last executing test programs: 10m4.248547377s ago: executing program 3 (id=331): r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0) r1 = eventfd2(0x5, 0x80801) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f00000000c0)={0x1, r1}) close(r1) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000000)={0x1}) 10m4.184145742s ago: executing program 3 (id=332): r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000040)=[0x0], 0x1}) ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, &(0x7f00000001c0)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r0, 0xc02064b9, &(0x7f00000002c0)={&(0x7f0000000240)=[0x0, 0x0], &(0x7f0000000380), 0x2, r2, 0xcccccccc}) ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000580)={0x401, 0x1, &(0x7f0000000180)=[r2], &(0x7f00000000c0)=[0x3], &(0x7f0000000640)=[r4, r3, r3], &(0x7f0000000340), 0x0, 0xffffffffffffffff}) 10m4.12341347s ago: executing program 3 (id=333): io_uring_setup(0x2937, &(0x7f00000002c0)={0x0, 0x2a68, 0x1000, 0x4000, 0x135a}) syz_open_dev$hidraw(&(0x7f0000000080), 0x7fff, 0x400) syz_usb_connect$cdc_ncm(0x5, 0x6e, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000090000082502000000000000000109025c00020100f92a0904000001020900000524060001053408fa6e0d240f0100000000000d000a0006471a010000190581"], 0x0) syz_open_dev$char_usb(0xc, 0xb4, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x4, 0x6, 0x3, 0x0, 0x0, {0x1, 0x0, 0x8}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc0}, 0x20000814) 10m2.811853956s ago: executing program 3 (id=354): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x2a05404, 0x0) mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f00000001c0)='./file0/file0\x00', &(0x7f00000004c0)='./file0\x00', 0x0, 0x2125099, 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262) 10m2.747402666s ago: executing program 3 (id=356): r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0) r1 = syz_open_dev$dri(&(0x7f0000000080), 0x40100001, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0], 0x1}) ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, &(0x7f00000002c0)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f00000005c0)={0x0, 0x0, r3, r4, 0x75, 0x7f, 0x41, 0x8, {0x0, 0x6, 0xc, 0x8, 0x4, 0x3, 0xb84, 0x857, 0x8000, 0x8, 0x1, 0x3, 0x7f, 0x5087, "51560af4a9c195548a4fb5552accb721f1823480d7813bbbda41cf95fcf9a411"}}) 10m2.62409726s ago: executing program 3 (id=357): r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) waitid(0x0, r0, 0x0, 0x41000004, 0x0) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21}, &(0x7f0000bbdffc)) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x3ed4, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) 10m2.561538485s ago: executing program 32 (id=357): r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) waitid(0x0, r0, 0x0, 0x41000004, 0x0) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21}, &(0x7f0000bbdffc)) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x3ed4, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) 8m22.971006225s ago: executing program 4 (id=2251): socket$nl_netfilter(0x10, 0x3, 0xc) socket$nl_netfilter(0x10, 0x3, 0xc) timer_settime(0x0, 0x0, 0x0, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x0, {{@in6=@dev={0xfe, 0x80, '\x00', 0x3b}, @in6=@local, 0x0, 0x0, 0x0, 0xc9c, 0xa, 0x10, 0x30, 0x0, 0x0, 0xee01}, {0x0, 0x7f, 0x7, 0x3, 0xfffffffffffffffc, 0xfffffffffffffffd, 0x5, 0xffffffffffffffff}, {0xffffffff, 0x0, 0x0, 0x5}, 0x0, 0x0, 0x1, 0x0, 0x2}}, 0xb8}, 0x1, 0x0, 0x0, 0x84811}, 0x80) syz_emit_ethernet(0x4a, &(0x7f0000000900)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a35f2", 0x14, 0x2c, 0x0, @remote, @local, {[], {{0x2f00, 0x4e23, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x10, 0xffff}}}}}}}, 0x0) 8m22.925970837s ago: executing program 4 (id=2254): sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000"], 0x7c}, 0x1, 0x0, 0x0, 0x40000000}, 0x0) r0 = syz_io_uring_setup(0x30da, &(0x7f0000000080)={0x0, 0x240e, 0x10000, 0x1, 0x2ca}, &(0x7f0000000100), &(0x7f0000000040), &(0x7f0000000000)) io_uring_register$IORING_REGISTER_BUFFERS2(r0, 0xf, &(0x7f0000001540)={0x3, 0x0, 0x0, &(0x7f0000001480)=[{0x0}, {&(0x7f0000001180)=""/237, 0xed}, {&(0x7f0000001280)=""/39, 0x27}], &(0x7f0000001500)=[0x0, 0x4, 0x3]}, 0x20) r1 = eventfd(0x26) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, &(0x7f0000000000)=r1, 0x1) io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f0000001cc0)={0x2, 0x0, &(0x7f0000001c40)=[{0x0}], 0x0, 0x1}, 0x20) 8m22.851355176s ago: executing program 4 (id=2258): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000003280)={0x73622a85, 0xa, 0x4}) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000180)=[@acquire], 0xffffffffffffff47, 0x0, 0x0}) dup3(r1, r0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0xffffffffffffff67, 0x0, 0x0}) 8m22.770217602s ago: executing program 4 (id=2260): mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) mount$bind(&(0x7f0000000280)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount(0x0, &(0x7f00000002c0)='./file0/../file0\x00', &(0x7f0000000080)='sysfs\x00', 0x0, 0x0) chroot(&(0x7f0000000580)='./file0/../file0\x00') mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000008c0)='./file0\x00', 0x0, 0x2a05004, 0x0) pivot_root(&(0x7f0000000600)='./file0\x00', &(0x7f00000001c0)='./file0/../file0\x00') 8m22.730924956s ago: executing program 4 (id=2270): r0 = memfd_create(&(0x7f0000000580)='\x103q}2\x9a\xce\xaf\x03\xdfy[\xd9\xffR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1d\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc5\x1d\xe7jDf\x87@\x8fg\x15RJw\x82\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd9DC\x9fF\x9c[M=\xe0^\xa8\xed)\xe8Z\xe8\x99&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xcb\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7g\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05', 0x0) mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0x2, 0x12, r0, 0x0) r1 = userfaultfd(0x80001) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0xc0}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f00000001c0)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1}) ioctl$UFFDIO_ZEROPAGE(r1, 0xc020aa04, &(0x7f0000000080)={{&(0x7f00003fe000/0x4000)=nil, 0x4000}}) 8m22.522635304s ago: executing program 4 (id=2268): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0x4) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4) connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4) sendmmsg$inet(r0, &(0x7f00000060c0)=[{{0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f00000007c0)='y', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f00000035c0)=[{&(0x7f0000002240)='R', 0x1}], 0x1}}], 0x2, 0x4000000) 8m22.448610216s ago: executing program 33 (id=2268): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0x4) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4) connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4) sendmmsg$inet(r0, &(0x7f00000060c0)=[{{0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f00000007c0)='y', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f00000035c0)=[{&(0x7f0000002240)='R', 0x1}], 0x1}}], 0x2, 0x4000000) 6m34.939503082s ago: executing program 0 (id=3901): r0 = socket$vsock_stream(0x28, 0x1, 0x0) bind$vsock_stream(r0, &(0x7f0000000140)={0x28, 0x0, 0x2710, @local}, 0x10) listen(r0, 0x0) r1 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r1, &(0x7f0000000080)={0x28, 0x0, 0x2710}, 0x10) r2 = accept4(r0, 0x0, 0x0, 0x0) sendmsg$TEAM_CMD_PORT_LIST_GET(r2, &(0x7f0000000240)={0x0, 0xffffff3a, &(0x7f0000000100)={&(0x7f0000003180)=ANY=[], 0x588}, 0x1, 0x0, 0x0, 0x4000004}, 0x4000) recvfrom(r1, &(0x7f0000000280)=""/50, 0x32, 0x102, 0x0, 0x0) 6m34.84043168s ago: executing program 0 (id=3903): r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0x0) fchdir(r1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0) pwrite64(r3, &(0x7f0000000100)='=', 0x1, 0x4fed3) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r2, 0x0) 6m34.812773002s ago: executing program 0 (id=3905): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) fcntl$lock(r0, 0x410, &(0x7f00000000c0)={0x1, 0x1, 0x1, 0xfffe}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) rename(&(0x7f0000000140)='./file0\x00', &(0x7f0000001900)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x1, &(0x7f0000000000)=[{0x6, 0xf, 0x0, 0x9}]}) 6m34.410685992s ago: executing program 0 (id=3913): mkdir(&(0x7f00000020c0)='./file0\x00', 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0) r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000280), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) move_mount(r1, &(0x7f0000000140)='.\x00', r0, &(0x7f0000000300)='./file0\x00', 0x41) move_mount(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', r1, &(0x7f0000000100)='./file0\x00', 0x220) 6m34.383512964s ago: executing program 0 (id=3914): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) bind$xdp(0xffffffffffffffff, &(0x7f0000000100)={0x2c, 0x2}, 0x10) sendmsg$NFT_BATCH(r2, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c0003800800014000000000080002400000000010000380140001007465616d3000000000000000000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c00038014"], 0xfc}}, 0x0) write$tun(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="000086dd0003110004000000a60c6eec00be00442c2f"], 0xfdef) 6m34.110056931s ago: executing program 0 (id=3917): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x1, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x428a4}, [@IFLA_ALT_IFNAME={0x14, 0x35, 'dummy0\x00'}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x3c}}, 0x8000) 6m34.025861875s ago: executing program 34 (id=3917): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x1, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x428a4}, [@IFLA_ALT_IFNAME={0x14, 0x35, 'dummy0\x00'}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x3c}}, 0x8000) 3.987864561s ago: executing program 2 (id=7459): socket$inet6_udp(0xa, 0x2, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) r2 = socket$inet6(0xa, 0x3, 0x5) setsockopt$inet6_IPV6_DSTOPTS(r2, 0x29, 0x3b, &(0x7f00000002c0)=ANY=[], 0x8) getsockopt$inet6_opts(r2, 0x29, 0x36, 0x0, &(0x7f0000000640)) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = syz_io_uring_setup(0xefe, &(0x7f0000000080)={0x0, 0x0, 0x1, 0x83, 0x3af}, &(0x7f0000000100)=0x0, &(0x7f0000000440)=0x0, &(0x7f0000000180)) syz_io_uring_modify_offsets$generic(r4, r5, 0x2c, 0x10000) io_uring_enter(r3, 0x2883, 0xf1bd, 0x0, 0x0, 0x0) io_uring_enter(r3, 0x7fffffe, 0x5, 0x5, 0x0, 0x0) 3.786483652s ago: executing program 5 (id=7466): timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=0x0) fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) r1 = socket$unix(0x1, 0x1, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) bind$unix(r2, &(0x7f0000000300)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) listen(r2, 0x0) connect$unix(r1, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) r3 = socket$unix(0x1, 0x1, 0x0) connect$unix(r3, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) listen(r2, 0x802) 3.080960064s ago: executing program 5 (id=7468): r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f0000000580)=ANY=[@ANYBLOB="18020000000000020000000000000000850000001700000095"], &(0x7f00000005c0)='GPL\x00'}, 0x94) r1 = socket(0x10, 0x803, 0x8) sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x2d}, 0x1, 0x0, 0x0, 0x8801}, 0x8000) r2 = socket$netlink(0x10, 0x3, 0x0) getsockname$packet(r1, &(0x7f0000000600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0xffffffffffffffba, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r3, @ANYBLOB="00001000252155b21c0012000c000100626f6e64"], 0x3c}}, 0x40000) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000001c0)={r0, r3, 0x25, 0x0, @val=@netkit={@void, @value=r0}}, 0x1c) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = socket(0x10, 0x803, 0x4) sendmsg$IPVS_CMD_SET_INFO(r5, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0) getsockname$packet(r5, &(0x7f0000000340)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x66) sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b40)=ANY=[@ANYBLOB="5800000010001fff000000008000000000000000", @ANYRES32=0x0, @ANYBLOB="00030000057e010008000a00", @ANYRES32=r6, @ANYBLOB="28001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="00400000400601000800200004020000"], 0x58}, 0x1, 0x0, 0x0, 0x2000c0c1}, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x2, {0x0, 0x0, 0x0, r3, {}, {0x0, 0x3}, {0x4, 0x9}}}, 0x24}}, 0x0) 2.453851349s ago: executing program 2 (id=7470): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)={0x5c, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x10}]}]}, 0x5c}}, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000780)=ANY=[@ANYBLOB="74000000090601020000000000000000030000000900020073797a310000000005000100070000004c0007801800018014000240fe8000000000000000000300000000aa1800148014000240fc000000000000000000000000000000060004404e1f0000050007008400000006000540"], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x0) sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000780)=ANY=[@ANYBLOB='t\x00\x00\x00\n'], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x0) r2 = socket$netlink(0x10, 0x3, 0xc) sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000500)={0x1c, 0x4, 0x6, 0x101, 0x0, 0x0, {0x7, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x80) openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x60042, 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) renameat2(r3, &(0x7f0000000180)='./file0\x00', r3, &(0x7f0000000240)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x4) syz_genetlink_get_family_id$nl802154(&(0x7f00000004c0), 0xffffffffffffffff) syz_open_dev$usbfs(&(0x7f0000000000), 0x2, 0x40) 2.448719928s ago: executing program 1 (id=7478): bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="05000000070020214200000040"], 0x50) r0 = socket(0x2c, 0x3, 0x1000) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_genetlink_get_family_id$ethtool(0x0, r0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x100000001, 0xfffffe0000000001, 0xfa11, 0x65aa}, 0x0) mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0) execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0) syz_io_uring_setup(0x3af2, &(0x7f00000000c0)={0x0, 0xa5f5, 0x80, 0x2, 0x131}, &(0x7f0000000140), &(0x7f0000000180), &(0x7f0000000000)) bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b70000001f000000bca30000000000002403000020feffff620af0fff8ffffff71a4f2ff000000001f03000000000000e5000500000000002604fdffff02000014010000033800001d13f8ff000000007a0af0ff0000001f0f14000000000000b503f7fff80000009500000000000000033bc065b78111c6dfa041b63af4a3912435f1a864a7aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168e5181554a090f300020000fe275daf51efd601b6bf01c8e8b1b526375ee4dd6fcd82e4fee5bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e65440000000000000000028610643a98d9ec21ead2ed51b104d4d91af25b845b9f7d08d123deda88c658d42ecbf28bf7076c15b463bebc72f526dd70252e79166d858fcd0e06dd31af9612fa402d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff61623604000000000000006a89adaf17b0a6041bdeebdfd1f5089048ddff6da40f9411fe7226a40409d6e37c4f46756d31cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564163427afea62d84f3a10076443d643649393bf52d2105bd901128c7e0ec82701c8204a1deeed4155617572652d950ad31928b0b036dc2869f478341d02d0f5ad94b081fcd507acb4b9c67382f13d000000225d85ae49cee383dc5049076b98fb6853ab39a21514da60d2ae20cfb91d6a49964757cdf538f9ce2bdbb9893a5de817101a3062cd54f9ff51d355d84ce97bb0c6b6a595e487a2cc47c0efbb2d71cde2c10f0bc6980fe78683ac5c0c31032599dd273863be9261eee52216d009f4c52048ef8c126aeef5f510a8f1aded94a129e4aec6e8d9ab06faffc3a15d91c2ea3e2e04cfe031b287539d0540059fe6c7fe7cd8697502c7596566d674e425da5e7f009602a9f61d3804b3e0a1053abdc31282dfb15eb6841bb64a1b3045024a982f3c48153baae244e7bf573eac34b781337ad5905c6bbf1137548c7f1a4cad2422ee965a38f7defbd2960242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a90144022a579dfc0229cc0dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc48899b212c55318294270a1ad10c80fef7c24d47afcc829ba0f85da6d888f18ea40ab959f6074ab2a40d85d1501783a7ab540b8d7b4ead35a385e0b4a26b702396df7e0c1e02b88c114f244a9bf93f04bf072f0861f5c0b000000000000eedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba3401e6a52acb11883ad2a3b1832371fe5bc621426d1ed01b389708165b9cdbae2ed9dc7358f0ebadde0b727f27feeb7464dcd857ab15e355713767c536cbae2f5c7d951680f6f2f9a6a8346962a350845ffa0d82884f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010ae20e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a532869d701723fedcbada1ee7baa19faf67256b56a41fd355b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ced301efeb6dc5f6a9037d2283c42efc54fa84323afc4c10eff462c8843187f1dd48ef0981000000000000ff0f40b1888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538c6ee6ba65893ff1f908ba7554ba583ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738612e4fee18a22da19fc08001011e32f80fb60e14b9eee094277bbc170882c8890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f62e3f753b639a924599c1f69219927ea5301fff0a6063d427180d61542c2571f983e96635600000554f327a3535e7c7542799493c31ac05a7b57f03ca91a01ba2a30ca99e969d6fd09dc28ebc15edb4d91675767999d146aef7799738b292fd64bb25b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a794963342aece449a0d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b6ef9d12096833d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e1661261173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ec035d232f89fe0120f64c62e8e3ed8bcb45202c204bbec8d722824c0ebca8db1ea4a05e41f6016ab5bbe4fe7ff5d785d0128171c90d9900ca2532b0f9d01c4b45294fbba468df3e1b393cb4e62e753b4172ba7ac1f2b51c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd849904568916694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee077515d0a881192292ffff5392ab3d1311b82432662806add87047f601fa888400000000000000000000000000006acc19808d7cf29bc974b0ea92499a41b9b9a7c2bca311a28ee4952f2d325a56397c78f12205db653a536f9f3322405d1efd78e578dc6b3fb84f3738a4b6caa800000087efa51c5d95ecba4e50e529d1e8c89600e809dc3d0a2f65579e23457949a50f2d0455cf79a43746979f99f6a1527f004f1e37a3926937e84fb478199dc1020f4beb98b8074bf7df8b5e783637da740800000000000000c55a4385e9a617aa6c8e10d4202c5afeb06e2f9115558ea12f92d7ae633d44086b3f03b20d546fa66a72e38207c9d20035abc46271a30f1240de52536941242d23896ab74a3c6670fdc49c14f34fc4eadd6db8d80eba439772bf60a1db18c472dafc5569adc282928d2a1ffe29f1a57d3f18f4edaeb5d37918e6fddcd821da67a0785585a4443440dc65600e64a6a2740000000000000000000000000000000000000000000a0009dd14b38f2f4426d7cf5075047c31f6ce6adddfe3ac649c0643c8bfbeb14ba1fd7a485aa893915cf81e29aaf375e904bbe52691a4100260ffcd8f1d04166d291ebcef893e1b9ccb6797d0646fe0e7274434f28efb43e06e64f0698caca42f4e6018a455736c482a017e2b13dac4a90faa109f0e87cc94e3efb649692456463ca74aa6ad4bf50c1acb0000000000000005375e528285544d0064b98646f3109e9a4942ce42c6e7ec84b664f6c2770803f10baa804a707f0a1fcbfc309381aeba191950bae71f37f1eb7ceeffb3c0547ac6571603adbfde4c8b5f8d7f4b854441613633b48865b65bdc415e1e0dcf672d68cf4cebf04f4bc1eebf560a26d34d3757b1450fdb0a9a69f432e277f3a0386eb2bd3305c821c64757f786b79fef54dbe64c67d73934bc80b2133fb3c04cc7ea48bf97a6243c9f95dcbddecf45f008f1822c7868e1ff5a3cff5d6b6898335792749df7b1f51e91f8c1c3b1b93b33aaa3fab69cef08a9f6f6cf39dea3d878b2ed42545421970cc426e644332bc956d1c6adefdf0ede2c5c94aa632646ae225accdf031f611d01622921f1b922a5ac887cca3136133dce8d9f5f4da7bed2ea5d94362200000000000000000000f296b0c1484e5f781ad26bff696b05ff0a5e2270e07618b04273bd4075ea38ab463bfa6a38e7c537498ba3e4df8dfc9e040000003c3ffad44d2a376def42e41e9fc31678257e040fa7cf32c221aaac08000000000000001a00000000000000000000173570f0c11ae694b0f7a4f9c2f6790044a357e785af6e153d5f1ea460af92c7cbbd6295afe740f5e154346d483e0d641ef02e4d5295d756e110522a7a945b93fb705b95b6aae27a8fb33732ce1da1c0b1af8eb9222a06e984ab1e6984c8bdc12360627137ab67b6b68ab08acb29a74dc36b51209cfbc87f61182bbeb2772e9d5a1ffc477179be481efe46a4ce86be0b1d8eee42a611a3d44ca450b14586ed63dd92005c79e4a8ab8a94f0c6cb4bed8594a39bd76d3ef8a7ab014e787596db796bd93a36c2880423291e3bccc86f66ba792ff4d87b3f80e5908779e51c5e9055fc5b23605cd000c723187ef09dcf4b07b06a9342f3f62ee7acddff292082c1f4d8eb9561f80873a09a1ae0c9af1121175e5600f43a1179484502009759264a5729f07c2b218fa36ba2316a99aaad0130df83d0bda1e711290f78c143ea143967b00adcd77e6ad5e48d839ea61aadb83e4d071c54691924a3830d3e7b5c198bb0ed623153590000000000000000004b985ea1702f34f2f85b168c083e810ed567e3f1979b9ed1a4bf6a10dac825c96a0828b335de445a4880bb6474157efd1a72ca46ae4cbe3ab648c9bc4867a5a4cb87d7d6d55475b34b3cb6aa9e2337d4e04a37e35109752522ac9b186ddd80c47da6a2f4ef7bb909c975520000000000000000000000219cf5c1376ab33786f6b856d354e90a2733f78f2d188057cead3480eade49d55b770fad7fa000d23da6275768810b6b2df91d3a991ea98d929d271696c258d5b735d5db11df434e7dd1b7c1ca05cea3977df564115f4ec6ffab1d2ff8a642ca50934b3fbe44b0abeba9df209566984a29dfc0466e439a94e177b3c4d5f6e92b8176b9d6ddeeeb196fa964217f88e1acc180aaa4"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27}, 