last executing test programs: 16m38.352808574s ago: executing program 32 (id=12): socket(0x23, 0x2, 0x0) syz_mount_image$erofs(&(0x7f00000012c0), &(0x7f0000000240)='./file0\x00', 0x2000401, &(0x7f0000000000)=ANY=[], 0x1, 0x22f, &(0x7f0000001080)="$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") bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) msgget(0x0, 0x400) newfstatat(0xffffffffffffff9c, &(0x7f0000004100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0/file0\x00', 0x0, 0x6000) 16m33.196052459s ago: executing program 33 (id=19): r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) readv(r1, &(0x7f0000001340)=[{&(0x7f00000001c0)=""/144, 0x90}], 0x1) bind$alg(0xffffffffffffffff, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x87}, 0x0) sched_setscheduler(0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) 16m1.564477511s ago: executing program 34 (id=51): r0 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp_SCTP_RECVNXTINFO(r0, 0x84, 0x21, &(0x7f0000000180), &(0x7f00000001c0)=0x4) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg(r2, 0x0, 0x0) sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb4b, 0x9, 0x8, 0x0, 0x400003}, 0x0) getsockopt$CAN_RAW_LOOPBACK(0xffffffffffffffff, 0x65, 0x20, 0x0, &(0x7f0000001040)=0x5d) syz_usb_connect(0x0, 0x5f, 0x0, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) openat$adsp1(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) inotify_add_watch(0xffffffffffffffff, &(0x7f0000000180)='./control\x00', 0xa4000960) socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x14, 0x2, 0x6, 0x5}, 0x14}, 0x1, 0x0, 0x0, 0x4004000}, 0x40080) r4 = epoll_create1(0x0) ioctl$GIO_CMAP(r4, 0x541b, 0x0) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_FLUSH(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x1c, 0x4, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000680), 0x40000, 0x19) setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) 15m50.915322544s ago: executing program 35 (id=68): socket$can_bcm(0x1d, 0x2, 0x2) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x22) rmdir(&(0x7f0000000080)='./cgroup/../file0\x00') bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x7, 0x3, &(0x7f0000000000)=@framed={{0x6a, 0xa, 0x0, 0xffc4, 0x0, 0x71, 0x10, 0xa9}}, 0x0}, 0x94) r4 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0) keyctl$dh_compute(0x17, &(0x7f0000000700), &(0x7f0000000780), 0x0, &(0x7f00000008c0)={&(0x7f00000007c0)={'blake2s-128-generic\x00'}, &(0x7f0000000800)="16488a99a96b2b2862ca51fd34fbe6bb6cc4828fa5258d60c7c0b7ed804474b8237f458e0547090878c78ee564f9019c8cc77517486bffae55160b769cd9b44d061db1177f05ae87948702105448de8e102c34bfa82c4a81126a13dff8f69c5c01d9e59e499f410de14a1bcb18ee20796bbdf082da634deead0ea8c67eed3dfff019a4d215cee973", 0x88}) fsconfig$FSCONFIG_SET_BINARY(r4, 0x6, 0x0, 0x0, 0x0) r5 = fsmount(r4, 0x0, 0xc) r6 = openat$cgroup_subtree(r5, &(0x7f0000000100), 0x2, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) mount_setattr(0xffffffffffffffff, 0x0, 0x8100, 0x0, 0x37) getsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f00000001c0)={0x0, @remote, @local}, &(0x7f0000000240)=0xc) sendmsg$nl_route_sched_retired(r5, &(0x7f0000000440)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0}, 0x44005) ioctl$VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f0000000040)={0x204, 0xa, 0x1, 0x0, 0xfc}) write$cgroup_subtree(r6, &(0x7f0000000980)={[{0x2d, 'pids'}]}, 0x1f) 15m40.320021136s ago: executing program 36 (id=74): r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2) ioctl$VIDIOC_G_EXT_CTRLS(r1, 0xc0205649, &(0x7f0000000040)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000080)={0x98f907, 0x0, '\x00', @value=0x6}}) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000080)=0x9fe, 0x4) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x0, 0x0) sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0) 15m35.692561104s ago: executing program 6 (id=76): syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)) r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x101042, 0x40) symlinkat(&(0x7f0000000000)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00') write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x13f, 0x8}}, 0x20) syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0) linkat(0xffffffffffffff9c, &(0x7f00000006c0)='./file2\x00', 0xffffffffffffff9c, &(0x7f0000000700)='./file7\x00', 0x0) mount$overlay(0x0, &(0x7f0000000340)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@metacopy_on}]}) syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f0000000240)='./bus\x00', 0x322020, &(0x7f0000000240)=ANY=[], 0x1, 0x0, 0x0) renameat2(0xffffffffffffff9c, &(0x7f0000000780)='./file7\x00', 0xffffffffffffff9c, &(0x7f00000007c0)='./file1\x00', 0x0) openat(0xffffffffffffff9c, &(0x7f0000000440)='./file2\x00', 0x42, 0x0) 15m34.622318055s ago: executing program 6 (id=77): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = eventfd(0x40048c67) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000180)={0x27800000000, 0x0, 0x8, r2, 0x1}) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000040)={0x27800000000, 0x0, 0x8, r2, 0x5}) 15m33.60926525s ago: executing program 6 (id=78): socket$nl_route(0x10, 0x3, 0x0) socket(0xa, 0x2400000001, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) writev(r0, &(0x7f0000019880)=[{&(0x7f0000000400)="fb", 0xffffff5c}, {&(0x7f00000197c0)="1902eb02d5e5f29e59e1a7caec33eb76d2430da474d87e367f6598d026438b65eda8341073b6752abdcee080c8e1e876b25227c37d7dd79886ce33f13e857c8eda1cecf6ac36c03dbf54e3cb5136da5a33fee76fb3113f8b6700e9e5fc006b8eed665fed48738d59395ad07438c3610ae3976aac75caf2facafa21c25be3c2", 0x7f}], 0x2) socket$nl_route(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd, 0x9323, 0xfffffffffffffffe, 0x0, 0x2}, 0x0, &(0x7f00000002c0)={0x3ff, 0x6821, 0x0, 0x9, 0x0, 0x0, 0x3, 0x2}, 0x0, 0x0) 15m32.269631379s ago: executing program 6 (id=79): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==") open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111) mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0) r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200]}) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0) gettid() r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) read(r1, &(0x7f0000000440)=""/247, 0x26) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f00000000c0)={0x31, @tick=0x40, 0x4, {0x0, 0x2}, 0xa, 0x0, 0x4}) ioctl$SNDRV_SEQ_IOCTL_PVERSION(r1, 0x80045300, &(0x7f0000000180)) 15m30.868031466s ago: executing program 6 (id=80): syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYRES64=0x0], 0x0, 0x7b7, &(0x7f00000002c0)="$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") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x1d4) getdents64(r0, 0xfffffffffffffffe, 0xffffffffffffff15) 15m28.344982155s ago: executing program 6 (id=81): r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_udp_int(r0, 0x11, 0x68, &(0x7f0000000080)=0xa40, 0x4) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r2 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x2, 0x4) write$tun(r1, &(0x7f00000004c0)={@val={0xa}, @void, @eth={@multicast, @remote, @val={@void, {0x8100, 0x1, 0x1, 0x9}}, {@ipv6={0x86dd, @udp={0xd, 0x6, '\x00 \x00', 0x13, 0x11, 0xff, @empty, @mcast2, {[], {0x4f19, 0x4e20, 0x13, 0x0, @gue={{0x2, 0x0, 0x1, 0x5, 0x100}, "a3d4a5"}}}}}}}}, 0x51) 15m26.445425538s ago: executing program 37 (id=81): r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_udp_int(r0, 0x11, 0x68, &(0x7f0000000080)=0xa40, 0x4) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r2 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x2, 0x4) write$tun(r1, &(0x7f00000004c0)={@val={0xa}, @void, @eth={@multicast, @remote, @val={@void, {0x8100, 0x1, 0x1, 0x9}}, {@ipv6={0x86dd, @udp={0xd, 0x6, '\x00 \x00', 0x13, 0x11, 0xff, @empty, @mcast2, {[], {0x4f19, 0x4e20, 0x13, 0x0, @gue={{0x2, 0x0, 0x1, 0x5, 0x100}, "a3d4a5"}}}}}}}}, 0x51) 15m7.722122884s ago: executing program 7 (id=83): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41100}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]}) syz_io_uring_submit(0x0, 0x0, 0x0) io_uring_enter(0xffffffffffffffff, 0x6e2, 0x3900, 0x1, 0x0, 0xe00) r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r1, r0, 0x26}, 0x10) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x88000cc, 0x0) process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, 0x0, 0x0) 15m6.72149973s ago: executing program 7 (id=84): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) syz_genetlink_get_family_id$devlink(&(0x7f0000000c80), 0xffffffffffffffff) 15m5.991281236s ago: executing program 7 (id=85): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000080), 0x67, 0x52b, &(0x7f0000000a00)="$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") bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) 15m4.529547894s ago: executing program 7 (id=86): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$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") open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111) mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0) r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200]}) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0) gettid() r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) read(r1, &(0x7f0000000440)=""/247, 0x26) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f00000000c0)={0x31, @tick=0x40, 0x4, {0x0, 0x2}, 0xa, 0x0, 0x4}) ioctl$SNDRV_SEQ_IOCTL_PVERSION(r1, 0x80045300, &(0x7f0000000180)) 15m2.408482598s ago: executing program 7 (id=88): r0 = syz_io_uring_setup(0xa4d, &(0x7f0000000480)={0x0, 0x0, 0x80, 0x1, 0x24f}, &(0x7f00000000c0)=0x0, &(0x7f0000000340)=0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000785ceb2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2c, 0x0, 0x0, 0x4}]}, 0x10) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x42, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, {0x2}}) io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0) 14m59.954198304s ago: executing program 7 (id=91): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014800000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f00000002c0)='kfree\x00', r1, 0x0, 0xe}, 0x18) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$fou(&(0x7f0000000380), r2) sendmsg$FOU_CMD_ADD(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000040)={0x24, r3, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e23}, @FOU_ATTR_PEER_V4={0x8, 0x8, @multicast2}]}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x20040000) 14m56.78587619s ago: executing program 38 (id=91): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014800000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f00000002c0)='kfree\x00', r1, 0x0, 0xe}, 0x18) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$fou(&(0x7f0000000380), r2) sendmsg$FOU_CMD_ADD(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000040)={0x24, r3, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e23}, @FOU_ATTR_PEER_V4={0x8, 0x8, @multicast2}]}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x20040000) 13m29.112749101s ago: executing program 4 (id=339): openat$nci(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) 13m28.337268382s ago: executing program 4 (id=341): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$MAP_CREATE(0x0, 0x0, 0x39) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r0}, 0x38) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x5412, 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c) listen(r1, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x1, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000c40)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x65, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0xfffe}}}}}}, 0x0) 13m27.335937622s ago: executing program 4 (id=345): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000000700), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r0, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000b80)={&(0x7f0000000440)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x3dc06331d0ffc133}, 0x0) 13m26.620081094s ago: executing program 4 (id=347): syz_mount_image$udf(&(0x7f0000000100), &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f0000000280)=ANY=[@ANYRES8=0x0], 0x1, 0x100c, &(0x7f0000004100)="$eJzs3U1sHNd9APD/Gy7FlRLUaztWnCot1mlTy4rjUl8xaxmFFLEEggo2YYo5FKjhlbhSFqbIBUk1ctAPtYcc0gt9aZGeWiBpgpwIFOgh6MG3IpeCh5x6chrHMFC42IOFtiggFrP7llx9mYIpfkj+/QDpP5z5v5n3lvjvzizmcQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAiPj6H5wZPZp2uxcAwE56Zeq10WM+/wHgU+W8638AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADaXoogfR4rXb3TSG92fe6rnWnNXr02PT9y92f7UbTnUzS//VY8eO37i5NdeHOvHj2//oH0hXp06f6Z+dv5Ke6G5uNicqU/PtS7OzzTvew9bbX+7I90XoH7lzaszly4t1o+9cPyWzddq74985mDt1Nih58b7udPjExNTAzmV4U989DukB7crHiH7ooj/jRQ/KD5IjYgoYuu1sMl7x3bbH5Wy/rqDmB6f6A5kttWYWyo3TvYLoRJRG2h0ul8jO1CLW3I64nr5eyo7fKQc3lS7sdC4MNusTzYWllpLrfm5ydTrbTmeehQxliLaEdEZ2e3Os9cMRxG/iBQffr+TLkTEUL8OvvLK1GujxzbfQWUHOnmPw9aGI1aLh6BmYY8aiSJejxSPr4zGxVxX3bJ5L+LZMj4fcbWM76RYLuPLEal8gzgcccPnCTzUKlHEX0eKj0510ky/9rvnlee+Wf/G3KX5gdz+eeVDf32wk5ybsIdVo4hG94y/kz75l10AAAAAAAAAAAAAwM4o4u1I8czPD6d2DM4pbc1drp9vXJjt3RXcv/e/nlutra2t1VIvjuY4mWM7x+UcV3JczbGTY63I7XOczLGd43KOKzmu5tjJsTaU2+c4mWM7x+UcV3JczbGTY62S2+c4mWM7x+UcV3JczbGzS3MeAQAAAAAAAAAAAAAAAAAAeHTtjyL+NlL86L/+pPtc6eg+l/6xU2OnfuOzg8+Mf3qT/ZS5L0TET4v7eybvvvys8ck0mVKxDQMDNlWNIv4sP//vL3e7MwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwJ5QRBEvRopv/6yTIkXE6Yg3ohffHdnt3gEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPejmoq4ESn+5g+r3Z9Xi4g/ioibazfXIv5n7ebag7bbIwYAAAAAAAAAAAAAAAAAAIA9KBXxr5HiR4c6qRYR12rvj3zmYO3U2KHnxodiKFKZMpj/6tT5M/Wz81faC83FxeZMfXqudXF+pnm/h6uea81dvTY9PrEtg9nU/m3u//7q2fn2Wwuty99auuv2A9UzFxaXFhoX77459kcloj645ki3w9PjE91Oz7Yac92mk+l+ewwAAAAAAAAAAAAAAAAAAMDDYDgV8XeR4u2xH6/PO6/05vxXbs/94csRRV4ez/PP16ehd/9uwK91/25Ab/mxU2Mv/eaXBpfvOmX9SHdCfX16fGJiamB1ZfjO1Go+7ujWhgxkZf2/ESne/Ek9PZPX3Vr/Q+u5P/zTjXq/fvuO7lHzW63/xwfWlcdMqYinIsWhf3k6nun280Dc8Tczct5fRYqv3/xizot9Zd6X8vYnuv9XL7Vmm6Nl7j9Hiseat+Z+Oec+uZF79L5fWHgIlPX/T5Hite+urNdGrv9cgRtVO1j/v57fHfrnA3fWfDVv2Fr9PzGwrpaP+1tbHzYQEYtvfefNxuxsc8GCBQsW1hd2+50J2G7l+f+/RYrrE/++fr2bz/8/2/tp4/r/v/984/z/pdt3tE3X/08OrHspX40MVyKqS1fawwcjqotvfeerrSuNy83LzbmTYydOjv3eiRfHhvf1r+03lrb8UsEjp6z/f4wUZ7/3k/idvO7W6/+7f/934PYdfVz9X1/ruVsHNqn/zw2sO3DL9cqWhw6femX9r0aKv2i8E8/mdR/3/V//+77D+Uu4/f2N2/T5/9TAunr+7/DAusNDEb6UBwAAAAAAAADg0yqlIn47z6cdvdd82mov78uR4ru//3zOSwfLvNM5pdZLfGV+7qtnZmfnLzaWGhdmm/WpduNis2z7XKT4zw+/mNsW3fm1/fnGvTm+G3Nxn4oUbx/v58a+8vj9exM/t5F7tMz9aaQ4cXIgtxLr9zE9tZF7rMz9v0jxvfrdcw9u5B4vc38ZKZZv1vu5B8rcYzn38xu5L1ycn53Znt8MAGyf4VTER5HiH56spP7n2/3c/3/Hh9423f/7+YF1Mzs0X3nLLyoAAAAAAAAAAAAAAAAAbNFwKuKPI8XZo3+/Ppf/1vl//eeA3zr/73bXuvP8at3n/99r+ZPM/6s9mGECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAjIUURvxspXr/RSe+OlD/3VM+15q5emx6fuHuz/anbcqibX/6rHj12/MTJr7041o8f3/5B+0K8OnX+TP3s/JX2QnNxsTlTn55rXZyfad73Hrba/nZHui9A/cqbV2cuXVqsH3vh+C2br9XeH/nMwdqpsUPPjfdzp8cnJqYGcirDn/jod0gPblc8QvZFEdcjxQ+KD9IvRiKK2HotbPLesd32R6Wsv+4gpscnugOZbTXmlsqNk/1CqETUBhqd7tfIDtTilpyOuB4RRdnhI+XwptqNhcaF2WZ9srGw1Fpqzc9Npl5vy/HUo4ixFNGOiM7IbneevWY4ivhWpPjw+530HyMRQ/06+MorU6+NHtt8B5Ud6OQ9DlsbjlgtHoKahT1qJIr4VaR4fGU0fjnSq6tu2bwX8WwZn4+4WsZ3UiyX8eWIVL5BHI644fMEHmqVKOKJSPHRqU56byTXfve88tw369+YuzQ/kNs/r3zorw92knMT9rBqFPFB94y/k37l8xwAAAAAAAAAAAAA9rgino4Uz/z8cOrOD12fU9qau1w/37gw27utv3/vfz23WltbW6ulXhzNcTLHdo7LOa7kuJpjJ8dakdvnOJljO8flHFdyXM2xk2NtKLfPcTLHdo7LOa7kuJpjJ8daJbfPcTLHdo7LOa7kuJpjZ5fmPAIAAAAAAAAAAAAAAAAA8OgrooiXI8W3f9ZJayO958u+Eb34rucBwSPt/wMAAP//EoBhRA==") r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x100) getdents(r0, 0x0, 0x0) 13m24.329975512s ago: executing program 4 (id=355): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$MAP_CREATE(0x0, 0x0, 0x39) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r0}, 0x38) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x5412, 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c) listen(r1, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x1, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000c40)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x65, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0xfffe}}}}}}, 0x0) 13m22.966180115s ago: executing program 4 (id=358): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, 0x0, 0x0) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), r4) ioctl$ifreq_SIOCGIFINDEX_wireguard(r4, 0x8933, &(0x7f0000000080)={'wg2\x00', 0x0}) sendmsg$WG_CMD_SET_DEVICE(r4, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000d00)={&(0x7f0000000880)=ANY=[@ANYBLOB="2c020000", @ANYRES16=r5, @ANYBLOB="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", @ANYRES32=r6], 0x22c}}, 0x0) 13m8.435291441s ago: executing program 39 (id=358): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, 0x0, 0x0) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), r4) ioctl$ifreq_SIOCGIFINDEX_wireguard(r4, 0x8933, &(0x7f0000000080)={'wg2\x00', 0x0}) sendmsg$WG_CMD_SET_DEVICE(r4, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000d00)={&(0x7f0000000880)=ANY=[@ANYBLOB="2c020000", @ANYRES16=r5, @ANYBLOB="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", @ANYRES32=r6], 0x22c}}, 0x0) 11m34.134483316s ago: executing program 8 (id=894): r0 = syz_open_dev$usbfs(&(0x7f0000000480), 0x76, 0x160341) ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, 0x0) ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect) 11m33.596002889s ago: executing program 8 (id=896): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000000)={'syztnl2\x00', &(0x7f0000000100)={'syztnl1\x00', 0x0, 0x29, 0xe4, 0x9, 0x30, 0x10, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private0={0xfc, 0x0, '\x00', 0x1}, 0x20, 0x20, 0xfffffff9}}) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000280)='kfree\x00', r0}, 0x18) r1 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x1) fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) r2 = fsmount(r1, 0x0, 0x20) symlinkat(&(0x7f0000000000)='.\x00', r2, &(0x7f0000000140)='./file0\x00') openat(r2, &(0x7f00000000c0)='./file0\x00', 0x515a02, 0x52abe154ad664fa4) r3 = syz_open_dev$tty1(0xc, 0x4, 0x2) ioctl$VT_RESIZEX(r3, 0x560a, &(0x7f0000000240)={0x0, 0x0, 0x8, 0x4, 0x3, 0x3f00}) r4 = syz_clone(0x8000, &(0x7f0000000180)="9ef3399cbb7755c63342040b284bf44b5702fbe687543e4dcf4fb461c4a78c1d68c00f126163f96cbc900aefeae5a1cb48a8978e7ee4f1574e20516b1ea5196385742eb64ae92e", 0x47, &(0x7f0000000040), &(0x7f0000000200), &(0x7f0000000280)="a237022c9a4df953a2f07fa744786d220d2fa21cfef857dd0ad92392fd1c0c0dd08100f59f5685b80b9395b041b2682a54a2f11b1f9143cd3df7d33646cf2de067d0a9362a4c9643c3bf0eb3a6955baa1b1ce77287e7b7e0da8593e0805bb16aafcd07e1c3d42fa0651eef5be8d83129a090e319f08dfbb75cc0cfcf2c658ec5fa1f59a0d234feaa0ef2c60f888dc1894b1dfcf3a354087ddc450c95335630f9") ioctl$TIOCSPGRP(r3, 0x5410, &(0x7f0000000340)=r4) connect$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10) listen(0xffffffffffffffff, 0xffffffff) 11m32.390600325s ago: executing program 8 (id=903): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x1c, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) creat(&(0x7f00000000c0)='./file0\x00', 0x48) pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15) r2 = dup(r1) write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53) write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0x59}, 0x94) write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) r3 = open(&(0x7f0000000300)='./file0\x00', 0x145142, 0x102) sendfile(r3, r3, 0x0, 0x800000009) 11m31.076355339s ago: executing program 8 (id=908): bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000240)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x1, 0x0, '\x00', 0x0, 0x0}, 0x50) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7020000140000e5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b702000000000000850000008400"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) syz_open_dev$usbfs(0x0, 0x1ff, 0x2) r1 = socket$inet_smc(0x2b, 0x1, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00', r2, 0x0, 0xfffffffffffffffd}, 0x18) getsockopt$inet_mreqsrc(r1, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000040)=0x8) ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, &(0x7f0000000240)={0x80, 0x6, 0x103, 0x8, 0x0, 0x0, 0x0}) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r6) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r7, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x4000054) 11m30.23169987s ago: executing program 8 (id=913): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000000)={'syztnl2\x00', &(0x7f0000000100)={'syztnl1\x00', 0x0, 0x29, 0xe4, 0x9, 0x30, 0x10, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private0={0xfc, 0x0, '\x00', 0x1}, 0x20, 0x20, 0xfffffff9}}) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000280)='kfree\x00', r0}, 0x18) r1 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x1) fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) r2 = fsmount(r1, 0x0, 0x20) symlinkat(&(0x7f0000000000)='.