last executing test programs: 2m47.666447525s ago: executing program 3 (id=1938): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x4c02}) readv(r0, &(0x7f0000000080)=[{&(0x7f0000000280)=""/160, 0xa0}], 0x1) 2m45.823028825s ago: executing program 3 (id=1942): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xcc}, 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280), 0x0) sendmmsg$inet6(r0, &(0x7f0000002580)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x280020}, 0x1c, &(0x7f00000000c0)=[{&(0x7f0000000540)='\x00', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000001140)=[{&(0x7f00000001c0)="ec", 0x1}], 0x1}}], 0x2, 0x20008050) setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000180)={0x0, 0x2, 0x1, [0x0]}, 0xa) 2m45.683612139s ago: executing program 3 (id=1945): timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000340)=0x0) fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) r1 = socket(0x40000000015, 0x5, 0x0) connect$inet(r1, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10) setsockopt$SO_RDS_TRANSPORT(r1, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f00006dbffc), 0x4) bind$inet(r1, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57) sendmsg$xdp(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000200)="0000000000aa303e97380e90231bdbdaf6a4bd866226b7cdb7c26858c4e4fd703be2f51ed6ddc4a47116ec2db75c7042a22491af0ffea4174a9de3350c0a498396b28c7d1784d04aa38922721cb7816094cb82950fd012efd26d", 0x5a}, {&(0x7f0000000900)="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", 0x3f1}, {&(0x7f00000003c0)="128b9306006d4810e5ac5040ad9201847839fc378469d5765b9cc241840896c1498194a7197b45d74a8532b82037b02c9e6045c361eb", 0x36}], 0x3}, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000021c0)='./file0\x00', 0x3a) mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2b00ad, 0x0) sendmsg$key(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0) recvmmsg(r1, &(0x7f0000000e00)=[{{0x0, 0x0, 0x0}, 0x3}], 0x1, 0x20010020, 0x0) rt_sigsuspend(&(0x7f0000000080)={[0x8]}, 0x8) syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0) 2m43.80992321s ago: executing program 3 (id=1949): r0 = socket$netlink(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x6) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x37, &(0x7f0000000040)=0x3, 0x4) openat$dsp1(0xffffffffffffff9c, 0x0, 0x88a01, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102) writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2f) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$batadv(&(0x7f000009f580), r2) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000140)={'batadv0\x00', 0x0}) sendmsg$BATADV_CMD_GET_DAT_CACHE(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="0303f00000000000000006000000080003", @ANYRES32=r4], 0x1c}}, 0x0) write$FUSE_STATFS(0xffffffffffffffff, 0x0, 0x0) r5 = socket(0x10, 0x803, 0x0) sendmsg$IPVS_CMD_SET_INFO(r5, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0) getsockname$packet(r5, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x4f) r7 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r6, @ANYBLOB="01000000020000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[@ANYBLOB="4800000010001fff000000008100000000000000", @ANYRES32=0x0, @ANYBLOB="00000000003f0000200012800b00010067656e657665000010000280060005004e24000004000e", @ANYRES32=r6], 0x48}, 0x1, 0x0, 0x0, 0x2000c0c1}, 0x40000) 2m42.811784467s ago: executing program 3 (id=1952): creat(&(0x7f00000005c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, 0x0, 0x0, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0xc, 0x8001, 0x0, 0x9, 0x4f, 0x8, 0xfa11, 0x1}, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f0000000b00)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@union]}}, 0x0, 0x26, 0x0, 0x1}, 0x28) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000000)={r3, 0x38, 0xfffffffffffffffe}, 0x10) kexec_load(0x0, 0x0, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYRESHEX=r0, @ANYRESOCT, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES16=r2], 0x50) r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/vs/drop_entry\x00', 0x2, 0x0) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/diskstats\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x106f) socket$pppl2tp(0x18, 0x1, 0x1) socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_IP_XFRM_POLICY(r5, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@mcast1, @in6=@remote, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee00}, {0xffffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, 0x0, 0x0, 0x1}, {{@in=@broadcast, 0x0, 0x32}, 0x0, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, 0xe4) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$L2TP_CMD_SESSION_GET(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16, @ANYBLOB="01000000000000ffffff06000000140008"], 0x34}}, 0x0) socket$pppl2tp(0x18, 0x1, 0x1) 2m40.029185503s ago: executing program 3 (id=1958): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) openat$comedi(0xffffff9c, &(0x7f0000000040)='/dev/comedi2\x00', 0xa400, 0x0) unshare(0x2c020400) r4 = msgget$private(0x0, 0x0) msgsnd(r4, &(0x7f0000000180)=ANY=[@ANYRESOCT], 0x2000, 0x0) msgrcv(r4, 0x0, 0x0, 0x2, 0x3000) connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x8ef, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe) r5 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4) ioctl$sock_bt_bnep_BNEPCONNADD(r5, 0x400442c8, &(0x7f0000000080)=ANY=[@ANYRES32=r0]) r6 = socket$kcm(0x2c, 0x3, 0x0) mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='.\x00', &(0x7f0000000000)='vxfs\x00', 0x1000080, 0x0) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='memory.events.local\x00', 0x26e1, 0x0) setsockopt$sock_attach_bpf(r6, 0x11b, 0x6, &(0x7f0000000000)=r7, 0x4) close(0x3) 2m24.225015645s ago: executing program 32 (id=1958): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) openat$comedi(0xffffff9c, &(0x7f0000000040)='/dev/comedi2\x00', 0xa400, 0x0) unshare(0x2c020400) r4 = msgget$private(0x0, 0x0) msgsnd(r4, &(0x7f0000000180)=ANY=[@ANYRESOCT], 0x2000, 0x0) msgrcv(r4, 0x0, 0x0, 0x2, 0x3000) connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x8ef, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe) r5 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4) ioctl$sock_bt_bnep_BNEPCONNADD(r5, 0x400442c8, &(0x7f0000000080)=ANY=[@ANYRES32=r0]) r6 = socket$kcm(0x2c, 0x3, 0x0) mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='.\x00', &(0x7f0000000000)='vxfs\x00', 0x1000080, 0x0) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='memory.events.local\x00', 0x26e1, 0x0) setsockopt$sock_attach_bpf(r6, 0x11b, 0x6, &(0x7f0000000000)=r7, 0x4) close(0x3) 12.382040572s ago: executing program 0 (id=2561): socket$alg(0x26, 0x5, 0x0) syz_usb_connect(0x0, 0x24, &(0x7f0000000080)=ANY=[@ANYBLOB="120100007882b740422c0917b7ca010203010902120001000000000904"], 0x0) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) 11.896466435s ago: executing program 4 (id=2565): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = syz_open_dev$vcsa(&(0x7f0000000040), 0x1, 0x48042) writev(r1, &(0x7f0000000c40)=[{0x0}, {&(0x7f00000005c0)="c21cfb", 0x3}, {&(0x7f00000007c0), 0x300}, {&(0x7f0000000900), 0x4000}], 0xe) 11.230646283s ago: executing program 1 (id=2568): r0 = syz_usb_connect$uac3(0x0, 0xa0, &(0x7f00000000c0)=ANY=[@ANYBLOB="12011003000000403512100040000102030109028e000301002040080b0201012130c60904000000010130000a2401042a00ff0f0000132403050001020602028000000700100002000f2409020200000000"], &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$uac3(r0, 0x0, &(0x7f00000005c0)={0x44, &(0x7f0000000240)={0x20, 0x6, 0x4, "e971ec7b"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 10.871139723s ago: executing program 0 (id=2569): syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) syz_emit_ethernet(0x52, 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb4e02000) syz_clone(0x2000, 0x0, 0xff36, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) syz_clone(0x41000000, 0x0, 0x0, 0x0, 0x0, 0x0) 8.087551749s ago: executing program 0 (id=2570): r0 = socket(0x10, 0x2, 0x0) sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) syz_emit_ethernet(0x46, 0x0, 0x0) memfd_create(&(0x7f00000000c0)='-B\xd5N4\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\x8a\xd7Uw\x00\xbc\xa92\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x19\xea\xef\xe3\xe1@\x84\x13\xefZb:\x8f\t\x01B\xec\xde\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@Ip]D\xd6\r\xac\v#co\xd5\xb9\xc806\xa8\x99\xffs7\xa1b1\xb1;i)j\x0e\x1e\xedI\xa2\x80\x89\x1d\xd9p!\xc86s\xe07(\xee\xf9<\"\xf0\xc8\xae\x96J\xe2]\x01\x86\xb7.<\xf5N\xd3\x94W1\xff\x18z>\xa7q,\xf7\x96\xb8{\x8e\xbf4\xe0\x95\x1ce\xe4\x85\xcdi\xed\xd3>\xeb\xa5\xaf\x87\x90@\xd1\xbd`^\xfa\xb6\x9cj\x13/\xc5\\W\x04\br\x17X\xe3\xfb\xc8\xd4\xaeX\xc9s\xd18\xd9L\xbf\xa0\xa6\xdf2\a\x99i\xb1/\x19@\x1cq\xeb?\xc1z:\x913\xfa8\xac\xd3q\xe4vPGU', 0x1) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r1 = syz_open_dev$MSR(0x0, 0x32, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x1c, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x14) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) socket(0x400000000010, 0x3, 0x0) ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2}) write(r0, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f0000000000", 0x15) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x5, 0x1ff003, 0x81, 0x7f, 0x1}, 0x48) bpf$BPF_GET_PROG_INFO(0x3, &(0x7f0000000340)={r4, 0xe0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x810, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10) 7.946618163s ago: executing program 2 (id=2571): syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) syz_emit_ethernet(0x52, 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb4e02000) prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x1, 0x0) sched_setaffinity(0x0, 0x0, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) syz_clone(0x41000000, 0x0, 0x0, 0x0, 0x0, 0x0) 7.874965065s ago: executing program 1 (id=2572): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x3, &(0x7f0000000400)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x51, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000000c0)={0x0, 0x1}, 0x8}, 0x94) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000380)=@bpf_ext={0x1a, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="004f0d0013fcffff22000000000000b8ae5363ab5e0d2e4d45c81127514d14e1c9db49adcd9e5528c92e8a00"/55], &(0x7f0000000180)='GPL\x00', 0x7, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, 0x1f, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x1, r0, 0x0, 0x0, 0x0, 0x10, 0x4a6}, 0x94) socket$inet6_icmp(0xa, 0x2, 0x3a) r1 = socket$alg(0x26, 0x5, 0x0) memfd_create(&(0x7f00000000c0)='-B\xd5N4\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\x8a\xd7Uw\x00\xbc\xa92\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x19\xea\xef\xe3\xe1@\x84\x13\xefZb:\x8f\t\x01B\xec\xde\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@Ip]D\xd6\r\xac\v#co\xd5\xb9\xc806\xa8\x99\xffs7\xa1b1\xb1;i)j\x0e\x1e\xedI\xa2\x80\x89\x1d\xd9p!\xc86s\xe07(\xee\xf9<\"\xf0\xc8\xae\x96J\xe2]\x01\x86\xb7.<\xf5N\xd3\x94W1\xff\x18z>\xa7q,\xf7\x96\xb8{\x8e\xbf4\xe0\x95\x1ce\xe4\x85\xcdi\xed\xd3>\xeb\xa5\xaf\x87\x90@\xd1\xbd`^\xfa\xb6\x9cj\x13/\xc5\\W\x04\br\x17X\xe3\xfb\xc8\xd4\xaeX\xc9s\xd18\xd9L\xbf\xa0\xa6\xdf2\a\x99i\xb1/\x19@\x1cq\xeb?\xc1z:\x913\xfa8\xac\xd3q\xe4vPGU', 0x1) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x32, 0x0) read$msr(r2, &(0x7f0000032680)=""/102392, 0x18ff8) keyctl$dh_compute(0x17, 0x0, 0x0, 0x0, 0x0) statx(0xffffffffffffffff, 0x0, 0x400, 0x40, &(0x7f0000004200)) write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0) r3 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0) ioctl$SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000000140)=0x2000) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) accept4(r1, 0x0, 0x0, 0x800) syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x14d201) fchmodat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x20) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCL_SETSEL(r4, 0x80085610, &(0x7f0000000100)={0x2, {0x2, 0x0, 0x6, 0x1fc}}) r5 = syz_open_dev$vim2m(&(0x7f0000000100), 0xcf46, 0x2) ioctl$vim2m_VIDIOC_ENUM_FMT(r5, 0xc0405602, &(0x7f0000000040)={0x9, 0x1, 0x10, "268100ba7af9819e79b058d9f2a15b8c4800000000010011000000000200", 0x32314d56}) 6.878875573s ago: executing program 4 (id=2573): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) ioctl$KVM_GET_DIRTY_LOG(0xffffffffffffffff, 0x4010ae42, &(0x7f00000000c0)={0xa8da12b893d0dd58, 0x0, &(0x7f000000f000/0x2000)=nil}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$KVM_CAP_VM_MOVE_ENC_CONTEXT_FROM(0xffffffffffffffff, 0x4068aea3, &(0x7f00000001c0)) openat$kvm(0x0, 0x0, 0x0, 0x0) r1 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed, 0x1029577e49}]}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x2710, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffefffd, 0x2, 0x2, 0x0, 0x4002004c4, 0x7f, 0x8000000000000000, 0xc595, 0x0, 0x5, 0xffffffffffffffff, 0x0, 0xb3, 0x39da], 0x30000, 0x2410d3}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 6.580664761s ago: executing program 1 (id=2574): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x3, &(0x7f0000000400)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x51, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000000c0)={0x0, 0x1}, 0x8}, 0x94) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000380)=@bpf_ext={0x1a, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="004f0d0013fcffff22000000000000b8ae5363ab5e0d2e4d45c81127514d14e1c9db49adcd9e5528c92e8a00"/55], &(0x7f0000000180)='GPL\x00', 0x7, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, 0x1f, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x1, r0, 0x0, 0x0, 0x0, 0x10, 0x4a6}, 0x94) socket$inet6_icmp(0xa, 0x2, 0x3a) r1 = socket$alg(0x26, 0x5, 0x0) memfd_create(&(0x7f00000000c0)='-B\xd5N4\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\x8a\xd7Uw\x00\xbc\xa92\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x19\xea\xef\xe3\xe1@\x84\x13\xefZb:\x8f\t\x01B\xec\xde\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@Ip]D\xd6\r\xac\v#co\xd5\xb9\xc806\xa8\x99\xffs7\xa1b1\xb1;i)j\x0e\x1e\xedI\xa2\x80\x89\x1d\xd9p!\xc86s\xe07(\xee\xf9<\"\xf0\xc8\xae\x96J\xe2]\x01\x86\xb7.<\xf5N\xd3\x94W1\xff\x18z>\xa7q,\xf7\x96\xb8{\x8e\xbf4\xe0\x95\x1ce\xe4\x85\xcdi\xed\xd3>\xeb\xa5\xaf\x87\x90@\xd1\xbd`^\xfa\xb6\x9cj\x13/\xc5\\W\x04\br\x17X\xe3\xfb\xc8\xd4\xaeX\xc9s\xd18\xd9L\xbf\xa0\xa6\xdf2\a\x99i\xb1/\x19@\x1cq\xeb?\xc1z:\x913\xfa8\xac\xd3q\xe4vPGU', 0x1) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x32, 0x0) read$msr(r2, &(0x7f0000032680)=""/102392, 0x18ff8) keyctl$dh_compute(0x17, 0x0, 0x0, 0x0, 0x0) statx(0xffffffffffffffff, 0x0, 0x400, 0x40, &(0x7f0000004200)) write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0) r3 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0) ioctl$SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000000140)=0x2000) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) accept4(r1, 0x0, 0x0, 0x800) syz_open_dev$usbfs(&(0x7f0000000080), 0x73, 0x14d201) fchmodat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x20) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCL_SETSEL(r4, 0x80085610, &(0x7f0000000100)={0x2, {0x2, 0x0, 0x6, 0x1fc}}) r5 = syz_open_dev$vim2m(&(0x7f0000000100), 0xcf46, 0x2) ioctl$vim2m_VIDIOC_ENUM_FMT(r5, 0xc0405602, &(0x7f0000000040)={0x9, 0x1, 0x10, "268100ba7af9819e79b058d9f2a15b8c4800000000010011000000000200", 0x32314d56}) 5.50851041s ago: executing program 0 (id=2575): mknodat(0xffffffffffffff9c, &(0x7f0000001340)='./file0\x00', 0x200, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0xdfffffff, 0x5e490420, 0x4, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x88}}, 0x50) chown(&(0x7f00000000c0)='./file0\x00', r2, r3) close(r0) r4 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000003c0)={'ipvlan1\x00'}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x4c, &(0x7f000002eff0)={0x1, &(0x7f0000000000)=[{0xffff}]}, 0x10) connect$unix(r5, &(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00005ec000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb86dd69010000001406fffe800000000000000000000039fe8000000000000000000000000000aa", @ANYBLOB], 0x0) r6 = syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="b7", @ANYRES8], 0x0) r7 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) syz_usb_ep_write(r6, 0x81, 0x8, &(0x7f0000000080)="00012c615bc20000") read$char_usb(r7, 0x0, 0x0) syz_usb_disconnect(r6) r8 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0x7a32, 0xc000, 0x7, 0x337}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x0, 0xffff}}}, 0x24}}, 0x0) r9 = socket$inet(0x2, 0x80001, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r9, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8) sendmsg(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)='9', 0x1}], 0x1, 0x0, 0x0, 0x2c}, 0x4000845) io_uring_enter(r8, 0x2219, 0x7721, 0x16, 0x0, 0x0) 5.377887993s ago: executing program 4 (id=2576): socket(0x40000000015, 0x5, 0x0) r0 = socket(0x2, 0x80805, 0x0) sendmmsg$inet_sctp(r0, &(0x7f0000000900)=[{&(0x7f0000000000)=@in={0x2, 0x0, @loopback}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4001}], 0x1, 0x20c80c1) socket$nl_generic(0x10, 0x3, 0x10) setsockopt$RXRPC_SECURITY_KEYRING(0xffffffffffffffff, 0x110, 0x2, 0x0, 0x0) bind$xdp(0xffffffffffffffff, &(0x7f0000000100)={0x2c, 0x8}, 0x10) getsockopt$inet6_mptcp_buf(0xffffffffffffffff, 0x11c, 0x2, &(0x7f0000000100)=""/222, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) socket$unix(0x1, 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0) openat$sequencer2(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi4\x00', 0x8000, 0x0) ioctl$COMEDI_DEVCONFIG(r2, 0x40946400, 0x0) ioctl$COMEDI_DEVCONFIG(r2, 0x40946400, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x3) r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102) writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) r4 = userfaultfd(0x801) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYRES32=0x0, @ANYBLOB="00000000001400001c00128009000100"], 0x3c}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[], 0x50}}, 0x4000800) ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f00000000c0)) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000000, 0x5d032, 0xffffffffffffffff, 0x0) r5 = userfaultfd(0x80801) ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f0000000100)) ioctl$F2FS_IOC_GARBAGE_COLLECT(r1, 0x4004f506, 0x0) 5.365791763s ago: executing program 1 (id=2577): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x800000, 0x0) close(r1) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2) sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x44081}, 0x0) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000240)={'syzkaller0\x00', @broadcast}) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x200504, 0x0) close(r4) r5 = socket$unix(0x1, 0x5, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000001}, 0x0) sendmsg$nl_route_sched(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x7fffc, {0x0, 0x0, 0x0, r7, {0x0, 0xf}, {0x2, 0xb}, {0x9, 0x5}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x8, 0x200}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0xc0e9}, 0x4000010) ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"}) 4.870400416s ago: executing program 4 (id=2578): r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0) ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000040)=0xdfe5) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000500)={0xa00, 0x18, 0xfa00, {0x100000000000000, 0x0}}, 0xfc36) syz_usb_connect(0x2, 0x36, 0x0, 0x0) 4.810905248s ago: executing program 1 (id=2579): syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0) socket$netlink(0x10, 0x3, 0x0) fsopen(&(0x7f00000000c0)='devtmpfs\x00', 0x1) socket$tipc(0x1e, 0x5, 0x0) socket$tipc(0x1e, 0x5, 0x0) socket$tipc(0x1e, 0x5, 0x0) pipe(&(0x7f0000000200)) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='blkio.bfq.io_queued_recursive\x00', 0x275a, 0x0) write$UHID_CREATE2(r0, &(0x7f0000000140)=ANY=[@ANYRES8=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000001, 0x12, r0, 0x0) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCL_GETKMSGREDIRECT(r1, 0x541c, &(0x7f0000000000)) 4.36702829s ago: executing program 2 (id=2580): mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0) 4.330009022s ago: executing program 2 (id=2581): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = syz_open_dev$vcsa(&(0x7f0000000040), 0x1, 0x48042) writev(r1, &(0x7f0000000c40)=[{0x0}, {&(0x7f00000005c0)="c21cfb", 0x3}, {&(0x7f00000007c0), 0x300}, {&(0x7f0000000900), 0x4000}], 0xe) 3.476958695s ago: executing program 2 (id=2582): socket$netlink(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000005600)={'ip6gretap0\x00', &(0x7f00000055c0)=@ethtool_channels={0x18, 0x2, 0x7, 0xab, 0x1f1d, 0x2, 0x4, 0x7, 0xdd}}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000040)={0x1}) ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x3}, {}, {0xeda7, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}]}) ioctl$KVM_SET_PIT2(r2, 0x4070aea0, &(0x7f0000000140)={[{0x7, 0x5, 0x8, 0x8, 0xb, 0xff, 0x1a, 0x4, 0x0, 0x0, 0xc, 0xf, 0x6063}, {0x7f2, 0xfff, 0xcf, 0x6, 0x1, 0xfa, 0x9, 0x0, 0xe, 0x9, 0x51, 0x1, 0x3}, {0xd, 0x3, 0x2, 0x2, 0xf0, 0xdf, 0x9, 0x8, 0x8, 0xea, 0x5, 0x6, 0x1}], 0xc}) 3.343304918s ago: executing program 2 (id=2583): r0 = socket(0x10, 0x2, 0x0) sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) syz_emit_ethernet(0x46, 0x0, 0x0) memfd_create(&(0x7f00000000c0)='-B\xd5N4\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\x8a\xd7Uw\x00\xbc\xa92\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x19\xea\xef\xe3\xe1@\x84\x13\xefZb:\x8f\t\x01B\xec\xde\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@Ip]D\xd6\r\xac\v#co\xd5\xb9\xc806\xa8\x99\xffs7\xa1b1\xb1;i)j\x0e\x1e\xedI\xa2\x80\x89\x1d\xd9p!\xc86s\xe07(\xee\xf9<\"\xf0\xc8\xae\x96J\xe2]\x01\x86\xb7.<\xf5N\xd3\x94W1\xff\x18z>\xa7q,\xf7\x96\xb8{\x8e\xbf4\xe0\x95\x1ce\xe4\x85\xcdi\xed\xd3>\xeb\xa5\xaf\x87\x90@\xd1\xbd`^\xfa\xb6\x9cj\x13/\xc5\\W\x04\br\x17X\xe3\xfb\xc8\xd4\xaeX\xc9s\xd18\xd9L\xbf\xa0\xa6\xdf2\a\x99i\xb1/\x19@\x1cq\xeb?\xc1z:\x913\xfa8\xac\xd3q\xe4vPGU', 0x1) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r1 = syz_open_dev$MSR(0x0, 0x32, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x1c, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x14) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) socket(0x400000000010, 0x3, 0x0) ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2}) write(r0, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f0000000000", 0x15) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x5, 0x1ff003, 0x81, 0x7f, 0x1}, 0x48) bpf$BPF_GET_PROG_INFO(0x3, &(0x7f0000000340)={r4, 0xe0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x810, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10) 3.27005128s ago: executing program 2 (id=2584): syz_usb_control_io$lan78xx(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$lan78xx(0xffffffffffffffff, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000580)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000001a40)=""/102392, 0x18ff8) close(0xffffffffffffffff) bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0) r1 = socket$inet_smc(0x2b, 0x1, 0x0) ppoll(&(0x7f0000000180)=[{r1, 0x184}], 0x1, 0x0, 0x0, 0x0) setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r1, 0x6, 0x21, &(0x7f0000000040)="5766b1b827f6003300", 0x10) listen(r1, 0x0) shutdown(r1, 0x0) socketpair$nbd(0x1, 0x1, 0x0, 0x0) setresuid(0xffffffffffffffff, 0x0, 0x0) semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000240)=[0x7fff]) setrlimit(0x1, 0x0) truncate(&(0x7f0000000280)='./file0\x00', 0x20fdfffffe) truncate(0x0, 0x400000f003) r2 = io_uring_setup(0x46e9, &(0x7f00000000c0)={0x0, 0x1f8d, 0x40, 0x7f8, 0x3e2}) openat$mice(0xffffffffffffff9c, &(0x7f0000019080), 0x2000) close_range(r2, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xc, 0xd, &(0x7f0000000340)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x2e, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) syz_open_dev$tty20(0xc, 0x4, 0x1) 2.936455289s ago: executing program 4 (id=2585): socket$nl_generic(0x10, 0x3, 0x10) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$phonet_pipe(0x23, 0x5, 0x2) setsockopt$PNPIPE_INITSTATE(r0, 0x113, 0x4, 0x0, 0x0) r1 = socket$kcm(0x23, 0x5, 0x0) listen(r1, 0x800) r2 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000f00)=[{&(0x7f0000000200)="5c00000014006b05c84e21000ab16d6e230675f811000000440002005817d30461bc24eeb556a7ef595105ea1698fa51f60a64c9f408000000e786a6d0bdbdc3d44bd70011b6c0504bb9189d9193e9bd00"/92, 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x240040c4) r3 = socket$phonet_pipe(0x23, 0x5, 0x2) connect$phonet_pipe(r3, &(0x7f0000000040)={0x23, 0x0, 0x58}, 0x10) fcntl$dupfd(0xffffffffffffffff, 0x0, r3) accept4(r1, 0x0, 0x0, 0x80000) openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) io_uring_register$IORING_REGISTER_PBUF_RING(0xffffffffffffffff, 0x22, &(0x7f0000000380)={&(0x7f0000006000)={[{0x0, 0x0, 0x103}]}, 0x1}, 0x1) sched_setscheduler(0x0, 0x1, 0x0) r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102) writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) socket$nl_netfilter(0x10, 0x3, 0xc) r5 = socket$kcm(0xa, 0x1, 0x106) sendmsg$kcm(r5, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0) sendmsg$kcm(r5, &(0x7f0000000780)={&(0x7f0000000000)=@in6={0xa, 0xfffe, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0x2}, 0x80, 0x0}, 0xe07e872420dfefca) 2.875542511s ago: executing program 0 (id=2586): syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) syz_emit_ethernet(0x52, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb4e02000) syz_clone(0x2000, 0x0, 0xff36, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) syz_clone(0x41000000, 0x0, 0x0, 0x0, 0x0, 0x0) 81.303817ms ago: executing program 0 (id=2587): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, 0x0) write$cgroup_subtree(r0, 0x0, 0x66) ioctl$KVM_GET_DIRTY_LOG(0xffffffffffffffff, 0x4010ae42, &(0x7f00000000c0)={0xa8da12b893d0dd58, 0x0, &(0x7f000000f000/0x2000)=nil}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed, 0x1029577e49}]}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x2710, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffefffd, 0x2, 0x2, 0x0, 0x4002004c4, 0x7f, 0x8000000000000000, 0xc595, 0x0, 0x5, 0xffffffffffffffff, 0x0, 0xb3, 0x39da], 0x30000, 0x2410d3}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 884.8µs ago: executing program 1 (id=2588): syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) syz_emit_ethernet(0x52, 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb4e02000) syz_clone(0x2000, 0x0, 0xff36, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) syz_clone(0x41000000, 0x0, 0x0, 0x0, 0x0, 0x0) 0s ago: executing program 4 (id=2589): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) setsockopt$XDP_UMEM_FILL_RING(0xffffffffffffffff, 0x11b, 0x5, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) fcntl$lock(0xffffffffffffffff, 0x410, &(0x7f00000000c0)={0x1, 0x1, 0x1, 0xfffe}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x3) sched_setaffinity(0x0, 0xfffffffffffffdb1, &(0x7f0000000280)=0x6) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) socket$rds(0x15, 0x5, 0x0) read$msr(r3, &(0x7f0000025300)=""/102392, 0x18ff8) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe) mremap(&(0x7f0000406000/0x1000)=nil, 0x1000, 0x2000, 0x3, &(0x7f0000a96000/0x2000)=nil) process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x400000)=nil, 0x40001e, 0x18) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x10, 0x6, 0xb6, '\x00', 0x2}) kernel console output (not intermixed with test programs): ngth. [ 606.360026][T11613] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1939'. [ 606.983349][ T28] audit: type=1326 audit(1777767630.509:3314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11609 comm="syz.0.1940" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 607.052945][ T28] audit: type=1326 audit(1777767630.539:3315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11609 comm="syz.0.1940" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 607.077892][ T28] audit: type=1326 audit(1777767630.539:3316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11609 comm="syz.0.1940" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 607.105723][ T28] audit: type=1326 audit(1777767630.539:3317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11609 comm="syz.0.1940" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 607.154684][ T28] audit: type=1326 audit(1777767630.559:3318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11609 comm="syz.0.1940" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 608.874770][T11631] syz.1.1941: attempt to access beyond end of device [ 608.874770][T11631] nbd1: rw=0, sector=2, nr_sectors = 2 limit=0 [ 608.887907][T11631] vxfs: unable to read disk superblock at 1 [ 608.894737][T11631] syz.1.1941: attempt to access beyond end of device [ 608.894737][T11631] nbd1: rw=0, sector=16, nr_sectors = 2 limit=0 [ 608.907840][T11631] vxfs: unable to read disk superblock at 8 [ 608.913872][T11631] vxfs: can't find superblock. [ 609.905072][T11644] netlink: 'syz.3.1949': attribute type 1 has an invalid length. [ 609.966318][T11644] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1949'. [ 610.374637][ T28] kauditd_printk_skb: 35 callbacks suppressed [ 610.374685][ T28] audit: type=1326 audit(1777767633.899:3354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11648 comm="syz.3.1952" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66bad9cdd9 code=0x7ffc0000 [ 610.414952][ T28] audit: type=1326 audit(1777767633.899:3355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11648 comm="syz.3.1952" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f66bad9cdd9 code=0x7ffc0000 [ 610.801334][ T28] audit: type=1326 audit(1777767633.899:3356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11648 comm="syz.3.1952" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66bad9cdd9 code=0x7ffc0000 [ 610.855055][ T51] Bluetooth: hci3: command 0x0406 tx timeout [ 611.173466][ T28] audit: type=1326 audit(1777767633.899:3357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11648 comm="syz.3.1952" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f66bad9cdd9 code=0x7ffc0000 [ 612.769474][ T28] audit: type=1326 audit(1777767633.899:3358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11648 comm="syz.3.1952" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66bad9cdd9 code=0x7ffc0000 [ 612.797975][ T28] audit: type=1326 audit(1777767633.939:3359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11648 comm="syz.3.1952" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66bad9cdd9 code=0x7ffc0000 [ 612.835668][ T28] audit: type=1326 audit(1777767633.939:3360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11648 comm="syz.3.1952" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7f66bad9cdd9 code=0x7ffc0000 [ 612.861509][ T28] audit: type=1326 audit(1777767633.939:3361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11648 comm="syz.3.1952" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66bad9cdd9 code=0x7ffc0000 [ 612.886065][ T28] audit: type=1326 audit(1777767634.009:3362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11648 comm="syz.3.1952" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66bad9cdd9 code=0x7ffc0000 [ 612.910912][ T28] audit: type=1326 audit(1777767634.119:3363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11648 comm="syz.3.1952" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f66bad9cdd9 code=0x7ffc0000 [ 613.303887][T11674] netlink: 'syz.1.1960': attribute type 1 has an invalid length. [ 614.074209][T11674] workqueue: Failed to create a rescuer kthread for wq "bond11": -EINTR [ 614.232391][T11675] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1960'. [ 616.375740][ T28] kauditd_printk_skb: 24 callbacks suppressed [ 616.375755][ T28] audit: type=1326 audit(1777767639.899:3388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11689 comm="syz.0.1966" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 618.132394][ T28] audit: type=1326 audit(1777767639.939:3389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11689 comm="syz.0.1966" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 618.183298][ T28] audit: type=1326 audit(1777767639.939:3390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11689 comm="syz.0.1966" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 618.218824][ T28] audit: type=1326 audit(1777767639.939:3391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11689 comm="syz.0.1966" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 618.287327][ T28] audit: type=1326 audit(1777767639.939:3392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11689 comm="syz.0.1966" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 618.323625][ T5778] Bluetooth: hci3: command 0x0406 tx timeout [ 618.355359][ T28] audit: type=1326 audit(1777767639.989:3393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11689 comm="syz.0.1966" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 618.467032][T11710] netlink: 'syz.1.1970': attribute type 1 has an invalid length. [ 618.603231][ T28] audit: type=1326 audit(1777767639.989:3394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11689 comm="syz.0.1966" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 618.819041][ T28] audit: type=1326 audit(1777767639.989:3395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11689 comm="syz.0.1966" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 619.465135][T10187] block nbd3: Possible stuck request ffff888022978000: control (read@0,1024B). Runtime 30 seconds [ 619.472288][ T28] audit: type=1326 audit(1777767639.989:3396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11689 comm="syz.0.1966" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 619.477842][T10187] block nbd3: Possible stuck request ffff888022978200: control (read@1024,1024B). Runtime 30 seconds [ 619.514087][T10187] block nbd3: Possible stuck request ffff888022978400: control (read@2048,1024B). Runtime 30 seconds [ 619.525528][T10187] block nbd3: Possible stuck request ffff888022978600: control (read@3072,1024B). Runtime 30 seconds [ 619.576667][ T28] audit: type=1326 audit(1777767639.989:3397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11689 comm="syz.0.1966" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 619.959103][ T27] usb 2-1: new high-speed USB device number 17 using dummy_hcd [ 620.159084][ T27] usb 2-1: Using ep0 maxpacket: 32 [ 620.185106][ T27] usb 2-1: config 0 has an invalid interface number: 184 but max is 0 [ 620.195496][ T27] usb 2-1: config 0 has no interface number 0 [ 620.205920][ T27] usb 2-1: config 0 interface 184 has no altsetting 0 [ 620.243515][ T27] usb 2-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 620.256425][ T27] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 620.267222][ T27] usb 2-1: Product: syz [ 620.273665][ T27] usb 2-1: Manufacturer: syz [ 620.286344][ T27] usb 2-1: SerialNumber: syz [ 620.326720][ T27] usb 2-1: config 0 descriptor?? [ 620.376321][ T27] smsc75xx v1.0.0 [ 621.075006][ T27] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32 [ 621.131346][ T27] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 621.596233][ T27] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71 [ 621.765091][ T27] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71 [ 621.865628][ T27] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_reset [ 621.899761][ T27] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71 [ 621.928823][ T27] smsc75xx: probe of 2-1:0.184 failed with error -71 [ 621.953706][ T27] usb 2-1: USB disconnect, device number 17 [ 621.974100][T11738] tipc: Enabling of bearer rejected, failed to enable media [ 