last executing test programs: 1h8m12.748063295s ago: executing program 1 (id=278): r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) bind$unix(r1, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) listen(r1, 0x0) connect$unix(r0, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) r2 = fcntl$dupfd(r1, 0x0, r0) r3 = accept4$inet(r2, 0x0, 0x0, 0x0) getpeername$netlink(r3, 0x0, &(0x7f0000000040)) 1h8m12.518089805s ago: executing program 1 (id=279): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000004c0)='freezer.state\x00', 0x26e1, 0x0) close(r0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) sendmsg$nl_xfrm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000600)=ANY=[], 0x33fe0}}, 0x0) r2 = io_uring_setup(0x1045, &(0x7f0000001440)) write$P9_ROPEN(r0, 0x0, 0x0) close(r1) close(r2) 1h8m11.676890528s ago: executing program 1 (id=280): r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) bind$unix(r1, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) listen(r1, 0x0) connect$unix(r0, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) r2 = dup3(r1, r0, 0x0) r3 = accept4$inet(r2, 0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r3, 0x5450, 0x0) 1h8m11.339410592s ago: executing program 1 (id=281): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0x89901) move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r1, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r2, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) move_mount(r1, &(0x7f0000000000)='./file0\x00', r2, &(0x7f00000000c0)='./file0\x00', 0x212) 1h8m11.019156425s ago: executing program 1 (id=282): r0 = openat$full(0xffffffffffffff9c, &(0x7f0000001600), 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) close(0xffffffffffffffff) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000007c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000400)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) socket$nl_audit(0x10, 0x3, 0x9) write$P9_RGETATTR(r2, &(0x7f0000000040)={0xa0, 0x19, 0x0, {0x0, {}, 0x0, 0xffffffffffffffff}}, 0xa0) recvmsg$can_bcm(r0, &(0x7f0000000780)={0x0, 0x0, 0x0}, 0x2) 1h8m10.480744387s ago: executing program 1 (id=283): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cgroup.kill\x00', 0x26e1, 0x0) close(r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)) sendmsg$nl_xfrm(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000001c0)=ANY=[], 0x33fe0}}, 0x0) r1 = io_uring_setup(0x2df1, &(0x7f0000001440)) sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x3c}}, 0x0) close(r1) sendmsg$TIPC_CMD_DISABLE_BEARER(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[], 0x2c}}, 0x0) 1h8m10.480597766s ago: executing program 32 (id=283): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cgroup.kill\x00', 0x26e1, 0x0) close(r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)) sendmsg$nl_xfrm(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000001c0)=ANY=[], 0x33fe0}}, 0x0) r1 = io_uring_setup(0x2df1, &(0x7f0000001440)) sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x3c}}, 0x0) close(r1) sendmsg$TIPC_CMD_DISABLE_BEARER(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[], 0x2c}}, 0x0) 12.142183431s ago: executing program 2 (id=7309): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0xffffffffffffffff}, 0x18) r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301) ioctl$USBDEVFS_CONTROL(r1, 0xc0105500, &(0x7f0000000000)={0x80, 0x6, 0x321, 0xffff, 0x4c, 0x101, 0x0}) 12.030320635s ago: executing program 2 (id=7311): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', 0x0}) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005a40)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r3, @ANYBLOB='\b\x00\n\x00', @ANYRESOCT], 0xb4}}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) 11.621091182s ago: executing program 2 (id=7313): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x25, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2000000}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x19, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10) sched_setscheduler(r0, 0x1, &(0x7f00000005c0)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x7, 0x8000, 0x1}, 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socket$packet(0x11, 0x2, 0x300) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005a40)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e0000000074000280060001000006", @ANYRES32], 0xb4}}, 0x0) 5.520786973s ago: executing program 2 (id=7326): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) r1 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x80, 0x2, 0x1f9}, &(0x7f0000000000)=0x0, &(0x7f0000000300)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r1, 0x0, 0x0, 0x64, 0x183000, 0x23456}) openat$sndseq(0xffffffffffffff9c, 0x0, 0x0) io_uring_enter(r1, 0x47f6, 0x0, 0x0, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) 3.560198034s ago: executing program 2 (id=7334): prlimit64(0x0, 0x8, &(0x7f0000002000)={0x1, 0x7}, 0x0) r0 = shmget$private(0x0, 0x4000, 0x1000, &(0x7f0000ffc000/0x4000)=nil) r1 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x101101, 0x0) ioctl$TCSBRKP(r1, 0x5425, 0x7) shmctl$SHM_LOCK(r0, 0xb) 3.287710965s ago: executing program 2 (id=7336): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xfec8d000) mlock(&(0x7f0000656000/0x3000)=nil, 0x3000) openat$random(0xffffffffffffff9c, 0x0, 0x800, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x18) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0) 1.113913184s ago: executing program 0 (id=7344): r0 = socket$igmp(0x2, 0x3, 0x2) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x2}, 0x18) setsockopt$MRT_ADD_MFC(r0, 0x0, 0x5, &(0x7f0000000240)={@broadcast, @empty, 0xfffb, "66c5aff8a7eb3af1f6cec2e7420000008c84aea31700", 0x96bd, 0x1000000, 0x7e, 0x6b}, 0x3c) setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000000080)=0x300, 0x4) 952.5698ms ago: executing program 0 (id=7345): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x41, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) r2 = io_uring_setup(0xdac, &(0x7f0000000180)) r3 = syz_open_dev$usbfs(&(0x7f0000000400), 0x200, 0x102) r4 = dup(r3) ioctl$USBDEVFS_FREE_STREAMS(r4, 0x4004550c, 0x0) close_range(r2, 0xffffffffffffffff, 0x0) 734.0465ms ago: executing program 0 (id=7346): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000400000004"], 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = socket(0x28, 0x5, 0x0) connect$vsock_stream(r2, &(0x7f0000000040)={0x28, 0x0, 0x2710}, 0x10) connect$vsock_stream(r2, &(0x7f0000000400)={0x28, 0x0, 0x2710, @host}, 0x10) 453.745501ms ago: executing program 0 (id=7347): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) r1 = socket$inet6(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001900010000000000000000000218"], 0x2c}}, 0x0) sendto$inet6(r1, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b) 239.93014ms ago: executing program 0 (id=7348): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x800000000006}, 0x18) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x40, 0x7ffc1ffb}]}) rt_sigprocmask(0x2, &(0x7f0000000080)={[0x800]}, 0x0, 0x8) 0s ago: executing program 0 (id=7349): bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000002340)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48) bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000180)={@cgroup=r0, r0, 0x2f, 0x2000, 0x4}, 0x20) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:35665' (ED25519) to the list of known hosts. syzkaller login: [ 125.626849][ T3309] cgroup: Unknown subsys name 'net' [ 125.886236][ T3309] cgroup: Unknown subsys name 'cpuset' [ 125.925594][ T3309] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 126.583726][ T3309] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 139.006039][ T3315] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 139.090172][ T3315] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 139.204394][ T3314] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 139.286472][ T3314] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 140.654115][ T3315] hsr_slave_0: entered promiscuous mode [ 140.662521][ T3315] hsr_slave_1: entered promiscuous mode [ 140.982868][ T3314] hsr_slave_0: entered promiscuous mode [ 140.995665][ T3314] hsr_slave_1: entered promiscuous mode [ 141.006586][ T3314] debugfs: 'hsr0' already exists in 'hsr' [ 141.011047][ T3314] Cannot create hsr debugfs directory [ 142.378224][ T3315] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 142.420472][ T3315] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 142.445881][ T3315] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 142.503565][ T3315] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 142.763075][ T3314] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 142.796353][ T3314] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 142.835226][ T3314] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 142.892767][ T3314] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 144.274094][ T3315] 8021q: adding VLAN 0 to HW filter on device bond0 [ 144.468884][ T3314] 8021q: adding VLAN 0 to HW filter on device bond0 [ 149.628244][ T3315] veth0_vlan: entered promiscuous mode [ 149.698843][ T3315] veth1_vlan: entered promiscuous mode [ 149.965112][ T3315] veth0_macvtap: entered promiscuous mode [ 150.043268][ T3315] veth1_macvtap: entered promiscuous mode [ 150.067127][ T3314] veth0_vlan: entered promiscuous mode [ 150.145644][ T3314] veth1_vlan: entered promiscuous mode [ 150.366220][ T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 150.367345][ T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 150.367736][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 150.368075][ T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 150.572319][ T3314] veth0_macvtap: entered promiscuous mode [ 150.635121][ T3314] veth1_macvtap: entered promiscuous mode [ 151.027530][ T1555] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 151.028791][ T1555] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 151.033209][ T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 151.034476][ T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 151.141258][ T3315] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 156.560681][ T3489] input: syz0 as /devices/virtual/input/input1 [ 172.915583][ T3594] fuse: root generation should be zero [ 186.901121][ T3686] input: syz0 as /devices/virtual/input/input2 [ 193.245535][ T3714] input: syz0 as /devices/virtual/input/input3 [ 201.033716][ T3729] input: syz0 as /devices/virtual/input/input4 [ 207.468760][ T3766] input: syz0 as /devices/virtual/input/input5 [ 224.002703][ T3791] serio: Serial port pts0 [ 232.990883][ T3829] input: syz0 as /devices/virtual/input/input6 [ 252.732239][ T3892] serio: Serial port pts0 [ 256.304737][ T3917] serio: Serial port pts1 [ 273.433196][ T3950] input: syz0 as /devices/virtual/input/input7 [ 292.390197][ T4014] input: syz0 as /devices/virtual/input/input8 [ 330.585431][ T4186] serio: Serial port pts0 [ 331.097627][ T4188] input: syz0 as /devices/virtual/input/input9 [ 332.745359][ T4198] input: syz0 as /devices/virtual/input/input10 [ 347.688106][ T4211] input: syz0 as /devices/virtual/input/input11 [ 358.904758][ T1588] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 359.047742][ T1588] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 359.248261][ T1588] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 359.413292][ T1588] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 361.088270][ T1588] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 361.161708][ T1588] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 361.238418][ T1588] bond0 (unregistering): Released all slaves [ 361.535488][ T1588] hsr_slave_0: left promiscuous mode [ 361.547981][ T1588] hsr_slave_1: left promiscuous mode [ 361.635346][ T1588] veth1_macvtap: left promiscuous mode [ 361.636258][ T1588] veth0_macvtap: left promiscuous mode [ 361.637520][ T1588] veth1_vlan: left promiscuous mode [ 361.638269][ T1588] veth0_vlan: left promiscuous mode [ 368.118730][ T4238] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 368.163116][ T4238] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 371.063101][ T4238] hsr_slave_0: entered promiscuous mode [ 371.075757][ T4238] hsr_slave_1: entered promiscuous mode [ 371.085910][ T4238] debugfs: 'hsr0' already exists in 'hsr' [ 371.088652][ T4238] Cannot create hsr debugfs directory [ 373.097420][ T4238] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 373.167832][ T4238] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 373.272163][ T4238] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 373.346957][ T4238] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 375.810605][ T4238] 8021q: adding VLAN 0 to HW filter on device bond0 [ 378.602091][ T4346] input: syz0 as /devices/virtual/input/input12 [ 383.669959][ T4238] veth0_vlan: entered promiscuous mode [ 383.707645][ T4238] veth1_vlan: entered promiscuous mode [ 383.919863][ T4238] veth0_macvtap: entered promiscuous mode [ 383.976865][ T4238] veth1_macvtap: entered promiscuous mode [ 384.392954][ T1588] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 384.454182][ T1588] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 384.455361][ T1588] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 384.455777][ T1588] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 416.480870][ T4485] input: syz0 as /devices/virtual/input/input13 [ 419.898911][ T4503] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 428.700383][ T4522] serio: Serial port pts0 [ 446.391666][ T4573] serio: Serial port pts0 [ 466.531084][ T4603] nci: __nci_request: wait_for_completion_interruptible_timeout failed 0 [ 469.954575][ T4620] input: syz0 as /devices/virtual/input/input14 [ 472.255877][ T4632] input: syz0 as /devices/virtual/input/input15 [ 488.722703][ T4647] input: syz0 as /devices/virtual/input/input16 [ 501.418955][ T4690] serio: Serial port pts0 [ 512.785141][ T4700] process 'syz.0.389' launched './file0' with NULL argv: empty string added [ 512.967927][ T4702] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 518.531225][ T4733] input: syz0 as /devices/virtual/input/input17 [ 532.601942][ T4782] input: syz0 as /devices/virtual/input/input18 [ 540.257136][ T4791] binder: 4790:4791 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 540.257950][ T4791] binder: 4791 RLIMIT_NICE not set [ 540.768133][ T4791] binder: 4790:4791 ioctl c0306201 20000240 returned -14 [ 558.070895][ T4841] input: syz0 as /devices/virtual/input/input19 [ 565.930055][ T4848] serio: Serial port pts0 [ 587.223713][ T4919] input: syz0 as /devices/virtual/input/input20 [ 613.515246][ T5035] serio: Serial port pts0 [ 636.360224][ T5095] nci: __nci_request: wait_for_completion_interruptible_timeout failed 0 [ 640.134535][ T5147] serio: Serial port pts0 [ 646.150946][ C0] hrtimer: interrupt took 2144600 ns [ 649.545361][ T5194] Zero length message leads to an empty skb [ 656.267390][ T5245] input: syz0 as /devices/virtual/input/input21 [ 664.816307][ T5281] serio: Serial port pts0 [ 678.298220][ T5315] input: syz0 as /devices/virtual/input/input22 [ 687.023945][ T5338] input: syz0 as /devices/virtual/input/input23 [ 710.915354][ T5392] input: syz0 as /devices/virtual/input/input24 [ 716.140087][ T5410] serio: Serial port pts0 [ 736.903648][ T5460] input: syz0 as /devices/virtual/input/input25 [ 741.363183][ T5471] serio: Serial port pts0 [ 752.446355][ T5478] input: syz0 as /devices/virtual/input/input26 [ 761.642350][ T5484] nci: __nci_request: wait_for_completion_interruptible_timeout failed 0 [ 774.142973][ T5547] input: syz0 as /devices/virtual/input/input27 [ 779.300710][ T5552] serio: Serial port pts0 [ 798.517974][ T5616] input: syz0 as /devices/virtual/input/input28 [ 825.575921][ T5735] input: syz0 as /devices/virtual/input/input29 [ 851.777152][ T5815] input: syz0 as /devices/virtual/input/input31 [ 877.947432][ T5849] serio: Serial port pts0 [ 891.626091][ T5912] input: syz0 as /devices/virtual/input/input32 [ 911.560896][ T5965] serio: Serial port pts0 [ 931.800845][ T6020] nci: __nci_request: wait_for_completion_interruptible_timeout failed 0 [ 934.816071][ T6043] input: syz0 as /devices/virtual/input/input33 [ 941.366634][ T6093] input: syz0 as /devices/virtual/input/input34 [ 942.748929][ T6100] serio: Serial port pts0 [ 949.814366][ T6149] serio: Serial port pts0 [ 951.776046][ T6164] input: syz0 as /devices/virtual/input/input35 [ 971.046099][ T6201] input: syz0 as /devices/virtual/input/input36 [ 981.118902][ T6230] serio: Serial port pts0 [ 996.406030][ T6284] input: syz0 as /devices/virtual/input/input37 [ 1006.585855][ T6318] input: syz0 as /devices/virtual/input/input38 [ 1007.906997][ T6322] syz.0.970 uses obsolete (PF_INET,SOCK_PACKET) [ 1017.067056][ T6347] input: syz0 as /devices/virtual/input/input39 [ 1038.306207][ T6450] input: syz0 as /devices/virtual/input/input40 [ 1042.565130][ T6472] syzkaller0: entered promiscuous mode [ 1042.568116][ T6472] syzkaller0: entered allmulticast mode [ 1051.606332][ T6500] serio: Serial port pts0 [ 1059.196879][ T6521] input: syz0 as /devices/virtual/input/input41 [ 1065.905589][ T6546] serio: Serial port pts1 [ 1066.691873][ T6549] input: syz0 as /devices/virtual/input/input42 [ 1100.196419][ T6716] input: syz1 as /devices/virtual/input/input43 [ 1160.955455][ T7028] fuse: Bad value for 'fd' [ 1171.168925][ T7111] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1236'. [ 1207.561543][ T7372] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1207.585934][ T7372] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1217.790972][ T7425] input: syz0 as /devices/virtual/input/input44 [ 1242.702404][ T7570] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1242.813877][ T7570] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1242.914171][ T7570] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1243.032292][ T7570] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1243.277833][ T5284] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1243.327788][ T5284] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1243.387804][ T31] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1243.442345][ T31] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1459.977876][ T8998] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1459.981728][ T8998] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1556.885366][ T9673] lo: entered promiscuous mode [ 1556.908195][ T9673] lo: left promiscuous mode [ 1743.402706][T10958] input: syz0 as /devices/virtual/input/input46 [ 1812.242591][T11367] "syz.0.2672" (11367) uses obsolete ecb(arc4) skcipher [ 1976.895597][T12559] input: syz0 as /devices/virtual/input/input47 [ 1993.311717][T12639] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3109'. [ 2161.347342][T13787] dvmrp1: entered allmulticast mode [ 2232.542758][T14360] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3696'. [ 2344.892339][T15148] input: syz0 as /devices/virtual/input/input48 [ 2414.468283][ C0] vcan0: j1939_tp_rxtimer: 0x000000003961ba6f: rx timeout, send abort [ 2414.472145][ C0] vcan0: j1939_xtp_rx_abort_one: 0x000000003961ba6f: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 2424.520800][T15656] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4142'. [ 2446.808416][T15724] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4164'. [ 2447.788834][T15737] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 2447.797146][T15737] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 2473.521446][T15819] 8021q: VLANs not supported on ip6_vti0 [ 2637.804876][T16829] lo: entered promiscuous mode [ 2637.830648][T16829] lo: left promiscuous mode [ 2662.572253][T16970] : renamed from ipvlan1 [ 2748.607219][T17506] Process accounting resumed [ 2759.503182][T17570] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4810'. [ 2792.079814][T17772] netlink: 52 bytes leftover after parsing attributes in process `syz.0.4880'. [ 2796.438305][T17791] syz_tun: entered allmulticast mode [ 2796.463747][T17790] syz_tun: left allmulticast mode [ 2834.282093][T18050] syz.2.4974 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 2834.285381][T18050] 8021q: VLANs not supported on ip6_vti0 [ 2900.541795][T18397] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 2900.544422][T18397] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 3023.574810][T18865] input: syz0 as /devices/virtual/input/input49 [ 3051.522258][T18892] input: syz0 as /devices/virtual/input/input50 [ 3082.203639][T18979] netlink: 36 bytes leftover after parsing attributes in process `syz.2.5285'. [ 3097.641317][T19055] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5312'. [ 3097.701288][T19055] vxcan3: entered promiscuous mode [ 3098.310925][T19056] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5312'. [ 3126.357936][T19120] input: syz0 as /devices/virtual/input/input51 [ 3198.076082][T19404] serio: Serial port pts0 [ 3220.907134][T19467] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 3224.982232][T19492] netlink: 40 bytes leftover after parsing attributes in process `syz.2.5461'. [ 3264.351509][T19626] 8021q: VLANs not supported on vcan0 [ 3287.457724][T19722] 8021q: VLANs not supported on ip6_vti0 [ 3308.059788][T19788] serio: Serial port pts0 [ 3321.006435][ T30] audit: type=1326 audit(3320.790:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19826 comm="syz.0.5575" exe="/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffac75b3a8 code=0x0 [ 3337.918575][T19887] 8021q: VLANs not supported on ip6gre0 [ 3418.375977][T20178] serio: Serial port pts0 [ 3450.532778][T20249] netlink: 'syz.2.5715': attribute type 4 has an invalid length. [ 3457.423838][T20271] input: syz0 as /devices/virtual/input/input52 [ 3483.103590][T20349] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 3483.108653][T20349] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 3483.596768][T20354] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 3483.598270][T20354] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 3486.945688][T20388] "syz.2.5766" (20388) uses obsolete ecb(arc4) skcipher [ 3489.912672][T20415] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0) [ 3533.797370][T20659] "syz.2.5883" (20659) uses obsolete ecb(arc4) skcipher [ 3534.012899][T20661] input: syz0 as /devices/virtual/input/input53 [ 3579.275060][T20809] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 3579.276543][T20809] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 3635.077016][T21025] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 3635.091856][T21025] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 3635.344186][T21025] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 3635.360894][T21025] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 3652.095571][ C0] vcan0: j1939_tp_rxtimer: 0x00000000fec22dfc: rx timeout, send abort [ 3652.596702][ C0] vcan0: j1939_tp_rxtimer: 0x00000000fec22dfc: abort rx timeout. Force session deactivation [ 3675.657346][T19767] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 3675.658209][T19767] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 3675.677734][ T5284] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 3675.678857][ T5284] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 3676.008165][T21153] can-isotp: isotp_sendmsg: can_send_ret -ENETDOWN [ 3690.224344][T21199] input: syz0 as /devices/virtual/input/input54 [ 3714.592326][T21238] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2 [ 3757.885650][T21550] block device autoloading is deprecated and will be removed. [ 3800.393567][T21751] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 3800.405038][T21751] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 3823.618550][ T6492] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3823.763945][ T6492] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3823.942099][ T6492] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3824.116591][ T6492] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3826.438474][ T6492] dvmrp1 (unregistering): left allmulticast mode [ 3826.606373][ T6492] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 3826.743226][ T6492] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 3826.792571][ T6492] bond0 (unregistering): Released all slaves [ 3827.447193][ T6492] hsr_slave_0: left promiscuous mode [ 3827.481581][ T6492] hsr_slave_1: left promiscuous mode [ 3827.600916][ T6492] veth1_macvtap: left promiscuous mode [ 3827.602837][ T6492] veth0_macvtap: left promiscuous mode [ 3827.608312][ T6492] veth1_vlan: left promiscuous mode [ 3827.621413][ T6492] veth0_vlan: left promiscuous mode [ 3835.038626][T21895] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 3835.063406][T21895] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 3836.795712][T21895] hsr_slave_0: entered promiscuous mode [ 3836.807276][T21895] hsr_slave_1: entered promiscuous mode [ 3836.817992][T21895] debugfs: 'hsr0' already exists in 'hsr' [ 3836.818580][T21895] Cannot create hsr debugfs directory [ 3838.553162][T21895] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 3838.586455][T21895] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 3838.612185][T21895] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 3838.638774][T21895] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 3840.234410][T21895] 8021q: adding VLAN 0 to HW filter on device bond0 [ 3844.578824][T21895] veth0_vlan: entered promiscuous mode [ 3844.616798][T21895] veth1_vlan: entered promiscuous mode [ 3844.843714][T21895] veth0_macvtap: entered promiscuous mode [ 3844.870995][T21895] veth1_macvtap: entered promiscuous mode [ 3845.028948][ T6492] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 3845.044756][ T6492] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 3845.056769][ T6492] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 3845.057470][ T6492] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 3859.225793][T22107] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 3859.237206][T22107] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 3863.282762][T22127] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 3863.302920][T22127] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 3866.695143][T22145] input: syz0 as /devices/virtual/input/input55 [ 3886.107159][T22193] input: syz0 as /devices/virtual/input/input56 [ 3903.028188][T22205] input: syz0 as /devices/virtual/input/input57 [ 3920.930625][T22220] input: syz0 as /devices/virtual/input/input58 [ 3975.574515][T22341] input: syz0 as /devices/virtual/input/input59 [ 3996.378282][ T6492] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3996.565602][ T6492] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3996.716888][ T6492] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3996.879590][ T6492] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3998.442583][ T6492] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 3998.478222][ T6492] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 3998.544151][ T6492] bond0 (unregistering): Released all slaves [ 3998.765668][ T6492] hsr_slave_0: left promiscuous mode [ 3998.782932][ T6492] hsr_slave_1: left promiscuous mode [ 3998.836130][ T6492] veth1_macvtap: left promiscuous mode [ 3998.836865][ T6492] veth0_macvtap: left promiscuous mode [ 3998.837535][ T6492] veth1_vlan: left promiscuous mode [ 3998.838060][ T6492] veth0_vlan: left promiscuous mode [ 4006.845203][T22388] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 4006.865235][T22388] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 4010.047151][T22388] hsr_slave_0: entered promiscuous mode [ 4010.086496][T22388] hsr_slave_1: entered promiscuous mode [ 4010.108388][T22388] debugfs: 'hsr0' already exists in 'hsr' [ 4010.115701][T22388] Cannot create hsr debugfs directory [ 4012.935327][T22388] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 4012.985048][T22388] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 4013.014433][T22388] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 4013.044825][T22388] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 4015.438765][T22388] 8021q: adding VLAN 0 to HW filter on device bond0 [ 4023.717143][T22388] veth0_vlan: entered promiscuous mode [ 4023.813184][T22388] veth1_vlan: entered promiscuous mode [ 4024.206306][T22388] veth0_macvtap: entered promiscuous mode [ 4024.294950][T22388] veth1_macvtap: entered promiscuous mode [ 4024.683604][T17401] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 4024.688263][T17401] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 4024.716919][T17401] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 4024.723090][T19767] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 4025.434722][T22557] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 4025.447649][T22557] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 4086.358477][T22875] capability: warning: `syz.0.6572' uses deprecated v2 capabilities in a way that may be insecure [ 4089.457954][T22902] capability: warning: `syz.0.6584' uses 32-bit capabilities (legacy support in use) [ 4115.936790][T23077] input: syz0 as /devices/virtual/input/input60 [ 4150.207761][T23162] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 4150.232562][T23162] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 4150.237367][T23162] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 4150.238636][T23162] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 4150.286751][T23162] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 4150.288100][T23162] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 4150.323891][T23162] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 4150.325414][T23162] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 4150.386501][T23162] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 4150.393409][T23162] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 4150.405563][T23162] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 4150.412628][T23162] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 4174.841072][T23311] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 4174.843651][T23311] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 4226.385975][T23644] FAULT_INJECTION: forcing a failure. [ 4226.385975][T23644] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 4226.392855][T23644] CPU: 0 UID: 0 PID: 23644 Comm: syz.2.6839 Not tainted syzkaller #0 PREEMPT [ 4226.393323][T23644] Hardware name: linux,dummy-virt (DT) [ 4226.393737][T23644] Call trace: [ 4226.394168][T23644] show_stack+0x18/0x24 (C) [ 4226.395211][T23644] dump_stack_lvl+0x78/0x90 [ 4226.395501][T23644] dump_stack+0x18/0x24 [ 4226.395756][T23644] should_fail_ex+0x1dc/0x234 [ 4226.396002][T23644] should_fail+0x14/0x24 [ 4226.396241][T23644] should_fail_usercopy+0x1c/0x28 [ 4226.396481][T23644] _inline_copy_from_user+0x24/0xb0 [ 4226.396746][T23644] copy_msghdr_from_user+0x54/0xcc [ 4226.397012][T23644] ___sys_sendmsg+0x8c/0x100 [ 4226.397262][T23644] __sys_sendmsg+0x98/0xf8 [ 4226.397508][T23644] __arm64_sys_sendmsg+0x24/0x30 [ 4226.397760][T23644] invoke_syscall+0x48/0x110 [ 4226.398012][T23644] el0_svc_common.constprop.0+0x40/0xe0 [ 4226.398263][T23644] do_el0_svc+0x1c/0x28 [ 4226.398481][T23644] el0_svc+0x34/0x10c [ 4226.398693][T23644] el0t_64_sync_handler+0xa0/0xe4 [ 4226.398898][T23644] el0t_64_sync+0x1a4/0x1a8 [ 4230.412745][T23670] fuse: Unknown parameter '' [ 4251.230595][T23794] input: syz0 as /devices/virtual/input/input61 [ 4278.636094][T23967] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 4278.638886][T23967] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 4288.913769][T24034] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 4288.924555][T24034] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 4297.772657][T24044] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 4297.802504][T24044] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 4299.984025][T24044] hsr_slave_0: entered promiscuous mode [ 4299.995580][T24044] hsr_slave_1: entered promiscuous mode [ 4300.005392][T24044] debugfs: 'hsr0' already exists in 'hsr' [ 4300.008597][T24044] Cannot create hsr debugfs directory [ 4301.604522][T24044] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 4301.643676][T24044] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 4301.690117][T24044] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 4301.733822][T24044] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 4303.466514][T24044] 8021q: adding VLAN 0 to HW filter on device bond0 [ 4308.108200][T24044] veth0_vlan: entered promiscuous mode [ 4308.202364][T24044] veth1_vlan: entered promiscuous mode [ 4308.487748][T24044] veth0_macvtap: entered promiscuous mode [ 4308.576231][T24044] veth1_macvtap: entered promiscuous mode [ 4308.897023][ T6492] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 4308.899086][ T6492] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 4308.909115][ T6492] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 4308.914769][ T6492] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 4314.085403][T24168] Invalid ELF header magic: != ELF [ 4315.103800][T24181] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 4315.106415][T24181] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 4315.308038][T24183] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 4315.323233][T24183] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 4317.170029][T24190] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 4317.171828][T24190] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 4317.292258][T24194] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6978'. [ 4319.530180][T21913] nci: nci_rf_intf_activated_ntf_packet: unsupported activation_rf_tech_and_mode 0x14 [ 4319.927549][T17401] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 4319.980925][T17401] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 4320.036304][T17401] bond0 (unregistering): Released all slaves [ 4320.125929][T24224] binder: 