][T26243] ip6_finish_output2+0x1162/0x14c0 [ 1725.535066][T26243] ? __pfx_ip6_finish_output2+0x10/0x10 [ 1725.535083][T26243] ? ip6_mtu+0x7d/0x490 [ 1725.535137][T26243] ? ip6_mtu+0x38c/0x490 [ 1725.535152][T26243] ? ip6_finish_output+0x2ef/0x4e0 [ 1725.535167][T26243] ? ip6_output+0x126/0x550 [ 1725.535181][T26243] ip6_output+0x340/0x550 [ 1725.535197][T26243] NF_HOOK+0x9e/0x380 [ 1725.535212][T26243] ? NF_HOOK+0x101/0x380 [ 1725.535227][T26243] ? __pfx_NF_HOOK+0x10/0x10 [ 1725.535243][T26243] ? __pfx_dst_output+0x10/0x10 [ 1725.535261][T26243] ? icmp6_dst_alloc+0x2b4/0x460 [ 1725.535276][T26243] mld_sendpack+0x8d4/0xe60 [ 1725.535297][T26243] ? mld_sendpack+0x1e7/0xe60 [ 1725.535313][T26243] ? __pfx_mld_sendpack+0x10/0x10 [ 1725.535336][T26243] mld_ifc_work+0x83e/0xd60 [ 1725.535351][T26243] ? _raw_spin_unlock_irq+0x23/0x50 [ 1725.535372][T26243] ? process_scheduled_works+0x9ef/0x17b0 [ 1725.535394][T26243] process_scheduled_works+0xae1/0x17b0 [ 1725.535421][T26243] ? __pfx_process_scheduled_works+0x10/0x10 [ 1725.535443][T26243] worker_thread+0x8a0/0xda0 [ 1725.535462][T26243] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 1725.535485][T26243] ? __kthread_parkme+0x7b/0x200 [ 1725.535506][T26243] kthread+0x711/0x8a0 [ 1725.535527][T26243] ? __pfx_worker_thread+0x10/0x10 [ 1725.535544][T26243] ? __pfx_kthread+0x10/0x10 [ 1725.535562][T26243] ? rt_spin_unlock+0x150/0x200 [ 1725.535580][T26243] ? rt_spin_unlock+0x161/0x200 [ 1725.535596][T26243] ? __pfx_kthread+0x10/0x10 [ 1725.535616][T26243] ret_from_fork+0x4bc/0x870 [ 1725.535633][T26243] ? __pfx_ret_from_fork+0x10/0x10 [ 1725.535652][T26243] ? __switch_to_asm+0x39/0x70 [ 1725.535665][T26243] ? __switch_to_asm+0x33/0x70 [ 1725.535679][T26243] ? __pfx_kthread+0x10/0x10 [ 1725.535699][T26243] ret_from_fork_asm+0x1a/0x30 [ 1725.535718][T26243] [ 1729.413531][ T1318] ieee802154 phy0 wpan0: encryption failed: -22 [ 1729.730948][ C0] ip6_tunnel: M xmit: Local address not yet configured!