622.152613][T11743] netlink: 'syz.2.1982': attribute type 1 has an invalid length. [ 623.641263][ T28] kauditd_printk_skb: 63 callbacks suppressed [ 623.641310][ T28] audit: type=1326 audit(1777767647.159:3461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11754 comm="syz.1.1987" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 623.807080][ T28] audit: type=1326 audit(1777767647.219:3462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11754 comm="syz.1.1987" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 624.858034][ T1292] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.865273][ T1292] ieee802154 phy1 wpan1: encryption failed: -22 [ 625.105270][T11776] netlink: 'syz.0.1994': attribute type 1 has an invalid length. [ 625.978638][ T9] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 626.284226][ T9] usb 3-1: Using ep0 maxpacket: 32 [ 626.399060][ T28] audit: type=1326 audit(1777767649.919:3463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11789 comm="syz.0.2000" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 626.454029][ T28] audit: type=1326 audit(1777767649.959:3464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11789 comm="syz.0.2000" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 626.502488][ T9] usb 3-1: config 0 has an invalid interface number: 12 but max is 0 [ 626.563498][ T9] usb 3-1: config 0 has no interface number 0 [ 626.578654][ T28] audit: type=1326 audit(1777767649.969:3465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11789 comm="syz.0.2000" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 626.586813][ T9] usb 3-1: config 0 interface 12 has no altsetting 0 [ 626.606192][ T28] audit: type=1326 audit(1777767649.969:3466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11789 comm="syz.0.2000" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 626.644795][ T28] audit: type=1326 audit(1777767650.039:3467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11789 comm="syz.0.2000" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 626.706170][ T28] audit: type=1326 audit(1777767650.039:3468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11789 comm="syz.0.2000" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 626.827522][ T28] audit: type=1326 audit(1777767650.049:3469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11789 comm="syz.0.2000" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 626.864910][ T28] audit: type=1326 audit(1777767650.049:3470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11789 comm="syz.0.2000" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 626.893775][ T9] usb 3-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40 [ 626.906055][ T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 626.915059][ T9] usb 3-1: Product: syz [ 626.922494][ T9] usb 3-1: Manufacturer: syz [ 626.941449][ T9] usb 3-1: SerialNumber: syz [ 626.978252][ T9] usb 3-1: config 0 descriptor?? [ 628.003814][T11805] netlink: 'syz.0.2005': attribute type 1 has an invalid length. [ 628.613922][ T9] f81534 3-1:0.12: f81534_get_register: reg: 1003 failed: -71 [ 628.702594][ T9] f81534 3-1:0.12: f81534_find_config_idx: read failed: -71 [ 628.785648][ T9] f81534 3-1:0.12: f81534_calc_num_ports: find idx failed: -71 [ 628.835755][ T9] f81534: probe of 3-1:0.12 failed with error -71 [ 628.877819][ T9] usb 3-1: USB disconnect, device number 11 [ 628.916811][T11813] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:24) already exists on: dummy0 [ 628.930855][T11813] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 628.947937][T11813] dummy0: entered promiscuous mode [ 628.972214][T11813] dummy0: left promiscuous mode [ 630.519098][ T28] kauditd_printk_skb: 14 callbacks suppressed [ 630.519111][ T28] audit: type=1326 audit(1777767654.039:3485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11825 comm="syz.1.2010" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 630.589934][ T28] audit: type=1326 audit(1777767654.039:3486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11825 comm="syz.1.2010" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 630.589990][ T28] audit: type=1326 audit(1777767654.039:3487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11825 comm="syz.1.2010" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 630.590036][ T28] audit: type=1326 audit(1777767654.039:3488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11825 comm="syz.1.2010" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 630.590087][ T28] audit: type=1326 audit(1777767654.039:3489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11825 comm="syz.1.2010" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 630.590131][ T28] audit: type=1326 audit(1777767654.039:3490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11825 comm="syz.1.2010" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 630.590174][ T28] audit: type=1326 audit(1777767654.039:3491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11825 comm="syz.1.2010" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 630.590217][ T28] audit: type=1326 audit(1777767654.039:3492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11825 comm="syz.1.2010" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 630.590259][ T28] audit: type=1326 audit(1777767654.039:3493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11825 comm="syz.1.2010" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 630.590301][ T28] audit: type=1326 audit(1777767654.039:3494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11825 comm="syz.1.2010" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 630.660404][T11698] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 630.866210][T11698] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 630.877305][T11698] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 630.893659][T11698] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 630.895977][T11698] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 630.898771][T11698] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 631.011208][T11829] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2012'. [ 631.284521][T11842] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2016'. [ 631.487646][T11845] netlink: 'syz.1.2015': attribute type 1 has an invalid length. [ 631.646867][T11830] chnl_net:caif_netlink_parms(): no params data found [ 632.492836][T11830] bridge0: port 1(bridge_slave_0) entered blocking state [ 632.503778][T11830] bridge0: port 1(bridge_slave_0) entered disabled state [ 632.511849][T11830] bridge_slave_0: entered allmulticast mode [ 632.525226][T11830] bridge_slave_0: entered promiscuous mode [ 632.535885][T11830] bridge0: port 2(bridge_slave_1) entered blocking state [ 632.549028][T11830] bridge0: port 2(bridge_slave_1) entered disabled state [ 632.556506][T11830] bridge_slave_1: entered allmulticast mode [ 632.564965][T11830] bridge_slave_1: entered promiscuous mode [ 632.646720][T11830] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 632.681255][T11830] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 632.797630][T11830] team0: Port device team_slave_0 added [ 632.817994][T11830] team0: Port device team_slave_1 added [ 632.874245][T11830] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 632.884277][T11830] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 632.910606][ C0] vkms_vblank_simulate: vblank timer overrun [ 632.921980][T11830] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 632.933513][T11698] Bluetooth: hci4: command tx timeout [ 632.935994][T11830] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 632.947600][T11830] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 632.976449][T11830] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 633.061209][T11830] hsr_slave_0: entered promiscuous mode [ 633.073082][T11830] hsr_slave_1: entered promiscuous mode [ 633.085334][T11830] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 633.105273][T11830] Cannot create hsr debugfs directory [ 633.111677][T11870] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2024'. [ 634.304339][T11830] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 634.323923][T11877] netlink: 'syz.2.2026': attribute type 1 has an invalid length. [ 634.333355][T11877] workqueue: Failed to create a rescuer kthread for wq "bond7": -EINTR [ 634.356544][T11830] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 634.382256][T11830] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 634.419513][T11830] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 634.713990][T11830] 8021q: adding VLAN 0 to HW filter on device bond0 [ 634.782568][T11830] 8021q: adding VLAN 0 to HW filter on device team0 [ 634.882340][T11446] bridge0: port 1(bridge_slave_0) entered blocking state [ 634.890650][T11446] bridge0: port 1(bridge_slave_0) entered forwarding state [ 634.961697][T11446] bridge0: port 2(bridge_slave_1) entered blocking state [ 634.969174][T11446] bridge0: port 2(bridge_slave_1) entered forwarding state [ 635.016173][T11698] Bluetooth: hci4: command tx timeout [ 635.994910][ T28] kauditd_printk_skb: 66 callbacks suppressed [ 635.994927][ T28] audit: type=1326 audit(1777767659.519:3561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11900 comm="syz.0.2034" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 636.204129][T11907] netlink: 'syz.2.2035': attribute type 1 has an invalid length. [ 636.290371][ T28] audit: type=1326 audit(1777767659.559:3562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11900 comm="syz.0.2034" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 636.408286][T11908] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2035'. [ 636.507481][ T28] audit: type=1326 audit(1777767659.569:3563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11900 comm="syz.0.2034" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 636.811838][ T28] audit: type=1326 audit(1777767659.569:3564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11900 comm="syz.0.2034" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 636.840064][ T28] audit: type=1326 audit(1777767659.569:3565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11900 comm="syz.0.2034" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 636.865139][ T28] audit: type=1326 audit(1777767659.569:3566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11900 comm="syz.0.2034" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 636.892290][ T28] audit: type=1326 audit(1777767659.569:3567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11900 comm="syz.0.2034" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 636.918762][ T28] audit: type=1326 audit(1777767659.569:3568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11900 comm="syz.0.2034" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 636.963547][ T28] audit: type=1326 audit(1777767659.569:3569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11900 comm="syz.0.2034" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 636.992974][ T28] audit: type=1326 audit(1777767659.569:3570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11900 comm="syz.0.2034" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f952559cdd9 code=0x7ffc0000 [ 636.997121][T11830] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 637.088602][T11698] Bluetooth: hci4: command tx timeout [ 639.168904][T11698] Bluetooth: hci4: command tx timeout [ 639.311638][T11830] veth0_vlan: entered promiscuous mode [ 639.646667][T11830] veth1_vlan: entered promiscuous mode [ 640.083496][T11946] netlink: 'syz.1.2044': attribute type 1 has an invalid length. [ 640.232406][T11947] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2044'. [ 640.487580][T11830] veth0_macvtap: entered promiscuous mode [ 640.502890][T11830] veth1_macvtap: entered promiscuous mode [ 641.130540][T11830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 641.167606][T11830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 641.185462][T11830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 641.196952][T11830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 641.217398][T11830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 641.241349][T11830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 641.260864][T11830] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 641.313808][T11830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 641.349164][T11830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 641.366113][T11830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 641.384135][T11830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 641.404730][T11830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 641.446919][T11830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 641.500787][T11830] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 641.565973][T11830] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 641.630223][T11830] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 641.761715][T11830] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 641.941097][T11967] kAFS: unable to lookup cell '' [ 641.954488][T11830] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 642.356533][ T28] kauditd_printk_skb: 50 callbacks suppressed [ 642.356549][ T28] audit: type=1326 audit(1777767665.879:3621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11968 comm="syz.1.2054" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 642.445803][ T28] audit: type=1326 audit(1777767665.959:3622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11968 comm="syz.1.2054" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 644.101510][ T28] audit: type=1326 audit(1777767665.959:3623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11968 comm="syz.1.2054" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 644.126637][ T28] audit: type=1326 audit(1777767665.959:3624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11968 comm="syz.1.2054" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 644.152690][ T28] audit: type=1326 audit(1777767665.959:3625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11968 comm="syz.1.2054" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 644.180090][ T28] audit: type=1326 audit(1777767665.959:3626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11968 comm="syz.1.2054" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 644.205656][ T28] audit: type=1326 audit(1777767665.959:3627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11968 comm="syz.1.2054" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 644.231856][ T28] audit: type=1326 audit(1777767665.959:3628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11968 comm="syz.1.2054" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 644.285542][ T28] audit: type=1326 audit(1777767665.959:3629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11968 comm="syz.1.2054" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 644.418933][ T28] audit: type=1326 audit(1777767665.959:3630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11968 comm="syz.1.2054" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 644.454509][T11974] netlink: 'syz.2.2055': attribute type 1 has an invalid length. [ 644.491999][T11975] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2055'. [ 644.550690][T11444] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 644.624654][T11444] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 644.832996][T11444] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 644.852856][T11444] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 646.291494][T12012] netlink: 'syz.2.2066': attribute type 1 has an invalid length. [ 647.059971][T12012] workqueue: Failed to create a rescuer kthread for wq "bond9": -EINTR [ 648.671905][T12042] netlink: 72 bytes leftover after parsing attributes in process `syz.0.2076'. [ 649.308786][ T968] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 649.517525][T12048] netlink: 'syz.2.2078': attribute type 1 has an invalid length. [ 649.593599][ T968] usb 1-1: config 16 has an invalid interface number: 26 but max is 2 [ 649.682760][ T968] usb 1-1: config 16 contains an unexpected descriptor of type 0x1, skipping [ 649.763116][ T10] block nbd3: Possible stuck request ffff888022978000: control (read@0,1024B). Runtime 60 seconds [ 649.774818][ T10] block nbd3: Possible stuck request ffff888022978200: control (read@1024,1024B). Runtime 60 seconds [ 649.776435][T12052] mmap: syz.1.2079 (12052) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 649.786097][ T10] block nbd3: Possible stuck request ffff888022978400: control (read@2048,1024B). Runtime 60 seconds [ 649.808779][ T968] usb 1-1: config 16 has an invalid interface number: 226 but max is 2 [ 649.874739][ T968] usb 1-1: config 16 has an invalid interface number: 34 but max is 2 [ 649.891184][ T10] block nbd3: Possible stuck request ffff888022978600: control (read@3072,1024B). Runtime 60 seconds [ 649.961711][ T968] usb 1-1: config 16 contains an unexpected descriptor of type 0x1, skipping [ 650.052638][ T968] usb 1-1: config 16 has no interface number 0 [ 650.172037][ T968] usb 1-1: config 16 has no interface number 1 [ 650.192268][ T968] usb 1-1: config 16 has no interface number 2 [ 650.205013][ T968] usb 1-1: config 16 interface 26 altsetting 13 endpoint 0xD has invalid maxpacket 1023, setting to 64 [ 650.255251][ T968] usb 1-1: config 16 interface 26 altsetting 13 endpoint 0x8 has an invalid bInterval 128, changing to 11 [ 650.285234][ T968] usb 1-1: config 16 interface 26 altsetting 13 endpoint 0x2 has invalid maxpacket 1023, setting to 64 [ 650.308692][ T5763] usb 2-1: new high-speed USB device number 18 using dummy_hcd [ 650.372612][ T968] usb 1-1: config 16 interface 26 altsetting 13 bulk endpoint 0x1 has invalid maxpacket 16 [ 650.388908][ T968] usb 1-1: config 16 interface 26 altsetting 13 endpoint 0x85 has invalid maxpacket 1023, setting to 64 [ 650.401451][ T968] usb 1-1: config 16 interface 226 altsetting 6 has a duplicate endpoint with address 0xD, skipping [ 650.413709][ T968] usb 1-1: config 16 interface 226 altsetting 6 has a duplicate endpoint with address 0x2, skipping [ 650.431647][ T968] usb 1-1: config 16 interface 226 altsetting 6 has an invalid endpoint with address 0x0, skipping [ 650.445448][ T968] usb 1-1: config 16 interface 226 altsetting 6 has a duplicate endpoint with address 0x6, skipping [ 650.459797][ T968] usb 1-1: config 16 interface 34 altsetting 8 has an invalid endpoint with address 0x80, skipping [ 650.471493][ T968] usb 1-1: config 16 interface 34 altsetting 8 has a duplicate endpoint with address 0x5, skipping [ 650.483975][ T968] usb 1-1: config 16 interface 34 altsetting 8 has a duplicate endpoint with address 0x8, skipping [ 650.510590][ T5763] usb 2-1: Using ep0 maxpacket: 8 [ 650.516105][ T968] usb 1-1: config 16 interface 34 altsetting 8 has an invalid endpoint with address 0x0, skipping [ 650.527960][ T968] usb 1-1: config 16 interface 34 altsetting 8 has an invalid endpoint with address 0x0, skipping [ 650.541226][ T968] usb 1-1: config 16 interface 34 altsetting 8 has a duplicate endpoint with address 0xE, skipping [ 650.561468][ T5763] usb 2-1: config 32 has 1 interface, different from the descriptor's value: 2 [ 650.575943][ T5763] usb 2-1: config 32 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 650.589868][ T968] usb 1-1: config 16 interface 34 altsetting 8 endpoint 0xB has an invalid bInterval 255, changing to 7 [ 650.602112][ T5763] usb 2-1: New USB device found, idVendor=19b5, idProduct=0021, bcdDevice=98.c7 [ 650.611899][ T968] usb 1-1: config 16 interface 34 altsetting 8 has a duplicate endpoint with address 0x6, skipping [ 650.623230][ T5763] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 650.633602][ T968] usb 1-1: config 16 interface 34 altsetting 8 has a duplicate endpoint with address 0x5, skipping [ 650.668490][ T968] usb 1-1: config 16 interface 34 altsetting 8 has a duplicate endpoint with address 0xD, skipping [ 650.695494][ T968] usb 1-1: config 16 interface 34 altsetting 8 has a duplicate endpoint with address 0x3, skipping [ 650.716311][ T968] usb 1-1: config 16 interface 26 has no altsetting 0 [ 650.723639][ T968] usb 1-1: config 16 interface 226 has no altsetting 0 [ 650.738509][ T968] usb 1-1: config 16 interface 34 has no altsetting 0 [ 650.752776][ T968] usb 1-1: New USB device found, idVendor=1b5c, idProduct=0103, bcdDevice= 8.ff [ 650.763289][ T968] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 650.772918][ T968] usb 1-1: Product: syz [ 650.777186][ T968] usb 1-1: Manufacturer: 乚諝녵䤷⍖鯚惵뾘閐쯊揪䞊댇䵲꿡酿ꖂ뜛᪭斿䣣挢ꖬ穋福蹐㘀긘擣⫸갾荝삧ኸ᫬Ꞓ⫽謵끁࿢ၪ禎꒗뜬즄琼憔햍荐僃瘝᪕ꊙ䀽᧔㾼艗Ⲟꒁ떁╒⨛߀粫ࡿ쀗帣ܖٝ鞑䃼횘䓉￟⣒ᆜ䟑酜륁흐휡ݎゅꘆ飌飗환싃鲒ﹼ⟯ꈛ㖘ᆜ蜑鼓䋜঵ᥫŔ崪 [ 650.812146][ T968] usb 1-1: SerialNumber: syz [ 650.853475][T12045] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 650.922723][ T5763] usb 2-1: string descriptor 0 read error: -71 [ 651.024895][ T5763] usb 2-1: USB disconnect, device number 18 [ 651.123124][ T5812] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 651.180537][ T968] ftdi_sio 1-1:16.26: FTDI USB Serial Device converter detected [ 651.300548][ T968] ftdi_sio ttyUSB0: unknown device type: 0x8ff [ 651.690105][ T968] ftdi_sio 1-1:16.226: FTDI USB Serial Device converter detected [ 651.780524][ T968] ftdi_sio ttyUSB1: unknown device type: 0x8ff [ 651.815725][ T968] ftdi_sio 1-1:16.34: FTDI USB Serial Device converter detected [ 651.859109][ T968] ftdi_sio ttyUSB2: unknown device type: 0x8ff [ 651.909228][ T968] usb 1-1: USB disconnect, device number 10 [ 651.938033][ T968] ftdi_sio 1-1:16.26: device disconnected [ 651.982994][ T968] ftdi_sio 1-1:16.226: device disconnected [ 652.033811][ T968] ftdi_sio 1-1:16.34: device disconnected [ 652.069864][ T5812] usb 5-1: Using ep0 maxpacket: 16 [ 652.088074][ T5812] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 652.123766][ T5812] usb 5-1: config 0 interface 0 has no altsetting 0 [ 652.152369][ T5812] usb 5-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb [ 652.181268][ T5812] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 652.245395][ T5812] usb 5-1: Product: syz [ 652.256873][T12082] netlink: 'syz.2.2089': attribute type 1 has an invalid length. [ 652.281328][ T5812] usb 5-1: Manufacturer: syz [ 652.331419][ T5812] usb 5-1: SerialNumber: syz [ 652.512613][ T5812] usb 5-1: config 0 descriptor?? [ 653.409152][ T968] usb 3-1: new full-speed USB device number 12 using dummy_hcd [ 653.643855][ T968] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 653.655805][ T968] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 653.667611][ T968] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 653.678170][ T968] usb 3-1: New USB device found, idVendor=05ac, idProduct=0324, bcdDevice= 0.00 [ 653.687743][ T968] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 653.732604][ T968] usb 3-1: config 0 descriptor?? [ 654.116151][ T5812] usb 5-1: USB disconnect, device number 2 [ 654.201297][ T968] hid (null): report_id 0 is invalid [ 654.206875][ T968] hid (null): report_id 0 is invalid [ 654.244159][ T968] hid (null): unknown global tag 0xd [ 654.293111][ T968] magicmouse 0003:05AC:0324.0006: unknown main item tag 0x0 [ 654.308156][ T968] magicmouse 0003:05AC:0324.0006: unknown main item tag 0x0 [ 654.317116][ T968] magicmouse 0003:05AC:0324.0006: unexpected long global item [ 654.330111][ T968] magicmouse 0003:05AC:0324.0006: magicmouse hid parse failed [ 654.349607][ T968] magicmouse: probe of 0003:05AC:0324.0006 failed with error -22 [ 654.446211][ T8] usb 3-1: USB disconnect, device number 12 [ 654.563695][ T23] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 655.410924][ T23] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 655.434396][ T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 655.531858][T12118] netlink: 'syz.1.2100': attribute type 1 has an invalid length. [ 656.292446][ T23] usb 1-1: config 0 descriptor?? [ 656.300914][ T23] cp210x 1-1:0.0: cp210x converter detected [ 656.808317][ T23] cp210x 1-1:0.0: failed to get vendor val 0x0010 size 3: -32 [ 656.901785][ T23] usb 1-1: cp210x converter now attached to ttyUSB0 [ 657.146440][ T5812] usb 1-1: USB disconnect, device number 11 [ 657.192504][ T5812] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 657.224536][ T5812] cp210x 1-1:0.0: device disconnected [ 657.429856][ T8] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 657.620790][ T8] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 657.632514][ T8] usb 5-1: config 1 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping [ 657.643933][ T8] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18 [ 657.741043][ T8] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice= 0.40 [ 657.761801][ T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 657.771919][ T8] usb 5-1: SerialNumber: syz [ 657.902095][T12140] netlink: 'syz.2.2110': attribute type 2 has an invalid length. [ 657.916542][T12140] netlink: 'syz.2.2110': attribute type 4 has an invalid length. [ 658.042808][T12145] netlink: 'syz.1.2112': attribute type 1 has an invalid length. [ 658.294372][ T8] usbtest 5-1:1.0: couldn't get endpoints, -22 [ 658.688296][T12149] 9pnet_fd: Insufficient options for proto=fd [ 658.816459][ T8] usbtest: probe of 5-1:1.0 failed with error -22 [ 658.832735][ T8] usb 5-1: USB disconnect, device number 3 [ 660.225000][T12178] 9pnet_fd: Insufficient options for proto=fd [ 660.766922][ T28] kauditd_printk_skb: 52 callbacks suppressed [ 660.766935][ T28] audit: type=1326 audit(1777767684.289:3683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12189 comm="syz.4.2131" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 660.858697][ T28] audit: type=1326 audit(1777767684.289:3684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12189 comm="syz.4.2131" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 660.936563][ T28] audit: type=1326 audit(1777767684.299:3685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12189 comm="syz.4.2131" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 661.019635][ T28] audit: type=1326 audit(1777767684.299:3686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12189 comm="syz.4.2131" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 661.529057][ T28] audit: type=1326 audit(1777767684.299:3687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12189 comm="syz.4.2131" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 661.616832][ T28] audit: type=1326 audit(1777767684.299:3688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12189 comm="syz.4.2131" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 661.651617][ T28] audit: type=1326 audit(1777767684.299:3689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12189 comm="syz.4.2131" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 661.985304][T12210] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2140'. [ 662.069479][T12212] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2141'. [ 662.188702][ T8] usb 3-1: new high-speed USB device number 13 using dummy_hcd [ 662.384472][ T8] usb 3-1: Using ep0 maxpacket: 32 [ 662.392812][ T8] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 662.408480][ T8] usb 3-1: config 0 has no interfaces? [ 662.421014][ T8] usb 3-1: New USB device found, idVendor=0fe9, idProduct=d501, bcdDevice=23.50 [ 662.433032][ T8] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 662.447288][ T8] usb 3-1: Product: syz [ 662.452290][ T8] usb 3-1: Manufacturer: syz [ 662.467608][ T8] usb 3-1: SerialNumber: syz [ 662.475686][ T8] usb 3-1: config 0 descriptor?? [ 662.480986][ T5812] usb 2-1: new high-speed USB device number 19 using dummy_hcd [ 662.641098][T12228] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2149'. [ 662.673086][ T5812] usb 2-1: config 0 has too many interfaces: 253, using maximum allowed: 32 [ 662.715367][ T5812] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 253 [ 662.730074][ T8] usb 3-1: USB disconnect, device number 13 [ 662.752422][ T5812] usb 2-1: New USB device found, idVendor=055f, idProduct=c630, bcdDevice=b6.ac [ 662.769544][ T5812] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 662.778802][ T5812] usb 2-1: Product: syz [ 662.787880][ T5812] usb 2-1: Manufacturer: syz [ 662.794873][ T5812] usb 2-1: SerialNumber: syz [ 662.804730][ T5812] usb 2-1: config 0 descriptor?? [ 662.843633][ T5812] gspca_main: sunplus-2.14.0 probing 055f:c630 [ 662.965612][T12232] batman_adv: batadv0: Adding interface: dummy0 [ 662.972606][T12232] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 662.999104][T12232] batman_adv: batadv0: Interface activated: dummy0 [ 663.083257][T12232] batadv0: mtu less than device minimum [ 663.095322][T12232] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 663.111090][T12232] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 663.127179][T12232] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 663.142405][T12232] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 663.158603][T12232] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 663.175014][T12232] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 663.191250][T12232] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 663.207291][T12232] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 663.223159][T12232] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 664.918758][ T5812] gspca_sunplus: reg_r err -110 [ 664.929129][ T5812] sunplus: probe of 2-1:0.0 failed with error -110 [ 664.956041][ T5812] usb 2-1: USB disconnect, device number 19 [ 665.429059][T12251] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2158'. [ 666.012958][T12265] vxcan2: entered allmulticast mode [ 666.045187][T12265] vxcan3: entered promiscuous mode [ 666.077645][T12265] vxcan3: entered allmulticast mode [ 666.147102][T12271] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2167'. [ 666.287956][T12275] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2169'. [ 667.247322][T12294] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2178'. [ 667.538197][T12300] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2180'. [ 667.911205][ T5812] usb 3-1: new high-speed USB device number 14 using dummy_hcd [ 668.681249][ T5812] usb 3-1: Using ep0 maxpacket: 8 [ 668.699885][ T5812] usb 3-1: config 0 has no interfaces? [ 668.737503][ T5812] usb 3-1: New USB device found, idVendor=0fe9, idProduct=db01, bcdDevice=e9.9b [ 668.775928][ T5812] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 668.815210][ T5812] usb 3-1: Product: syz [ 668.837317][ T5812] usb 3-1: Manufacturer: syz [ 668.852298][ T5812] usb 3-1: SerialNumber: syz [ 668.873868][ T5812] usb 3-1: config 0 descriptor?? [ 669.182652][ T27] usb 3-1: USB disconnect, device number 14 [ 669.639174][ T5778] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 669.664586][ T5778] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 669.681247][ T5778] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 669.744876][ T5778] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 669.754312][ T5778] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 669.762328][ T5778] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 669.926201][T11446] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 669.951941][T11446] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0 [ 670.009365][T12326] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2191'. [ 670.253672][T11446] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 670.266015][T11446] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0 [ 671.303863][T11446] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 671.444745][T11446] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0 [ 671.549745][T11446] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 671.560538][T11446] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0 [ 671.809802][ T5778] Bluetooth: hci1: command tx timeout [ 672.529026][ T5834] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 672.607935][T12319] chnl_net:caif_netlink_parms(): no params data found [ 672.729144][ T5834] usb 5-1: Using ep0 maxpacket: 16 [ 672.758809][ T5834] usb 5-1: config index 0 descriptor too short (expected 52, got 36) [ 672.781973][ T5834] usb 5-1: config 0 has an invalid interface number: 251 but max is 0 [ 672.791321][ T5834] usb 5-1: config 0 has no interface number 0 [ 672.798027][ T5834] usb 5-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16 [ 672.809045][ T5834] usb 5-1: config 0 interface 251 altsetting 0 endpoint 0x82 has invalid maxpacket 36160, setting to 1024 [ 672.824481][ T5834] usb 5-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 1024 [ 672.839699][ T5834] usb 5-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 672.850333][ T5834] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 672.858614][ T5834] usb 5-1: Product: syz [ 672.862880][ T5834] usb 5-1: Manufacturer: syz [ 672.868074][ T5834] usb 5-1: SerialNumber: syz [ 672.877112][ T5834] usb 5-1: config 0 descriptor?? [ 672.883724][T12338] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 672.898908][T12338] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 672.969339][ T5812] usb 3-1: new high-speed USB device number 15 using dummy_hcd [ 672.997983][T12319] bridge0: port 1(bridge_slave_0) entered blocking state [ 673.006210][T12319] bridge0: port 1(bridge_slave_0) entered disabled state [ 673.014042][T12319] bridge_slave_0: entered allmulticast mode [ 673.034696][T12319] bridge_slave_0: entered promiscuous mode [ 673.075013][T12319] bridge0: port 2(bridge_slave_1) entered blocking state [ 673.089073][T12319] bridge0: port 2(bridge_slave_1) entered disabled state [ 673.096564][T12319] bridge_slave_1: entered allmulticast mode [ 673.105540][T12319] bridge_slave_1: entered promiscuous mode [ 673.137312][T12338] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 673.163765][T12338] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 673.171562][T12319] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 673.191305][ T5812] usb 3-1: Using ep0 maxpacket: 8 [ 673.210330][T11446] tipc: Left network mode [ 673.213391][T12319] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 673.246108][ T5812] usb 3-1: config 0 has no interfaces? [ 673.260937][ T5812] usb 3-1: New USB device found, idVendor=0fe9, idProduct=db01, bcdDevice=e9.9b [ 673.270844][ T5812] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 673.288840][ T5812] usb 3-1: Product: syz [ 673.293462][ T5812] usb 3-1: Manufacturer: syz [ 673.298187][ T5812] usb 3-1: SerialNumber: syz [ 673.340613][ T5812] usb 3-1: config 0 descriptor?? [ 673.411182][ T5834] asix 5-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32 [ 673.456994][ T5834] asix 5-1:0.251 (unnamed net_device) (uninitialized): Failed to read MAC address: -32 [ 673.469439][ T5834] asix: probe of 5-1:0.251 failed with error -5 [ 673.623493][T12319] team0: Port device team_slave_0 added [ 673.635243][ T5763] usb 3-1: USB disconnect, device number 15 [ 673.673080][T12319] team0: Port device team_slave_1 added [ 673.889030][ T5778] Bluetooth: hci1: command tx timeout [ 673.919344][T12319] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 673.926631][T12319] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 673.955265][T12319] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 674.014157][T12319] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 674.033198][T12319] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 674.064181][T12319] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 674.464356][T12319] hsr_slave_0: entered promiscuous mode [ 674.496803][T12319] hsr_slave_1: entered promiscuous mode [ 674.508160][T12319] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 674.517572][T12319] Cannot create hsr debugfs directory [ 674.529477][T11446] batman_adv: batadv0: Interface deactivated: gretap1 [ 674.635111][T11446] batman_adv: batadv0: Removing interface: gretap1 [ 674.768325][T12371] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2201'. [ 674.958977][ T5763] usb 5-1: USB disconnect, device number 4 [ 675.557160][T11446] hsr_slave_0: left promiscuous mode [ 675.572471][T11446] hsr_slave_1: left promiscuous mode [ 