24223:24224 tried to acquire reference to desc 0, got 1 instead [ 4320.258754][T17401] hsr_slave_0: left promiscuous mode [ 4320.272416][T17401] hsr_slave_1: left promiscuous mode [ 4322.621301][ T3964] binder: release 24223:24224 transaction 7 out, still active [ 4322.622038][ T3964] binder: undelivered TRANSACTION_COMPLETE [ 4322.656929][ T3964] binder: send failed reply for transaction 7, target dead [ 4322.976107][T24233] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2 [ 4325.933057][T24253] input: syz0 as /devices/virtual/input/input62 [ 4325.935113][T24253] input: failed to attach handler leds to device input62, error: -6 [ 4326.558136][T24260] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 4326.567485][T24260] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 4327.143879][T24268] binder: 24267:24268 tried to acquire reference to desc 0, got 1 instead [ 4327.149038][T24268] binder: 24267:24268 got transaction with invalid data ptr [ 4327.154487][T24268] binder: 24267:24268 transaction async to 24267:0 failed 13/29201/-14, code 0 size 0-24 line 3438 [ 4327.180168][T23334] binder: release 24267:24268 transaction 12 out, still active [ 4327.180665][T23334] binder: undelivered TRANSACTION_COMPLETE [ 4327.181002][T23334] binder: undelivered TRANSACTION_ERROR: 29201 [ 4327.217110][T23334] binder: send failed reply for transaction 12, target dead [ 4327.583754][T24273] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 4327.593611][T24273] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 4328.168782][T24285] netlink: 224 bytes leftover after parsing attributes in process `syz.0.7013'. [ 4328.170498][T24285] IPv6: Can't replace route, no match found [ 4331.255024][T22057] hid-generic 0005:00B6:0009.0001: unknown main item tag 0x0 [ 4331.255498][T22057] hid-generic 0005:00B6:0009.0001: unknown main item tag 0x0 [ 4331.258072][T22057] hid-generic 0005:00B6:0009.0001: unknown main item tag 0x0 [ 4331.258209][T22057] hid-generic 0005:00B6:0009.0001: unknown main item tag 0x0 [ 4331.258334][T22057] hid-generic 0005:00B6:0009.0001: unknown main item tag 0x0 [ 4331.258460][T22057] hid-generic 0005:00B6:0009.0001: unknown main item tag 0x0 [ 4331.258587][T22057] hid-generic 0005:00B6:0009.0001: unknown main item tag 0x0 [ 4331.258694][T22057] hid-generic 0005:00B6:0009.0001: unknown main item tag 0x0 [ 4331.258822][T22057] hid-generic 0005:00B6:0009.0001: unknown main item tag 0x0 [ 4331.258950][T22057] hid-generic 0005:00B6:0009.0001: unknown main item tag 0x0 [ 4331.381241][T22057] hid-generic 0005:00B6:0009.0001: hidraw0: BLUETOOTH HID v1ade12.f3 Device [syz0] on syz1 [ 4332.446356][T24320] fido_id[24320]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 4337.724507][T24362] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 4337.727082][T24362] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 4337.806005][T24364] binder: 24363:24364 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 4337.811871][T24364] binder: 24364 RLIMIT_NICE not set [ 4338.682105][T24371] syzkaller0: entered promiscuous mode [ 4338.690444][T24371] syzkaller0: entered allmulticast mode [ 4338.747693][T24371] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) ! [ 4340.054700][T24394] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 4340.062496][T24394] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 4342.616474][T24425] binder: 24424:24425 tried to acquire reference to desc 0, got 1 instead [ 4342.627265][T24425] binder: 24424:24425 got new transaction with bad transaction stack, transaction 20 has target 24424:0 [ 4342.627706][T24425] binder: 24424:24425 transaction call to 24424:0 failed 21/29201/-71, code 0 size 0-0 line 3211 [ 4342.635434][ T3964] binder: release 24424:24425 transaction 20 out, still active [ 4342.635593][ T3964] binder: undelivered TRANSACTION_COMPLETE [ 4342.635740][ T3964] binder: undelivered TRANSACTION_ERROR: 29201 [ 4342.655987][ T3964] binder: send failed reply for transaction 20, target dead [ 4345.871279][ T3964] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 4346.070387][ T3964] usb 1-1: Using ep0 maxpacket: 8 [ 4346.107789][ T3964] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 4346.108569][ T3964] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 4346.120908][ T3964] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 4346.121867][ T3964] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 4346.123193][ T3964] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 4346.123454][ T3964] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 4346.388838][ T3964] usb 1-1: GET_CAPABILITIES returned 0 [ 4346.392593][ T3964] usbtmc 1-1:16.0: can't read capabilities [ 4346.603268][ T3964] usb 1-1: USB disconnect, device number 2 [ 4347.688059][T24461] netlink: 96 bytes leftover after parsing attributes in process `syz.2.7066'. [ 4347.853161][T24463] input: syz0 as /devices/virtual/input/input63 [ 4347.853759][T24463] input: failed to attach handler leds to device input63, error: -6 [ 4348.610571][T24473] nbd0: detected capacity change from 0 to 63 [ 4348.616908][T24473] block nbd0: NBD_DISCONNECT [ 4348.620225][T24473] block nbd0: Disconnected due to user request. [ 4348.622964][T24473] block nbd0: shutting down sockets [ 4350.712834][T24501] binder: 24500:24501 ioctl c0306201 20000080 returned -14 [ 4350.728689][T24501] binder: 24500:24501 tried to acquire reference to desc 0, got 1 instead [ 4350.733258][T24501] binder: 24500:24501 got transaction with invalid data ptr [ 4350.736677][T24501] binder: 24500:24501 transaction async to 24500:0 failed 26/29201/-14, code 0 size 0-24 line 3438 [ 4350.746000][T24501] binder_alloc: 24500: pid 24500 spamming oneway? 1 buffers allocated for a total size of 5240 [ 4350.747051][T24501] binder: 24500:24501 got transaction with invalid data ptr [ 4350.747407][T24501] binder: 24500:24501 transaction async to 24500:0 failed 27/29201/-14, code 0 size 5234-0 line 3669 [ 4350.755230][T22057] binder: undelivered TRANSACTION_ERROR: 29201 [ 4353.339819][ T30] audit: type=1326 audit(4353.114:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24531 comm="syz.0.7093" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4353.345617][ T30] audit: type=1326 audit(4353.124:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24531 comm="syz.0.7093" exe="/syz-executor" sig=0 arch=c00000b7 syscall=242 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4353.349012][ T30] audit: type=1326 audit(4353.124:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24531 comm="syz.0.7093" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4353.378186][ T30] audit: type=1326 audit(4353.154:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24531 comm="syz.0.7093" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4353.679730][ T30] audit: type=1326 audit(4353.454:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24535 comm="syz.0.7095" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4353.703247][ T30] audit: type=1326 audit(4353.464:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24535 comm="syz.0.7095" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4353.710702][ T30] audit: type=1326 audit(4353.474:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24535 comm="syz.0.7095" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4353.724210][ T30] audit: type=1326 audit(4353.504:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24535 comm="syz.0.7095" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4353.727759][ T30] audit: type=1326 audit(4353.504:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24535 comm="syz.0.7095" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4353.732843][ T30] audit: type=1326 audit(4353.504:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24535 comm="syz.0.7095" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4356.480660][T23334] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 4356.683434][T23334] usb 1-1: Using ep0 maxpacket: 8 [ 4356.736522][T23334] usb 1-1: config index 0 descriptor too short (expected 301, got 45) [ 4356.737357][T23334] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 4356.737568][T23334] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 4356.737803][T23334] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 4356.738035][T23334] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 4356.738421][T23334] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 4356.738647][T23334] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 4357.064573][T23334] usb 1-1: usb_control_msg returned -32 [ 4357.065295][T23334] usbtmc 1-1:16.0: can't read capabilities [ 4360.619909][T24578] usbtmc 1-1:16.0: control status returned 9 [ 4360.851337][T22057] usb 1-1: USB disconnect, device number 3 [ 4361.037552][T24582] netlink: '+}[@': attribute type 4 has an invalid length. [ 4361.038012][T24582] netlink: 152 bytes leftover after parsing attributes in process `+}[@'. [ 4361.075866][T24582] .