last executing test programs: 18.359337772s ago: executing program 3 (id=2348): io_uring_setup(0x4a86, &(0x7f0000000300)={0x0, 0x4178, 0x40, 0x8001002, 0x112}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000040)=0x3) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000003, 0x13, r2, 0x0) ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0x80a0000, 0x8080000, 0x8, 0xb, 0x3, 0xd0, 0x42, 0x7, 0x0, 0x34, 0x19}, {0x10000, 0x2, 0xf, 0x2, 0x43, 0xf, 0x7f, 0x6, 0x5, 0x6, 0x3}, {0xdddd0000, 0x4000, 0x9, 0x5, 0xfd, 0x7, 0x0, 0x9, 0x0, 0x8, 0x8, 0x81}, {0x40000, 0x8000000, 0xa, 0x6, 0x10, 0x2, 0xfd, 0xf8, 0xa, 0x9, 0x9, 0xf1}, {0x4000, 0x2000, 0x10, 0x3, 0x5, 0x2, 0xab, 0x7f, 0x41, 0x83, 0xf7, 0x6}, {0x1000, 0x191bd000, 0x8, 0x77, 0xb5, 0x4, 0x1, 0x7, 0x80, 0x13, 0x5}, {0x6000, 0x0, 0x0, 0x5, 0x0, 0x2, 0xc, 0x3, 0x3, 0x7d, 0x2, 0x70}, {0x80a0000, 0xeeef0000, 0xc, 0x5, 0xf, 0x7, 0x4, 0xe2, 0x2, 0x8, 0xf0, 0x9}, {0xeeef0000, 0x29ad}, {0x3000, 0x7}, 0x80000031, 0x0, 0xeeef0000, 0x2024, 0xf, 0x0, 0x3000, [0x2c, 0x1000, 0x400000000063, 0x6]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000000c0)={[0x1, 0x3, 0x100000008, 0x7f, 0x1, 0x0, 0x2, 0xfffffffffffff804, 0x0, 0x0, 0x0, 0x2000000000000, 0x7, 0x2, 0x1, 0x8], 0xeeef0000, 0x4fb40}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 15.053733855s ago: executing program 3 (id=2365): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001580)=ANY=[@ANYBLOB="600000000206030000000000b8791fa80000000014000780080012400000000005001500010000000500010006000000050005000200000005000400000000000900020073797a310000000012000300686173683a6e65742c706f7274"], 0x60}}, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'lo\x00'}) sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x0, 0x0}, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000002440), 0x40, 0x0) sendmsg$IPSET_CMD_CREATE(r0, 0x0, 0x20040845) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x7, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="54000000090601020000000000000000020000000900020073797a310000000005000100070000002c0007800c00018008000140ac1414aa0500070084000000060004404e2000000c00028008000140ffffff489b95baef08e9d0b891e33b"], 0x54}, 0x1, 0x0, 0x0, 0x10000082}, 0x80) 11.54209429s ago: executing program 3 (id=2378): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) r4 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000022c0)=@newtfilter={0x94, 0x2c, 0xd27, 0x170bd2b, 0x2, {0x0, 0x0, 0x0, r5, {0x0, 0x10}, {}, {0x8, 0xffe0}}, [@filter_kind_options=@f_flow={{0x9}, {0x64, 0x2, [@TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_KEYS={0x8, 0x1, 0x1a29c}, @TCA_FLOW_ACT={0x50, 0x9, 0x0, 0x1, [@m_csum={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x1003d1, 0x3, 0x20000000, 0x6, 0x86}, 0x69}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}]}}]}, 0x94}, 0x1, 0x0, 0x0, 0xc804}, 0x2) close(r3) socket$unix(0x1, 0x2, 0x0) ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r6 = socket$kcm(0x11, 0x3, 0x0) setsockopt$sock_attach_bpf(r6, 0x107, 0xf, &(0x7f0000000600), 0x56) r7 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@gettfilter={0x24, 0x2e, 0x205, 0x70bd2c, 0x25dfdafd, {0x0, 0x0, 0x0, r8, {0xc, 0xc}, {0x0, 0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000801}, 0x4041080) 8.150786969s ago: executing program 3 (id=2401): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000040)=0x1d, 0x4) connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x21, @none}, 0xe) 4.784775191s ago: executing program 3 (id=2424): socket$nl_route(0x10, 0x3, 0x0) socket$nl_route(0x10, 0x3, 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f0000008300), 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) syz_io_uring_setup(0x5c2, &(0x7f0000000280)={0x0, 0x0, 0x3080, 0x8003, 0x25f}, 0x0, 0x0) pipe2$watch_queue(&(0x7f0000001180), 0x80) socket$inet6_sctp(0xa, 0x1, 0x84) socket$key(0xf, 0x3, 0x2) socket$inet6_tcp(0xa, 0x1, 0x0) openat$audio1(0xffffffffffffff9c, 0x0, 0x129202, 0x0) socket$inet(0x2, 0x4000000000000001, 0x0) syz_io_uring_setup(0x88f, &(0x7f0000000340)={0x0, 0x3cfa, 0x400, 0x2, 0x3b9}, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) r0 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x48240) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[0x0], 0x1}) ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r1], &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000001c0)=[0x7fffffff], 0x0, 0x1}) 4.543399521s ago: executing program 2 (id=2426): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2003, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000004c0)={[0xa, 0x2, 0x7000000, 0x8aaf, 0x8000, 0xfffffffffffffffc, 0xb3, 0x3, 0x80000000000b1d, 0x5, 0x8, 0x81, 0x5, 0x7, 0xe5, 0x3], 0x10000, 0x3877c4}) ioctl$KVM_INTERRUPT(r2, 0x4004ae86, &(0x7f0000000040)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 4.516562144s ago: executing program 0 (id=2427): syz_emit_ethernet(0x36, &(0x7f0000000240)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x67, 0x0, 0x2, 0x6, 0x0, @broadcast, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0xc2}}}}}}, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r1) socket$nl_generic(0x10, 0x3, 0x10) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x4361, 0x7, 0xffffffff, 0x3}}}}]}, 0x4c}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000005c0)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0x6, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_ACK_FILTER={0x8, 0x10, 0x2}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x240040e0}, 0x4890) r4 = socket$packet(0x11, 0x3, 0x300) sendto$packet(r4, &(0x7f0000000240)="800000800000210ee7decd7a000340008100", 0x36, 0x40, &(0x7f00000001c0)={0x11, 0x8100, r3, 0x1, 0xd8, 0x6, @broadcast}, 0x14) 3.870043568s ago: executing program 2 (id=2430): r0 = socket$inet6(0xa, 0x1000080002, 0x100000000000088) getsockopt$IP6T_SO_GET_INFO(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000140)={'raw\x00', 0x0, [0x0, 0x401, 0xffffffff, 0x2, 0x5]}, 0x0) setsockopt$MRT6_DEL_MFC(r0, 0x29, 0xcd, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @rand_addr, 0x3}, 0x1c) r1 = socket$inet6(0xa, 0x802, 0x88) setsockopt$inet6_udp_int(r1, 0x11, 0x100000000a, &(0x7f0000000040)=0x800000001, 0x4) sendto$inet6(r1, 0x0, 0x0, 0x4008800, &(0x7f0000000180)={0xa, 0x4e23, 0x9, @ipv4={'\x00', '\xff\xff', @remote}, 0xffffffff}, 0x1c) sendto$inet6(r1, &(0x7f00000001c0)='~', 0x1, 0x40000, 0x0, 0x0) pselect6(0x40, &(0x7f00000002c0)={0x0, 0xfffffffffffffff9, 0x0, 0x3, 0x800, 0x0, 0x8000001000000000}, 0x0, &(0x7f0000000240)={0x1f, 0x0, 0x1, 0x2, 0x0, 0x9e22, 0x0, 0x9b}, &(0x7f0000000280)={0x0, 0x3938700}, 0x0) 3.776080155s ago: executing program 0 (id=2431): sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_GUEST_MEMFD(r1, 0xc040aed4, &(0x7f0000000080)={0x200001fe0000, 0x2}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_PRE_FAULT_MEMORY(r2, 0xc040aed5, &(0x7f0000000340)={0x9000, 0x12000}) ioctl$KVM_PRE_FAULT_MEMORY(r2, 0xc040aed5, &(0x7f0000000380)={0x9000, 0x10000}) r3 = shmget(0x0, 0x4000, 0x1000, &(0x7f0000ffa000/0x4000)=nil) shmctl$IPC_STAT(r3, 0x2, &(0x7f0000000000)=""/141) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil}) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, &(0x7f0000000080)="420f833c000000c44209aceef30fc737b9800000c00f3235000400000f3066b8fa000f00d066b805018ed83e660f388016430f01c88f8858a6d506430f07", 0x3e}], 0x1, 0x50, 0x0, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0) personality(0xfe47fef9f5ff7379) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) 3.622820447s ago: executing program 4 (id=2432): ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000100)={'syztnl2\x00', &(0x7f0000000080)={'syztnl2\x00', 0x0, 0x1, 0x7800, 0x800, 0x0, {{0x13, 0x4, 0x1, 0x6, 0x4c, 0x66, 0x0, 0x62, 0x2f, 0x0, @dev={0xac, 0x14, 0x14, 0x26}, @multicast1, {[@timestamp={0x44, 0x1c, 0x98, 0x0, 0x8, [0x3, 0x2, 0x1, 0x7fff, 0x3, 0x2]}, @cipso={0x86, 0x17, 0x3, [{0x0, 0x11, "43bf76dcf73149fca911a0936d8efc"}]}, @noop, @ra={0x94, 0x4, 0x1}]}}}}}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x35, 0x0, 0x2, 0x180, 0x5, 0x4, 0xf1, 0x50, 0x12, 0x2, 0x0, 0x9, 0x0, 0x6, 0x0, 0xbdb], 0x200000, 0x43102}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x4, 0x1000000000, 0x0, 0x10043, 0x2000001, 0x3, 0x2004cb, 0x0, 0x1000007, 0xd2, 0x2, 0x9, 0x403, 0x0, 0x7], 0xeeee8000, 0x202}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 3.231439904s ago: executing program 2 (id=2434): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x30, r1, 0x5, 0x3, 0x25dfdbff, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x7}]}, 0x30}}, 0x0) 3.081037575s ago: executing program 4 (id=2435): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa8442, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket$unix(0x1, 0x1, 0x0) r2 = socket$kcm(0x11, 0x3, 0x0) r3 = socket(0x400000000010, 0x3, 0x0) r4 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xc, 0xf}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8001}, 0x20008850) r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) r7 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', 0x0}) socket(0x2, 0x80805, 0x0) sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd2b, 0x2, {0x0, 0x0, 0x0, r8, {0xb, 0x10}, {}, {0x8}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_KEYS={0x8, 0x1, 0x1e3a9}]}}]}, 0x44}}, 0x2) close(r6) socket$nl_generic(0x10, 0x3, 0x10) ioctl$SIOCSIFHWADDR(r6, 0x8914, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) setsockopt$sock_attach_bpf(r2, 0x107, 0xf, &(0x7f0000000600), 0x56) sendmsg$kcm(r2, &(0x7f0000000280)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r9, 0x42}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000200)="27030200000314000e00203c002400000000001100000000000000000000000000000000000085dc9d9839dc1336", 0x2e}], 0x1}, 0x4005) 2.992404657s ago: executing program 1 (id=2436): r0 = socket$igmp6(0xa, 0x3, 0x2) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x170, 0xffffffff, 0xffffffff, 0x170, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0x0, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528) syz_emit_ethernet(0x3e, &(0x7f0000000100)={@random="d9ea693249ca", @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @void, {@ipv6={0x86dd, @icmpv6={0x1, 0x6, "fbddf0", 0x8, 0x3a, 0xff, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @mcast2, {[], @echo_reply={0x81, 0x0, 0x0, 0x2, 0x4}}}}}}, 0x0) 2.777699933s ago: executing program 2 (id=2437): r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) sendmmsg$inet6(r1, &(0x7f0000000980)=[{{&(0x7f0000000000)={0xa, 0x4e1f, 0x1f75, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xe8bbb597}, 0x1c, &(0x7f0000000200)=[{&(0x7f0000000040)="a4", 0x1}], 0x1}}, {{&(0x7f0000000240)={0xa, 0x4e22, 0x9, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x3}, 0x1c, 0x0, 0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="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"], 0x1f0}}], 0x2, 0x0) sendto$inet6(r1, &(0x7f0000000140)="9a", 0x1, 0x0, &(0x7f00000000c0)={0xa, 0x4e20, 0x6d96526e, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x100}, 0x1c) close_range(r0, 0xffffffffffffffff, 0x0) 2.651848726s ago: executing program 0 (id=2438): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)=@newqdisc={0x64, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x3, 0xf}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x34, 0x2, {{0xb, 0x90, 0x877, 0x7, 0x8, 0x9}, [@TCA_NETEM_LOSS={0x18, 0x5, 0x0, 0x1, [@NETEM_LOSS_GE={0x14, 0x2, {0x7, 0xe3, 0x5520, 0x2}}]}]}}}]}, 0x64}}, 0x20040084) r4 = socket$unix(0x1, 0x1, 0x0) r5 = socket$kcm(0x11, 0x3, 0x0) r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r6) ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$kcm(r5, &(0x7f0000000280)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r7, 0x42}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000200)='\'', 0x1}], 0x1}, 0x4005) 2.383270567s ago: executing program 4 (id=2439): socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0) getsockname$packet(r1, &(0x7f00000005c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000580)=0x14) getsockopt$CAN_RAW_LOOPBACK(0xffffffffffffffff, 0x65, 0x20, 0x0, 0x0) sendmmsg$inet(r0, &(0x7f0000000fc0)=[{{&(0x7f0000000040)={0x2, 0x4e22, @multicast2}, 0x10, 0x0, 0x0, &(0x7f0000000a80)=[@ip_ttl={{0x14, 0x0, 0x2, 0x6}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r2, @dev={0xac, 0x14, 0x14, 0x29}, @empty}}}], 0x38}}], 0x1, 0x844) 2.375595405s ago: executing program 2 (id=2440): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe0", 0x46}], 0x1}], 0x1, 0x40800) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, 0x0}], 0x1, 0x4e, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000}) syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0f"], 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2.234542412s ago: executing program 1 (id=2441): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4) ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000040)=0x3) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000003, 0x13, r2, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000000c0)={[0x1, 0x3, 0x100000008, 0x7f, 0x1, 0x0, 0x2, 0xfffffffffffff804, 0x0, 0x0, 0x0, 0x2000000000000, 0x7, 0x2, 0x1, 0x8], 0xeeef0000, 0x4fb40}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 1.949468398s ago: executing program 0 (id=2442): open(&(0x7f0000000000)='./file0\x00', 0x1607c0, 0x78e22799f4a46ffe) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) socket(0xa, 0x5, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000280)={@remote, 0x800, 0x0, 0x103, 0x1}, 0x20) setsockopt$inet6_int(r1, 0x29, 0x1000000000021, &(0x7f0000000040)=0x5, 0x4) sendmsg$inet6(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0xa, 0x4e23, 0x80000, @private1={0xfc, 0x1, '\x00', 0x1}}, 0x1c, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRES16=r1], 0x18}, 0x40c0) 1.937154601s ago: executing program 4 (id=2443): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x10, 0x803, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) r4 = socket(0x400000000010, 0x3, 0x0) r5 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x42}}}]}, 0x38}}, 0x0) r7 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, r8, {0x4, 0xa}, {}, {0xfff2, 0x2}}, [@filter_kind_options=@f_bpf={{0x8}, {0x18, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x6, 0xd, 0x5, 0x4}]}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x8848}, 0x80) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x7}, {0xffff, 0xffff}, {0x0, 0xfff2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0) 1.819321087s ago: executing program 2 (id=2444): socket$nl_route(0x10, 0x3, 0x0) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5) close(0x4) syz_open_procfs$namespace(0x0, &(0x7f0000000200)='ns/uts\x00') ioctl$BTRFS_IOC_SPACE_INFO(r0, 0xc0109414, 0x0) unshare(0x6a040000) r1 = socket(0x8, 0x3, 0x3) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, 0xffffffffffffffff, 0x0) getsockname$packet(r1, 0x0, 0x0) 1.446227581s ago: executing program 3 (id=2445): ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000100)={'syztnl2\x00', &(0x7f0000000080)={'syztnl2\x00', 0x0, 0x1, 0x7800, 0x800, 0x0, {{0x15, 0x4, 0x1, 0x6, 0x54, 0x66, 0x0, 0x62, 0x2f, 0x0, @dev={0xac, 0x14, 0x14, 0x26}, @multicast1, {[@timestamp={0x44, 0x1c, 0x98, 0x0, 0x8, [0x3, 0x2, 0x1, 0x7fff, 0x3, 0x2]}, @ssrr={0x89, 0x7, 0x80, [@empty]}, @cipso={0x86, 0x17, 0x3, [{0x0, 0x11, "43bf76dcf73149fca911a0936d8efc"}]}, @noop, @ra={0x94, 0x4, 0x1}]}}}}}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x35, 0x0, 0x2, 0x180, 0x5, 0x4, 0xf1, 0x50, 0x12, 0x2, 0x0, 0x9, 0x0, 0x6, 0x0, 0xbdb], 0x200000, 0x43102}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x4, 0x1000000000, 0x0, 0x10043, 0x2000001, 0x3, 0x2004cb, 0x0, 0x1000007, 0xd2, 