675.586358][T11446] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 675.595949][T11446] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 675.614476][T11446] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 675.627523][T11446] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 675.646250][T11446] bridge_slave_1: left allmulticast mode [ 675.648582][ T5763] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 675.659010][T11446] bridge0: port 2(bridge_slave_1) entered disabled state [ 675.680441][T11446] bridge_slave_0: left allmulticast mode [ 675.686344][T11446] bridge_slave_0: left promiscuous mode [ 675.700142][T11446] bridge0: port 1(bridge_slave_0) entered disabled state [ 675.761294][T11446] veth1_macvtap: left promiscuous mode [ 675.767795][T11446] veth0_macvtap: left promiscuous mode [ 675.782143][T11446] veth1_vlan: left promiscuous mode [ 675.848611][ T5763] usb 5-1: Using ep0 maxpacket: 8 [ 675.863149][ T5763] usb 5-1: config 0 has no interfaces? [ 675.878653][ T5763] usb 5-1: New USB device found, idVendor=0fe9, idProduct=db01, bcdDevice=e9.9b [ 675.897891][ T5763] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 675.926863][ T5763] usb 5-1: Product: syz [ 675.932018][ T5763] usb 5-1: Manufacturer: syz [ 675.936683][ T5763] usb 5-1: SerialNumber: syz [ 675.969371][ T5778] Bluetooth: hci1: command tx timeout [ 675.979186][ T5763] usb 5-1: config 0 descriptor?? [ 676.030039][T11446] bond11 (unregistering): Released all slaves [ 676.051011][T11446] bond10 (unregistering): Released all slaves [ 676.087287][T11446] bond9 (unregistering): Released all slaves [ 676.116572][T11446] bond8 (unregistering): Released all slaves [ 676.154054][T11446] bond7 (unregistering): Released all slaves [ 676.176317][T11446] bond6 (unregistering): Released all slaves [ 676.197354][T11446] bond5 (unregistering): Released all slaves [ 676.254594][ T5763] usb 5-1: USB disconnect, device number 5 [ 676.260329][T11446] bond4 (unregistering): Released all slaves [ 676.304285][T11446] bond3 (unregistering): Released all slaves [ 676.356010][T11446] bond2 (unregistering): Released all slaves [ 676.418053][T11446] bond1 (unregistering): (slave geneve2): Releasing active interface [ 676.453372][T11446] bond1 (unregistering): Released all slaves [ 677.647831][T11446] team0 (unregistering): Port device team_slave_1 removed [ 677.755301][T11446] team0 (unregistering): Port device team_slave_0 removed [ 677.835821][T11446] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 677.916276][T11446] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 678.048762][ T5778] Bluetooth: hci1: command tx timeout [ 678.491120][T11446] bond0 (unregistering): Released all slaves [ 678.564661][T12416] 9pnet_fd: Insufficient options for proto=fd [ 678.678174][T12408] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2211'. [ 678.911410][T12420] Bluetooth: hci0: invalid length 0, exp 2 for type 10 [ 679.288637][ T5812] usb 3-1: new high-speed USB device number 16 using dummy_hcd [ 679.554658][ T5812] usb 3-1: Using ep0 maxpacket: 8 [ 679.667408][ T5812] usb 3-1: config 0 has no interfaces? [ 679.720984][ T5812] usb 3-1: New USB device found, idVendor=0fe9, idProduct=db01, bcdDevice=e9.9b [ 679.731721][ T5812] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 679.759064][ T5812] usb 3-1: Product: syz [ 679.763401][ T5812] usb 3-1: Manufacturer: syz [ 679.778762][ T5812] usb 3-1: SerialNumber: syz [ 679.808815][T10187] block nbd3: Possible stuck request ffff888022978000: control (read@0,1024B). Runtime 90 seconds [ 679.820298][T10187] block nbd3: Possible stuck request ffff888022978200: control (read@1024,1024B). Runtime 90 seconds [ 679.832853][ T5812] usb 3-1: config 0 descriptor?? [ 679.898734][T10187] block nbd3: Possible stuck request ffff888022978400: control (read@2048,1024B). Runtime 90 seconds [ 679.948685][T10187] block nbd3: Possible stuck request ffff888022978600: control (read@3072,1024B). Runtime 90 seconds [ 680.373058][ T8] usb 3-1: USB disconnect, device number 16 [ 680.711120][T11446] IPVS: stop unused estimator thread 0... [ 680.931398][T12442] 9pnet_fd: Insufficient options for proto=fd [ 681.056161][T12319] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 681.068048][T12319] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 681.077637][T12319] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 681.098957][T12319] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 681.376809][T12319] 8021q: adding VLAN 0 to HW filter on device bond0 [ 681.464035][T12319] 8021q: adding VLAN 0 to HW filter on device team0 [ 681.540010][T12452] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2226'. [ 681.665441][ T6012] bridge0: port 1(bridge_slave_0) entered blocking state [ 681.672760][ T6012] bridge0: port 1(bridge_slave_0) entered forwarding state [ 681.767519][T11446] bridge0: port 2(bridge_slave_1) entered blocking state [ 681.774792][T11446] bridge0: port 2(bridge_slave_1) entered forwarding state [ 682.300471][T12472] 9pnet_fd: Insufficient options for proto=fd [ 682.553963][T12319] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 682.708581][T12319] veth0_vlan: entered promiscuous mode [ 682.732856][T12319] veth1_vlan: entered promiscuous mode [ 682.766620][T12487] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2235'. [ 682.827457][T12319] veth0_macvtap: entered promiscuous mode [ 682.862001][T12319] veth1_macvtap: entered promiscuous mode [ 682.942087][T12319] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 682.965575][T12319] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 682.988187][T12319] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 683.014911][T12319] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 683.036284][T12319] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 683.055648][T12319] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 683.072057][T12319] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 683.119511][T12319] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 683.145171][T12319] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 683.160593][T12319] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 683.171753][T12319] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 683.199224][T12319] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 683.218564][T12319] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 683.242798][T12319] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 683.685175][T12319] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 683.914251][T12319] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 683.959468][T12319] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 683.968263][T12319] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 684.014075][T12506] 9pnet_fd: Insufficient options for proto=fd [ 684.681450][ T6877] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 684.774476][ T6877] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 684.998011][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 685.029978][T12520] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2243'. [ 685.030680][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 685.571255][T12541] 9pnet_fd: Insufficient options for proto=fd [ 686.081322][T12554] netlink: 68 bytes leftover after parsing attributes in process `syz.0.2251'. [ 686.212010][ T1292] ieee802154 phy0 wpan0: encryption failed: -22 [ 686.218927][ T1292] ieee802154 phy1 wpan1: encryption failed: -22 [ 686.611945][T12555] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2254'. [ 687.173780][T12575] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3) [ 687.181025][T12575] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 687.201574][T12580] 9pnet_fd: Insufficient options for proto=fd [ 687.228281][T12577] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2258'. [ 687.239151][T12575] vhci_hcd vhci_hcd.0: Device attached [ 687.406347][ T28] audit: type=1326 audit(1777767710.909:3690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12568 comm="syz.4.2258" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 687.451292][ T28] audit: type=1326 audit(1777767710.909:3691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12568 comm="syz.4.2258" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 687.635427][ T5814] usb 2-1: new high-speed USB device number 20 using dummy_hcd [ 687.646287][ T968] usb 35-1: new low-speed USB device number 2 using vhci_hcd [ 687.689431][ T28] audit: type=1326 audit(1777767710.929:3692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12568 comm="syz.4.2258" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 688.116853][ T5814] usb 2-1: Using ep0 maxpacket: 8 [ 688.152557][ T5814] usb 2-1: config 0 has no interfaces? [ 688.388541][ T28] audit: type=1326 audit(1777767710.929:3693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12568 comm="syz.4.2258" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f398d59cb42 code=0x7ffc0000 [ 688.450120][ T5814] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 688.461993][ T5814] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 688.498044][ T5814] usb 2-1: config 0 descriptor?? [ 688.548484][ T28] audit: type=1326 audit(1777767710.929:3694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12568 comm="syz.4.2258" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f398d59cbd7 code=0x7ffc0000 [ 688.620759][ T28] audit: type=1326 audit(1777767710.929:3695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12568 comm="syz.4.2258" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f398d559ad1 code=0x7ffc0000 [ 688.788036][ T23] usb 2-1: USB disconnect, device number 20 [ 688.818468][T12576] vhci_hcd: connection closed [ 688.826919][ T28] audit: type=1326 audit(1777767710.929:3696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12568 comm="syz.4.2258" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f398d59dbc9 code=0x7ffc0000 [ 689.025709][ T12] vhci_hcd: stop threads [ 689.181298][ T12] vhci_hcd: release socket [ 689.249819][ T12] vhci_hcd: disconnect device [ 689.479528][ T28] audit: type=1326 audit(1777767710.959:3697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12568 comm="syz.4.2258" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f398d559b3b code=0x7ffc0000 [ 689.612990][ T968] vhci_hcd: vhci_device speed not set [ 689.698642][ T28] audit: type=1326 audit(1777767710.959:3698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12568 comm="syz.4.2258" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7f398d55922c code=0x7ffc0000 [ 689.727081][ T28] audit: type=1326 audit(1777767710.959:3699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12568 comm="syz.4.2258" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 690.653617][T12608] 9pnet_fd: Insufficient options for proto=fd [ 691.631907][T12631] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2280'. [ 692.024646][T11698] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 692.052528][T11698] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 692.066551][T11698] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 692.077885][T11698] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 692.088297][T11698] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 692.096249][T11698] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 692.280730][ T49] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 692.292427][ T49] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0 [ 692.466979][ T49] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 692.502841][ T49] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0 [ 692.736480][ T49] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 692.785576][ T49] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0 [ 693.061229][ T49] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 693.083493][ T49] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0 [ 694.135958][ T5778] Bluetooth: hci5: command tx timeout [ 694.455929][T12634] chnl_net:caif_netlink_parms(): no params data found [ 695.160830][T12634] bridge0: port 1(bridge_slave_0) entered blocking state [ 695.564817][T12634] bridge0: port 1(bridge_slave_0) entered disabled state [ 695.635918][T12634] bridge_slave_0: entered allmulticast mode [ 695.776189][T12634] bridge_slave_0: entered promiscuous mode [ 695.911187][ T49] tipc: Left network mode [ 695.916942][T12634] bridge0: port 2(bridge_slave_1) entered blocking state [ 695.959602][T12634] bridge0: port 2(bridge_slave_1) entered disabled state [ 695.967177][T12634] bridge_slave_1: entered allmulticast mode [ 696.029979][T12634] bridge_slave_1: entered promiscuous mode [ 696.208901][ T5778] Bluetooth: hci5: command tx timeout [ 696.365314][T12634] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 696.410627][T12634] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 696.608314][T12684] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2292'. [ 696.758020][T12634] team0: Port device team_slave_0 added [ 696.781526][ T28] kauditd_printk_skb: 303 callbacks suppressed [ 696.781544][ T28] audit: type=1326 audit(1777767720.309:4003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12679 comm="syz.4.2292" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 696.840979][T12634] team0: Port device team_slave_1 added [ 696.866771][ T28] audit: type=1326 audit(1777767720.309:4004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12679 comm="syz.4.2292" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 697.208762][ T28] audit: type=1326 audit(1777767720.309:4005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12679 comm="syz.4.2292" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f398d59cb42 code=0x7ffc0000 [ 697.605964][ T28] audit: type=1326 audit(1777767720.339:4006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12679 comm="syz.4.2292" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f398d59cbd7 code=0x7ffc0000 [ 697.700287][ T28] audit: type=1326 audit(1777767720.339:4007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12679 comm="syz.4.2292" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f398d559ad1 code=0x7ffc0000 [ 697.727579][ T28] audit: type=1326 audit(1777767720.339:4008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12679 comm="syz.4.2292" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f398d59dbc9 code=0x7ffc0000 [ 697.754743][ T28] audit: type=1326 audit(1777767720.339:4009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12679 comm="syz.4.2292" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f398d559b3b code=0x7ffc0000 [ 697.783042][T12691] netlink: 'syz.0.2293': attribute type 1 has an invalid length. [ 697.791418][ T28] audit: type=1326 audit(1777767720.349:4010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12679 comm="syz.4.2292" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 697.799109][T12692] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2293'. [ 697.820589][ T28] audit: type=1326 audit(1777767720.349:4011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12679 comm="syz.4.2292" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 697.854942][ T28] audit: type=1326 audit(1777767720.359:4012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12679 comm="syz.4.2292" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7f398d55922c code=0x7ffc0000 [ 698.099363][T12634] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 698.106819][T12634] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 698.193780][T12634] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 698.294463][T12634] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 698.296528][ T5778] Bluetooth: hci5: command tx timeout [ 698.371653][T12634] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 698.438114][T12634] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 698.834994][T12634] hsr_slave_0: entered promiscuous mode [ 698.899783][T12634] hsr_slave_1: entered promiscuous mode [ 698.919138][T12634] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 699.040947][T12634] Cannot create hsr debugfs directory [ 699.953415][T12718] netlink: 'syz.1.2301': attribute type 1 has an invalid length. [ 699.965221][T12718] workqueue: Failed to create a rescuer kthread for wq "bond16": -EINTR [ 699.983632][T12719] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2301'. [ 700.368722][ T5778] Bluetooth: hci5: command tx timeout [ 700.954128][ T49] hsr_slave_0: left promiscuous mode [ 700.990592][ T49] hsr_slave_1: left promiscuous mode [ 701.019213][ T49] batman_adv: batadv0: Interface deactivated: dummy0 [ 701.033586][ T49] batman_adv: batadv0: Removing interface: dummy0 [ 701.085281][ T49] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 701.106077][ T49] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 701.137227][ T49] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 701.167751][ T49] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 701.227558][ T49] bridge_slave_1: left allmulticast mode [ 701.249314][ T49] bridge_slave_1: left promiscuous mode [ 701.264694][ T49] bridge0: port 2(bridge_slave_1) entered disabled state [ 701.275723][ T49] bridge_slave_0: left allmulticast mode [ 701.285500][ T49] bridge_slave_0: left promiscuous mode [ 701.299060][ T49] bridge0: port 1(bridge_slave_0) entered disabled state [ 701.449349][ T49] veth1_macvtap: left promiscuous mode [ 701.465375][ T49] veth0_macvtap: left promiscuous mode [ 701.516153][ T49] veth1_vlan: left promiscuous mode [ 701.540410][ T49] veth0_vlan: left promiscuous mode [ 701.762736][T12761] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2309'. [ 702.400225][ T28] kauditd_printk_skb: 102 callbacks suppressed [ 702.400275][ T28] audit: type=1326 audit(1777767725.929:4115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12753 comm="syz.1.2309" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 702.616267][ T28] audit: type=1326 audit(1777767725.959:4116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12753 comm="syz.1.2309" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 