`: renamed from dummy0 (while UP) [ 4361.753031][T24589] syzkaller0: entered promiscuous mode [ 4361.753570][T24589] syzkaller0: entered allmulticast mode [ 4365.165837][T24609] netlink: 256 bytes leftover after parsing attributes in process `syz.2.7128'. [ 4365.334448][ T30] kauditd_printk_skb: 34 callbacks suppressed [ 4365.339606][ T30] audit: type=1326 audit(4365.104:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24610 comm="syz.2.7129" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4365.344008][ T30] audit: type=1326 audit(4365.114:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24610 comm="syz.2.7129" exe="/syz-executor" sig=0 arch=c00000b7 syscall=232 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4365.355535][ T30] audit: type=1326 audit(4365.134:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24610 comm="syz.2.7129" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4376.755298][T24714] random: crng reseeded on system resumption [ 4378.701158][ T30] audit: type=1326 audit(4378.484:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24738 comm="syz.0.7147" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4378.712487][ T30] audit: type=1326 audit(4378.494:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24738 comm="syz.0.7147" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4378.719013][ T30] audit: type=1326 audit(4378.494:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24738 comm="syz.0.7147" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4378.733536][ T30] audit: type=1326 audit(4378.514:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24738 comm="syz.0.7147" exe="/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4378.740379][ T30] audit: type=1326 audit(4378.514:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24738 comm="syz.0.7147" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4378.751709][ T30] audit: type=1326 audit(4378.534:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24738 comm="syz.0.7147" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4378.760953][ T30] audit: type=1326 audit(4378.544:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24738 comm="syz.0.7147" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4378.772474][ T30] audit: type=1326 audit(4378.544:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24738 comm="syz.0.7147" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4378.790426][ T30] audit: type=1326 audit(4378.564:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24738 comm="syz.0.7147" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4378.982701][ T30] audit: type=1326 audit(4378.764:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24738 comm="syz.0.7147" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4383.604636][T24784] macvlan1: entered promiscuous mode [ 4383.628465][T24784] ipvlan0: entered promiscuous mode [ 4383.648167][T24784] ipvlan0: left promiscuous mode [ 4383.688501][T24784] macvlan1: left promiscuous mode [ 4385.108858][T24803] netlink: 40 bytes leftover after parsing attributes in process `syz.2.7173'. [ 4385.568241][T24809] macvtap0: refused to change device tx_queue_len [ 4385.951694][T24813] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7175'. [ 4385.956748][T24813] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7175'. [ 4388.024316][ T30] kauditd_printk_skb: 68 callbacks suppressed [ 4388.024959][ T30] audit: type=1326 audit(4387.804:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24834 comm="syz.0.7188" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4388.037464][ T30] audit: type=1326 audit(4387.814:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24834 comm="syz.0.7188" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4388.073416][ T30] audit: type=1326 audit(4387.844:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24834 comm="syz.0.7188" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4388.074214][ T30] audit: type=1326 audit(4387.844:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24834 comm="syz.0.7188" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4388.093429][ T30] audit: type=1326 audit(4387.854:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24834 comm="syz.0.7188" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4388.094195][ T30] audit: type=1326 audit(4387.874:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24834 comm="syz.0.7188" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4388.104375][ T30] audit: type=1326 audit(4387.884:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24834 comm="syz.0.7188" exe="/syz-executor" sig=0 arch=c00000b7 syscall=151 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4388.122953][ T30] audit: type=1326 audit(4387.894:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24834 comm="syz.0.7188" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4388.152309][ T30] audit: type=1326 audit(4387.924:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24834 comm="syz.0.7188" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4388.273785][T24837] netlink: 48 bytes leftover after parsing attributes in process `syz.2.7189'. [ 4388.543796][ T30] audit: type=1326 audit(4388.304:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24840 comm="syz.2.7191" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4389.631121][T24855] netlink: 24 bytes leftover after parsing attributes in process `syz.2.7197'. [ 4389.826346][T24855] sch_tbf: burst 88 is lower than device veth3 mtu (1514) ! [ 4390.173711][T24859] loop5: detected capacity change from 0 to 7 [ 4390.191978][T24859] loop5: [ 4392.274342][T24868] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4392.424765][T24868] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4392.523357][T24868] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4392.631680][T24868] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4392.991551][ T5284] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 4393.073560][ T5284] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 4393.154917][T17401] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 4393.235615][ T5284] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 4398.934356][ T30] kauditd_printk_skb: 2 callbacks suppressed [ 4398.938949][ T30] audit: type=1326 audit(4398.714:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24888 comm="syz.2.7210" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4398.951745][ T30] audit: type=1326 audit(4398.724:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24888 comm="syz.2.7210" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4398.963828][ T30] audit: type=1326 audit(4398.744:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24888 comm="syz.2.7210" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4398.974858][ T30] audit: type=1326 audit(4398.754:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24888 comm="syz.2.7210" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4398.987715][ T30] audit: type=1326 audit(4398.764:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24888 comm="syz.2.7210" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4399.007468][ T30] audit: type=1326 audit(4398.784:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24888 comm="syz.2.7210" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4399.014705][ T30] audit: type=1326 audit(4398.794:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24888 comm="syz.2.7210" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4399.017192][ T30] audit: type=1326 audit(4398.794:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24888 comm="syz.2.7210" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4399.037998][ T30] audit: type=1326 audit(4398.804:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24888 comm="syz.2.7210" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4399.038668][ T30] audit: type=1326 audit(4398.804:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24888 comm="syz.2.7210" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4400.043993][T24900] netlink: 