0x2, 0x9, 0x403, 0x0, 0x7], 0xeeee8000, 0x202}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 1.41230915s ago: executing program 1 (id=2446): r0 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x2a, 0x0, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x2b, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x108) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) r1 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000200)={0x1, {{0xa, 0x0, 0x8, @mcast1={0xff, 0x7}, 0x2}}, {{0xa, 0x0, 0x10000009, @ipv4={'\x00', '\xff\xff', @remote}}}}, 0x108) 1.365202026s ago: executing program 4 (id=2447): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000280)={'syzkaller1\x00', @link_local}) write$tun(r0, &(0x7f0000000040)={@val={0x0, 0x88f7}, @void, @eth={@multicast, @local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x66, 0x0, 0xfc, 0x2f, 0x0, @private=0x1fe1, @broadcast}, {0x8000, 0x8100, 0xc, 0x0, @gue={{0x1, 0x0, 0x1, 0x9, 0x5865, @void}}}}}}}}, 0x32) 1.237555729s ago: executing program 0 (id=2448): sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_GUEST_MEMFD(r1, 0xc040aed4, &(0x7f0000000080)={0x200001fe0000, 0x2}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_PRE_FAULT_MEMORY(r2, 0xc040aed5, &(0x7f0000000340)={0x9000, 0x12000}) ioctl$KVM_PRE_FAULT_MEMORY(r2, 0xc040aed5, &(0x7f0000000380)={0x9000, 0x10000}) r3 = shmget(0x0, 0x4000, 0x1000, &(0x7f0000ffa000/0x4000)=nil) shmctl$IPC_STAT(r3, 0x2, &(0x7f0000000000)=""/141) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil}) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, &(0x7f0000000080)="420f833c000000c44209aceef30fc737b9800000c00f3235000400000f3066b8fa000f00d066b805018ed83e660f388016430f01c88f8858a6d506430f07", 0x3e}], 0x1, 0x50, 0x0, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0) personality(0xfe47fef9f5ff7379) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) 962.351638ms ago: executing program 1 (id=2449): openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000140)={0x1ff, 0x0, 0x25000, 0x1000, &(0x7f0000d7f000/0x1000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION2(0xffffffffffffffff, 0x40a0ae49, &(0x7f0000000280)={0x5, 0x2, 0x7000, 0x2000, &(0x7f0000d6c000/0x2000)=nil, 0x7}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000080)={0x0, 0x1, 0xcccc0000, 0x2000, &(0x7f0000c7d000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) syz_kvm_setup_syzos_vm$x86(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x81, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000100)={0x10001, 0x0, 0x0, 0x1000, &(0x7f0000ffc000/0x1000)=nil}) 316.263223ms ago: executing program 1 (id=2450): r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) sendmmsg$inet6(r1, &(0x7f0000000980)=[{{&(0x7f0000000000)={0xa, 0x4e1f, 0x1f75, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xe8bbb597}, 0x1c, &(0x7f0000000200)=[{&(0x7f0000000040)="a4", 0x1}], 0x1}}, {{&(0x7f0000000240)={0xa, 0x4e22, 0x9, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x3}, 0x1c, 0x0, 0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="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"], 0x1f0}}], 0x2, 0x0) sendto$inet6(r1, &(0x7f0000000140)="9a", 0x1, 0x0, &(0x7f00000000c0)={0xa, 0x4e20, 0x6d96526e, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x100}, 0x1c) close_range(r0, 0xffffffffffffffff, 0x0) 108.603642ms ago: executing program 4 (id=2451): socket$nl_route(0x10, 0x3, 0x0) r0 = socket(0x10, 0x803, 0x0) getsockname$packet(r0, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000100), 0x237}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x1f00, 0x18, 0x19, &(0x7f00000007c0)="9f44948721919580684010a40566", 0x0, 0x7ff, 0x0, 0xb1, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb42067575318c39", &(0x7f0000000380)="8c5911c525f5cf4c4ecf207ad2ec", 0x0, 0x0, 0xffffffff}, 0x23) 70.524997ms ago: executing program 0 (id=2452): ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000100)={0x0, 0x642, &(0x7f0000000240)="235913100000004a3525c373b8be3e8d2672540e4fff5fe7", 0x0, 0x18}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = gettid() timer_create(0x0, &(0x7f00000014c0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x3ed4, 0x5}) mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4) bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r4 = syz_io_uring_setup(0x4175, &(0x7f0000000180)={0x0, 0x136f, 0x10000, 0x2, 0x2d0}, &(0x7f0000000440), &(0x7f0000000400)) io_uring_enter(r4, 0x7b20, 0xe93c, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r4, 0x13, &(0x7f0000000000)=[0x1, 0x7], 0x2) io_uring_enter(r4, 0x1e61, 0x9296, 0x1, 0x0, 0x0) timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x77359400}}, 0x0) recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x2010, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x60000000004, 0x1000000000, 0x5, 0x41, 0x2000000, 0x0, 0x2004cc, 0x0, 0xa1b, 0x8, 0x5, 0x0, 0x3, 0x2], 0x10000, 0x202}) r5 = memfd_create(&(0x7f0000000ac0)='\x00\x0e\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\xb5\xf5\xe8\x18h\xb4\xa71\xa8\x85s\xaf\x8a\xe5\xca\'\xfc>\x98\xaa\x8e\x02\xf6rY\xc4\xecB5\vX\'\xe7\xdd\x9d\x9e_\x00\xa1^Yx\x0eF\x98S\xdf\"\xa4\xc2T\xfa\x9f\xac|\xa0\xc5\x9d\xec\xa3\xe9c`j\xbf\x19\xc5\xc7c\xaer\x10\\BCo\x86\xe8X\x1c\x05E%\xb0\x85\xd0\x1e\xa7\xc9w\xa3D\xad<\xcc\x90`\xa8<1\xa1\x04\x0f\a\r\xe4H\x95\a\x80{\x1eJW\x8b\x93\x05\xa2\x85\x95\xdf\x87\xf6+\x0e\xff\xff\x00\x00\x00\x00\x00\x00\xff\xd6h\x8b\xc5\xb9\x10\xa4\x0e\xff\xfak\xf1{\xb7{', 0x4) mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x1000003, 0x12, r5, 0x0) ftruncate(r5, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1d, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000000)=@arm64={0xf8, 0x7, 0x5, '\x00', 0x4}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 0s ago: executing program 1 (id=2453): socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0) getsockname$packet(r1, &(0x7f00000005c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000580)=0x14) getsockopt$CAN_RAW_LOOPBACK(0xffffffffffffffff, 0x65, 0x20, 0x0, 0x0) sendmmsg$inet(r0, &(0x7f0000000fc0)=[{{&(0x7f0000000040)={0x2, 0x4e22, @multicast2}, 0x10, 0x0, 0x0, &(0x7f0000000a80)=[@ip_ttl={{0x14, 0x0, 0x2, 0x6}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r2, @dev={0xac, 0x14, 0x14, 0x29}, @empty}}}], 0x38}}], 0x1, 0x844) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.40' (ED25519) to the list of known hosts. [ 159.644518][ T5757] cgroup: Unknown subsys name 'net' [ 159.785514][ T5757] cgroup: Unknown subsys name 'cpuset' [ 159.800459][ T5757] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 165.328635][ T5757] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 170.752005][ T5777] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 170.762394][ T5781] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 170.770960][ T5781] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 170.781483][ T5782] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 170.810674][ T5782] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 170.817433][ T5781] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 170.827565][ T5781] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 170.834009][ T5786] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 170.838098][ T5781] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 170.850244][ T5782] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 170.858284][ T5786] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 170.871799][ T5786] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 170.881618][ T5781] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 170.893793][ T5786] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 170.901634][ T5782] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 170.939910][ T5072] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 170.956861][ T49] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 170.971783][ T5072] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 170.981110][ T5072] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 170.995774][ T5072] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 171.007690][ T5072] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 171.016976][ T5072] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 171.025139][ T5072] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 171.043049][ T49] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 171.054242][ T49] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 172.328514][ T5775] chnl_net:caif_netlink_parms(): no params data found [ 172.555518][ T5776] chnl_net:caif_netlink_parms(): no params data found [ 172.712735][ T5779] chnl_net:caif_netlink_parms(): no params data found [ 172.819937][ T5788] chnl_net:caif_netlink_parms(): no params data found [ 172.887034][ T5786] Bluetooth: hci0: command tx timeout [ 172.966668][ T5786] Bluetooth: hci2: command tx timeout [ 173.052274][ T5783] chnl_net:caif_netlink_parms(): no params data found [ 173.056743][ T5786] Bluetooth: hci1: command tx timeout [ 173.127157][ T49] Bluetooth: hci3: command tx timeout [ 173.133086][ T5786] Bluetooth: hci4: command tx timeout [ 173.369692][ T5775] bridge0: port 1(bridge_slave_0) entered blocking state [ 173.384266][ T5775] bridge0: port 1(bridge_slave_0) entered disabled state [ 173.398665][ T5775] bridge_slave_0: entered allmulticast mode [ 173.408513][ T5775] bridge_slave_0: entered promiscuous mode [ 173.421395][ T5775] bridge0: port 2(bridge_slave_1) entered blocking state [ 173.447311][ T5775] bridge0: port 2(bridge_slave_1) entered disabled state [ 173.454935][ T5775] bridge_slave_1: entered allmulticast mode [ 173.480053][ T5775] bridge_slave_1: entered promiscuous mode [ 173.690459][ T5775] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 173.729413][ T5775] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 173.833675][ T5776] bridge0: port 1(bridge_slave_0) entered blocking state [ 173.841717][ T5776] bridge0: port 1(bridge_slave_0) entered disabled state [ 173.849507][ T5776] bridge_slave_0: entered allmulticast mode [ 173.857973][ T5776] bridge_slave_0: entered promiscuous mode [ 173.964370][ T5776] bridge0: port 2(bridge_slave_1) entered blocking state [ 173.972266][ T5776] bridge0: port 2(bridge_slave_1) entered disabled state [ 173.980083][ T5776] bridge_slave_1: entered allmulticast mode [ 173.988330][ T5776] bridge_slave_1: entered promiscuous mode [ 173.998665][ T5779] bridge0: port 1(bridge_slave_0) entered blocking state [ 174.006377][ T5779] bridge0: port 1(bridge_slave_0) entered disabled state [ 174.014565][ T5779] bridge_slave_0: entered allmulticast mode [ 174.023230][ T5779] bridge_slave_0: entered promiscuous mode [ 174.040536][ T5775] team0: Port device team_slave_0 added [ 174.118498][ T5779] bridge0: port 2(bridge_slave_1) entered blocking state [ 174.126122][ T5779] bridge0: port 2(bridge_slave_1) entered disabled state [ 174.133965][ T5779] bridge_slave_1: entered allmulticast mode [ 174.142496][ T5779] bridge_slave_1: entered promiscuous mode [ 174.159633][ T5775] team0: Port device team_slave_1 added [ 174.165775][ T5783] bridge0: port 1(bridge_slave_0) entered blocking state [ 174.173912][ T5783] bridge0: port 1(bridge_slave_0) entered disabled state [ 174.181900][ T5783] bridge_slave_0: entered allmulticast mode [ 174.190357][ T5783] bridge_slave_0: entered promiscuous mode [ 174.202601][ T5788] bridge0: port 1(bridge_slave_0) entered blocking state [ 174.210028][ T5788] bridge0: port 1(bridge_slave_0) entered disabled state [ 174.218128][ T5788] bridge_slave_0: entered allmulticast mode [ 174.226131][ T5788] bridge_slave_0: entered promiscuous mode [ 174.315474][ T5783] bridge0: port 2(bridge_slave_1) entered blocking state [ 174.323244][ T5783] bridge0: port 2(bridge_slave_1) entered disabled state [ 174.331855][ T5783] bridge_slave_1: entered allmulticast mode [ 174.340438][ T5783] bridge_slave_1: entered promiscuous mode [ 174.437468][ T5788] bridge0: port 2(bridge_slave_1) entered blocking state [ 174.444781][ T5788] bridge0: port 2(bridge_slave_1) entered disabled state [ 174.455856][ T5788] bridge_slave_1: entered allmulticast mode [ 174.464454][ T5788] bridge_slave_1: entered promiscuous mode [ 174.481835][ T5776] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 174.600270][ T5776] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 174.619129][ T5779] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 174.631231][ T5775] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 174.638681][ T5775] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 174.664886][ T5775] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 174.687471][ T5783] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 174.751594][ T5779] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 174.763446][ T5775] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 174.770726][ T5775] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 174.797026][ T5775] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 174.817789][ T5783] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 174.837612][ T5788] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 174.940200][ T5788] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 174.958751][ T5776] team0: Port device team_slave_0 added [ 174.966740][ T5786] Bluetooth: hci0: command tx timeout [ 175.004544][ T5779] team0: Port device team_slave_0 added [ 175.046834][ T5786] Bluetooth: hci2: command tx timeout [ 175.068456][ T5776] team0: Port device team_slave_1 added [ 175.083569][ T5779] team0: Port device team_slave_1 added [ 175.118870][ T5783] team0: Port device team_slave_0 added [ 175.126852][ T5786] Bluetooth: hci1: command tx timeout [ 175.207137][ T49] Bluetooth: hci3: command tx timeout [ 175.213096][ T5786] Bluetooth: hci4: command tx timeout [ 175.238136][ T5783] team0: Port device team_slave_1 added [ 175.250291][ T5788] team0: Port device team_slave_0 added [ 175.307121][ T5779] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 175.314516][ T5779] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 175.341297][ T5779] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 175.384947][ T5788] team0: Port device team_slave_1 added [ 175.393421][ T5776] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 175.400715][ T5776] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 175.427033][ T5776] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 175.452278][ T5775] hsr_slave_0: entered promiscuous mode [ 175.460843][ T5775] hsr_slave_1: entered promiscuous mode [ 175.472148][ T5779] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 175.479310][ T5779] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 175.506144][ T5779] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 175.567549][ T5776] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 175.574608][ T5776] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 175.601146][ T5776] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 175.639424][ T5783] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 175.646715][ T5783] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 175.673055][ T5783] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 175.752409][ T5783] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 175.759722][ T5783] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 175.786205][ T5783] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 175.800429][ T5788] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 175.807944][ T5788] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 175.834246][ T5788] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 175.957339][ T5788] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 175.964474][ T5788] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 175.990919][ T5788] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 176.195068][ T5776] hsr_slave_0: entered promiscuous mode [ 176.203824][ T5776] hsr_slave_1: entered promiscuous mode [ 176.212251][ T5776] debugfs: 'hsr0' already exists in 'hsr' [ 176.218268][ T5776] Cannot create hsr debugfs directory [ 176.237233][ T5779] hsr_slave_0: entered promiscuous mode [ 176.245602][ T5779] hsr_slave_1: entered promiscuous mode [ 176.253697][ T5779] debugfs: 'hsr0' already exists in 'hsr' [ 176.259618][ T5779] Cannot create hsr debugfs directory [ 176.419932][ T5783] hsr_slave_0: entered promiscuous mode [ 176.428841][ T5783] hsr_slave_1: entered promiscuous mode [ 176.438815][ T5783] debugfs: 'hsr0' already exists in 'hsr' [ 176.444704][ T5783] Cannot create hsr debugfs directory [ 176.586327][ T5788] hsr_slave_0: entered promiscuous mode [ 176.595097][ T5788] hsr_slave_1: entered promiscuous mode [ 176.603200][ T5788] debugfs: 'hsr0' already exists in 'hsr' [ 176.609166][ T5788] Cannot create hsr debugfs directory [ 177.046801][ T5786] Bluetooth: hci0: command tx timeout [ 177.126828][ T5786] Bluetooth: hci2: command tx timeout [ 177.215880][ T5786] Bluetooth: hci1: command tx timeout [ 177.286881][ T5786] Bluetooth: hci4: command tx timeout [ 177.292483][ T5786] Bluetooth: hci3: command tx timeout [ 177.602832][ T5775] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 177.673158][ T5775] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 177.722589][ T5775] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 177.780990][ T5775] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 177.945225][ T5776] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 177.968490][ T5776] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 178.002513][ T5776] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 178.026138][ T5776] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 178.214936][ T5779] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 178.252195][ T5779] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 178.321539][ T5779] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 178.357427][ T5779] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 178.543814][ T5783] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 178.607496][ T5783] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 178.672493][ T5783] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 178.692614][ T5783] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 178.968304][ T5775] 8021q: adding VLAN 0 to HW filter on device bond0 [ 179.004194][ T5788] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 179.024546][ T5788] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 179.047757][ T5788] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 179.100067][ T5788] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 179.139043][ T5786] Bluetooth: hci0: command tx timeout [ 179.207458][ T5786] Bluetooth: hci2: command tx timeout [ 179.242376][ T5776] 8021q: adding VLAN 0 to HW filter on device bond0 [ 179.295691][ T5775] 8021q: adding VLAN 0 to HW filter on device team0 [ 179.297429][ T5786] Bluetooth: hci1: command tx timeout [ 179.372504][ T5786] Bluetooth: hci3: command tx timeout [ 179.372546][ T49] Bluetooth: hci4: command tx timeout [ 179.440023][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 179.447571][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 179.484736][ T176] bridge0: port 2(bridge_slave_1) entered blocking state [ 179.492183][ T176] bridge0: port 2(bridge_slave_1) entered forwarding state [ 179.515769][ T5776] 8021q: adding VLAN 0 to HW filter on device team0 [ 179.570901][ T176] bridge0: port 1(bridge_slave_0) entered blocking state [ 179.578336][ T176] bridge0: port 1(bridge_slave_0) entered forwarding state [ 179.680891][ T176] bridge0: port 2(bridge_slave_1) entered blocking state [ 179.688418][ T176] bridge0: port 2(bridge_slave_1) entered forwarding state [ 179.875614][ T5779] 8021q: adding VLAN 0 to HW filter on device bond0 [ 180.062166][ T5783] 8021q: adding VLAN 0 to HW filter on device bond0 [ 180.155570][ T5779] 8021q: adding VLAN 0 to HW filter on device team0 [ 180.290037][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 180.297738][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 180.356364][ T5783] 8021q: adding VLAN 0 to HW filter on device team0 [ 180.412000][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 180.419550][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 180.562019][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 180.569618][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 180.691351][ T57] bridge0: port 2(bridge_slave_1) entered blocking state [ 180.698888][ T57] bridge0: port 2(bridge_slave_1) entered forwarding state [ 180.759355][ T5788] 8021q: adding VLAN 0 to HW filter on device bond0 [ 181.045743][ T5788] 8021q: adding VLAN 0 to HW filter on device team0 [ 181.201868][ T57] bridge0: port 1(bridge_slave_0) entered blocking state [ 181.209436][ T57] bridge0: port 1(bridge_slave_0) entered forwarding state [ 181.283484][ T5775] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 181.335787][ T57] bridge0: port 2(bridge_slave_1) entered blocking state [ 181.343245][ T57] bridge0: port 2(bridge_slave_1) entered forwarding state [ 181.422422][ T5776] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 182.082743][ T5775] veth0_vlan: entered promiscuous mode [ 182.290841][ T5776] veth0_vlan: entered promiscuous mode [ 182.328708][ T5775] veth1_vlan: entered promiscuous mode [ 182.384959][ T5779] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 182.465027][ T5776] veth1_vlan: entered promiscuous mode [ 182.622687][ T5783] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 182.774724][ T5775] veth0_macvtap: entered promiscuous mode [ 182.925983][ T5775] veth1_macvtap: entered promiscuous mode [ 182.975023][ T5779] veth0_vlan: entered promiscuous mode [ 183.088264][ T5788] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 183.121818][ T5776] veth0_macvtap: entered promiscuous mode [ 183.183949][ T5779] veth1_vlan: entered promiscuous mode [ 183.195359][ T5776] veth1_macvtap: entered promiscuous mode [ 183.221224][ T5775] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 183.321894][ T5775] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 183.473715][ T5776] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 183.481724][ T191] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.529987][ T191] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.539455][ T191] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.580879][ T191] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.643676][ T5776] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 183.811278][ T5779] veth0_macvtap: entered promiscuous mode [ 183.825172][ T81] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.835714][ T81] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.900608][ T81] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.924095][ T81] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 184.056085][ T5779] veth1_macvtap: entered promiscuous mode [ 184.093380][ T5788] veth0_vlan: entered promiscuous mode [ 184.245322][ T5783] veth0_vlan: entered promiscuous mode [ 184.312055][ T5788] veth1_vlan: entered promiscuous mode [ 184.364140][ T5783] veth1_vlan: entered promiscuous mode [ 184.399127][ T5779] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 184.532804][ T5779] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 184.688802][ T35] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 184.704725][ T35] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 184.813541][ T35] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 184.826259][ T35] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 184.912047][ T5788] veth0_macvtap: entered promiscuous mode [ 185.061453][ T5788] veth1_macvtap: entered promiscuous mode [ 185.115195][ T5783] veth0_macvtap: entered promiscuous mode [ 185.176361][ T5783] veth1_macvtap: entered promiscuous mode [ 185.464044][ T5788] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 185.532343][ T5783] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 185.590841][ T5788] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 185.692094][ T35] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 185.711430][ T35] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 185.747641][ T5783] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 185.807559][ T35] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 185.838504][ T35] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 185.966902][ T35] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 185.976001][ T35] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 186.055281][ T35] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 186.093768][ T35] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 188.596619][ T1034] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 188.604635][ T1034] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 188.836205][ T1093] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 188.876819][ T1093] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 189.293916][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 189.308778][ T5775] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 189.345040][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 189.732982][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 189.756758][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 189.878286][ T5951] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 190.510283][ T1034] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 190.562687][ T1034] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 190.861577][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 190.921035][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 191.706870][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 191.743701][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 192.062958][ T5975] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 192.129558][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 192.153864][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 192.632517][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 192.689547][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 192.977766][ T5986] tmpfs: Bad value for 'mpol' [ 193.168417][ T57] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 193.237168][ T57] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 195.707832][ T6007] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16'. [ 197.151085][ T6016] loop3: detected capacity change from 0 to 128 [ 197.163259][ T6017] loop1: detected capacity change from 0 to 128 [ 197.328326][ T6016] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 197.431536][ T6016] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 200.213920][ T6035] loop3: detected capacity change from 0 to 1764 [ 200.757743][ T6040] syzkaller0: entered promiscuous mode [ 200.763401][ T6040] syzkaller0: entered allmulticast mode [ 203.959457][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 203.966059][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 205.288538][ T5923] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 205.506684][ T5923] usb 4-1: Using ep0 maxpacket: 8 [ 205.575509][ T5923] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 13 [ 205.653218][ T5923] usb 4-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58 [ 205.666759][ T5923] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 205.675020][ T5923] usb 4-1: Product: syz [ 205.675138][ T5923] usb 4-1: Manufacturer: syz [ 205.675235][ T5923] usb 4-1: SerialNumber: syz [ 205.757185][ T5923] usb 4-1: config 0 descriptor?? [ 205.793222][ T5923] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08ae [ 205.904568][ T6083] netlink: 12 bytes leftover after parsing attributes in process `syz.1.43'. [ 206.380321][ T6086] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 206.417409][ T5923] gspca_zc3xx: reg_w_i err -71 [ 207.026817][ T5923] gspca_zc3xx: Unknown sensor - set to TAS5130C [ 207.033504][ T5923] gspca_zc3xx 4-1:0.0: probe with driver gspca_zc3xx failed with error -71 [ 207.078349][ T5923] usb 4-1: USB disconnect, device number 2 [ 207.722586][ T6102] ======================================================= [ 207.722586][ T6102] WARNING: The mand mount option has been deprecated and [ 207.722586][ T6102] and is ignored by this kernel. Remove the mand [ 207.722586][ T6102] option from the mount to silence this warning. [ 207.722586][ T6102] ======================================================= [ 209.074456][ T6114] loop0: detected capacity change from 0 to 256 [ 209.360102][ T29] audit: type=1800 audit(1773709857.328:2): pid=6118 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.55" name="file1" dev="loop0" ino=1048607 res=0 errno=0 [ 209.420865][ T6118] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 209.462106][ T6118] FAT-fs (loop0): Filesystem has been set read-only [ 210.337017][ T5406] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 210.378783][ T6133] sctp: [Deprecated]: syz.0.61 (pid 6133) Use of struct sctp_assoc_value in delayed_ack socket option. [ 210.378783][ T6133] Use struct sctp_sack_info instead [ 210.516755][ T5406] usb 2-1: Using ep0 maxpacket: 8 [ 210.557094][ T5406] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 13 [ 210.589399][ T5406] usb 2-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58 [ 210.612601][ T5406] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 210.644362][ T5406] usb 2-1: Product: syz [ 210.651006][ T5406] usb 2-1: Manufacturer: syz [ 210.670813][ T5406] usb 2-1: SerialNumber: syz [ 210.693159][ T5406] usb 2-1: config 0 descriptor?? [ 210.740642][ T5406] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08ae [ 210.767822][ T6140] Zero length message leads to an empty skb [ 211.317123][ T5406] gspca_zc3xx: reg_w_i err -71 [ 211.355499][ T6143] kvm: pic: level sensitive irq not supported [ 211.355852][ T6143] kvm: pic: non byte read [ 211.926813][ T5406] gspca_zc3xx: Unknown sensor - set to TAS5130C [ 211.944186][ T5406] gspca_zc3xx 2-1:0.0: probe with driver gspca_zc3xx failed with error -71 [ 212.014803][ T5406] usb 2-1: USB disconnect, device number 2 [ 212.073242][ T29] audit: type=1326 audit(1773709860.048:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6157 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 212.190008][ T29] audit: type=1326 audit(1773709860.118:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6157 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 212.249916][ T6154] loop4: detected capacity change from 0 to 16 [ 212.304383][ T29] audit: type=1326 audit(1773709860.118:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6157 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 212.309066][ T6154] erofs: Unknown parameter '00000000000000000000000ÿ7T¿åòË:Q‚AÄ~‚Ðôb”B4ΉŠBÐ ÚðK¸; [ 212.309066][ T6154] wzÝvTvÜÔ0' [ 212.436961][ T29] audit: type=1326 audit(1773709860.118:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6157 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 212.545000][ T29] audit: type=1326 audit(1773709860.168:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6157 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 212.639375][ T29] audit: type=1326 audit(1773709860.168:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6157 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 212.721871][ T29] audit: type=1326 audit(1773709860.168:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6157 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 212.809534][ T6161] overlayfs: workdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection. [ 212.829760][ T29] audit: type=1326 audit(1773709860.168:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6157 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 212.935312][ T29] audit: type=1326 audit(1773709860.168:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6157 comm="syz.0.