last executing test programs: 3m48.495197754s ago: executing program 3 (id=7364): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000000480)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mknodat$loop(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1000, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0) fcntl$setstatus(r4, 0x4, 0x42000) 3m48.17151459s ago: executing program 3 (id=7370): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendmmsg$inet(r2, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40040) mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000000380)=ANY=[@ANYBLOB='fd=']) 3m46.547795601s ago: executing program 3 (id=7394): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$tipc(0x1e, 0x5, 0x0) recvmsg(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001780)=[{0x0}, {0x0}], 0x2}, 0x100) 3m46.411616233s ago: executing program 3 (id=7396): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000480)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x12c5008, 0x0) mount$bind(0x0, &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x80000, 0x0) 3m46.202240443s ago: executing program 3 (id=7399): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$TCPDIAG_GETSOCK(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={0x50, 0x12, 0xff130e91beb48f99, 0x0, 0x0, {0x1d, 0x0, 0x0, 0x0, {0x0, 0x4e23, [0x0, 0xffffffff, 0x7ff], [0x0, 0x0, 0x0, 0x9], 0x0, [0x1, 0x3]}}, [@INET_DIAG_REQ_BYTECODE={0x4, 0x3}]}, 0x50}}, 0x20004010) 3m43.619603317s ago: executing program 3 (id=7430): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) wait4(0x0, 0x0, 0xa, 0x0) 3m43.143285023s ago: executing program 32 (id=7430): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) wait4(0x0, 0x0, 0xa, 0x0) 6.37643052s ago: executing program 2 (id=9462): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r3, 0x0, 0x0) setpriority(0x2, 0x0, 0xd2f4) 6.293722075s ago: executing program 2 (id=9465): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r5, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f00000002c0)="ea", 0x1}], 0x1, &(0x7f0000000140)=ANY=[@ANYBLOB="14"], 0x18}}], 0x1, 0x4) 6.162962099s ago: executing program 1 (id=9467): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x1, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000611885000000000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x3, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x40f00, 0x4b, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) 6.076338224s ago: executing program 2 (id=9468): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003780)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x2000001, 0x6031, 0xffffffffffffffff, 0x0) 5.661660484s ago: executing program 1 (id=9471): bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="1b000000000000"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x100000}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x5400, 0x0) 4.468590771s ago: executing program 2 (id=9476): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0xfff, 0x7, 0x1000}, 0x48) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000840)={r5}, 0xc) 4.442135562s ago: executing program 4 (id=9477): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) write(r0, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) syz_emit_ethernet(0x3e, &(0x7f00000002c0)=ANY=[], 0x0) 4.213466749s ago: executing program 4 (id=9479): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) sendmmsg$inet6(r0, 0x0, 0x0, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x6) ioctl$KVM_RUN(r5, 0xae80, 0x0) 3.975339862s ago: executing program 5 (id=9480): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003780)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r4 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r4) ptrace$setregset(0x4205, r4, 0x1, &(0x7f0000000100)={0x0}) 3.805996138s ago: executing program 2 (id=9481): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8000) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) write(r3, 0x0, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) 3.785248054s ago: executing program 0 (id=9482): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000280)={0x41}, 0x10) r3 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000280)={0x441, 0x1, 0x2}, 0x10) r4 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000100)={0x41, 0x0, 0x2}, 0x1be) sendmsg$tipc(r4, &(0x7f0000000180)={&(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x40}}, 0x10, 0x0}, 0x0) 3.659137828s ago: executing program 4 (id=9483): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x40) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="200000001000010700000000000000000a0000000c0002006e6c3830323131"], 0x20}, 0x1, 0x0, 0x0, 0x20000000}, 0x40050) syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r3) 3.582869739s ago: executing program 0 (id=9484): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0xb, 0x84) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r5) sendmsg$NL80211_CMD_GET_WIPHY(r5, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)={0x20, r6, 0x301, 0x0, 0x0, {{}, {@void, @void, @val={0xc, 0x99, {0x2, 0x29}}}}}, 0x20}}, 0x40) 3.581790312s ago: executing program 2 (id=9485): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendmmsg$inet(r2, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40040) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000540)={[{@lowerdir={'lowerdir', 0x3d, './file0'}}]}) 3.536354679s ago: executing program 5 (id=9486): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003780)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r5, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f00000001c0)=ANY=[@ANYBLOB="020300030a000000ff0e00000000000003000600000000000200000000000000000000000000000002000100000004d300000502000000e0030005"], 0x50}, 0x1, 0x7}, 0x0) 3.536026899s ago: executing program 1 (id=9487): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r4 = fsopen(&(0x7f0000000040)='nfs4\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r4, 0x1, 0x0, 0x0, 0x0) 3.48447378s ago: executing program 0 (id=9488): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x8, 0x11, r4, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) 3.33362426s ago: executing program 1 (id=9489): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket(0x10, 0x803, 0x0) sendto(r4, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r4, &(0x7f0000000380)=[{{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000080)=""/93, 0x5d}, {0x0}, {&(0x7f0000003700)=""/213, 0xd5}], 0x3}, 0x1009}], 0x1, 0x40012160, 0x0) 3.309871098s ago: executing program 0 (id=9490): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) write(r0, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) socket$inet6_tcp(0xa, 0x1, 0x0) 2.70403154s ago: executing program 5 (id=9491): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x80) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$pppl2tp(0x18, 0x1, 0x1) r6 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r5, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r6, {0x2, 0x0, @dev}, 0x2}}, 0x2e) 2.614039689s ago: executing program 5 (id=9492): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x80) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) 2.482190894s ago: executing program 0 (id=9493): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x6) openat$sw_sync(0xffffffffffffff9c, 0x0, 0x0, 0x0) mount$9p_rdma(0x0, &(0x7f0000000140)='.\x00', &(0x7f00000001c0), 0x10000, &(0x7f0000000440)={'trans=rdma,', {'port', 0x3d, 0x4e23}}) rt_sigqueueinfo(r0, 0x5, &(0x7f0000000840)={0x1a, 0xd1f, 0xfffffff9}) io_uring_setup(0xbbc, &(0x7f0000000280)={0x0, 0x0, 0x2, 0x0, 0x345}) 2.418442919s ago: executing program 4 (id=9494): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_io_uring_setup(0x48ce, &(0x7f0000000140)={0x0, 0x5e99, 0x3000, 0x3, 0x19a}, &(0x7f0000000040), &(0x7f0000000200)) 2.417693341s ago: executing program 1 (id=9495): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000240)='bridge0\x00', 0x10) 2.416935898s ago: executing program 5 (id=9496): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) write(r0, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe) 2.271683782s ago: executing program 1 (id=9497): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x38, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = socket$inet6(0xa, 0x80002, 0x0) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @dev, 0x5}, 0x1c) setsockopt$inet6_IPV6_HOPOPTS(r4, 0x29, 0x36, &(0x7f0000001440)=ANY=[], 0xc0) sendmmsg$inet6(r4, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000) 2.154597194s ago: executing program 4 (id=9498): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_mreq(r5, 0x29, 0x14, 0x0, 0x0) 1.985689418s ago: executing program 4 (id=9499): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x4]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mkdir(&(0x7f0000000000)='./file0\x00', 0x2) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000540)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@nfs_export_on}, {@redirect_dir_nofollow}]}) r2 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43) mknodat$loop(r2, &(0x7f0000000200)='./file1\x00', 0x800, 0x1) chdir(&(0x7f00000003c0)='./bus\x00') link(&(0x7f0000000940)='./file1\x00', &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 1.973325758s ago: executing program 5 (id=9500): socket$nl_route(0x10, 0x3, 0x0) socket$inet(0x2, 0x1, 0x0) mkdir(0x0, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r1) r2 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xf}, 0x1c) listen(r2, 0x4) r3 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r3, &(0x7f0000000140)={0x2, 0x4e22, @loopback}, 0x10) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) r4 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100000000000000000002000000140001800500020001"], 0x28}, 0x1, 0x0, 0x0, 0x20044811}, 0x2000c094) 0s ago: executing program 0 (id=9501): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendmmsg$inet(r2, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40040) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r4 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e20, @broadcast}, 0x10) sendto$inet(r4, 0x0, 0x0, 0x20008005, &(0x7f0000000100)={0x2, 0x4e20}, 0x10) kernel console output (not intermixed with test programs): =3 [ 295.131759][ T31] usb 5-1: Product: syz [ 295.131772][ T31] usb 5-1: Manufacturer: syz [ 295.131786][ T31] usb 5-1: SerialNumber: syz [ 295.204225][ T31] usb 5-1: config 0 descriptor?? [ 295.578880][T10571] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 295.578915][T10571] overlayfs: missing 'lowerdir' [ 298.943437][ T31] f81534 5-1:0.12: f81534_set_register: reg: 1003 data: b8 failed: -71 [ 298.943506][ T31] f81534 5-1:0.12: f81534_find_config_idx: read failed: -71 [ 298.943522][ T31] f81534 5-1:0.12: f81534_calc_num_ports: find idx failed: -71 [ 298.943615][ T31] f81534 5-1:0.12: probe with driver f81534 failed with error -71 [ 299.008448][ T31] usb 5-1: USB disconnect, device number 4 [ 299.945030][T10637] trusted_key: encrypted_key: master key parameter 'd' is invalid [ 301.117144][T10660] IPv6: sit1: Disabled Multicast RS [ 301.139297][T10660] sit1: entered allmulticast mode [ 301.606772][T10676] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 302.261985][T10673] netlink: 104 bytes leftover after parsing attributes in process `syz.4.2091'. [ 302.708505][T10709] @: renamed from vlan0 [ 307.400143][T10815] trusted_key: encrypted_key: insufficient parameters specified [ 308.004455][T10821] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2156'. [ 310.982632][T10891] netlink: 128 bytes leftover after parsing attributes in process `syz.1.2188'. [ 311.059699][ T37] audit: type=1326 audit(310.911:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10892 comm="syz.3.2189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 311.062136][ T37] audit: type=1326 audit(310.911:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10892 comm="syz.3.2189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 311.062190][ T37] audit: type=1326 audit(310.911:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10892 comm="syz.3.2189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 311.064935][ T37] audit: type=1326 audit(310.911:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10892 comm="syz.3.2189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 311.069666][ T37] audit: type=1326 audit(310.921:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10892 comm="syz.3.2189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 311.071305][ T37] audit: type=1326 audit(310.921:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10892 comm="syz.3.2189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 311.071561][ T37] audit: type=1326 audit(310.921:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10892 comm="syz.3.2189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 311.072695][ T37] audit: type=1326 audit(310.921:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10892 comm="syz.3.2189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 311.326028][T10902] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2193'. [ 315.269940][T11049] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2258'. [ 315.318879][T11049] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2258'. [ 316.868335][T11094] netlink: 'syz.1.2277': attribute type 11 has an invalid length. [ 316.868361][T11094] netlink: 3593 bytes leftover after parsing attributes in process `syz.1.2277'. [ 317.369127][ T1320] ieee802154 phy0 wpan0: encryption failed: -22 [ 319.034847][T11154] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 319.630264][T11180] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2317'. [ 320.197252][T11204] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2330'. [ 322.946003][T11258] overlayfs: overlapping lowerdir path [ 323.765497][T11285] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2366'. [ 325.308506][T11348] netlink: 'syz.0.2398': attribute type 13 has an invalid length. [ 327.435733][T11401] trusted_key: encrypted_key: insufficient parameters specified [ 328.095540][T11425] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2433'. [ 328.998059][T11437] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2439'. [ 328.998092][T11437] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2439'. [ 330.431831][T11470] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2455'. [ 331.378729][ T5892] usb 4-1: new full-speed USB device number 8 using dummy_hcd [ 331.552297][ T5892] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 331.552323][ T5892] usb 4-1: config 0 has no interfaces? [ 331.552353][ T5892] usb 4-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 331.552375][ T5892] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 331.596191][ T5892] usb 4-1: config 0 descriptor?? [ 331.810653][ T5892] usb 4-1: USB disconnect, device number 8 [ 332.337706][T11470] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 332.397507][T11470] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 332.448877][T11470] bond0 (unregistering): Released all slaves [ 332.678816][T11502] overlayfs: missing 'lowerdir' [ 332.965338][T11516] tmpfs: Bad value for 'huge' [ 334.388652][T11550] netlink: 112 bytes leftover after parsing attributes in process `syz.3.2492'. [ 336.014505][T11601] netlink: 96 bytes leftover after parsing attributes in process `syz.4.2515'. [ 336.510668][ T5892] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 336.668324][ T5892] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 336.668351][ T5892] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 336.668371][ T5892] usb 1-1: config 1 has no interface number 0 [ 336.668421][ T5892] usb 1-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 336.671538][ T5892] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 336.671568][ T5892] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 336.671587][ T5892] usb 1-1: Product: syz [ 336.671601][ T5892] usb 1-1: Manufacturer: syz [ 336.671614][ T5892] usb 1-1: SerialNumber: syz [ 336.689765][ T5892] cdc_ncm 1-1:1.1: NCM or ECM functional descriptors missing [ 336.689817][ T5892] cdc_ncm 1-1:1.1: bind() failure [ 336.972927][ T31] usb 1-1: USB disconnect, device number 5 [ 338.613106][T11659] syz.0.2538(11659): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 339.809807][T11692] netlink: 'syz.0.2554': attribute type 8 has an invalid length. [ 339.809832][T11692] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2554'. [ 340.403147][T11712] vlan2: entered promiscuous mode [ 340.403172][T11712] bridge0: entered promiscuous mode [ 342.328407][T11769] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2591'. [ 342.733089][ T5892] usb 4-1: new full-speed USB device number 9 using dummy_hcd [ 342.885171][ T5892] usb 4-1: config 0 has an invalid interface number: 133 but max is 0 [ 342.885198][ T5892] usb 4-1: config 0 has no interface number 0 [ 342.885250][ T5892] usb 4-1: config 0 interface 133 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 342.890000][ T5892] usb 4-1: New USB device found, idVendor=06cd, idProduct=0121, bcdDevice=dd.3d [ 342.890029][ T5892] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 342.890048][ T5892] usb 4-1: Product: syz [ 342.890061][ T5892] usb 4-1: Manufacturer: syz [ 342.890075][ T5892] usb 4-1: SerialNumber: syz [ 342.904094][ T5892] usb 4-1: config 0 descriptor?? [ 343.259240][ T5892] keyspan 4-1:0.133: Keyspan 1 port adapter converter detected [ 343.259486][ T5892] keyspan 4-1:0.133: unsupported endpoint type 0 [ 343.310574][ T5892] keyspan 4-1:0.133: found no endpoint descriptor for endpoint 81 [ 343.310675][ T5892] keyspan 4-1:0.133: found no endpoint descriptor for endpoint 1 [ 343.310765][ T5892] keyspan 4-1:0.133: found no endpoint descriptor for endpoint 2 [ 343.458379][ T5892] usb 4-1: Keyspan 1 port adapter converter now attached to ttyUSB0 [ 343.567503][ T5892] usb 4-1: USB disconnect, device number 9 [ 343.668932][T11796] overlayfs: failed to clone upperpath [ 343.687032][ T5892] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0 [ 343.700376][ T5892] keyspan 4-1:0.133: device disconnected [ 348.860020][T11868] netlink: 'syz.3.2634': attribute type 10 has an invalid length. [ 349.222509][T11868] team0: Failed to send port change of device netdevsim0 via netlink (err -105) [ 349.222702][T11868] team0: Failed to send options change via netlink (err -105) [ 349.222718][T11868] team0: Port device netdevsim0 added [ 350.066034][T11906] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2652'. [ 353.723036][T11975] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2680'. [ 354.324563][T11998] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2691'. [ 354.777014][T12016] netlink: 80 bytes leftover after parsing attributes in process `syz.3.2699'. [ 355.707780][T12053] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2715'. [ 355.818358][ T37] audit: type=1326 audit(355.683:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12055 comm="syz.4.2716" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f1f5915f6c9 code=0x0 [ 356.015105][ T9] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 356.176119][ T9] usb 4-1: Using ep0 maxpacket: 32 [ 356.179803][ T9] usb 4-1: config 2 has an invalid interface number: 194 but max is 0 [ 356.179831][ T9] usb 4-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config [ 356.179848][ T9] usb 4-1: config 2 has no interface number 0 [ 356.179894][ T9] usb 4-1: config 2 interface 194 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 833 [ 356.179915][ T9] usb 4-1: config 2 interface 194 altsetting 0 endpoint 0xA has invalid maxpacket 1584, setting to 1024 [ 356.179937][ T9] usb 4-1: config 2 interface 194 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 4 [ 356.180082][ T9] usb 4-1: New USB device found, idVendor=0499, idProduct=1025, bcdDevice=9c.f6 [ 356.180103][ T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 356.259198][T12054] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 356.259420][T12054] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 356.474881][ T5986] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 356.477029][ T9] usb 4-1: string descriptor 0 read error: -71 [ 356.537292][ T9] usb 4-1: Quirk or no altset; falling back to MIDI 1.0 [ 356.637457][ T5986] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 356.637517][ T5986] usb 1-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 356.637537][ T5986] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 356.642859][ T5986] usb 1-1: config 0 descriptor?? [ 356.705866][ T5986] pwc: Askey VC010 type 2 USB webcam detected. [ 356.917732][ T9] usb 4-1: USB disconnect, device number 10 [ 357.193376][ T5986] pwc: recv_control_msg error -32 req 02 val 2b00 [ 357.974072][ T5986] pwc: recv_control_msg error -32 req 02 val 2700 [ 358.018142][ T5986] pwc: recv_control_msg error -32 req 02 val 2c00 [ 358.032245][ T5986] pwc: recv_control_msg error -32 req 04 val 1000 [ 358.068776][ T5986] pwc: recv_control_msg error -32 req 04 val 1300 [ 358.069475][ T5986] pwc: recv_control_msg error -32 req 04 val 1400 [ 358.073313][ T5986] pwc: recv_control_msg error -32 req 02 val 2000 [ 358.095521][ T5986] pwc: recv_control_msg error -32 req 02 val 2100 [ 358.098078][ T5986] pwc: recv_control_msg error -32 req 04 val 1500 [ 358.329494][ T5986] pwc: recv_control_msg error -71 req 02 val 2400 [ 358.330395][ T5986] pwc: recv_control_msg error -71 req 02 val 2600 [ 358.331914][ T5986] pwc: recv_control_msg error -71 req 02 val 2900 [ 358.332695][ T5986] pwc: recv_control_msg error -71 req 02 val 2800 [ 358.363434][ T5986] pwc: recv_control_msg error -71 req 04 val 1100 [ 358.371007][ T5986] pwc: recv_control_msg error -71 req 04 val 1200 [ 358.413518][ T5986] pwc: Registered as video103. [ 358.427986][ T5986] input: PWC snapshot button as /devices/platform/dummy_hcd.0/usb1/1-1/input/input13 [ 358.458138][ T5986] usb 1-1: USB disconnect, device number 6 [ 359.276616][T12101] 9pnet: Could not find request transport: 0xffffffffffffffff [ 360.127199][T12109] workqueue: Failed to create a rescuer kthread for wq "ceph-completion": -EINTR [ 360.999503][T12134] overlayfs: failed to clone upperpath [ 361.137958][T12136] netlink: 56 bytes leftover after parsing attributes in process `syz.4.2746'. [ 362.697342][T12174] bridge0: port 2(bridge_slave_1) entered disabled state [ 366.800122][T12270] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2808'. [ 369.447474][T12323] TCP: TCP_TX_DELAY enabled [ 371.133197][ T5881] kernel write not supported for file [eventfd] (pid: 5881 comm: kworker/1:6) [ 372.503893][ T37] audit: type=1326 audit(372.371:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12386 comm="syz.0.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x50000 [ 372.504595][ T37] audit: type=1326 audit(372.371:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12386 comm="syz.0.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x50000 [ 372.504890][ T37] audit: type=1326 audit(372.371:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12386 comm="syz.0.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x50000 [ 372.505722][ T37] audit: type=1326 audit(372.371:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12386 comm="syz.0.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x50000 [ 372.506005][ T37] audit: type=1326 audit(372.371:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12386 comm="syz.0.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x50000 [ 372.506244][ T37] audit: type=1326 audit(372.371:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12386 comm="syz.0.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x50000 [ 372.633475][ T37] audit: type=1326 audit(372.371:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12386 comm="syz.0.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x50000 [ 372.633872][ T37] audit: type=1326 audit(372.501:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12386 comm="syz.0.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=96 compat=0 ip=0xffffffffff600000 code=0x50000 [ 372.634198][ T37] audit: type=1326 audit(372.501:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12386 comm="syz.0.2861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f141a2cf6c9 code=0x50000 [ 373.047711][T12394] syz.3.2864 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 377.908780][T12463] overlayfs: failed to resolve './file1': -2 [ 377.990926][T12466] devpts: Bad value for 'max' [ 378.786506][ T1320] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.399637][T12497] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2906'. [ 379.669401][ T37] audit: type=1326 audit(379.545:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12502 comm="syz.3.2909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 379.669741][ T37] audit: type=1326 audit(379.545:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12502 comm="syz.3.2909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 379.670267][ T37] audit: type=1326 audit(379.545:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12502 comm="syz.3.2909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 379.670763][ T37] audit: type=1326 audit(379.545:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12502 comm="syz.3.2909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 379.671776][ T37] audit: type=1326 audit(379.545:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12502 comm="syz.3.2909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 379.672463][ T37] audit: type=1326 audit(379.545:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12502 comm="syz.3.2909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 379.672780][ T37] audit: type=1326 audit(379.545:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12502 comm="syz.3.2909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 379.705105][ T37] audit: type=1326 audit(379.545:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12502 comm="syz.3.2909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 379.705159][ T37] audit: type=1326 audit(379.585:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12502 comm="syz.3.2909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 379.705199][ T37] audit: type=1326 audit(379.585:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12502 comm="syz.3.2909" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 382.753237][T12531] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2920'. [ 383.314472][T12554] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2929'. [ 384.674387][T12587] overlayfs: failed to clone upperpath [ 390.004833][ T37] audit: type=1326 audit(389.890:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12664 comm="syz.0.2973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 390.041692][ T37] audit: type=1326 audit(389.930:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12664 comm="syz.0.2973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=136 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 390.041746][ T37] audit: type=1326 audit(389.930:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12664 comm="syz.0.2973" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 390.815350][T12683] pim6reg1: entered promiscuous mode [ 390.815376][T12683] pim6reg1: entered allmulticast mode [ 391.445108][T12702] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2990'. [ 391.657092][ T5986] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 391.809881][ T5986] usb 5-1: config 0 has no interfaces? [ 391.815492][ T5986] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 391.815520][ T5986] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 391.815538][ T5986] usb 5-1: Product: syz [ 391.815552][ T5986] usb 5-1: Manufacturer: syz [ 391.815566][ T5986] usb 5-1: SerialNumber: syz [ 391.861982][ T5986] usb 5-1: config 0 descriptor?? [ 392.107740][ T5986] usb 5-1: USB disconnect, device number 5 [ 393.681221][T12760] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3017'. [ 393.681831][T12760] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3017'. [ 393.682255][T12760] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3017'. [ 393.682643][T12760] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3017'. [ 393.683021][T12760] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3017'. [ 393.683378][T12760] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3017'. [ 393.683776][T12760] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3017'. [ 393.684141][T12760] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3017'. [ 393.684521][T12760] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3017'. [ 396.548611][T12823] netlink: 'syz.2.3044': attribute type 32 has an invalid length. [ 397.489534][T12860] netlink: 'syz.3.3061': attribute type 1 has an invalid length. [ 397.543362][T12863] __nla_validate_parse: 71 callbacks suppressed [ 397.543383][T12863] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3061'. [ 397.748222][T12860] 8021q: adding VLAN 0 to HW filter on device bond2 [ 397.760973][T12863] bond2: entered promiscuous mode [ 397.761007][T12863] bond2: entered allmulticast mode [ 398.102182][T12866] bond2: (slave dummy0): making interface the new active one [ 398.102210][T12866] dummy0: entered promiscuous mode [ 398.102465][T12866] dummy0: entered allmulticast mode [ 398.149114][T12866] bond2: (slave dummy0): Enslaving as an active interface with an up link [ 398.150120][T12880] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3067'. [ 398.553828][T12893] netlink: 44 bytes leftover after parsing attributes in process `syz.1.3074'. [ 398.708037][T12897] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3076'. [ 399.710744][T12945] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3099'. [ 399.711364][T12945] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3099'. [ 399.713965][T12945] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3099'. [ 399.714515][T12945] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3099'. [ 399.714907][T12945] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3099'. [ 399.719605][T12945] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3099'. [ 403.619327][T13065] tmpfs: Bad value for 'huge' [ 404.130029][T13085] __nla_validate_parse: 67 callbacks suppressed [ 404.130052][T13085] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3166'. [ 406.262357][T13164] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3204'. [ 406.262389][T13164] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3204'. [ 406.262410][T13164] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3204'. [ 406.262431][T13164] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3204'. [ 406.262891][T13164] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3204'. [ 406.262913][T13164] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3204'. [ 406.262935][T13164] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3204'. [ 406.262956][T13164] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3204'. [ 406.262976][T13164] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3204'. [ 406.910810][ T37] audit: type=1326 audit(406.809:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13187 comm="syz.1.3216" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f22297af6c9 code=0x0 [ 406.944083][T13188] openvswitch: netlink: Missing key (keys=40, expected=80) [ 407.247657][T13203] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7) [ 407.247684][T13203] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 407.313838][T13203] vhci_hcd vhci_hcd.0: Device attached [ 407.316788][T13205] vhci_hcd: connection closed [ 407.365890][ T6899] vhci_hcd: stop threads [ 407.368460][ T6899] vhci_hcd: release socket [ 407.368596][ T6899] vhci_hcd: disconnect device [ 409.242464][T13261] overlayfs: missing 'lowerdir' [ 409.729498][T13277] __nla_validate_parse: 71 callbacks suppressed [ 409.729517][T13277] netlink: 44 bytes leftover after parsing attributes in process `syz.1.3254'. [ 410.088532][T13291] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3261'. [ 410.089647][T13291] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3261'. [ 410.090243][T13291] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3261'. [ 410.090780][T13291] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3261'. [ 410.091179][T13291] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3261'. [ 410.091534][T13291] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3261'. [ 410.091924][T13291] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3261'. [ 410.092688][T13291] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3261'. [ 410.129673][T13291] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3261'. [ 410.722875][T13311] overlayfs: failed to clone upperpath [ 411.529225][T13336] ip_vti0: entered promiscuous mode [ 411.529254][T13336] ip_vti0: entered allmulticast mode [ 412.982775][T13380] evm: overlay not supported [ 416.332294][T13474] __nla_validate_parse: 68 callbacks suppressed [ 416.332323][T13474] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3346'. [ 417.349382][T13491] pim6reg1: entered promiscuous mode [ 417.349408][T13491] pim6reg1: entered allmulticast mode [ 418.046554][ T37] audit: type=1326 audit(417.944:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13517 comm="syz.2.