702.640928][ T28] audit: type=1326 audit(1777767725.999:4117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12753 comm="syz.1.2309" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 702.666035][ T28] audit: type=1326 audit(1777767726.029:4118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12753 comm="syz.1.2309" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 702.666085][ T28] audit: type=1326 audit(1777767726.029:4119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12753 comm="syz.1.2309" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 702.666129][ T28] audit: type=1326 audit(1777767726.049:4120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12753 comm="syz.1.2309" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 702.666182][ T28] audit: type=1326 audit(1777767726.049:4121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12753 comm="syz.1.2309" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 702.666224][ T28] audit: type=1326 audit(1777767726.069:4122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12753 comm="syz.1.2309" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 702.666272][ T28] audit: type=1326 audit(1777767726.119:4123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12753 comm="syz.1.2309" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 702.666315][ T28] audit: type=1326 audit(1777767726.139:4124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12753 comm="syz.1.2309" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 702.707324][ C1] vkms_vblank_simulate: vblank timer overrun [ 702.909032][ T49] bond10 (unregistering): Released all slaves [ 702.932782][ T49] bond9 (unregistering): Released all slaves [ 702.993915][ C1] vkms_vblank_simulate: vblank timer overrun [ 703.043664][ C1] vkms_vblank_simulate: vblank timer overrun [ 703.222873][ T49] bond8 (unregistering): Released all slaves [ 703.286667][ T49] bond7 (unregistering): Released all slaves [ 703.348278][ T49] bond6 (unregistering): Released all slaves [ 703.485265][ T49] bond5 (unregistering): (slave vcan0): Releasing backup interface [ 703.544978][ T49] bond5 (unregistering): Released all slaves [ 703.565009][ T49] bond4 (unregistering): Released all slaves [ 703.607601][ T49] bond3 (unregistering): Released all slaves [ 703.654147][ T49] bond2 (unregistering): Released all slaves [ 703.694284][ T49] bond1 (unregistering): (slave geneve2): Releasing active interface [ 703.717821][ T49] bond1 (unregistering): Released all slaves [ 704.237792][T12774] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null. [ 704.249067][T12774] overlayfs: missing 'lowerdir' [ 705.326160][ T49] team0 (unregistering): Port device team_slave_1 removed [ 705.443935][ T49] team0 (unregistering): Port device team_slave_0 removed [ 705.573907][ T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 705.685538][ T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 706.297154][ T49] bond0 (unregistering): Released all slaves [ 706.437702][T12762] netlink: 'syz.0.2310': attribute type 1 has an invalid length. [ 706.483873][T12763] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2310'. [ 708.201939][T12800] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2320'. [ 708.454121][ T28] kauditd_printk_skb: 93 callbacks suppressed [ 708.454137][ T28] audit: type=1326 audit(1777767731.979:4218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12792 comm="syz.4.2320" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 708.562394][ T28] audit: type=1326 audit(1777767732.019:4219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12792 comm="syz.4.2320" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 708.674655][ T28] audit: type=1326 audit(1777767732.019:4220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12792 comm="syz.4.2320" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 708.750824][ T28] audit: type=1326 audit(1777767732.019:4221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12792 comm="syz.4.2320" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 708.878542][ T28] audit: type=1326 audit(1777767732.019:4222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12792 comm="syz.4.2320" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 708.965881][ T28] audit: type=1326 audit(1777767732.019:4223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12792 comm="syz.4.2320" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 709.071629][ T28] audit: type=1326 audit(1777767732.019:4224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12792 comm="syz.4.2320" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 709.119068][T12634] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 709.138183][ T28] audit: type=1326 audit(1777767732.019:4225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12792 comm="syz.4.2320" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 709.167053][T12634] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 709.193908][T12634] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 709.221684][ T28] audit: type=1326 audit(1777767732.019:4226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12792 comm="syz.4.2320" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 709.270147][T12634] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 709.338814][ T28] audit: type=1326 audit(1777767732.019:4227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12792 comm="syz.4.2320" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 709.574728][T12634] 8021q: adding VLAN 0 to HW filter on device bond0 [ 709.669610][T12634] 8021q: adding VLAN 0 to HW filter on device team0 [ 709.776380][ T2924] bridge0: port 1(bridge_slave_0) entered blocking state [ 709.784084][ T2924] bridge0: port 1(bridge_slave_0) entered forwarding state [ 709.847589][ T2924] bridge0: port 2(bridge_slave_1) entered blocking state [ 709.854946][ T2924] bridge0: port 2(bridge_slave_1) entered forwarding state [ 709.898795][T10187] block nbd3: Possible stuck request ffff888022978000: control (read@0,1024B). Runtime 120 seconds [ 709.909675][T10187] block nbd3: Possible stuck request ffff888022978200: control (read@1024,1024B). Runtime 120 seconds [ 709.939590][T10187] block nbd3: Possible stuck request ffff888022978400: control (read@2048,1024B). Runtime 120 seconds [ 709.977555][T10187] block nbd3: Possible stuck request ffff888022978600: control (read@3072,1024B). Runtime 120 seconds [ 710.722982][T12634] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 710.914608][T12634] veth0_vlan: entered promiscuous mode [ 710.975662][T12634] veth1_vlan: entered promiscuous mode [ 711.086222][T12634] veth0_macvtap: entered promiscuous mode [ 711.179584][T12634] veth1_macvtap: entered promiscuous mode [ 711.242053][T12634] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 711.289482][T12634] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 711.326704][T12634] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 711.357129][T12634] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 711.388733][T12634] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 711.418891][T12634] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 711.454581][T12634] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 711.502945][T12634] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 711.588568][T12634] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 711.619995][T12634] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 711.697969][T12634] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 711.737015][T12870] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2339'. [ 711.737829][T12634] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 711.771673][T12634] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 711.792893][T12634] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 711.845336][T12634] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 711.867090][T12634] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 711.917926][T12634] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 711.935094][T12634] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 712.213762][T12876] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2341'. [ 712.345588][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 712.363279][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 712.478768][ T1092] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 712.515206][ T1092] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 712.926194][T12887] netlink: 'syz.0.2343': attribute type 2 has an invalid length. [ 714.059435][T12896] netlink: 165 bytes leftover after parsing attributes in process `syz.2.2345'. [ 715.138325][ T28] kauditd_printk_skb: 209 callbacks suppressed [ 715.138344][ T28] audit: type=1326 audit(1777767738.659:4437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12922 comm="syz.1.2355" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x0 [ 715.691931][T12937] 9pnet_fd: Insufficient options for proto=fd [ 715.791812][ T28] audit: type=1326 audit(1777767739.319:4438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12945 comm="syz.4.2364" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x0 [ 716.030215][T12958] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2366'. [ 716.174516][ T28] audit: type=1326 audit(1777767739.699:4439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12949 comm="syz.1.2366" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 716.312094][ T28] audit: type=1326 audit(1777767739.729:4440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12949 comm="syz.1.2366" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 716.312150][ T28] audit: type=1326 audit(1777767739.729:4441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12949 comm="syz.1.2366" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 716.312195][ T28] audit: type=1326 audit(1777767739.729:4442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12949 comm="syz.1.2366" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 716.312240][ T28] audit: type=1326 audit(1777767739.749:4443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12949 comm="syz.1.2366" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 716.312284][ T28] audit: type=1326 audit(1777767739.749:4444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12949 comm="syz.1.2366" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 716.312326][ T28] audit: type=1326 audit(1777767739.749:4445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12949 comm="syz.1.2366" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 716.312370][ T28] audit: type=1326 audit(1777767739.749:4446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12949 comm="syz.1.2366" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 717.601440][T12985] 9pnet_fd: Insufficient options for proto=fd [ 720.989845][ T5138] udevd[5138]: worker [10897] /devices/virtual/block/nbd3 is taking a long time [ 723.886490][T13068] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2400'. [ 724.239246][ T5814] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 724.474224][ T5814] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 724.474377][ T5814] usb 5-1: config 0 has no interfaces? [ 724.474560][ T5814] usb 5-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 724.474928][ T5814] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 724.505193][ T5814] usb 5-1: config 0 descriptor?? [ 724.787435][ T8] usb 5-1: USB disconnect, device number 6 [ 724.804073][ T28] kauditd_printk_skb: 125 callbacks suppressed [ 724.804091][ T28] audit: type=1326 audit(1777767748.329:4572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13060 comm="syz.1.2400" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 724.804239][ T28] audit: type=1326 audit(1777767748.329:4573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13060 comm="syz.1.2400" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 724.805676][T13079] netlink: 'syz.0.2403': attribute type 2 has an invalid length. [ 724.806649][ T28] audit: type=1326 audit(1777767748.329:4574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13060 comm="syz.1.2400" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 724.932742][ T28] audit: type=1326 audit(1777767748.379:4575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13060 comm="syz.1.2400" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 724.932796][ T28] audit: type=1326 audit(1777767748.409:4576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13060 comm="syz.1.2400" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 724.932841][ T28] audit: type=1326 audit(1777767748.409:4577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13060 comm="syz.1.2400" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 724.932886][ T28] audit: type=1326 audit(1777767748.409:4578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13060 comm="syz.1.2400" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f374f75d60e code=0x7ffc0000 [ 724.932931][ T28] audit: type=1326 audit(1777767748.409:4579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13060 comm="syz.1.2400" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 724.932976][ T28] audit: type=1326 audit(1777767748.409:4580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13060 comm="syz.1.2400" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 724.933020][ T28] audit: type=1326 audit(1777767748.409:4581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13060 comm="syz.1.2400" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 724.944111][T13087] 9pnet_fd: Insufficient options for proto=fd [ 728.000158][T13127] 9pnet_fd: Insufficient options for proto=fd [ 728.139344][T13132] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2414'. [ 728.197286][T13134] netlink: 'syz.0.2415': attribute type 2 has an invalid length. [ 729.407947][T13165] 9pnet_fd: Insufficient options for proto=fd [ 729.717702][T13175] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2425'. [ 729.810674][ T28] kauditd_printk_skb: 53 callbacks suppressed [ 729.810691][ T28] audit: type=1326 audit(1777767753.339:4635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13169 comm="syz.1.2425" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 729.898877][ T28] audit: type=1326 audit(1777767753.339:4636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13169 comm="syz.1.2425" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 729.960430][ T28] audit: type=1326 audit(1777767753.339:4637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13169 comm="syz.1.2425" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 730.001930][ T28] audit: type=1326 audit(1777767753.359:4638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13169 comm="syz.1.2425" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 730.073463][ T28] audit: type=1326 audit(1777767753.359:4639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13169 comm="syz.1.2425" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 730.168961][ T28] audit: type=1326 audit(1777767753.359:4640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13169 comm="syz.1.2425" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 730.268101][ T28] audit: type=1326 audit(1777767753.359:4641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13169 comm="syz.1.2425" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 730.338584][ T28] audit: type=1326 audit(1777767753.359:4642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13169 comm="syz.1.2425" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 730.368797][ T28] audit: type=1326 audit(1777767753.359:4643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13169 comm="syz.1.2425" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 730.395228][ T28] audit: type=1326 audit(1777767753.359:4644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13169 comm="syz.1.2425" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f374f79cdd9 code=0x7ffc0000 [ 732.698651][ T8] usb 3-1: new full-speed USB device number 17 using dummy_hcd [ 732.820107][T13230] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2441'. [ 732.906430][ T8] usb 3-1: unable to get BOS descriptor or descriptor too short [ 732.915368][ T8] usb 3-1: not running at top speed; connect to a high speed hub [ 732.936918][ T8] usb 3-1: config 128 has an invalid interface number: 175 but max is 0 [ 733.649878][ T5814] IPVS: starting estimator thread 0... [ 733.750838][T13239] IPVS: using max 15 ests per chain, 36000 per kthread [ 733.774863][ T8] usb 3-1: config 128 has no interface number 0 [ 733.792757][ T8] usb 3-1: config 128 interface 175 has no altsetting 0 [ 733.802854][ T8] usb 3-1: New USB device found, idVendor=1b80, idProduct=e346, bcdDevice=39.9d [ 733.818414][ T8] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 733.826578][ T8] usb 3-1: Product: syz [ 733.832984][ T8] usb 3-1: Manufacturer: syz [ 733.837657][ T8] usb 3-1: SerialNumber: syz [ 734.508605][ T8] usb 3-1: USB disconnect, device number 17 [ 734.691850][T13250] Bluetooth: hci0: invalid length 0, exp 2 for type 0 [ 734.840100][T13254] syzkaller0: entered promiscuous mode [ 734.845761][T13254] syzkaller0: entered allmulticast mode [ 735.631599][T13270] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2457'. [ 736.694198][T13278] Bluetooth: hci0: invalid length 0, exp 2 for type 0 [ 737.046932][T13288] syzkaller0: entered promiscuous mode [ 737.068493][T13288] syzkaller0: entered allmulticast mode [ 737.285288][T13297] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2466'. [ 737.405894][T13298] bridge0: entered promiscuous mode [ 737.416586][T13298] macvlan5: entered promiscuous mode [ 737.426307][ T28] kauditd_printk_skb: 215 callbacks suppressed [ 737.426324][ T28] audit: type=1326 audit(1777767760.949:4860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13291 comm="syz.0.2466" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1469d9cdd9 code=0x7ffc0000 [ 737.492775][ T28] audit: type=1326 