'syz.2.7215': attribute type 27 has an invalid length. [ 4401.845954][T19767] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 4401.846702][T19767] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 4401.847358][T19767] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 4401.847811][T19767] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 4402.576289][T24912] netdevsim netdevsim0 netdevsim0: entered allmulticast mode [ 4402.646635][T24912] netlink: 44 bytes leftover after parsing attributes in process `syz.0.7221'. [ 4406.163481][ T30] kauditd_printk_skb: 59 callbacks suppressed [ 4406.164185][ T30] audit: type=1326 audit(4405.944:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24938 comm="syz.0.7233" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4406.181414][ T30] audit: type=1326 audit(4405.954:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24938 comm="syz.0.7233" exe="/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4406.193869][ T30] audit: type=1326 audit(4405.974:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24938 comm="syz.0.7233" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4406.202849][ T30] audit: type=1326 audit(4405.984:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24938 comm="syz.0.7233" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4406.205379][ T30] audit: type=1326 audit(4405.984:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24938 comm="syz.0.7233" exe="/syz-executor" sig=0 arch=c00000b7 syscall=29 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4406.208164][ T30] audit: type=1326 audit(4405.984:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24938 comm="syz.0.7233" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4406.225383][ T30] audit: type=1326 audit(4406.004:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24938 comm="syz.0.7233" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4406.241644][ T30] audit: type=1326 audit(4406.024:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24938 comm="syz.0.7233" exe="/syz-executor" sig=0 arch=c00000b7 syscall=436 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4406.254388][ T30] audit: type=1326 audit(4406.034:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24938 comm="syz.0.7233" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4406.255038][ T30] audit: type=1326 audit(4406.034:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24938 comm="syz.0.7233" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4406.476933][T24941] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7234'. [ 4407.890672][T24954] IPv6: NLM_F_CREATE should be specified when creating new route [ 4408.526383][T24962] netlink: 'syz.0.7243': attribute type 27 has an invalid length. [ 4410.093882][T24962] netdevsim netdevsim0 netdevsim0: left allmulticast mode [ 4410.168406][T21913] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 4410.170041][T21913] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 4410.171822][T21913] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 4410.172227][T21913] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 4413.451904][T24974] netlink: 'syz.0.7248': attribute type 27 has an invalid length. [ 4414.235686][ T30] audit: type=1326 audit(4414.004:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24980 comm="syz.0.7251" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4414.244128][ T30] audit: type=1326 audit(4414.014:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24980 comm="syz.0.7251" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4414.246788][ T30] audit: type=1326 audit(4414.024:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24980 comm="syz.0.7251" exe="/syz-executor" sig=0 arch=c00000b7 syscall=199 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4414.261253][ T30] audit: type=1326 audit(4414.034:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24980 comm="syz.0.7251" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4414.265917][ T30] audit: type=1326 audit(4414.044:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24980 comm="syz.0.7251" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4414.269069][ T30] audit: type=1326 audit(4414.044:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24980 comm="syz.0.7251" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4414.282305][ T30] audit: type=1326 audit(4414.064:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24980 comm="syz.0.7251" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4414.286212][ T30] audit: type=1326 audit(4414.064:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24980 comm="syz.0.7251" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4414.297787][ T30] audit: type=1326 audit(4414.064:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24980 comm="syz.0.7251" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4414.298800][ T30] audit: type=1326 audit(4414.064:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24980 comm="syz.0.7251" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4415.970649][T25002] mmap: syz.0.7256 (25002) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 4419.831018][T25018] syz_tun: entered allmulticast mode [ 4419.851865][T25017] syz_tun: left allmulticast mode [ 4420.667284][T25020] ªªªªªª: renamed from vlan0 [ 4420.923855][T25023] netlink: 48 bytes leftover after parsing attributes in process `syz.0.7267'. [ 4428.048732][T25070] netlink: 'syz.0.7285': attribute type 27 has an invalid length. [ 4429.992512][T25082] netlink: 'syz.2.7290': attribute type 27 has an invalid length. [ 4434.328827][T25099] netlink: 'syz.2.7295': attribute type 27 has an invalid length. [ 4434.677212][ T30] kauditd_printk_skb: 23 callbacks suppressed [ 4434.677915][ T30] audit: type=1326 audit(4434.454:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25100 comm="syz.2.7296" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4434.697572][ T30] audit: type=1326 audit(4434.474:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25100 comm="syz.2.7296" exe="/syz-executor" sig=0 arch=c00000b7 syscall=277 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4434.708147][ T30] audit: type=1326 audit(4434.474:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25100 comm="syz.2.7296" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4436.151450][ T30] audit: type=1326 audit(4435.934:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25110 comm="syz.2.7300" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4436.157583][ T30] audit: type=1326 audit(4435.934:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25110 comm="syz.2.7300" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4436.166307][ T30] audit: type=1326 audit(4435.944:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25110 comm="syz.2.7300" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4436.175040][ T30] audit: type=1326 audit(4435.954:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25110 comm="syz.2.7300" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4436.183567][ T30] audit: type=1326 audit(4435.964:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25110 comm="syz.2.7300" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4436.192641][ T30] audit: type=1326 audit(4435.964:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25110 comm="syz.2.7300" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4436.200755][ T30] audit: type=1326 audit(4435.974:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25110 comm="syz.2.7300" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8215b3a8 code=0x7ffc0000 [ 4436.914388][T25122] netlink: 'syz.2.7305': attribute type 1 has an invalid length. [ 4436.916376][T25122] netlink: 224 bytes leftover after parsing attributes in process `syz.2.7305'. [ 4437.406880][T25131] vlan2: entered allmulticast mode [ 4437.407210][T25131] bridge_slave_0: entered allmulticast mode [ 4439.523220][T25147] netlink: 16 bytes leftover after parsing attributes in process `syz.2.7313'. [ 4439.524951][T25147] netlink: 104 bytes leftover after parsing attributes in process `syz.2.7313'. [ 4444.807494][T25175] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7329'. [ 4447.030062][ T30] kauditd_printk_skb: 17 callbacks suppressed [ 4447.033402][ T30] audit: type=1326 audit(4446.804:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25196 comm="syz.0.7340" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4447.051070][ T30] audit: type=1326 