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed3fecf6c9 code=0x7ffc0000 [ 418.046613][ T37] audit: type=1326 audit(417.944:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13517 comm="syz.2.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fed3fecf6c9 code=0x7ffc0000 [ 418.046658][ T37] audit: type=1326 audit(417.944:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13517 comm="syz.2.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed3fecf6c9 code=0x7ffc0000 [ 418.046702][ T37] audit: type=1326 audit(417.944:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13517 comm="syz.2.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7fed3fecf6c9 code=0x7ffc0000 [ 418.143862][ T37] audit: type=1326 audit(418.034:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13517 comm="syz.2.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed3fecf6c9 code=0x7ffc0000 [ 418.143917][ T37] audit: type=1326 audit(418.034:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13517 comm="syz.2.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fed3fecf6c9 code=0x7ffc0000 [ 418.143959][ T37] audit: type=1326 audit(418.034:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13517 comm="syz.2.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed3fecf6c9 code=0x7ffc0000 [ 418.144000][ T37] audit: type=1326 audit(418.034:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13517 comm="syz.2.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed3fecf6c9 code=0x7ffc0000 [ 418.145154][ T37] audit: type=1326 audit(418.044:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13517 comm="syz.2.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fed3fecf6c9 code=0x7ffc0000 [ 418.145207][ T37] audit: type=1326 audit(418.044:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13517 comm="syz.2.3365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed3fecf6c9 code=0x7ffc0000 [ 418.882337][T13549] netlink: 248 bytes leftover after parsing attributes in process `syz.4.3380'. [ 419.041605][T13555] overlayfs: empty lowerdir [ 419.079893][T13559] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3386'. [ 419.838714][ C0] vkms_vblank_simulate: vblank timer overrun [ 425.832558][T13721] netlink: 76 bytes leftover after parsing attributes in process `syz.4.3456'. [ 427.447837][T13752] +$<: renamed from bridge0 (while UP) [ 428.792601][T13793] netlink: 272 bytes leftover after parsing attributes in process `syz.2.3491'. [ 429.234843][T13802] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3495'. [ 430.267619][ T37] kauditd_printk_skb: 10 callbacks suppressed [ 430.273911][ T37] audit: type=1326 audit(430.170:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13807 comm="syz.1.3497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22297af6c9 code=0x50000 [ 430.307697][ T37] audit: type=1326 audit(430.210:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13807 comm="syz.1.3497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f22297af6c9 code=0x50000 [ 430.307761][ T37] audit: type=1326 audit(430.210:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13807 comm="syz.1.3497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f22297e1f85 code=0x50000 [ 430.307803][ T37] audit: type=1326 audit(430.210:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13807 comm="syz.1.3497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f22297af6c9 code=0x50000 [ 430.503671][ T37] audit: type=1326 audit(430.410:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13807 comm="syz.1.3497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=96 compat=0 ip=0xffffffffff600000 code=0x50000 [ 430.503728][ T37] audit: type=1326 audit(430.410:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13807 comm="syz.1.3497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f22297af6c9 code=0x50000 [ 430.994502][T13819] Device name cannot be null; rc = [-22] [ 432.152643][T13850] overlayfs: failed to clone upperpath [ 432.204317][T13832] fuse: Invalid rootmode [ 433.850903][T13892] netlink: 'syz.4.3536': attribute type 4 has an invalid length. [ 433.850928][T13892] netlink: 3657 bytes leftover after parsing attributes in process `syz.4.3536'. [ 436.219291][T13956] binder: 13953:13956 ioctl 4018620d 0 returned -22 [ 437.650716][T13989] Driver unsupported XDP return value 0 on prog (id 112) dev N/A, expect packet loss! [ 437.786005][T13997] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3581'. [ 437.786103][T13997] bridge_slave_1: left allmulticast mode [ 437.786126][T13997] bridge_slave_1: left promiscuous mode [ 437.786428][T13997] +$<: port 2(bridge_slave_1) entered disabled state [ 437.896257][T13997] bridge_slave_0: left allmulticast mode [ 437.896289][T13997] bridge_slave_0: left promiscuous mode [ 437.896553][T13997] +$<: port 1(bridge_slave_0) entered disabled state [ 438.505171][T14027] syz.1.3595 (14027): attempted to duplicate a private mapping with mremap. This is not supported. [ 439.071058][T14047] netlink: 'syz.4.3604': attribute type 4 has an invalid length. [ 440.189924][ T1320] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.476841][T14108] overlayfs: missing 'lowerdir' [ 440.939408][T14128] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3642'. [ 440.939459][T14128] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3642'. [ 441.063922][T14134] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3646'. [ 441.585473][T14151] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3652'. [ 445.947078][T14291] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3713'. [ 447.339740][ T37] audit: type=1326 audit(447.229:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14346 comm="syz.3.3737" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x0 [ 449.271776][T14391] netlink: 56 bytes leftover after parsing attributes in process `syz.0.3755'. [ 449.620682][T14403] overlayfs: failed to resolve './file0': -2 [ 449.688296][T14407] trusted_key: encrypted_key: insufficient parameters specified [ 451.055565][T14441] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 452.300649][T14503] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3807'. [ 452.300677][T14503] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3807'. [ 452.304816][T14498] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 455.456517][T14605] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 459.305118][T14712] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3899'. [ 459.305145][T14712] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3899'. [ 459.305157][T14712] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3899'. [ 460.195965][T14745] netlink: 9 bytes leftover after parsing attributes in process `syz.0.3913'. [ 460.247255][T14742] netlink: 5 bytes leftover after parsing attributes in process `syz.0.3913'. [ 460.272374][T14745] 0{X: entered promiscuous mode [ 460.272399][T14745] 0{X: left allmulticast mode [ 460.304268][T14742] 1{X: renamed from 30{X [ 460.386630][T14742] 1{X: left promiscuous mode [ 460.386660][T14742] 1{X: entered allmulticast mode [ 460.388395][T14742] A link change request failed with some changes committed already. Interface 31{X may have been left with an inconsistent configuration, please check. [ 462.035520][T14778] trusted_key: encrypted_key: insufficient parameters specified [ 463.124079][T14816] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3948'. [ 465.618115][T14892] overlayfs: missing 'workdir' [ 466.178405][T14921] tc_dump_action: action bad kind [ 466.379115][T14927] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4000'. [ 466.379147][T14927] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4000'. [ 466.379162][T14927] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4000'. [ 466.520330][T14930] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4001'. [ 466.744182][ T5881] IPVS: starting estimator thread 0... [ 466.801366][T14946] overlay: ./file0 is not a directory [ 466.839856][T14945] IPVS: using max 8 ests per chain, 19200 per kthread [ 469.495740][T14999] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4030'. [ 469.495841][T14999] netlink: 17 bytes leftover after parsing attributes in process `syz.2.4030'. [ 469.495854][T14999] tipc: Invalid UDP bearer configuration [ 469.495898][T14999] tipc: Enabling of bearer rejected, failed to enable media [ 470.800005][T15050] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4056'. [ 470.866652][T15059] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4058'. [ 471.013979][T15064] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4059'. [ 471.264298][ T37] audit: type=1326 audit(471.191:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15078 comm="syz.0.4067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 471.265699][ T37] audit: type=1326 audit(471.191:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15078 comm="syz.0.4067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 471.265753][ T37] audit: type=1326 audit(471.191:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15078 comm="syz.0.4067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 471.880338][ T37] audit: type=1326 audit(471.801:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15078 comm="syz.0.4067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 471.881194][ T37] audit: type=1326 audit(471.801:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15078 comm="syz.0.4067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 471.992007][ T37] audit: type=1326 audit(471.911:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15078 comm="syz.0.4067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 471.993872][ T37] audit: type=1326 audit(471.911:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15078 comm="syz.0.4067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 474.137695][ T37] audit: type=1326 audit(474.062:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15177 comm="syz.1.4115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22297af6c9 code=0x7ffc0000 [ 474.138099][ T37] audit: type=1326 audit(474.062:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15177 comm="syz.1.4115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f22297af6c9 code=0x7ffc0000 [ 474.138364][ T37] audit: type=1326 audit(474.062:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15177 comm="syz.1.4115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22297af6c9 code=0x7ffc0000 [ 476.295854][ T37] kauditd_printk_skb: 17 callbacks suppressed [ 476.295874][ T37] audit: type=1326 audit(476.223:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15246 comm="syz.3.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 476.295920][ T37] audit: type=1326 audit(476.223:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15246 comm="syz.3.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 476.295970][ T37] audit: type=1326 audit(476.223:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15246 comm="syz.3.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 476.296011][ T37] audit: type=1326 audit(476.223:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15246 comm="syz.3.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 476.296363][ T37] audit: type=1326 audit(476.223:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15246 comm="syz.3.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 476.309076][ T37] audit: type=1326 audit(476.223:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15246 comm="syz.3.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 476.309138][ T37] audit: type=1326 audit(476.223:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15246 comm="syz.3.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 476.309183][ T37] audit: type=1326 audit(476.223:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15246 comm="syz.3.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 476.309247][ T37] audit: type=1326 audit(476.223:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15246 comm="syz.3.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 476.309288][ T37] audit: type=1326 audit(476.223:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15246 comm="syz.3.4143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 476.403053][T15251] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4146'. [ 478.165014][T15309] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 478.165041][T15309] overlayfs: missing 'lowerdir' [ 479.590281][T15352] PM: Enabling pm_trace changes system date and time during resume. [ 479.590281][T15352] PM: Correct system time has to be restored manually after resume. [ 480.297931][T15386] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4209'. [ 481.545025][T15420] netlink: 80 bytes leftover after parsing attributes in process `syz.3.4221'. [ 481.545483][T15420] netlink: 72 bytes leftover after parsing attributes in process `syz.3.4221'. [ 481.772383][T15423] fixup_iopl_exception: 13 callbacks suppressed [ 481.772398][T15423] traps: syz.3.4225[15423] attempts to use CLI/STI, pretending it's a NOP, ip:200000000002 [ 481.816710][T15424] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4223'. [ 481.816736][T15424] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4223'. [ 482.811074][T15450] netlink: 44 bytes leftover after parsing attributes in process `syz.4.4235'. [ 482.811103][T15450] netlink: 59 bytes leftover after parsing attributes in process `syz.4.4235'. [ 482.811118][T15450] netlink: 59 bytes leftover after parsing attributes in process `syz.4.4235'. [ 484.074234][T15503] overlay: filesystem on ./bus not supported as upperdir [ 484.541745][T15519] 9pnet_fd: Insufficient options for proto=fd [ 485.171465][T15547] netlink: 140 bytes leftover after parsing attributes in process `syz.0.4280'. [ 486.376837][T15607] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4308'. [ 486.865837][ T37] audit: type=1326 audit(486.798:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15623 comm="syz.0.4318" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x0 [ 487.241901][T15639] netlink: 172 bytes leftover after parsing attributes in process `syz.0.4324'. [ 487.241925][T15639] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4324'. [ 487.608562][T15655] netlink: 44 bytes leftover after parsing attributes in process `syz.4.4332'. [ 487.608588][T15655] netlink: 43 bytes leftover after parsing attributes in process `syz.4.4332'. [ 487.608603][T15655] netlink: 'syz.4.4332': attribute type 5 has an invalid length. [ 487.608615][T15655] netlink: 43 bytes leftover after parsing attributes in process `syz.4.4332'. [ 487.731811][T15663] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4339'. [ 488.133401][T15681] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4345'. [ 488.464266][ T37] audit: type=1326 audit(488.399:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15692 comm="syz.0.4351" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x0 [ 488.679407][T15708] trusted_key: encrypted_key: master key parameter is missing [ 489.891605][T15763] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4383'. [ 489.891653][T15763] lo: entered promiscuous mode [ 492.854166][T15871] netlink: 'syz.4.4433': attribute type 4 has an invalid length. [ 