audit(1777767760.989:4861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13291 comm="syz.0.2466" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1469d9cdd9 code=0x7ffc0000 [ 737.569478][ T28] audit: type=1326 audit(1777767760.989:4862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13291 comm="syz.0.2466" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1469d9cdd9 code=0x7ffc0000 [ 737.625844][ T8] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 737.633278][T13303] Bluetooth: hci0: invalid length 0, exp 2 for type 0 [ 737.641213][ T28] audit: type=1326 audit(1777767761.009:4863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13291 comm="syz.0.2466" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1469d9cdd9 code=0x7ffc0000 [ 737.674139][ T28] audit: type=1326 audit(1777767761.009:4864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13291 comm="syz.0.2466" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7f1469d9cdd9 code=0x7ffc0000 [ 737.732729][ T28] audit: type=1326 audit(1777767761.009:4865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13291 comm="syz.0.2466" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1469d9cdd9 code=0x7ffc0000 [ 737.785743][ T28] audit: type=1326 audit(1777767761.009:4866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13291 comm="syz.0.2466" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1469d9cdd9 code=0x7ffc0000 [ 737.848474][ T8] usb 5-1: Using ep0 maxpacket: 8 [ 737.856005][ T8] usb 5-1: config index 0 descriptor too short (expected 301, got 45) [ 737.866260][ T28] audit: type=1326 audit(1777767761.009:4867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13291 comm="syz.0.2466" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1469d9cdd9 code=0x7ffc0000 [ 737.888771][ T8] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 737.929530][ T8] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 737.934210][ T28] audit: type=1326 audit(1777767761.009:4868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13291 comm="syz.0.2466" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f1469d9cdd9 code=0x7ffc0000 [ 737.952290][ T8] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 738.008056][ T28] audit: type=1326 audit(1777767761.009:4869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13291 comm="syz.0.2466" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1469d9cdd9 code=0x7ffc0000 [ 738.050290][ T8] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 738.082036][ T8] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 738.108456][ T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 738.338855][ T8] usb 5-1: usb_control_msg returned -32 [ 738.344556][ T8] usbtmc 5-1:16.0: can't read capabilities [ 738.660102][T13321] syzkaller0: entered promiscuous mode [ 738.665916][T13321] syzkaller0: entered allmulticast mode [ 738.713746][T13322] usbtmc 5-1:16.0: usb_control_msg returned -32 [ 738.728690][ T23] usb 5-1: USB disconnect, device number 7 [ 738.859237][T13327] Bluetooth: hci0: unsupported parameter 255 [ 738.870408][T13327] Bluetooth: hci0: invalid length 0, exp 2 for type 0 [ 740.905914][T10187] block nbd3: Possible stuck request ffff888022978000: control (read@0,1024B). Runtime 150 seconds [ 740.916903][T10187] block nbd3: Possible stuck request ffff888022978200: control (read@1024,1024B). Runtime 150 seconds [ 740.928249][T10187] block nbd3: Possible stuck request ffff888022978400: control (read@2048,1024B). Runtime 150 seconds [ 740.939619][T10187] block nbd3: Possible stuck request ffff888022978600: control (read@3072,1024B). Runtime 150 seconds [ 741.003247][T13347] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2485'. [ 741.552776][T13352] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2489'. [ 741.652739][T13352] bond1: entered promiscuous mode [ 741.837926][T11698] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 741.851625][T11698] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 741.875978][T11698] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 741.892753][T11698] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 741.907491][T11698] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 741.916648][T11698] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 742.373290][T13358] chnl_net:caif_netlink_parms(): no params data found [ 742.684053][ T11] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 742.748931][T13375] syzkaller0: entered promiscuous mode [ 742.754495][T13375] syzkaller0: entered allmulticast mode [ 742.863654][ T11] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 744.071964][T11698] Bluetooth: hci3: command tx timeout [ 744.156549][ T11] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 744.194813][T13387] net_ratelimit: 10 callbacks suppressed [ 744.194826][T13387] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 744.259579][T13358] bridge0: port 1(bridge_slave_0) entered blocking state [ 744.266788][T13358] bridge0: port 1(bridge_slave_0) entered disabled state [ 744.296703][T13358] bridge_slave_0: entered allmulticast mode [ 744.308972][T13358] bridge_slave_0: entered promiscuous mode [ 744.338702][T13358] bridge0: port 2(bridge_slave_1) entered blocking state [ 744.346033][T13358] bridge0: port 2(bridge_slave_1) entered disabled state [ 744.369056][T13358] bridge_slave_1: entered allmulticast mode [ 744.399715][T13358] bridge_slave_1: entered promiscuous mode [ 744.454472][ T11] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 744.593153][T13358] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 744.834930][T13358] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 745.407734][T13358] team0: Port device team_slave_0 added [ 745.434683][T13358] team0: Port device team_slave_1 added [ 745.609198][T13358] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 745.616397][T13358] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 745.685166][T13358] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 745.709753][T13423] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2505'. [ 745.737755][ T28] kauditd_printk_skb: 198 callbacks suppressed [ 745.737772][ T28] audit: type=1326 audit(1777767769.259:5068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13412 comm="syz.0.2505" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1469d9cdd9 code=0x7ffc0000 [ 745.752676][T13358] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 745.801996][T13358] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 745.819760][ T28] audit: type=1326 audit(1777767769.299:5069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13412 comm="syz.0.2505" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1469d9cdd9 code=0x7ffc0000 [ 745.835755][T13358] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 745.887382][ T28] audit: type=1326 audit(1777767769.299:5070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13412 comm="syz.0.2505" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1469d9cdd9 code=0x7ffc0000 [ 745.887437][ T28] audit: type=1326 audit(1777767769.309:5071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13412 comm="syz.0.2505" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7f1469d9cdd9 code=0x7ffc0000 [ 745.887483][ T28] audit: type=1326 audit(1777767769.309:5072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13412 comm="syz.0.2505" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1469d9cdd9 code=0x7ffc0000 [ 745.887526][ T28] audit: type=1326 audit(1777767769.309:5073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13412 comm="syz.0.2505" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1469d9cdd9 code=0x7ffc0000 [ 745.887571][ T28] audit: type=1326 audit(1777767769.309:5074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13412 comm="syz.0.2505" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1469d9cdd9 code=0x7ffc0000 [ 745.887619][ T28] audit: type=1326 audit(1777767769.379:5075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13412 comm="syz.0.2505" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f1469d9cb42 code=0x7ffc0000 [ 745.887662][ T28] audit: type=1326 audit(1777767769.379:5076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13412 comm="syz.0.2505" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f1469d9cb42 code=0x7ffc0000 [ 745.887705][ T28] audit: type=1326 audit(1777767769.399:5077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13412 comm="syz.0.2505" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1469d9cdd9 code=0x7ffc0000 [ 746.044541][T13428] syzkaller0: entered promiscuous mode [ 746.044568][T13428] syzkaller0: entered allmulticast mode [ 746.141363][T11698] Bluetooth: hci3: command tx timeout [ 746.407284][ T11] tipc: Left network mode [ 746.740223][T13358] hsr_slave_0: entered promiscuous mode [ 746.743058][T13358] hsr_slave_1: entered promiscuous mode [ 746.750148][T13358] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 746.750226][T13358] Cannot create hsr debugfs directory [ 747.653134][ T1292] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.653235][ T1292] ieee802154 phy1 wpan1: encryption failed: -22 [ 747.820893][T13452] netlink: 'syz.2.2514': attribute type 4 has an invalid length. [ 747.861565][T13454] netlink: 'syz.2.2514': attribute type 4 has an invalid length. [ 747.944576][T13450] kvm: kvm [13447]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111 [ 747.960071][T13450] kvm_intel: kvm [13447]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0xad62 [ 747.991286][T13450] kvm: kvm [13447]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111 [ 748.035626][T13450] kvm: kvm [13447]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0xff66 [ 748.035728][T13450] kvm: kvm [13447]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111 [ 748.080219][T13450] kvm: kvm [13447]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111 [ 748.086736][T13450] kvm: kvm [13447]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0xc0000e6 [ 748.136628][T13450] kvm: kvm [13447]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111 [ 748.216332][T11698] Bluetooth: hci3: command tx timeout [ 748.708879][T13468] syzkaller0: entered promiscuous mode [ 748.714431][T13468] syzkaller0: entered allmulticast mode [ 749.725919][ T11] hsr_slave_0: left promiscuous mode [ 749.755698][ T11] hsr_slave_1: left promiscuous mode [ 749.821299][ T11] bridge0: left promiscuous mode [ 749.842203][ T11] veth1_macvtap: left promiscuous mode [ 749.847830][ T11] veth0_macvtap: left promiscuous mode [ 749.860737][ T11] veth1_vlan: left promiscuous mode [ 749.866626][ T11] veth0_vlan: left promiscuous mode [ 750.133681][T13494] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2524'. [ 750.288695][T11698] Bluetooth: hci3: command tx timeout [ 751.097487][ T28] kauditd_printk_skb: 104 callbacks suppressed [ 751.097502][ T28] audit: type=1326 audit(1777767774.619:5182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13489 comm="syz.4.2524" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 751.097732][ T28] audit: type=1326 audit(1777767774.619:5183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13489 comm="syz.4.2524" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 751.141800][ T28] audit: type=1326 audit(1777767774.669:5184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13489 comm="syz.4.2524" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 751.142142][ T28] audit: type=1326 audit(1777767774.669:5185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13489 comm="syz.4.2524" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 751.143187][ T28] audit: type=1326 audit(1777767774.669:5186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13489 comm="syz.4.2524" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f398d55d60e code=0x7ffc0000 [ 751.144560][ T28] audit: type=1326 audit(1777767774.669:5187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13489 comm="syz.4.2524" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f398d59e0d7 code=0x7ffc0000 [ 751.145328][ T28] audit: type=1326 audit(1777767774.669:5188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13489 comm="syz.4.2524" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 751.145765][ T28] audit: type=1326 audit(1777767774.669:5189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13489 comm="syz.4.2524" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f398d59e0d7 code=0x7ffc0000 [ 751.146343][ T28] audit: type=1326 audit(1777767774.669:5190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13489 comm="syz.4.2524" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f398d55d60e code=0x7ffc0000 [ 751.146706][ T28] audit: type=1326 audit(1777767774.669:5191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13489 comm="syz.4.2524" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398d59cdd9 code=0x7ffc0000 [ 751.199554][ T11] bond15 (unregistering): Released all slaves [ 751.221775][ T11] bond14 (unregistering): Released all slaves [ 751.242649][ T11] bond13 (unregistering): Released all slaves [ 751.275572][ T11] bond12 (unregistering): Released all slaves [ 751.519046][ T11] bond11 (unregistering): Released all slaves [ 751.564217][ T11] bond10 (unregistering): Released all slaves [ 751.611763][ T11] bond9 (unregistering): Released all slaves [ 751.636145][ T11] bond8 (unregistering): Released all slaves [ 751.661256][ T11] bond7 (unregistering): Released all slaves [ 751.699585][ T11] bond6 (unregistering): Released all slaves [ 751.745047][ T11] bond5 (unregistering): Released all slaves [ 751.783898][ T11] bond4 (unregistering): Released all slaves [ 751.838009][ T11] bond3 (unregistering): Released all slaves [ 751.883597][ T11] bond2 (unregistering): Released all slaves [ 752.177723][ T11] bond1 (unregistering): Released all slaves [ 753.604407][ T11] bond0 (unregistering): Released all slaves [ 754.164327][T13358] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 754.252121][T13358] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 754.304874][T13358] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 754.360098][T13358] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 754.470057][T13545] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2534'. [ 754.859902][T11698] Bluetooth: hci4: command 0x0406 tx timeout [ 755.274556][T13358] 8021q: adding VLAN 0 to HW filter on device bond0 [ 755.342723][T13358] 8021q: adding VLAN 0 to HW filter on device team0 [ 755.427605][ T1092] bridge0: port 1(bridge_slave_0) entered blocking state [ 755.434975][ T1092] bridge0: port 1(bridge_slave_0) entered forwarding state [ 755.511402][ T6012] bridge0: port 2(bridge_slave_1) entered blocking state [ 755.511561][ T6012] bridge0: port 2(bridge_slave_1) entered forwarding state [ 756.950714][T13569] syzkaller0: entered promiscuous mode [ 756.970807][T13573] loop8: detected capacity change from 0 to 7 [ 756.977709][T13569] syzkaller0: entered allmulticast mode [ 757.032054][T11095] Dev loop8: unable to read RDB block 7 [ 757.054457][T11095] loop8: unable to read partition table [ 757.076717][T11095] loop8: partition table beyond EOD, truncated [ 757.112900][T13573] Dev loop8: unable to read RDB block 7 [ 757.134327][T13573] loop8: unable to read partition table [ 757.154734][T13573] loop8: partition table beyond EOD, truncated [ 757.182021][T13573] loop_reread_partitions: partition scan of loop8 (被x^> ) failed (rc=-5) [ 757.342614][T13358] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 757.521424][T13358] veth0_vlan: entered promiscuous mode [ 757.560994][T13358] veth1_vlan: entered promiscuous mode [ 757.633803][T13581] 9pnet: Could not find request transport: fd0x0000000000000003 [ 757.641471][T13358] veth0_macvtap: entered promiscuous mode [ 757.648557][ T5778] Bluetooth: hci3: command tx timeout [ 757.681152][T13358] veth1_macvtap: entered promiscuous mode [ 757.721457][T13358] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 757.735807][T13358] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 757.748670][T13358] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 757.759308][T13358] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 757.770125][T13358] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 757.786588][T13358] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 757.797398][T13358] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 757.808104][T13358] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 757.827864][T13358] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 757.857403][T13358] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 757.878021][T13358] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 757.898668][T13358] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 757.918051][T13593] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2549'. [ 757.927441][ T9853] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 757.933625][T13358] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 757.935581][T13593] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2549'. [ 757.957193][T13358] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 757.974131][T13358] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 757.988687][T13358] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 758.001881][T13358] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 758.033972][T13358] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 758.067725][T13358] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 758.077299][T13358] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 758.092731][T13358] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 758.103092][T13358] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 758.112323][ T9853] usb 5-1: device descriptor read/64, error -71 [ 758.390861][ T9853] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 758.764255][ T9853] usb 5-1: device descriptor read/64, error -71 [ 758.877645][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 758.893730][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 758.923309][ T9853] usb usb5-port1: attempt power cycle [ 