\x00', r2, &(0x7f0000000140)='./file0\x00') openat(r2, &(0x7f00000000c0)='./file0\x00', 0x515a02, 0x52abe154ad664fa4) r3 = syz_open_dev$tty1(0xc, 0x4, 0x2) ioctl$VT_RESIZEX(r3, 0x560a, &(0x7f0000000240)={0x0, 0x0, 0x8, 0x4, 0x3, 0x3f00}) syz_clone(0x8000, &(0x7f0000000180)="9ef3399cbb7755c63342040b284bf44b5702fbe687543e4dcf4fb461c4a78c1d68c00f126163f96cbc900aefeae5a1cb48a8978e7ee4f1574e20516b1ea5196385742eb64ae92e", 0x47, &(0x7f0000000040), &(0x7f0000000200), &(0x7f0000000280)="a237022c9a4df953a2f07fa744786d220d2fa21cfef857dd0ad92392fd1c0c0dd08100f59f5685b80b9395b041b2682a54a2f11b1f9143cd3df7d33646cf2de067d0a9362a4c9643c3bf0eb3a6955baa1b1ce77287e7b7e0da8593e0805bb16aafcd07e1c3d42fa0651eef5be8d83129a090e319f08dfbb75cc0cfcf2c658ec5fa1f59a0d234feaa0ef2c60f888dc1894b1dfcf3a354087ddc450c95335630f9") r4 = socket$inet(0x2b, 0x801, 0x0) connect$inet(r4, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10) listen(r4, 0xffffffff) 11m28.570118072s ago: executing program 8 (id=923): bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000240)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x1, 0x0, '\x00', 0x0, 0x0}, 0x50) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7020000140000e5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b702000000000000850000008400"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) syz_open_dev$usbfs(0x0, 0x1ff, 0x2) r1 = socket$inet_smc(0x2b, 0x1, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00', r2, 0x0, 0xfffffffffffffffd}, 0x18) getsockopt$inet_mreqsrc(r1, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000040)=0x8) ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, &(0x7f0000000240)={0x80, 0x6, 0x103, 0x8, 0x0, 0x0, 0x0}) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x5c399000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r6, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x4000054) 11m13.832336776s ago: executing program 40 (id=923): bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000240)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x1, 0x0, '\x00', 0x0, 0x0}, 0x50) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7020000140000e5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b702000000000000850000008400"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) syz_open_dev$usbfs(0x0, 0x1ff, 0x2) r1 = socket$inet_smc(0x2b, 0x1, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00', r2, 0x0, 0xfffffffffffffffd}, 0x18) getsockopt$inet_mreqsrc(r1, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000040)=0x8) ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, &(0x7f0000000240)={0x80, 0x6, 0x103, 0x8, 0x0, 0x0, 0x0}) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x5c399000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r6, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x4000054) 10m4.770497446s ago: executing program 5 (id=1397): r0 = socket$inet(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge0\x00'}) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={0x0}}, 0x0) 10m4.004930624s ago: executing program 5 (id=1399): open(0x0, 0x64842, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f00000039c0)=[{{&(0x7f0000000080)={0x2, 0x4e20, @local}, 0x10, 0x0}}], 0x1, 0x2000c044) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB="8000000002000200080004000000000008"], 0x30}}, 0x0) sendto$inet(r0, 0x0, 0x0, 0x60, 0x0, 0x0) 10m2.901399619s ago: executing program 5 (id=1402): r0 = open(&(0x7f0000000000)='./bus\x00', 0x1050c1, 0x170) socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$KDSETLED(r0, 0x4b32, 0x2) bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={0xffffffffffffffff, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) syz_open_procfs(0x0, &(0x7f0000000140)='net\x00') bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='kfree\x00', 0xffffffffffffffff, 0x0, 0x1000000000000}, 0x18) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000840)={[{@nolazytime}, {@lazytime}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@nojournal_checksum}, {@dax_never}, {@noload}]}, 0x3, 0x479, &(0x7f0000001300)="$eJzs3MtvG8UfAPDvOo82fcW/qj+gDyAIEKVA0qSl9MAFBBIHkJDgUI4hSatSt0FNkEhVQUCoHFElTlwQRyT+Ak5wQcAJCQ4c4I4qVaiXFk5Gm91NHdfOw3Xstv58pHVmdtee+Xpn7NmdeAPoWSPpQxKxIyL+iIjhLLtyh5Hsz41rF6f+uXZxKolq9Y2/k/508/VrF6eKXYvnbS8y/RGlT5LY36DcuYULZyYrlZnzeX5s/uy7Y3MLF545fXby1MypmXMTx48fPTL+3LGJZ9sSZxrX9X0fzB7Y+8pbl1+bOnH57Z++SYr46+K4xW8tFTmy2sbHq9WWXvQONJg+7KxZkbUM7gZ9WTeNgaX+Pxx9cfPgDcfLH3e1csCmqlar1fuab16sAvewJLpdA6A7ii/69Py3WDo09LgjXH0hOwFK476RL9mW/ijl+wzUnd+200hEnFj898t0ibWuQwAAtMF36fjn6Ubjv1LUXhfalc+hlCPifxGxOyKORcSeiPh/xNK+90fEAxssv36S5NbxT+lKS4GtUzr+ez6f21o5/itGf1Huy3M7l+IfSE6erswczt+TgzGwJc2Pr1LG9y/9+lmzbbXjv3RJyy/Ggnk9rvRvWfmc6cn5yduJudbVjyL29TeKP1meCUgiYm9E7GuxjNOHvj7QbNva8a+iDfNM1a8insiO/2LUxV9IsvnJcpP5ybGtUZk5PFa0ihiqefnF9ND9/Mul15uVf1vxt0F6/Lc1bP/L8ZeT2vnauY28+hdPpo+X/vy06TlNq+1/MHlzxbr3J+fnz49HDCavZpWuXT9Rt9/Ezf3T+A8+2rj/746b78T+iEgb8YMR8VBEPJzX/ZHfd635Lvz44mPvtB7/5krjn17/8a8ORxQNYWEw8sTymsaJvjM/fLui0HLj+Hc1Pf5Hl1IH8zXr+fxbT7022poBAADgblWKiB2RlEaX06XS6Gj2P/x7YlupMjs3/9TJ2ffOTWe/ESjHQKm40jVccz10PD+tL/ITdfkj+XXjz/uGlvKjU7OV6W4HDz1ue5P+n/qrr9u1Azad32tB79L/oXfp/9C7sv5fe7a/tWt1ATqrwff/UDfqAXReo/H/h+t54o721wXorLr+b9oPeojrf9C7Wun/PjPg3tC/2i2bBztaFaBz5oZi7R/J32uJrRu4QcDdlyjuXLMZRQykreVQRCxciFLXI5XYxES3P5kAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADa478AAAD//9OC4M8=") 10m1.54877985s ago: executing program 5 (id=1406): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r1) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2) sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) close(r4) r5 = socket$unix(0x1, 0x1, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x8000000, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x28, 0x2, {{0x100, 0x7, 0x6361, 0x5, 0xfffffffd, 0x6}, [@TCA_NETEM_LATENCY64={0xc, 0xa, 0x7}]}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x20000001}, 0x0) ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"}) 10m0.006315284s ago: executing program 5 (id=1411): syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3000046, &(0x7f0000000bc0)={[{@dioread_nolock}, {@data_err_abort}, {@inlinecrypt}, {@noauto_da_alloc}, {@data_err_ignore}, {@nojournal_checksum}, {@errors_remount}, {@grpquota}, {@noblock_validity}, {@user_xattr}, {@dioread_lock}, {@errors_remount}]}, 0x11, 0x553, &(0x7f0000001080)="$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") bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40) pwritev2(r0, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5405, 0x0, 0x0) r1 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000004000000b705000008"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000000c0)='kfree\x00', r2, 0x0, 0xfffffffffffffffd}, 0x18) ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020662a, &(0x7f0000000dc0)={0x9, 0x1, 0x5, 0x7f}) 9m58.579185099s ago: executing program 5 (id=1417): bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r0}, 0x10) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 9m43.304378225s ago: executing program 41 (id=1417): bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r0}, 0x10) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23.646083459s ago: executing program 2 (id=4522): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4) setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x2, &(0x7f0000000080)=[{0x28, 0x0, 0x1, 0xfffff034}, {0x6, 0x37, 0x0, 0x9}]}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005a40)=ANY=[], 0xb4}}, 0x0) 23.27328924s ago: executing program 2 (id=4524): socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) syz_emit_ethernet(0xfed7, &(0x7f00000002c0)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd6002adf700383a00fe880000000000000000000000400001ff020000000000000000000000000001"], 0x0) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x9, 0x4, 0x2}, 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r2}, &(0x7f0000000040), &(0x7f0000000140)=r1}, 0x20) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000002c0)={r2, &(0x7f00000001c0), 0x0}, 0x20) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) close(0xffffffffffffffff) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r4 = openat$cgroup_type(r3, &(0x7f0000000100), 0x2, 0x0) write$cgroup_type(r4, &(0x7f0000000280), 0x9) r5 = openat$cgroup_procs(r3, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0) write$cgroup_pid(r5, &(0x7f0000000c40), 0x12) r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r7 = openat$cgroup_ro(r6, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0) write$cgroup_int(r7, &(0x7f0000000200)=0x1, 0x12) write$cgroup_pid(r7, &(0x7f0000000140), 0x12) write$cgroup_pid(r5, &(0x7f0000000800)=0xffffffffffffffff, 0x12) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, &(0x7f0000000000), 0x0}, 0x20) 22.606921311s ago: executing program 2 (id=4527): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000280)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0, 0x0, 0x8000000000004}, 0x18) r1 = socket$inet6_mptcp(0xa, 0x1, 0x106) sendto$inet6(r1, 0x0, 0x0, 0x20004041, 0x0, 0x0) connect$inet6(r1, 0x0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000001640), r2) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0900000000000000000002000000140001800500020001"], 0x28}}, 0x0) 22.057322823s ago: executing program 2 (id=4532): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x200}, 0x56) openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) connect$unix(r2, &(0x7f0000000580)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) 21.459344916s ago: executing program 2 (id=4538): creat(0x0, 0x43) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e22, 0x5ccc6e75, @rand_addr, 0x3}, 0x1c) listen(r2, 0x3) socket$inet6_tcp(0xa, 0x1, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000004}, 0x8801) accept$inet6(r2, 0x0, 0x0) 20.194693066s ago: executing program 2 (id=4547): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="18010000bc0000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', r1, 0x0, 0x3}, 0x18) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=@newsa={0x1a0, 0x10, 0x1, 0x0, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in=@dev={0xac, 0x14, 0x14, 0x3c}, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x64}, {@in, 0x0, 0x32}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, {}, {0x0, 0x0, 0x8000000, 0x200}, {0x0, 0x0, 0x2}, 0x0, 0x0, 0x2, 0x0, 0x0, 0xcd}, [@algo_crypt={0x48, 0x2, {{'cbc(aes)\x00'}}}, @replay_esn_val={0x1c, 0x17, {0x0, 0xfffffffd, 0x0, 0x0, 0x70bd28}}, @algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}, 0x0, 0x18}}]}, 0x1a0}}, 0x800) 6.171727749s ago: executing program 3 (id=4613): socket$packet(0x11, 0x2, 0x300) socket$packet(0x11, 0xa, 0x300) socket$packet(0x11, 0xa, 0x300) r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4) sendto$packet(r0, &(0x7f00000000c0)="3f031c000302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14) 5.682313071s ago: executing program 3 (id=4615): r0 = eventfd2(0xb, 0x800) tee(0xffffffffffffffff, r0, 0xa6ed, 0x0) r1 = getpid() request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000000200)={'syz', 0x1}, 0x0, 0xfffffffffffffffd) preadv(0xffffffffffffffff, 0x0, 0x0, 0x7fff, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x2, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback=0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f00000010c0)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="140000001000010000000000000000000200000a20000000000a01010000000000000000020000000900010073797a300000000048000000030a01010000000000000000020000000900010073797a30000000000900030073797a3200000000080007006e617400140004800800024000000000080001"], 0x244c}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) unshare(0x64000600) 5.614332098s ago: executing program 1 (id=4616): bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x5, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000180)='sys_enter\x00', r0, 0x0, 0x10000000000000}, 0x18) getegid() 5.025723093s ago: executing program 0 (id=4619): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r1}, 0x10) io_setup(0x3, &(0x7f0000000340)) 4.966683064s ago: executing program 1 (id=4620): inotify_init() ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0) socket(0x400000000010, 0x3, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x800) r1 = io_uring_setup(0x6b9e, &(0x7f0000000240)={0x0, 0xfffffffe, 0x800, 0x103fc, 0x4000159}) r2 = socket$rds(0x15, 0x5, 0x0) open(&(0x7f0000000240)='./file1\x00', 0x143342, 0x2d) r3 = inotify_init() inotify_add_watch(r3, &(0x7f0000000000)='./file1\x00', 0x16000f57) r4 = socket$unix(0x1, 0x2, 0x0) bind$unix(r4, 0x0, 0x0) bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x2b) sendmsg$rds(r2, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x4400, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 4.391431799s ago: executing program 0 (id=4622): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r3}, 0x10) set_mempolicy(0x3, &(0x7f0000000000)=0x4000000ffb, 0xe) r4 = syz_clone3(&(0x7f00000003c0)={0x100044000, 0x0, 0x0, 0x0, {0x39}, 0x0, 0x0, 0x0, &(0x7f0000000300)=[0x0], 0x1}, 0x58) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x11, 0x4, &(0x7f0000000a40)=ANY=[@ANYRES16=r0, @ANYRES64=r4, @ANYRES32, @ANYBLOB="06207c825bcea88eb836435580f4a6bfad8bdf44344f25c8a1f66178c0870668b5d5a107f50f2dbbef4ce3832d9d408fcb0cff21051453", @ANYRESHEX=r4, @ANYRESOCT, @ANYBLOB="6478a5fa37cd2b1179ed9d8861e917a28ffedec3656585b8896491fa6070f0ddb358b80fdee3f584876e718e28ed218644b854286493f472a57cc9945bbe4b4339f1d6f1fe39268fc77a056f1966dbdffb8fcb444ae0611acb0371e687f7062de63eab9cc43d1b4fe9d50a61d05c9241b1c7898c794e5fa192948f21af45ac9af5ab8df6adb56e2135db22ffc93942dad4af49ca73ee090dbaec6bbea17a3b9408ceff7300d0a496ef4cb0df68c1c1912856635d8518787b1d7469f024f8cde70fbdc5a540894bef2705fe9ebb34f215985034bfa9c277e602643366e555defe52338d", @ANYRES64=0x0, @ANYRES32=r2, @ANYRESDEC=r1], 0x0}, 0x94) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0xc2f00, 0x4d, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r7 = accept4$nfc_llcp(0xffffffffffffffff, 0x0, &(0x7f0000000080), 0x80000) accept$nfc_llcp(r7, &(0x7f0000000180), &(0x7f0000000240)=0x60) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000980)='mm_page_free\x00', r6}, 0x18) bpf$MAP_CREATE(0x0, 0x0, 0x48) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r8}, 0x10) r9 = socket$rds(0x15, 0x5, 0x0) bind$rds(r9, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10) sendmsg$rds(r9, &(0x7f0000000300)={&(0x7f0000000040)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@rdma_args={0x48, 0x114, 0x1, {{0x3, 0x2}, {0x0}, &(0x7f0000000340)=[{&(0x7f0000001140)=""/102, 0x66}], 0x1, 0x60, 0xfffffffefffffffe}}], 0x48, 0x10040045}, 0x0) mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000006000/0x3000)=nil, 0x3000, 0x3000, 0x7, &(0x7f0000ffd000/0x3000)=nil) mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newtfilter={0x48, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x9}, {}, {0xd, 0xfff1}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x18, 0x2, [@TCA_CGROUP_EMATCHES={0x14, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x10, 0x2, 0x0, 0x1, [@TCF_EM_IPT={0xc, 0x1, 0x0, 0x0, {{0x3, 0x9, 0x80}}}]}]}]}}]}, 0x48}}, 0x1) r10 = socket$netlink(0x10, 0x3, 0x0) r11 = socket(0x10, 0x803, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r11, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0) getsockname$packet(r11, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14) sendmsg$nl_route(r10, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r12, @ANYBLOB="f5ff0f00252155b21c0012000c000100626f6e64000000000c0002000800010001"], 0x3c}}, 0x40000) sendmsg$nl_route(r11, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="4000000010000305000000000007000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000100000180012800e0001007769726567756172640000000400028008000a00", @ANYRES32=r12], 0x40}, 0x1, 0x0, 0x0, 0x800}, 0xc0b0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0) 4.148136081s ago: executing program 9 (id=4623): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000980)=@newsa={0x180, 0x1a, 0x1, 0xdffffffe, 0x100, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in6=@mcast1, 0x1, 0x71c, 0x4e23, 0x3, 0x0, 0x20, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@dev={0xac, 0x14, 0x14, 0x25}, {0x80000001, 0x192, 0x9ba3, 0xffff, 0x8251c, 0x5, 0xfffffffffffffffc}, {0xffffffffffffffff, 0x5, 0x1f, 0xfffffffffffffffe}, {0xfffffffa, 0x3fc}, 0x80, 0x3500, 0xa, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}, @algo_auth={0x48, 0x1, {{'sha256-arm64\x00'}}}]}, 0x180}}, 0x844) 3.839799117s ago: executing program 1 (id=4624): bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x11, 0xd, &(0x7f00000000c0)=ANY=[@ANYRESDEC=0x0, @ANYRESOCT, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bf"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94) syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], 0x6, 0x2ab, &(0x7f0000000a80)="$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") mount$nfs(&(0x7f0000000100)='+\x80.', 0x0, 0x0, 0x136808, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x1c0) 3.512807236s ago: executing program 9 (id=4625): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000440)) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000880)={0x34, r1, 0x1, 0x4070bd28, 0x1, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}]}, 0x34}}, 0x18) 3.089491256s ago: executing program 1 (id=4626): syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4000, &(0x7f0000000000), 0x2, 0xbb8, &(0x7f00000017c0)="$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") openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2000006, 0x31, 0xffffffffffffffff, 0xd0fb6000) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x105142, 0x40) write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[], 0x32600) 2.902615405s ago: executing program 0 (id=4627): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000050000000000000000001811", @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa20000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103) write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15) pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15) r2 = dup(r1) write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53) write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20) write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) truncate(&(0x7f0000000080)='./file0\x00', 0x8) 2.279747425s ago: executing program 0 (id=4628): socket$kcm(0x2, 0xa, 0x2) r0 = socket$packet(0x11, 0x3, 0x300) bind$packet(r0, &(0x7f0000000300)={0x11, 0x3}, 0x14) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ptype\x00') preadv(r1, &(0x7f00000001c0)=[{&(0x7f0000000340)=""/212, 0xd4}], 0x1, 0x32, 0xfffffffe) 2.101995105s ago: executing program 9 (id=4629): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r1, 0x0, 0x200000000000006}, 0x18) setrlimit(0x9, &(0x7f0000000000)) 1.355918004s ago: executing program 3 (id=4630): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000780)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4}, 0x40000) sendmsg$NFT_BATCH(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000700)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c000000060a0b040000000000000000020000000900010073797a30000000000900020073797a320000", @ANYRES8], 0x54}, 0x1, 0x0, 0x0, 0x24068045}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000002580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000080a01010000000000000000020000000900010073797a300000000038000000060a17d50000000000000000020000000900020073797a32000000000900010073797a30000000000c0003400000000000000002"], 0xcdc}}, 0x0) 1.354056307s ago: executing program 0 (id=4631): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r1}, 0x10) io_setup(0x3, &(0x7f0000000340)) 1.266380849s ago: executing program 9 (id=4632): bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYRES32, @ANYBLOB], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0}, 0x18) symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, 0x0) acct(&(0x7f0000002040)='./file0\x00') 1.141823128s ago: executing program 1 (id=4633): r0 = socket$kcm(0x11, 0x3, 0x0) sendmsg$kcm(r0, &(0x7f0000000040)={&(0x7f0000000280)=@caif=@dgm={0x25, 0x9, 0x9}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000580)="6204270059023b000000002f1eafbcf706e12b30087f5c582d26116642c47a5f8786ee601e65ab3c", 0x28}], 0x1}, 0x8001) 1.064124019s ago: executing program 3 (id=4634): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000700000001000100490000"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20) r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x182, 0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x3) 756.536154ms ago: executing program 9 (id=4635): r0 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000840), r0) syz_genetlink_get_family_id$team(0x0, r0) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_ADD(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)={0x60, r1, 0x4c1dad3e3d6a7499, 0x70bd2d, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0x4c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1d}}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x2, @local, 0x5}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000080}, 0x2400c000) 708.264392ms ago: executing program 0 (id=4636): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0xca02}) preadv(r0, &(0x7f0000000080)=[{&(0x7f0000000100)=""/1, 0x1}], 0x1, 0x0, 0x2) 559.49236ms ago: executing program 3 (id=4637): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000050000000000000000001811", @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103) write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15) pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15) r2 = dup(r1) write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53) write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20) write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) truncate(&(0x7f0000000080)='./file0\x00', 0x8) 345.156186ms ago: executing program 1 (id=4638): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c000000100085060000", @ANYRES32=r2, @ANYBLOB="01d90000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00f7ffffffffffff130012800b00010062617461647600000400028008000a00", @ANYRES32=r2], 0x3c}}, 0x0) sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000140)=ANY=[], 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x0) 342.897054ms ago: executing program 9 (id=4639): ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0) r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000240), r1) ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=0x0) sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010026bd70003c0200000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0) write$nci(r0, &(0x7f0000000580)=ANY=[@ANYBLOB="6105070f030501011bf33d7c55feeb480121"], 0x12) 0s ago: executing program 3 (id=4640): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000000000000001000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000280)='netlink_extack\x00', r0}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r1, 0x10e, 0xc, 0x0, 0x0) sendmsg$netlink(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="1c00000056000106000000000000000007"], 0x1c}], 0x1, 0x0, 0x0, 0x40000}, 0x0) kernel console output (not intermixed with test programs): 9722][ T4889] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 941.590946][T14826] usb 3-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92 [ 941.601500][T14826] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 941.652149][ T4889] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 941.659045][T14826] usb 3-1: config 0 descriptor?? [ 941.703881][ T4889] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 941.707592][T14826] gspca_main: nw80x-2.14.0 probing 055f:d001 [ 942.281915][T15188] pim6reg1: entered promiscuous mode [ 942.287403][T15188] pim6reg1: entered allmulticast mode [ 942.486676][T14826] gspca_nw80x: reg_r err -32 [ 942.491978][T14826] nw80x 3-1:0.0: probe with driver nw80x failed with error -32 [ 942.958078][T15197] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3062'. [ 943.743852][T15211] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3067'. [ 944.228624][T12831] usb 3-1: USB disconnect, device number 4 [ 944.721026][T15228] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3073'. [ 944.845106][T15230] IPv6: Can't replace route, no match found [ 946.440692][T15248] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3079'. [ 947.750713][ T30] kauditd_printk_skb: 28 callbacks suppressed [ 947.750788][ T30] audit: type=1326 audit(1758087279.885:861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15257 comm="syz.1.3082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 947.785143][T14827] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 947.981860][ T30] audit: type=1326 audit(1758087280.000:862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15257 comm="syz.1.3082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 948.005239][ T30] audit: type=1326 audit(1758087280.000:863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15257 comm="syz.1.3082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 948.028190][ T30] audit: type=1326 audit(1758087280.000:864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15257 comm="syz.1.3082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 948.051783][ T30] audit: type=1326 audit(1758087280.011:865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15257 comm="syz.1.3082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 948.078949][ T30] audit: type=1326 audit(1758087280.042:866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15257 comm="syz.1.3082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 948.103318][ T30] audit: type=1326 audit(1758087280.084:867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15257 comm="syz.1.3082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 948.126083][ T30] audit: type=1326 audit(1758087280.084:868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15257 comm="syz.1.3082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 948.148807][ T30] audit: type=1326 audit(1758087280.084:869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15257 comm="syz.1.3082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=97 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 948.175968][ T30] audit: type=1326 audit(1758087280.084:870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15257 comm="syz.1.3082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 948.282676][T14827] usb 3-1: Using ep0 maxpacket: 32 [ 948.425372][T15261] lo speed is unknown, defaulting to 1000 [ 948.841460][T15261] lo speed is unknown, defaulting to 1000 [ 949.115782][T14827] usb 3-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92 [ 949.125175][T14827] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 949.159315][T14827] usb 3-1: config 0 descriptor?? [ 949.217913][T14827] gspca_main: nw80x-2.14.0 probing 055f:d001 [ 950.082485][T14827] gspca_nw80x: reg_r err -32 [ 950.087902][T14827] nw80x 3-1:0.0: probe with driver nw80x failed with error -32 [ 950.185737][ T3605] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 950.194132][ T3605] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 950.542159][ T3671] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 950.551406][ T3671] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 951.458998][T14827] usb 3-1: USB disconnect, device number 5 [ 952.779887][T15282] IPv6: Can't replace route, no match found [ 952.855760][T15286] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3090'. [ 956.879780][T15326] block device autoloading is deprecated and will be removed. [ 959.433631][ T30] audit: type=1326 audit(1758087292.146:871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15370 comm="syz.9.3125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 959.433884][ T30] audit: type=1326 audit(1758087292.146:872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15370 comm="syz.9.3125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 959.453433][ T30] audit: type=1326 audit(1758087292.178:873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15370 comm="syz.9.3125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 959.673059][ T30] audit: type=1326 audit(1758087292.262:874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15370 comm="syz.9.3125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 959.696271][ T30] audit: type=1326 audit(1758087292.272:875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15370 comm="syz.9.3125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=172 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 959.719205][ T30] audit: type=1326 audit(1758087292.272:876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15370 comm="syz.9.3125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 960.518307][ T30] audit: type=1326 audit(1758087293.291:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15391 comm="syz.2.3134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 960.541558][ T30] audit: type=1326 audit(1758087293.302:878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15391 comm="syz.2.3134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=312 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 960.566153][ T30] audit: type=1326 audit(1758087293.302:879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15391 comm="syz.2.3134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 961.034469][T15404] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3138'. [ 963.124930][T15423] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3147'. [ 963.793104][T15423] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3147'. [ 966.817971][T15404] Set syz1 is full, maxelem 65536 reached [ 968.232367][T15483] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3174'. [ 973.190481][T15483] Set syz1 is full, maxelem 65536 reached [ 975.057267][T15558] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3204'. [ 976.028080][T15563] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.3207'. [ 976.031155][T15563] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.3207'. [ 976.035020][T15563] netlink: 'syz.1.3207': attribute type 10 has an invalid length. [ 976.035129][T15563] ipvlan1: entered promiscuous mode [ 976.035221][T15563] ipvlan1: entered allmulticast mode [ 976.035308][T15563] veth0_vlan: entered allmulticast mode [ 976.036235][T15563] bond0: (slave ipvlan1): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 976.036365][T15563] bond0: (slave ipvlan1): The slave device specified does not support setting the MAC address [ 976.036790][T15563] bond0: (slave ipvlan1): Error -95 calling set_mac_address [ 976.055224][T15563] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3207'. [ 981.149845][T15561] Set syz1 is full, maxelem 65536 reached [ 981.600973][ T30] audit: type=1326 audit(1758087315.438:880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15613 comm="syz.9.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 981.625978][ T30] audit: type=1326 audit(1758087315.438:881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15613 comm="syz.9.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 981.659606][T15614] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3227'. [ 981.693433][ T30] audit: type=1326 audit(1758087315.522:882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15613 comm="syz.9.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 981.718385][ T30] audit: type=1326 audit(1758087315.522:883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15613 comm="syz.9.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 981.741728][ T30] audit: type=1326 audit(1758087315.522:884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15613 comm="syz.9.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 981.764739][ T30] audit: type=1326 audit(1758087315.522:885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15613 comm="syz.9.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 981.868128][ T30] audit: type=1326 audit(1758087315.690:886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15613 comm="syz.9.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 981.868389][ T30] audit: type=1326 audit(1758087315.690:887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15613 comm="syz.9.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 983.298802][T15651] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3240'. [ 984.445663][T15672] macvtap0: refused to change device tx_queue_len [ 984.954862][T15681] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3254'. [ 985.304467][T15686] ieee802154 phy0 wpan0: encryption failed: -22 [ 986.457636][T15706] netlink: 'syz.1.3265': attribute type 11 has an invalid length. [ 986.498169][T15708] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3266'. [ 986.507587][T15708] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 986.515609][T15708] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 986.592995][T15708] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 986.600953][T15708] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 986.629596][T15709] tmpfs: Cannot enable swap on remount if it was disabled on first mount [ 986.984765][T15715] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3268'. [ 990.152558][ T5821] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 990.172320][ T5821] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 990.233147][ T30] audit: type=1326 audit(1758087324.441:888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15736 comm="syz.2.3278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 990.259971][ T30] audit: type=1326 audit(1758087324.441:889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15736 comm="syz.2.3278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 990.284887][ T30] audit: type=1326 audit(1758087324.441:890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15736 comm="syz.2.3278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 990.308412][ T30] audit: type=1326 audit(1758087324.514:891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15736 comm="syz.2.3278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=256 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 990.367382][ T5821] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 990.594223][ T30] audit: type=1326 audit(1758087324.714:892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15736 comm="syz.2.3278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 990.618516][ T30] audit: type=1326 audit(1758087324.714:893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15736 comm="syz.2.3278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 990.786060][ T5821] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 990.826085][ T5821] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 991.099460][T15737] lo speed is unknown, defaulting to 1000 [ 991.519637][T15737] lo speed is unknown, defaulting to 1000 [ 992.490844][T15715] Set syz1 is full, maxelem 65536 reached [ 992.929527][ T5821] Bluetooth: hci4: command tx timeout [ 992.937680][ T1291] ieee802154 phy0 wpan0: encryption failed: -22 [ 993.341777][T15751] program syz.1.3282 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 993.538735][T14819] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 993.665031][T14819] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 993.759262][T15737] chnl_net:caif_netlink_parms(): no params data found [ 993.861961][T14819] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 994.142164][T14819] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 994.352638][T15763] vlan1: entered allmulticast mode [ 994.358188][T15763] dummy0: entered allmulticast mode [ 994.729332][T15773] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3291'. [ 994.874877][ T5111] Bluetooth: hci2: command 0x0406 tx timeout [ 994.882269][ T5111] Bluetooth: hci4: command tx timeout [ 995.035859][T15776] netlink: 'syz.2.3293': attribute type 1 has an invalid length. [ 995.140025][T15781] netlink: 3 bytes leftover after parsing attributes in process `syz.2.3293'. [ 995.478490][T14819] bond0 (unregistering): Released all slaves [ 995.567503][T15776] bond1: entered promiscuous mode [ 995.583424][T15776] 8021q: adding VLAN 0 to HW filter on device bond1 [ 995.657837][T15778] bridge_slave_0: left allmulticast mode [ 995.663876][T15778] bridge_slave_0: left promiscuous mode [ 995.670750][T15778] bridge0: port 1(bridge_slave_0) entered disabled state [ 995.710205][T15778] bridge_slave_1: left allmulticast mode [ 995.716049][T15778] bridge_slave_1: left promiscuous mode [ 995.722876][T15778] bridge0: port 2(bridge_slave_1) entered disabled state [ 995.852477][T15778] bond0: (slave bond_slave_0): Releasing backup interface [ 995.878312][T15778] bond0: (slave bond_slave_1): Releasing backup interface [ 995.926121][T15778] team0: Port device team_slave_0 removed [ 995.983439][T15778] team0: Port device team_slave_1 removed [ 996.086061][T15781] batadv1: entered promiscuous mode [ 996.091892][T15781] batadv1: entered allmulticast mode [ 996.104661][T15781] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 996.119506][T15781] bond1: (slave batadv1): making interface the new active one [ 996.145806][T15781] bond1: (slave batadv1): Enslaving as an active interface with an up link [ 996.219202][T14819] tipc: Left network mode [ 996.492030][T15793] IPv6: Can't replace route, no match found [ 996.636213][T15737] bridge0: port 1(bridge_slave_0) entered blocking state [ 996.643834][T15737] bridge0: port 1(bridge_slave_0) entered disabled state [ 996.651686][T15737] bridge_slave_0: entered allmulticast mode [ 996.661241][T15737] bridge_slave_0: entered promiscuous mode [ 996.843416][T15737] bridge0: port 2(bridge_slave_1) entered blocking state [ 996.851515][T15737] bridge0: port 2(bridge_slave_1) entered disabled state [ 996.859241][T15737] bridge_slave_1: entered allmulticast mode [ 996.866009][T15774] Bluetooth: hci4: command tx timeout [ 996.894549][T15799] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3300'. [ 996.915689][T15737] bridge_slave_1: entered promiscuous mode [ 997.092091][T15803] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3303'. [ 997.138219][T15737] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 997.222337][T15737] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 997.807109][T14819] hsr_slave_0: left promiscuous mode [ 997.828285][T14819] hsr_slave_1: left promiscuous mode [ 997.873018][T14819] veth1_macvtap: left promiscuous mode [ 997.878737][T14819] veth0_macvtap: left promiscuous mode [ 997.891324][T14819] veth1_vlan: left promiscuous mode [ 997.896887][T14819] veth0_vlan: left promiscuous mode [ 998.222168][T15818] netlink: 'syz.2.3309': attribute type 1 has an invalid length. [ 998.289043][T15823] netlink: 3 bytes leftover after parsing attributes in process `syz.2.3309'. [ 998.603822][T14819] pim6reg (unregistering): left allmulticast mode [ 998.840891][T15774] Bluetooth: hci4: command tx timeout [ 999.286345][ T3671] smc: removing ib device sz1 [ 999.291929][T15737] team0: Port device team_slave_0 added [ 999.749162][T15818] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR [ 999.784178][T15830] tipc: Started in network mode [ 999.798058][T15830] tipc: Node identity beced0f1f844, cluster identity 4711 [ 999.807010][T15830] tipc: Enabled bearer , priority 0 [ 999.861092][T15823] batadv2: entered promiscuous mode [ 999.866638][T15823] batadv2: entered allmulticast mode [ 1000.651830][T15737] team0: Port device team_slave_1 added [ 1000.691866][T15834] tipc: Disabling bearer [ 1001.109984][T15737] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1001.118250][T15737] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1001.145991][T15737] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1001.179824][T15737] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1001.187328][T15737] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1001.216082][T15737] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1001.713454][ T30] audit: type=1326 audit(1758087336.574:894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15842 comm="syz.3.