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 213.269098][ T6165] sctp: [Deprecated]: syz.0.76 (pid 6165) Use of struct sctp_assoc_value in delayed_ack socket option. [ 213.269098][ T6165] Use struct sctp_sack_info instead [ 213.364624][ T6175] 9p: Bad value for 'rfdno' [ 216.316728][ T29] kauditd_printk_skb: 1 callbacks suppressed [ 216.316799][ T29] audit: type=1326 audit(1773709864.198:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6197 comm="syz.0.86" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 216.462517][ T24] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 216.552754][ T29] audit: type=1326 audit(1773709864.288:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6197 comm="syz.0.86" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 216.749574][ T29] audit: type=1326 audit(1773709864.288:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6197 comm="syz.0.86" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 216.811173][ T24] usb 4-1: Using ep0 maxpacket: 8 [ 216.872460][ T24] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 13 [ 216.986801][ T29] audit: type=1326 audit(1773709864.288:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6197 comm="syz.0.86" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 217.041565][ T24] usb 4-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58 [ 217.064850][ T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 217.110825][ T29] audit: type=1326 audit(1773709864.328:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6197 comm="syz.0.86" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 217.116787][ T24] usb 4-1: Product: syz [ 217.208036][ T24] usb 4-1: Manufacturer: syz [ 217.209297][ T6202] loop0: detected capacity change from 0 to 128 [ 217.212818][ T24] usb 4-1: SerialNumber: syz [ 217.227070][ T29] audit: type=1326 audit(1773709864.328:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6197 comm="syz.0.86" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 217.239059][ T24] usb 4-1: config 0 descriptor?? [ 217.299950][ T29] audit: type=1326 audit(1773709864.328:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6197 comm="syz.0.86" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 217.358993][ T24] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08ae [ 217.433070][ T6206] program syz.2.88 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 217.447512][ T29] audit: type=1326 audit(1773709864.338:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6197 comm="syz.0.86" exe="/root/syz-executor" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 217.545769][ T29] audit: type=1326 audit(1773709864.338:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6197 comm="syz.0.86" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 217.973942][ T24] gspca_zc3xx: reg_w_i err -71 [ 218.586633][ T24] gspca_zc3xx: Unknown sensor - set to TAS5130C [ 218.597090][ T24] gspca_zc3xx 4-1:0.0: probe with driver gspca_zc3xx failed with error -71 [ 218.684768][ T24] usb 4-1: USB disconnect, device number 3 [ 218.859989][ T6221] netlink: 4 bytes leftover after parsing attributes in process `syz.2.95'. [ 218.903767][ T6214] loop4: detected capacity change from 0 to 8192 [ 219.181708][ T6225] loop0: detected capacity change from 0 to 512 [ 220.679224][ T6242] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 221.238118][ T6242] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 223.576972][ T24] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 223.744794][ T24] usb 3-1: Using ep0 maxpacket: 8 [ 223.851602][ T24] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 13 [ 224.017255][ T24] usb 3-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58 [ 224.056841][ T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 224.086682][ T24] usb 3-1: Product: syz [ 224.097069][ T24] usb 3-1: Manufacturer: syz [ 224.101858][ T24] usb 3-1: SerialNumber: syz [ 224.158338][ T24] usb 3-1: config 0 descriptor?? [ 224.215495][ T24] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08ae [ 224.856602][ T24] gspca_zc3xx: reg_w_i err -71 [ 225.479282][ T24] gspca_zc3xx: Unknown sensor - set to TAS5130C [ 225.490955][ T24] gspca_zc3xx 3-1:0.0: probe with driver gspca_zc3xx failed with error -71 [ 225.561955][ T24] usb 3-1: USB disconnect, device number 2 [ 226.377095][ T6282] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 226.386189][ T6282] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 229.107387][ T6311] loop2: detected capacity change from 0 to 16 [ 229.177810][ T6311] erofs (device loop2): mounted with root inode @ nid 36. [ 229.300150][ T6311] syz.2.128: attempt to access beyond end of device [ 229.300150][ T6311] loop2: rw=8912896, sector=1342177272, nr_sectors = 32 limit=16 [ 229.398951][ T6311] syz.2.128: attempt to access beyond end of device [ 229.398951][ T6311] loop2: rw=8388608, sector=1342177272, nr_sectors = 8 limit=16 [ 229.661038][ T29] audit: type=1800 audit(1773709877.638:22): pid=6311 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.128" name="file1" dev="loop2" ino=86 res=0 errno=0 [ 230.863142][ T6326] capability: warning: `syz.2.132' uses 32-bit capabilities (legacy support in use) [ 231.097647][ T6326] program syz.2.132 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 231.819513][ T29] audit: type=1326 audit(1773709879.798:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6333 comm="syz.3.138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96ab39c799 code=0x7ffc0000 [ 231.946844][ T29] audit: type=1326 audit(1773709879.838:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6333 comm="syz.3.138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96ab39c799 code=0x7ffc0000 [ 232.077222][ T29] audit: type=1326 audit(1773709879.838:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6333 comm="syz.3.138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96ab39c799 code=0x7ffc0000 [ 232.183222][ T29] audit: type=1326 audit(1773709879.858:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6333 comm="syz.3.138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=149 compat=0 ip=0x7f96ab39c799 code=0x7ffc0000 [ 232.254930][ T29] audit: type=1326 audit(1773709879.928:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6333 comm="syz.3.138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f96ab35cfce code=0x7ffc0000 [ 232.366894][ T29] audit: type=1326 audit(1773709879.958:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6333 comm="syz.3.138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f96ab35cfce code=0x7ffc0000 [ 232.461286][ T29] audit: type=1326 audit(1773709879.968:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6333 comm="syz.3.138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f96ab35cfce code=0x7ffc0000 [ 232.547202][ T29] audit: type=1326 audit(1773709879.968:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6333 comm="syz.3.138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f96ab35cfce code=0x7ffc0000 [ 232.632107][ T29] audit: type=1326 audit(1773709879.978:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6333 comm="syz.3.138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f96ab35cfce code=0x7ffc0000 [ 233.430218][ T6350] overlayfs: failed to resolve './bus': -2 [ 235.385495][ T6372] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 235.442144][ T6372] batadv_slave_0: entered promiscuous mode [ 236.670388][ T6386] syzkaller0: entered promiscuous mode [ 236.676062][ T6386] syzkaller0: entered allmulticast mode [ 239.783159][ T6408] Bluetooth: MGMT ver 1.23 [ 239.830961][ T6408] Bluetooth: hci0: invalid length 0, exp 2 for type 0 [ 241.262453][ T6423] sctp: [Deprecated]: syz.1.169 (pid 6423) Use of struct sctp_assoc_value in delayed_ack socket option. [ 241.262453][ T6423] Use struct sctp_sack_info instead [ 242.353579][ T6438] syzkaller0: entered promiscuous mode [ 242.366884][ T6438] syzkaller0: entered allmulticast mode [ 245.128265][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 245.139203][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 245.323277][ T6452] Bluetooth: hci0: invalid length 0, exp 2 for type 0 [ 246.168113][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 247.273974][ T6470] sctp: [Deprecated]: syz.3.183 (pid 6470) Use of struct sctp_assoc_value in delayed_ack socket option. [ 247.273974][ T6470] Use struct sctp_sack_info instead [ 248.479107][ T6488] overlayfs: failed to resolve './file0': -2 [ 250.416258][ T6504] capability: warning: `syz.0.187' uses deprecated v2 capabilities in a way that may be insecure [ 252.804262][ T6523] loop3: detected capacity change from 0 to 128 [ 252.892371][ T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!! [ 253.790430][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 258.133753][ T6560] syzkaller0: entered promiscuous mode [ 258.258068][ T6560] syzkaller0: entered allmulticast mode [ 259.607507][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 260.120199][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 260.867758][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 263.474911][ T6622] fuse: Bad value for 'fd' [ 263.666968][ T6624] loop1: detected capacity change from 0 to 512 [ 264.040291][ T6628] overlayfs: failed to resolve './bus': -2 [ 265.384267][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 265.391419][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 266.878557][ T6661] tap0: tun_chr_ioctl cmd 1074025677 [ 266.884543][ T6661] tap0: linktype set to 0 [ 267.413753][ T6668] overlayfs: failed to resolve './bus': -2 [ 267.936994][ T29] kauditd_printk_skb: 65 callbacks suppressed [ 267.937062][ T29] audit: type=1326 audit(1773709915.908:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6675 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 268.096950][ T29] audit: type=1326 audit(1773709915.978:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6675 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 268.168792][ T29] audit: type=1326 audit(1773709915.988:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6675 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 268.313468][ T29] audit: type=1326 audit(1773709915.998:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6675 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 268.430044][ T29] audit: type=1326 audit(1773709915.998:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6675 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 268.524439][ T29] audit: type=1326 audit(1773709916.008:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6675 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 268.559163][ T29] audit: type=1326 audit(1773709916.008:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6675 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 268.630415][ T29] audit: type=1326 audit(1773709916.028:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6675 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 268.705705][ T29] audit: type=1326 audit(1773709916.028:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6675 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 268.817086][ T29] audit: type=1326 audit(1773709916.038:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6675 comm="syz.4.252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 271.204054][ T6708] overlayfs: failed to resolve './bus': -2 [ 271.283402][ T6709] overlayfs: failed to resolve './file0': -2 [ 274.091521][ T6747] overlayfs: failed to resolve './file0': -2 [ 274.508315][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 275.729146][ T6768] netlink: 4 bytes leftover after parsing attributes in process `syz.4.284'. [ 275.837194][ T6772] netlink: 20 bytes leftover after parsing attributes in process `syz.4.284'. [ 276.553810][ T6782] overlayfs: failed to resolve './file0': -2 [ 277.618138][ T6793] loop3: detected capacity change from 0 to 128 [ 278.495005][ T6810] overlayfs: failed to resolve './file0': -2 [ 280.440577][ T29] kauditd_printk_skb: 12 callbacks suppressed [ 280.440655][ T29] audit: type=1326 audit(1773709928.418:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6832 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 280.562704][ T29] audit: type=1326 audit(1773709928.468:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6832 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 281.258029][ T6844] overlayfs: failed to resolve './file0': -2 [ 284.962673][ T6876] overlayfs: failed to resolve './file1': -2 [ 287.185715][ T6903] loop2: detected capacity change from 0 to 128 [ 287.824306][ T6912] overlayfs: failed to resolve './file1': -2 [ 290.246108][ T6937] process 'syz.3.349' launched '/dev/fd/4' with NULL argv: empty string added [ 290.994804][ T6945] overlayfs: failed to resolve './file1': -2 [ 293.066233][ T5072] Bluetooth: hci0: command 0x0406 tx timeout [ 293.073122][ T5072] Bluetooth: hci2: command 0x0406 tx timeout [ 294.161580][ T6971] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 294.242249][ T6971] overlayfs: failed to set xattr on upper [ 294.252247][ T6963] loop0: detected capacity change from 0 to 8192 [ 294.272804][ T6971] overlayfs: ...falling back to redirect_dir=nofollow. [ 294.310252][ T6971] overlayfs: ...falling back to index=off. [ 294.327832][ T6971] overlayfs: ...falling back to uuid=null. [ 298.167965][ T5781] Bluetooth: hci4: command 0x0406 tx timeout [ 298.174175][ T5781] Bluetooth: hci3: command 0x0406 tx timeout [ 298.197190][ T5777] Bluetooth: hci1: command 0x0406 tx timeout [ 299.141495][ T7032] loop3: detected capacity change from 0 to 512 [ 302.541238][ T7074] loop0: detected capacity change from 0 to 512 [ 304.552111][ T7094] loop4: detected capacity change from 0 to 512 [ 306.212260][ T7108] loop4: detected capacity change from 0 to 512 [ 307.141228][ T7121] xt_connbytes: Forcing CT accounting to be enabled [ 307.177546][ T7121] xt_CT: You must specify a L4 protocol and not use inversions on it [ 309.509702][ T7154] loop1: detected capacity change from 0 to 512 [ 311.115184][ T7172] loop2: detected capacity change from 0 to 128 [ 312.817106][ T7190] loop0: detected capacity change from 0 to 512 [ 314.255310][ T7211] loop2: detected capacity change from 0 to 2048 [ 314.428438][ T7211] loop2: p3 < > p4 < > [ 314.432856][ T7211] loop2: partition table partially beyond EOD, truncated [ 314.498421][ T7211] loop2: p3 start 4284289 is beyond EOD, truncated [ 316.937742][ T7238] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 318.938385][ T7262] netlink: 136 bytes leftover after parsing attributes in process `syz.1.469'. [ 318.969835][ T7262] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check. [ 322.530581][ T7296] netlink: 136 bytes leftover after parsing attributes in process `syz.3.481'. [ 322.559819][ T7296] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check. [ 324.173887][ T7308] tmpfs: Bad value for 'mpol' [ 324.519729][ T7310] Illegal XDP return value 4294967294 on prog (id 11) dev syz_tun, expect packet loss! [ 325.245491][ T7318] 9p: Bad value for 'wfdno' [ 326.833115][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 326.844670][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 327.397916][ T7331] loop0: detected capacity change from 0 to 512 [ 327.933307][ T7338] loop4: detected capacity change from 0 to 128 [ 328.105586][ T29] audit: type=1800 audit(1773709976.078:121): pid=7338 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.500" name="file1" dev="loop4" ino=1048627 res=0 errno=0 [ 328.980566][ T7347] 9p: Bad value for 'rfdno' [ 330.537028][ T7364] loop1: detected capacity change from 0 to 512 [ 332.550820][ T7380] 9p: Bad value for 'wfdno' [ 333.908269][ T7391] overlayfs: missing 'lowerdir' [ 335.914385][ T7428] overlayfs: missing 'lowerdir' [ 336.042733][ T7430] loop7: detected capacity change from 0 to 7 [ 336.102830][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 336.112740][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 336.136268][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 336.146591][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 336.180742][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 336.190764][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 336.206671][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 336.216595][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 336.225395][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 336.235588][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 336.246627][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 336.256723][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 336.267372][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 336.277274][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 336.289013][ T7430] ldm_validate_partition_table(): Disk read failed. [ 336.334022][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 336.344162][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 336.366579][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 336.376599][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 336.396138][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 336.406152][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 336.419695][ T7430] Dev loop7: unable to read RDB block 0 [ 336.435231][ T7430] loop7: unable to read partition table [ 336.458206][ T7430] loop7: partition table beyond EOD, truncated [ 336.490917][ T7430] loop_reread_partitions: partition scan of loop7 (úùƒå¡™‰ü¾CêjÌ–ã¢P=ý?