758.964738][ T6012] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 758.981927][ T6012] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 759.034498][T13600] syzkaller0: entered promiscuous mode [ 759.043623][T13600] syzkaller0: entered allmulticast mode [ 759.348588][ T9853] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 759.413486][ T9853] usb 5-1: device descriptor read/8, error -71 [ 759.576097][T13609] 9pnet: Could not find request transport: fd0x0000000000000003 [ 759.702164][ T9853] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 759.756937][ T9853] usb 5-1: device descriptor read/8, error -71 [ 759.900759][ T9853] usb usb5-port1: unable to enumerate USB device [ 760.761461][T13624] batman_adv: batadv0: Adding interface: dummy0 [ 760.768023][T13624] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 760.794322][T13624] batman_adv: batadv0: Interface activated: dummy0 [ 760.820689][T13624] batadv0: mtu less than device minimum [ 760.827491][T13624] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 760.839161][T13624] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 760.851124][T13624] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 760.862717][T13624] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 760.874297][T13624] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 760.886068][T13624] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 760.897878][T13624] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 760.909581][T13624] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 760.921405][T13624] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 761.008801][ T23] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 761.141408][T13631] syzkaller0: entered promiscuous mode [ 761.146997][T13631] syzkaller0: entered allmulticast mode [ 761.213265][ T23] usb 1-1: New USB device found, idVendor=2c42, idProduct=1709, bcdDevice=ca.b7 [ 761.224047][ T23] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 761.232805][ T23] usb 1-1: Product: syz [ 761.256318][ T23] usb 1-1: Manufacturer: syz [ 761.264255][ T23] usb 1-1: SerialNumber: syz [ 761.283024][ T23] usb 1-1: config 0 descriptor?? [ 761.523744][ T23] usb 1-1: f81604_read: reg: 105 failed: -EPROTO [ 761.544306][ T23] f81604 1-1:0.0: Setting termination of CH#0 failed: -EPROTO [ 761.587690][ T23] f81604: probe of 1-1:0.0 failed with error -71 [ 761.632918][ T23] usb 1-1: USB disconnect, device number 12 [ 761.958554][ T788] usb 3-1: new high-speed USB device number 18 using dummy_hcd [ 762.128919][ T788] usb 3-1: device descriptor read/64, error -71 [ 762.148512][ T968] usb 2-1: new high-speed USB device number 21 using dummy_hcd [ 763.278466][ T788] usb 3-1: new high-speed USB device number 19 using dummy_hcd [ 764.984216][ T788] usb 3-1: device descriptor read/64, error -71 [ 765.149749][ T788] usb usb3-port1: attempt power cycle [ 767.889462][T13671] tipc: Started in network mode [ 767.901184][T13671] tipc: Node identity 76c864db3e36, cluster identity 4711 [ 767.911818][T13671] tipc: Enabled bearer , priority 0 [ 767.922621][T13671] syzkaller0: entered promiscuous mode [ 767.928174][T13671] syzkaller0: entered allmulticast mode [ 767.928815][ T9853] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 767.994348][T13671] tipc: Resetting bearer [ 768.027454][T13670] tipc: Resetting bearer [ 768.089488][T13670] tipc: Disabling bearer [ 768.153841][ T9853] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 768.184706][ T9853] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 768.249051][ T9853] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 768.278904][ T9853] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 768.312562][ T9853] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 768.333957][ T9853] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 768.350455][ T9853] usb 1-1: Product: syz [ 768.360227][ T9853] usb 1-1: Manufacturer: syz [ 768.379915][ T9853] cdc_wdm 1-1:1.0: skipping garbage [ 768.388946][ T9853] cdc_wdm 1-1:1.0: skipping garbage [ 768.409410][ T9853] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device [ 768.422297][ T9853] cdc_wdm 1-1:1.0: Unknown control protocol [ 768.638665][ T968] usb 2-1: new high-speed USB device number 22 using dummy_hcd [ 768.788607][ T968] usb 2-1: device descriptor read/64, error -71 [ 768.953908][ C0] cdc_wdm 1-1:1.0: Unexpected error -71 [ 768.961438][ C0] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 768.968745][ C0] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 768.975436][ C0] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 768.982089][ C0] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 768.988538][ C0] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 768.995181][ C0] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 769.001716][ C0] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 769.008399][ C0] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 769.016523][ C0] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 769.023263][ C0] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 769.030365][ C0] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 769.037090][ C0] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 769.044008][ C0] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 769.050749][ C0] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 769.057379][ C0] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 769.064044][ C0] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 769.070571][ C0] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 769.077281][ C0] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 769.083673][ C0] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 769.084163][ T968] usb 2-1: new high-speed USB device number 23 using dummy_hcd [ 769.090460][ C0] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 769.091469][ T9853] usb 1-1: USB disconnect, device number 13 [ 769.091525][ C0] cdc_wdm 1-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19 [ 769.268755][ T968] usb 2-1: device descriptor read/64, error -71 [ 769.389102][ T968] usb usb2-port1: attempt power cycle [ 769.589621][T13684] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 769.828519][ T968] usb 2-1: new high-speed USB device number 24 using dummy_hcd [ 769.869332][ T968] usb 2-1: device descriptor read/8, error -71 [ 770.150248][ T968] usb 2-1: new high-speed USB device number 25 using dummy_hcd [ 770.154590][T13694] netlink: 'syz.4.2585': attribute type 2 has an invalid length. [ 770.198285][ T968] usb 2-1: device descriptor read/8, error -71 [ 770.398776][ T968] usb usb2-port1: unable to enumerate USB device [ 771.649592][T10187] block nbd3: Possible stuck request ffff888022978000: control (read@0,1024B). Runtime 180 seconds [ 772.864218][T10187] block nbd3: Possible stuck request ffff888022978200: control (read@1024,1024B). Runtime 180 seconds [ 772.878430][T10187] block nbd3: Possible stuck request ffff888022978400: control (read@2048,1024B). Runtime 180 seconds [ 772.889542][T10187] block nbd3: Possible stuck request ffff888022978600: control (read@3072,1024B). Runtime 180 seconds [ 773.251091][ T29] INFO: task syz.3.1958:11696 blocked for more than 143 seconds. [ 773.926751][ T29] Not tainted syzkaller #0 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 774.114975][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 775.022849][ T29] task:syz.3.1958 state:D stack:27880 pid:11696 ppid:5780 flags:0x00004004 [ 775.174560][ T29] Call Trace: [ 775.181016][ T29] [ 775.209286][ T29] __schedule+0x1553/0x45a0 [ 775.337311][ T29] ? asan.module_dtor+0x20/0x20 [ 775.442979][ T29] ? __mutex_lock+0x6a4/0xcc0 [ 775.447855][ T29] ? __mutex_trylock_common+0x8a/0x260 [ 775.454146][ T29] ? trace_raw_output_contention_end+0xd0/0xd0 [ 775.460652][ T29] schedule+0xbd/0x170 [ 775.464934][ T29] schedule_preempt_disabled+0x13/0x20 [ 775.470872][ T29] __mutex_lock+0x6a9/0xcc0 [ 775.475949][ T29] ? __mutex_lock+0x4f9/0xcc0 [ 775.481001][ T29] ? blkdev_get_by_dev+0x121/0x600 [ 775.486387][ T29] ? mutex_lock_nested+0x20/0x20 [ 775.491778][ T29] ? iput+0x343/0x920 [ 775.496006][ T29] ? ilookup+0x1c4/0x200 [ 775.500826][ T29] ? disk_block_events+0xa7/0x120 [ 775.506041][ T29] ? blkdev_get_by_dev+0x101/0x600 [ 775.511522][ T29] blkdev_get_by_dev+0x121/0x600 [ 775.516737][ T29] bdev_open_by_dev+0x77/0x100 [ 775.521816][ T29] setup_bdev_super+0x59/0x660 [ 775.527000][ T29] mount_bdev+0x1d3/0x2d0 [ 775.531600][ T29] ? vxfs_mount+0x40/0x40 [ 775.536158][ T29] ? get_tree_bdev+0x520/0x520 [ 775.541156][ T29] ? vfs_parse_fs_param+0x420/0x420 [ 775.546501][ T29] legacy_get_tree+0xea/0x180 [ 775.551345][ T29] ? vxfs_getblk+0x170/0x170 [ 775.556519][ T29] vfs_get_tree+0x8c/0x280 [ 775.561170][ T29] do_new_mount+0x24b/0xa40 [ 775.565713][ T29] __se_sys_mount+0x2e7/0x3d0 [ 775.571583][ T29] ? __x64_sys_mount+0xc0/0xc0 [ 775.576484][ T29] ? lockdep_hardirqs_on+0x98/0x150 [ 775.588714][ T29] ? __x64_sys_mount+0x20/0xc0 [ 775.593683][ T29] do_syscall_64+0x55/0xa0 [ 775.598307][ T29] ? clear_bhb_loop+0x40/0x90 [ 775.614828][ T29] ? clear_bhb_loop+0x40/0x90 [ 775.619789][ T29] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 775.625788][ T29] RIP: 0033:0x7f66bad9cdd9 [ 775.630783][ T29] RSP: 002b:00007f66bbbb7028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 775.643448][ T29] RAX: ffffffffffffffda RBX: 00007f66bb016270 RCX: 00007f66bad9cdd9 [ 775.652610][ T29] RDX: 0000200000000000 RSI: 0000200000000100 RDI: 0000200000000040 [ 775.667289][ T29] RBP: 00007f66bae32d69 R08: 0000000000000000 R09: 0000000000000000 [ 775.676330][ T29] R10: 0000000001000080 R11: 0000000000000246 R12: 0000000000000000 [ 775.688287][ T29] R13: 00007f66bb016308 R14: 00007f66bb016270 R15: 00007ffe87e60b58 [ 775.697164][ T29] [ 775.744618][ T29] [ 775.744618][ T29] Showing all locks held in the system: [ 775.752628][ T29] 1 lock held by rcu_preempt/17: [ 775.767436][ T29] #0: ffff8880b8e3c018 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0xa9/0x140 [ 775.784019][ T29] 1 lock held by khungtaskd/29: [ 775.789296][ T29] #0: ffffffff8d1320e0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x290 [ 775.812284][ T29] 4 locks held by kworker/u4:2/35: [ 775.817462][ T29] #0: ffff88801a254938 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x96f/0x15d0 [ 775.868714][ T29] #1: ffffc90000abfd00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x96f/0x15d0 [ 775.879514][ T29] #2: ffffffff8e3b5a90 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x14c/0xbb0 [ 775.889538][ T29] #3: ffffffff8d137980 (rcu_state.barrier_mutex){+.+.}-{3:3}, at: rcu_barrier+0x4c/0x580 [ 775.899872][ T29] 3 locks held by kworker/1:2/968: [ 775.905016][ T29] #0: ffff888017c70938 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x96f/0x15d0 [ 775.928501][ T29] #1: ffffc900049e7d00 (free_ipc_work){+.+.}-{0:0}, at: process_scheduled_works+0x96f/0x15d0 [ 775.948015][ T29] #2: ffffffff8d137ab8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x3da/0x880 [ 775.960001][ T29] 2 locks held by getty/5526: [ 775.964730][ T29] #0: ffff888031d020a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 775.975953][ T29] #1: ffffc9000326e2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x433/0x1390 [ 775.988523][ T29] 1 lock held by udevd/10897: [ 775.993430][ T29] #0: ffff8880228cd4c8 (&disk->open_mutex){+.+.}-{3:3}, at: blkdev_get_by_dev+0x121/0x600 [ 776.003975][ T29] 1 lock held by syz.3.1958/11696: [ 776.009344][ T29] #0: ffff8880228cd4c8 (&disk->open_mutex){+.+.}-{3:3}, at: blkdev_get_by_dev+0x121/0x600 [ 776.019685][ T29] 4 locks held by syz-executor/12634: [ 776.025140][ T29] #0: ffff8880306f0e70 (&hdev->req_lock){+.+.}-{3:3}, at: hci_unregister_dev+0x212/0x500 [ 776.063264][ T29] #1: ffff8880306f00b8 (&hdev->lock){+.+.}-{3:3}, at: hci_dev_close_sync+0x5d6/0x1220 [ 776.085884][ T29] #2: ffffffff8e5307a8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_hash_flush+0xa1/0x220 [ 776.109766][ T29] #3: ffff88807e223b38 (&conn->lock#2){+.+.}-{3:3}, at: l2cap_conn_del+0x70/0x660 [ 776.127952][ T29] 2 locks held by syz.1.2588/13707: [ 776.148554][ T29] #0: ffffffff8e3b5a90 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x351/0x5e0 [ 776.158080][ T29] #1: ffffffff8d137ab8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x3da/0x880 [ 776.239418][ T29] [ 776.248674][ T29] ============================================= [ 776.248674][ T29] [ 776.299199][ T29] NMI backtrace for cpu 0 [ 776.303604][ T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted syzkaller #0 [ 776.310908][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 776.320994][ T29] Call Trace: [ 776.324307][ T29] [ 776.327247][ T29] dump_stack_lvl+0x18c/0x250 [ 776.332042][ T29] ? show_regs_print_info+0x20/0x20 [ 776.337275][ T29] ? load_image+0x420/0x420 [ 776.341867][ T29] nmi_cpu_backtrace+0x3a6/0x3e0 [ 776.346823][ T29] ? nmi_trigger_cpumask_backtrace+0x2f0/0x2f0 [ 776.353101][ T29] ? _printk+0xde/0x130 [ 776.357375][ T29] ? load_image+0x420/0x420 [ 776.361995][ T29] ? load_image+0x420/0x420 [ 776.366742][ T29] ? arch_trigger_cpumask_backtrace+0x10/0x10 [ 776.373215][ T29] nmi_trigger_cpumask_backtrace+0x17a/0x2f0 [ 776.379418][ T29] watchdog+0xf3d/0xf80 [ 776.383666][ T29] ? watchdog+0x1e1/0xf80 [ 776.388043][ T29] kthread+0x2fa/0x390 [ 776.392236][ T29] ? hungtask_pm_notify+0x90/0x90 [ 776.397311][ T29] ? kthread_blkcg+0xd0/0xd0 [ 776.401922][ T29] ret_from_fork+0x48/0x80 [ 776.406352][ T29] ? kthread_blkcg+0xd0/0xd0 [ 776.410978][ T29] ret_from_fork_asm+0x11/0x20 [ 776.415993][ T29] [ 776.419860][ T29] Sending NMI from CPU 0 to CPUs 1: [ 776.425213][ C1] NMI backtrace for cpu 1 [ 776.425224][ C1] CPU: 1 PID: 13710 Comm: syz.4.2589 Not tainted syzkaller #0 [ 776.425240][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 776.425248][ C1] RIP: 0010:debug_check_no_obj_freed+0x170/0x540 [ 776.425275][ C1] Code: 48 ba 00 00 00 00 00 fc ff df 48 89 44 24 38 80 3c 10 00 74 12 48 89 df e8 cd 08 ae fd 48 ba 00 00 00 00 00 fc ff df 48 8b 2b <48> 85 ed 0f 84 95 03 00 00 48 89 5c 24 30 4c 89 74 24 28 4c 89 7c [ 776.425287][ C1] RSP: 0018:ffffc90003df7808 EFLAGS: 00000046 [ 776.425302][ C1] RAX: 1ffffffff2e92527 RBX: ffffffff97492938 RCX: 0000000000000001 [ 776.425313][ C1] RDX: dffffc0000000000 RSI: 0000000000000004 RDI: ffffc90003df76e0 [ 776.425323][ C1] RBP: ffff88806014be00 R08: 0000000000000003 R09: 0000000000000004 [ 776.425332][ C1] R10: dffffc0000000000 R11: fffff520007beedc R12: ffffc9001a72d000 [ 776.425342][ C1] R13: ffffc9001a32d000 R14: ffffc9001a5bb000 R15: 0000000000000172 [ 776.425352][ C1] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 776.425365][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 776.425376][ C1] CR2: 000020000001a000 CR3: 000000000cf32000 CR4: 00000000003526e0 [ 776.425391][ C1] Call Trace: [ 776.425397][ C1] [ 776.425409][ C1] remove_vm_area+0x1d3/0x2f0 [ 776.425430][ C1] ? kcov_open+0x90/0x90 [ 776.425448][ C1] vfree+0x63/0x320 [ 776.425466][ C1] ? kcov_open+0x90/0x90 [ 776.425482][ C1] kcov_close+0x2b/0x50 [ 776.425498][ C1] __fput+0x234/0x970 [ 776.425517][ C1] task_work_run+0x1d4/0x260 [ 776.425537][ C1] ? task_work_cancel+0x220/0x220 [ 776.425556][ C1] ? do_exit+0x955/0x2460 [ 776.425575][ C1] ? kmem_cache_free+0xf8/0x270 [ 776.425596][ C1] do_exit+0x95a/0x2460 [ 776.425620][ C1] ? put_task_struct+0xc0/0xc0 [ 776.425641][ C1] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 776.425657][ C1] ? get_signal+0x1068/0x13f0 [ 776.425671][ C1] ? lock_chain_count+0x20/0x20 [ 776.425686][ C1] ? _raw_spin_lock_irq+0xbb/0xf0 [ 776.425705][ C1] do_group_exit+0x21b/0x2d0 [ 776.425724][ C1] ? lockdep_hardirqs_on+0x98/0x150 [ 776.425742][ C1] get_signal+0x12fc/0x13f0 [ 776.425765][ C1] arch_do_signal_or_restart+0xc2/0x800 [ 776.425786][ C1] ? fd_install+0x2d8/0x4e0 [ 776.425812][ C1] ? get_sigframe_size+0x20/0x20 [ 776.425837][ C1] ? kvm_resume+0x1e0/0x1e0 [ 776.425855][ C1] ? exit_to_user_mode_loop+0x3b/0x110 [ 776.425876][ C1] exit_to_user_mode_loop+0x70/0x110 [ 776.425895][ C1] exit_to_user_mode_prepare+0xee/0x180 [ 776.425913][ C1] syscall_exit_to_user_mode+0x1a/0x50 [ 776.425930][ C1] do_syscall_64+0x61/0xa0 [ 776.425942][ C1] ? clear_bhb_loop+0x40/0x90 [ 776.425959][ C1] ? clear_bhb_loop+0x40/0x90 [ 776.425976][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 776.425992][ C1] RIP: 0033:0x7f398d59cdd9 [ 776.426005][ C1] Code: Unable to access opcode bytes at 0x7f398d59cdaf. [ 776.426011][ C1] RSP: 002b:00007f398e37f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 776.426025][ C1] RAX: 0000000000000004 RBX: 00007f398d815fa0 RCX: 00007f398d59cdd9 [ 776.426035][ C1] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 776.426043][ C1] RBP: 00007f398d632d69 R08: 0000000000000000 R09: 0000000000000000 [ 776.426052][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 776.426061][ C1] R13: 00007f398d816038 R14: 00007f398d815fa0 R15: 00007ffd86ad4568 [ 776.426078][ C1] [ 776.849706][ T29] Kernel panic - not syncing: hung_task: blocked tasks [ 776.856686][ T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted syzkaller #0 [ 776.863895][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 776.874159][ T29] Call Trace: [ 776.877476][ T29] [ 776.880433][ T29] dump_stack_lvl+0x18c/0x250 [ 776.885151][ T29] ? show_regs_print_info+0x20/0x20 [ 776.890378][ T29] ? load_image+0x420/0x420 [ 776.895041][ T29] panic+0x2dc/0x730 [ 776.898959][ T29] ? schedule_preempt_disabled+0x20/0x20 [ 776.904627][ T29] ? bpf_jit_dump+0xd0/0xd0 [ 776.909141][ T29] ? __irq_work_queue_local+0x13a/0x3b0 [ 776.914717][ T29] ? nmi_trigger_cpumask_backtrace+0x2a4/0x2f0 [ 776.921059][ T29] watchdog+0xf7c/0xf80 [ 776.925333][ T29] ? watchdog+0x1e1/0xf80 [ 776.929771][ T29] kthread+0x2fa/0x390 [ 776.934175][ T29] ? hungtask_pm_notify+0x90/0x90 [ 776.939314][ T29] ? kthread_blkcg+0xd0/0xd0 [ 776.943927][ T29] ret_from_fork+0x48/0x80 [ 776.948482][ T29] ? kthread_blkcg+0xd0/0xd0 [ 776.953116][ T29] ret_from_fork_asm+0x11/0x20 [ 776.957910][ T29] [ 776.961589][ T29] Kernel Offset: disabled [ 776.965918][ T29] Rebooting in 86400 seconds..