493.028540][T15878] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4435'. [ 493.820766][ T10] usb 5-1: new full-speed USB device number 6 using dummy_hcd [ 494.205507][ T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 494.205560][ T10] usb 5-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00 [ 494.205582][ T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 494.210815][ T10] usb 5-1: config 0 descriptor?? [ 494.211836][T15890] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 494.427583][T15903] netlink: 308 bytes leftover after parsing attributes in process `syz.2.4445'. [ 495.122210][T15922] IPv6: NLM_F_CREATE should be specified when creating new route [ 496.570160][ T10] usbhid 5-1:0.0: can't add hid device: -71 [ 496.570253][ T10] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 496.574940][ T10] usb 5-1: USB disconnect, device number 6 [ 497.407399][T15968] 9pnet_virtio: no channels available for device syz [ 499.742119][T16073] overlayfs: missing 'lowerdir' [ 501.587810][ T1320] ieee802154 phy0 wpan0: encryption failed: -22 [ 502.578531][T16150] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it. [ 502.578550][T16150] overlayfs: missing 'lowerdir' [ 503.209944][T16176] netlink: 32 bytes leftover after parsing attributes in process `syz.1.4566'. [ 503.983304][T16201] tipc: Started in network mode [ 503.983336][T16201] tipc: Node identity ac1414aa, cluster identity 4711 [ 503.990027][T16201] tipc: Enabled bearer , priority 10 [ 505.025706][ T31] tipc: Node number set to 2886997162 [ 505.661147][T16223] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4583'. [ 507.161258][T16254] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 508.101195][T16292] netlink: 188 bytes leftover after parsing attributes in process `syz.2.4613'. [ 508.858896][T16323] netlink: 108 bytes leftover after parsing attributes in process `syz.2.4630'. [ 508.858921][T16323] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4630'. [ 510.074080][T16374] netlink: 92 bytes leftover after parsing attributes in process `syz.2.4655'. [ 511.436709][T16392] netlink: 96 bytes leftover after parsing attributes in process `syz.3.4663'. [ 511.685737][T16403] overlayfs: failed to clone upperpath [ 511.831162][ T37] audit: type=1326 audit(511.781:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16408 comm="syz.3.4670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 511.831217][ T37] audit: type=1326 audit(511.781:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16408 comm="syz.3.4670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 511.853698][T16412] tmpfs: Unknown parameter 'n' [ 511.885320][ T37] audit: type=1326 audit(511.781:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16408 comm="syz.3.4670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 511.885372][ T37] audit: type=1326 audit(511.801:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16408 comm="syz.3.4670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 511.885412][ T37] audit: type=1326 audit(511.821:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16408 comm="syz.3.4670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 511.885765][ T37] audit: type=1326 audit(511.821:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16408 comm="syz.3.4670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 511.885937][ T37] audit: type=1326 audit(511.821:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16408 comm="syz.3.4670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 511.996165][ T37] audit: type=1326 audit(511.821:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16408 comm="syz.3.4670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 512.018127][ T37] audit: type=1326 audit(511.821:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16408 comm="syz.3.4670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 512.018191][ T37] audit: type=1326 audit(511.861:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16408 comm="syz.3.4670" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 512.346081][T16422] fuse: Bad value for 'fd' [ 512.730640][T16434] netlink: 96 bytes leftover after parsing attributes in process `syz.1.4683'. [ 513.185584][T16452] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4691'. [ 515.007503][T16481] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4704'. [ 515.007533][T16481] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4704'. [ 515.007549][T16481] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4704'. [ 516.902280][T16555] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4737'. [ 517.704256][T16564] netlink: 'syz.0.4750': attribute type 6 has an invalid length. [ 521.665688][T16618] 9pnet: Could not find request transport: 0xffffffffffffffff [ 522.592252][T16637] netlink: 'syz.2.4768': attribute type 11 has an invalid length. [ 522.592278][T16637] netlink: 3593 bytes leftover after parsing attributes in process `syz.2.4768'. [ 523.262997][T16652] IPv6: NLM_F_CREATE should be specified when creating new route [ 523.869191][T16678] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4788'. [ 524.338598][ T5892] hid_parser_main: 73 callbacks suppressed [ 524.338624][ T5892] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 524.372575][ T10] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 524.400972][ T5892] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz1] on syz0 [ 524.433021][T16703] netlink: 536 bytes leftover after parsing attributes in process `syz.1.4799'. [ 524.433053][T16703] netlink: 32 bytes leftover after parsing attributes in process `syz.1.4799'. [ 524.505820][T16704] fido_id[16704]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 524.524494][ T10] usb 4-1: Using ep0 maxpacket: 32 [ 524.528075][ T10] usb 4-1: config 0 has an invalid interface number: 12 but max is 0 [ 524.528104][ T10] usb 4-1: config 0 has no interface number 0 [ 524.528162][ T10] usb 4-1: config 0 interface 12 has no altsetting 0 [ 524.559697][ T10] usb 4-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40 [ 524.559729][ T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 524.559749][ T10] usb 4-1: Product: syz [ 524.559763][ T10] usb 4-1: Manufacturer: syz [ 524.559777][ T10] usb 4-1: SerialNumber: syz [ 524.603861][ T10] usb 4-1: config 0 descriptor?? [ 525.158114][ T10] f81534 4-1:0.12: f81534_get_register: reg: 1003 failed: -71 [ 525.158165][ T10] f81534 4-1:0.12: f81534_find_config_idx: read failed: -71 [ 525.158181][ T10] f81534 4-1:0.12: f81534_calc_num_ports: find idx failed: -71 [ 525.158274][ T10] f81534 4-1:0.12: probe with driver f81534 failed with error -71 [ 525.217062][ T10] usb 4-1: USB disconnect, device number 11 [ 526.669988][T16764] netlink: 104 bytes leftover after parsing attributes in process `syz.4.4823'. [ 528.239110][T16797] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4840'. [ 528.275870][T16794] netlink: 536 bytes leftover after parsing attributes in process `syz.0.4837'. [ 529.110969][T16826] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4852'. [ 529.110996][T16826] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4852'. [ 531.997694][T16873] syz_tun: entered promiscuous mode [ 531.998555][T16872] syz_tun: left promiscuous mode [ 532.713001][T16901] netlink: 76 bytes leftover after parsing attributes in process `syz.3.4886'. [ 533.319139][T16918] bridge2: entered promiscuous mode [ 533.319170][T16918] bridge2: entered allmulticast mode [ 534.985796][T16935] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4902'. [ 535.544219][T16953] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4909'. [ 535.544248][T16953] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4909'. [ 535.544263][T16953] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4909'. [ 536.149067][T16972] veth0_virt_wifi: entered allmulticast mode [ 536.149686][T16972] veth0_virt_wifi: left allmulticast mode [ 536.203602][T16975] overlayfs: overlapping lowerdir path [ 536.928040][T16989] bridge0: port 2(bridge_slave_1) entered disabled state [ 536.928352][T16989] bridge0: port 1(bridge_slave_0) entered disabled state [ 538.652767][T17039] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4948'. [ 538.652808][T17039] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4948'. [ 538.698334][T17041] tmpfs: Bad value for 'huge' [ 539.167383][T17050] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4953'. [ 540.065050][T17039] geneve2: entered promiscuous mode [ 540.065079][T17039] geneve2: entered allmulticast mode [ 540.105899][ T3587] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 540.127944][ T3587] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 540.128063][ T3587] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 540.128102][ T3587] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 540.128138][ T3587] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 540.128171][ T3587] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 540.128207][ T3587] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 540.128241][ T3587] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 542.108682][T17159] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5003'. [ 542.676974][T17183] netlink: 'syz.0.5014': attribute type 17 has an invalid length. [ 544.449545][T17229] netlink: 'syz.4.5034': attribute type 3 has an invalid length. [ 544.449569][T17229] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5034'. [ 548.865042][T17318] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5074'. [ 548.919042][T17323] tmpfs: Bad value for 'nr_blocks' [ 548.939330][ T37] kauditd_printk_skb: 11 callbacks suppressed [ 548.939351][ T37] audit: type=1326 audit(548.519:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17321 comm="syz.1.5076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22297af6c9 code=0x7ffc0000 [ 548.939520][ T37] audit: type=1326 audit(548.519:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17321 comm="syz.1.5076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22297af6c9 code=0x7ffc0000 [ 548.939863][ T37] audit: type=1326 audit(548.519:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17321 comm="syz.1.5076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f22297af6c9 code=0x7ffc0000 [ 548.940013][ T37] audit: type=1326 audit(548.519:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17321 comm="syz.1.5076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22297af6c9 code=0x7ffc0000 [ 548.940182][ T37] audit: type=1326 audit(548.519:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17321 comm="syz.1.5076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22297af6c9 code=0x7ffc0000 [ 549.719700][T17355] 1{X: left allmulticast mode [ 549.736172][T17355] geneve2: left allmulticast mode [ 551.169521][T17414] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5118'. [ 552.118099][T17447] pim6reg1: entered promiscuous mode [ 552.118126][T17447] pim6reg1: entered allmulticast mode [ 552.799115][T17473] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5146'. [ 553.094759][T17485] mmap: syz.2.5152 (17485): VmData 37466112 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data. [ 553.527082][ T37] audit: type=1326 audit(553.041:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17498 comm="syz.3.5158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 553.527153][ T37] audit: type=1326 audit(553.051:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17498 comm="syz.3.5158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 553.527195][ T37] audit: type=1326 audit(553.051:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17498 comm="syz.3.5158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 553.527237][ T37] audit: type=1326 audit(553.051:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17498 comm="syz.3.5158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 553.527279][ T37] audit: type=1326 audit(553.051:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17498 comm="syz.3.5158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13f2e4f6c9 code=0x7ffc0000 [ 554.319681][T17534] netlink: 56 bytes leftover after parsing attributes in process `syz.2.5176'. [ 555.134177][T17539] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 555.134235][T17539] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 559.531917][ T10] usb 5-1: new full-speed USB device number 7 using dummy_hcd [ 559.687785][ T10] usb 5-1: config 0 has an invalid interface number: 133 but max is 0 [ 559.687815][ T10] usb 5-1: config 0 has no interface number 0 [ 559.687879][ T10] usb 5-1: config 0 interface 133 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 559.690950][ T10] usb 5-1: New USB device found, idVendor=06cd, idProduct=0121, bcdDevice=dd.3d [ 559.690980][ T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 559.690999][ T10] usb 5-1: Product: syz [ 559.691013][ T10] usb 5-1: Manufacturer: syz [ 559.691026][ T10] usb 5-1: SerialNumber: syz [ 559.761381][ T10] usb 5-1: config 0 descriptor?? [ 559.980193][ T10] keyspan 5-1:0.133: Keyspan 1 port adapter converter detected [ 559.980416][ T10] keyspan 5-1:0.133: unsupported endpoint type 0 [ 559.982795][ T10] keyspan 5-1:0.133: found no endpoint descriptor for endpoint 81 [ 559.982911][ T10] keyspan 5-1:0.133: found no endpoint descriptor for endpoint 1 [ 559.983000][ T10] keyspan 5-1:0.133: found no endpoint descriptor for endpoint 2 [ 560.046150][ T10] usb 5-1: Keyspan 1 port adapter converter now attached to ttyUSB0 [ 560.062141][ T10] usb 5-1: USB disconnect, device number 7 [ 560.121786][ T10] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0 [ 560.122676][ T10] keyspan 5-1:0.133: device disconnected [ 563.485745][ T1320] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.812687][T17757] bridge0: port 3(erspan0) entered disabled state [ 563.977234][T17764] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5275'. [ 564.160946][T17757] bridge0: port 1(bridge_slave_0) entered disabled state [ 566.349877][T17793] netlink: 'syz.2.5287': attribute type 4 has an invalid length. [ 566.729179][T17757] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 566.795343][T17757] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 568.294795][T17816] netlink: 188 bytes leftover after parsing attributes in process `syz.0.5298'. [ 568.362246][ T151] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 568.376401][ T151] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 568.376450][ T151] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 568.376486][ T151] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 569.234934][T17831] bridge2: trying to set multicast query interval below minimum, setting to 100 (1000ms) [ 571.675631][T17907] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5337'. [ 571.676063][T17907] erspan0: entered promiscuous mode [ 571.948307][ T44] usb 4-1: new full-speed USB device number 12 using dummy_hcd [ 572.103112][ T44] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 572.103139][ T44] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 572.106159][ T44] usb 4-1: New USB device found, idVendor=06cd, idProduct=0121, bcdDevice=dd.3d [ 572.106186][ T44] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 572.106206][ T44] usb 4-1: Product: syz [ 572.106220][ T44] usb 4-1: Manufacturer: syz [ 572.106233][ T44] usb 4-1: SerialNumber: syz [ 572.203116][ T44] usb 4-1: config 0 descriptor?? [ 572.462342][ T44] usb 4-1: USB disconnect, device number 12 [ 573.707043][ T5853] IPVS: starting estimator thread 0... [ 573.866932][T17988] IPVS: using max 7 ests per chain, 16800 per kthread [ 574.799263][T17973] fuse: Bad value for 'fd' [ 576.902521][T18051] netlink: 272 bytes leftover after parsing attributes in process `syz.1.5397'. [ 577.018103][T18052] netlink: 'syz.3.5393': attribute type 3 has an invalid length. [ 578.157619][T18076] netlink: 44 bytes leftover after parsing attributes in process `syz.1.5408'. [ 578.157645][T18076] netlink: 32 bytes leftover after parsing attributes in process `syz.1.5408'. [ 582.572688][ T9] IPVS: starting estimator thread 0... [ 582.663095][T18162] IPVS: using max 7 ests per chain, 16800 per kthread [ 583.197051][T18171] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5446'. [ 584.392545][T18195] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5458'. [ 