ã}X‹ºÐ œëÜ%õ֘ȵ4FLQkÝŠ5) failed (rc=-5) [ 336.635999][ T29] audit: type=1326 audit(1773709984.608:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7434 comm="syz.4.541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 336.758840][ T29] audit: type=1326 audit(1773709984.608:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7434 comm="syz.4.541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 336.905234][ T29] audit: type=1326 audit(1773709984.608:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7434 comm="syz.4.541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 337.051088][ T29] audit: type=1326 audit(1773709984.598:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7434 comm="syz.4.541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 337.089372][ T7439] loop3: detected capacity change from 0 to 128 [ 337.184890][ T29] audit: type=1326 audit(1773709984.668:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7434 comm="syz.4.541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=68 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 337.333548][ T29] audit: type=1326 audit(1773709984.668:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7434 comm="syz.4.541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 337.436696][ T29] audit: type=1326 audit(1773709984.668:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7434 comm="syz.4.541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 337.566705][ T29] audit: type=1326 audit(1773709984.668:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7434 comm="syz.4.541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 337.687038][ T29] audit: type=1326 audit(1773709984.668:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7434 comm="syz.4.541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 337.823345][ T29] audit: type=1326 audit(1773709984.708:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7434 comm="syz.4.541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=69 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 338.067264][ T24] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 338.267030][ T24] usb 3-1: device descriptor read/64, error -71 [ 338.538709][ T24] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 338.558551][ T7457] overlayfs: missing 'lowerdir' [ 338.706824][ T24] usb 3-1: device descriptor read/64, error -71 [ 338.841863][ T24] usb usb3-port1: attempt power cycle [ 339.206976][ T24] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 339.253922][ T24] usb 3-1: device descriptor read/8, error -71 [ 339.536794][ T24] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 339.600168][ T24] usb 3-1: device descriptor read/8, error -71 [ 339.742838][ T24] usb usb3-port1: unable to enumerate USB device [ 340.553649][ T7478] loop3: detected capacity change from 0 to 128 [ 341.263169][ T7480] loop0: detected capacity change from 0 to 8192 [ 341.324431][ T7480] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 341.366170][ T7487] overlayfs: missing 'workdir' [ 342.021318][ T7496] loop2: detected capacity change from 0 to 512 [ 343.434656][ T7511] loop1: detected capacity change from 0 to 128 [ 344.949662][ T7522] overlayfs: missing 'workdir' [ 346.824626][ T7547] netlink: 36 bytes leftover after parsing attributes in process `syz.3.585'. [ 346.863487][ T7547] netlink: 12 bytes leftover after parsing attributes in process `syz.3.585'. [ 347.250680][ T7551] overlayfs: missing 'workdir' [ 348.208773][ T7560] loop3: detected capacity change from 0 to 2048 [ 349.973704][ T7560] Dev loop3: unable to read RDB block 8 [ 350.133018][ T7560] loop3: unable to read partition table [ 350.234144][ T7560] loop_reread_partitions: partition scan of loop3 () failed (rc=-5) [ 350.422163][ T7578] netlink: 'syz.0.595': attribute type 12 has an invalid length. [ 350.483411][ T7578] netlink: 148 bytes leftover after parsing attributes in process `syz.0.595'. [ 350.757447][ T7582] program syz.4.598 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 351.138895][ T7588] overlayfs: missing 'lowerdir' [ 351.562227][ T29] kauditd_printk_skb: 14 callbacks suppressed [ 351.562295][ T29] audit: type=1326 audit(1773709999.538:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7595 comm="syz.1.604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2af739c799 code=0x7ffc0000 [ 351.702277][ T29] audit: type=1326 audit(1773709999.538:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7595 comm="syz.1.604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2af739c799 code=0x7ffc0000 [ 351.866809][ T29] audit: type=1326 audit(1773709999.598:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7595 comm="syz.1.604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2af739c799 code=0x7ffc0000 [ 351.976721][ T29] audit: type=1326 audit(1773709999.628:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7595 comm="syz.1.604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7f2af739c799 code=0x7ffc0000 [ 352.747281][ T7610] netlink: 'syz.0.611': attribute type 12 has an invalid length. [ 352.795268][ T29] audit: type=1326 audit(1773709999.628:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7595 comm="syz.1.604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2af739c799 code=0x7ffc0000 [ 352.837580][ T29] audit: type=1326 audit(1773709999.628:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7595 comm="syz.1.604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2af739c799 code=0x7ffc0000 [ 352.840929][ T7610] netlink: 148 bytes leftover after parsing attributes in process `syz.0.611'. [ 352.877186][ T29] audit: type=1326 audit(1773709999.638:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7595 comm="syz.1.604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2af739c799 code=0x7ffc0000 [ 353.748553][ T7619] program syz.2.613 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 353.850774][ T29] audit: type=1326 audit(1773709999.638:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7595 comm="syz.1.604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f2af739c799 code=0x7ffc0000 [ 353.873695][ T29] audit: type=1326 audit(1773709999.638:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7595 comm="syz.1.604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f2af739c799 code=0x7ffc0000 [ 354.889100][ T7626] overlayfs: missing 'lowerdir' [ 355.018093][ T7628] loop3: detected capacity change from 0 to 512 [ 356.804739][ T7650] program syz.2.626 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 356.848032][ T7653] netlink: 'syz.3.624': attribute type 12 has an invalid length. [ 356.881700][ T7653] netlink: 148 bytes leftover after parsing attributes in process `syz.3.624'. [ 357.488235][ T7660] overlayfs: missing 'lowerdir' [ 357.552468][ T7661] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 357.637495][ T7664] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 357.677729][ T7664] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 360.985970][ T7690] program syz.0.638 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 361.458796][ T7696] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 361.458931][ T7696] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 361.642777][ T7698] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 361.642914][ T7698] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 361.989146][ T7702] overlayfs: missing 'lowerdir' [ 364.912243][ T7730] loop2: detected capacity change from 0 to 128 [ 365.192499][ T7733] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 365.282101][ T7733] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 366.247944][ T7742] overlayfs: missing 'lowerdir' [ 366.521667][ T29] audit: type=1326 audit(1773710014.478:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7743 comm="syz.0.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 366.773136][ T29] audit: type=1326 audit(1773710014.488:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7743 comm="syz.0.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 367.047769][ T29] audit: type=1326 audit(1773710014.588:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7743 comm="syz.0.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 367.239955][ T29] audit: type=1326 audit(1773710014.598:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7743 comm="syz.0.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 367.496849][ T29] audit: type=1326 audit(1773710014.618:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7743 comm="syz.0.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 367.774496][ T29] audit: type=1326 audit(1773710014.638:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7743 comm="syz.0.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 367.949158][ T29] audit: type=1326 audit(1773710014.638:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7743 comm="syz.0.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 367.972446][ T29] audit: type=1326 audit(1773710014.638:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7743 comm="syz.0.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 368.000447][ T29] audit: type=1326 audit(1773710014.678:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7743 comm="syz.0.658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 368.312250][ T7759] loop1: detected capacity change from 0 to 128 [ 368.434320][ T7760] overlayfs: failed to resolve './file0': -2 [ 369.215076][ T7768] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 369.289075][ T7768] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 370.049125][ T7775] overlayfs: missing 'lowerdir' [ 370.404500][ T29] audit: type=1326 audit(1773710018.378:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7778 comm="syz.4.672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 375.181030][ T7818] overlayfs: missing 'lowerdir' [ 375.266199][ T29] kauditd_printk_skb: 3 callbacks suppressed [ 375.266270][ T29] audit: type=1326 audit(1773710023.238:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7819 comm="syz.4.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 375.379718][ T29] audit: type=1326 audit(1773710023.238:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7819 comm="syz.4.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 375.581273][ T29] audit: type=1326 audit(1773710023.418:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7819 comm="syz.4.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 375.744210][ T29] audit: type=1326 audit(1773710023.428:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7819 comm="syz.4.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 375.960315][ T29] audit: type=1326 audit(1773710023.428:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7819 comm="syz.4.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 378.909895][ T7847] loop2: detected capacity change from 0 to 128 [ 379.330216][ T7854] netlink: 4 bytes leftover after parsing attributes in process `syz.3.696'. [ 379.758549][ T7858] overlayfs: missing 'lowerdir' [ 380.298052][ T29] audit: type=1326 audit(1773710028.258:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7861 comm="syz.0.700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 380.333887][ T29] audit: type=1326 audit(1773710028.258:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7861 comm="syz.0.700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 380.405009][ T29] audit: type=1326 audit(1773710028.278:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7861 comm="syz.0.700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 380.703287][ T29] audit: type=1326 audit(1773710028.278:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7861 comm="syz.0.700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 380.827953][ T29] audit: type=1326 audit(1773710028.278:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7861 comm="syz.0.700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 381.004570][ T29] audit: type=1326 audit(1773710028.308:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7861 comm="syz.0.700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 381.133453][ T29] audit: type=1326 audit(1773710028.308:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7861 comm="syz.0.700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 381.235736][ T29] audit: type=1326 audit(1773710028.308:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7861 comm="syz.0.700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 381.390993][ T29] audit: type=1326 audit(1773710028.338:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7861 comm="syz.0.700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 381.504742][ T29] audit: type=1326 audit(1773710028.338:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7861 comm="syz.0.700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 383.782342][ T7897] overlayfs: missing 'lowerdir' [ 386.778569][ T7925] overlayfs: missing 'workdir' [ 387.477614][ T7933] netlink: 'syz.3.725': attribute type 12 has an invalid length. [ 387.525160][ T7933] netlink: 148 bytes leftover after parsing attributes in process `syz.3.725'. [ 388.270641][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 388.287494][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 389.345925][ T7939] bridge0: port 2(bridge_slave_1) entered disabled state [ 389.355681][ T7939] bridge0: port 1(bridge_slave_0) entered disabled state [ 390.008144][ T7943] loop3: detected capacity change from 0 to 8192 [ 390.518061][ T7939] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 390.600588][ T7939] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 391.614585][ T7965] overlayfs: missing 'workdir' [ 391.934646][ T1034] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 391.963858][ T1034] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 392.026863][ T1034] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 