0x48) 2.246347577s ago: executing program 5 (id=7471): r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000004ff0)={0x2, 0x4e20, @remote}, 0x10) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=0x0) fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x77359400}}, 0x0) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) gettid() ioctl$sock_SIOCADDRT(0xffffffffffffffff, 0x890b, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'ip6gretap0\x00'}) listen(r0, 0xda90) accept4(r0, 0x0, 0x0, 0x0) 2.228393951s ago: executing program 2 (id=7473): timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=0x0) fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r3 = fcntl$dupfd(r1, 0x0, r2) setsockopt$MRT6_FLUSH(r3, 0x29, 0xd4, 0x0, 0x0) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x60280, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000280)={'wlan0\x00', 0x2}) preadv(r4, &(0x7f0000000040)=[{&(0x7f00000002c0)=""/148, 0x94}], 0x1, 0x2, 0xb8) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=@newlink={0x28, 0x10, 0x1, 0x70bd25, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x48815, 0x40103}, [@IFLA_GROUP={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x40801}, 0x4000000) 2.086280608s ago: executing program 6 (id=7475): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="12000000220000000400000002"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r0}, 0x0, &(0x7f0000000140)}, 0x20) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000400)={r0, 0x0, &(0x7f00000006c0)=""/198}, 0x20) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000004000000020000000000000e020000000000000000000000000000020100000000002e"], 0x0, 0x38}, 0x28) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r2 = openat$cgroup_procs(r1, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0) write$cgroup_pid(r2, &(0x7f0000000c40), 0x12) write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200)=0x1, 0x12) mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r4 = openat$cgroup_procs(r3, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0) write$cgroup_pid(r4, &(0x7f0000000080), 0x12) 1.859450509s ago: executing program 6 (id=7476): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000380)={0x73622a85, 0x1100, 0xffeffffffffffffd}) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0}) r2 = dup3(r1, r0, 0x0) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, 0x0, &(0x7f0000000200)={0x30, 0x30, 0x30}}}], 0x0, 0x0, 0x0}) r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r4, 0x0) r5 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0) writev(r5, &(0x7f00000000c0)=[{&(0x7f0000000140)='2', 0x1}], 0x1) 1.739367537s ago: executing program 6 (id=7477): r0 = syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x0) ioctl$DRM_IOCTL_GET_CAP(r0, 0xc010640c, &(0x7f0000000000)={0x9}) r1 = socket$inet6(0xa, 0x805, 0x0) ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000000)={'veth0\x00', &(0x7f0000000080)=@ethtool_cmd={0x4e, 0x40, 0x3, 0x2, 0x6, 0x4c, 0x4, 0xb, 0x6, 0x0, 0x9, 0x10001, 0xaff0, 0xa8, 0xa8, 0x5, [0xb, 0x8]}}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000003, 0x50032, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r3 = socket$kcm(0x2, 0x1, 0x0) sendmsg$inet(r3, &(0x7f0000000fc0)={&(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811) 1.361687065s ago: executing program 1 (id=7479): r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3}}, &(0x7f00000001c0)='syzkaller\x00'}, 0x80) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', 0x0}) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000100)={r0, r2, 0x25, 0x4, @val=@netfilter={0x7, 0x0, 0x9}}, 0x20) syz_emit_ethernet(0x15, &(0x7f00000003c0)={@remote, @empty, @val={@void, {0x8100, 0x5, 0x1, 0x4}}, {@x25={0x805, {0x1, 0x6, 0xf3}}}}, 0x0) r3 = socket$inet6(0xa, 0x80002, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000240)={'veth0_to_bridge\x00', 0x0}) sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000001c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r6, {0x0, 0x5}, {0xfff1, 0xffff}, {0x4, 0x3}}}, 0x24}}, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000006c0)=@getqdisc={0x24, 0x26, 0x1, 0x70bd2c, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0x6, 0x1}, {0xb, 0xffff}, {0x3, 0x1}}}, 0x24}}, 0x20044800) r7 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'syz_tun\x00', 0x0}) sendmsg$nl_route_sched(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r8, {}, {0x0, 0xfff2}, {0xfff3}}}, 0x24}}, 0x0) 965.945519ms ago: executing program 2 (id=7480): socket$inet6_udp(0xa, 0x2, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) r2 = socket$inet6(0xa, 0x3, 0x5) setsockopt$inet6_IPV6_DSTOPTS(r2, 0x29, 0x3b, &(0x7f00000002c0)=ANY=[], 0x8) getsockopt$inet6_opts(r2, 0x29, 0x36, 0x0, &(0x7f0000000640)) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = syz_io_uring_setup(0xefe, &(0x7f0000000080)={0x0, 0x0, 0x1, 0x83, 0x3af}, &(0x7f0000000100)=0x0, &(0x7f0000000440)=0x0, &(0x7f0000000180)) syz_io_uring_modify_offsets$generic(r4, r5, 0x2c, 0x10000) io_uring_enter(r3, 0x2883, 0xf1bd, 0x0, 0x0, 0x0) io_uring_enter(r3, 0x7fffffe, 0x5, 0x5, 0x0, 0x0) 939.494606ms ago: executing program 6 (id=7481): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x2}, &(0x7f0000bbdffc)) timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, 0x0) fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) userfaultfd(0x1) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"]) chdir(&(0x7f0000000100)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0) pwritev2(r0, &(0x7f0000000980)=[{&(0x7f0000000500)="be", 0x20013}], 0x1, 0x5, 0xa, 0x14) read$qrtrtun(r0, &(0x7f0000000140)=""/127, 0x7f) ioctl$VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f00000000c0)={0x6, @pix={0x0, 0x1fffc, 0x48524742, 0x3, 0x4, 0x0, 0x5, 0x3, 0x1, 0x3, 0x0, 0x7}}) 865.19438ms ago: executing program 5 (id=7482): r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f0000000580)=ANY=[@ANYBLOB="18020000000000020000000000000000850000001700000095"], &(0x7f00000005c0)='GPL\x00'}, 0x94) r1 = socket(0x10, 0x803, 0x8) sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x2d}, 0x1, 0x0, 0x0, 0x8801}, 0x8000) r2 = socket$netlink(0x10, 0x3, 0x0) getsockname$packet(r1, &(0x7f0000000600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0xffffffffffffffba, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r3, @ANYBLOB="00001000252155b21c0012000c000100626f6e64"], 0x3c}}, 0x40000) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000001c0)={r0, r3, 0x25, 0x0, @val=@netkit={@void, @value=r0}}, 0x1c) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = socket(0x10, 0x803, 0x4) sendmsg$IPVS_CMD_SET_INFO(r5, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0) getsockname$packet(r5, &(0x7f0000000340)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x66) sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b40)=ANY=[@ANYBLOB="5800000010001fff000000008000000000000000", @ANYRES32=0x0, @ANYBLOB="00030000057e010008000a00", @ANYRES32=r6, @ANYBLOB="28001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB="00400000400601000800200004020000"], 0x58}, 0x1, 0x0, 0x0, 0x2000c0c1}, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x2, {0x0, 0x0, 0x0, r3, {}, {0x0, 0x3}, {0x4, 0x9}}}, 0x24}}, 0x0) 784.24759ms ago: executing program 1 (id=7483): landlock_create_ruleset(&(0x7f0000000000)={0x40, 0x1, 0x3}, 0x18, 0x1) r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r5, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x40000095, 0x0, 0xfffffffffffffffd}]}) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f00000000c0)={0xffffffffffffffff, 0xc8, 0x3}) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f00000000c0)={0xb}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x67c, 0x6, 0xf3b8, 0xfffffffffffffffe, 0x1000, 0x400, 0x4002004c4, 0xfffffffffffffffb, 0x0, 0x97, 0xe, 0x0, 0x3, 0x4, 0x0, 0x8], 0xeeee8000, 0x402}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 563.053742ms ago: executing program 1 (id=7484): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x10000005) prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) r3 = socket$inet(0x2, 0x3, 0x4) setsockopt$inet_opts(r3, 0x0, 0x4, &(0x7f0000000400)="8907040400", 0x5) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f00000000c0)='xfrm0\x00', 0x10) connect$inet(r3, 0x0, 0x0) sendmmsg$inet(r3, &(0x7f0000000f40)=[{{&(0x7f0000000040)={0x2, 0x0, @broadcast}, 0x10, 0x0}}], 0x68000, 0x0) 429.927152ms ago: executing program 1 (id=7485): syz_open_procfs(0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0) read(r0, &(0x7f0000000880)=""/4096, 0x1000) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x50) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$USBDEVFS_RESET(0xffffffffffffffff, 0x5514) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7) r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102) writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) socket$inet6(0xa, 0x1, 0x8010000000000084) syz_io_uring_setup(0x315b, &(0x7f0000000080)={0x0, 0xcfcd, 0x1042, 0x6, 0x354}, 0x0, 0x0, 0x0) 380.069733ms ago: executing program 1 (id=7486): bpf$MAP_CREATE(0x0, 0x0, 0x50) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$inet(0x2, 0x8, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0) sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xfffffffb}, 0x0) sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="380000000d06010200000000000000000500000211000300686173683a69702c706f727400000000050001"], 0x38}, 0x1, 0x0, 0x0, 0x20008040}, 0x40048100) r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000180), 0x60042, 0x0) syz_usb_connect$hid(0x6, 0x0, 0x0, 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="7f454c460e02fab7ff7f00000000000002000300fffeffffdf020000000000004000000000000000030300ef0000000000000000080038000100040004000d000300000000800000000000000000000007000000000000000800000000004000050000000000000002"], 0x78) r1 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) ioctl$SNDCTL_SEQ_SYNC(r0, 0x5101) 299.206816ms ago: executing program 2 (id=7487): bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50) bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x1f, 0x11, 0x0, &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94) r0 = socket$nl_route(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1e, 0x0, 0x0, 0x0, 0x5}, 0x94) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r1, 0x8924, &(0x7f0000000000)={'vlan0\x00', @random="010000201000"}) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000000)={'veth0_vlan\x00', @random="010000201000"}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800"/15], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x94) bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0) sendmsg$nl_route_sched(r0, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x9, 0x0, 0x0, &(0x7f0000000040)='GPL\x00', 0xf, 0x0, 0x0, 0x41000, 0x42, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000100), &(0x7f0000000140)=[{0x5, 0x3, 0xc, 0xb}], 0x10, 0x1}, 0x94) 160.404187ms ago: executing program 2 (id=7488): socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x80000, {}, [{0x90, 0x1, [@m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x6) write$nci(0xffffffffffffffff, &(0x7f0000000380)=@NCI_OP_CORE_INIT_RSP={0x0, 0x1, 0x2, 0x1, 0x6, {{0xff, 0x7, 0xbb, "b0951ab4cfc5a66139edf8565ba17edfccb6194f037b9f3f9b97719aa829e1aa479b508e010f77d0756d709f29afaecd70a4fb3e0804e23d4d5d69f2eb20d31d03827b0afa58df42b60cd9d0d7a0758dce314dc82447200b3848303a5b6486ccb2410df66d28078362b053d2ec8cf87ff8911e8bc32adbcb75d4749f5316499bebcd9df9016a47ad7f6033599528cbd374ca681ef33857168c849156e77f8c93aa746dfc3d7de9746d834db77b4a82cee3e7f4ca3dab62a9491a1c"}, {0x6, 0x8, 0x7f, 0x3, 0x3, 0x4}}}, 0xcf) sched_setaffinity(0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f0000000340)=[{0xb1, 0xc, 0x5, 0xfffff024}, {0x6, 0x0, 0x0, 0x2}]}, 0x8) sendmmsg(r2, &(0x7f0000001c00), 0x400000000000159, 0x40840) 93.383851ms ago: executing program 5 (id=7489): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f00000013c0)=0x80000000001, 0x4) r1 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r1, 0x89f0, 0x0) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f0000000540)="a6e2976b5c4383036d32dadd2e144d8645cae01b230e105614396838da83c754887e7bea2f35d4ea667817d90d532af065f26398dd9081ea16f8b371a202a6f9e505bbc964a0d3880bf0104a0a0a2f0d311efee1637e85a0125b38f959918f99bf9c2cb9357cf67f178dc2b3d4936e7f7f0a79f74ba464d83ab4bd9c27743daa5cff471bbc2751b5eae8855acb68d518b137cd0b21e21d8c8e16c81cca9c042da488003fcb6fca3d65238ddd944f4fd73b293001c56779f61597995d47f3c0c792a7860db829a0f182c7c29ab03d4fba5f766f439b616bbc96840a1d2696e19b6053159f3c518f2b3f", 0xffffffffffffffca, 0x2000c001, 0x0, 0x44) sendto$inet6(r0, &(0x7f00000002c0)="e8", 0xfffffffffffffd79, 0x2000c850, 0x0, 0x4d) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) dup3(r0, r2, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, &(0x7f0000001f00)=""/4106, 0xfffffffffffffccb, 0x0, 0x0}, &(0x7f0000000080)=0x40) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f00000000c0)={&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000001c0)=0x40) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000000)={&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000280)=0x40) 76.115875ms ago: executing program 6 (id=7490): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x22c40, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000001440)={'\x00', 0x4212}) socket$unix(0x1, 0x5, 0x0) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000200)=ANY=[@ANYBLOB="02030002130000002dbd7000ffdbdf25010014102300000005000600000000000a00ffffffffffffff80000000000000000000b5f4943a01fbffffff0000000002000100000000000400050c0000000005000500000000000a000000000000000000000000000000000000000000000107000000000000000400080098"], 0x98}, 0x1, 0x7}, 0x14) r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000180)=r2, 0x4) syz_emit_ethernet(0x3a, &(0x7f0000000c00)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @random="fad1e048716e", @void, {@ipv4={0x800, @dccp={{0x7, 0x4, 0x0, 0x6, 0x2c, 0x68, 0x0, 0x7, 0x21, 0x0, @multicast1, @multicast2, {[@cipso={0x86, 0x8, 0x3, [{0x7, 0x2}]}]}}, {{0x4e23, 0x4e21, 0x4, 0x1, 0x9, 0x0, 0x0, 0x4, 0x2, "eb8f93", 0x30, "20e509"}}}}}}, 0x0) ioctl$TUNSETLINK(r0, 0x400454cd, 0x30a) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = dup(r3) sendmsg(r4, &(0x7f0000002fc0)={&(0x7f0000000380)=@in6={0xa, 0x4e24, 0xffffffff, @local, 0x8}, 0x80, 0x0}, 0x24008040) setsockopt$inet_opts(r4, 0x0, 0x4, 0x0, 0x0) close(r0) 75.828656ms ago: executing program 5 (id=7491): bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x2200, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r2 = userfaultfd(0x1) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x1a5}) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1}) madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19) fsopen(&(0x7f0000000100)='cramfs\x00', 0x1) r3 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000000)=""/59, 0x312000, 0x800, 0x0, 0x5}, 0x20) ioctl$UFFDIO_COPY(r2, 0xc028aa05, &(0x7f0000000040)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000000/0x3000)=nil, 0x3000}) bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0x9, 0x4}, 0x50) 0s ago: executing program 6 (id=7492): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0) mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r5 = openat$cgroup_int(r4, &(0x7f0000000880)='cgroup.max.depth\x00', 0x2, 0x0) write$cgroup_subtree(r5, &(0x7f0000000480)=ANY=[@ANYBLOB='-', @ANYRESDEC=r5], 0x27) getsockname$packet(r3, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r6, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}, 0x1, 0xfffc}, 0x4000800) sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000003080)=@delchain={0x34, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x0, 0x1b}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000940)=@delchain={0x24, 0x11, 0x1, 0x1f, 0x0, {0x0, 0x0, 0x0, r6}}, 0x24}}, 0x0) kernel console output (not intermixed with test programs): ocess `syz.5.5248'. [ 401.754175][ T6910] gspca_sonixj: reg_w1 err -71 [ 401.755901][ T6910] sonixj 11-1:0.0: probe with driver sonixj failed with error -71 [ 401.759762][T19618] veth0_vlan (unregistering): left allmulticast mode [ 401.760265][ T6910] usb 11-1: USB disconnect, device number 5 [ 401.952522][T19624] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5250'. [ 402.267663][T19640] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 402.434163][T19643] infiniband syz0: set active [ 402.435864][T19643] infiniband syz0: added bridge_slave_1 [ 402.444448][T19643] smbdirect: ib_dev[syz0]: added: IB_CA max_fast_reg_page_list_len=512 device_cap_flags=0x1c001223c76 kernel_cap_flags=0x14 page_size_cap=0xfffff000 [ 402.449613][T19643] smbdirect: ib_dev[syz0]: num_ports=1 max_qp_rd_atom=128 max_qp_init_rd_atom=128 max_sgl_rd=0 max_sge_rd=32 max_cqe=32767 max_qp_wr=1048576 max_send_sge=32 max_recv_sge=32 [ 402.455327][T19643] smbdirect: ib_dev[syz0]PORT[1]: iwarp=0 ib=0 roce=1 v1=0 v2=1 core_cap_flags=0x803005 [ 402.476225][T19643] RDS/IB: syz0: added [ 402.485229][T19643] smc: adding ib device syz0 with port count 1 [ 402.491475][T19643] smc: ib device syz0 port 1 has no pnetid [ 403.118858][T19652] fuse: fd is not a fuse device [ 403.157506][T19654] fuse: fd is not a fuse device [ 403.347138][T19664] netlink: 64 bytes leftover after parsing attributes in process `syz.5.5264'. [ 403.360982][T19664] syzkaller1: entered promiscuous mode [ 403.362881][T19664] syzkaller1: entered allmulticast mode [ 403.539827][T19668] sd 0:0:0:0: PR command failed: 1026 [ 403.541855][T19668] sd 0:0:0:0: Sense Key : Illegal Request [current] [ 403.544281][T19668] sd 0:0:0:0: Add. Sense: Invalid command operation code [ 403.901188][T19700] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5276'. [ 403.907027][T19700] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5276'. [ 403.928025][T19702] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5277'. [ 403.956106][T19702] mac80211_hwsim hwsim4 wlan0: entered allmulticast mode [ 404.048018][ T5837] usb 10-1: new high-speed USB device number 15 using dummy_hcd [ 404.156153][T19715] fuse: fd is not a fuse device [ 404.219294][ T5837] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 404.223029][ T5837] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 404.226557][ T5837] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 404.231245][ T5837] usb 10-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 404.234301][ T5837] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 404.240315][ T5837] usb 10-1: config 0 descriptor?? [ 404.765866][ T5837] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0 [ 405.008251][T15793] usb 10-1: USB disconnect, device number 15 [ 405.432018][T19742] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 405.442898][T19742] CIFS mount error: No usable UNC path provided in device string! [ 405.442898][T19742] [ 405.446914][T19742] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 405.476026][T19744] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 405.534469][T19751] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 405.597070][T19744] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 405.669425][T19754] fuse: root generation should be zero [ 405.999069][ T5742] Bluetooth: hci3: ACL packet for unknown connection handle 201 [ 406.152388][T19781] fuse: fd is not a fuse device [ 406.202462][T19783] overlayfs: failed to clone upperpath [ 406.228188][T19782] process 'newroot/1498/bus/file0' started with executable stack [ 406.344782][T19788] netlink: 168 bytes leftover after parsing attributes in process `syz.2.5308'. [ 