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1001.793858][ T30] audit: type=1326 audit(1758087336.616:895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15842 comm="syz.3.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1001.817170][ T30] audit: type=1326 audit(1758087336.626:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15842 comm="syz.3.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1001.839983][ T30] audit: type=1326 audit(1758087336.626:897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15842 comm="syz.3.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1001.863079][ T30] audit: type=1326 audit(1758087336.647:898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15842 comm="syz.3.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1001.887603][ T30] audit: type=1326 audit(1758087336.647:899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15842 comm="syz.3.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1001.910986][ T30] audit: type=1326 audit(1758087336.647:900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15842 comm="syz.3.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1002.106279][ T30] audit: type=1326 audit(1758087336.983:901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15842 comm="syz.3.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1002.129475][ T30] audit: type=1326 audit(1758087336.983:902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15842 comm="syz.3.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1002.153192][ T30] audit: type=1326 audit(1758087336.983:903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15842 comm="syz.3.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=71 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1002.377287][T15737] hsr_slave_0: entered promiscuous mode [ 1002.387739][T15737] hsr_slave_1: entered promiscuous mode [ 1002.396547][T15737] debugfs: 'hsr0' already exists in 'hsr' [ 1002.402622][T15737] Cannot create hsr debugfs directory [ 1004.078764][T15857] bridge_slave_0: left allmulticast mode [ 1004.084615][T15857] bridge_slave_0: left promiscuous mode [ 1004.092159][T15857] bridge0: port 1(bridge_slave_0) entered disabled state [ 1004.140490][T15857] bridge_slave_1: left allmulticast mode [ 1004.149681][T15857] bridge_slave_1: left promiscuous mode [ 1004.150649][T15857] bridge0: port 2(bridge_slave_1) entered disabled state [ 1004.270559][T15857] bond0: (slave bond_slave_0): Releasing backup interface [ 1004.327138][T15861] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3326'. [ 1004.355571][T15857] bond0: (slave bond_slave_1): Releasing backup interface [ 1004.439149][T15857] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1004.446724][T15857] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1004.486715][T15864] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3327'. [ 1004.502955][T15857] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1004.513219][T15857] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1004.890019][T15737] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1004.998648][T15737] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1005.139724][T15737] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1005.204954][T15872] bridge1: entered promiscuous mode [ 1005.210530][T15872] bridge1: entered allmulticast mode [ 1005.406347][T12831] IPVS: starting estimator thread 0... [ 1005.415778][T15870] IPVS: dh: UDP 224.0.0.2:0 - no destination available [ 1005.444402][T15737] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1005.515831][T15874] IPVS: using max 192 ests per chain, 9600 per kthread [ 1005.558896][T15877] tipc: Enabled bearer , priority 0 [ 1005.632383][T15876] tipc: Disabling bearer [ 1006.381956][T15737] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1006.537398][T15737] 8021q: adding VLAN 0 to HW filter on device team0 [ 1006.599003][ T4889] bridge0: port 1(bridge_slave_0) entered blocking state [ 1006.606488][ T4889] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1006.716314][ T4889] bridge0: port 2(bridge_slave_1) entered blocking state [ 1006.723953][ T4889] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1006.778252][T15891] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3336'. [ 1007.446770][ T30] kauditd_printk_skb: 3 callbacks suppressed [ 1007.446848][ T30] audit: type=1326 audit(1758087342.572:907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15895 comm="syz.2.3337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1007.475886][ T30] audit: type=1326 audit(1758087342.582:908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15895 comm="syz.2.3337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=216 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1007.498927][ T30] audit: type=1326 audit(1758087342.582:909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15895 comm="syz.2.3337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1007.688233][T15898] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3338'. [ 1007.821272][T15903] netlink: 'syz.3.3340': attribute type 1 has an invalid length. [ 1007.840341][T15901] bridge_slave_0: left allmulticast mode [ 1007.846374][T15901] bridge_slave_0: left promiscuous mode [ 1007.852999][T15901] bridge0: port 1(bridge_slave_0) entered disabled state [ 1007.931305][T15901] bridge_slave_1: left allmulticast mode [ 1007.931407][T15901] bridge_slave_1: left promiscuous mode [ 1007.933587][T15901] bridge0: port 2(bridge_slave_1) entered disabled state [ 1008.013226][T15901] bond0: (slave bond_slave_0): Releasing backup interface [ 1008.076325][T15901] bond0: (slave bond_slave_1): Releasing backup interface [ 1008.153949][T15901] team0: Port device team_slave_0 removed [ 1008.183070][T15901] team0: Port device team_slave_1 removed [ 1008.194275][T15901] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1008.202826][T15901] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1008.243140][T15901] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1008.252475][T15901] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1008.416261][T15903] bond1: entered promiscuous mode [ 1008.423303][T15903] 8021q: adding VLAN 0 to HW filter on device bond1 [ 1008.893852][T15916] tipc: Started in network mode [ 1008.904758][T15916] tipc: Node identity eecaf0852e2a, cluster identity 4711 [ 1008.914785][T15916] tipc: Enabled bearer , priority 0 [ 1008.958358][T15916] tipc: Disabling bearer [ 1009.019041][T15919] 9pnet_fd: Insufficient options for proto=fd [ 1009.300171][T15737] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1009.520514][T15923] smc: net device bond0 applied user defined pnetid SYZ0 [ 1009.604400][T15930] smc: net device bond0 erased user defined pnetid SYZ0 [ 1009.706364][T15737] veth0_vlan: entered promiscuous mode [ 1009.803834][T15737] veth1_vlan: entered promiscuous mode [ 1010.092417][T15737] veth0_macvtap: entered promiscuous mode [ 1010.146985][T15737] veth1_macvtap: entered promiscuous mode [ 1010.235301][T15938] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3351'. [ 1010.298335][T15737] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1010.354955][T15737] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1010.439727][T14794] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1010.459452][T15942] netlink: 'syz.3.3352': attribute type 1 has an invalid length. [ 1010.532351][T15942] bond2: entered promiscuous mode [ 1010.538843][T15942] 8021q: adding VLAN 0 to HW filter on device bond2 [ 1010.583966][T14794] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1010.676481][T14794] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1010.730721][T14794] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1011.355687][T15949] lo speed is unknown, defaulting to 1000 [ 1011.500888][T15954] tipc: Enabled bearer , priority 0 [ 1011.576318][T15957] tipc: Disabling bearer [ 1012.382571][T15974] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3362'. [ 1012.836463][T15981] netlink: 'syz.3.3363': attribute type 1 has an invalid length. [ 1012.929185][T15981] bond3: entered promiscuous mode [ 1012.936187][T15981] 8021q: adding VLAN 0 to HW filter on device bond3 [ 1013.554834][T15994] netlink: 28 bytes leftover after parsing attributes in process `syz.9.3367'. [ 1013.564326][T15994] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3367'. [ 1013.582872][T15995] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3366'. [ 1013.969899][T16001] tipc: New replicast peer: 255.255.255.255 [ 1013.980037][T16001] tipc: Enabled bearer , priority 10 [ 1014.047444][T16002] tipc: Enabled bearer , priority 0 [ 1014.107945][T16007] tipc: Disabling bearer [ 1014.645607][T16013] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3373'. [ 1015.234594][T12828] tipc: Node number set to 2764403148 [ 1016.898858][T16033] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3379'. [ 1017.819008][T16043] tipc: Enabled bearer , priority 0 [ 1017.878195][T16043] tipc: Disabling bearer [ 1018.445795][T16057] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1018.615492][T16057] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1018.653193][T16063] usb usb1: usbfs: process 16063 (syz.3.3390) did not claim interface 4 before use [ 1018.732333][T16057] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1018.808617][T14792] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1018.816809][T14792] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1018.923898][T16057] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1018.995334][ T4889] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1019.004928][ T4889] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1019.299295][T14796] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1019.365160][T14796] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1019.414928][ T3605] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1019.486509][ T3605] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1019.763559][T16076] sch_tbf: burst 0 is lower than device lo mtu (18) ! [ 1020.075568][ T30] audit: type=1800 audit(1758087355.860:910): pid=16081 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3395" name="/" dev="9p" ino=2 res=0 errno=0 [ 1020.297657][T16088] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 1021.116010][T16102] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3403'. [ 1021.563637][ T30] audit: type=1326 audit(1758087357.414:911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16109 comm="syz.2.3408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1021.590275][ T30] audit: type=1326 audit(1758087357.425:912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16109 comm="syz.2.3408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1021.614266][ T30] audit: type=1326 audit(1758087357.456:913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16109 comm="syz.2.3408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1021.637195][ T30] audit: type=1326 audit(1758087357.456:914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16109 comm="syz.2.3408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1021.660163][ T30] audit: type=1326 audit(1758087357.456:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16109 comm="syz.2.3408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1021.685487][ T30] audit: type=1326 audit(1758087357.456:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16109 comm="syz.2.3408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1021.709228][ T30] audit: type=1326 audit(1758087357.477:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16109 comm="syz.2.3408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1021.720362][T16108] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3406'. [ 1021.732096][ T30] audit: type=1326 audit(1758087357.477:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16109 comm="syz.2.3408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1021.732326][ T30] audit: type=1326 audit(1758087357.477:919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16109 comm="syz.2.3408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1021.741686][T16108] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3406'. [ 1021.821596][T16108] ip6gretap0: entered promiscuous mode [ 1021.832443][T16108] syz_tun: entered promiscuous mode [ 1022.490080][T16125] syzkaller1: entered promiscuous mode [ 1022.495763][T16125] syzkaller1: entered allmulticast mode [ 1026.470687][ T30] kauditd_printk_skb: 2 callbacks suppressed [ 1026.470766][ T30] audit: type=1326 audit(1758087362.572:922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16172 comm="syz.3.3432" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x0 [ 1027.015783][T16183] lo speed is unknown, defaulting to 1000 [ 1027.554443][T16195] syzkaller1: entered promiscuous mode [ 1027.560387][T16195] syzkaller1: entered allmulticast mode [ 1028.710487][T16204] bridge0: entered promiscuous mode [ 1028.719714][T16204] bridge0: port 1(macsec1) entered blocking state [ 1028.726836][T16204] bridge0: port 1(macsec1) entered disabled state [ 1028.735886][T16204] macsec1: entered allmulticast mode [ 1028.741364][T16204] bridge0: entered allmulticast mode [ 1028.805031][T16204] macsec1: left allmulticast mode [ 1028.810469][T16204] bridge0: left allmulticast mode [ 1028.849194][T16204] bridge0: left promiscuous mode [ 1029.500071][ T30] audit: type=1326 audit(1758087365.755:923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16213 comm="syz.1.3445" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x0 [ 1030.043218][T16227] syzkaller1: entered promiscuous mode [ 1030.049262][T16227] syzkaller1: entered allmulticast mode [ 1030.213535][ T30] audit: type=1326 audit(1758087366.511:924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16229 comm="syz.3.3452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1030.325319][ T30] audit: type=1326 audit(1758087366.563:925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16229 comm="syz.3.3452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=235 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1030.351762][ T30] audit: type=1326 audit(1758087366.563:926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16229 comm="syz.3.3452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1030.828399][T16239] bridge0: entered promiscuous mode [ 1030.841299][T16239] bridge0: port 1(macsec1) entered blocking state [ 1030.848649][T16239] bridge0: port 1(macsec1) entered disabled state [ 1030.856075][T16239] macsec1: entered allmulticast mode [ 1030.861704][T16239] bridge0: entered allmulticast mode [ 1030.932449][T16239] macsec1: left allmulticast mode [ 1030.937701][T16239] bridge0: left allmulticast mode [ 1031.029459][T16239] bridge0: left promiscuous mode [ 1032.207556][T16253] geneve2: entered promiscuous mode [ 1032.213075][T16253] geneve2: entered allmulticast mode [ 1032.417599][ T30] audit: type=1326 audit(1758087368.822:927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16255 comm="syz.0.3464" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x0 [ 1032.803593][ T30] audit: type=1326 audit(1758087369.221:928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16261 comm="syz.1.3466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1032.882033][ T30] audit: type=1326 audit(1758087369.263:929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16261 comm="syz.1.3466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1032.905383][ T30] audit: type=1326 audit(1758087369.274:930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16261 comm="syz.1.3466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1032.928510][ T30] audit: type=1326 audit(1758087369.274:931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16261 comm="syz.1.3466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1032.951370][ T30] audit: type=1326 audit(1758087369.274:932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16261 comm="syz.1.3466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1032.976812][ T30] audit: type=1326 audit(1758087369.274:933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16261 comm="syz.1.3466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1033.000455][ T30] audit: type=1326 audit(1758087369.284:934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16261 comm="syz.1.3466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1033.023329][ T30] audit: type=1326 audit(1758087369.295:935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16261 comm="syz.1.3466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1033.046588][ T30] audit: type=1326 audit(1758087369.295:936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16261 comm="syz.1.3466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1033.606486][T16270] bridge0: entered promiscuous mode [ 1033.619590][T16270] bridge0: port 3(macsec1) entered blocking state [ 1033.626679][T16270] bridge0: port 3(macsec1) entered disabled state [ 1033.633756][T16270] macsec1: entered allmulticast mode [ 1033.639520][T16270] bridge0: entered allmulticast mode [ 1033.694949][T16270] macsec1: left allmulticast mode [ 1033.700203][T16270] bridge0: left allmulticast mode [ 1033.750819][T16270] bridge0: left promiscuous mode [ 1034.086112][T16275] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3472'. [ 1034.522246][T16283] geneve2: entered promiscuous mode [ 1034.527656][T16283] geneve2: entered allmulticast mode [ 1035.437723][T16299] bridge0: entered promiscuous mode [ 1035.446853][T16299] bridge0: port 1(macsec1) entered blocking state [ 1035.453748][T16299] bridge0: port 1(macsec1) entered disabled state [ 1035.460911][T16299] macsec1: entered allmulticast mode [ 1035.466540][T16299] bridge0: entered allmulticast mode [ 1035.478652][T16299] macsec1: left allmulticast mode [ 1035.484340][T16299] bridge0: left allmulticast mode [ 1035.533002][T16299] bridge0: left promiscuous mode [ 1037.022236][T16330] bridge0: entered promiscuous mode [ 1037.031517][T16330] bridge0: port 1(macsec1) entered blocking state [ 1037.038737][T16330] bridge0: port 1(macsec1) entered disabled state [ 1037.046158][T16330] macsec1: entered allmulticast mode [ 1037.051629][T16330] bridge0: entered allmulticast mode [ 1037.094413][T16330] macsec1: left allmulticast mode [ 1037.099643][T16330] bridge0: left allmulticast mode [ 1037.132676][T16330] bridge0: left promiscuous mode [ 1038.271340][T16356] netlink: 'syz.9.3511': attribute type 1 has an invalid length. [ 1038.361772][T16356] bond1: entered promiscuous mode [ 1038.368546][T16356] 8021q: adding VLAN 0 to HW filter on device bond1 [ 1038.507574][T16363] bridge0: entered promiscuous mode [ 1038.516734][T16363] bridge0: port 1(macsec1) entered blocking state [ 1038.523719][T16363] bridge0: port 1(macsec1) entered disabled state [ 1038.539417][T16363] macsec1: entered allmulticast mode [ 1038.544896][T16363] bridge0: entered allmulticast mode [ 1038.596167][T16363] macsec1: left allmulticast mode [ 1038.601390][T16363] bridge0: left allmulticast mode [ 1038.618545][T16363] bridge0: left promiscuous mode [ 1038.663615][T16356] netlink: 3 bytes leftover after parsing attributes in process `syz.9.3511'. [ 1038.713823][T16356] batadv1: entered promiscuous mode [ 1038.719245][T16356] batadv1: entered allmulticast mode [ 1039.537583][ T30] kauditd_printk_skb: 9 callbacks suppressed [ 1039.537658][ T30] audit: type=1326 audit(1758087376.301:946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16378 comm="syz.3.