392.046950][ T1034] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 393.664946][ T7989] netlink: 'syz.3.745': attribute type 12 has an invalid length. [ 393.747234][ T7989] netlink: 148 bytes leftover after parsing attributes in process `syz.3.745'. [ 395.287478][ T8000] overlayfs: missing 'workdir' [ 395.677421][ T8008] netlink: 'syz.4.753': attribute type 9 has an invalid length. [ 397.388723][ T8019] loop2: detected capacity change from 0 to 8192 [ 398.559847][ T8040] overlayfs: missing 'lowerdir' [ 400.019687][ T8050] program syz.0.766 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 404.763327][ T8069] overlayfs: missing 'lowerdir' [ 405.608845][ T8080] netlink: 44 bytes leftover after parsing attributes in process `syz.4.782'. [ 406.509183][ T8086] program syz.1.783 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 408.217374][ T8100] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 408.253851][ T8100] overlayfs: failed to set xattr on upper [ 408.326912][ T8100] overlayfs: ...falling back to redirect_dir=nofollow. [ 408.396268][ T8100] overlayfs: ...falling back to index=off. [ 408.407170][ T8100] overlayfs: ...falling back to uuid=null. [ 408.557633][ T8107] overlayfs: missing 'lowerdir' [ 409.009113][ T8112] netlink: 44 bytes leftover after parsing attributes in process `syz.4.794'. [ 409.704599][ T8118] program syz.1.796 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 410.428812][ T8123] loop2: detected capacity change from 0 to 128 [ 413.033225][ T8144] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 413.136950][ T8144] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 414.016216][ T8150] netlink: 44 bytes leftover after parsing attributes in process `syz.2.807'. [ 414.581616][ T8153] program syz.3.809 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 417.300083][ T8184] netlink: 8 bytes leftover after parsing attributes in process `syz.2.822'. [ 417.366887][ T8184] netlink: 12 bytes leftover after parsing attributes in process `syz.2.822'. [ 418.151039][ T8202] loop4: detected capacity change from 0 to 16 [ 418.206405][ T8202] erofs (device loop4): mounted with root inode @ nid 36. [ 418.299328][ T29] kauditd_printk_skb: 16 callbacks suppressed [ 418.299404][ T29] audit: type=1800 audit(1773710066.258:199): pid=8202 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.830" name="file1" dev="loop4" ino=86 res=0 errno=0 [ 418.564532][ T8209] loop0: detected capacity change from 0 to 256 [ 418.596874][ T8209] FAT-fs (loop0): Directory bread(block 1285) failed [ 418.655573][ T8209] FAT-fs (loop0): Directory bread(block 1286) failed [ 418.710990][ T8209] FAT-fs (loop0): Directory bread(block 1287) failed [ 418.756892][ T8209] FAT-fs (loop0): Directory bread(block 1288) failed [ 418.817491][ T8209] FAT-fs (loop0): Directory bread(block 1285) failed [ 418.826698][ T8209] FAT-fs (loop0): Directory bread(block 1286) failed [ 418.864608][ T8209] FAT-fs (loop0): Directory bread(block 1287) failed [ 418.896899][ T8209] FAT-fs (loop0): Directory bread(block 1288) failed [ 418.928255][ T8214] FAT-fs (loop0): Directory bread(block 1285) failed [ 418.947324][ T8213] netlink: 20 bytes leftover after parsing attributes in process `syz.4.834'. [ 418.994329][ T8214] FAT-fs (loop0): Directory bread(block 1286) failed [ 420.066775][ T8227] fuse: Bad value for 'fd' [ 422.788438][ T8235] bridge0: port 2(bridge_slave_1) entered disabled state [ 422.798326][ T8235] bridge0: port 1(bridge_slave_0) entered disabled state [ 423.003014][ T8261] netlink: 20 bytes leftover after parsing attributes in process `syz.3.848'. [ 423.470146][ T8235] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 423.494897][ T8266] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 423.541057][ T8235] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 424.228984][ T8255] erspan0: entered promiscuous mode [ 424.264924][ T8255] erspan0: left promiscuous mode [ 424.416174][ T1034] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 424.456311][ T1034] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 424.492169][ T1034] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 424.523080][ T1034] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 426.146933][ T8302] fuse: Bad value for 'fd' [ 428.488218][ T8314] loop0: detected capacity change from 0 to 512 [ 430.298405][ T8342] fuse: Invalid rootmode [ 432.915071][ T8359] netlink: 76 bytes leftover after parsing attributes in process `syz.1.879'. [ 433.016688][ T8355] netlink: 'syz.1.879': attribute type 4 has an invalid length. [ 433.016765][ T8355] netlink: 4 bytes leftover after parsing attributes in process `syz.1.879'. [ 434.365557][ T8379] fuse: Invalid rootmode [ 435.989485][ T8384] loop4: detected capacity change from 0 to 736 [ 438.290015][ T8413] loop4: detected capacity change from 0 to 16 [ 438.342225][ T8413] erofs (device loop4): mounted with root inode @ nid 36. [ 438.428537][ T29] audit: type=1800 audit(1773710086.408:200): pid=8413 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.901" name="file1" dev="loop4" ino=86 res=0 errno=0 [ 438.822054][ T8419] fuse: Invalid rootmode [ 440.021506][ T8425] loop0: detected capacity change from 0 to 2048 [ 440.175818][ T8425] loop0: p1 p2 p3 < > p4 < p5 p6 > [ 440.253899][ T8425] loop0: p1 start 65536 is beyond EOD, truncated [ 440.313494][ T8425] loop0: p2 start 4294967295 is beyond EOD, truncated [ 440.518460][ T8425] loop0: p5 start 65536 is beyond EOD, truncated [ 440.573235][ T8425] loop0: p6 start 4294967295 is beyond EOD, truncated [ 441.222429][ T5976] udevd[5976]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory [ 441.251806][ T6213] udevd[6213]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 441.769920][ T6213] udevd[6213]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 441.779048][ T5976] udevd[5976]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory [ 441.965479][ T8451] loop0: detected capacity change from 0 to 16 [ 441.992252][ T8454] fuse: Bad value for 'fd' [ 442.024103][ T8451] erofs (device loop0): mounted with root inode @ nid 36. [ 442.158456][ T29] audit: type=1800 audit(1773710090.138:201): pid=8451 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.916" name="file1" dev="loop0" ino=86 res=0 errno=0 [ 443.344820][ T8473] PKCS8: Unsupported PKCS#8 version [ 443.677285][ T8479] fuse: Bad value for 'rootmode' [ 446.778819][ T8511] fuse: Bad value for 'fd' [ 448.704755][ T8529] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 449.244726][ T8535] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 449.252415][ T8535] overlayfs: failed to set xattr on upper [ 449.266957][ T8535] overlayfs: ...falling back to redirect_dir=nofollow. [ 449.296759][ T8535] overlayfs: ...falling back to index=off. [ 449.303062][ T8535] overlayfs: ...falling back to uuid=null. [ 449.723455][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 449.730283][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 450.612019][ T8561] netlink: 72 bytes leftover after parsing attributes in process `syz.3.942'. [ 451.386880][ T8259] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 451.607192][ T8259] usb 3-1: Using ep0 maxpacket: 8 [ 451.738560][ T8259] usb 3-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04 [ 451.800188][ T8259] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 451.831727][ T8259] usb 3-1: Product: syz [ 452.574992][ T8259] usb 3-1: Manufacturer: syz [ 452.581297][ T8259] usb 3-1: SerialNumber: syz [ 453.438083][ T8259] usb 3-1: config 0 descriptor?? [ 453.700345][ T8259] usb 3-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state [ 453.788530][ T8259] dvb_usb_rtl28xxu 3-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71 [ 453.943517][ T8259] usb 3-1: USB disconnect, device number 7 [ 456.104626][ T8600] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3) [ 456.111385][ T8600] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 456.147564][ T8600] vhci_hcd vhci_hcd.0: Device attached [ 456.191671][ T8603] vhci_hcd: connection closed [ 456.194714][ T57] vhci_hcd vhci_hcd.4: stop threads [ 456.240645][ T57] vhci_hcd vhci_hcd.4: release socket [ 456.246253][ T57] vhci_hcd vhci_hcd.4: disconnect device [ 458.109329][ T8625] "syz.3.961" (8625) uses obsolete ecb(arc4) skcipher [ 461.587904][ T5786] Bluetooth: hci0: unexpected event for opcode 0x0c7a [ 462.558253][ T8679] netlink: 4 bytes leftover after parsing attributes in process `syz.3.975'. [ 466.534094][ T8714] random: crng reseeded on system resumption [ 466.940383][ T8714] syz.2.989 (8714) used greatest stack depth: 2392 bytes left [ 469.786746][ T8762] fuse: Unknown parameter 'use00000000000000000000' [ 470.579135][ T8749] loop1: detected capacity change from 0 to 8192 [ 474.504514][ T8805] fuse: Unknown parameter 'user_i00000000000000000000' [ 476.133971][ T8799] loop1: detected capacity change from 0 to 8192 [ 477.363046][ T5786] Bluetooth: hci4: unexpected Set CIG Parameters response data [ 477.377136][ T5786] Bluetooth: hci4: unexpected event for opcode 0x2062 [ 479.870280][ T8841] fuse: Unknown parameter 'user_i00000000000000000000' [ 482.084083][ T8847] loop0: detected capacity change from 0 to 8192 [ 483.229229][ T8864] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 483.229229][ T8864] The task syz.1.1043 (8864) triggered the difference, watch for misbehavior. [ 484.579348][ T8883] fuse: Unknown parameter 'user_i00000000000000000000' [ 487.377968][ T8899] warning: `syz.3.1056' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 489.507121][ T8921] tc action pedit 'at' offset 7 out of bounds [ 490.314245][ T8932] fuse: Unknown parameter 'user_id00000000000000000000' [ 493.626835][ T8958] syz.4.1075 uses obsolete (PF_INET,SOCK_PACKET) [ 493.729124][ T8956] PF_CAN: dropped non conform CAN skbuff: dev type 65534, len 64993 [ 495.069831][ T8976] fuse: Unknown parameter 'user_id00000000000000000000' [ 498.685109][ T9018] fuse: Bad value for 'fd' [ 498.765978][ T5786] Bluetooth: hci0: Unknown advertising packet type: 0x30 [ 498.766140][ T5786] Bluetooth: hci0: Malformed LE Event: 0x0d [ 499.775660][ T9034] netlink: 'syz.0.1100': attribute type 12 has an invalid length. [ 499.775742][ T9034] netlink: 'syz.0.1100': attribute type 10 has an invalid length. [ 500.152035][ T9038] syzkaller0: entered promiscuous mode [ 500.152129][ T9038] syzkaller0: entered allmulticast mode [ 500.279793][ T9040] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1103'. [ 501.130205][ T9056] pim6reg: entered allmulticast mode [ 501.204074][ T9056] pim6reg: left allmulticast mode [ 501.415007][ T5786] Bluetooth: hci2: Unknown advertising packet type: 0x30 [ 501.415153][ T5786] Bluetooth: hci2: Malformed LE Event: 0x0d [ 502.207295][ T9078] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1115'. [ 504.536235][ T5786] Bluetooth: hci1: Unknown advertising packet type: 0x30 [ 504.536382][ T5786] Bluetooth: hci1: Malformed LE Event: 0x0d [ 505.286336][ T9125] netlink: 'syz.1.1131': attribute type 1 has an invalid length. [ 505.646829][ T9125] 8021q: adding VLAN 0 to HW filter on device bond1 [ 505.667028][ T5786] Bluetooth: hci0: unexpected event for opcode 0x0c47 [ 505.697503][ T8250] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 505.866945][ T8250] usb 4-1: Using ep0 maxpacket: 16 [ 505.872890][ T9131] bond1: (slave ip6erspan0): making interface the new active one [ 505.903911][ T8250] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 129, using maximum allowed: 30 [ 505.942714][ T9131] bond1: (slave ip6erspan0): Enslaving as an active interface with an up link [ 505.953368][ T8250] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 505.980834][ T8250] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 506.000154][ T8250] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 129 [ 506.024805][ T8250] usb 4-1: New USB device found, idVendor=0458, idProduct=5013, bcdDevice= 0.00 [ 506.035552][ T8250] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 506.114775][ T8250] usb 4-1: config 0 descriptor?? [ 506.313188][ T9142] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 506.351705][ T9142] block device autoloading is deprecated and will be removed. [ 506.749541][ T8250] input: HID 0458:5013 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:0458:5013.0001/input/input5 [ 506.795900][ T8250] input: HID 0458:5013 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:0458:5013.0001/input/input6 [ 506.949876][ T8250] kye 0003:0458:5013.0001: input,hiddev0,hidraw0: USB HID vff.fa Device [HID 0458:5013] on usb-dummy_hcd.3-1/input0 [ 506.992752][ T8250] usb 4-1: USB disconnect, device number 4 [ 508.032250][ T9156] fido_id[9156]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory [ 508.121382][ T8239] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 508.329389][ T8239] usb 2-1: config 1 interface 0 altsetting 7 endpoint 0x81 has an invalid bInterval 170, changing to 11 [ 508.329569][ T8239] usb 2-1: config 1 interface 0 altsetting 7 bulk endpoint 0x82 has invalid maxpacket 16 [ 508.329715][ T8239] usb 2-1: config 1 interface 0 altsetting 7 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 508.329852][ T8239] usb 2-1: config 1 interface 0 has no altsetting 0 [ 508.375552][ T8239] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 508.375689][ T8239] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 508.375806][ T8239] usb 2-1: Product: syz [ 508.375899][ T8239] usb 2-1: Manufacturer: syz [ 508.375990][ T8239] usb 2-1: SerialNumber: syz [ 508.386619][ T9162] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 508.387231][ T9162] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 508.664988][ T5786] Bluetooth: hci4: Unknown advertising packet type: 0x30 [ 508.665090][ T5786] Bluetooth: hci4: adv larger than maximum supported [ 508.665163][ T5786] Bluetooth: hci4: Malformed LE Event: 0x0d [ 508.705407][ T8239] cdc_ether 2-1:1.0: probe with driver cdc_ether failed with error -22 [ 508.775853][ T8239] usb 2-1: USB disconnect, device number 3 [ 511.169121][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 511.186873][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 511.263497][ T9206] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1160'. [ 518.435943][ T9323] binder: 9322:9323 ioctl 4008ae93 0 returned -22 [ 518.457412][ T9323] binder: 9322:9323 ioctl c0306201 200000000040 returned -22 [ 518.487547][ T9323] binder: 9322:9323 ioctl c0306201 200000000640 returned -22 [ 519.140331][ T9336] pim6reg: entered allmulticast mode [ 519.152248][ T9331] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue [ 519.233090][ T9331] syzkaller0: entered promiscuous mode [ 519.242564][ T9331] syzkaller0: entered allmulticast mode [ 519.259442][ T9329] pim6reg: left allmulticast mode [ 520.125149][ T9350] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1210'. [ 520.145089][ T8242] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 520.315902][ T8242] usb 3-1: config 1 interface 0 altsetting 7 endpoint 0x81 has an invalid bInterval 170, changing to 11 [ 520.357234][ T8242] usb 3-1: config 1 interface 0 altsetting 7 bulk endpoint 0x82 has invalid maxpacket 16 [ 520.400763][ T8242] usb 3-1: config 1 interface 0 altsetting 7 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 520.445006][ T8242] usb 3-1: config 1 interface 0 has no altsetting 0 [ 520.476883][ T8242] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 520.511228][ T8242] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 520.574155][ T9357] fuse: Bad value for 'fd' [ 520.888644][ T8242] usb 3-1: Product: syz [ 520.981474][ T8242] usb 3-1: Manufacturer: syz [ 521.081785][ T8242] usb 3-1: SerialNumber: syz [ 521.389274][ T9347] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 521.443262][ T9347] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 521.791892][ T8242] cdc_ether 3-1:1.0: probe with driver cdc_ether failed with error -22 [ 521.801480][ T5786] Bluetooth: hci2: Unknown advertising packet type: 0x30 [ 521.801607][ T5786] Bluetooth: hci2: adv larger than maximum supported [ 521.809103][ T5786] Bluetooth: hci2: Malformed LE Event: 0x0d [ 521.967872][ T8242] usb 3-1: USB disconnect, device number 8 [ 522.559104][ T9366] binder: 9365:9366 ioctl c0306201 200000000040 returned -14 [ 523.135366][ T9374] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue [ 523.256987][ T9374] syzkaller0: entered promiscuous mode [ 523.290032][ T9374] syzkaller0: entered allmulticast mode [ 523.383076][ T9382] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1224'. [ 523.715423][ T9386] fuseblk: Bad value for 'fd' [ 523.937384][ T9388] fuse: Bad value for 'group_id' [ 523.978322][ T9388] fuse: Bad value for 'group_id' [ 524.504188][ T9404] fuse: Unknown parameter '0x0000000000000006' [ 525.339131][ T9405] binder: 9402:9405 ioctl c0306201 200000000040 returned -22 [ 525.370203][ T8250] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 525.394671][ T9405] binder: 9402:9405 ioctl c0306201 200000000640 returned -22 [ 526.175156][ T9413] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1233'. [ 526.392339][ T8250] usb 3-1: config 1 interface 0 altsetting 7 endpoint 0x81 has an invalid bInterval 170, changing to 11 [ 526.404454][ T8250] usb 3-1: config 1 interface 0 altsetting 7 bulk endpoint 0x82 has invalid maxpacket 16 [ 526.415205][ T8250] usb 3-1: config 1 interface 0 altsetting 7 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 526.428443][ T8250] usb 3-1: config 1 interface 0 has no altsetting 0 [ 526.514490][ T8250] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 526.524477][ T8250] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 526.552961][ T8250] usb 3-1: Product: syz [ 526.557597][ T8250] usb 3-1: Manufacturer: syz [ 526.562363][ T8250] usb 3-1: SerialNumber: syz [ 526.730228][ T9396] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 526.739815][ T9396] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 527.019984][ T5786] Bluetooth: hci2: Unknown advertising packet type: 0x30 [ 527.020110][ T5786] Bluetooth: hci2: adv larger than maximum supported [ 527.028456][ T5786] Bluetooth: hci2: Malformed LE Event: 0x0d [ 527.042086][ T9422] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1237'. [ 527.074347][ T8250] cdc_ether 3-1:1.0: probe with driver cdc_ether failed with error -22 [ 527.209652][ T8250] usb 3-1: USB disconnect, device number 9 [ 527.334005][ T9424] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue [ 527.423884][ T9424] syzkaller0: entered promiscuous mode [ 527.444302][ T9424] syzkaller0: entered allmulticast mode [ 527.539364][ T9433] fuse: Bad value for 'group_id' [ 527.563660][ T9433] fuse: Bad value for 'group_id' [ 528.050497][ T9441] pim6reg: entered allmulticast mode [ 530.788192][ T9453] fuse: Unknown parameter '0x0000000000000006' [ 531.291422][ T9464] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1249'. [ 531.311768][ T9461] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1250'. [ 532.921411][ T9475] fuse: Bad value for 'group_id' [ 532.966342][ T9475] fuse: Bad value for 'group_id' [ 533.913637][ T9497] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1262'. [ 534.293314][ T9502] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1264'. [ 534.444948][ T9507] fuse: Unknown parameter '0x0000000000000006' [ 537.304120][ T9533] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1276'. [ 537.804298][ T9540] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1280'. [ 537.832539][ T57] Bluetooth: hci5: Frame reassembly failed (-84) [ 537.841645][ T9541] Bluetooth: hci5: Frame reassembly failed (-84) [ 538.015002][ T9529] loop1: detected capacity change from 0 to 8192 [ 539.547708][ T9567] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1289'. [ 539.854500][ T5786] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 539.861201][ T5072] Bluetooth: hci5: command 0x1003 tx timeout [ 543.008419][ T9603] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1302'. [ 546.416741][ T9647] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1319'. [ 549.484003][ T9676] syzkaller0: entered promiscuous mode [ 549.518663][ T9685] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1333'. [ 549.536802][ T9676] syzkaller0: entered allmulticast mode [ 550.228907][ T9692] netlink: 136 bytes leftover after parsing attributes in process `syz.3.1337'. [ 550.387220][ T9692] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check. [ 551.376866][ T9697] tap0: tun_chr_ioctl cmd 1074025677 [ 551.412584][ T9697] tap0: linktype set to 270 [ 552.607582][ T9725] netlink: 136 bytes leftover after parsing attributes in process `syz.3.1349'. [ 552.636651][ T9725] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check. [ 553.343745][ T9741] fuse: Unknown parameter 'grou00000000000000000000' [ 554.353656][ T9757] binder: 9755:9757 ioctl 4008ae93 0 returned -22 [ 554.427051][ T9757] binder: 9755:9757 ioctl c0306201 200000000040 returned -22 [ 554.467367][ T9757] binder: 9755:9757 ioctl c0306201 200000000640 returned -22 [ 554.704014][ T9766] netlink: 136 bytes leftover after parsing attributes in process `syz.3.1363'. [ 554.741969][ T9766] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check. [ 555.427496][ T9780] fuse: Unknown parameter 'grou00000000000000000000' [ 556.437389][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 556.478467][ T9795] binder: 9794:9795 ioctl 4008ae93 0 returned -22 [ 556.509098][ T9795] binder: 9794:9795 ioctl c0306201 200000000040 returned -22 [ 556.533301][ T9795] binder: 9794:9795 ioctl c0306201 200000000640 returned -22 [ 556.675987][ T9799] netlink: 136 bytes leftover after parsing attributes in process `syz.4.1376'. [ 556.725274][ T9799] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check. [ 557.296097][ T9813] fuse: Unknown parameter 'grou00000000000000000000' [ 557.507676][ T9815] binder: 9814:9815 ioctl c0306201 200000000240 returned -11 [ 557.818762][ T9825] fuse: Unknown parameter 'fd0x0000000000000006' [ 558.561203][ T9828] mmap: syz.4.1385 (9828) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 561.751335][ T29] audit: type=1326 audit(1773710209.728:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9862 comm="syz.4.1397" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x0 [ 562.251999][ T9872] fuse: Unknown parameter 'fd0x0000000000000006' [ 565.365183][ T9909] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1411'. [ 566.762825][ T9932] netlink: 'syz.1.1419': attribute type 1 has an invalid length. [ 566.951520][ T9935] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1421'. [ 567.410332][ T9944] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1424'. [ 569.035646][ T9961] fuseblk: Bad value for 'fd' [ 569.995368][ T9972] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1434'. [ 570.502016][ T9978] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1436'. [ 570.548863][ T9978] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1436'. [ 572.590332][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 572.597065][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 574.378582][T10021] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1449'. [ 574.434866][T10021] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1449'. [ 575.200905][T10028] syzkaller0: entered promiscuous mode [ 575.235830][T10028] syzkaller0: entered allmulticast mode [ 575.606893][ T8239] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 575.792940][ T8239] usb 3-1: Using ep0 maxpacket: 8 [ 575.836787][ T8239] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 13 [ 575.872145][ T8239] usb 3-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58 [ 575.917733][ T8239] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 575.925955][ T8239] usb 3-1: Product: syz [ 575.956723][ T8239] usb 3-1: Manufacturer: syz [ 575.961523][ T8239] usb 3-1: SerialNumber: syz [ 576.039378][ T8239] usb 3-1: config 0 descriptor?? [ 576.066055][ T8239] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08ae [ 576.268416][T10038] syzkaller0: entered promiscuous mode [ 576.291170][T10038] syzkaller0: entered allmulticast mode [ 576.696209][ T8239] gspca_zc3xx: reg_w_i err -71 [ 577.298745][ T8239] gspca_zc3xx: Unknown sensor - set to TAS5130C [ 577.305584][ T8239] gspca_zc3xx 3-1:0.0: probe with driver gspca_zc3xx failed with error -71 [ 577.368669][ T8239] usb 3-1: USB disconnect, device number 10 [ 577.445532][T10065] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1463'. [ 577.475179][T10065] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1463'. [ 577.978729][T10074] syzkaller0: entered promiscuous mode [ 577.984810][T10074] syzkaller0: entered allmulticast mode [ 579.366301][T10091] syzkaller0: entered promiscuous mode [ 579.938713][T10091] syzkaller0: entered allmulticast mode [ 582.619722][T10108] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1477'. [ 582.635918][T10108] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1477'. [ 582.636769][ T8258] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 582.826883][ T8258] usb 3-1: Using ep0 maxpacket: 8 [ 582.852223][ T8258] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 13 [ 582.927480][ T8258] usb 3-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58 [ 582.959313][ T8258] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 582.988078][ T8258] usb 3-1: Product: syz [ 583.000585][ T8258] usb 3-1: Manufacturer: syz [ 583.005380][ T8258] usb 3-1: SerialNumber: syz [ 583.070928][ T8258] usb 3-1: config 0 descriptor?? [ 583.142333][ T8258] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08ae [ 583.284379][T10117] syzkaller0: entered promiscuous mode [ 583.325010][T10117] syzkaller0: entered allmulticast mode [ 583.723327][ T8258] gspca_zc3xx: reg_w_i err -71 [ 584.122557][T10128] sch_tbf: burst 1 is lower than device syzkaller0 mtu (1500) ! [ 584.327069][ T8258] gspca_zc3xx: Unknown sensor - set to TAS5130C [ 584.333774][ T8258] gspca_zc3xx 3-1:0.0: probe with driver gspca_zc3xx failed with error -71 [ 584.391489][ T8258] usb 3-1: USB disconnect, device number 11 [ 585.658421][T10147] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1491'. [ 585.739678][T10148] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1491'. [ 586.037283][T10145] syzkaller0: entered promiscuous mode [ 586.055462][T10145] syzkaller0: entered allmulticast mode [ 588.677786][T10172] kvm: apic: phys broadcast and lowest prio [ 589.254419][T10182] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1504'. [ 589.380819][T10186] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1504'. [ 590.336887][T10188] syzkaller0: entered promiscuous mode [ 590.342805][T10188] syzkaller0: entered allmulticast mode [ 593.556175][T10230] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1519'. [ 593.625401][T10230] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1519'. [ 594.224495][T10237] fuse: Bad value for 'fd' [ 594.780386][T10239] syzkaller0: entered promiscuous mode [ 594.815139][T10239] syzkaller0: entered allmulticast mode [ 595.252916][T10250] kvm: pic: single mode not supported [ 596.047579][T10267] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1532'. [ 596.162656][T10267] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1532'. [ 596.455945][T10272] fuse: Bad value for 'fd' [ 597.255134][T10284] kvm: pic: single mode not supported [ 598.298018][T10307] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1550'. [ 598.379849][T10310] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1550'. [ 598.408999][T10309] fuse: Bad value for 'fd' [ 600.445089][T10352] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1567'. [ 600.449170][T10351] fuse: Bad value for 'fd' [ 600.530324][T10355] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1567'. [ 600.797126][ T29] audit: type=1326 audit(1773710248.768:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10356 comm="syz.0.1568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 600.896729][ T29] audit: type=1326 audit(1773710248.798:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10356 comm="syz.0.1568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 600.993093][ T29] audit: type=1326 audit(1773710248.798:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10356 comm="syz.0.1568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 601.085449][ T29] audit: type=1326 audit(1773710248.798:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10356 comm="syz.0.1568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 601.173357][ T29] audit: type=1326 audit(1773710248.798:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10356 comm="syz.0.1568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 601.270016][ T29] audit: type=1326 audit(1773710248.808:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10356 comm="syz.0.1568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 601.376862][ T29] audit: type=1326 audit(1773710248.808:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10356 comm="syz.0.1568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 601.377072][ T29] audit: type=1326 audit(1773710248.808:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10356 comm="syz.0.1568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 601.377269][ T29] audit: type=1326 audit(1773710248.848:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10356 comm="syz.0.1568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 601.522668][ T29] audit: type=1326 audit(1773710248.848:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10356 comm="syz.0.1568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb057d9c799 code=0x7ffc0000 [ 602.560029][T10379] syzkaller0: entered promiscuous mode [ 602.622722][T10379] syzkaller0: entered allmulticast mode [ 603.250977][T10394] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1581'. [ 603.267666][T10395] fuse: Bad value for 'fd' [ 603.337787][T10397] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1581'. [ 605.276551][ C1] hrtimer: interrupt took 223469 ns [ 605.289762][T10424] syzkaller0: entered promiscuous mode [ 605.295420][T10424] syzkaller0: entered allmulticast mode [ 605.697583][T10429] fuse: Invalid rootmode [ 606.059274][T10434] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1594'. [ 606.169153][T10437] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1594'. [ 608.838164][T10484] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1611'. [ 608.957328][T10490] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1611'. [ 609.560247][T10492] syzkaller0: entered promiscuous mode [ 609.566776][T10492] syzkaller0: entered allmulticast mode [ 610.723496][T10514] syzkaller0: entered promiscuous mode [ 610.753827][T10514] syzkaller0: entered allmulticast mode [ 611.748424][ T29] kauditd_printk_skb: 66 callbacks suppressed [ 611.748498][ T29] audit: type=1326 audit(1773710259.718:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10523 comm="syz.3.1626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96ab39c799 code=0x7ffc0000 [ 611.819245][ T29] audit: type=1326 audit(1773710259.728:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10523 comm="syz.3.1626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96ab39c799 code=0x7ffc0000 [ 611.911637][T10534] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1629'. [ 611.931400][ T29] audit: type=1326 audit(1773710259.768:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10523 comm="syz.3.1626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96ab39c799 code=0x7ffc0000 [ 611.985678][ T29] audit: type=1326 audit(1773710259.768:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10523 