406.470619][T19794] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5310'. [ 406.543273][T19794] netlink: 36 bytes leftover after parsing attributes in process `syz.1.5310'. [ 406.957871][ T5837] usb 11-1: new high-speed USB device number 6 using dummy_hcd [ 407.122881][ T5837] usb 11-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00 [ 407.126654][ T5837] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 407.130162][ T5837] usb 11-1: Product: syz [ 407.131977][ T5837] usb 11-1: Manufacturer: syz [ 407.133953][ T5837] usb 11-1: SerialNumber: syz [ 407.612293][T19824] netlink: 'syz.5.5323': attribute type 12 has an invalid length. [ 407.642289][ T5837] rtl8150 11-1:1.0: couldn't reset the device [ 407.644600][ T5837] rtl8150 11-1:1.0: probe with driver rtl8150 failed with error -5 [ 407.660267][ T5837] usb 11-1: USB disconnect, device number 6 [ 408.198626][T19827] openvswitch: netlink: push_nsh: missing base or metadata attributes [ 408.201567][T19827] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 408.205309][T19827] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5324'. [ 408.360723][T19840] fuse: fd is not a fuse device [ 408.688063][T19867] netlink: 'syz.5.5337': attribute type 39 has an invalid length. [ 408.948186][T19883] fuse: fd is not a fuse device [ 409.239226][T19905] : renamed from bond0 [ 409.337568][ T5742] Bluetooth: hci2: unknown advertising packet type: 0x70 [ 409.338176][T19920] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5359'. [ 409.526849][T19939] overlayfs: failed to clone upperpath [ 409.757354][T19945] netlink: 24 bytes leftover after parsing attributes in process `syz.6.5366'. [ 410.289599][T19961] netlink: 'syz.1.5372': attribute type 1 has an invalid length. [ 410.333440][T19961] 8021q: adding VLAN 0 to HW filter on device bond11 [ 410.366747][T19963] bond11: (slave syz_tun): Enslaving as a backup interface with an up link [ 410.387166][ T54] syz1: Port: 1 Link ACTIVE [ 410.423703][T19967] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5374'. [ 410.437422][T19965] can-isotp: isotp_sendmsg: can_send_ret -ENETDOWN [ 410.447912][T11040] bond11: Warning: No 802.3ad response from the link partner for any adapters in the bond [ 410.454328][T19967] bond12: (slave vxcan3): The slave device specified does not support setting the MAC address [ 410.458370][T19967] bond12: (slave vxcan3): Error -95 calling set_mac_address [ 410.464081][T19965] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5373'. [ 410.467850][T19970] fuse: Bad value for 'fd' [ 410.495798][T19971] macvlan2: entered promiscuous mode [ 410.498643][T19971] macvlan2: entered allmulticast mode [ 410.501414][T19971] bond12: (slave macvlan2): Error -98 calling set_mac_address [ 410.521257][ T5742] Bluetooth: hci0: unexpected cc 0x042d length: 1 < 7 [ 410.523577][ T5742] Bluetooth: hci0: unexpected event for opcode 0x042d [ 410.525898][ T5742] Bluetooth: hci0: ACL packet for unknown connection handle 200 [ 410.558845][ T223] bond11: Warning: No 802.3ad response from the link partner for any adapters in the bond [ 410.577807][ T5742] Bluetooth: hci0: unexpected event for opcode 0x0401 [ 411.726433][T19996] dummy0: Device is already in use. [ 412.738866][T20030] fuse: fd is not a fuse device [ 412.975449][T20043] veth0_to_hsr: Caught tx_queue_len zero misconfig [ 412.979547][T20043] netlink: 2 bytes leftover after parsing attributes in process `syz.2.5403'. [ 413.017220][T20047] fuse: fd is not a fuse device [ 413.095831][T20048] [ 413.176764][T20064] bond10: (slave dummy0): Releasing active interface [ 413.199959][T20064] dummy0: left promiscuous mode [ 413.203418][T20068] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5413'. [ 413.206938][T20068] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5413'. [ 413.207136][T20064] Set syz0 is full, maxelem 0 reached [ 413.211343][T20068] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5413'. [ 413.211750][T20068] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5413'. [ 413.342357][T20084] netlink: 'syz.1.5418': attribute type 1 has an invalid length. [ 413.367561][T20084] 8021q: adding VLAN 0 to HW filter on device bond13 [ 413.391792][T20088] netlink: 'syz.6.5419': attribute type 1 has an invalid length. [ 413.409894][T20084] vlan2: entered allmulticast mode [ 413.411997][T20084] bond13: entered allmulticast mode [ 413.426134][T20088] 8021q: adding VLAN 0 to HW filter on device bond0 [ 413.442215][T20088] vlan2: entered allmulticast mode [ 413.444752][T20088] veth0_to_bond: entered allmulticast mode [ 413.451085][T20088] bond0: (slave vlan2): Opening slave failed [ 413.532303][T20097] netlink: 'syz.1.5421': attribute type 1 has an invalid length. [ 413.592041][T20097] 8021q: adding VLAN 0 to HW filter on device bond14 [ 413.716420][T20102] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5422'. [ 414.640688][ T5742] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 414.644995][ T5742] Bluetooth: hci0: Injecting HCI hardware error event [ 414.651075][ T5742] Bluetooth: hci0: hardware error 0x00 [ 414.827564][T20127] ip6tnl0: Caught tx_queue_len zero misconfig [ 415.137506][T20137] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5434'. [ 415.143257][T20137] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5434'. [ 415.153061][T20137] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5434'. [ 415.369386][T20141] fuse: Bad value for 'fd' [ 415.743222][T20150] tipc: Enabling of bearer rejected, failed to enable media [ 415.985215][T20168] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5444'. [ 416.301638][T20199] fuse: fd is not a fuse device [ 416.384346][T20203] netlink: 'syz.1.5457': attribute type 2 has an invalid length. [ 416.388009][T20203] netlink: 'syz.1.5457': attribute type 2 has an invalid length. [ 416.468366][T20206] netlink: 'syz.1.5458': attribute type 4 has an invalid length. [ 416.483569][T20206] netlink: 'syz.1.5458': attribute type 17 has an invalid length. [ 416.723259][ T5742] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 416.776928][T20217] fuse: fd is not a fuse device [ 416.786078][T20219] workqueue: name exceeds WQ_NAME_LEN. Truncating to: 1^!l1*$pOcɔr$G [ 416.808931][T20219] sysfs: cannot create duplicate filename '/class/ieee80211/1^!l1*$pOcɔr$G' [ 416.819263][T20219] CPU: 1 UID: 0 PID: 20219 Comm: syz.2.5463 Tainted: G L syzkaller #0 PREEMPT(full) [ 416.819291][T20219] Tainted: [L]=SOFTLOCKUP [ 416.819298][T20219] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 416.819309][T20219] Call Trace: [ 416.819315][T20219] [ 416.819323][T20219] dump_stack_lvl+0x100/0x190 [ 416.819345][T20219] sysfs_warn_dup.cold+0x1c/0x28 [ 416.819369][T20219] sysfs_do_create_link_sd+0x113/0x140 [ 416.819390][T20219] sysfs_create_link+0x61/0xc0 [ 416.819409][T20219] device_add+0x675/0x1950 [ 416.819436][T20219] ? __pfx_device_add+0x10/0x10 [ 416.819455][T20219] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 416.819481][T20219] ? ieee80211_set_bitrate_flags+0x41b/0x6b0 [ 416.819513][T20219] wiphy_register+0x1edd/0x2d90 [ 416.819532][T20219] ? __rtnl_unlock+0xb9/0xf0 [ 416.819558][T20219] ? __pfx_wiphy_register+0x10/0x10 [ 416.819575][T20219] ? __asan_memset+0x23/0x50 [ 416.819600][T20219] ? minstrel_ht_alloc+0x5e6/0x7f0 [ 416.819635][T20219] ieee80211_register_hw+0x3055/0x4570 [ 416.819671][T20219] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 416.819691][T20219] ? __pfx___debug_object_init+0x10/0x10 [ 416.819721][T20219] ? find_held_lock+0x2b/0x80 [ 416.819748][T20219] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 416.819775][T20219] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 416.819800][T20219] ? __hrtimer_setup+0x208/0x330 [ 416.819818][T20219] mac80211_hwsim_new_radio+0x2a01/0x5aa0 [ 416.819875][T20219] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 416.819896][T20219] ? __asan_memcpy+0x3c/0x60 [ 416.819931][T20219] hwsim_new_radio_nl+0xc5f/0x1370 [ 416.819951][T20219] ? rcu_is_watching+0x12/0xc0 [ 416.819969][T20219] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 416.819991][T20219] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1e5/0x2f0 [ 416.820019][T20219] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1ef/0x2f0 [ 416.820052][T20219] genl_family_rcv_msg_doit+0x214/0x300 [ 416.820083][T20219] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 416.820105][T20219] ? genl_get_cmd+0x3e7/0x760 [ 416.820135][T20219] ? bpf_lsm_capable+0x9/0x10 [ 416.820154][T20219] ? security_capable+0x80/0x260 [ 416.820181][T20219] ? ns_capable+0xd2/0xf0 [ 416.820203][T20219] genl_rcv_msg+0x560/0x800 [ 416.820232][T20219] ? __pfx_genl_rcv_msg+0x10/0x10 [ 416.820249][T20219] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 416.820261][T20219] ? __lock_acquire+0x4a5/0x2630 [ 416.820274][T20219] netlink_rcv_skb+0x159/0x420 [ 416.820288][T20219] ? __pfx_genl_rcv_msg+0x10/0x10 [ 416.820305][T20219] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 416.820325][T20219] ? netlink_deliver_tap+0x1ae/0xcc0 [ 416.820341][T20219] genl_rcv+0x28/0x40 [ 416.820355][T20219] netlink_unicast+0x585/0x850 [ 416.820371][T20219] ? __pfx_netlink_unicast+0x10/0x10 [ 416.820390][T20219] netlink_sendmsg+0x8b0/0xda0 [ 416.820407][T20219] ? __pfx_netlink_sendmsg+0x10/0x10 [ 416.820423][T20219] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 416.820442][T20219] ____sys_sendmsg+0x9e1/0xb70 [ 416.820455][T20219] ? __pfx_netlink_sendmsg+0x10/0x10 [ 416.820471][T20219] ? __pfx_____sys_sendmsg+0x10/0x10 [ 416.820484][T20219] ? __pfx___futex_wait+0x10/0x10 [ 416.820500][T20219] ? __pfx_futex_wake_mark+0x10/0x10 [ 416.820517][T20219] ___sys_sendmsg+0x190/0x1e0 [ 416.820533][T20219] ? __pfx____sys_sendmsg+0x10/0x10 [ 416.820555][T20219] ? find_held_lock+0x2b/0x80 [ 416.820578][T20219] __sys_sendmsg+0x170/0x220 [ 416.820590][T20219] ? __pfx___sys_sendmsg+0x10/0x10 [ 416.820608][T20219] ? rcu_is_watching+0x12/0xc0 [ 416.820623][T20219] __do_fast_syscall_32+0xe7/0x950 [ 416.820640][T20219] do_fast_syscall_32+0x32/0x70 [ 416.820656][T20219] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 416.820670][T20219] RIP: 0023:0xf701efcc [ 416.820680][T20219] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8 [ 416.820690][T20219] RSP: 002b:00000000f540d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 416.820702][T20219] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000100 [ 416.820709][T20219] RDX: 0000000004000010 RSI: 0000000000000000 RDI: 0000000000000000 [ 416.820715][T20219] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 416.820720][T20219] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 416.820726][T20219] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 416.820741][T20219] [ 417.482898][T20261] overlayfs: failed to clone upperpath [ 417.483073][T20260] netlink: 'syz.5.5476': attribute type 4 has an invalid length. [ 417.619944][T20270] fuse: fd is not a fuse device [ 418.739424][T20307] Process accounting resumed [ 419.556506][T20329] overlayfs: failed to clone upperpath [ 419.937604][T20357] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 419.940361][T20357] overlayfs: failed to set xattr on upper [ 419.942386][T20357] overlayfs: ...falling back to redirect_dir=nofollow. [ 419.944885][T20357] overlayfs: ...falling back to index=off. [ 419.947069][T20357] overlayfs: ...falling back to uuid=null. [ 419.998394][T20357] overlayfs: cleanup of 'bus/work' failed (-13) [ 420.003005][T20357] overlayfs: failed to create directory ./bus/work (errno: 17); mounting read-only [ 420.006345][T20357] overlayfs: fs on '.' does not support file handles, falling back to index=off,nfs_export=off. [ 420.011970][T20357] overlayfs: failed to get uuid (/file0, err=-95); falling back to uuid=null. [ 420.081015][ T5742] Bluetooth: hci1: unexpected event for opcode 0x1804 [ 420.107372][T20371] fuse: fd is not a fuse device [ 420.148255][T20373] __nla_validate_parse: 1 callbacks suppressed [ 420.148279][T20373] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5524'. [ 420.204324][T20379] fuse: fd is not a fuse device [ 420.257840][T15869] usb 11-1: new high-speed USB device number 7 using dummy_hcd [ 420.420226][T15869] usb 11-1: Using ep0 maxpacket: 32 [ 420.425800][T15869] usb 11-1: config 0 has an invalid interface number: 8 but max is 0 [ 420.429836][T15869] usb 11-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 420.433597][T15869] usb 11-1: config 0 has no interface number 0 [ 420.436086][T15869] usb 11-1: config 0 interface 8 altsetting 248 endpoint 0xD has invalid maxpacket 1024, setting to 64 [ 420.439858][T15869] usb 11-1: config 0 interface 8 altsetting 248 has 3 endpoint descriptors, different from the interface descriptor's value: 10 [ 420.444596][T15869] usb 11-1: config 0 interface 8 has no altsetting 0 [ 420.451531][T15869] usb 11-1: New USB device found, idVendor=04da, idProduct=390d, bcdDevice=2d.bb [ 420.456341][T15869] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 420.462081][T15869] usb 11-1: Product: syz [ 420.463798][T15869] usb 11-1: Manufacturer: syz [ 420.465786][T15869] usb 11-1: SerialNumber: syz [ 420.475852][T15869] usb 11-1: config 0 descriptor?? [ 420.704950][ T5742] Bluetooth: hci2: Malformed MSFT vendor event: 0x02 [ 420.720130][T15869] ath6kl: Failed to submit usb control message: -71 [ 420.722415][T15869] ath6kl: unable to send the bmi data to the device: -71 [ 420.724694][T15869] ath6kl: Unable to send get target info: -71 [ 420.728886][T15869] ath6kl: Failed to init ath6kl core: -71 [ 420.737556][T15869] ath6kl_usb 11-1:0.8: probe with driver ath6kl_usb failed with error -71 [ 420.745608][T15869] usb 11-1: USB disconnect, device number 7 [ 421.276161][T20397] netlink: 'syz.1.5522': attribute type 39 has an invalid length. [ 421.303925][T20401] fuse: fd is not a fuse device [ 421.458716][T20411] fuse: fd is not a fuse device [ 421.539355][T20418] netlink: 'syz.1.5533': attribute type 3 has an invalid length. [ 421.542204][T20418] netlink: 'syz.1.5533': attribute type 3 has an invalid length. [ 423.982479][T20485] fuse: fd is not a fuse device [ 423.983636][T20487] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5556'. [ 424.117224][T20495] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5561'. [ 424.157903][ T5742] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 424.166192][ T5742] Bluetooth: hci1: Injecting HCI hardware error event [ 424.172588][ T5742] Bluetooth: hci1: hardware error 0x00 [ 424.329051][T20505] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5563'. [ 424.332954][T20505] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5563'. [ 424.336312][T20505] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5563'. [ 424.340746][T20505] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5563'. [ 424.345218][T20505] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5563'. [ 424.633391][T20516] netlink: 'syz.6.5567': attribute type 3 has an invalid length. [ 424.636179][T20516] netlink: 'syz.6.5567': attribute type 3 has an invalid length. [ 425.084010][T20522] overlayfs: failed to clone upperpath [ 425.254068][T20528] fuse: fd is not a fuse device [ 425.289040][T20530] netlink: 'syz.6.5573': attribute type 4 has an invalid length. [ 425.508363][T20526] Process accounting resumed [ 426.172135][T20573] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5589'. [ 426.207994][T11040] bond11: (slave syz_tun): link status up again after 0 ms [ 426.235639][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 426.240313][ T5742] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 426.347938][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 426.458869][T11043] bond11: (slave syz_tun): failed to get link speed/duplex [ 426.579232][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 426.687913][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 426.807918][T11043] bond11: (slave syz_tun): failed to get link speed/duplex [ 426.820322][T20601] fuse: fd is not a fuse device [ 426.917975][T11043] bond11: (slave syz_tun): failed to get link speed/duplex [ 427.028727][T11043] bond11: (slave syz_tun): failed to get link speed/duplex [ 427.148259][T11043] bond11: (slave syz_tun): failed to get link speed/duplex [ 427.276086][T20613] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5603'. [ 427.320229][T20613] mac80211_hwsim hwsim22 syzkaller0: Caught tx_queue_len zero misconfig [ 427.495467][ T40] kauditd_printk_skb: 206 callbacks suppressed [ 427.495479][ T40] audit: type=1326 audit(1778104856.095:14818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20633 comm="syz.6.5611" exe="/syz-executor" sig=9 arch=40000003 syscall=20 compat=1 ip=0xf7f03fcc code=0x0 [ 428.343526][T20671] fuse: Bad value for 'fd' [ 428.413264][T20675] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5624'. [ 429.241762][T20691] netlink: 'syz.1.5636': attribute type 1 has an invalid length. [ 429.303889][T20691] bond15: (slave geneve3): making interface the new active one [ 429.309393][T20691] bond15: (slave geneve3): Enslaving as an active interface with an up link [ 429.313253][T11037] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 20000 - 0 [ 429.319412][T11037] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 20000 - 0 [ 429.327885][T11037] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 20000 - 0 [ 429.333764][T11037] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 20000 - 0 [ 429.339053][T20691] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5636'. [ 429.402845][T20701] fuse: fd is not a fuse device [ 429.553509][T20705] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5631'. [ 429.559483][ T40] audit: type=1326 audit(1778104858.165:14819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20703 comm="syz.6.5631" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f03fcc code=0x0 [ 429.714433][T20691] bond15 (unregistering): (slave geneve3): Releasing active interface [ 429.722566][T20691] bond15 (unregistering): Released all slaves [ 429.736112][T11040] netdevsim netdevsim1 eth0: unset [1, 0] type 2 family 0 port 20000 - 0 [ 429.750415][T11040] netdevsim netdevsim1 eth1: unset [1, 0] type 2 family 0 port 20000 - 0 [ 429.756682][T11040] netdevsim netdevsim1 eth2: unset [1, 0] type 2 family 0 port 20000 - 0 [ 429.770985][T11040] netdevsim netdevsim1 eth3: unset [1, 0] type 2 family 0 port 20000 - 0 [ 429.776971][T20708] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5632'. [ 430.301485][T20713] fuse: fd is not a fuse device [ 430.360575][T20722] fuse: fd is not a fuse device [ 430.992337][T20731] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5641'. [ 431.028758][T15608] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured! [ 431.101774][ T5837] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured! [ 431.228072][ T59] net_ratelimit: 29 callbacks suppressed [ 431.228087][ T59] bond11: (slave syz_tun): failed to get link speed/duplex [ 431.349433][T11037] bond11: (slave syz_tun): failed to get link speed/duplex [ 431.359081][T20756] tipc: Enabling of bearer rejected, failed to enable media [ 431.470487][T11037] bond11: (slave syz_tun): failed to get link speed/duplex [ 431.556650][T20774] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5652'. [ 431.578926][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 431.596014][ T40] audit: type=1804 audit(1778104860.195:14820): pid=20780 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.5656" name="file0" dev="tmpfs" ino=3985 res=1 errno=0 [ 431.600536][T20780] ref_ctr increment failed for inode: 0xf91 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff88804ac424c0 [ 431.627321][T20779] uprobe: syz.5.5656:20779 failed to unregister, leaking uprobe [ 431.688891][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 431.798125][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 431.918339][ T223] bond11: (slave syz_tun): failed to get link speed/duplex [ 431.998308][T20801] netlink: 'syz.6.5663': attribute type 1 has an invalid length. [ 432.045689][T20801] 8021q: adding VLAN 0 to HW filter on device bond1 [ 432.065687][T20803] vlan2: entered allmulticast mode [ 432.070010][T20803] macsec0: entered allmulticast mode [ 432.073350][T20803] bond1: (slave vlan2): Error -34 calling dev_set_mtu [ 432.098117][T20805] fuse: fd is not a fuse device [ 432.108122][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 432.218001][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 432.337921][T11037] bond11: (slave syz_tun): failed to get link speed/duplex [ 432.819163][T20815] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5666'. [ 432.891658][T20814] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5675'. [ 432.908605][T20814] mac80211_hwsim hwsim22 syzkaller0: Caught tx_queue_len zero misconfig [ 432.990836][T20832] netlink: 'syz.6.5671': attribute type 1 has an invalid length. [ 433.028189][T20832] bond2: (slave geneve2): making interface the new active one [ 433.032040][T20832] bond2: (slave geneve2): Enslaving as an active interface with an up link [ 433.035870][ T59] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 20000 - 0 [ 433.039031][ T59] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 20000 - 0 [ 433.041720][ T59] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 20000 - 0 [ 433.045055][ T59] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 20000 - 0 [ 433.045442][T20832] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5671'. [ 433.053816][T20832] bond2 (unregistering): (slave geneve2): Releasing active interface [ 433.060257][T20832] bond2 (unregistering): Released all slaves [ 433.070756][ T59] netdevsim netdevsim6 eth0: unset [1, 0] type 2 family 0 port 20000 - 0 [ 433.073507][ T59] netdevsim netdevsim6 eth1: unset [1, 0] type 2 family 0 port 20000 - 0 [ 433.076213][ T59] netdevsim netdevsim6 eth2: unset [1, 0] type 2 family 0 port 20000 - 0 [ 433.079836][ T59] netdevsim netdevsim6 eth3: unset [1, 0] type 2 family 0 port 20000 - 0 [ 433.164693][T20836] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5672'. [ 433.175239][T20836] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5672'. [ 433.178960][T20836] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5672'. [ 433.424622][T20845] bond8: entered allmulticast mode [ 433.427063][T20845] ip6gre2: entered allmulticast mode [ 433.773907][T20853] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 433.844316][T20853] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 433.913075][T20853] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 434.013518][T20853] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 434.111256][ T223] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 434.134521][ T59] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 434.144320][ T59] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 434.156152][ T59] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 434.758976][T20867] netlink: 'syz.5.5685': attribute type 1 has an invalid length. [ 434.775876][T20872] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5686'. [ 434.816502][T20874] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 434.825995][T20867] bond0: (slave geneve3): making interface the new active one [ 434.834786][T20867] bond0: (slave geneve3): Enslaving as an active interface with an up link [ 434.837944][ T59] netdevsim netdevsim5 eth0: set [1, 1] type 2 family 0 port 20000 - 0 [ 434.845830][ T59] netdevsim netdevsim5 eth1: set [1, 1] type 2 family 0 port 20000 - 0 [ 434.851184][ T59] netdevsim netdevsim5 eth2: set [1, 1] type 2 family 0 port 20000 - 0 [ 434.858260][ T59] netdevsim netdevsim5 eth3: set [1, 1] type 2 family 0 port 20000 - 0 [ 434.859437][T20867] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5685'. [ 434.869559][T20867] bond0 (unregistering): (slave geneve3): Releasing active interface [ 434.876807][T20867] bond0 (unregistering): Released all slaves [ 434.891332][ T59] netdevsim netdevsim5 eth0: unset [1, 1] type 2 family 0 port 20000 - 0 [ 434.904511][ T59] netdevsim netdevsim5 eth1: unset [1, 1] type 2 family 0 port 20000 - 0 [ 434.930343][ T59] netdevsim netdevsim5 eth2: unset [1, 1] type 2 family 0 port 20000 - 0 [ 434.947018][ T59] netdevsim netdevsim5 eth3: unset [1, 1] type 2 family 0 port 20000 - 0 [ 435.092176][T20889] fuse: fd is not a fuse device [ 435.107506][T20891] overlayfs: failed to clone upperpath [ 435.248298][ T5837] usb 11-1: new high-speed USB device number 8 using dummy_hcd [ 435.399696][ T5837] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 435.403814][ T5837] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 435.407400][ T5837] usb 11-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.80 [ 435.411203][ T5837] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 435.415759][ T5837] usb 11-1: config 0 descriptor?? [ 435.718989][T20908] netlink: 'syz.1.5701': attribute type 1 has an invalid length. [ 435.759485][T20912] netlink: 'syz.5.5709': attribute type 1 has an invalid length. [ 435.761112][T20908] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5701'. [ 435.774580][T20912] 8021q: adding VLAN 0 to HW filter on device bond0 [ 435.779510][T20908] bond15 (unregistering): Released all slaves [ 435.817694][T20912] bond0: (slave veth29): Enslaving as an active interface with a down link [ 435.833864][ T5837] hid_parser_main: 5 callbacks suppressed [ 435.833877][ T5837] cp2112 0003:10C4:EA90.0007: unknown main item tag 0x0 [ 435.845506][ T5837] cp2112 0003:10C4:EA90.0007: hidraw1: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.6-1/input0 [ 435.853247][T20912] veth0_virt_wifi: entered promiscuous mode [ 435.860075][T20912] bond0: (slave veth0_virt_wifi): making interface the new active one [ 435.866366][T20912] bond0: (slave veth0_virt_wifi): Enslaving as an active interface with an up link [ 435.898115][T20912] bond0: (slave veth0_virt_wifi): Releasing active interface [ 435.911349][T20912] veth0_virt_wifi: left promiscuous mode [ 436.086658][T20921] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 436.101222][T20921] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 436.278164][ T223] net_ratelimit: 32 callbacks suppressed [ 436.278183][ T223] bond11: (slave syz_tun): failed to get link speed/duplex [ 436.388125][ T223] bond11: (slave syz_tun): failed to get link speed/duplex [ 436.498372][T11043] bond11: (slave syz_tun): failed to get link speed/duplex [ 436.608019][T11037] bond11: (slave syz_tun): failed to get link speed/duplex [ 436.619341][ T5837] cp2112 0003:10C4:EA90.0007: error requesting version [ 436.636036][ T5837] cp2112 0003:10C4:EA90.0007: probe with driver cp2112 failed with error -71 [ 436.661861][ T5837] usb 11-1: USB disconnect, device number 8 [ 436.676994][T20928] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5707'. [ 436.680649][T20928] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5707'. [ 436.721835][T11043] bond11: (slave syz_tun): failed to get link speed/duplex [ 436.744948][T20930] netlink: 24 bytes leftover after parsing attributes in process `syz.6.5708'. [ 436.820336][T20934] netlink: 'syz.2.5711': attribute type 39 has an invalid length. [ 436.838124][ T59] bond11: (slave syz_tun): failed to get link speed/duplex [ 436.913389][ T40] audit: type=1800 audit(1778104865.515:14821): pid=20938 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.5712" name="file0" dev="overlay" ino=2015 res=0 errno=0 [ 436.947941][T11043] bond11: (slave syz_tun): failed to get link speed/duplex [ 437.067958][T11043] bond11: (slave syz_tun): failed to get link speed/duplex [ 437.179504][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 437.288726][ T59] bond11: (slave syz_tun): failed to get link speed/duplex [ 437.352269][T20940] Process accounting resumed [ 437.369091][T20949] overlayfs: failed to clone upperpath [ 437.846158][T20966] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5720'. [ 437.849983][T20966] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5720'. [ 437.964201][T20970] lo: Caught tx_queue_len zero misconfig [ 438.326655][T20992] netlink: 168 bytes leftover after parsing attributes in process `syz.6.5731'. [ 438.424199][T20998] fuse: fd is not a fuse device [ 438.728131][ T5837] usb 11-1: new full-speed USB device number 9 using dummy_hcd [ 438.890155][ T5837] usb 11-1: config 0 has no interfaces? [ 438.894004][ T5837] usb 11-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 438.897303][ T5837] usb 11-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 438.900540][ T5837] usb 11-1: Product: syz [ 438.901989][ T5837] usb 11-1: Manufacturer: syz [ 438.903759][ T5837] usb 11-1: SerialNumber: syz [ 438.906995][ T5837] usb 11-1: config 0 descriptor?? [ 439.136916][T21006] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5734'. [ 439.141416][T21006] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5734'. [ 439.148061][ T54] usb 11-1: USB disconnect, device number 9 [ 439.168766][T21009] overlayfs: failed to clone upperpath [ 439.225774][T21012] fuse: fd is not a fuse device [ 439.376295][T21020] netlink: 14 bytes leftover after parsing attributes in process `syz.1.5739'. [ 439.477830][T21024] netlink: 168 bytes leftover after parsing attributes in process `syz.1.5742'. [ 439.512634][T21026] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 439.951294][T21042] netlink: 'syz.6.5752': attribute type 1 has an invalid length. [ 440.009271][T21042] bond2 (unregistering): Released all slaves [ 440.495643][T21072] pimreg: entered allmulticast mode [ 440.501756][T21072] pimreg: left allmulticast mode [ 440.539347][T15613] usb 11-1: new full-speed USB device number 10 using dummy_hcd [ 440.713576][T15613] usb 11-1: config 0 has no interfaces? [ 440.721059][T15613] usb 11-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 440.726319][T15613] usb 11-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 440.736316][T15613] usb 11-1: Product: syz [ 440.737557][T15613] usb 11-1: Manufacturer: syz [ 440.746473][T15613] usb 11-1: SerialNumber: syz [ 440.758594][T15613] usb 11-1: config 0 descriptor?? [ 441.024641][T15613] usb 11-1: USB disconnect, device number 10 [ 441.044907][T21081] netlink: 'syz.1.5765': attribute type 1 has an invalid length. [ 441.080051][T21081] bond15 (unregistering): Released all slaves [ 441.357980][ T59] net_ratelimit: 33 callbacks suppressed [ 441.357994][ T59] bond11: (slave syz_tun): failed to get link speed/duplex [ 441.467986][ T59] bond11: (slave syz_tun): failed to get link speed/duplex [ 441.577942][T11043] bond11: (slave syz_tun): failed to get link speed/duplex [ 441.688450][T11043] bond11: (slave syz_tun): failed to get link speed/duplex [ 441.797997][ T59] bond11: (slave syz_tun): failed to get link speed/duplex [ 441.858279][T21093] __nla_validate_parse: 8 callbacks suppressed [ 441.858292][T21093] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5767'. [ 441.929523][T11043] bond11: (slave syz_tun): failed to get link speed/duplex [ 442.038026][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 442.115970][T21103] netlink: 14 bytes leftover after parsing attributes in process `syz.6.5772'. [ 442.147930][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 442.258034][T11045] bond11: (slave syz_tun): failed to get link speed/duplex [ 442.367953][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 442.867102][T21114] lo: Caught tx_queue_len zero misconfig [ 443.258841][T21118] : renamed from bond0 [ 443.270201][T21122] netlink: 'syz.5.5781': attribute type 39 has an invalid length. [ 443.321307][T21128] lo: Caught tx_queue_len zero misconfig [ 443.405724][ T5742] Bluetooth: hci2: unexpected cc 0x042d length: 1 < 7 [ 443.665823][T21149] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5790'. [ 443.820172][T21152] : renamed from bond0 (while UP) [ 443.903405][T21154] netlink: 'syz.6.5793': attribute type 39 has an invalid length. [ 444.741006][T21161] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5795'. [ 444.785020][T21161] bond14: (slave vxcan1): The slave device specified does not support setting the MAC address [ 444.789829][T21161] bond14: (slave vxcan1): Error -95 calling set_mac_address [ 444.802577][ T1432] ieee802154 phy0 wpan0: encryption failed: -22 [ 444.805894][ T1432] ieee802154 phy1 wpan1: encryption failed: -22 [ 444.974218][T21161] macvlan2: entered promiscuous mode [ 444.976947][T21161] macvlan2: entered allmulticast mode [ 444.980606][T21161] bond14: (slave macvlan2): Error -98 calling set_mac_address [ 445.091221][T21166] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5797'. [ 445.785758][T21178] pimreg: entered allmulticast mode [ 445.796267][T21178] pimreg: left allmulticast mode [ 446.428064][T11044] net_ratelimit: 35 callbacks suppressed [ 446.428084][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 446.537974][T11037] bond11: (slave syz_tun): failed to get link speed/duplex [ 446.647887][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 446.722710][T21196] netlink: 'syz.5.5805': attribute type 1 has an invalid length. [ 446.741309][T21196] 8021q: adding VLAN 0 to HW filter on device bond9 [ 446.779728][T21196] bond9: (slave syz_tun): Enslaving as a backup interface with an up link [ 446.788142][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 446.861281][T21201] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5806'. [ 446.990592][T21203] bond10: (slave vxcan7): The slave device specified does not support setting the MAC address [ 447.005051][T21203] bond10: (slave vxcan7): Error -95 calling set_mac_address [ 447.122668][T21201] macvlan2: entered promiscuous mode [ 447.127523][T21201] macvlan2: entered allmulticast mode [ 447.138000][T21201] bond10: (slave macvlan2): Error -98 calling set_mac_address [ 447.181729][ T223] bond11: (slave syz_tun): failed to get link speed/duplex [ 447.302675][T11037] bond11: (slave syz_tun): failed to get link speed/duplex [ 447.428388][ T223] bond11: (slave syz_tun): failed to get link speed/duplex [ 447.452158][T21208] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5811'. [ 447.455215][T21208] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5811'. [ 447.529331][ T5742] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 447.534479][ T5742] Bluetooth: hci2: Injecting HCI hardware error event [ 447.538375][T21215] veth0_to_hsr: Caught tx_queue_len zero misconfig [ 447.541319][ T5752] Bluetooth: hci2: hardware error 0x00 [ 447.548040][T11037] bond11: (slave syz_tun): failed to get link speed/duplex [ 447.601514][T21215] netlink: 2 bytes leftover after parsing attributes in process `syz.5.5813'. [ 447.670235][T11037] bond11: (slave syz_tun): failed to get link speed/duplex [ 447.788383][ T223] bond11: (slave syz_tun): failed to get link speed/duplex [ 447.838975][T21225] netlink: 'syz.6.5817': attribute type 1 has an invalid length. [ 447.868424][T21225] 8021q: adding VLAN 0 to HW filter on device bond0 [ 447.888079][T21225] syz_tun: left allmulticast mode [ 447.891072][T21225] syz_tun: left promiscuous mode [ 447.893218][T21225] bridge0: port 1(syz_tun) entered disabled state [ 447.909277][T21225] bond0: (slave syz_tun): Enslaving as a backup interface with an up link [ 449.073079][T21234] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5821'. [ 449.109292][T21234] bond2: (slave vxcan1): The slave device specified does not support setting the MAC address [ 449.113166][T21234] bond2: (slave vxcan1): Error -95 calling set_mac_address [ 449.155305][T21239] macvlan2: entered promiscuous mode [ 449.157190][T21239] macvlan2: entered allmulticast mode [ 449.160885][T21239] bond2: (slave macvlan2): Error -98 calling set_mac_address [ 449.258927][T21242] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms) [ 449.301801][T21245] tipc: Enabling of bearer rejected, failed to enable media [ 449.359703][T21249] pimreg: entered allmulticast mode [ 449.372747][T21249] pimreg: left allmulticast mode [ 449.680005][ T5752] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 450.979344][T21280] netlink: 'syz.2.5837': attribute type 1 has an invalid length. [ 451.002401][T21280] 8021q: adding VLAN 0 to HW filter on device bond15 [ 451.083725][T21280] bond0: (slave syz_tun): Releasing backup interface [ 451.086469][T21280] syz_tun: left promiscuous mode [ 451.096888][T21280] bond15: (slave syz_tun): Enslaving as a backup interface with an up link [ 451.488772][T11044] net_ratelimit: 31 callbacks suppressed [ 451.488787][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 451.617950][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 451.728180][T11045] bond11: (slave syz_tun): failed to get link speed/duplex [ 451.838487][ T223] bond11: (slave syz_tun): failed to get link speed/duplex [ 451.947922][T11045] bond11: (slave syz_tun): failed to get link speed/duplex [ 452.067878][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 452.178042][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 452.289607][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 452.398047][ T223] bond11: (slave syz_tun): failed to get link speed/duplex [ 452.507988][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 453.147485][T21315] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5850'. [ 453.228851][T21319] fuse: fd is not a fuse device [ 455.037999][ C2] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured! [ 455.120531][ T223] netdevsim netdevsim4 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 455.130837][ T223] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 455.370262][ T223] netdevsim netdevsim4 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 455.374293][ T223] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 455.472351][ T223] netdevsim netdevsim4 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 455.476314][ T223] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 455.496505][T21357] tipc: Started in network mode [ 455.499093][T21357] tipc: Node identity 080211000001, cluster identity 4711 [ 455.502671][T21357] tipc: Enabled bearer , priority 0 [ 455.609251][ T223] netdevsim netdevsim4 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 455.613336][ T223] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 455.788348][T21367] netlink: 'syz.1.5878': attribute type 39 has an invalid length. [ 455.933709][ T223] bridge_slave_1: left allmulticast mode [ 455.939632][T21381] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5872'. [ 455.939677][ T223] bridge_slave_1: left promiscuous mode [ 455.946719][ T223] bridge0: port 2(bridge_slave_1) entered disabled state [ 455.965699][ T223] bridge_slave_0: left allmulticast mode [ 455.968518][ T223] bridge_slave_0: left promiscuous mode [ 455.970537][ T223] bridge0: port 1(bridge_slave_0) entered disabled state [ 456.118448][ T223] bond1 (unregistering): (slave ip6gre1): Releasing backup interface [ 456.193097][ T223] bond2 (unregistering): (slave geneve2): Releasing active interface [ 456.284779][ T223] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 456.291790][ T223] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 456.298020][ T223] bond0 (unregistering): Released all slaves [ 456.306557][ T223] bond1 (unregistering): Released all slaves [ 456.320406][ T223] bond2 (unregistering): Released all slaves [ 456.330613][ T223] bond3 (unregistering): Released all slaves [ 456.721679][T15605] tipc: Node number set to 134418688 [ 456.728105][T11044] net_ratelimit: 29 callbacks suppressed [ 456.728116][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 456.744971][ T5451] 8021q: adding VLAN 0 to HW filter on device eth6 [ 456.837896][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 456.948228][T11037] bond11: (slave syz_tun): failed to get link speed/duplex [ 457.036326][ T5451] 8021q: adding VLAN 0 to HW filter on device eth7 [ 457.058774][T11045] bond11: (slave syz_tun): failed to get link speed/duplex [ 457.179718][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 457.295241][ T223] hsr_slave_0: left promiscuous mode [ 457.308858][ T223] hsr_slave_1: left promiscuous mode [ 457.311334][ T223] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 457.322553][ T223] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 457.338336][ T223] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 457.347856][ T223] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 457.421114][ T223] veth1_macvtap: left promiscuous mode [ 457.425085][ T223] veth0_macvtap: left promiscuous mode [ 457.439614][ T223] veth1_vlan: left promiscuous mode [ 457.444109][ T223] veth0_vlan: left promiscuous mode [ 457.818723][ T223] team0 (unregistering): Port device team_slave_1 removed [ 457.848992][ T223] team0 (unregistering): Port device team_slave_0 removed [ 457.977920][ T5451] 8021q: adding VLAN 0 to HW filter on device eth9 [ 457.988910][ T59] bond11: (slave syz_tun): failed to get link speed/duplex [ 