584.392580][T18195] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5458'. [ 584.392596][T18195] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5458'. [ 584.835041][T18199] bridge0: port 2(bridge_slave_1) entered disabled state [ 584.848485][T18199] bridge0: port 1(bridge_slave_0) entered disabled state [ 587.447046][ T3587] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 587.614821][ T3587] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 587.614929][ T3587] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 587.614966][ T3587] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 588.626480][T18310] trusted_key: encrypted_key: insufficient parameters specified [ 589.458324][T18336] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5522'. [ 589.458360][T18336] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5522'. [ 589.458375][T18336] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5522'. [ 589.466225][T18335] netlink: 'syz.0.5521': attribute type 6 has an invalid length. [ 591.156857][T18383] netlink: 'syz.0.5541': attribute type 2 has an invalid length. [ 591.156881][T18383] netlink: 1 bytes leftover after parsing attributes in process `syz.0.5541'. [ 594.285942][T18481] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5582'. [ 594.547413][ T5853] usb 5-1: new full-speed USB device number 8 using dummy_hcd [ 595.276849][ T5853] usb 5-1: unable to get BOS descriptor or descriptor too short [ 595.298415][ T5853] usb 5-1: not running at top speed; connect to a high speed hub [ 595.311499][ T5986] IPVS: starting estimator thread 0... [ 595.524219][ T5853] usb 5-1: config 56 has an invalid interface number: 218 but max is 0 [ 595.524305][ T5853] usb 5-1: config 56 has an invalid descriptor of length 65, skipping remainder of the config [ 595.524318][ T5853] usb 5-1: config 56 has no interface number 0 [ 595.524368][ T5853] usb 5-1: config 56 interface 218 altsetting 224 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 595.524384][ T5853] usb 5-1: config 56 interface 218 has no altsetting 0 [ 595.535672][ T5853] usb 5-1: New USB device found, idVendor=077d, idProduct=627a, bcdDevice= 0.10 [ 595.535698][ T5853] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 595.535715][ T5853] usb 5-1: Product: syz [ 595.535729][ T5853] usb 5-1: Manufacturer: syz [ 595.535743][ T5853] usb 5-1: SerialNumber: syz [ 595.607501][T18490] IPVS: using max 7 ests per chain, 16800 per kthread [ 595.779885][ T5853] radioshark2 5-1:56.218: Invalid radioSHARK2 device [ 595.779926][ T5853] radioshark2 5-1:56.218: probe with driver radioshark2 failed with error -22 [ 595.780473][ T5853] usbhid 5-1:56.218: couldn't find an input interrupt endpoint [ 595.874113][ T5853] usb 5-1: USB disconnect, device number 8 [ 596.919790][T18529] @: renamed from vlan0 (while UP) [ 596.927607][T18532] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5602'. [ 598.324118][T18554] netlink: 36 bytes leftover after parsing attributes in process `syz.4.5613'. [ 598.324147][T18554] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5613'. [ 598.324162][T18554] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5613'. [ 598.369318][T18555] tmpfs: Bad value for 'nr_blocks' [ 599.798987][T18605] binder: 18604:18605 ioctl 40046205 0 returned -22 [ 600.673865][T18644] 9pnet_fd: Insufficient options for proto=fd [ 601.441522][T18672] loop2: detected capacity change from 0 to 7 [ 601.510343][T18672] Dev loop2: unable to read RDB block 7 [ 601.510412][T18672] loop2: unable to read partition table [ 601.510667][T18672] loop2: partition table beyond EOD, truncated [ 601.510708][T18672] loop_reread_partitions: partition scan of loop2 (被x ) failed (rc=-5) [ 602.011452][T18689] @: renamed from vlan0 [ 602.135454][T18693] netlink: 'syz.0.5679': attribute type 4 has an invalid length. [ 602.892657][T18727] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5693'. [ 603.429948][T18756] overlayfs: failed to clone upperpath [ 604.422281][T18795] IPv6: A: Disabled Multicast RS [ 605.331822][T18820] overlayfs: failed to clone upperpath [ 606.799089][T18846] netlink: 136 bytes leftover after parsing attributes in process `syz.3.5746'. [ 608.023995][T18866] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5755'. [ 609.079233][T18877] Invalid ELF header magic: != ELF [ 610.308803][T18922] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5779'. [ 611.718629][T18949] binder: 18948:18949 ioctl c0306201 2000000004c0 returned -22 [ 612.049687][T18961] netlink: 'syz.2.5795': attribute type 4 has an invalid length. [ 612.074796][T18964] netlink: 'syz.3.5796': attribute type 4 has an invalid length. [ 612.319737][T18976] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5800'. [ 612.448153][T18982] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5802'. [ 612.605841][T18986] netlink: 'syz.2.5806': attribute type 3 has an invalid length. [ 613.029481][T19006] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5815'. [ 615.842402][T19071] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2 [ 619.278000][T19130] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5869'. [ 619.278026][T19130] netlink: 40 bytes leftover after parsing attributes in process `syz.1.5869'. [ 619.344118][T19126] overlayfs: missing 'lowerdir' [ 619.980612][ T5986] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 620.135747][ T5986] usb 5-1: config 0 has no interfaces? [ 620.171735][ T5986] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 620.171766][ T5986] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 620.171784][ T5986] usb 5-1: Product: syz [ 620.171797][ T5986] usb 5-1: Manufacturer: syz [ 620.171811][ T5986] usb 5-1: SerialNumber: syz [ 620.228128][ T5986] usb 5-1: config 0 descriptor?? [ 620.291768][T19164] netlink: 'syz.3.5884': attribute type 11 has an invalid length. [ 620.465202][ T10] usb 5-1: USB disconnect, device number 9 [ 620.863435][ T37] kauditd_printk_skb: 12 callbacks suppressed [ 620.863455][ T37] audit: type=1326 audit(620.601:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19177 comm="syz.1.5890" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f22297af6c9 code=0x0 [ 620.965621][T19188] netlink: 9 bytes leftover after parsing attributes in process `syz.3.5894'. [ 622.620430][T19257] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5926'. [ 623.377788][T19295] Device name cannot be null; rc = [-22] [ 623.485978][T19300] batadv_slave_1: entered promiscuous mode [ 623.486490][T19299] batadv_slave_1: left promiscuous mode [ 623.626459][T19305] overlayfs: failed to clone upperpath [ 624.505194][T19340] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5965'. [ 624.618970][ T1320] ieee802154 phy0 wpan0: encryption failed: -22 [ 625.019579][T19362] netlink: 24 bytes leftover after parsing attributes in process `syz.4.5975'. [ 625.298881][T19368] overlayfs: failed to resolve './file0': -2 [ 627.455120][ T5853] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 627.615941][ T5853] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 627.615977][ T5853] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 627.616047][ T5853] usb 5-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.00 [ 627.616072][ T5853] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 627.646519][ T5853] usb 5-1: config 0 descriptor?? [ 627.793368][T19431] wg2: Caught tx_queue_len zero misconfig [ 628.365479][ T5853] usbhid 5-1:0.0: can't add hid device: -71 [ 628.365613][ T5853] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 628.402485][ T5853] usb 5-1: USB disconnect, device number 10 [ 630.497615][T19483] overlayfs: failed to resolve './file0': -2 [ 630.696881][T19497] netlink: 84 bytes leftover after parsing attributes in process `syz.4.6032'. [ 632.210154][T19565] 9p: Unknown uid 00000000004294967295 [ 633.149512][T19607] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 633.149534][T19607] overlayfs: missing 'lowerdir' [ 633.979940][T19640] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6098'. [ 634.029522][T19644] overlayfs: failed to clone upperpath [ 634.073436][T19644] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 634.073470][T19644] overlayfs: missing 'lowerdir' [ 634.474526][T19660] tipc: Started in network mode [ 634.474556][T19660] tipc: Node identity ac14142f, cluster identity 4711 [ 634.474881][T19660] tipc: New replicast peer: 0.0.0.0 [ 634.475272][T19660] tipc: Enabled bearer , priority 10 [ 634.896664][T19676] netlink: 76 bytes leftover after parsing attributes in process `syz.4.6117'. [ 634.896698][T19676] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6117'. [ 635.619004][ T10] tipc: Node number set to 2886997039 [ 635.887118][T19707] netlink: 'syz.1.6128': attribute type 15 has an invalid length. [ 639.709888][T19767] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6156'. [ 642.264931][T19843] : renamed from bond_slave_0 [ 643.181756][T19868] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6202'. [ 647.838934][T20023] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6276'. [ 648.103372][T20033] netlink: 44 bytes leftover after parsing attributes in process `syz.1.6279'. [ 648.103402][T20033] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6279'. [ 648.772442][ T37] audit: type=1326 audit(648.718:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20053 comm="syz.0.6289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 648.782425][ T37] audit: type=1326 audit(648.718:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20053 comm="syz.0.6289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 648.784059][ T37] audit: type=1326 audit(648.728:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20053 comm="syz.0.6289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 648.784359][ T37] audit: type=1326 audit(648.728:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20053 comm="syz.0.6289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 648.784606][ T37] audit: type=1326 audit(648.728:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20053 comm="syz.0.6289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 648.785264][ T37] audit: type=1326 audit(648.728:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20053 comm="syz.0.6289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 648.792770][ T37] audit: type=1326 audit(648.738:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20053 comm="syz.0.6289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 648.793819][ T37] audit: type=1326 audit(648.738:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20053 comm="syz.0.6289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 648.794116][ T37] audit: type=1326 audit(648.738:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20053 comm="syz.0.6289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 648.799958][ T37] audit: type=1326 audit(648.738:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20053 comm="syz.0.6289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 649.480927][T20074] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6298'. [ 650.320957][T20118] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6318'. [ 650.903198][T20152] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6335'. [ 650.965432][ T10] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 651.001713][T20156] overlayfs: failed to clone upperpath [ 651.117410][ T10] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 651.117437][ T10] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 651.117635][ T10] usb 4-1: config 1 interface 0 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 651.117667][ T10] usb 4-1: config 1 interface 0 has no altsetting 0 [ 651.121128][ T10] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 651.121160][ T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 651.121178][ T10] usb 4-1: Product: syz [ 651.121193][ T10] usb 4-1: Manufacturer: syz [ 651.121207][ T10] usb 4-1: SerialNumber: syz [ 651.696534][T20142] netlink: 52 bytes leftover after parsing attributes in process `syz.3.6331'. [ 651.940872][ T10] usb 4-1: USB disconnect, device number 13 [ 652.358860][T20211] 9pnet_fd: Insufficient options for proto=fd [ 652.876163][T20238] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6375'. [ 654.475850][T20282] netlink: 44 bytes leftover after parsing attributes in process `syz.3.6393'. [ 654.475869][T20282] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6393'. [ 654.475877][T20282] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6393'. [ 655.716884][T20301] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6402'. [ 658.449368][T20346] netlink: 'syz.0.6417': attribute type 15 has an invalid length. [ 659.159999][T20344] overlayfs: missing 'lowerdir' [ 659.883884][T20364] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6429'. [ 660.025291][T20371] netlink: 104 bytes leftover after parsing attributes in process `syz.1.6432'. [ 660.994589][T20404] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6448'. [ 661.212191][ T37] kauditd_printk_skb: 27 callbacks suppressed [ 661.212210][ T37] audit: type=1326 audit(661.179:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20409 comm="syz.0.6450" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x0 [ 661.833677][T20424] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6457'. [ 663.483217][ T37] audit: type=1326 audit(663.441:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20502 comm="syz.4.6495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f5915f6c9 code=0x7ffc0000 [ 663.483411][ T37] audit: type=1326 audit(663.441:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20502 comm="syz.4.6495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f5915f6c9 code=0x7ffc0000 [ 663.487792][ T37] audit: type=1326 audit(663.451:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20502 comm="syz.4.6495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f1f5915f6c9 code=0x7ffc0000 [ 663.494690][ T37] audit: type=1326 audit(663.451:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20502 comm="syz.4.6495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f5915f6c9 code=0x7ffc0000 [ 663.496682][ T37] audit: type=1326 audit(663.451:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20502 comm="syz.4.6495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f5915f6c9 code=0x7ffc0000 [ 663.498011][ T37] audit: type=1326 audit(663.461:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20502 comm="syz.4.6495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1f5915f6c9 code=0x7ffc0000 [ 663.501737][ T37] audit: type=1326 audit(663.461:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20502 comm="syz.4.6495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f5915f6c9 code=0x7ffc0000 [ 663.501793][ T37] audit: type=1326 audit(663.461:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20502 comm="syz.4.6495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f5915f6c9 code=0x7ffc0000 [ 663.501836][ T37] audit: type=1326 audit(663.461:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20502 comm="syz.4.6495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1f5915f6c9 code=0x7ffc0000 [ 664.411785][T20536] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6510'. [ 665.116611][T20566] trusted_key: encrypted_key: insufficient parameters specified [ 665.477822][T20584] gretap0: left promiscuous mode [ 666.544907][ C1] vkms_vblank_simulate: vblank timer overrun [ 667.070582][ C1] vkms_vblank_simulate: vblank timer overrun [ 667.224438][ C1] vkms_vblank_simulate: vblank timer overrun [ 667.494097][T20647] trusted_key: encrypted_key: insufficient parameters specified [ 671.776896][T20724] overlayfs: failed to clone upperpath [ 672.017533][T20736] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6599'. [ 673.084979][ T8254] Bluetooth: hci2: ACL packet for unknown connection handle 200 [ 674.563607][T20830] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6652'. [ 674.667693][ T37] kauditd_printk_skb: 10 callbacks suppressed [ 674.667712][ T37] audit: type=1326 audit(674.639:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20834 comm="syz.0.6644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 674.668048][ T37] audit: type=1326 audit(674.639:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20834 comm="syz.0.6644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 674.668516][ T37] audit: type=1326 audit(674.639:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20834 comm="syz.0.6644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 674.689198][ T37] audit: type=1326 audit(674.669:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20834 comm="syz.0.6644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 674.701642][ T37] audit: type=1326 audit(674.679:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20834 comm="syz.0.6644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 674.708062][ T37] audit: type=1326 audit(674.679:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20834 comm="syz.0.6644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 674.708121][ T37] audit: type=1326 audit(674.679:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20834 comm="syz.0.6644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 674.708163][ T37] audit: type=1326 audit(674.679:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20834 comm="syz.0.6644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 674.708206][ T37] audit: type=1326 audit(674.679:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20834 comm="syz.0.6644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 674.712686][ T37] audit: type=1326 audit(674.689:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20834 comm="syz.0.6644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 676.139317][T20892] random: crng reseeded on system resumption [ 677.611158][T20908] netlink: 104 bytes leftover after parsing attributes in process `syz.3.6680'. [ 677.922861][T20921] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6684'. [ 677.922891][T20921] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6684'. [ 678.171642][T20935] netlink: 80 bytes leftover after parsing attributes in process `syz.1.6700'. [ 681.375325][T20966] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6701'. [ 681.375359][T20966] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6701'. [ 681.677057][T20972] netlink: 'syz.1.6705': attribute type 21 has an invalid length. [ 682.096378][ T31] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 682.300974][ T31] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 682.301002][ T31] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 682.301025][ T31] usb 4-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.00 [ 682.301093][ T31] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 682.305323][ T31] usb 4-1: config 0 descriptor?? [ 682.727404][ T31] usbhid 4-1:0.0: can't add hid device: -71 [ 682.727523][ T31] usbhid 4-1:0.0: probe with driver usbhid failed with error -71 [ 682.740026][ T31] usb 4-1: USB disconnect, device number 14 [ 683.059866][ T37] kauditd_printk_skb: 4 callbacks suppressed [ 683.059885][ T37] audit: type=1326 audit(683.032:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21003 comm="syz.0.6717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 683.061248][ T37] audit: type=1326 audit(683.032:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21003 comm="syz.0.6717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 683.061783][ T37] audit: type=1326 audit(683.032:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21003 comm="syz.0.6717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 683.061929][ T37] audit: type=1326 audit(683.032:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21003 comm="syz.0.6717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 683.062096][ T37] audit: type=1326 audit(683.032:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21003 comm="syz.0.6717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 683.860590][T21016] netlink: 72 bytes leftover after parsing attributes in process `syz.2.6721'. [ 684.374192][T21027] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6725'. [ 684.374228][T21027] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6725'. [ 684.374242][T21027] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6725'. [ 685.718575][T21046] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6735'. [ 685.718903][T21046] ip6_vti0: entered promiscuous mode [ 685.718925][T21046] ip6_vti0: entered allmulticast mode [ 685.874211][ T1320] ieee802154 phy0 wpan0: encryption failed: -22 [ 686.600707][T21082] 9pnet_fd: Insufficient options for proto=fd [ 687.572699][T21128] tmpfs: Unknown parameter 'no' [ 688.307312][T21154] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6780'. [ 689.814657][ T5986] usb 4-1: new full-speed USB device number 15 using dummy_hcd [ 689.989327][ T5986] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 689.989390][ T5986] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 200, setting to 64 [ 689.989418][ T5986] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 689.989461][ T5986] usb 4-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 689.989485][ T5986] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 690.058383][ T5986] usb 4-1: config 0 descriptor?? [ 690.059750][T21180] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 690.200946][T21200] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6802'. [ 690.289307][ T31] usb 4-1: USB disconnect, device number 15 [ 691.705727][T21229] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6824'. [ 694.542822][T21283] binder: Unknown parameter 's' [ 695.389261][T21319] netlink: 'syz.1.6854': attribute type 4 has an invalid length. [ 696.094753][T21315] fuse: Bad value for 'user_id' [ 696.094774][T21315] fuse: Bad value for 'user_id' [ 696.780642][T21358] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6871'. [ 696.781097][T21358] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6871'. [ 697.275925][T21380] batadv_slave_1: entered promiscuous mode [ 697.277498][T21379] batadv_slave_1: left promiscuous mode [ 697.425946][T21386] 9pnet_fd: Insufficient options for proto=fd [ 697.441044][T21387] netlink: 'syz.2.6882': attribute type 63 has an invalid length. [ 697.441067][T21387] netlink: 5 bytes leftover after parsing attributes in process `syz.2.6882'. [ 697.441096][T21387] gretap0: entered allmulticast mode [ 697.441718][T21387] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 697.952965][T21404] netlink: 536 bytes leftover after parsing attributes in process `syz.4.6891'. [ 697.952995][T21404] netlink: 52 bytes leftover after parsing attributes in process `syz.4.6891'. [ 698.583561][T21421] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6897'. [ 699.016771][T21445] netlink: 'syz.3.6907': attribute type 4 has an invalid length. [ 699.197108][T21455] netlink: 24 bytes leftover after parsing attributes in process `syz.4.6911'. [ 699.321529][T21460] trusted_key: encrypted_key: insufficient parameters specified [ 700.579149][T21504] overlayfs: missing 'lowerdir' [ 702.248289][T21533] overlayfs: missing 'workdir' [ 703.960820][T21585] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6969'. [ 703.960845][T21585] netlink: 36 bytes leftover after parsing attributes in process `syz.3.6969'. [ 706.269465][T21675] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7012'. [ 706.628333][T21683] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 706.628368][T21683] overlayfs: missing 'lowerdir' [ 707.259990][T21697] netlink: 44 bytes leftover after parsing attributes in process `syz.1.7022'. [ 707.260021][T21697] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7022'. [ 707.260035][T21697] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7022'. [ 707.404062][T21702] netlink: 20 bytes leftover after parsing attributes in process `syz.2.7025'. [ 707.884847][T21724] netlink: 'syz.2.7034': attribute type 4 has an invalid length. [ 708.039493][T21732] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7035'. [ 710.332037][T21787] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7062'. [ 711.344434][ T37] audit: type=1804 audit(711.295:405): pid=21812 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.3.7073" name="bus" dev="ramfs" ino=74619 res=1 errno=0 [ 712.371893][T21853] netlink: 84 bytes leftover after parsing attributes in process `syz.4.7091'. [ 716.371319][T21945] binder: 21944:21945 ioctl c018620c 200000000180 returned -22 [ 716.886499][T21968] netlink: 'syz.2.7143': attribute type 1 has an invalid length. [ 716.886524][T21968] netlink: 'syz.2.7143': attribute type 2 has an invalid length. [ 716.886538][T21968] netlink: 20 bytes leftover after parsing attributes in process `syz.2.7143'. [ 717.833209][T21982] tmpfs: Bad value for 'huge' [ 718.230945][ T37] audit: type=1326 audit(718.206:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21995 comm="syz.0.7155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 718.253954][ T37] audit: type=1326 audit(718.206:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21995 comm="syz.0.7155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 718.253988][ T37] audit: type=1326 audit(718.206:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21995 comm="syz.0.7155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=314 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 718.254016][ T37] audit: type=1326 audit(718.206:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21995 comm="syz.0.7155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 718.254039][ T37] audit: type=1326 audit(718.206:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21995 comm="syz.0.7155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 718.254064][ T37] audit: type=1326 audit(718.206:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21995 comm="syz.0.7155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f141a2cdf10 code=0x7ffc0000 [ 718.254087][ T37] audit: type=1326 audit(718.206:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21995 comm="syz.0.7155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 718.254111][ T37] audit: type=1326 audit(718.216:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21995 comm="syz.0.7155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 718.254134][ T37] audit: type=1326 audit(718.216:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21995 comm="syz.0.7155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 718.254156][ T37] audit: type=1326 audit(718.216:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21995 comm="syz.0.7155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141a2cf6c9 code=0x7ffc0000 [ 720.940169][T22070] 9p: Unknown access argument 18446744073709551615: -34 [ 722.786505][T22171] netlink: 388 bytes leftover after parsing attributes in process `syz.4.7233'. [ 723.563228][T22202] overlayfs: missing 'lowerdir' [ 725.718985][T22246] overlayfs: missing 'lowerdir' [ 726.443151][ T37] kauditd_printk_skb: 10 callbacks suppressed [ 726.443172][ T37] audit: type=1326 audit(726.416:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22267 comm="syz.4.7277" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1f5915f6c9 code=0x0 [ 726.561415][T22272] ptrace attach of "./syz-executor exec"[22273] was attempted by "./syz-executor exec"[22272] [ 726.603757][T22275] IPv6: NLM_F_CREATE should be specified when creating new route [ 728.460822][T22330] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7304'. [ 728.460856][T22330] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7304'. [ 728.460872][T22330] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7304'. [ 728.699412][T22337] tc_dump_action: action bad kind [ 728.974186][T22349] overlayfs: missing 'lowerdir' [ 731.309887][T22400] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7332'. [ 734.096103][T22451] binder: 22450:22451 ioctl c0306201 200000000640 returned -22 [ 736.723919][T22492] netlink: 32 bytes leftover after parsing attributes in process `syz.1.7373'. [ 737.286736][T22516] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 737.633715][T22486] fuse: Bad value for 'fd' [ 739.166364][T22568] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it. [ 739.166383][T22568] overlayfs: missing 'lowerdir' [ 741.242827][ T6896] team0: Port device netdevsim0 removed [ 742.039703][T22637] input: syz1 as /devices/virtual/input/input16 [ 742.049176][ T6896] erspan0: left allmulticast mode [ 742.049205][ T6896] erspan0: left promiscuous mode [ 742.071826][ T6896] bridge0: port 3(erspan0) entered disabled state [ 742.153633][ T6896] bridge_slave_1: left promiscuous mode [ 742.154137][ T6896] bridge0: port 2(bridge_slave_1) entered disabled state [ 742.284141][ T6896] bridge_slave_0: left allmulticast mode [ 742.284173][ T6896] bridge_slave_0: left promiscuous mode [ 742.284420][ T6896] bridge0: port 1(bridge_slave_0) entered disabled state [ 742.682802][T18420] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 742.720228][T18420] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 742.746769][T18420] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 742.748002][T18420] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 742.749663][T18420] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 743.765524][T22668] netlink: 80 bytes leftover after parsing attributes in process `syz.4.7448'. [ 745.141982][T18420] Bluetooth: hci0: command tx timeout [ 745.347370][ T10] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 745.511974][ T10] usb 5-1: Using ep0 maxpacket: 8 [ 745.520867][ T10] usb 5-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea [ 745.520886][ T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 745.520897][ T10] usb 5-1: Product: syz [ 745.520904][ T10] usb 5-1: Manufacturer: syz [ 745.520911][ T10] usb 5-1: SerialNumber: syz [ 745.562397][ T10] usb 5-1: config 0 descriptor?? [ 745.780494][ T10] usb 5-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state [ 746.983571][ T6896] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 747.004622][T22749] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7478'. [ 747.062655][ T6896] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 747.102987][ T6896] bond0 (unregistering): Released all slaves [ 747.142872][ T6896] bond1 (unregistering): Released all slaves [ 747.221942][T18420] Bluetooth: hci0: command tx timeout [ 747.290686][ T10] dvb_usb_rtl28xxu 5-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71 [ 747.311151][ T1320] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.351629][ T10] usb 5-1: USB disconnect, device number 11 [ 747.974037][T22764] netlink: 44 bytes leftover after parsing attributes in process `syz.4.7485'. [ 747.974066][T22764] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7485'. [ 748.152515][ T6896] bond2 (unregistering): (slave dummy0): Releasing active interface [ 748.153149][ T6896] dummy0: left promiscuous mode [ 748.153678][ T6896] dummy0: left allmulticast mode [ 748.198001][ T6896] bond2 (unregistering): Released all slaves [ 748.243791][T22770] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7) [ 748.243810][T22770] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 748.243903][T22770] vhci_hcd vhci_hcd.0: Device attached [ 748.246038][T22771] vhci_hcd: connection closed [ 748.281121][ T151] vhci_hcd: stop threads [ 748.281145][ T151] vhci_hcd: release socket [ 748.281178][ T151] vhci_hcd: disconnect device [ 748.504688][ T6896] tipc: Left network mode [ 749.301963][T18420] Bluetooth: hci0: command tx timeout [ 750.229416][ T31] kernel write not supported for file [eventfd] (pid: 31 comm: kworker/1:0) [ 750.294838][T22644] chnl_net:caif_netlink_parms(): no params data found [ 750.594774][T22847] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7513'. [ 751.381885][T18420] Bluetooth: hci0: command tx timeout [ 751.422578][ T6896] hsr_slave_0: left promiscuous mode [ 751.428892][T22853] overlayfs: failed to clone upperpath [ 751.463119][ T6896] hsr_slave_1: left promiscuous mode [ 751.464356][ T6896] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 751.513818][ T6896] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 754.067197][T22898] netlink: 165 bytes leftover after parsing attributes in process `syz.2.7538'. [ 754.592696][ T6896] team0 (unregistering): Port device team_slave_1 removed [ 754.892612][ T6896] team0 (unregistering): Port