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1039.650848][ T30] audit: type=1326 audit(1758087376.374:947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16378 comm="syz.3.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1039.674348][ T30] audit: type=1326 audit(1758087376.374:948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16378 comm="syz.3.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1039.697384][ T30] audit: type=1326 audit(1758087376.374:949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16378 comm="syz.3.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1039.722500][ T30] audit: type=1326 audit(1758087376.374:950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16378 comm="syz.3.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1039.746965][ T30] audit: type=1326 audit(1758087376.374:951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16378 comm="syz.3.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1039.769994][ T30] audit: type=1326 audit(1758087376.374:952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16378 comm="syz.3.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1039.792914][ T30] audit: type=1326 audit(1758087376.385:953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16378 comm="syz.3.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=234 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1039.821545][ T30] audit: type=1326 audit(1758087376.385:954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16378 comm="syz.3.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1039.846268][ T30] audit: type=1326 audit(1758087376.395:955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16378 comm="syz.3.3521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1040.098268][T16391] binfmt_misc: register: failed to install interpreter file ./file0 [ 1040.467231][T16397] netlink: 'syz.0.3529': attribute type 1 has an invalid length. [ 1040.517888][T16397] netlink: 3 bytes leftover after parsing attributes in process `syz.0.3529'. [ 1040.545050][T16397] batadv1: entered promiscuous mode [ 1040.550645][T16397] batadv1: entered allmulticast mode [ 1040.707971][T16403] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3532'. [ 1042.419323][T16432] netlink: 'syz.3.3546': attribute type 1 has an invalid length. [ 1042.471854][T16432] netlink: 3 bytes leftover after parsing attributes in process `syz.3.3546'. [ 1042.498336][T16432] batadv0: entered promiscuous mode [ 1042.504018][T16432] batadv0: entered allmulticast mode [ 1042.599128][T16436] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3547'. [ 1043.613437][ T5821] Bluetooth: hci1: command 0x0406 tx timeout [ 1044.307241][T16468] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3564'. [ 1045.692906][ T30] kauditd_printk_skb: 41 callbacks suppressed [ 1045.692985][ T30] audit: type=1326 audit(1758087382.771:997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16495 comm="syz.2.3578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1045.819574][ T30] audit: type=1326 audit(1758087382.824:998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16495 comm="syz.2.3578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1045.843162][ T30] audit: type=1326 audit(1758087382.824:999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16495 comm="syz.2.3578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1045.871058][ T30] audit: type=1326 audit(1758087382.824:1000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16495 comm="syz.2.3578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1045.896157][ T30] audit: type=1326 audit(1758087382.824:1001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16495 comm="syz.2.3578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1045.919174][ T30] audit: type=1326 audit(1758087382.824:1002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16495 comm="syz.2.3578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1045.947064][ T30] audit: type=1326 audit(1758087382.834:1003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16495 comm="syz.2.3578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1045.971856][ T30] audit: type=1326 audit(1758087382.845:1004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16495 comm="syz.2.3578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1045.994784][ T30] audit: type=1326 audit(1758087382.845:1005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16495 comm="syz.2.3578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1046.017635][ T30] audit: type=1326 audit(1758087382.845:1006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16495 comm="syz.2.3578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1046.633698][T16509] netlink: 224 bytes leftover after parsing attributes in process `syz.9.3584'. [ 1046.930924][T16516] netlink: 256 bytes leftover after parsing attributes in process `syz.0.3587'. [ 1046.940701][T16516] ksmbd: Unknown IPC event: 3, ignore. [ 1050.314389][T16567] 9pnet_fd: Insufficient options for proto=fd [ 1051.438084][ T1291] ieee802154 phy0 wpan0: encryption failed: -22 [ 1051.711418][T16586] block device autoloading is deprecated and will be removed. [ 1052.262800][ T30] audit: type=1326 audit(1758087389.672:1007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16595 comm="syz.0.3621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1052.391197][ T30] audit: type=1326 audit(1758087389.714:1008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16595 comm="syz.0.3621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1052.414803][ T30] audit: type=1326 audit(1758087389.714:1009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16595 comm="syz.0.3621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1052.437850][ T30] audit: type=1326 audit(1758087389.714:1010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16595 comm="syz.0.3621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1052.460962][ T30] audit: type=1326 audit(1758087389.714:1011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16595 comm="syz.0.3621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1052.489018][ T30] audit: type=1326 audit(1758087389.725:1012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16595 comm="syz.0.3621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1052.513534][ T30] audit: type=1326 audit(1758087389.725:1013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16595 comm="syz.0.3621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1052.536511][ T30] audit: type=1326 audit(1758087389.725:1014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16595 comm="syz.0.3621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f0c55d8d65f code=0x7ffc0000 [ 1052.559157][ T30] audit: type=1326 audit(1758087389.725:1015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16595 comm="syz.0.3621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1052.587100][ T30] audit: type=1326 audit(1758087389.725:1016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16595 comm="syz.0.3621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f0c55d8d5bc code=0x7ffc0000 [ 1052.933536][T16606] macvtap0: refused to change device tx_queue_len [ 1056.565733][T16670] loop1: detected capacity change from 0 to 2048 [ 1056.734136][T16670] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1056.856758][T16670] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 1056.911849][T16681] tipc: New replicast peer: 255.255.255.255 [ 1056.921403][T16681] tipc: Enabled bearer , priority 10 [ 1057.043233][T16681] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3661'. [ 1057.214734][ T9405] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1057.600407][T16701] loop1: detected capacity change from 0 to 128 [ 1057.897663][ T7661] tipc: Node number set to 3235967109 [ 1058.607078][T16719] tipc: Started in network mode [ 1058.612687][T16719] tipc: Node identity ac14140f, cluster identity 4711 [ 1058.629208][T16719] tipc: New replicast peer: 255.255.255.255 [ 1058.638623][T16719] tipc: Enabled bearer , priority 10 [ 1058.656499][T16719] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3675'. [ 1059.166442][ T30] kauditd_printk_skb: 28 callbacks suppressed [ 1059.166520][ T30] audit: type=1326 audit(1758087396.920:1045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16728 comm="syz.0.3681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1059.195971][ T30] audit: type=1326 audit(1758087396.920:1046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16728 comm="syz.0.3681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1059.224243][ T30] audit: type=1326 audit(1758087396.941:1047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16728 comm="syz.0.3681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1059.278405][ T30] audit: type=1326 audit(1758087397.035:1048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16728 comm="syz.0.3681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1059.319253][ T30] audit: type=1326 audit(1758087397.077:1049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16728 comm="syz.0.3681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1059.369453][T12828] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 1059.373113][ T30] audit: type=1326 audit(1758087397.109:1050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16728 comm="syz.0.3681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1059.405855][ T30] audit: type=1326 audit(1758087397.109:1051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16728 comm="syz.0.3681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1059.432892][ T30] audit: type=1326 audit(1758087397.109:1052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16728 comm="syz.0.3681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1059.456098][ T30] audit: type=1326 audit(1758087397.119:1053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16728 comm="syz.0.3681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1059.478926][ T30] audit: type=1326 audit(1758087397.119:1054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16728 comm="syz.0.3681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1059.575046][T12828] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1059.585842][T12828] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1059.598185][T12828] usb 4-1: Product: syz [ 1059.602533][T12828] usb 4-1: Manufacturer: syz [ 1059.610133][T12828] usb 4-1: SerialNumber: syz [ 1059.693330][ T7661] tipc: Node number set to 2886997007 [ 1059.741441][T12828] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1059.772822][T16736] syz.1.3683 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 1059.907742][T12829] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1060.216273][T12828] usb 4-1: USB disconnect, device number 6 [ 1060.910776][T12829] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive [ 1060.918767][T12829] ath9k_htc: Failed to initialize the device [ 1060.980604][T12828] usb 4-1: ath9k_htc: USB layer deinitialized [ 1061.022979][T16756] tipc: Enabling of bearer rejected, already enabled [ 1063.500049][T16790] tipc: Enabling of bearer rejected, already enabled [ 1064.209319][T16807] netlink: 'syz.9.3707': attribute type 10 has an invalid length. [ 1064.262189][T16807] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1064.287519][T16807] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 1065.101227][T16823] tipc: New replicast peer: 255.255.255.255 [ 1065.111131][T16823] tipc: Enabled bearer , priority 10 [ 1065.418624][ C0] vcan0: j1939_tp_txtimer: 0xffff88812d699000: tx aborted with unknown reason: -2 [ 1065.431599][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88812d698e00: 0x00000: (250) Any other reason (if a Connection Abort reason is identified that is not listed in the table use code 250) [ 1065.459146][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88812d699000: 0x00000: (250) Any other reason (if a Connection Abort reason is identified that is not listed in the table use code 250) [ 1066.166830][ T7661] tipc: Node number set to 3573909138 [ 1066.366246][T16845] netlink: 132 bytes leftover after parsing attributes in process `syz.9.3728'. [ 1066.777591][T16853] loop1: detected capacity change from 0 to 512 [ 1066.809785][T16853] EXT4-fs: Ignoring removed mblk_io_submit option [ 1066.852544][T16853] EXT4-fs (loop1): filesystem is read-only [ 1066.872133][T16853] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 1066.925793][T16853] EXT4-fs (loop1): filesystem is read-only [ 1066.932030][T16853] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1067.044623][T16853] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #16: comm syz.1.3732: iget: bad i_size value: 648518346341360424 [ 1067.113926][T16853] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.3732: couldn't read orphan inode 16 (err -117) [ 1067.180683][T16853] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 1067.592069][ T9405] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1069.031084][T16897] loop1: detected capacity change from 0 to 2048 [ 1069.287934][T16897] loop1: p2 p3 p7 [ 1069.382637][T16902] binfmt_misc: register: failed to install interpreter file ./file2 [ 1069.920175][T16912] random: crng reseeded on system resumption [ 1070.124852][T16911] 9pnet_fd: Insufficient options for proto=fd [ 1070.177991][T16911] 9pnet_fd: Insufficient options for proto=fd [ 1070.451871][T16919] can0: slcan on ptm0. [ 1071.067431][T16931] bridge0: entered promiscuous mode [ 1071.076532][T16931] bridge0: port 1(macsec1) entered blocking state [ 1071.083558][T16931] bridge0: port 1(macsec1) entered disabled state [ 1071.090813][T16931] macsec1: entered allmulticast mode [ 1071.103439][T16931] bridge0: entered allmulticast mode [ 1071.135503][T16931] macsec1: left allmulticast mode [ 1071.140905][T16931] bridge0: left allmulticast mode [ 1071.275338][T16931] bridge0: left promiscuous mode [ 1071.651147][T16917] can0 (unregistered): slcan off ptm0. [ 1071.925087][T16939] random: crng reseeded on system resumption [ 1073.786197][T16965] bridge0: entered promiscuous mode [ 1073.795594][T16965] bridge0: port 1(macsec1) entered blocking state [ 1073.802640][T16965] bridge0: port 1(macsec1) entered disabled state [ 1073.809690][T16965] macsec1: entered allmulticast mode [ 1073.815281][T16965] bridge0: entered allmulticast mode [ 1074.104896][T16965] macsec1: left allmulticast mode [ 1074.110752][T16965] bridge0: left allmulticast mode [ 1074.233419][T16965] bridge0: left promiscuous mode [ 1076.713458][ T30] kauditd_printk_skb: 2 callbacks suppressed [ 1076.713538][ T30] audit: type=1326 audit(1758087415.353:1057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17002 comm="syz.0.3796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1076.818870][ T30] audit: type=1326 audit(1758087415.416:1058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17002 comm="syz.0.3796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1076.843428][ T30] audit: type=1326 audit(1758087415.427:1059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17002 comm="syz.0.3796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1076.872138][ T30] audit: type=1326 audit(1758087415.427:1060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17002 comm="syz.0.3796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1076.897009][ T30] audit: type=1326 audit(1758087415.427:1061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17002 comm="syz.0.3796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1076.920091][ T30] audit: type=1326 audit(1758087415.427:1062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17002 comm="syz.0.3796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1076.948359][ T30] audit: type=1326 audit(1758087415.437:1063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17002 comm="syz.0.3796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1076.973022][ T30] audit: type=1326 audit(1758087415.437:1064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17002 comm="syz.0.3796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1076.998462][ T30] audit: type=1326 audit(1758087415.448:1065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17002 comm="syz.0.3796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1077.021690][ T30] audit: type=1326 audit(1758087415.448:1066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17002 comm="syz.0.3796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1077.190637][T17010] netlink: 24 bytes leftover after parsing attributes in process `syz.9.3799'. [ 1082.804765][T17078] netlink: 244 bytes leftover after parsing attributes in process `syz.9.3825'. [ 1082.814493][T17078] ksmbd: Unknown IPC event: 3, ignore. [ 1083.506035][T17088] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3829'. [ 1083.612827][T17088] 8021q: adding VLAN 0 to HW filter on device bond4 [ 1083.838818][T17088] vlan2: entered allmulticast mode [ 1083.844133][T17088] bond4: entered allmulticast mode [ 