458.098370][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 458.228619][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 458.315936][ T5451] 8021q: adding VLAN 0 to HW filter on device eth8 [ 458.338580][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 458.448081][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 458.572025][T21447] netlink: 'syz.2.5882': attribute type 39 has an invalid length. [ 459.599382][T21481] overlayfs: failed to clone upperpath [ 459.647326][T21482] netlink: 'syz.2.5895': attribute type 2 has an invalid length. [ 459.650762][T21482] netlink: 'syz.2.5895': attribute type 2 has an invalid length. [ 460.879697][T21496] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5904'. [ 461.462009][T21513] overlayfs: failed to clone upperpath [ 461.617712][T21519] netlink: 'syz.5.5909': attribute type 2 has an invalid length. [ 461.622357][T21519] netlink: 'syz.5.5909': attribute type 2 has an invalid length. [ 461.797970][ T223] net_ratelimit: 29 callbacks suppressed [ 461.797990][ T223] bond11: (slave syz_tun): failed to get link speed/duplex [ 461.907986][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 462.018742][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 462.128522][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 462.238167][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 462.348614][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 462.457980][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 462.568261][T11045] bond11: (slave syz_tun): failed to get link speed/duplex [ 462.678097][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 462.788182][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 463.156676][T21545] netlink: 'syz.5.5920': attribute type 1 has an invalid length. [ 463.177614][T21545] 8021q: adding VLAN 0 to HW filter on device bond11 [ 463.204800][T21545] vlan0: entered allmulticast mode [ 463.207008][T21545] veth0_to_bond: entered allmulticast mode [ 463.215297][T21545] bond11: (slave vlan0): making interface the new active one [ 463.219432][T21545] bond11: (slave vlan0): Enslaving as an active interface with an up link [ 464.413496][T21574] ipvlan0: entered allmulticast mode [ 464.416025][T21574] dummy0: entered allmulticast mode [ 465.352452][T21590] netlink: 'syz.2.5930': attribute type 1 has an invalid length. [ 465.386813][T21590] 8021q: adding VLAN 0 to HW filter on device bond16 [ 465.414368][T21590] vlan3: entered allmulticast mode [ 465.416870][T21590] veth0_to_bond: entered allmulticast mode [ 465.420823][T21590] bond16: (slave vlan3): Opening slave failed [ 465.565500][T21597] fuse: fd is not a fuse device [ 465.773292][T21609] netlink: 28 bytes leftover after parsing attributes in process `syz.6.5938'. [ 465.797441][T21611] netlink: 'syz.1.5940': attribute type 4 has an invalid length. [ 466.838436][ T223] net_ratelimit: 34 callbacks suppressed [ 466.838449][ T223] bond11: (slave syz_tun): failed to get link speed/duplex [ 466.859201][T21626] netlink: 'syz.1.5945': attribute type 1 has an invalid length. [ 466.881177][T21626] 8021q: adding VLAN 0 to HW filter on device bond0 [ 466.885492][T21630] netlink: 'syz.5.5955': attribute type 4 has an invalid length. [ 466.902749][T21626] vlan3: entered allmulticast mode [ 466.904776][T21626] veth0_to_bond: entered allmulticast mode [ 466.907675][T21626] bond0: (slave vlan3): Opening slave failed [ 466.958200][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 467.068135][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 467.123079][T21638] syz_tun: entered allmulticast mode [ 467.188893][T11037] bond11: (slave syz_tun): failed to get link speed/duplex [ 467.298064][T11037] bond11: (slave syz_tun): failed to get link speed/duplex [ 467.299297][T21647] netlink: 28 bytes leftover after parsing attributes in process `syz.5.5952'. [ 467.418283][T11037] bond11: (slave syz_tun): failed to get link speed/duplex [ 467.538395][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 467.648203][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 467.768299][T11037] bond11: (slave syz_tun): failed to get link speed/duplex [ 467.877973][T11037] bond11: (slave syz_tun): failed to get link speed/duplex [ 468.180136][T21661] tipc: Failed to remove unknown binding: 66,0,0/134418688:1182868302/1182868303 [ 468.190425][T21661] tipc: Failed to remove unknown binding: 66,0,0/134418688:1182868302/1182868303 [ 468.755912][T21694] ip6tnl0: Caught tx_queue_len zero misconfig [ 469.711454][T21720] overlayfs: failed to clone upperpath [ 470.603527][T21738] netlink: 84 bytes leftover after parsing attributes in process `syz.5.5979'. [ 470.611727][T21738] netlink: 84 bytes leftover after parsing attributes in process `syz.5.5979'. [ 471.851646][T11037] net_ratelimit: 34 callbacks suppressed [ 471.851663][T11037] bond11: (slave syz_tun): failed to get link speed/duplex [ 471.967910][T11037] bond11: (slave syz_tun): failed to get link speed/duplex [ 472.089217][T11037] bond11: (slave syz_tun): failed to get link speed/duplex [ 472.206484][T21779] fuse: fd is not a fuse device [ 472.209122][T11037] bond11: (slave syz_tun): failed to get link speed/duplex [ 472.317929][T11045] bond11: (slave syz_tun): failed to get link speed/duplex [ 472.438391][ T223] bond11: (slave syz_tun): failed to get link speed/duplex [ 472.550223][T11045] bond11: (slave syz_tun): failed to get link speed/duplex [ 472.657955][T11045] bond11: (slave syz_tun): failed to get link speed/duplex [ 472.768232][T11045] bond11: (slave syz_tun): failed to get link speed/duplex [ 472.879697][T11044] bond11: (slave syz_tun): failed to get link speed/duplex [ 473.661931][T21821] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6005'. [ 473.746126][T21824] syz_tun: entered allmulticast mode [ 473.823631][T21826] overlayfs: failed to clone upperpath [ 474.645114][T21843] fuse: fd is not a fuse device [ 475.158524][ T40] audit: type=1804 audit(1778104903.765:14822): pid=21879 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.6029" name="file0" dev="tmpfs" ino=2495 res=1 errno=0 [ 475.158932][T21879] ref_ctr increment failed for inode: 0x9bf offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff88801b8cd5c0 [ 475.203207][T21878] uprobe: syz.6.6029:21878 failed to unregister, leaking uprobe [ 475.539141][T21888] fuse: fd is not a fuse device [ 475.575862][T21890] overlayfs: failed to clone upperpath [ 475.617233][T21892] veth0_vlan: entered allmulticast mode [ 475.620630][T21892] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6042'. [ 475.824237][T21892] veth0_vlan (unregistering): left allmulticast mode [ 476.132024][T21902] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6044'. [ 476.325061][T21918] fuse: fd is not a fuse device [ 476.655153][T21935] tipc: Resetting bearer [ 476.908025][T11045] net_ratelimit: 30 callbacks suppressed [ 476.908046][T11045] bond11: (slave syz_tun): failed to get link speed/duplex [ 477.028130][ T59] bond11: (slave syz_tun): failed to get link speed/duplex [ 477.147940][ T59] bond11: (slave syz_tun): failed to get link speed/duplex [ 477.269472][ T59] bond11: (slave syz_tun): failed to get link speed/duplex [ 477.291341][T21945] netlink: 24 bytes leftover after parsing attributes in process `syz.5.6054'. [ 477.387941][T11037] bond11: (slave syz_tun): failed to get link speed/duplex [ 477.498009][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 477.512228][T21962] overlayfs: failed to clone upperpath [ 477.609658][T11037] bond11: (slave syz_tun): failed to get link speed/duplex [ 477.718353][T11045] bond11: (slave syz_tun): failed to get link speed/duplex [ 477.838012][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 477.948580][T11045] bond11: (slave syz_tun): failed to get link speed/duplex [ 477.953383][T21983] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6068'. [ 477.970008][T21983] netlink: 'syz.5.6068': attribute type 5 has an invalid length. [ 477.973614][T21983] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6068'. [ 478.627367][T21993] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6072'. [ 478.654890][T21995] fuse: fd is not a fuse device [ 478.670684][T21993] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6072'. [ 478.767600][ T40] audit: type=1804 audit(1778104907.365:14823): pid=22000 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.6075" name="file0" dev="ramfs" ino=85278 res=1 errno=0 [ 478.883012][T22005] fuse: fd is not a fuse device [ 479.011702][T22021] fuse: fd is not a fuse device [ 479.081485][T22029] fuse: fd is not a fuse device [ 479.623779][T22065] 9pnet: p9_errstr2errno: server reported unknown error 0x0000000000 [ 480.946952][T22111] netlink: 'syz.5.6119': attribute type 1 has an invalid length. [ 480.963691][T22111] 8021q: adding VLAN 0 to HW filter on device bond12 [ 480.997500][T22111] bond12: up delay (35976) is not a multiple of miimon (100), value rounded to 35900 ms [ 481.004942][T22111] bond12: entered allmulticast mode [ 481.031735][T22111] bond12: (slave ip6gretap1): Enslaving as an active interface with an up link [ 481.149338][T22122] fuse: fd is not a fuse device [ 481.182228][T22129] overlayfs: failed to clone upperpath [ 481.225112][ T10] IPVS: starting estimator thread 0... [ 481.328025][T22135] IPVS: using max 45 ests per chain, 108000 per kthread [ 481.514359][T22148] overlayfs: failed to clone upperpath [ 481.807539][T22166] netlink: 14 bytes leftover after parsing attributes in process `syz.6.6135'. [ 482.017997][ T223] net_ratelimit: 36 callbacks suppressed [ 482.018014][ T223] bond11: (slave syz_tun): failed to get link speed/duplex [ 482.141245][ T223] bond11: (slave syz_tun): failed to get link speed/duplex [ 482.253329][T11043] bond11: (slave syz_tun): failed to get link speed/duplex [ 482.319576][T22175] 9pnet: p9_errstr2errno: server reported unknown error 0x0000000000 [ 482.358583][ T223] bond11: (slave syz_tun): failed to get link speed/duplex [ 482.379449][T22178] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6140'. [ 482.431996][T22178] 8021q: adding VLAN 0 to HW filter on device bond16 [ 482.443053][T22178] bond16 (unregistering): Released all slaves [ 482.468272][T11043] bond11: (slave syz_tun): failed to get link speed/duplex [ 482.580198][ T223] bond11: (slave syz_tun): failed to get link speed/duplex [ 482.641844][T22190] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6143'. [ 482.645732][T22190] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6143'. [ 482.649590][T22190] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6143'. [ 482.662547][T22192] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6144'. [ 482.666849][T22192] netlink: 24 bytes leftover after parsing attributes in process `syz.2.6144'. [ 482.688427][T11043] bond11: (slave syz_tun): failed to get link speed/duplex [ 482.743882][T22198] netlink: 24 bytes leftover after parsing attributes in process `syz.6.6154'. [ 482.794658][T22200] netlink: 24 bytes leftover after parsing attributes in process `syz.5.6147'. [ 482.838080][T11043] bond11: (slave syz_tun): failed to get link speed/duplex [ 482.947989][ T59] bond11: (slave syz_tun): failed to get link speed/duplex [ 482.991737][T22208] netlink: 'syz.2.6149': attribute type 1 has an invalid length. [ 483.015091][T22208] 8021q: adding VLAN 0 to HW filter on device bond17 [ 483.034206][T22208] bond17: up delay (35976) is not a multiple of miimon (100), value rounded to 35900 ms [ 483.038857][T22208] bond17: entered allmulticast mode [ 483.054059][T22208] bond17: (slave ip6gretap2): Enslaving as an active interface with an up link [ 483.078773][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 483.118849][T22218] overlayfs: failed to clone upperpath [ 483.590876][T22245] fuse: fd is not a fuse device [ 483.843536][T22252] netlink: 'syz.6.6161': attribute type 1 has an invalid length. [ 483.870164][T22252] 8021q: adding VLAN 0 to HW filter on device bond3 [ 483.894708][T22252] bond3: up delay (35976) is not a multiple of miimon (100), value rounded to 35900 ms [ 483.898108][T22257] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6164'. [ 483.902141][T22252] bond3: entered allmulticast mode [ 483.903456][T22257] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6164'. [ 483.911233][T22257] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6164'. [ 483.919935][T22252] bond3: (slave ip6gretap1): Enslaving as an active interface with an up link [ 483.945180][T22259] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6172'. [ 483.991628][T22261] netlink: 'syz.6.6165': attribute type 1 has an invalid length. [ 484.018635][T22261] 8021q: adding VLAN 0 to HW filter on device bond4 [ 484.080053][T22261] bond4: (slave veth15): Enslaving as an active interface with a down link [ 484.130770][T22261] veth0_virt_wifi: entered promiscuous mode [ 484.137438][T22261] bond4: (slave veth0_virt_wifi): Enslaving as an active interface with a down link [ 484.149916][T22261] veth0_virt_wifi: left promiscuous mode [ 484.155822][T22261] bond4: (slave veth0_virt_wifi): Releasing active interface [ 484.247503][T22268] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6167'. [ 484.252332][T22268] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6167'. [ 484.818741][T22276] netlink: 'syz.2.6170': attribute type 1 has an invalid length. [ 484.837152][T22276] 8021q: adding VLAN 0 to HW filter on device bond18 [ 485.343826][ T5837] syz0: Port: 1 Link DOWN [ 485.343862][ T223] netdevsim netdevsim5 eth0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 485.349863][ T223] netdevsim netdevsim5 eth1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 485.355526][ T223] netdevsim netdevsim5 eth2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 485.359947][ T223] netdevsim netdevsim5 eth3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 485.811014][T22298] netlink: 24 bytes leftover after parsing attributes in process `syz.6.6176'. [ 485.909855][T22298] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6176'. [ 487.087914][ T223] net_ratelimit: 30 callbacks suppressed [ 487.087927][ T223] bond11: (slave syz_tun): failed to get link speed/duplex [ 487.198941][ T223] bond11: (slave syz_tun): failed to get link speed/duplex [ 487.300372][T22317] overlayfs: failed to clone upperpath [ 487.307937][T11043] bond11: (slave syz_tun): failed to get link speed/duplex [ 487.418700][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 487.458259][T22326] bridge_slave_0: entered promiscuous mode [ 487.461194][T22326] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 487.521946][T22338] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6192'. [ 487.532038][T22338] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6192'. [ 487.546291][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 487.592381][T22345] gretap2: entered promiscuous mode [ 487.595426][T22345] batman_adv: batadv0: Adding interface: gretap2 [ 487.598354][T22345] batman_adv: batadv0: The MTU of interface gretap2 is too small (1462) to handle the transport of batman-adv packets. If you experience problems getting traffic through try increasing the MTU to 1568. [ 487.606667][T22345] batman_adv: batadv0: Not using interface gretap2 (retrying later): interface not active [ 487.644745][T22353] netlink: 'syz.6.6199': attribute type 29 has an invalid length. [ 487.659433][T11037] bond11: (slave syz_tun): failed to get link speed/duplex [ 487.679811][T22356] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 487.682738][T22356] overlayfs: failed to set xattr on upper [ 487.685349][T22356] overlayfs: ...falling back to redirect_dir=nofollow. [ 487.688275][T22356] overlayfs: ...falling back to index=off. [ 487.690399][T22356] overlayfs: ...falling back to uuid=null. [ 487.692900][T22356] overlayfs: failed to clone lowerpath [ 487.772274][T11043] bond11: (slave syz_tun): failed to get link speed/duplex [ 487.928419][T11043] bond11: (slave syz_tun): failed to get link speed/duplex [ 488.038060][T11040] bond11: (slave syz_tun): failed to get link speed/duplex [ 488.299696][T22395] netlink: 'syz.2.6213': attribute type 29 has an invalid length. [ 488.305430][T22395] netlink: 'syz.2.6213': attribute type 29 has an invalid length. [ 489.095278][T22408] 9pnet: p9_errstr2errno: server reported unknown error 0x000000000 [ 489.294288][T22425] __nla_validate_parse: 7 callbacks suppressed [ 489.294301][T22425] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6224'. [ 489.312815][T22425] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6224'. [ 489.597020][T22435] netlink: 24 bytes leftover after parsing attributes in process `syz.6.6228'. [ 489.624933][T22435] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6228'. [ 490.371087][T22457] sch_tbf: burst 4 is lower than device lo mtu (18) ! [ 490.417224][ T40] audit: type=1804 audit(1778104919.013:14824): pid=22459 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.6237" name="file0" dev="tmpfs" ino=8956 res=1 errno=0 [ 490.834134][T22476] tipc: Failed to remove unknown binding: 66,0,0/134418688:3730001484/3730001486 [ 490.838506][T22476] tipc: Failed to remove unknown binding: 66,0,0/134418688:3730001484/3730001485 [ 490.843766][T22476] tipc: Failed to remove unknown binding: 66,0,0/134418688:3730001484/3730001486 [ 490.848436][T22476] tipc: Failed to remove unknown binding: 66,0,0/134418688:3730001484/3730001485 [ 491.609127][ T40] audit: type=1326 audit(1778104920.213:14825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22496 comm="syz.1.6252" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x0 [ 492.147662][ T59] net_ratelimit: 35 callbacks suppressed [ 492.147678][ T59] bond11: (slave syz_tun): failed to get link speed/duplex [ 492.266062][ T59] bond11: (slave syz_tun): failed to get link speed/duplex [ 492.386099][ T223] bond11: (slave syz_tun): failed to get link speed/duplex [ 492.690832][T22522] netlink: 'syz.6.6259': attribute type 32 has an invalid length. [ 492.694382][T22522] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6259'. [ 492.700031][T22522] netlink: 'syz.6.6259': attribute type 32 has an invalid length. [ 493.769755][T22561] veth0_macvtap: Caught tx_queue_len zero misconfig [ 496.403913][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 496.773728][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 498.602105][T22656] bond3: left allmulticast mode [ 501.325338][T22670] Set syz1 is full, maxelem 65536 reached [ 501.661700][T22694] tipc: Failed to remove unknown binding: 66,0,0/2099199:4184593710/4184593712 [ 501.665761][T22694] tipc: Failed to remove unknown binding: 66,0,0/2099199:4184593710/4184593711 [ 501.669840][T22694] tipc: Failed to remove unknown binding: 66,0,0/2099199:4184593710/4184593712 [ 501.673706][T22694] tipc: Failed to remove unknown binding: 66,0,0/2099199:4184593710/4184593711 [ 501.872846][T22699] overlayfs: failed to clone upperpath [ 502.875282][T22710] fuse: fd is not a fuse device [ 505.969295][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 506.243507][ T1432] ieee802154 phy0 wpan0: encryption failed: -22 [ 506.246411][ T1432] ieee802154 phy1 wpan1: encryption failed: -22 [ 507.648838][T22758] bond5: (slave ip6gretap2): making interface the new active one [ 507.655518][T22758] bond5: (slave ip6gretap2): Enslaving as an active interface with an up link [ 508.320124][T22769] netlink: 24 bytes leftover after parsing attributes in process `syz.2.6331'. [ 508.369190][T22773] tmpfs: Bad value for 'nr_blocks' [ 508.397656][T22774] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6331'. [ 508.830288][T22779] netlink: 'syz.2.6337': attribute type 1 has an invalid length. [ 508.990968][T22779] 8021q: adding VLAN 0 to HW filter on device bond20 [ 508.996031][T22779] bond19: (slave bond20): making interface the new active one [ 509.015202][T22779] bond19: (slave bond20): Enslaving as an active interface with an up link [ 509.029407][T22782] bond19: (slave gretap3): Enslaving as a backup interface with an up link [ 509.383260][T22794] overlayfs: failed to clone upperpath [ 509.448647][T22799] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6346'. [ 509.510599][T22799] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6346'. [ 510.487152][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 510.736051][T22821] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6352'. [ 512.941365][T22845] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 