device team_slave_0 removed [ 755.516171][T22913] netlink: 'syz.2.7544': attribute type 4 has an invalid length. [ 755.516192][T22913] netlink: 17 bytes leftover after parsing attributes in process `syz.2.7544'. [ 757.762562][T22857] veth3: entered promiscuous mode [ 758.248104][T22930] tipc: Enabling of bearer rejected, failed to enable media [ 758.454378][T22644] bridge0: port 1(bridge_slave_0) entered blocking state [ 758.454554][T22644] bridge0: port 1(bridge_slave_0) entered disabled state [ 758.454787][T22644] bridge_slave_0: entered allmulticast mode [ 758.460284][T22644] bridge_slave_0: entered promiscuous mode [ 758.494816][T22644] bridge0: port 2(bridge_slave_1) entered blocking state [ 758.495025][T22644] bridge0: port 2(bridge_slave_1) entered disabled state [ 758.495304][T22644] bridge_slave_1: entered allmulticast mode [ 758.497958][T22644] bridge_slave_1: entered promiscuous mode [ 758.751449][T22950] netlink: 20 bytes leftover after parsing attributes in process `syz.0.7559'. [ 759.053447][T22958] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7558'. [ 759.053488][T22958] netlink: 20 bytes leftover after parsing attributes in process `syz.2.7558'. [ 760.162213][T22644] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 760.462964][T22644] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 761.593377][T22644] team0: Port device team_slave_0 added [ 761.672836][T22644] team0: Port device team_slave_1 added [ 762.089916][T22644] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 762.089935][T22644] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 762.089960][T22644] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 762.130685][T22644] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 762.130703][T22644] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 762.130730][T22644] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 762.220426][ T6896] IPVS: stop unused estimator thread 0... [ 762.494660][T23018] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7580'. [ 762.752212][T22644] hsr_slave_0: entered promiscuous mode [ 762.753716][T22644] hsr_slave_1: entered promiscuous mode [ 764.521112][T23073] netlink: 188 bytes leftover after parsing attributes in process `syz.4.7601'. [ 764.600793][T22644] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 764.669789][T22644] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 764.756304][T22644] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 764.852207][T22644] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 766.247352][T22644] 8021q: adding VLAN 0 to HW filter on device bond0 [ 766.323774][T23101] netlink: 44 bytes leftover after parsing attributes in process `syz.4.7608'. [ 766.331175][T22644] 8021q: adding VLAN 0 to HW filter on device team0 [ 766.375021][ T151] bridge0: port 1(bridge_slave_0) entered blocking state [ 766.376632][ T151] bridge0: port 1(bridge_slave_0) entered forwarding state [ 766.453069][ T151] bridge0: port 2(bridge_slave_1) entered blocking state [ 766.453209][ T151] bridge0: port 2(bridge_slave_1) entered forwarding state [ 767.373955][T22644] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 767.844464][T23153] bridge0: port 3(erspan0) entered blocking state [ 767.845209][T23153] bridge0: port 3(erspan0) entered disabled state [ 767.845452][T23153] erspan0: entered allmulticast mode [ 768.223949][T22644] veth0_vlan: entered promiscuous mode [ 768.253191][T22644] veth1_vlan: entered promiscuous mode [ 768.333899][T22644] veth0_macvtap: entered promiscuous mode [ 768.377158][T22644] veth1_macvtap: entered promiscuous mode [ 768.469939][T22644] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 768.518480][T22644] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 768.563951][ T3587] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 768.564315][ T3587] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 768.564562][ T3587] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 768.564601][ T3587] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 768.966449][T23190] overlayfs: failed to clone upperpath [ 768.979564][ T37] audit: type=1326 audit(769.955:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23185 comm="syz.1.7632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22297af6c9 code=0x7ffc0000 [ 768.982056][ T37] audit: type=1326 audit(769.955:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23185 comm="syz.1.7632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f22297af6c9 code=0x7ffc0000 [ 769.103255][ T37] audit: type=1326 audit(770.085:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23185 comm="syz.1.7632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22297af6c9 code=0x7ffc0000 [ 769.103307][ T37] audit: type=1326 audit(770.085:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23193 comm="syz.1.7632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f22297e1f85 code=0x7ffc0000 [ 769.103349][ T37] audit: type=1326 audit(770.085:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23185 comm="syz.1.7632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22297af6c9 code=0x7ffc0000 [ 769.254601][ T37] audit: type=1326 audit(770.235:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23193 comm="syz.1.7632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f22297af6c9 code=0x7ffc0000 [ 769.355499][ T151] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 769.355520][ T151] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 769.603208][ T6896] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 769.603230][ T6896] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 769.726629][T23205] netlink: 188 bytes leftover after parsing attributes in process `syz.2.7637'. [ 770.044083][T23217] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7640'. [ 770.044118][T23217] netlink: 20 bytes leftover after parsing attributes in process `syz.0.7640'. [ 770.390444][T23230] ip6gre1: entered promiscuous mode [ 770.390471][T23230] ip6gre1: entered allmulticast mode [ 771.520724][ T3587] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 771.521052][ T3587] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 771.544643][ T44] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 771.898329][ T5853] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 771.898601][ T5853] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 774.704776][T23332] overlayfs: failed to clone upperpath [ 775.792074][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 778.094649][T23407] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci0/hci0:200/input17 [ 779.098325][T23439] netlink: 'syz.2.7734': attribute type 1 has an invalid length. [ 779.098346][T23439] netlink: 'syz.2.7734': attribute type 2 has an invalid length. [ 779.414595][T23445] netlink: 44 bytes leftover after parsing attributes in process `syz.0.7737'. [ 779.414621][T23445] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7737'. [ 782.709345][T23566] overlayfs: failed to clone upperpath [ 784.421947][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 785.572008][T23658] netlink: 536 bytes leftover after parsing attributes in process `syz.1.7818'. [ 785.572038][T23658] netlink: 52 bytes leftover after parsing attributes in process `syz.1.7818'. [ 786.031150][T23677] input: syz0 as /devices/virtual/input/input18 [ 786.043789][T23678] overlayfs: failed to clone upperpath [ 786.938044][T23712] netlink: 'syz.0.7835': attribute type 3 has an invalid length. [ 786.967581][T23712] netlink: 'syz.0.7835': attribute type 3 has an invalid length. [ 790.528726][T23774] gretap0: left allmulticast mode [ 790.531443][T23774] ip_vti0: left allmulticast mode [ 794.659615][T23863] 9p: Unknown Cache mode or invalid value m [ 795.013415][ T37] audit: type=1326 audit(795.995:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23860 comm="syz.2.7897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed3fecf6c9 code=0x7ffc0000 [ 795.013478][ T37] audit: type=1326 audit(795.995:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23860 comm="syz.2.7897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed3fecf6c9 code=0x7ffc0000 [ 797.682425][T23932] overlayfs: missing 'lowerdir' [ 798.825411][T23952] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7934'. [ 798.914742][T23946] Process accounting resumed [ 800.421966][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 806.740596][T24080] tipc: Started in network mode [ 806.740630][T24080] tipc: Node identity ac14142f, cluster identity 4711 [ 806.741046][T24080] tipc: New replicast peer: 0.0.0.0 [ 806.770403][T24080] tipc: Enabled bearer , priority 10 [ 807.751921][ T44] tipc: Node number set to 2886997039 [ 808.748041][ T1320] ieee802154 phy0 wpan0: encryption failed: -22 [ 808.803332][T24134] overlayfs: missing 'lowerdir' [ 809.457172][T24140] IPVS: persistence engine module ip_vs_pe_ not found [ 812.864292][T24230] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8054'. [ 812.865037][T24230] openvswitch: netlink: Missing key (keys=40, expected=80) [ 813.524580][T24249] netlink: 188 bytes leftover after parsing attributes in process `syz.4.8063'. [ 813.882810][T24259] overlayfs: missing 'lowerdir' [ 816.477861][T24344] netlink: 'syz.1.8107': attribute type 4 has an invalid length. [ 816.913382][ T44] kernel read not supported for file /newroot/1650 (pid: 44 comm: kworker/1:1) [ 818.994238][T24398] 9pnet: Could not find request transport: fd.rfdno=79M0A[@}- [ 818.994238][T24398] [ 820.063759][T24432] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8143'. [ 821.067384][T24470] netlink: 16 bytes leftover after parsing attributes in process `syz.5.8161'. [ 822.601161][T24528] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8188'. [ 831.388315][T24681] Bluetooth: MGMT ver 1.23 [ 831.855725][T24699] 9pnet_fd: Insufficient options for proto=fd [ 831.888976][T24702] netlink: 84 bytes leftover after parsing attributes in process `syz.1.8263'. [ 832.291045][T24721] netlink: 'syz.1.8271': attribute type 11 has an invalid length. [ 832.291072][T24721] netlink: 32 bytes leftover after parsing attributes in process `syz.1.8271'. [ 832.662182][T24734] netlink: 9 bytes leftover after parsing attributes in process `syz.1.8277'. [ 832.788416][T24739] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 832.788437][T24739] overlayfs: missing 'lowerdir' [ 833.029303][T24747] overlayfs: failed to resolve './file1/file0': -2 [ 833.454016][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 836.064327][T24768] trusted_key: encrypted_key: master key parameter 'd' is invalid [ 840.633297][T24883] overlayfs: failed to resolve './file0/file0': -2 [ 842.936589][T24923] netlink: 44 bytes leftover after parsing attributes in process `syz.1.8356'. [ 843.761334][T24941] Device name cannot be null; rc = [-22] [ 844.803279][T24959] netlink: 80 bytes leftover after parsing attributes in process `syz.5.8370'. [ 847.215582][T25004] netlink: 188 bytes leftover after parsing attributes in process `syz.5.8390'. [ 848.941937][ T9] usb 5-1: new full-speed USB device number 12 using dummy_hcd [ 849.148390][ T9] usb 5-1: config 0 has an invalid interface number: 46 but max is 0 [ 849.148429][ T9] usb 5-1: config 0 has no interface number 0 [ 849.156273][ T9] usb 5-1: New USB device found, idVendor=045a, idProduct=5210, bcdDevice= 1.01 [ 849.156303][ T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 849.156322][ T9] usb 5-1: Product: syz [ 849.156336][ T9] usb 5-1: Manufacturer: syz [ 849.156349][ T9] usb 5-1: SerialNumber: syz [ 849.176567][ T9] usb 5-1: config 0 descriptor?? [ 849.200644][ T9] ums-karma 5-1:0.46: USB Mass Storage device detected [ 850.808640][ T9] usb 5-1: USB disconnect, device number 12 [ 851.054076][T25076] netlink: 96 bytes leftover after parsing attributes in process `syz.4.8410'. [ 852.506329][T25107] netlink: 4 bytes leftover after parsing attributes in process `syz.5.8423'. [ 852.777509][T25122] netlink: 104 bytes leftover after parsing attributes in process `syz.1.8428'. [ 853.058369][T25132] netlink: 'syz.2.8435': attribute type 7 has an invalid length. [ 853.058391][T25132] netlink: 36 bytes leftover after parsing attributes in process `syz.2.8435'. [ 854.533467][ T37] audit: type=1326 audit(855.515:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25140 comm="syz.2.8438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed3fecf6c9 code=0x7ffc0000 [ 854.533527][ T37] audit: type=1326 audit(855.515:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25140 comm="syz.2.8438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed3fecf6c9 code=0x7ffc0000 [ 854.537805][ T37] audit: type=1326 audit(855.515:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25140 comm="syz.2.8438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed3fecf6c9 code=0x7ffc0000 [ 854.537859][ T37] audit: type=1326 audit(855.515:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25140 comm="syz.2.8438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed3fecf6c9 code=0x7ffc0000 [ 854.540525][ T37] audit: type=1326 audit(855.515:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25140 comm="syz.2.8438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed3fecf6c9 code=0x7ffc0000 [ 854.540586][ T37] audit: type=1326 audit(855.515:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25140 comm="syz.2.8438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed3fecf6c9 code=0x7ffc0000 [ 854.694674][ T37] audit: type=1326 audit(855.675:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25140 comm="syz.2.8438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed3fecf6c9 code=0x7ffc0000 [ 854.695252][ T37] audit: type=1326 audit(855.675:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25140 comm="syz.2.8438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed3fecf6c9 code=0x7ffc0000 [ 854.698488][ T37] audit: type=1326 audit(855.675:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25140 comm="syz.2.8438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fed3fecf6c9 code=0x7ffc0000 [ 854.706297][ T37] audit: type=1326 audit(855.685:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25140 comm="syz.2.8438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed3fecf6c9 code=0x7ffc0000 [ 854.755631][T25148] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8440'. [ 855.146777][T25161] batadv_slave_1: entered promiscuous mode [ 855.148319][T25159] batadv_slave_1: left promiscuous mode [ 855.262567][T25172] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8451'. [ 855.262601][T25172] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8451'. [ 855.262616][T25172] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8451'. [ 857.579576][T25217] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8469'. [ 857.579603][T25217] openvswitch: netlink: Message has 8 unknown bytes. [ 859.129037][T25268] netlink: 1004 bytes leftover after parsing attributes in process `syz.5.8493'. [ 859.129082][T25268] ip6_vti0: entered allmulticast mode [ 859.216493][T25270] overlayfs: failed to clone upperpath [ 862.890427][ T37] kauditd_printk_skb: 1 callbacks suppressed [ 862.890446][ T37] audit: type=1326 audit(863.865:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25351 comm="syz.5.8528" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ffbdd19f6c9 code=0x0 [ 863.145453][T25364] netlink: 16 bytes leftover after parsing attributes in process `syz.4.8531'. [ 863.145482][T25364] tipc: Enabling of bearer rejected, already enabled [ 863.916445][T25391] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 863.916512][T25391] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 865.999333][T25465] 9p: Unknown access argument a: -22 [ 866.052778][T25463] 9pnet: Could not find request transport: f [ 866.662920][T25484] bridge0: port 2(bridge_slave_1) entered disabled state [ 870.187728][ T1320] ieee802154 phy0 wpan0: encryption failed: -22 [ 870.217128][T25543] netlink: 20 bytes leftover after parsing attributes in process `syz.5.8611'. [ 870.739708][T25559] bridge0: entered allmulticast mode [ 870.740457][T25568] netlink: 4 bytes leftover after parsing attributes in process `syz.5.8617'. [ 870.740548][T25568] bridge_slave_1: left promiscuous mode [ 870.740835][T25568] bridge0: port 