1085.402345][T17120] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3843'. [ 1086.369897][ T30] kauditd_printk_skb: 5 callbacks suppressed [ 1086.369975][ T30] audit: type=1326 audit(1758087425.479:1072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17136 comm="syz.1.3851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1086.401914][ T30] audit: type=1326 audit(1758087425.489:1073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17136 comm="syz.1.3851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1086.425707][ T30] audit: type=1326 audit(1758087425.489:1074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17136 comm="syz.1.3851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1086.448953][ T30] audit: type=1326 audit(1758087425.489:1075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17136 comm="syz.1.3851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=306 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1086.471892][ T30] audit: type=1326 audit(1758087425.489:1076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17136 comm="syz.1.3851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1086.667830][ T30] audit: type=1326 audit(1758087425.636:1077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17136 comm="syz.1.3851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1087.078785][T17154] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3856'. [ 1089.163763][T17184] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3868'. [ 1090.537114][ T30] audit: type=1326 audit(1758087429.859:1078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17207 comm="syz.1.3878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1090.560283][ T30] audit: type=1326 audit(1758087429.869:1079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17207 comm="syz.1.3878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=179 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1090.700387][ T30] audit: type=1326 audit(1758087429.964:1080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17207 comm="syz.1.3878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1090.723852][ T30] audit: type=1326 audit(1758087429.974:1081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17207 comm="syz.1.3878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1093.079121][T17247] netlink: 24 bytes leftover after parsing attributes in process `syz.9.3893'. [ 1093.674247][T17253] geneve2: entered promiscuous mode [ 1093.679656][T17253] geneve2: entered allmulticast mode [ 1094.975945][T17275] random: crng reseeded on system resumption [ 1095.376805][ T30] audit: type=1326 audit(1758087434.942:1082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17281 comm="syz.9.3910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1095.399751][ T30] audit: type=1326 audit(1758087434.942:1083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17281 comm="syz.9.3910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1095.422606][ T30] audit: type=1326 audit(1758087434.963:1084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17281 comm="syz.9.3910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1095.446197][ T30] audit: type=1326 audit(1758087435.005:1085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17281 comm="syz.9.3910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1095.559048][T17285] geneve2: entered promiscuous mode [ 1095.574343][T17285] geneve2: entered allmulticast mode [ 1096.661988][T17305] random: crng reseeded on system resumption [ 1097.014394][ T30] audit: type=1326 audit(1758087436.675:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17306 comm="syz.1.3920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1097.040057][ T30] audit: type=1326 audit(1758087436.675:1087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17306 comm="syz.1.3920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1097.063657][ T30] audit: type=1326 audit(1758087436.707:1088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17306 comm="syz.1.3920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1097.334920][ T30] audit: type=1326 audit(1758087436.812:1089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17306 comm="syz.1.3920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1097.359019][ T30] audit: type=1326 audit(1758087436.864:1090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17306 comm="syz.1.3920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1097.382169][ T30] audit: type=1326 audit(1758087436.864:1091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17306 comm="syz.1.3920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254d78eba9 code=0x7ffc0000 [ 1099.254937][T17334] random: crng reseeded on system resumption [ 1099.491147][T17338] unsupported nla_type 52263 [ 1099.586391][T17342] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3936'. [ 1099.596973][T17342] IPVS: Error joining to the multicast group [ 1100.666365][T17364] random: crng reseeded on system resumption [ 1101.208091][T17370] loop1: detected capacity change from 0 to 2048 [ 1101.382538][T17370] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1101.564458][ T9405] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1102.191278][T17395] random: crng reseeded on system resumption [ 1102.344145][T17397] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3960'. [ 1103.401650][T17414] rdma_op ffff888032357980 conn xmit_rdma 0000000000000000 [ 1103.691304][T17418] netlink: 232 bytes leftover after parsing attributes in process `syz.1.3970'. [ 1103.788690][T17422] random: crng reseeded on system resumption [ 1104.708307][T17438] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3956'. [ 1106.050022][T17457] random: crng reseeded on system resumption [ 1106.201570][T17458] netlink: 232 bytes leftover after parsing attributes in process `syz.3.3986'. [ 1106.404166][T17464] IPVS: sync thread started: state = BACKUP, mcast_ifn = hsr0, syncid = 4, id = 0 [ 1106.615221][T17467] program syz.0.3988 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1107.001433][T17473] ipvlan3: entered promiscuous mode [ 1107.010371][T17473] bridge0: port 1(ipvlan3) entered blocking state [ 1107.017653][T17473] bridge0: port 1(ipvlan3) entered disabled state [ 1107.024858][T17473] ipvlan3: entered allmulticast mode [ 1107.030484][T17473] bridge0: entered allmulticast mode [ 1107.038293][T17473] ipvlan3: left allmulticast mode [ 1107.043790][T17473] bridge0: left allmulticast mode [ 1107.599699][T17483] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3995'. [ 1107.798198][T17488] random: crng reseeded on system resumption [ 1108.034341][T17494] netlink: 232 bytes leftover after parsing attributes in process `syz.9.4000'. [ 1108.452220][T17503] netlink: 'syz.9.4003': attribute type 30 has an invalid length. [ 1109.146990][ T30] kauditd_printk_skb: 16 callbacks suppressed [ 1109.147070][ T30] audit: type=1326 audit(1758087449.416:1108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17508 comm="syz.0.4005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1109.176805][ T30] audit: type=1326 audit(1758087449.426:1109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17508 comm="syz.0.4005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1109.233898][T17514] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4007'. [ 1109.594357][ T30] audit: type=1326 audit(1758087449.888:1110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17508 comm="syz.0.4005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1109.623087][ T30] audit: type=1326 audit(1758087449.888:1111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17508 comm="syz.0.4005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1109.909014][ T1291] ieee802154 phy0 wpan0: encryption failed: -22 [ 1109.971585][T17522] random: crng reseeded on system resumption [ 1110.239436][T17524] netlink: 232 bytes leftover after parsing attributes in process `syz.1.4013'. [ 1111.134532][ T30] audit: type=1326 audit(1758087451.506:1112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17539 comm="syz.9.4018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1111.157662][ T30] audit: type=1326 audit(1758087451.506:1113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17539 comm="syz.9.4018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1111.270753][ T30] audit: type=1326 audit(1758087451.611:1114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17539 comm="syz.9.4018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1111.294083][ T30] audit: type=1326 audit(1758087451.611:1115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17539 comm="syz.9.4018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1111.317310][ T30] audit: type=1326 audit(1758087451.611:1116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17539 comm="syz.9.4018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1111.340252][ T30] audit: type=1326 audit(1758087451.621:1117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17539 comm="syz.9.4018" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1111.867677][T15774] Bluetooth: hci4: command 0x0406 tx timeout [ 1112.501441][T17560] netlink: 232 bytes leftover after parsing attributes in process `syz.1.4025'. [ 1114.116737][T17596] netlink: 232 bytes leftover after parsing attributes in process `syz.1.4040'. [ 1114.144036][T17598] random: crng reseeded on system resumption [ 1115.134174][T17615] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4047'. [ 1115.701887][T17624] loop1: detected capacity change from 0 to 2048 [ 1115.733128][T17628] random: crng reseeded on system resumption [ 1115.862226][T17630] netlink: 232 bytes leftover after parsing attributes in process `syz.2.4055'. [ 1115.931558][T17624] Alternate GPT is invalid, using primary GPT. [ 1115.938571][T17624] loop1: p1 p2 p3 [ 1115.948276][T17624] loop1: partition table partially beyond EOD, truncated [ 1116.682961][T17640] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4058'. [ 1117.044486][T17640] bond0: (slave batadv0): Releasing backup interface [ 1117.373171][ T30] kauditd_printk_skb: 8 callbacks suppressed [ 1117.373249][ T30] audit: type=1800 audit(1758087458.028:1126): pid=17645 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.4061" name="/" dev="9p" ino=2 res=0 errno=0 [ 1119.897386][T17670] random: crng reseeded on system resumption [ 1120.395391][T17673] netlink: 232 bytes leftover after parsing attributes in process `syz.2.4069'. [ 1122.190545][T17702] raw_sendmsg: syz.9.4080 forgot to set AF_INET. Fix it! [ 1122.365754][T17707] netlink: 232 bytes leftover after parsing attributes in process `syz.2.4082'. [ 1122.408161][ T30] audit: type=1326 audit(1758087463.333:1127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17703 comm="syz.3.4079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1122.431882][ T30] audit: type=1326 audit(1758087463.333:1128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17703 comm="syz.3.4079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1122.454924][ T30] audit: type=1326 audit(1758087463.343:1129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17703 comm="syz.3.4079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1122.482848][ T30] audit: type=1326 audit(1758087463.343:1130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17703 comm="syz.3.4079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1122.507541][ T30] audit: type=1326 audit(1758087463.343:1131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17703 comm="syz.3.4079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1122.532976][ T30] audit: type=1326 audit(1758087463.427:1132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17703 comm="syz.3.4079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1122.556144][ T30] audit: type=1326 audit(1758087463.427:1133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17703 comm="syz.3.4079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1122.584983][ T30] audit: type=1326 audit(1758087463.427:1134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17703 comm="syz.3.4079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1122.609913][ T30] audit: type=1326 audit(1758087463.427:1135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17703 comm="syz.3.4079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1122.622608][T17711] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4083'. [ 1122.632811][ T30] audit: type=1326 audit(1758087463.427:1136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17703 comm="syz.3.4079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1122.692929][T17708] serio: Serial port ptm0 [ 1122.758935][T17711] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4083'. [ 1122.847614][T17711] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4083'. [ 1122.876011][T17711] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4083'. [ 1123.991307][T17736] netlink: 232 bytes leftover after parsing attributes in process `syz.1.4095'. [ 1124.849471][T17745] loop1: detected capacity change from 0 to 2048 [ 1125.160297][T17745] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1125.393672][T17758] random: crng reseeded on system resumption [ 1125.737055][ T9405] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1127.800948][T17775] tipc: Enabled bearer , priority 0 [ 1127.858938][T17778] syzkaller0: entered promiscuous mode [ 1127.865582][T17778] syzkaller0: entered allmulticast mode [ 1128.022011][T17775] tipc: Resetting bearer [ 1128.130994][T17774] tipc: Resetting bearer [ 1128.445398][ T30] kauditd_printk_skb: 4 callbacks suppressed [ 1128.445476][ T30] audit: type=1326 audit(1758087469.676:1141): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=17782 comm="syz.2.4114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1128.475433][ T30] audit: type=1326 audit(1758087469.676:1142): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=17782 comm="syz.2.4114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1128.498809][ T30] audit: type=1326 audit(1758087469.676:1143): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=17782 comm="syz.2.4114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1128.524381][ T30] audit: type=1326 audit(1758087469.676:1144): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=17782 comm="syz.2.4114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1128.549200][ T30] audit: type=1326 audit(1758087469.687:1145): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=17782 comm="syz.2.4114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1128.572385][ T30] audit: type=1326 audit(1758087469.687:1146): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=17782 comm="syz.2.4114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1128.656485][ T30] audit: type=1326 audit(1758087469.855:1147): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=17782 comm="syz.2.4114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1128.680136][ T30] audit: type=1326 audit(1758087469.855:1148): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=17782 comm="syz.2.4114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1128.703641][ T30] audit: type=1326 audit(1758087469.866:1149): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=17782 comm="syz.2.4114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1128.729216][ T30] audit: type=1326 audit(1758087469.866:1150): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=17782 comm="syz.2.4114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a55f8eba9 code=0x7ffc0000 [ 1129.216100][T17774] tipc: Disabling bearer [ 1130.269187][T17784] pim6reg: entered allmulticast mode [ 1130.432174][T17785] pim6reg: left allmulticast mode [ 1130.646233][T17789] lo speed is unknown, defaulting to 1000 [ 1133.911761][T17819] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4127'. [ 1133.990509][T17822] tipc: Enabled bearer , priority 0 [ 1134.024789][T17822] syzkaller0: entered promiscuous mode [ 1134.030648][T17822] syzkaller0: entered allmulticast mode [ 1134.124667][T17822] tipc: Resetting bearer [ 1134.194673][T17820] tipc: Resetting bearer [ 1134.239491][T17820] tipc: Disabling bearer [ 1135.331489][T17847] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4139'. [ 1136.330144][ T30] kauditd_printk_skb: 16 callbacks suppressed [ 1136.330222][ T30] audit: type=1326 audit(1758087477.974:1167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17854 comm="syz.3.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1136.360004][ T30] audit: type=1326 audit(1758087477.985:1168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17854 comm="syz.3.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1136.519457][ T30] audit: type=1326 audit(1758087478.048:1169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17854 comm="syz.3.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1136.543667][ T30] audit: type=1326 audit(1758087478.048:1170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17854 comm="syz.3.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1136.567234][ T30] audit: type=1326 audit(1758087478.058:1171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17854 comm="syz.3.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=43 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1136.590164][ T30] audit: type=1326 audit(1758087478.090:1172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17854 comm="syz.3.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1136.615267][ T30] audit: type=1326 audit(1758087478.090:1173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17854 comm="syz.3.