512.944402][T22845] overlayfs: failed to set xattr on upper [ 512.994326][T22845] overlayfs: ...falling back to redirect_dir=nofollow. [ 513.026363][T22845] overlayfs: ...falling back to index=off. [ 513.046952][T22845] overlayfs: ...falling back to uuid=null. [ 513.115295][T22845] overlayfs: failed to clone lowerpath [ 513.704175][T22855] fuse: fd is not a fuse device [ 515.645623][T22872] fuse: fd is not a fuse device [ 515.774935][T22877] netlink: 24 bytes leftover after parsing attributes in process `syz.6.6371'. [ 515.863371][T22881] ipvlan2: left allmulticast mode [ 515.866071][T22881] bond4: left allmulticast mode [ 515.892002][T22881] vlan2: left allmulticast mode [ 515.894138][T22881] bond7: left allmulticast mode [ 515.896436][T22881] geneve2: left allmulticast mode [ 515.898820][T22881] bond8: left allmulticast mode [ 515.902726][T22881] vlan0: left allmulticast mode [ 515.905008][T22881] veth0_to_bond: left allmulticast mode [ 515.908089][T22881] bond12: left allmulticast mode [ 516.151777][T22886] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 518.631283][ T40] audit: type=1326 audit(1778104947.246:14826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22942 comm="syz.1.6391" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x7fc00000 [ 518.639156][ T40] audit: type=1326 audit(1778104947.246:14827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22942 comm="syz.1.6391" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf702efcc code=0x7fc00000 [ 519.362854][ T40] audit: type=1326 audit(1778104947.977:14828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22942 comm="syz.1.6391" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x7fc00000 [ 519.494882][T22958] fuse: fd is not a fuse device [ 519.599163][T22962] fuse: fd is not a fuse device [ 519.642071][T22966] netlink: 'syz.1.6399': attribute type 1 has an invalid length. [ 519.663630][T22966] 8021q: adding VLAN 0 to HW filter on device bond16 [ 519.684401][T22966] bond16: entered allmulticast mode [ 519.692552][T22966] macvlan2: entered promiscuous mode [ 519.695260][T22966] macvlan2: entered allmulticast mode [ 519.697765][T22966] bond16: entered promiscuous mode [ 519.700386][T22966] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 519.706937][T22966] bond16: left promiscuous mode [ 520.243364][T22982] overlayfs: failed to clone upperpath [ 521.050102][T23002] netlink: 200 bytes leftover after parsing attributes in process `syz.5.6411'. [ 522.338367][T23021] fuse: fd is not a fuse device [ 523.485795][T23052] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6430'. [ 523.540997][T23052] bond13: entered promiscuous mode [ 523.543340][T23052] bond13: entered allmulticast mode [ 523.546930][T23055] fuse: fd is not a fuse device [ 523.791521][T23065] netlink: 12 bytes leftover after parsing attributes in process `syz.6.6435'. [ 524.360038][ T40] audit: type=1326 audit(1778104952.979:14829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23075 comm="syz.1.6446" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x0 [ 524.689071][T23097] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6444'. [ 524.927710][ T24] libceph: connect (1)[c::]:6789 error -99 [ 524.929966][ T24] libceph: mon0 (1)[c::]:6789 connect error [ 524.933430][ T24] libceph: connect (1)[c::]:6789 error -99 [ 524.935502][ T24] libceph: mon0 (1)[c::]:6789 connect error [ 525.081933][T23107] ceph: No mds server is up or the cluster is laggy [ 525.636998][ T40] audit: type=1326 audit(1778104954.249:14830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23147 comm="syz.1.6466" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 525.652463][ T40] audit: type=1326 audit(1778104954.249:14831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23147 comm="syz.1.6466" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 525.668607][ T40] audit: type=1326 audit(1778104954.249:14832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23147 comm="syz.1.6466" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 525.683586][ T40] audit: type=1326 audit(1778104954.249:14833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23147 comm="syz.1.6466" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 525.699353][ T40] audit: type=1326 audit(1778104954.249:14834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23147 comm="syz.1.6466" exe="/syz-executor" sig=0 arch=40000003 syscall=104 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 525.715690][ T40] audit: type=1326 audit(1778104954.249:14835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23147 comm="syz.1.6466" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 525.731974][ T40] audit: type=1326 audit(1778104954.249:14836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23147 comm="syz.1.6466" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 525.755219][ T40] audit: type=1326 audit(1778104954.249:14837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23147 comm="syz.1.6466" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 525.767255][ T40] audit: type=1326 audit(1778104954.249:14838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23147 comm="syz.1.6466" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 527.329669][T23169] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6464'. [ 527.522492][T23184] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6467'. [ 527.546404][T23184] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6467'. [ 527.612961][T23190] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6470'. [ 527.876772][T23211] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6473'. [ 527.896681][T23211] bond17: entered promiscuous mode [ 527.899964][T23211] 8021q: adding VLAN 0 to HW filter on device bond17 [ 527.953601][T23211] 8021q: adding VLAN 0 to HW filter on device bond17 [ 527.956290][T23211] bond17: (slave sit5): The slave device specified does not support setting the MAC address [ 527.960621][T23211] bond17: (slave sit5): Error -95 calling set_mac_address [ 528.948885][T23241] fuse: fd is not a fuse device [ 529.054576][T23244] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6482'. [ 529.058176][T23244] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6482'. [ 530.504024][T23266] team_slave_1: Caught tx_queue_len zero misconfig [ 531.656092][T23276] netlink: 24 bytes leftover after parsing attributes in process `syz.2.6491'. [ 531.986996][ T0] NOHZ tick-stop error: local softirq work is pending, handler #206!!! [ 532.083806][T23295] overlayfs: failed to clone upperpath [ 533.677352][T23354] fuse: fd is not a fuse device [ 533.722316][T23359] overlayfs: failed to clone upperpath [ 534.101970][T23374] pimreg: entered allmulticast mode [ 534.152146][T23376] netlink: 140 bytes leftover after parsing attributes in process `syz.6.6519'. [ 534.155534][T23376] netlink: 28 bytes leftover after parsing attributes in process `syz.6.6519'. [ 535.132683][T23387] fuse: fd is not a fuse device [ 535.200737][T23389] tipc: Enabling of bearer rejected, failed to enable media [ 536.356263][T23433] fuse: fd is not a fuse device [ 536.481763][T23440] netlink: 'syz.5.6540': attribute type 1 has an invalid length. [ 536.530818][T23440] bond14: (slave bridge9): Enslaving as a backup interface with an up link [ 536.568520][T23440] veth35: entered promiscuous mode [ 536.570602][T23440] veth35: entered allmulticast mode [ 536.578823][T23440] bond14: (slave veth35): Enslaving as a backup interface with a down link [ 537.111396][ T40] kauditd_printk_skb: 443 callbacks suppressed [ 537.111413][ T40] audit: type=1326 audit(1778104965.735:15282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23450 comm="syz.1.6544" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x0 [ 537.502090][T23463] sit2: entered promiscuous mode [ 537.554722][T23465] netlink: 15678 bytes leftover after parsing attributes in process `syz.5.6549'. [ 537.960300][T23482] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6550'. [ 538.018629][T23482] bridge10: port 1(veth37) entered blocking state [ 538.020936][T23482] bridge10: port 1(veth37) entered disabled state [ 538.023192][T23482] veth37: entered allmulticast mode [ 538.026470][T23482] veth37: entered promiscuous mode [ 538.052049][T23490] bridge10: port 2(veth39) entered blocking state [ 538.054466][T23490] bridge10: port 2(veth39) entered disabled state [ 538.056626][T23490] veth39: entered allmulticast mode [ 538.059297][T23490] veth39: entered promiscuous mode [ 539.622789][T23545] netlink: 'syz.2.6570': attribute type 1 has an invalid length. [ 539.639828][T23545] bond21: entered promiscuous mode [ 539.642386][T23545] 8021q: adding VLAN 0 to HW filter on device bond21 [ 539.658852][T23545] bond21: (slave bridge10): making interface the new active one [ 539.661394][T23545] bridge10: entered promiscuous mode [ 539.663963][T23545] bond21: (slave bridge10): Enslaving as an active interface with an up link [ 539.676483][T23545] bond21: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 539.681566][T23545] bond21: (slave ipvlan2): The slave device specified does not support setting the MAC address [ 539.814918][T23550] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6573'. [ 541.204057][T23571] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6579'. [ 541.208095][T23571] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6579'. [ 541.407188][T23581] fuse: fd is not a fuse device [ 541.414749][ T9] kernel read not supported for file /newroot/998/file0 (pid: 9 comm: kworker/0:0) [ 541.726333][ T40] audit: type=1804 audit(1778104970.357:15283): pid=23597 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.6590" name="bus" dev="ramfs" ino=90204 res=1 errno=0 [ 541.734525][ T40] audit: type=1804 audit(1778104970.357:15284): pid=23597 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.6590" name="bus" dev="ramfs" ino=90204 res=1 errno=0 [ 542.083613][T23601] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6591'. [ 542.088433][T23601] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6591'. [ 542.095644][T23601] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6591'. [ 542.104602][T23601] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6591'. [ 542.125069][T23601] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6591'. [ 543.872193][T23638] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6602'. [ 544.309870][T23665] fuse: fd is not a fuse device [ 544.731238][T23697] fuse: fd is not a fuse device [ 545.465405][T23710] netlink: 144 bytes leftover after parsing attributes in process `syz.6.6624'. [ 545.497775][T23712] overlayfs: failed to clone upperpath [ 547.391437][T23759] netlink: 'syz.6.6637': attribute type 10 has an invalid length. [ 547.427835][T23761] fuse: fd is not a fuse device [ 548.501369][T23796] overlayfs: failed to clone upperpath [ 548.870728][T23810] overlayfs: failed to clone upperpath [ 549.023113][T23815] tipc: Enabling of bearer rejected, failed to enable media [ 549.156182][ T5752] Bluetooth: hci3: ACL packet for unknown connection handle 201 [ 549.928719][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 553.704632][T23907] tmpfs: Bad value for 'nr_blocks' [ 555.184189][T23934] netlink: 'syz.1.6698': attribute type 39 has an invalid length. [ 555.198377][T23934] bond11: (slave syz_tun): Removing an active aggregator [ 555.205397][T23934] bond11: (slave syz_tun): Releasing backup interface [ 555.211766][T23934] syz_tun (unregistering): left allmulticast mode [ 555.215350][T11045] smc: removing ib device syz1 [ 555.239344][T11045] smbdirect: ib_dev[syz1] removed [ 555.861437][T23927] Set syz1 is full, maxelem 65536 reached [ 557.710627][T23990] netlink: 'syz.1.6722': attribute type 1 has an invalid length. [ 557.772402][T23990] 8021q: adding VLAN 0 to HW filter on device bond19 [ 557.784053][T23990] bond18: (slave bond19): making interface the new active one [ 557.793265][T23990] bond18: (slave bond19): Enslaving as an active interface with an up link [ 557.822874][T23993] bond18: (slave gretap3): Enslaving as a backup interface with an up link [ 558.168707][T24004] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6732'. [ 558.519530][T24019] 8021q: adding VLAN 0 to HW filter on device bond22 [ 558.552715][T24019] bond22: (slave ip6gretap3): making interface the new active one [ 558.556320][T24019] bond22: (slave ip6gretap3): Enslaving as an active interface with an up link [ 558.777407][T24033] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6735'. [ 559.972243][T24055] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6740'. [ 560.227107][T24065] fuse: fd is not a fuse device [ 561.180097][ T40] audit: type=1326 audit(1778104989.816:15285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24081 comm="syz.6.6749" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f03fcc code=0x0 [ 563.025683][T24116] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6760'. [ 563.900982][T24130] netlink: 24 bytes leftover after parsing attributes in process `syz.5.6765'. [ 564.179862][T24141] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6768'. [ 564.226449][T24141] vlan3: entered allmulticast mode [ 564.230771][T24141] bridge8: entered allmulticast mode [ 564.263344][T24141] bridge8: port 1(erspan0) entered blocking state [ 564.269979][T24141] bridge8: port 1(erspan0) entered disabled state [ 564.274740][T24141] erspan0: entered allmulticast mode [ 564.283974][T24141] erspan0: entered promiscuous mode [ 565.153138][T24170] netlink: 24 bytes leftover after parsing attributes in process `syz.2.6776'. [ 565.232637][T24174] fuse: fd is not a fuse device [ 566.461904][T24185] fuse: fd is not a fuse device [ 566.779224][T24199] overlayfs: failed to clone upperpath [ 566.848213][T24204] fuse: fd is not a fuse device [ 567.653036][ T1432] ieee802154 phy0 wpan0: encryption failed: -22 [ 567.655136][ T1432] ieee802154 phy1 wpan1: encryption failed: -22 [ 568.971504][ T40] audit: type=1326 audit(1778104997.599:15286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24237 comm="syz.5.6804" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75fcc code=0x7fc00000 [ 568.978418][ T40] audit: type=1326 audit(1778104997.609:15287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24237 comm="syz.5.6804" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f75fcc code=0x7fc00000 [ 569.334137][T24247] netlink: 'syz.6.6797': attribute type 1 has an invalid length. [ 569.354354][T24247] 8021q: adding VLAN 0 to HW filter on device bond6 [ 569.375247][T24247] bond6: entered allmulticast mode [ 569.408181][T24247] macvlan0: entered promiscuous mode [ 569.410309][T24247] macvlan0: entered allmulticast mode [ 569.412884][T24247] bond6: entered promiscuous mode [ 569.415053][T24247] 8021q: adding VLAN 0 to HW filter on device macvlan0 [ 569.422110][T24247] bond6: left promiscuous mode [ 569.691477][ T40] audit: type=1326 audit(1778104998.330:15288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24237 comm="syz.5.6804" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75fcc code=0x7fc00000 [ 569.731054][T24251] overlayfs: failed to clone upperpath [ 571.551078][T24285] fuse: fd is not a fuse device [ 572.423021][T24298] netlink: 'syz.2.6811': attribute type 1 has an invalid length. [ 572.484151][T24298] 8021q: adding VLAN 0 to HW filter on device bond23 [ 572.487220][T24300] bond23: entered allmulticast mode [ 572.501549][T24302] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6814'. [ 572.543600][T24298] macvlan2: entered promiscuous mode [ 572.545406][T24298] macvlan2: entered allmulticast mode [ 572.547960][T24298] bond23: entered promiscuous mode [ 572.551935][T24298] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 572.560966][T24298] bond23: left promiscuous mode [ 572.628935][T24313] fuse: fd is not a fuse device [ 572.869320][T24315] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6820'. [ 572.895329][T24324] 9p: Bad value for 'rfdno' [ 573.150119][ T40] audit: type=1326 audit(1778105001.791:15289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24327 comm="syz.6.6833" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03fcc code=0x7ffc0000 [ 573.165464][ T40] audit: type=1326 audit(1778105001.801:15290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24327 comm="syz.6.6833" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03fcc code=0x7ffc0000 [ 573.175624][ T40] audit: type=1326 audit(1778105001.801:15291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24327 comm="syz.6.6833" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7f03fcc code=0x7ffc0000 [ 573.185719][ T40] audit: type=1326 audit(1778105001.801:15292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24327 comm="syz.6.6833" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03fcc code=0x7ffc0000 [ 573.195771][ T40] audit: type=1326 audit(1778105001.801:15293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24327 comm="syz.6.6833" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03fcc code=0x7ffc0000 [ 573.205744][ T40] audit: type=1326 audit(1778105001.801:15294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24327 comm="syz.6.6833" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f03fcc code=0x7ffc0000 [ 573.221882][ T40] audit: type=1326 audit(1778105001.801:15295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24327 comm="syz.6.6833" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03fcc code=0x7ffc0000 [ 573.568117][ T24] libceph: connect (1)[c::]:6789 error -101 [ 573.575062][ T24] libceph: mon0 (1)[c::]:6789 connect error [ 573.582134][T24348] fuse: fd is not a fuse device [ 573.623085][T24337] ceph: No mds server is up or the cluster is laggy [ 573.931021][T24355] tipc: Enabling of bearer rejected, already enabled [ 574.063696][ T40] kauditd_printk_skb: 4 callbacks suppressed [ 574.063710][ T40] audit: type=1326 audit(1778105002.702:15300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24339 comm="syz.2.6827" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf701efcc code=0x0 [ 574.421956][T24375] fuse: fd is not a fuse device [ 574.554123][T24380] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6841'. [ 574.792860][T24383] fuse: fd is not a fuse device [ 577.182403][T24437] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6855'. [ 577.185520][T24437] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6855'. [ 577.236892][T24439] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6858'. [ 577.307303][T24445] netlink: 'syz.1.6860': attribute type 1 has an invalid length. [ 577.327998][T24445] 8021q: adding VLAN 0 to HW filter on device bond20 [ 577.374546][T24445] bond20: (slave veth41): Enslaving as an active interface with a down link [ 577.420061][T24445] 8021q: adding VLAN 0 to HW filter on device batadv2 [ 577.423734][T24445] bond20: (slave batadv2): making interface the new active one [ 577.427187][T24445] batadv2: entered promiscuous mode [ 577.429284][T24445] bond20: (slave batadv2): Enslaving as an active interface with an up link [ 577.463642][T24445] bond20 (unregistering): (slave veth41): Releasing active interface [ 577.473600][T24445] bond20 (unregistering): (slave batadv2): Releasing active interface [ 577.479022][T24445] bond20 (unregistering): Released all slaves [ 577.492409][T24448] veth0_to_hsr: Caught tx_queue_len zero misconfig [ 577.497065][T24448] netlink: 24 bytes leftover after parsing attributes in process `syz.6.6861'. [ 577.825979][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 578.219408][T24469] netlink: 'syz.1.6867': attribute type 10 has an invalid length. [ 579.035503][T24486] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6874'. [ 579.388492][T24491] fuse: fd is not a fuse device [ 579.993172][T24506] netlink: 'syz.5.6880': attribute type 1 has an invalid length. [ 580.057575][T24506] 8021q: adding VLAN 0 to HW filter on device bond15 [ 580.106442][T24508] bond15: entered allmulticast mode [ 580.123451][T24506] macvlan2: entered promiscuous mode [ 580.132804][T24506] macvlan2: entered allmulticast mode [ 580.138460][T24506] bond15: entered promiscuous mode [ 580.142939][T24506] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 580.174842][T24506] bond15: left promiscuous mode [ 581.224475][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 581.718913][T24531] fuse: fd is not a fuse device [ 582.128593][T24543] netlink: 140 bytes