audit(4446.824:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25196 comm="syz.0.7340" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4447.073665][ T30] audit: type=1326 audit(4446.854:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25196 comm="syz.0.7340" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4447.088992][ T30] audit: type=1326 audit(4446.864:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25196 comm="syz.0.7340" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4447.100559][ T30] audit: type=1326 audit(4446.874:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25196 comm="syz.0.7340" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4447.113000][ T30] audit: type=1326 audit(4446.874:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25196 comm="syz.0.7340" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4447.124085][ T30] audit: type=1326 audit(4446.894:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25196 comm="syz.0.7340" exe="/syz-executor" sig=0 arch=c00000b7 syscall=167 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4447.132182][ T30] audit: type=1326 audit(4446.894:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25196 comm="+}[@" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4447.140171][ T30] audit: type=1326 audit(4446.894:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25196 comm="+}[@" exe="/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4447.147559][ T30] audit: type=1326 audit(4446.894:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25196 comm="+}[@" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9db5b3a8 code=0x7ffc0000 [ 4447.785629][T25201] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 4448.065094][T25203] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7343'. [ 4448.994383][T25212] netlink: 87 bytes leftover after parsing attributes in process `syz.0.7347'. [ 4449.487445][T25189] ------------[ cut here ]------------ [ 4449.490496][T25189] WARNING: CPU: 1 PID: 25189 at arch/arm64/mm/copypage.c:55 copy_highpage+0x150/0x334 [ 4449.498652][T25189] Modules linked in: [ 4449.502133][T25189] CPU: 1 UID: 0 PID: 25189 Comm: syz.2.7336 Not tainted syzkaller #0 PREEMPT [ 4449.503847][T25189] Hardware name: linux,dummy-virt (DT) [ 4449.504689][T25189] pstate: 00402009 (nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 4449.505688][T25189] pc : copy_highpage+0x150/0x334 [ 4449.506295][T25189] lr : copy_highpage+0xb4/0x334 [ 4449.506868][T25189] sp : ffff800088053940 [ 4449.507410][T25189] x29: ffff800088053940 x28: ffffc1ffc0acf800 x27: ffff800088053b10 [ 4449.508565][T25189] x26: ffffc1ffc0acf808 x25: ffffc1ffc037b1c0 x24: ffffc1ffc037b1c0 [ 4449.509677][T25189] x23: ffffc1ffc0acf800 x22: ffffc1ffc0acf800 x21: fff000002b3e0000 [ 4449.510633][T25189] x20: fff000000dec7000 x19: ffffc1ffc037b1c0 x18: 0000000000000000 [ 4449.511785][T25189] x17: fff07ffffcffa000 x16: ffff800080008000 x15: 0000000000000001 [ 4449.512765][T25189] x14: 0000000000000000 x13: 0000000000000003 x12: 000000000006d9ad [ 4449.513839][T25189] x11: 0000000000000000 x10: 0000000000000010 x9 : 0000000000000000 [ 4449.515237][T25189] x8 : 0000000000000000 x7 : 0000000000000000 x6 : 0000000000000000 [ 4449.516219][T25189] x5 : ffff800088053b18 x4 : ffff80008032df94 x3 : 00000000ff000000 [ 4449.517207][T25189] x2 : 01ffc00003000001 x1 : 01ffc00003000001 x0 : 01ffc00003000001 [ 4449.518279][T25189] Call trace: [ 4449.518968][T25189] copy_highpage+0x150/0x334 (P) [ 4449.520007][T25189] folio_mc_copy+0x44/0x6c [ 4449.520619][T25189] __migrate_folio.constprop.0+0xc4/0x23c [ 4449.521531][T25189] migrate_folio+0x1c/0x2c [ 4449.522177][T25189] move_to_new_folio+0x58/0x144 [ 4449.522797][T25189] migrate_pages_batch+0xaf4/0x1024 [ 4449.523473][T25189] migrate_pages+0xb9c/0xcdc [ 4449.524112][T25189] do_mbind+0x20c/0x4a4 [ 4449.524738][T25189] __arm64_sys_mbind+0xd0/0xd8 [ 4449.525658][T25189] invoke_syscall+0x48/0x110 [ 4449.526297][T25189] el0_svc_common.constprop.0+0x40/0xe0 [ 4449.526993][T25189] do_el0_svc+0x1c/0x28 [ 4449.527667][T25189] el0_svc+0x34/0x10c [ 4449.528223][T25189] el0t_64_sync_handler+0xa0/0xe4 [ 4449.528792][T25189] el0t_64_sync+0x1a4/0x1a8 [ 4449.529864][T25189] ---[ end trace 0000000000000000 ]--- VM DIAGNOSIS: 21:35:54 Registers: info registers vcpu 0 CPU#0 PC=ffff8000808a297c X00=0000000000000001 X01=ffff8000830dd004 X02=f2f00000058ef240 X03=0000000000000004 X04=0000000000000001 X05=0000000000000004 X06=f2f0000005388000 X07=f2f00000058ee000 X08=0000000000000128 X09=0000000000000013 X10=0000000000000000 X11=f9f000000536e828 X12=0000000000000000 X13=0000000000000001 X14=0000000000000333 X15=ffff800081b63cd0 X16=ffff800080000000 X17=fff07ffffcfe1000 X18=0000000000000000 X19=f8f0000005af1400 X20=0000000000000000 X21=f9f000000536e800 X22=f3f000000336b600 X23=f9f000000536e800 X24=f9f000000536e808 X25=0000000000000000 X26=0000000000000040 X27=000000000000000c X28=f3f000000af99100 X29=ffff8000800032b0 X30=ffff800080899498 SP=ffff8000800032b0 PSTATE=00402009 ---- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000000000000000 P01=0000000000000000 P02=0000000000000000 P03=0000000000000000 P04=0000000000000000 P05=0000000000000000 P06=0000000000000000 P07=0000000000000000 P08=0000000000000000 P09=0000000000000000 P10=0000000000000000 P11=0000000000000000 P12=0000000000000000 P13=0000000000000000 P14=0000000000000000 P15=0000000000000000 FFR=0000000000000000 Z00=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:2525252525252525:2525252525252525 Z01=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:000000756c6c2570:6f6f6c2f7665642f Z02=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:000000f0000000f0 Z03=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffff000000ff00:0000000000000000 Z04=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:fff000f000000000 Z05=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:bb448243222c92da:e3914ed4e87380b0 Z06=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:6edc4d3a2914b135:d8e9c869e2695c88 Z07=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:b20fae707afde253:388e9c6c4fa85ca0 Z08=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z16=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000fffff47ec310:0000fffff47ec310 Z17=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffff80ffffffd0:0000fffff47ec2e0 Z18=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 info registers vcpu 1 CPU#1 PC=ffff800081b09f74 X00=ffff8000880533c0 X01=0000000000000001 X02=ffff80008261e318 X03=ffffffffffff0a00 X04=0000000000000000 X05=0000000000000000 X06=ffff8000880533c8 X07=00000000ffffffff X08=ffff800088053560 X09=ffff800088053560 X10=0000000000000001 X11=0000000000000001 X12=ffff8000829ef238 X13=ffff800088053428 X14=00000000ffffffea X15=ffff800088053070 X16=ffff800080008000 X17=fff07ffffcffa000 X18=00000000ffffffff X19=0000000000000005 X20=0000000000000405 X21=ffff80008267271a X22=ffff8000880533c8 X23=0000000000000004 X24=ffff800088053560 X25=00000000ffffffd0 X26=0000000000000008 X27=ffff8000880533c0 X28=ffff80008267271a X29=ffff800088053210 X30=beef800081b0d318 SP=ffff800088053210 PSTATE=824023c9 N--- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000000000000000 P01=0000000000000000 P02=0000000000000000 P03=0000000000000000 P04=0000000000000000 P05=0000000000000000 P06=0000000000000000 P07=0000000000000000 P08=0000000000000000 P09=0000000000000000 P10=0000000000000000 P11=0000000000000000 P12=0000000000000000 P13=0000000000000000 P14=0000000000000000 P15=0000000000000000 FFR=0000000000000000 Z00=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000aaaaeb20bec0:0000ff006b736964 Z01=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffff000000000000:ffff00ff00000000 Z02=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ff000000ff0f0000 Z03=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffffffffff00ff:0000ff000000ff00 Z04=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffff0f00f000f0 Z05=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:bcbcbc00bcc030fc:bcbcbc00bcc030fc Z06=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000073:0000aaaaeb20cc90 Z07=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000074:0000aaaaeb209f70 Z08=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z16=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000ffffef721ed0:0000ffffef721ed0 Z17=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffff80ffffffd8:0000ffffef721ea0 Z18=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000