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1136.937620][T17862] tipc: Enabled bearer , priority 0 [ 1136.948604][T17862] syzkaller0: entered promiscuous mode [ 1136.955710][T17862] syzkaller0: entered allmulticast mode [ 1137.017196][ T30] audit: type=1326 audit(1758087478.657:1174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17864 comm="syz.3.4147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1137.040689][ T30] audit: type=1326 audit(1758087478.657:1175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17864 comm="syz.3.4147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1137.063708][ T30] audit: type=1326 audit(1758087478.688:1176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17864 comm="syz.3.4147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1137.254028][T17862] tipc: Resetting bearer [ 1137.332883][T17860] tipc: Resetting bearer [ 1137.390212][T17860] tipc: Disabling bearer [ 1137.460846][T17873] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4150'. [ 1138.982244][T17892] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8) [ 1138.988983][T17892] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 1138.998948][T17892] vhci_hcd vhci_hcd.0: Device attached [ 1139.117811][T17893] vhci_hcd: connection closed [ 1139.160099][ T3671] vhci_hcd: stop threads [ 1139.169541][ T3671] vhci_hcd: release socket [ 1139.174273][ T3671] vhci_hcd: disconnect device [ 1140.302439][T12828] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 1140.442127][T12828] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1141.300173][T17912] tipc: Enabled bearer , priority 0 [ 1141.398531][T17910] syzkaller0: entered promiscuous mode [ 1141.405093][T17910] syzkaller0: entered allmulticast mode [ 1141.566454][T17910] tipc: Resetting bearer [ 1141.591719][T17909] tipc: Resetting bearer [ 1141.631149][T17909] tipc: Disabling bearer [ 1142.207340][ T5821] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 1142.217269][ T5821] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 1142.228558][ T5821] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 1142.250560][ T5821] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 1142.270491][ T5821] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 1142.398904][T17922] lo speed is unknown, defaulting to 1000 [ 1143.209790][T17922] chnl_net:caif_netlink_parms(): no params data found [ 1143.327756][ T7661] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 1143.399660][ T7661] hid-generic 0000:0000:0000.0004: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1144.237856][ T5821] Bluetooth: hci5: command tx timeout [ 1144.329449][ T9405] syz_tun (unregistering): left promiscuous mode [ 1144.438275][T14803] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1144.585413][T14803] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1144.737479][T14803] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1144.909736][T14803] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1145.049611][T17922] bridge0: port 1(bridge_slave_0) entered blocking state [ 1145.057299][T17922] bridge0: port 1(bridge_slave_0) entered disabled state [ 1145.065052][T17922] bridge_slave_0: entered allmulticast mode [ 1145.075420][T17922] bridge_slave_0: entered promiscuous mode [ 1146.118582][T17975] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR [ 1146.247351][ T5821] Bluetooth: hci5: command tx timeout [ 1146.518247][ T30] kauditd_printk_skb: 2 callbacks suppressed [ 1146.518327][ T30] audit: type=1326 audit(1758087488.593:1179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17970 comm="syz.9.4186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1146.547972][ T30] audit: type=1326 audit(1758087488.593:1180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17970 comm="syz.9.4186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1146.576346][ T30] audit: type=1326 audit(1758087488.593:1181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17970 comm="syz.9.4186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1146.601448][ T30] audit: type=1326 audit(1758087488.593:1182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17970 comm="syz.9.4186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1146.624377][ T30] audit: type=1326 audit(1758087488.593:1183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17970 comm="syz.9.4186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1146.647302][ T30] audit: type=1326 audit(1758087488.624:1184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17970 comm="syz.9.4186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1146.676012][ T30] audit: type=1326 audit(1758087488.624:1185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17970 comm="syz.9.4186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1146.700839][ T30] audit: type=1326 audit(1758087488.635:1186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17970 comm="syz.9.4186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1146.723648][ T30] audit: type=1326 audit(1758087488.635:1187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17970 comm="syz.9.4186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1146.748926][ T30] audit: type=1326 audit(1758087488.635:1188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17970 comm="syz.9.4186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1148.194846][ T5821] Bluetooth: hci5: command tx timeout [ 1148.593322][T14803] ip6gretap0 (unregistering): left promiscuous mode [ 1148.962725][T14803] bond0 (unregistering): Released all slaves [ 1148.999397][T17922] bridge0: port 2(bridge_slave_1) entered blocking state [ 1149.012247][T17922] bridge0: port 2(bridge_slave_1) entered disabled state [ 1149.020217][T17922] bridge_slave_1: entered allmulticast mode [ 1149.029841][T17922] bridge_slave_1: entered promiscuous mode [ 1149.329523][T14803] tipc: Disabling bearer [ 1149.336026][T14803] tipc: Left network mode [ 1149.347653][T17922] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1149.522995][T17922] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1149.745949][T12831] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 1149.788962][T12831] hid-generic 0000:0000:0000.0005: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1149.948177][T17922] team0: Port device team_slave_0 added [ 1150.070463][T14803] hsr_slave_0: left promiscuous mode [ 1150.088451][T14803] hsr_slave_1: left promiscuous mode [ 1150.165772][T14803] veth1_macvtap: left promiscuous mode [ 1150.172402][T14803] veth0_macvtap: left promiscuous mode [ 1150.178601][T14803] veth1_vlan: left promiscuous mode [ 1150.184125][T14803] veth0_vlan: left promiscuous mode [ 1150.191419][ T5821] Bluetooth: hci5: command tx timeout [ 1150.710324][T18022] netlink: 232 bytes leftover after parsing attributes in process `syz.2.4204'. [ 1151.850301][T17922] team0: Port device team_slave_1 added [ 1152.252549][T17922] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1152.260268][T17922] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1152.287174][T17922] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1152.385176][T14803] IPVS: stop unused estimator thread 0... [ 1152.393443][T17922] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1152.393520][T17922] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1152.393669][T17922] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1152.894982][T17922] hsr_slave_0: entered promiscuous mode [ 1152.906560][T17922] hsr_slave_1: entered promiscuous mode [ 1152.915451][T17922] debugfs: 'hsr0' already exists in 'hsr' [ 1152.921433][T17922] Cannot create hsr debugfs directory [ 1155.194948][T17922] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 1155.311962][T17922] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 1155.406914][T17922] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 1155.463949][T17922] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 1155.665317][T18076] random: crng reseeded on system resumption [ 1156.778250][T17922] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1156.931599][T17922] 8021q: adding VLAN 0 to HW filter on device team0 [ 1157.030401][T14819] bridge0: port 1(bridge_slave_0) entered blocking state [ 1157.038005][T14819] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1157.146871][T14819] bridge0: port 2(bridge_slave_1) entered blocking state [ 1157.154423][T14819] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1157.238653][T18096] 9pnet_fd: Insufficient options for proto=fd [ 1157.908113][T18108] random: crng reseeded on system resumption [ 1158.938720][T17922] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1159.239485][T18131] 9pnet_fd: Insufficient options for proto=fd [ 1159.434383][T17922] veth0_vlan: entered promiscuous mode [ 1159.546556][T18136] lo speed is unknown, defaulting to 1000 [ 1159.557507][T17922] veth1_vlan: entered promiscuous mode [ 1159.866204][T18140] random: crng reseeded on system resumption [ 1160.596844][T17922] veth0_macvtap: entered promiscuous mode [ 1160.699865][T17922] veth1_macvtap: entered promiscuous mode [ 1160.938809][T17922] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1161.028303][T17922] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1161.121724][ T3559] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1161.182606][ T3559] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1161.230541][ T3559] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1161.266161][T14792] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1161.491057][ T30] kauditd_printk_skb: 90 callbacks suppressed [ 1161.491135][ T30] audit: type=1326 audit(1758087504.400:1279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18166 comm="syz.3.4260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1161.611224][ T30] audit: type=1326 audit(1758087504.473:1280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18166 comm="syz.3.4260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1161.634413][ T30] audit: type=1326 audit(1758087504.473:1281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18166 comm="syz.3.4260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1161.657360][ T30] audit: type=1326 audit(1758087504.473:1282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18166 comm="syz.3.4260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1161.682373][ T30] audit: type=1326 audit(1758087504.473:1283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18166 comm="syz.3.4260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1161.706124][ T30] audit: type=1326 audit(1758087504.473:1284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18166 comm="syz.3.4260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1161.729007][ T30] audit: type=1326 audit(1758087504.473:1285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18166 comm="syz.3.4260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1161.752720][ T30] audit: type=1326 audit(1758087504.494:1286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18166 comm="syz.3.4260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1161.779250][ T30] audit: type=1326 audit(1758087504.494:1287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18166 comm="syz.3.4260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1161.803693][ T30] audit: type=1326 audit(1758087504.494:1288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18166 comm="syz.3.4260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1164.481581][T18208] lo speed is unknown, defaulting to 1000 [ 1166.358890][T12828] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 1166.447687][T12828] hid-generic 0000:0000:0000.0006: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1167.649320][T14790] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1167.657331][T14790] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1167.751516][T14792] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1167.759655][T14792] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1168.084181][T18275] tipc: Enabled bearer , priority 0 [ 1168.118067][T18275] syzkaller0: entered promiscuous mode [ 1168.123826][T18275] syzkaller0: entered allmulticast mode [ 1168.188436][T18279] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4163'. [ 1168.221946][T18275] tipc: Resetting bearer [ 1168.243920][T18274] tipc: Resetting bearer [ 1168.280605][T18274] tipc: Disabling bearer [ 1168.415599][ T1291] ieee802154 phy0 wpan0: encryption failed: -22 [ 1169.259346][ T30] kauditd_printk_skb: 16 callbacks suppressed [ 1169.259425][ T30] audit: type=1326 audit(1758087512.561:1305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18301 comm="syz.1.4312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd137f8eba9 code=0x7ffc0000 [ 1169.385240][ T30] audit: type=1326 audit(1758087512.613:1306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18301 comm="syz.1.4312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd137f8eba9 code=0x7ffc0000 [ 1169.408555][ T30] audit: type=1326 audit(1758087512.613:1307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18301 comm="syz.1.4312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd137f8eba9 code=0x7ffc0000 [ 1169.431942][ T30] audit: type=1326 audit(1758087512.613:1308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18301 comm="syz.1.4312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd137f8eba9 code=0x7ffc0000 [ 1169.455463][ T30] audit: type=1326 audit(1758087512.624:1309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18301 comm="syz.1.4312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd137f8eba9 code=0x7ffc0000 [ 1169.481600][ T30] audit: type=1326 audit(1758087512.645:1310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18301 comm="syz.1.4312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd137f8eba9 code=0x7ffc0000 [ 1169.505572][ T30] audit: type=1326 audit(1758087512.645:1311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18301 comm="syz.1.4312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd137f8eba9 code=0x7ffc0000 [ 1169.528645][ T30] audit: type=1326 audit(1758087512.645:1312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18301 comm="syz.1.4312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd137f8eba9 code=0x7ffc0000 [ 1169.551518][ T30] audit: type=1326 audit(1758087512.645:1313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18301 comm="syz.1.4312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd137f8d510 code=0x7ffc0000 [ 1169.577344][ T30] audit: type=1326 audit(1758087512.645:1314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18301 comm="syz.1.4312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd137f8eba9 code=0x7ffc0000 [ 1169.612724][T18302] netlink: 'syz.1.4312': attribute type 8 has an invalid length. [ 1169.620897][T18302] netem: change failed [ 1169.690606][T14826] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 1169.725832][T14826] hid-generic 0000:0000:0000.0007: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1171.208459][T18339] bridge0: entered promiscuous mode [ 1171.743823][T12828] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 1171.810299][T12828] hid-generic 0000:0000:0000.0008: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1173.741396][T18383] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4344'. [ 1173.750869][T18383] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4344'. [ 1175.648996][T14826] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0 [ 1175.716700][T14826] hid-generic 0000:0000:0000.0009: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1176.459904][T18426] ksmbd: Unknown IPC event: 16, ignore. [ 1178.447254][T18459] netlink: 24 bytes leftover after parsing attributes in process `syz.9.4374'. [ 1178.523390][ T30] kauditd_printk_skb: 87 callbacks suppressed [ 1178.523471][ T30] audit: type=1326 audit(1758087522.276:1402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18461 comm="syz.1.4375" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd137f8eba9 code=0x0 [ 1179.332557][ T30] audit: type=1326 audit(1758087523.127:1403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18479 comm="syz.9.4382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1179.356138][ T30] audit: type=1326 audit(1758087523.127:1404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18479 comm="syz.9.4382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1179.379048][ T30] audit: type=1326 audit(1758087523.169:1405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18479 comm="syz.9.4382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1179.405031][ T30] audit: type=1326 audit(1758087523.169:1406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18479 comm="syz.9.4382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1179.431085][ T30] audit: type=1326 audit(1758087523.169:1407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18479 comm="syz.9.4382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1179.454916][ T30] audit: type=1326 audit(1758087523.179:1408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18479 comm="syz.9.4382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1179.750463][ T30] audit: type=1326 audit(1758087523.306:1409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18479 comm="syz.9.4382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1179.773509][ T30] audit: type=1326 audit(1758087523.316:1410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18479 comm="syz.9.4382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1179.782108][T18489] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4385'. [ 1179.796314][ T30] audit: type=1326 audit(1758087523.358:1411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18479 comm="syz.9.4382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1180.016751][T18489] 8021q: adding VLAN 0 to HW filter on device bond5 [ 1180.305440][T18501] netlink: 'syz.2.4389': attribute type 10 has an invalid length. [ 1180.350001][T18501] netlink: 'syz.2.4389': attribute type 10 has an invalid length. [ 1180.374258][T18501] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 1181.471856][T18522] loop1: detected capacity change from 0 to 2048 [ 1181.618841][T18522] Alternate GPT is invalid, using primary GPT. [ 1181.627238][T18522] loop1: p1 p2 p3 [ 1181.631149][T18522] loop1: partition table partially beyond EOD, truncated [ 1182.122770][T18533] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4402'. [ 1182.220191][T18533] 8021q: adding VLAN 0 to HW filter on device bond2 [ 1182.497506][T18541] netlink: 'syz.1.4405': attribute type 8 has an invalid length. [ 1182.505772][T18541] netem: change failed [ 1183.422864][T18553] netlink: 'syz.2.4409': attribute type 30 has an invalid length. [ 1184.043867][T18564] random: crng reseeded on system resumption [ 1186.116621][T18597] random: crng reseeded on system resumption [ 1186.604416][T18599] loop1: detected capacity change from 0 to 1024 [ 1186.716709][T18599] EXT4-fs: inline encryption not supported [ 1186.745671][T18599] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 1186.925879][T18599] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1187.251353][T17922] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1187.959574][T18629] random: crng reseeded on system resumption [ 1188.340498][T18636] program syz.9.4441 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1189.029717][T14826] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 1189.088835][T14826] hid-generic 0000:0000:0000.000A: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1189.559230][T18659] random: crng reseeded on system resumption [ 1189.788056][T18663] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4454'. [ 1189.824781][T18663] netlink: 3 bytes leftover after parsing attributes in process `syz.9.4454'. [ 1189.865170][T18663] batadv0: entered promiscuous mode [ 1189.870568][T18663] batadv0: entered allmulticast mode [ 1190.013910][T18666] pim6reg: entered allmulticast mode [ 1190.060685][T18667] loop1: detected capacity change from 0 to 512 [ 1190.084730][T18667] EXT4-fs: Ignoring removed nobh option [ 1190.105114][T18666] pim6reg: left allmulticast mode [ 1190.146162][T18667] EXT4-fs (loop1): failed to initialize system zone (-117) [ 1190.199879][T18667] EXT4-fs (loop1): mount failed [ 1190.759842][T12828] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 1190.802815][T12828] hid-generic 0000:0000:0000.000B: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1190.982592][T18685] loop1: detected capacity change from 0 to 512 [ 1191.024496][T18689] random: crng reseeded on system resumption [ 1191.025814][T18685] EXT4-fs: Ignoring removed nobh option [ 1191.106627][T18685] EXT4-fs (loop1): failed to initialize system zone (-117) [ 1191.155186][T18685] EXT4-fs (loop1): mount failed [ 1191.746993][T18701] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4469'. [ 1191.788830][T18701] netlink: 3 bytes leftover after parsing attributes in process `syz.3.4469'. [ 1191.831161][T18701] batadv0: entered promiscuous mode [ 1191.840175][T18701] batadv0: entered allmulticast mode [ 1192.273997][T18708] loop1: detected capacity change from 0 to 512 [ 1192.359272][T18708] EXT4-fs: Ignoring removed nobh option [ 1192.393099][T18708] EXT4-fs (loop1): failed to initialize system zone (-117) [ 1192.393272][T18708] EXT4-fs (loop1): mount failed [ 1192.421581][ T30] kauditd_printk_skb: 47 callbacks suppressed [ 1192.421656][ T30] audit: type=1326 audit(1758087536.875:1459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18707 