leftover after parsing attributes in process `syz.5.6893'. [ 582.133182][T24543] netlink: 28 bytes leftover after parsing attributes in process `syz.5.6893'. [ 582.240725][T24549] sit3: entered promiscuous mode [ 583.087491][T24599] netlink: 12 bytes leftover after parsing attributes in process `syz.6.6905'. [ 583.149110][T24599] bridge7: port 1(veth19) entered blocking state [ 583.151462][T24599] bridge7: port 1(veth19) entered disabled state [ 583.154383][T24599] veth19: entered allmulticast mode [ 583.157719][T24599] veth19: entered promiscuous mode [ 583.198055][T24601] bridge7: port 2(veth21) entered blocking state [ 583.201167][T24601] bridge7: port 2(veth21) entered disabled state [ 583.204620][T24601] veth21: entered allmulticast mode [ 583.208866][T24601] veth21: entered promiscuous mode [ 583.680332][ T40] audit: type=1326 audit(1778105012.316:15301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24608 comm="syz.2.6908" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf701efcc code=0x0 [ 584.578575][T24624] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6914'. [ 585.096385][T24631] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6916'. [ 585.239457][T24637] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6917'. [ 585.250209][T24637] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6917'. [ 585.259755][T24637] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6917'. [ 585.264929][T24637] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6917'. [ 585.268881][T24637] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6917'. [ 586.351418][T24668] netlink: 24 bytes leftover after parsing attributes in process `syz.5.6929'. [ 586.614690][T24680] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6932'. [ 586.620295][T24680] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6932'. [ 586.729192][T24686] netlink: 'syz.5.6941': attribute type 1 has an invalid length. [ 586.743622][T24686] bond16: entered promiscuous mode [ 586.745985][T24686] 8021q: adding VLAN 0 to HW filter on device bond16 [ 586.829147][T24686] bond16: (slave bridge11): making interface the new active one [ 586.835982][T24686] bridge11: entered promiscuous mode [ 586.839673][T24686] bond16: (slave bridge11): Enslaving as an active interface with an up link [ 586.900854][T24686] bond16: (slave ipvlan0): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 586.905110][T24686] bond16: (slave ipvlan0): The slave device specified does not support setting the MAC address [ 587.864037][T24706] fuse: fd is not a fuse device [ 589.635068][T24744] __nla_validate_parse: 4 callbacks suppressed [ 589.635080][T24744] netlink: 24 bytes leftover after parsing attributes in process `syz.6.6956'. [ 590.145800][T24751] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6948'. [ 590.200482][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 590.233780][T24755] bridge11: port 1(veth47) entered blocking state [ 590.236898][T24755] bridge11: port 1(veth47) entered disabled state [ 590.239547][T24755] veth47: entered allmulticast mode [ 590.244828][T24755] veth47: entered promiscuous mode [ 590.463194][T24751] bridge11: port 2(veth49) entered blocking state [ 590.480374][ T0] NOHZ tick-stop error: local softirq work is pending, handler #204!!! [ 590.522186][T24751] bridge11: port 2(veth49) entered disabled state [ 590.605381][T24751] veth49: entered allmulticast mode [ 590.835517][T24751] veth49: entered promiscuous mode [ 591.689884][ T40] audit: type=1804 audit(1778105020.330:15302): pid=24774 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.6965" name="bus" dev="ramfs" ino=91893 res=1 errno=0 [ 591.706725][ T40] audit: type=1804 audit(1778105020.330:15303): pid=24774 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.6965" name="bus" dev="ramfs" ino=91893 res=1 errno=0 [ 592.942524][T24790] fuse: fd is not a fuse device [ 593.840722][T24811] fuse: fd is not a fuse device [ 595.146575][T24824] fuse: fd is not a fuse device [ 595.341872][T24834] fuse: fd is not a fuse device [ 596.035505][T24848] fuse: fd is not a fuse device [ 596.702483][T24855] netlink: 24 bytes leftover after parsing attributes in process `syz.5.6983'. [ 596.705197][T24857] fuse: fd is not a fuse device [ 597.021570][ T40] audit: type=1326 audit(1778105025.672:15304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24853 comm="syz.6.6984" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f03fcc code=0x0 [ 597.593661][T24867] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6986'. [ 597.648196][T24867] bond17: entered promiscuous mode [ 597.654416][T24867] 8021q: adding VLAN 0 to HW filter on device bond17 [ 598.444660][T24869] 8021q: adding VLAN 0 to HW filter on device bond17 [ 598.448367][T24869] bond17: (slave sit3): The slave device specified does not support setting the MAC address [ 598.453251][T24869] bond17: (slave sit3): Error -95 calling set_mac_address [ 598.962384][T24893] netlink: 200 bytes leftover after parsing attributes in process `syz.1.6994'. [ 599.052110][T24897] fuse: fd is not a fuse device [ 599.796101][T24903] bond6: left allmulticast mode [ 599.800986][T24903] sit3: left promiscuous mode [ 599.893835][ T40] audit: type=1326 audit(1778105028.543:15305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24902 comm="syz.1.6996" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 599.903508][ T40] audit: type=1326 audit(1778105028.543:15306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24902 comm="syz.1.6996" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 599.913463][ T40] audit: type=1326 audit(1778105028.553:15307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24902 comm="syz.1.6996" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 599.923268][ T40] audit: type=1326 audit(1778105028.553:15308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24902 comm="syz.1.6996" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 599.933821][ T40] audit: type=1326 audit(1778105028.553:15309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24902 comm="syz.1.6996" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 599.943799][ T40] audit: type=1326 audit(1778105028.553:15310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24902 comm="syz.1.6996" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 599.953612][ T40] audit: type=1326 audit(1778105028.553:15311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24902 comm="syz.1.6996" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 599.964487][ T40] audit: type=1326 audit(1778105028.553:15312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24902 comm="syz.1.6996" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 599.994673][ T40] audit: type=1326 audit(1778105028.643:15313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24902 comm="syz.1.6996" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 601.778612][T24946] netlink: 'syz.6.7006': attribute type 1 has an invalid length. [ 601.799084][T24946] bond7: entered promiscuous mode [ 601.801128][T24946] 8021q: adding VLAN 0 to HW filter on device bond7 [ 601.830645][T24946] bond7: (slave bridge8): making interface the new active one [ 601.833211][T24946] bridge8: entered promiscuous mode [ 601.836047][T24946] bond7: (slave bridge8): Enslaving as an active interface with an up link [ 601.856924][T24946] bond7: (slave ipvlan0): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 601.861386][T24946] bond7: (slave ipvlan0): The slave device specified does not support setting the MAC address [ 601.910515][T24953] netlink: 200 bytes leftover after parsing attributes in process `syz.2.7007'. [ 602.296670][T24957] bridge_slave_0: left promiscuous mode [ 602.309763][T24957] vlan2: left allmulticast mode [ 602.311819][T24957] bond13: left allmulticast mode [ 602.314588][T24957] gretap2: left promiscuous mode [ 602.320753][T24957] bond16: left allmulticast mode [ 602.336331][T24957] vlan3: left allmulticast mode [ 602.340369][T24957] bridge8: left allmulticast mode [ 603.829623][T24980] 8021q: adding VLAN 0 to HW filter on device bond4 [ 603.858636][T24980] bond4: (slave ip6gretap1): making interface the new active one [ 603.866884][T24980] bond4: (slave ip6gretap1): Enslaving as an active interface with an up link [ 604.687049][ T40] kauditd_printk_skb: 1 callbacks suppressed [ 604.687062][ T40] audit: type=1804 audit(1778105033.345:15315): pid=24997 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.7023" name="bus" dev="ramfs" ino=87728 res=1 errno=0 [ 604.700590][ T40] audit: type=1804 audit(1778105033.345:15316): pid=24997 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.7023" name="bus" dev="ramfs" ino=87728 res=1 errno=0 [ 606.563920][T25017] 8021q: adding VLAN 0 to HW filter on device bond18 [ 606.589023][T25017] bond18: (slave ip6gretap2): making interface the new active one [ 606.594953][T25017] bond18: (slave ip6gretap2): Enslaving as an active interface with an up link [ 606.988919][T25027] netlink: 'syz.5.7033': attribute type 39 has an invalid length. [ 607.028654][T25027] syz_tun (unregistering): left allmulticast mode [ 607.053742][T25027] bond9: (slave syz_tun): Removing an active aggregator [ 607.079611][T25027] bond9: (slave syz_tun): Releasing backup interface [ 608.016511][T25044] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7037'. [ 608.035037][T25044] bond24: entered promiscuous mode [ 608.037520][T25044] 8021q: adding VLAN 0 to HW filter on device bond24 [ 608.067594][T25044] 8021q: adding VLAN 0 to HW filter on device bond24 [ 608.070948][T25044] bond24: (slave sit5): The slave device specified does not support setting the MAC address [ 608.076267][T25044] bond24: (slave sit5): Error -95 calling set_mac_address [ 611.393884][T25091] fuse: fd is not a fuse device [ 612.301603][T25114] fuse: fd is not a fuse device [ 614.742953][T25161] netlink: 36 bytes leftover after parsing attributes in process `syz.6.7072'. [ 615.148310][T25180] netlink: 'syz.6.7080': attribute type 1 has an invalid length. [ 615.175975][T25180] 8021q: adding VLAN 0 to HW filter on device bond8 [ 615.264945][T25180] bond8: (slave veth27): Enslaving as an active interface with a down link [ 615.297177][T25184] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 615.315331][T25184] bond8: (slave batadv1): making interface the new active one [ 615.321455][T25184] batadv1: entered promiscuous mode [ 615.324608][T25184] bond8: (slave batadv1): Enslaving as an active interface with an up link [ 615.412139][T25180] bond8 (unregistering): (slave veth27): Releasing active interface [ 615.424459][T25180] bond8 (unregistering): (slave batadv1): Releasing active interface [ 615.431558][T25180] bond8 (unregistering): Released all slaves [ 617.226353][T25220] netlink: 'syz.5.7092': attribute type 1 has an invalid length. [ 617.255723][T25220] 8021q: adding VLAN 0 to HW filter on device bond19 [ 617.313430][T25220] bond19: (slave veth47): Enslaving as an active interface with a down link [ 617.359189][T25220] 8021q: adding VLAN 0 to HW filter on device batadv2 [ 617.364545][T25220] bond19: (slave batadv2): making interface the new active one [ 617.369337][T25220] batadv2: entered promiscuous mode [ 617.372025][T25220] bond19: (slave batadv2): Enslaving as an active interface with an up link [ 617.433910][T25220] bond19 (unregistering): (slave veth47): Releasing active interface [ 617.439854][T25218] 9p: Bad value for 'rfdno' [ 617.443741][T25220] bond19 (unregistering): (slave batadv2): Releasing active interface [ 617.450105][T25220] bond19 (unregistering): Released all slaves [ 617.878684][T25232] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7096'. [ 617.913869][T25232] vxlan0: entered promiscuous mode [ 617.916882][T11043] netdevsim netdevsim6 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 617.922323][T11043] netdevsim netdevsim6 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 617.928411][T11043] netdevsim netdevsim6 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 617.932804][T11043] netdevsim netdevsim6 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 619.434090][T25286] netlink: 'syz.2.7103': attribute type 1 has an invalid length. [ 619.452502][T25286] 8021q: adding VLAN 0 to HW filter on device bond25 [ 619.468713][T25283] netdevsim netdevsim6 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 619.514965][T25286] bond25: (slave veth51): Enslaving as an active interface with a down link [ 619.524493][T25283] netdevsim netdevsim6 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 619.571820][T25286] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 619.575862][T25286] bond25: (slave batadv1): making interface the new active one [ 619.579749][T25286] batadv1: entered promiscuous mode [ 619.581906][T25286] bond25: (slave batadv1): Enslaving as an active interface with an up link [ 619.637275][T25286] bond25 (unregistering): (slave veth51): Releasing active interface [ 619.665447][T25286] bond25 (unregistering): (slave batadv1): Releasing active interface [ 619.673538][T25286] bond25 (unregistering): Released all slaves [ 619.689460][T25283] netdevsim netdevsim6 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 619.824465][T25283] netdevsim netdevsim6 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 619.974964][T25302] netlink: 'syz.1.7109': attribute type 1 has an invalid length. [ 619.988135][T25302] 8021q: adding VLAN 0 to HW filter on device bond20 [ 620.095446][T25302] bond20: (slave veth45): Enslaving as an active interface with a down link [ 620.111215][T25310] vlan4: entered allmulticast mode [ 620.114535][T25310] bond20: (slave vlan4): Opening slave failed [ 620.164061][T11043] netdevsim netdevsim6 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 620.171496][T11043] netdevsim netdevsim6 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 620.185276][T11043] netdevsim netdevsim6 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 620.238578][T11043] netdevsim netdevsim6 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 625.133763][T25394] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7136'. [ 625.423064][T25394] veth47: entered allmulticast mode [ 625.513853][T25394] bond21: (slave veth47): Enslaving as an active interface with an up link [ 625.580915][T25400] bond21 (unregistering): (slave veth47): Releasing backup interface [ 625.625902][T25400] bond21 (unregistering): Released all slaves [ 626.096175][T25415] ref_ctr going negative. vaddr: 0x80ffd002, curr val: -2360, delta: 1 [ 626.105077][ T40] audit: type=1804 audit(1778105054.765:15317): pid=25415 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.7131" name="file0" dev="tmpfs" ino=6069 res=1 errno=0 [ 626.124767][T25415] ref_ctr increment failed for inode: 0x17b5 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff88804ac40000 [ 626.145898][T25415] ref_ctr going negative. vaddr: 0x80ffd002, curr val: -2360, delta: -1 [ 626.164948][T25415] ref_ctr decrement failed for inode: 0x17b5 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff88804ac40000 [ 626.168926][T25415] uprobe: syz.5.7131:25415 failed to unregister, leaking uprobe [ 629.056277][ T1432] ieee802154 phy0 wpan0: encryption failed: -22 [ 629.059190][ T1432] ieee802154 phy1 wpan1: encryption failed: -22 [ 629.260436][T25440] IPVS: set_ctl: invalid protocol: 22 127.0.0.1:20004 [ 629.265371][T25437] netlink: 24 bytes leftover after parsing attributes in process `syz.6.7146'. [ 632.043525][T25476] netlink: 'syz.5.7148': attribute type 1 has an invalid length. [ 632.056712][T25476] bond19: entered promiscuous mode [ 632.058970][T25476] 8021q: adding VLAN 0 to HW filter on device bond19 [ 632.099837][T25476] bond19: (slave bridge12): making interface the new active one [ 632.102875][T25476] bridge12: entered promiscuous mode [ 632.106975][T25476] bond19: (slave bridge12): Enslaving as an active interface with an up link [ 632.286813][T25487] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7151'. [ 632.326282][T25492] netlink: 72 bytes leftover after parsing attributes in process `syz.1.7153'. [ 632.348841][T25487] 8021q: adding VLAN 0 to HW filter on device bond8 [ 632.486940][T25487] bond8: entered promiscuous mode [ 632.494686][T25487] bond8: entered allmulticast mode [ 632.515305][T25487] team_slave_1: entered promiscuous mode [ 632.528498][T25487] team_slave_1: entered allmulticast mode [ 632.539576][T25487] bond8: (slave team_slave_1): Enslaving as an active interface with an up link [ 632.587692][T25497] fuse: fd is not a fuse device [ 632.651885][T25500] netlink: 'syz.1.7154': attribute type 1 has an invalid length. [ 632.672399][T25500] bond21: entered promiscuous mode [ 632.675101][T25500] 8021q: adding VLAN 0 to HW filter on device bond21 [ 633.042670][T25500] netlink: 28 bytes leftover after parsing attributes in process `syz.1.7154'. [ 633.046527][T25500] bond21: entered allmulticast mode [ 633.091696][T25500] bond21: (slave bridge10): making interface the new active one [ 633.094867][T25500] bridge10: entered promiscuous mode [ 633.097271][T25500] bridge10: entered allmulticast mode [ 633.103807][T25500] bond21: (slave bridge10): Enslaving as an active interface with an up link [ 633.422554][T25513] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7160'. [ 633.898114][T25527] netlink: 'syz.1.7165': attribute type 1 has an invalid length. [ 633.925135][T25527] bond22: entered promiscuous mode [ 633.927122][T25527] 8021q: adding VLAN 0 to HW filter on device bond22 [ 633.982376][T25527] bond22: (slave bridge11): making interface the new active one [ 633.985454][T25527] bridge11: entered promiscuous mode [ 633.988590][T25527] bond22: (slave bridge11): Enslaving as an active interface with an up link [ 635.528029][T25575] fuse: fd is not a fuse device [ 635.538434][T25577] netlink: 'syz.2.7179': attribute type 1 has an invalid length. [ 635.553922][T25577] bond25: entered promiscuous mode [ 635.556018][T25577] 8021q: adding VLAN 0 to HW filter on device bond25 [ 635.585371][T25577] bond25: (slave bridge12): making interface the new active one [ 635.588018][T25577] bridge12: entered promiscuous mode [ 635.590545][T25577] bond25: (slave bridge12): Enslaving as an active interface with an up link [ 637.916035][T25636] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7197'. [ 638.196587][T25650] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7203'. [ 639.070113][T25690] fuse: fd is not a fuse device [ 639.571078][T25702] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 639.641116][T25702] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 639.658242][T25702] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 640.348779][T25725] bond17: entered allmulticast mode [ 640.363634][T25725] dvmrp1: entered allmulticast mode [ 640.371392][T25725] netlink: 'syz.5.7223': attribute type 39 has an invalid length. [ 640.395917][T25724] bond17: left allmulticast mode [ 641.572757][T25750] netlink: 24 bytes leftover after parsing attributes in process `syz.2.7231'. [ 641.652264][T25758] netlink: 'syz.6.7235': attribute type 1 has an invalid length. [ 641.672316][T25758] 8021q: adding VLAN 0 to HW filter on device bond9 [ 641.692731][T25758] netlink: 28 bytes leftover after parsing attributes in process `syz.6.7235'. [ 641.697134][T25758] bond9: entered promiscuous mode [ 641.699367][T25758] bond9: entered allmulticast mode [ 641.852744][T25773] fuse: fd is not a fuse device [ 642.932622][T25795] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7246'. [ 644.694869][T25806] fuse: fd is not a fuse device [ 644.941287][T25815] fuse: fd is not a fuse device [ 645.053976][T25828] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7258'. [ 646.014686][T25848] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7271'. [ 646.033857][T25861] netlink: 'syz.1.7265': attribute type 1 has an invalid length. [ 646.310983][T25861] bond23: entered promiscuous mode [ 646.313524][T25861] 8021q: adding VLAN 0 to HW filter on device bond23 [ 646.338918][T25863] bond23: (slave bridge12): making interface the new active one [ 646.342072][T25863] bridge12: entered promiscuous mode [ 646.345993][T25863] bond23: (slave bridge12): Enslaving as an active interface with an up link [ 646.371773][T25870] netlink: 'syz.6.7268': attribute type 3 has an invalid length. [ 647.543290][T25899] netlink: zone id is out of range [ 647.685366][T25899] netlink: set zone limit has 4 unknown bytes [ 647.704068][T25910] netlink: 28 bytes leftover after parsing attributes in process `syz.1.7283'. [ 648.068911][T25918] netlink: 24 bytes leftover after parsing attributes in process `syz.6.7287'. [ 648.605638][T25922] bond0: (slave syz_tun): Removing an active aggregator [ 648.609412][T25922] bond0: (slave syz_tun): Releasing backup interface [ 648.618050][T25922] bond8: (slave team_slave_1): Releasing backup interface [ 648.629119][T25922] team_slave_1: left allmulticast mode [ 648.637385][T25922] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 650.100807][T25960] netlink: 'syz.1.7307': attribute type 1 has an invalid length. [ 650.115986][T25960] 8021q: adding VLAN 0 to HW filter on device bond24 [ 650.174378][T25960] bond24: (slave veth51): Enslaving as an active interface with a down link [ 650.216770][T25960] 8021q: adding VLAN 0 to HW filter on device batadv3 [ 650.221854][T25960] bond24: (slave batadv3): making interface the new active one [ 650.226442][T25960] batadv3: entered promiscuous mode [ 650.229287][T25960] bond24: (slave batadv3): Enslaving as an active interface with an up link [ 650.272208][T25960] bond24 (unregistering): (slave veth51): Releasing active interface [ 650.284594][T25960] bond24 (unregistering): (slave batadv3): Releasing active interface [ 650.299906][T25960] bond24 (unregistering): Released all slaves [ 650.780521][T25972] fuse: fd is not a fuse device [ 651.404975][T25991] fuse: fd is not a fuse device [ 651.417469][T25993] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 651.676086][T25994] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 652.341122][T26016] netlink: 16 bytes leftover after parsing attributes in process `syz.2.7321'. [ 652.344336][T26016] netlink: 16 bytes leftover after parsing attributes in process `syz.2.7321'. [ 654.442762][T26044] tipc: Enabling of bearer rejected, failed to enable media [ 655.300906][T26070] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7334'. [ 655.371019][T26073] netlink: zone id is out of range [ 655.496084][T26073] netlink: set zone limit has 4 unknown bytes [ 657.935745][T26076] veth55: entered allmulticast mode [ 657.941634][T26080] bond26 (unregistering): Released all slaves [ 659.424226][T26146] fuse: fd is not a fuse device [ 662.164686][T26213] netlink: 'syz.5.7371': attribute type 1 has an invalid length. [ 662.186306][T26213] 8021q: adding VLAN 0 to HW filter on device bond20 [ 662.953198][T26238] tipc: Enabled bearer , priority 0 [ 663.021102][T26241] veth0_macvtap: Caught tx_queue_len zero misconfig [ 663.657987][T26259] netlink: 48 bytes leftover after parsing attributes in process `syz.1.7385'. [ 663.664170][T26259] 9p: Bad value for 'rfdno' [ 663.723506][T26261] fuse: fd is not a fuse device [ 663.824874][T26267] fuse: fd is not a fuse device [ 664.287586][T26281] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7391'. [ 664.465182][T26281] veth33: entered allmulticast mode [ 664.506585][T26281] bond10: (slave veth33): Enslaving as an active interface with an up link [ 664.564494][T26284] bond10 (unregistering): (slave veth33): Releasing backup interface [ 664.575067][T26284] bond10 (unregistering): Released all slaves [ 664.754582][T26294] netem: change failed [ 665.178933][T26306] overlayfs: failed to clone upperpath [ 666.413642][T26318] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 666.542013][T26321] netlink: 'syz.6.7402': attribute type 5 has an invalid length. [ 666.545483][T26321] netlink: 9524 bytes leftover after parsing attributes in process `syz.6.7402'. [ 666.873220][T26323] tipc: Enabling of bearer rejected, failed to enable media [ 667.079097][T26331] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7406'. [ 667.218971][T26339] netlink: 72 bytes leftover after parsing attributes in process `syz.6.7408'. [ 667.337899][T26331] veth51: entered allmulticast mode [ 667.470456][T26331] bond21: (slave veth51): Enslaving as an active interface with an up link [ 667.553612][T26341] netlink: zone id is out of range [ 667.565593][T26337] bond21 (unregistering): (slave veth51): Releasing backup interface [ 667.597940][T26337] bond21 (unregistering): Released all slaves [ 667.612229][T26341] netlink: set zone limit has 4 unknown bytes [ 668.439705][T26359] 2: renamed from team_slave_1 [ 669.160272][T26386] netlink: 'syz.5.7420': attribute type 1 has an invalid length. [ 669.181781][T26386] 8021q: adding VLAN 0 to HW filter on device bond21 [ 669.211209][T26386] vlan3: entered promiscuous mode [ 669.212981][T26386] bond21: entered promiscuous mode [ 669.215052][T26386] vlan3: entered allmulticast mode [ 669.216783][T26386] bond21: entered allmulticast mode [ 669.237246][T26386] bond21: (slave bridge13): making interface the new active one [ 669.239958][T26386] bridge13: entered promiscuous mode [ 669.242058][T26386] bridge13: entered allmulticast mode [ 669.245296][T26386] bond21: (slave bridge13): Enslaving as an active interface with an up link [ 669.539359][T26343] Set syz1 is full, maxelem 65536 reached [ 671.060689][T26420] team_slave_1: Caught tx_queue_len zero misconfig [ 671.551917][ T54] IPVS: starting estimator thread 0... [ 671.636014][T26431] IPVS: using max 31 ests per chain, 74400 per kthread [ 673.907694][T26496] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7464'. [ 674.124123][T26496] veth53: entered allmulticast mode [ 674.171434][T26496] bond24: (slave veth53): Enslaving as an active interface with an up link [ 674.276475][T26500] bond24 (unregistering): (slave veth53): Releasing backup interface [ 674.309610][T26500] bond24 (unregistering): Released all slaves [ 675.501068][T26539] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7465'. [ 675.981207][T26542] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7468'. [ 676.393041][T26544] veth53: entered allmulticast mode [ 676.461035][T26544] bond22: (slave veth53): Enslaving as an active interface with an up link [ 676.578776][T26545] bond22 (unregistering): (slave veth53): Releasing backup interface [ 676.583740][T26545] bond22 (unregistering): Released all slaves [ 676.817188][ T40] audit: type=1326 audit(1778105105.506:15318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26549 comm="syz.1.7478" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 676.839278][ T40] audit: type=1326 audit(1778105105.506:15319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26549 comm="syz.1.7478" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 676.848244][ T40] audit: type=1326 audit(1778105105.506:15320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26549 comm="syz.1.7478" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 676.855495][ T40] audit: type=1326 audit(1778105105.506:15321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26549 comm="syz.1.7478" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 676.862656][ T40] audit: type=1326 audit(1778105105.506:15322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26549 comm="syz.1.7478" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 676.873907][ T40] audit: type=1326 audit(1778105105.516:15323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26549 comm="syz.1.7478" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 676.886323][ T40] audit: type=1326 audit(1778105105.516:15324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26549 comm="syz.1.7478" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 676.893408][ T40] audit: type=1326 audit(1778105105.516:15325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26549 comm="syz.1.7478" exe="/syz-executor" sig=0 arch=40000003 syscall=358 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 677.156657][ T40] audit: type=1326 audit(1778105105.846:15326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26549 comm="syz.1.7478" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 677.167970][ T40] audit: type=1326 audit(1778105105.846:15327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26549 comm="syz.1.7478" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702efcc code=0x7ffc0000 [ 677.371359][T26559] 8021q: adding VLAN 0 to HW filter on device bond0 [ 677.379533][T26559] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 677.422527][T26559] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 677.456170][T26559] veth1_vlan: left promiscuous mode [ 677.458557][T26559] veth0_vlan: left promiscuous mode [ 677.460854][T26559] veth0_vlan: entered promiscuous mode [ 677.464023][T26559] veth1_vlan: entered promiscuous mode [ 677.467947][T26559] veth1_macvtap: left promiscuous mode [ 677.470352][T26559] veth0_macvtap: left promiscuous mode [ 677.472875][T26559] veth0_macvtap: entered promiscuous mode [ 677.475912][T26559] veth1_macvtap: entered promiscuous mode [ 677.506433][T26559] 8021q: adding VLAN 0 to HW filter on device bond1 [ 677.576561][T26559] 8021q: adding VLAN 0 to HW filter on device bond2 [ 677.606279][T26559] 8021q: adding VLAN 0 to HW filter on device bond3 [ 677.617502][T26559] batman_adv: batadv0: Interface activated: ip6gretap1 [ 677.620016][T26559] 8021q: adding VLAN 0 to HW filter on device bond4 [ 677.645526][T26559] 8021q: adding VLAN 0 to HW filter on device bond5 [ 677.649894][T26559] erspan0: entered promiscuous mode [ 677.700830][T26559] 8021q: adding VLAN 0 to HW filter on device bond6 [ 677.735835][T26559] batadv0: entered promiscuous mode [ 677.738795][T26559] 8021q: adding VLAN 0 to HW filter on device macsec1 [ 677.747192][T26559] 8021q: adding VLAN 0 to HW filter on device bond7 [ 677.770371][T26559] bond8: left promiscuous mode [ 677.772594][T26559] ip6gre2: left promiscuous mode [ 677.776469][T26559] 8021q: adding VLAN 0 to HW filter on device bond8 [ 677.780744][T26559] 8021q: adding VLAN 0 to HW filter on device bond9 [ 677.787356][T26559] bond10: left promiscuous mode [ 677.789071][T26559] 8021q: adding VLAN 0 to HW filter on device bond10 [ 677.791925][T26559] 8021q: adding VLAN 0 to HW filter on device bond11 [ 677.801881][T26559] 8021q: adding VLAN 0 to HW filter on device bond12 [ 677.808139][T26559] 8021q: adding VLAN 0 to HW filter on device bond13 [ 677.816248][T26559] 8021q: adding VLAN 0 to HW filter on device bond14 [ 677.820328][T26559] 8021q: adding VLAN 0 to HW filter on device bond15 [ 677.823691][T26559] 8021q: adding VLAN 0 to HW filter on device bond16 [ 677.826612][T26559] 8021q: adding VLAN 0 to HW filter on device bond17 [ 677.826638][T11045] bond17: (slave ip6gretap2): link status down again after 0 ms [ 677.829902][T26559] 8021q: adding VLAN 0 to HW filter on device bond18 [ 677.844698][T26559] 8021q: adding VLAN 0 to HW filter on device bond19 [ 677.847947][T26559] 8021q: adding VLAN 0 to HW filter on device bond20 [ 677.853229][T26559] bond21: left promiscuous mode [ 677.855429][T26559] bridge10: left promiscuous mode [ 677.857867][T26559] 8021q: adding VLAN 0 to HW filter on device bond21 [ 677.861722][T26559] 8021q: adding VLAN 0 to HW filter on device bond22 [ 677.877494][T26559] 8021q: adding VLAN 0 to HW filter on device bond23 [ 677.881074][T26559] 8021q: adding VLAN 0 to HW filter on device eth0 [ 677.888670][T26559] 8021q: adding VLAN 0 to HW filter on device eth1 [ 677.892015][T26559] 8021q: adding VLAN 0 to HW filter on device eth2 [ 677.896227][T26559] 8021q: adding VLAN 0 to HW filter on device eth3 [ 677.902057][T26559] 8021q: adding VLAN 0 to HW filter on device bond24 [ 677.906544][T26559] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 677.909458][T26559] bond25: left promiscuous mode [ 677.911136][T26559] bridge12: left promiscuous mode [ 677.914476][T26559] 8021q: adding VLAN 0 to HW filter on device bond25 [ 677.940686][T26581] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7479'. [ 677.995056][T11041] bridge11: port 1(veth47) entered blocking state [ 677.997345][T11041] bridge11: port 1(veth47) entered forwarding state [ 678.000907][T11041] bridge11: port 2(veth49) entered blocking state [ 678.003305][T11041] bridge11: port 2(veth49) entered forwarding state [ 678.012359][T11042] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 678.024128][T11042] netdevsim netdevsim2 eth0: set [1, 1] type 2 family 0 port 20000 - 0 [ 678.033505][T11042] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 678.040993][T11042] netdevsim netdevsim2 eth1: set [1, 1] type 2 family 0 port 20000 - 0 [ 678.071143][T11045] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 678.075561][T11045] netdevsim netdevsim2 eth2: set [1, 1] type 2 family 0 port 20000 - 0 [ 678.079356][T11045] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 678.082812][T11045] netdevsim netdevsim2 eth3: set [1, 1] type 2 family 0 port 20000 - 0 [ 678.089987][T23329] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 678.160685][T26588] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7482'. [ 678.175822][T11041] bond9: (slave veth33): link status definitely up, 10000 Mbps full duplex [ 678.181736][T11041] bond9: (slave veth33): making interface the new active one [ 678.189536][T11041] bond9: active interface up! [ 678.195778][T11042] bond17: (slave ip6gretap2): failed to get link speed/duplex [ 678.313738][T11042] bond17: (slave ip6gretap2): link status up, enabling it in 0 ms [ 678.333431][T11042] bond17: (slave ip6gretap2): link status up, enabling it in 0 ms [ 678.354082][T11042] bond17: (slave ip6gretap2): link status up, enabling it in 0 ms [ 678.383326][T11042] bond17: (slave ip6gretap2): link status up, enabling it in 0 ms [ 678.403190][T11042] bond17: (slave ip6gretap2): link status up, enabling it in 0 ms [ 678.423583][T11045] bond17: (slave ip6gretap2): link status up, enabling it in 0 ms [ 678.444224][T23329] bond17: (slave ip6gretap2): link status up, enabling it in 0 ms [ 678.457289][T26588] veth55: entered allmulticast mode [ 678.578185][T26588] bond22: (slave veth55): Enslaving as an active interface with an up link [ 678.662503][T26590] bond22 (unregistering): (slave veth55): Releasing backup interface [ 678.669055][T26590] bond22 (unregistering): Released all slaves [ 678.721163][T11042] bond7: (slave veth21): link status definitely up, 10000 Mbps full duplex [ 678.743908][T11042] bond7: (slave veth21): making interface the new active one [ 678.758171][T11042] bond7: active interface up! [ 678.835584][ T59] bond11: (slave veth39): link status definitely up, 10000 Mbps full duplex [ 678.846395][ T59] bond11: (slave veth39): making interface the new active one [ 678.860126][ T59] bond11: active interface up! [ 679.017231][T26617] Oops: general protection fault, probably for non-canonical address 0xdffffc000000000b: 0000 [#1] SMP KASAN NOPTI [ 679.022762][T26617] KASAN: null-ptr-deref in range [0x0000000000000058-0x000000000000005f] [ 679.026822][T26617] CPU: 0 UID: 0 PID: 26617 Comm: syz.6.7492 Tainted: G L syzkaller #0 PREEMPT(full) [ 679.031883][T26617] Tainted: [L]=SOFTLOCKUP [ 679.033861][T26617] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 679.038415][T26617] RIP: 0010:wakeup_preempt_fair+0x60a/0xfd0 [ 679.041164][T26617] Code: 0f 85 02 02 00 00 44 89 ee 4c 89 f7 4c 89 04 24 e8 9b 00 fd ff 4c 8b 04 24 48 8d 78 59 48 89 fa 48 89 fe 48 c1 ea 03 83 e6 07 <42> 0f b6 14 22 40 38 f2 7f 08 84 d2 0f 85 53 09 00 00 80 78 59 00 [ 679.049874][T26617] RSP: 0018:ffffc9002400f488 EFLAGS: 00010002 [ 679.052700][T26617] RAX: 0000000000000000 RBX: ffff888021264a80 RCX: 1ffff1100424c95b [ 679.056295][T26617] RDX: 000000000000000b RSI: 0000000000000001 RDI: 0000000000000059 [ 679.059871][T26617] RBP: ffff88801402ca80 R08: ffff888021264b30 R09: 0000000000000000 [ 679.063450][T26617] R10: ffff888021264a07 R11: 0000000000000000 R12: dffffc0000000000 [ 679.067043][T26617] R13: 0000000000000000 R14: ffff88802b23b440 R15: ffff88802b23b380 [ 679.070626][T26617] FS: 0000000000000000(0000) GS:ffff88809717d000(0063) knlGS:0000000056fbc480 [ 679.074726][T26617] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 679.077849][T26617] CR2: 00000000f73617f8 CR3: 0000000051d52000 CR4: 0000000000352ef0 [ 679.081526][T26617] DR0: ffffffffffffffff DR1: 00000000000001f8 DR2: 0000000000000002 [ 679.085191][T26617] DR3: ffffffffefffff15 DR6: 00000000ffff0ff0 DR7: 0000000000000400 [ 679.089268][T26617] Call Trace: [ 679.090914][T26617] [ 679.092334][T26617] wakeup_preempt+0x1a3/0x400 [ 679.094589][T26617] sched_balance_rq+0x15cd/0x36d0 [ 679.097049][T26617] ? __pfx_sched_balance_rq+0x10/0x10 [ 679.099561][T26617] ? __pfx_sched_clock_cpu+0x10/0x10 [ 679.102042][T26617] ? pick_next_task_fair+0x520/0x2470 [ 679.104522][T26617] pick_next_task_fair+0x773/0x2470 [ 679.106929][T26617] ? dequeue_entities+0x570/0x3540 [ 679.109425][T26617] ? __pfx_pick_next_task_fair+0x10/0x10 [ 679.112043][T26617] ? wake_bit_function+0x201/0x240 [ 679.114489][T26617] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 679.116960][T26617] ? rcu_is_watching+0x12/0xc0 [ 679.119256][T26617] __pick_next_task+0xea/0x6c0 [ 679.121490][T26617] __schedule+0x5b7/0x6820 [ 679.123591][T26617] ? __pfx___schedule+0x10/0x10 [ 679.125872][T26617] ? find_held_lock+0x2b/0x80 [ 679.128084][T26617] ? schedule+0x2bf/0x390 [ 679.130086][T26617] schedule+0xdd/0x390 [ 679.131977][T26617] futex_do_wait+0x88/0x180 [ 679.134060][T26617] __futex_wait+0x1c4/0x300 [ 679.136217][T26617] ? __pfx___futex_wait+0x10/0x10 [ 679.138541][T26617] ? __pfx_futex_wake_mark+0x10/0x10 [ 679.141014][T26617] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 679.143406][T26617] ? __hrtimer_setup+0x208/0x330 [ 679.145668][T26617] ? ktime_add_safe+0x60/0x70 [ 679.147859][T26617] futex_wait+0xe6/0x370 [ 679.149816][T26617] ? __pfx_futex_wait+0x10/0x10 [ 679.152096][T26617] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 679.154484][T26617] do_futex+0x1ef/0x350 [ 679.156422][T26617] ? __pfx_do_futex+0x10/0x10 [ 679.158601][T26617] ? ktime_get+0x22c/0x320 [ 679.160703][T26617] ? lockdep_hardirqs_on+0x78/0x100 [ 679.163101][T26617] __ia32_sys_futex_time32+0x2f4/0x470 [ 679.165597][T26617] ? __pfx___ia32_sys_futex_time32+0x10/0x10 [ 679.168342][T26617] ? rcu_is_watching+0x12/0xc0 [ 679.170539][T26617] __do_fast_syscall_32+0xe7/0x950 [ 679.172897][T26617] do_fast_syscall_32+0x32/0x70 [ 679.175154][T26617] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 679.178053][T26617] RIP: 0023:0xf7f03fcc [ 679.179945][T26617] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8 [ 679.188646][T26617] RSP: 002b:00000000ff9ef18c EFLAGS: 00000202 ORIG_RAX: 00000000000000f0 [ 679.192421][T26617] RAX: ffffffffffffffda RBX: 00000000f73c4f8c RCX: 0000000000000080 [ 679.196038][T26617] RDX: 0000000000000000 RSI: 00000000ff9ef328 RDI: 0000000000000000 [ 679.199658][T26617] RBP: 00000000000f4240 R08: 0000000000000000 R09: 0000000000000000 [ 679.203222][T26617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 679.206830][T26617] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 679.210410][T26617] [ 679.211887][T26617] Modules linked in: [ 679.213701][T26617] ---[ end trace 0000000000000000 ]--- [ 679.216194][T26617] RIP: 0010:wakeup_preempt_fair+0x60a/0xfd0 [ 679.218932][T26617] Code: 0f 85 02 02 00 00 44 89 ee 4c 89 f7 4c 89 04 24 e8 9b 00 fd ff 4c 8b 04 24 48 8d 78 59 48 89 fa 48 89 fe 48 c1 ea 03 83 e6 07 <42> 0f b6 14 22 40 38 f2 7f 08 84 d2 0f 85 53 09 00 00 80 78 59 00 [ 679.227645][T26617] RSP: 0018:ffffc9002400f488 EFLAGS: 00010002 [ 679.230459][T26617] RAX: 0000000000000000 RBX: ffff888021264a80 RCX: 1ffff1100424c95b [ 679.234121][T26617] RDX: 000000000000000b RSI: 0000000000000001 RDI: 0000000000000059 [ 679.237679][T26617] RBP: ffff88801402ca80 R08: ffff888021264b30 R09: 0000000000000000 [ 679.241274][T26617] R10: ffff888021264a07 R11: 0000000000000000 R12: dffffc0000000000 [ 679.244876][T26617] R13: 0000000000000000 R14: ffff88802b23b440 R15: ffff88802b23b380 [ 679.248510][T26617] FS: 0000000000000000(0000) GS:ffff88809717d000(0063) knlGS:0000000056fbc480 [ 679.252559][T26617] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 679.255565][T26617] CR2: 00000000f73617f8 CR3: 0000000051d52000 CR4: 0000000000352ef0 [ 679.259219][T26617] DR0: ffffffffffffffff DR1: 00000000000001f8 DR2: 0000000000000002 [ 679.262766][T26617] DR3: ffffffffefffff15 DR6: 00000000ffff0ff0 DR7: 0000000000000400 [ 679.266334][T26617] Kernel panic - not syncing: Fatal exception [ 680.355161][T26617] Shutting down cpus with NMI [ 680.357479][T26617] Kernel Offset: disabled [ 680.358929][T26617] Rebooting in 86400 seconds..