2(bridge_slave_1) entered disabled state [ 870.920420][T25568] bridge_slave_0: left allmulticast mode [ 870.920450][T25568] bridge_slave_0: left promiscuous mode [ 870.920718][T25568] bridge0: port 1(bridge_slave_0) entered disabled state [ 871.233205][T25568] bridge0 (unregistering): left allmulticast mode [ 871.961080][T25616] loop2: detected capacity change from 0 to 7 [ 871.965259][T25616] Dev loop2: unable to read RDB block 7 [ 871.965310][T25616] loop2: unable to read partition table [ 871.965543][T25616] loop2: partition table beyond EOD, truncated [ 871.965563][T25616] loop_reread_partitions: partition scan of loop2 (被x ) failed (rc=-5) [ 874.275927][T25684] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8675'. [ 877.036565][T25708] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8684'. [ 877.533050][T25724] netlink: 44 bytes leftover after parsing attributes in process `syz.2.8692'. [ 877.533080][T25724] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8692'. [ 877.533097][T25724] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8692'. [ 878.242399][T25728] binder: 25727:25728 ioctl c0306201 0 returned -14 [ 878.682246][T25735] netlink: 25 bytes leftover after parsing attributes in process `syz.4.8695'. [ 879.006170][T25743] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8700'. [ 879.335968][T25757] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8714'. [ 879.362732][T25755] netlink: 104 bytes leftover after parsing attributes in process `syz.5.8706'. [ 880.245097][T25785] netlink: 60 bytes leftover after parsing attributes in process `syz.5.8719'. [ 883.332009][ T9] usb 6-1: new full-speed USB device number 2 using dummy_hcd [ 883.503202][ T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 883.503230][ T9] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 883.514169][ T9] usb 6-1: New USB device found, idVendor=06cd, idProduct=0121, bcdDevice=dd.3d [ 883.514197][ T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 883.514215][ T9] usb 6-1: Product: syz [ 883.514227][ T9] usb 6-1: Manufacturer: syz [ 883.514239][ T9] usb 6-1: SerialNumber: syz [ 883.571386][ T9] usb 6-1: config 0 descriptor?? [ 883.995831][T24549] usb 6-1: USB disconnect, device number 2 [ 884.803880][T25889] overlayfs: failed to resolve './file0': -2 [ 885.563354][T25914] overlayfs: missing 'lowerdir' [ 887.882999][T25945] netlink: 44 bytes leftover after parsing attributes in process `syz.4.8788'. [ 887.883029][T25945] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8788'. [ 887.883043][T25945] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8788'. [ 888.221161][ T37] audit: type=1107 audit(889.155:447): pid=25953 uid=0 auid=4294967295 ses=4294967295 subj=_ msg='' [ 891.472047][ T9] usb 6-1: new full-speed USB device number 3 using dummy_hcd [ 891.633841][ T9] usb 6-1: unable to get BOS descriptor or descriptor too short [ 891.634607][ T9] usb 6-1: not running at top speed; connect to a high speed hub [ 891.636093][ T9] usb 6-1: config 0 has no interfaces? [ 891.638867][ T9] usb 6-1: New USB device found, idVendor=077d, idProduct=627a, bcdDevice= 0.10 [ 891.638895][ T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 891.638914][ T9] usb 6-1: Product: syz [ 891.638975][ T9] usb 6-1: Manufacturer: syz [ 891.638987][ T9] usb 6-1: SerialNumber: syz [ 891.705108][ T9] usb 6-1: config 0 descriptor?? [ 891.913434][T26036] netlink: 'syz.0.8826': attribute type 3 has an invalid length. [ 891.940230][ T9] usb 6-1: USB disconnect, device number 3 [ 895.891659][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 898.181601][T26156] netlink: 32 bytes leftover after parsing attributes in process `syz.2.8874'. [ 898.642620][T26164] veth3: entered promiscuous mode [ 902.189439][T26228] trusted_key: syz.5.8904 sent an empty control message without MSG_MORE. [ 905.565705][T26304] 9pnet: Could not find request transport: 0xffffffffffffffff [ 907.804434][T26368] Device name cannot be null; rc = [-22] [ 908.164005][T26379] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8968'. [ 910.547165][T26460] netlink: 8 bytes leftover after parsing attributes in process `syz.5.9004'. [ 910.547288][T26460] netlink: 12 bytes leftover after parsing attributes in process `syz.5.9004'. [ 910.547316][T26460] netlink: 8 bytes leftover after parsing attributes in process `syz.5.9004'. [ 910.694866][T26460] netlink: 8 bytes leftover after parsing attributes in process `syz.5.9004'. [ 910.694892][T26460] netlink: 12 bytes leftover after parsing attributes in process `syz.5.9004'. [ 910.694918][T26460] netlink: 8 bytes leftover after parsing attributes in process `syz.5.9004'. [ 910.700136][ T3587] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 910.710559][ T3587] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 910.710609][ T3587] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 910.710644][ T3587] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 913.866138][T26528] netlink: 80 bytes leftover after parsing attributes in process `syz.1.9034'. [ 918.409324][T26591] netlink: 'syz.5.9052': attribute type 13 has an invalid length. [ 919.325889][T26625] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9074'. [ 920.252272][T26651] tmpfs: Bad value for 'huge' [ 923.245929][T26680] netlink: 32 bytes leftover after parsing attributes in process `syz.0.9092'. [ 923.493148][T26683] overlayfs: failed to clone upperpath [ 928.057249][T26773] netlink: 368 bytes leftover after parsing attributes in process `syz.4.9138'. [ 928.860724][T26805] 9pnet_fd: Insufficient options for proto=fd [ 931.632063][ T1320] ieee802154 phy0 wpan0: encryption failed: -22 [ 931.917976][T26872] 9pnet: Could not find request transport: 0xffffffffffffffff [ 933.945773][T26911] netlink: 32 bytes leftover after parsing attributes in process `syz.0.9201'. [ 934.158848][T26918] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9204'. [ 935.090480][T26954] netlink: 1004 bytes leftover after parsing attributes in process `syz.0.9221'. [ 936.983886][T26988] overlayfs: failed to clone upperpath [ 939.007284][T27027] bridge0: port 3(erspan0) entered blocking state [ 939.007452][T27027] bridge0: port 3(erspan0) entered forwarding state [ 939.053455][T27027] 8021q: adding VLAN 0 to HW filter on device bond0 [ 939.065072][T27027] 8021q: adding VLAN 0 to HW filter on device team0 [ 939.161935][T27027] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 939.571387][T27046] vlan1: entered promiscuous mode [ 939.571412][T27046] bridge0: entered promiscuous mode [ 939.695577][T27051] netlink: 44 bytes leftover after parsing attributes in process `syz.0.9262'. [ 940.265126][ T37] audit: type=1326 audit(941.235:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=27057 comm="syz.4.9267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f5915f6c9 code=0x7ffc0000 [ 940.265180][ T37] audit: type=1326 audit(941.235:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=27057 comm="syz.4.9267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f5915f6c9 code=0x7ffc0000 [ 940.265226][ T37] audit: type=1326 audit(941.245:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=27057 comm="syz.4.9267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1f5915f6c9 code=0x7ffc0000 [ 940.265270][ T37] audit: type=1326 audit(941.245:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=27057 comm="syz.4.9267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f5915f6c9 code=0x7ffc0000 [ 940.265314][ T37] audit: type=1326 audit(941.245:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=27057 comm="syz.4.9267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f5915f6c9 code=0x7ffc0000 [ 940.265357][ T37] audit: type=1326 audit(941.245:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=27057 comm="syz.4.9267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1f5915f6c9 code=0x7ffc0000 [ 940.269018][ T37] audit: type=1326 audit(941.245:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=27057 comm="syz.4.9267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f5915f6c9 code=0x7ffc0000 [ 940.269081][ T37] audit: type=1326 audit(941.245:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=27057 comm="syz.4.9267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1f5915f6c9 code=0x7ffc0000 [ 940.269126][ T37] audit: type=1326 audit(941.245:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=27057 comm="syz.4.9267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f5915f6c9 code=0x7ffc0000 [ 940.269169][ T37] audit: type=1326 audit(941.245:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=27057 comm="syz.4.9267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1f5915f6c9 code=0x7ffc0000 [ 942.416379][T27104] netlink: 44 bytes leftover after parsing attributes in process `syz.1.9286'. [ 942.416407][T27104] netlink: 32 bytes leftover after parsing attributes in process `syz.1.9286'. [ 944.916643][T27186] 9pnet_fd: Insufficient options for proto=fd [ 946.140250][T27233] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9343'. [ 947.601461][T27271] fuse: Bad value for 'user_id' [ 947.601481][T27271] fuse: Bad value for 'user_id' [ 953.216353][T27406] bridge0: port 3(erspan0) entered blocking state [ 953.218993][T27406] bridge0: port 3(erspan0) entered disabled state [ 953.219211][T27406] erspan0: entered allmulticast mode [ 953.301532][T27406] erspan0: entered promiscuous mode [ 958.056078][T27495] 9p: Unknown Cache mode or invalid value m [ 964.532425][T27604] netlink: 8 bytes leftover after parsing attributes in process `syz.5.9500'. [ 964.532452][T27604] netlink: 8 bytes leftover after parsing attributes in process `syz.5.9500'. [ 964.660156][ C1] ------------[ cut here ]------------ [ 964.660173][ C1] refcount_t: underflow; use-after-free. [ 964.660683][ C1] WARNING: CPU: 1 PID: 29 at lib/refcount.c:28 refcount_warn_saturate+0x11a/0x1d0 [ 964.660727][ C1] Modules linked in: [ 964.660757][ C1] CPU: 1 UID: 0 PID: 29 Comm: ktimers/1 Not tainted syzkaller #0 PREEMPT_{RT,(full)} [ 964.660781][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 964.660799][ C1] RIP: 0010:refcount_warn_saturate+0x11a/0x1d0 [ 964.660824][ C1] Code: c0 2e 3d 8b e8 a7 9d 09 fd 90 0f 0b 90 90 eb d7 e8 6b 56 45 fd c6 05 30 22 47 0a 01 90 48 c7 c7 20 2f 3d 8b e8 87 9d 09 fd 90 <0f> 0b 90 90 eb b7 e8 4b 56 45 fd c6 05 0d 22 47 0a 01 90 48 c7 c7 [ 964.660844][ C1] RSP: 0000:ffffc90000a3f7a8 EFLAGS: 00010246 [ 964.660863][ C1] RAX: b3930126bc6a1200 RBX: 0000000000000003 RCX: ffff88801be99e00 [ 964.660880][ C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000100 [ 964.660892][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000100 [ 964.660906][ C1] R10: dffffc0000000000 R11: ffffed101712487b R12: ffffffff99096901 [ 964.660923][ C1] R13: ffff888050bae000 R14: ffff888050bae080 R15: ffff888050bae070 [ 964.660939][ C1] FS: 0000000000000000(0000) GS:ffff888126ef7000(0000) knlGS:0000000000000000 [ 964.660957][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 964.660972][ C1] CR2: 0000001b2f117ff8 CR3: 000000000d3a6000 CR4: 00000000003526f0 [ 964.660990][ C1] Call Trace: [ 964.661002][ C1] [ 964.661013][ C1] __inet_csk_reqsk_queue_drop+0x2c3/0x340 [ 964.661053][ C1] reqsk_timer_handler+0x80b/0xcd0 [ 964.661097][ C1] call_timer_fn+0x17e/0x5f0 [ 964.661126][ C1] ? __pfx_reqsk_timer_handler+0x10/0x10 [ 964.661152][ C1] ? call_timer_fn+0xbe/0x5f0 [ 964.661180][ C1] ? __pfx_call_timer_fn+0x10/0x10 [ 964.661219][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 964.661258][ C1] ? lockdep_hardirqs_on+0x9c/0x150 [ 964.661287][ C1] ? __pfx_reqsk_timer_handler+0x10/0x10 [ 964.661319][ C1] __run_timer_base+0x648/0x970 [ 964.661362][ C1] ? __pfx___run_timer_base+0x10/0x10 [ 964.661403][ C1] run_timer_softirq+0x67/0x180 [ 964.661430][ C1] handle_softirqs+0x22f/0x710 [ 964.661467][ C1] ? __pfx_handle_softirqs+0x10/0x10 [ 964.661503][ C1] run_ktimerd+0xcf/0x190 [ 964.661530][ C1] ? __pfx_run_ktimerd+0x10/0x10 [ 964.661555][ C1] ? schedule+0x91/0x360 [ 964.661592][ C1] ? smpboot_thread_fn+0x4d/0xa60 [ 964.661618][ C1] smpboot_thread_fn+0x542/0xa60 [ 964.661646][ C1] ? smpboot_thread_fn+0x4d/0xa60 [ 964.661682][ C1] kthread+0x711/0x8a0 [ 964.661752][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 964.661779][ C1] ? __pfx_kthread+0x10/0x10 [ 964.661804][ C1] ? rt_spin_unlock+0x150/0x200 [ 964.661835][ C1] ? rt_spin_unlock+0x161/0x200 [ 964.661856][ C1] ? __pfx_kthread+0x10/0x10 [ 964.661886][ C1] ret_from_fork+0x4bc/0x870 [ 964.661914][ C1] ? __pfx_ret_from_fork+0x10/0x10 [ 964.661949][ C1] ? __switch_to_asm+0x39/0x70 [ 964.661969][ C1] ? __switch_to_asm+0x33/0x70 [ 964.661990][ C1] ? __pfx_kthread+0x10/0x10 [ 964.662020][ C1] ret_from_fork_asm+0x1a/0x30 [ 964.662059][ C1] [ 964.662078][ C1] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 964.662095][ C1] CPU: 1 UID: 0 PID: 29 Comm: ktimers/1 Not tainted syzkaller #0 PREEMPT_{RT,(full)} [ 964.662120][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 964.662133][ C1] Call Trace: [ 964.662141][ C1] [ 964.662149][ C1] dump_stack_lvl+0x99/0x250 [ 964.662182][ C1] ? __asan_memcpy+0x40/0x70 [ 964.662207][ C1] ? __pfx_dump_stack_lvl+0x10/0x10 [ 964.662248][ C1] ? __pfx__printk+0x10/0x10 [ 964.662291][ C1] vpanic+0x237/0x6d0 [ 964.662311][ C1] ? __pfx_vpanic+0x10/0x10 [ 964.662344][ C1] panic+0xb9/0xc0 [ 964.662364][ C1] ? __pfx_panic+0x10/0x10 [ 964.662405][ C1] __warn+0x31b/0x4b0 [ 964.662422][ C1] ? refcount_warn_saturate+0x11a/0x1d0 [ 964.662449][ C1] ? refcount_warn_saturate+0x11a/0x1d0 [ 964.662471][ C1] report_bug+0x2be/0x4f0 [ 964.662500][ C1] ? refcount_warn_saturate+0x11a/0x1d0 [ 964.662523][ C1] ? refcount_warn_saturate+0x11a/0x1d0 [ 964.662545][ C1] ? refcount_warn_saturate+0x11c/0x1d0 [ 964.662569][ C1] handle_bug+0x84/0x160 [ 964.662591][ C1] exc_invalid_op+0x1a/0x50 [ 964.662613][ C1] asm_exc_invalid_op+0x1a/0x20 [ 964.662634][ C1] RIP: 0010:refcount_warn_saturate+0x11a/0x1d0 [ 964.662659][ C1] Code: c0 2e 3d 8b e8 a7 9d 09 fd 90 0f 0b 90 90 eb d7 e8 6b 56 45 fd c6 05 30 22 47 0a 01 90 48 c7 c7 20 2f 3d 8b e8 87 9d 09 fd 90 <0f> 0b 90 90 eb b7 e8 4b 56 45 fd c6 05 0d 22 47 0a 01 90 48 c7 c7 [ 964.662681][ C1] RSP: 0000:ffffc90000a3f7a8 EFLAGS: 00010246 [ 964.662700][ C1] RAX: b3930126bc6a1200 RBX: 0000000000000003 RCX: ffff88801be99e00 [ 964.662717][ C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000100 [ 964.662731][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000100 [ 964.662744][ C1] R10: dffffc0000000000 R11: ffffed101712487b R12: ffffffff99096901 [ 964.662761][ C1] R13: ffff888050bae000 R14: ffff888050bae080 R15: ffff888050bae070 [ 964.662798][ C1] ? refcount_warn_saturate+0x119/0x1d0 [ 964.662824][ C1] __inet_csk_reqsk_queue_drop+0x2c3/0x340 [ 964.662862][ C1] reqsk_timer_handler+0x80b/0xcd0 [ 964.662902][ C1] call_timer_fn+0x17e/0x5f0 [ 964.662930][ C1] ? __pfx_reqsk_timer_handler+0x10/0x10 [ 964.662958][ C1] ? call_timer_fn+0xbe/0x5f0 [ 964.662985][ C1] ? __pfx_call_timer_fn+0x10/0x10 [ 964.663024][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 964.663054][ C1] ? lockdep_hardirqs_on+0x9c/0x150 [ 964.663083][ C1] ? __pfx_reqsk_timer_handler+0x10/0x10 [ 964.663114][ C1] __run_timer_base+0x648/0x970 [ 964.663161][ C1] ? __pfx___run_timer_base+0x10/0x10 [ 964.663211][ C1] run_timer_softirq+0x67/0x180 [ 964.663248][ C1] handle_softirqs+0x22f/0x710 [ 964.663287][ C1] ? __pfx_handle_softirqs+0x10/0x10 [ 964.663328][ C1] run_ktimerd+0xcf/0x190 [ 964.663358][ C1] ? __pfx_run_ktimerd+0x10/0x10 [ 964.663385][ C1] ? schedule+0x91/0x360 [ 964.663424][ C1] ? smpboot_thread_fn+0x4d/0xa60 [ 964.663451][ C1] smpboot_thread_fn+0x542/0xa60 [ 964.663479][ C1] ? smpboot_thread_fn+0x4d/0xa60 [ 964.663518][ C1] kthread+0x711/0x8a0 [ 964.663552][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 964.663580][ C1] ? __pfx_kthread+0x10/0x10 [ 964.663609][ C1] ? rt_spin_unlock+0x150/0x200 [ 964.663640][ C1] ? rt_spin_unlock+0x161/0x200 [ 964.663664][ C1] ? __pfx_kthread+0x10/0x10 [ 964.663699][ C1] ret_from_fork+0x4bc/0x870 [ 964.663729][ C1] ? __pfx_ret_from_fork+0x10/0x10 [ 964.663765][ C1] ? __switch_to_asm+0x39/0x70 [ 964.663786][ C1] ? __switch_to_asm+0x33/0x70 [ 964.663805][ C1] ? __pfx_kthread+0x10/0x10 [ 964.663839][ C1] ret_from_fork_asm+0x1a/0x30 [ 964.663884][ C1] [ 964.664027][ C1] Kernel Offset: disabled