comm="syz.9.4474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1192.458276][ T30] audit: type=1326 audit(1758087536.907:1460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18707 comm="syz.9.4474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1193.103504][T18724] random: crng reseeded on system resumption [ 1194.220271][T18743] loop1: detected capacity change from 0 to 512 [ 1194.277899][T18743] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1194.370154][T18743] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1194.381070][T18743] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=842c01c, mo2=0002] [ 1194.414498][T18743] EXT4-fs (loop1): couldn't mount RDWR because of unsupported optional features (80) [ 1194.432954][T18743] EXT4-fs (loop1): Skipping orphan cleanup due to unknown ROCOMPAT features [ 1194.445957][T18743] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 1194.656183][ T30] audit: type=1107 audit(1758087539.228:1461): pid=18741 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 1195.051250][T18762] random: crng reseeded on system resumption [ 1195.117093][T17922] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1195.357310][ T30] audit: type=1326 audit(1758087539.953:1462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18761 comm="syz.9.4494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1195.380287][ T30] audit: type=1326 audit(1758087539.963:1463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18761 comm="syz.9.4494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1195.625419][T18775] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4496'. [ 1195.634779][T18775] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4496'. [ 1197.600134][T18796] loop1: detected capacity change from 0 to 512 [ 1197.885380][T18796] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 1197.977499][T18796] EXT4-fs (loop1): 1 orphan inode deleted [ 1197.983685][T18796] EXT4-fs (loop1): 1 truncate cleaned up [ 1197.991411][T18796] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1198.095529][T18798] random: crng reseeded on system resumption [ 1199.238979][T18800] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 1199.376154][T18800] EXT4-fs (loop1): Remounting filesystem read-only [ 1199.513068][T18813] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4513'. [ 1199.522412][T18813] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4513'. [ 1199.824187][T17922] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1200.187714][T14826] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 1200.218930][T14826] hid-generic 0000:0000:0000.000C: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1200.393509][T18822] loop1: detected capacity change from 0 to 512 [ 1200.555589][T18822] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1200.573832][T18822] ext4 filesystem being mounted at /41/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1200.933232][ T30] audit: type=1326 audit(1758087545.824:1464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18819 comm="syz.1.4515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd137f8eba9 code=0x7ffc0000 [ 1200.962731][ T30] audit: type=1326 audit(1758087545.824:1465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18819 comm="syz.1.4515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd137f8eba9 code=0x7ffc0000 [ 1201.116017][ T30] audit: type=1326 audit(1758087545.877:1466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18819 comm="syz.1.4515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fd137f8eba9 code=0x7ffc0000 [ 1201.838621][T18851] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4527'. [ 1201.848643][T18851] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4527'. [ 1201.977427][T17922] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1202.554619][T18868] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4535'. [ 1202.687616][T18871] pimreg: entered allmulticast mode [ 1202.784469][T18871] pimreg: left allmulticast mode [ 1203.324413][ T30] audit: type=1326 audit(1758087548.334:1467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18880 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1203.346807][ T30] audit: type=1326 audit(1758087548.334:1468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18880 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1203.446112][T18886] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4542'. [ 1203.456291][T18886] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4542'. [ 1203.950394][ T30] audit: type=1326 audit(1758087548.944:1469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18880 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1204.038024][ T30] audit: type=1326 audit(1758087549.080:1470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18880 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1204.159723][T18893] loop1: detected capacity change from 0 to 1024 [ 1204.248203][T18893] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 1204.308374][T18893] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1204.483436][T18893] EXT4-fs error (device loop1): ext4_xattr_inode_iget:437: inode #11: comm syz.1.4546: missing EA_INODE flag [ 1204.596998][T18893] EXT4-fs (loop1): Remounting filesystem read-only [ 1204.877111][T17922] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1205.327142][T18914] loop1: detected capacity change from 0 to 128 [ 1205.394732][T18916] pimreg: entered allmulticast mode [ 1205.505810][T18916] pimreg: left allmulticast mode [ 1205.813036][ T30] audit: type=1326 audit(1758087550.939:1471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18919 comm="syz.3.4554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1205.839112][ T30] audit: type=1326 audit(1758087550.939:1472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18919 comm="syz.3.4554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1205.863103][ T30] audit: type=1326 audit(1758087550.939:1473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18919 comm="syz.3.4554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1205.886180][ T30] audit: type=1326 audit(1758087550.939:1474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18919 comm="syz.3.4554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1205.909093][ T30] audit: type=1326 audit(1758087550.939:1475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18919 comm="syz.3.4554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1205.935813][ T30] audit: type=1326 audit(1758087550.950:1476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18919 comm="syz.3.4554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1206.284220][ T30] audit: type=1326 audit(1758087551.160:1477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18919 comm="syz.3.4554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1206.778615][T15774] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 1206.791582][T15774] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 1206.802399][T15774] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 1206.826444][T15774] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 1206.844330][T15774] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 1206.978950][T18934] lo speed is unknown, defaulting to 1000 [ 1207.145696][ T30] audit: type=1326 audit(1758087552.315:1478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18930 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1207.192408][ T30] audit: type=1326 audit(1758087552.389:1479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18930 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f5f6df8eba9 code=0x7ffc0000 [ 1208.079436][T18934] chnl_net:caif_netlink_parms(): no params data found [ 1208.287263][T18952] 9p: Unknown Cache mode or invalid value mtaÎiÅ”ùpcl [ 1208.824972][T15774] Bluetooth: hci3: command tx timeout [ 1208.828839][ T3605] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1208.970321][ T3605] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1209.120148][ T3605] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1209.295390][ T3605] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1209.607063][T18934] bridge0: port 1(bridge_slave_0) entered blocking state [ 1209.614854][T18934] bridge0: port 1(bridge_slave_0) entered disabled state [ 1209.624063][T18934] bridge_slave_0: entered allmulticast mode [ 1209.642075][T18934] bridge_slave_0: entered promiscuous mode [ 1209.694961][T18934] bridge0: port 2(bridge_slave_1) entered blocking state [ 1209.702715][T18934] bridge0: port 2(bridge_slave_1) entered disabled state [ 1209.711733][T18934] bridge_slave_1: entered allmulticast mode [ 1209.721217][T18934] bridge_slave_1: entered promiscuous mode [ 1209.966039][T18934] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1210.006119][T18934] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1210.037790][ T30] audit: type=1326 audit(1758087555.350:1480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18976 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c55d8eba9 code=0x7ffc0000 [ 1210.591665][ T3605] bond0 (unregistering): (slave dummy0): Releasing backup interface [ 1210.653896][ T3605] bond0 (unregistering): Released all slaves [ 1210.762108][ T3605] bond1 (unregistering): (slave batadv1): Releasing active interface [ 1210.785875][ T3605] bond1 (unregistering): Released all slaves [ 1210.798766][T15774] Bluetooth: hci3: command tx timeout [ 1210.814712][ T3605] bond2 (unregistering): Released all slaves [ 1211.135450][T18983] tipc: Started in network mode [ 1211.140660][T18983] tipc: Node identity ac14142f, cluster identity 4711 [ 1211.148628][T18983] tipc: New replicast peer: 0.0.0.0 [ 1211.156741][T18983] tipc: Enabled bearer , priority 10 [ 1211.163852][T18986] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00aa [ 1211.311534][ T3605] tipc: Disabling bearer [ 1211.318943][ T3605] tipc: Left network mode [ 1211.326026][T18934] team0: Port device team_slave_0 added [ 1211.373964][T18934] team0: Port device team_slave_1 added [ 1211.745541][T18934] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1211.753607][T18934] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1211.780437][T18934] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1211.977843][T18934] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1211.986212][T18934] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1212.012558][T18934] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1212.124814][ T3605] hsr_slave_0: left promiscuous mode [ 1212.148962][ T3605] hsr_slave_1: left promiscuous mode [ 1212.184843][ T3605] veth1_macvtap: left promiscuous mode [ 1212.190944][ T3605] veth0_macvtap: left promiscuous mode [ 1212.196806][ T3605] veth1_vlan: left promiscuous mode [ 1212.202814][ T3605] veth0_vlan: left promiscuous mode [ 1212.220409][T14826] tipc: Node number set to 2886997039 [ 1212.779008][T15774] Bluetooth: hci3: command tx timeout [ 1213.463654][T12828] infiniband syz1: ib_query_port failed (-19) [ 1213.850729][ T3605] IPVS: stop unused estimator thread 0... [ 1213.881605][T18934] hsr_slave_0: entered promiscuous mode [ 1213.891769][T18934] hsr_slave_1: entered promiscuous mode [ 1214.763984][T15774] Bluetooth: hci3: command tx timeout [ 1214.957150][T19024] 9pnet_fd: Insufficient options for proto=fd [ 1216.581156][T18934] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 1216.688630][T18934] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 1216.754404][T18934] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 1216.823529][T18934] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 1217.767317][T19064] loop1: detected capacity change from 0 to 512 [ 1217.806668][T18934] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1217.841360][T19064] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 1217.933155][T18934] 8021q: adding VLAN 0 to HW filter on device team0 [ 1217.966263][T14819] bridge0: port 1(bridge_slave_0) entered blocking state [ 1217.973907][T14819] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1217.997525][T19064] EXT4-fs (loop1): 1 truncate cleaned up [ 1218.005389][T19064] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1218.132848][T14819] bridge0: port 2(bridge_slave_1) entered blocking state [ 1218.140446][T14819] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1218.222776][T19064] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000. [ 1218.606600][T17922] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1219.858700][T18934] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1220.382375][T18934] veth0_vlan: entered promiscuous mode [ 1220.462110][T18934] veth1_vlan: entered promiscuous mode [ 1220.637654][T19099] netlink: 'syz.0.4622': attribute type 1 has an invalid length. [ 1220.722304][T19102] loop1: detected capacity change from 0 to 256 [ 1220.784040][T19099] bond1: entered promiscuous mode [ 1220.792921][T19099] 8021q: adding VLAN 0 to HW filter on device bond1 [ 1220.833119][T18934] veth0_macvtap: entered promiscuous mode [ 1221.038147][T18934] veth1_macvtap: entered promiscuous mode [ 1221.269187][T18934] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1221.403455][T18934] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1221.504041][T14792] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1221.565294][T14792] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1221.607268][T14792] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1221.655586][T14792] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1221.993717][T19112] loop1: detected capacity change from 0 to 4096 [ 1222.254868][T19112] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1222.438810][ T30] kauditd_printk_skb: 1 callbacks suppressed [ 1222.438883][ T30] audit: type=1800 audit(1758087568.395:1482): pid=19112 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.4626" name="file2" dev="loop1" ino=16 res=0 errno=0 [ 1222.586765][ T30] audit: type=1326 audit(1758087568.521:1483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19123 comm="syz.9.4629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1222.613682][ T30] audit: type=1326 audit(1758087568.521:1484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19123 comm="syz.9.4629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1222.638124][ T30] audit: type=1326 audit(1758087568.532:1485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19123 comm="syz.9.4629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1222.661097][ T30] audit: type=1326 audit(1758087568.542:1486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19123 comm="syz.9.4629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1222.684860][ T30] audit: type=1326 audit(1758087568.542:1487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19123 comm="syz.9.4629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=160 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1222.710698][ T30] audit: type=1326 audit(1758087568.542:1488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19123 comm="syz.9.4629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68b6f8eba9 code=0x7ffc0000 [ 1223.077982][T17922] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1223.995965][T19151] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4638'. [ 1224.037796][T19151] netlink: 3 bytes leftover after parsing attributes in process `syz.1.4638'. [ 1224.072721][T19151] batadv1: entered promiscuous mode [ 1224.078143][T19151] batadv1: entered allmulticast mode [ 1224.247674][T14819] ===================================================== [ 1224.255404][T14819] BUG: KMSAN: uninit-value in nci_ntf_packet+0x2753/0x42b0 [ 1224.267496][T14819] nci_ntf_packet+0x2753/0x42b0 [ 1224.272756][T14819] nci_rx_work+0x403/0x750 [ 1224.277340][T14819] process_scheduled_works+0xb8e/0x1d80 [ 1224.283253][T14819] worker_thread+0xedf/0x1590 [ 1224.288156][T14819] kthread+0xd59/0xf00 [ 1224.292505][T14819] ret_from_fork+0x233/0x380 [ 1224.297250][T14819] ret_from_fork_asm+0x1a/0x30 [ 1224.302818][T14819] [ 1224.305212][T14819] Uninit was created at: [ 1224.310216][T14819] kmem_cache_alloc_node_noprof+0x818/0xf00 [ 1224.316319][T14819] kmalloc_reserve+0x13c/0x4b0 [ 1224.321617][T14819] __alloc_skb+0x347/0x7d0 [ 1224.326201][T14819] virtual_ncidev_write+0x6b/0x430 [ 1224.331726][T14819] vfs_write+0x48a/0x15d0 [ 1224.336229][T14819] __x64_sys_write+0x1fb/0x4d0 [ 1224.341428][T14819] x64_sys_call+0x3014/0x3e20 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 1224.346293][T14819] do_syscall_64+0xd9/0x210 [ 1224.351259][T14819] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1224.361008][T14819] [ 1224.363444][T14819] CPU: 1 UID: 0 PID: 14819 Comm: kworker/u8:24 Tainted: G W syzkaller #0 PREEMPT(none) [ 1224.376292][T14819] Tainted: [W]=WARN [ 1224.380192][T14819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1224.390781][T14819] Workqueue: nfc2_nci_rx_wq nci_rx_work [ 1224.396635][T14819] ===================================================== [ 1224.403645][T14819] Disabling lock debugging due to kernel taint [ 1224.410025][T14819] Kernel panic - not syncing: kmsan.panic set ... [ 1224.416562][T14819] CPU: 1 UID: 0 PID: 14819 Comm: kworker/u8:24 Tainted: G B W syzkaller #0 PREEMPT(none) [ 1224.427953][T14819] Tainted: [B]=BAD_PAGE, [W]=WARN [ 1224.433057][T14819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1224.443237][T14819] Workqueue: nfc2_nci_rx_wq nci_rx_work [ 1224.448950][T14819] Call Trace: [ 1224.452314][T14819] [ 1224.455331][T14819] __dump_stack+0x26/0x30 [ 1224.459838][T14819] dump_stack_lvl+0x53/0x270 [ 1224.464613][T14819] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1224.470619][T14819] dump_stack+0x1e/0x25 [ 1224.474941][T14819] vpanic+0x361/0xc50 [ 1224.479114][T14819] panic+0x15d/0x160 [ 1224.483248][T14819] kmsan_report+0x31c/0x320 [ 1224.487930][T14819] ? __msan_warning+0x1b/0x30 [ 1224.492759][T14819] ? nci_ntf_packet+0x2753/0x42b0 [ 1224.497960][T14819] ? nci_rx_work+0x403/0x750 [ 1224.502688][T14819] ? process_scheduled_works+0xb8e/0x1d80 [ 1224.508607][T14819] ? worker_thread+0xedf/0x1590 [ 1224.513645][T14819] ? kthread+0xd59/0xf00 [ 1224.518035][T14819] ? ret_from_fork+0x233/0x380 [ 1224.522943][T14819] ? ret_from_fork_asm+0x1a/0x30 [ 1224.528070][T14819] ? ret_from_fork_asm+0x1a/0x30 [ 1224.533227][T14819] ? kmsan_get_metadata+0xfb/0x160 [ 1224.538518][T14819] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 1224.545027][T14819] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 1224.551270][T14819] ? _raw_spin_unlock_irqrestore+0x3f/0x60 [ 1224.557371][T14819] ? stack_depot_save_flags+0x615/0x7b0 [ 1224.563076][T14819] ? kmsan_get_metadata+0xfb/0x160 [ 1224.568359][T14819] ? kmsan_internal_memmove_metadata+0x181/0x230 [ 1224.574861][T14819] ? kmsan_get_metadata+0xfb/0x160 [ 1224.580154][T14819] __msan_warning+0x1b/0x30 [ 1224.584814][T14819] nci_ntf_packet+0x2753/0x42b0 [ 1224.589834][T14819] ? advisor_target_scan_time_store+0x140/0x180 [ 1224.596356][T14819] nci_rx_work+0x403/0x750 [ 1224.600941][T14819] ? __pfx_nci_rx_work+0x10/0x10 [ 1224.606029][T14819] process_scheduled_works+0xb8e/0x1d80 [ 1224.611843][T14819] worker_thread+0xedf/0x1590 [ 1224.616764][T14819] kthread+0xd59/0xf00 [ 1224.620987][T14819] ? __pfx_worker_thread+0x10/0x10 [ 1224.626330][T14819] ? __pfx_kthread+0x10/0x10 [ 1224.631074][T14819] ret_from_fork+0x233/0x380 [ 1224.635823][T14819] ? __pfx_kthread+0x10/0x10 [ 1224.640573][T14819] ret_from_fork_asm+0x1a/0x30 [ 1224.645559][T14819] [ 1224.648916][T14819] Kernel Offset: disabled [ 1224.653285][T14819] Rebooting in 86400 seconds..