comm="syz.3.1626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f96ab39c799 code=0x7ffc0000 [ 612.050624][T10537] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1629'. [ 612.084489][ T29] audit: type=1326 audit(1773710259.768:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10523 comm="syz.3.1626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f96ab39c799 code=0x7ffc0000 [ 612.391805][T10539] kvm: pic: single mode not supported [ 612.437467][T10539] kvm: pic: non byte read [ 612.469197][T10539] kvm: pic: non byte read [ 612.472706][T10542] fuse: Invalid rootmode [ 612.488643][T10539] kvm: pic: non byte read [ 612.529842][T10539] kvm: pic: non byte read [ 612.597460][T10539] kvm: pic: non byte read [ 612.603026][T10539] kvm: pic: non byte read [ 612.648168][T10539] kvm: pic: single mode not supported [ 613.482522][T10553] syzkaller0: entered promiscuous mode [ 613.577768][T10553] syzkaller0: entered allmulticast mode [ 614.388656][ T29] audit: type=1326 audit(1773710262.368:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10573 comm="syz.3.1640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96ab39c799 code=0x7ffc0000 [ 614.452328][ T29] audit: type=1326 audit(1773710262.408:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10573 comm="syz.3.1640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96ab39c799 code=0x7ffc0000 [ 614.556185][ T29] audit: type=1326 audit(1773710262.408:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10573 comm="syz.3.1640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96ab39c799 code=0x7ffc0000 [ 614.702013][ T29] audit: type=1326 audit(1773710262.428:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10573 comm="syz.3.1640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96ab39c799 code=0x7ffc0000 [ 614.875917][ T29] audit: type=1326 audit(1773710262.458:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10573 comm="syz.3.1640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7f96ab39c799 code=0x7ffc0000 [ 615.268413][T10582] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1641'. [ 615.937494][T10588] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1643'. [ 616.119659][T10591] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1643'. [ 616.478887][T10595] fuse: Invalid rootmode [ 617.767891][T10614] syzkaller0: entered promiscuous mode [ 617.775087][T10614] syzkaller0: entered allmulticast mode [ 617.983902][T10615] trusted_key: encrypted_key: insufficient parameters specified [ 618.005912][T10624] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1655'. [ 618.915612][T10600] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1647'. [ 619.148567][T10629] syzkaller0: entered promiscuous mode [ 619.172522][T10629] syzkaller0: entered allmulticast mode [ 619.220384][T10631] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1658'. [ 619.290529][T10633] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1658'. [ 619.422972][T10635] fuse: Invalid rootmode [ 621.638982][T10670] fuse: Unknown parameter '00000000000000000000' [ 621.819836][T10675] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1672'. [ 621.877225][T10677] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1672'. [ 623.077348][T10696] fuse: Unknown parameter 'user00000000000000000000' [ 623.578927][T10706] fuse: Unknown parameter '00000000000000000000' [ 625.336366][T10738] kvm: pic: non byte write [ 625.825799][T10745] fuse: Unknown parameter '00000000000000000000' [ 626.392500][T10754] binder: BINDER_SET_CONTEXT_MGR already set [ 626.423077][T10754] binder: 10752:10754 ioctl 4018620d 200000000040 returned -16 [ 626.498554][T10754] binder: 10752:10754 ioctl c0306201 200000000240 returned -11 [ 628.384867][T10787] loop1: detected capacity change from 0 to 8192 [ 628.798092][T10793] binder: 10792:10793 ioctl c0306201 200000000240 returned -11 [ 629.044448][T10795] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1717'. [ 631.238286][T10824] loop0: detected capacity change from 0 to 8192 [ 631.882536][T10839] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1732'. [ 634.046974][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 634.054399][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 635.301355][T10892] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1746'. [ 638.128171][T10944] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1763'. [ 638.191172][T10947] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1764'. [ 638.521724][T10940] loop3: detected capacity change from 0 to 8192 [ 640.578214][T10982] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1776'. [ 640.834255][T10984] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1777'. [ 641.742492][T10996] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue [ 641.861665][T10996] syzkaller0: entered promiscuous mode [ 641.897412][T10996] syzkaller0: entered allmulticast mode [ 643.814028][T11017] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1790'. [ 643.857041][T11020] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1789'. [ 644.310149][T11025] syzkaller0: entered promiscuous mode [ 644.361118][T11025] syzkaller0: entered allmulticast mode [ 645.982302][T11057] binder: 11054:11057 ioctl 4008ae93 0 returned -22 [ 646.055562][T11057] binder: 11054:11057 ioctl c0306201 200000000640 returned -22 [ 646.251308][T11059] binder: BINDER_SET_CONTEXT_MGR already set [ 646.269777][T11059] binder: 11058:11059 ioctl 4018620d 200000000040 returned -16 [ 646.317736][T11059] binder: 11058:11059 ioctl c0306201 200000000240 returned -11 [ 648.273905][T11096] binder: 11095:11096 ioctl 4008ae93 0 returned -22 [ 648.281776][T11090] kvm: emulating exchange as write [ 648.309935][T11096] binder: 11095:11096 ioctl c0306201 200000000640 returned -22 [ 650.442604][T11129] binder: 11127:11129 ioctl 4008ae93 0 returned -22 [ 650.493066][T11129] binder: 11127:11129 ioctl c0306201 200000000640 returned -22 [ 652.455517][T11164] kvm: pic: non byte write [ 661.695982][ T5786] Bluetooth: hci3: ACL packet for unknown connection handle 0 [ 667.846050][T11374] syzkaller0: entered promiscuous mode [ 667.892658][T11374] syzkaller0: entered allmulticast mode [ 668.235551][T11379] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1915'. [ 668.768086][T11386] binder: 11385:11386 ioctl c0306201 200000000240 returned -11 [ 670.288457][T11410] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1928'. [ 670.328252][T11407] kvm: pic: level sensitive irq not supported [ 670.338590][T11407] kvm: pic: level sensitive irq not supported [ 670.351961][T11407] kvm: pic: non byte write [ 670.363350][T11407] kvm: pic: non byte write [ 671.442227][T11423] fuse: Bad value for 'fd' [ 673.166397][T11455] syz.4.1945 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 673.462759][T11457] fuse: Bad value for 'fd' [ 675.367501][T11474] fuse: Unknown parameter '0x0000000000000005' [ 676.131625][T11491] fuse: Bad value for 'fd' [ 676.492975][ T29] kauditd_printk_skb: 4 callbacks suppressed [ 676.493045][ T29] audit: type=1326 audit(1773710324.468:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11493 comm="syz.2.1962" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0df419c799 code=0x0 [ 677.842093][T11509] fuse: Unknown parameter 'group_i00000000000000000000' [ 677.852581][T11511] fuse: Unknown parameter '0x0000000000000005' [ 678.384544][T11517] fuse: Bad value for 'fd' [ 678.872950][T11525] binder: 11524:11525 ioctl c0306201 200000000240 returned -11 [ 679.431333][T11540] fuse: Unknown parameter '00000000000000000000003' [ 679.704451][T11545] fuse: Unknown parameter '0x0000000000000005' [ 680.779119][T11560] fuse: Bad value for 'fd' [ 681.614386][T11572] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 686.587257][ T8239] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 686.762785][ T8239] usb 1-1: config 1 interface 0 altsetting 7 endpoint 0x81 has an invalid bInterval 170, changing to 11 [ 686.816827][ T8239] usb 1-1: config 1 interface 0 altsetting 7 bulk endpoint 0x82 has invalid maxpacket 16 [ 686.835236][ T8239] usb 1-1: config 1 interface 0 altsetting 7 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 686.850045][ T8239] usb 1-1: config 1 interface 0 has no altsetting 0 [ 686.921431][ T8239] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 686.939385][ T8239] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 686.963873][ T8239] usb 1-1: Product: syz [ 686.977593][ T8239] usb 1-1: Manufacturer: syz [ 686.982418][ T8239] usb 1-1: SerialNumber: syz [ 687.021664][T11627] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 687.057524][T11627] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 687.360034][T11640] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 687.366704][ T8239] cdc_ether 1-1:1.0: probe with driver cdc_ether failed with error -22 [ 687.443939][ T8239] usb 1-1: USB disconnect, device number 2 [ 687.472608][ T5976] udevd[5976]: setting mode of /dev/bus/usb/001/002 to 020664 failed: No such file or directory [ 687.512005][ T5976] udevd[5976]: setting owner of /dev/bus/usb/001/002 to uid=0, gid=0 failed: No such file or directory [ 688.095083][T11649] netlink: 136 bytes leftover after parsing attributes in process `syz.4.2021'. [ 688.176149][T11649] A link change request failed with some changes committed already. Interface ip_vti0 may have been left with an inconsistent configuration, please check. [ 690.633363][T11678] kvm: apic: phys broadcast and lowest prio [ 690.661124][ T8258] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 690.855721][ T8258] usb 1-1: config 1 interface 0 altsetting 7 endpoint 0x81 has an invalid bInterval 170, changing to 11 [ 690.893055][ T8258] usb 1-1: config 1 interface 0 altsetting 7 bulk endpoint 0x82 has invalid maxpacket 16 [ 690.927158][ T8258] usb 1-1: config 1 interface 0 altsetting 7 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 690.957280][ T8258] usb 1-1: config 1 interface 0 has no altsetting 0 [ 690.994972][ T8258] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 691.036256][ T8258] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 691.044635][ T8258] usb 1-1: Product: syz [ 691.066840][ T8258] usb 1-1: Manufacturer: syz [ 691.077615][ T8258] usb 1-1: SerialNumber: syz [ 691.107607][T11674] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 691.128200][T11674] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 691.409617][ T8258] cdc_ether 1-1:1.0: probe with driver cdc_ether failed with error -22 [ 691.467824][ T8258] usb 1-1: USB disconnect, device number 3 [ 692.982827][T11702] syzkaller0: entered promiscuous mode [ 692.989172][T11702] syzkaller0: entered allmulticast mode [ 693.178338][ T29] audit: type=1326 audit(1773710341.148:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11712 comm="syz.4.2046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 693.244966][T11710] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 693.315981][ T29] audit: type=1326 audit(1773710341.158:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11712 comm="syz.4.2046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 693.384682][ T29] audit: type=1326 audit(1773710341.158:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11712 comm="syz.4.2046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=305 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 693.413694][ T29] audit: type=1326 audit(1773710341.168:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11712 comm="syz.4.2046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 693.441165][ T29] audit: type=1326 audit(1773710341.168:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11712 comm="syz.4.2046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 693.536874][ T29] audit: type=1326 audit(1773710341.158:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11712 comm="syz.4.2046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 693.626975][ T29] audit: type=1326 audit(1773710341.168:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11712 comm="syz.4.2046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 693.685145][ T29] audit: type=1326 audit(1773710341.168:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11712 comm="syz.4.2046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f2eda59c799 code=0x7ffc0000 [ 694.697337][ T8259] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 694.871253][ T8259] usb 3-1: config 1 interface 0 altsetting 7 endpoint 0x81 has an invalid bInterval 170, changing to 11 [ 694.914781][ T8259] usb 3-1: config 1 interface 0 altsetting 7 bulk endpoint 0x82 has invalid maxpacket 16 [ 694.946002][ T8259] usb 3-1: config 1 interface 0 altsetting 7 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 694.969682][ T8259] usb 3-1: config 1 interface 0 has no altsetting 0 [ 695.016910][ T8259] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 695.026194][ T8259] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 695.051718][ T8259] usb 3-1: Product: syz [ 695.075715][ T8259] usb 3-1: Manufacturer: syz [ 695.082784][ T8259] usb 3-1: SerialNumber: syz [ 695.118700][T11731] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 695.157200][T11731] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 695.443563][ T8259] cdc_ether 3-1:1.0: probe with driver cdc_ether failed with error -22 [ 695.489371][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 695.506787][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 695.520492][ T8259] usb 3-1: USB disconnect, device number 12 [ 697.589068][ T29] audit: type=1326 audit(1773710345.558:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11756 comm="syz.2.2063" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0df419c799 code=0x7fc00000 [ 701.869143][T11806] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2080'. [ 702.639985][T11816] binder: BINDER_SET_CONTEXT_MGR already set [ 702.651718][T11816] binder: 11815:11816 ioctl 4018620d 200000000040 returned -16 [ 702.667752][T11816] binder: 11815:11816 ioctl c0306201 200000000240 returned -11 [ 703.449066][T11831] netlink: 1004 bytes leftover after parsing attributes in process `syz.2.2091'. [ 704.507687][T11849] binder: 11847:11849 ioctl c0306201 0 returned -14 [ 704.574687][T11849] binder: BINDER_SET_CONTEXT_MGR already set [ 704.597051][T11849] binder: 11847:11849 ioctl 4018620d 200000000040 returned -16 [ 704.650090][T11849] binder: 11847:11849 ioctl c0306201 200000000240 returned -11 [ 704.879100][T11854] syzkaller0: entered promiscuous mode [ 704.895742][T11854] syzkaller0: entered allmulticast mode [ 706.617176][T11883] binder: 11882:11883 ioctl c0306201 0 returned -14 [ 706.665022][T11883] binder: 11882:11883 ioctl c0306201 200000000240 returned -11 [ 707.553878][T11892] syzkaller0: entered promiscuous mode [ 707.570528][T11892] syzkaller0: entered allmulticast mode [ 711.776554][T11943] syzkaller0: entered promiscuous mode [ 711.800474][T11943] syzkaller0: entered allmulticast mode [ 711.822639][T11947] vlan0: entered allmulticast mode [ 711.837162][T11947] veth0_vlan: entered allmulticast mode [ 714.693109][T11979] syzkaller0: entered promiscuous mode [ 714.693748][ T29] audit: type=1326 audit(1773710362.668:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.4.2148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7fc00000 [ 714.699807][T11979] syzkaller0: entered allmulticast mode [ 714.796656][ T29] audit: type=1326 audit(1773710362.668:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.4.2148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=323 compat=0 ip=0x7f2eda59c799 code=0x7fc00000 [ 714.893679][ T29] audit: type=1326 audit(1773710362.668:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.4.2148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7fc00000 [ 714.976909][ T29] audit: type=1326 audit(1773710362.668:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.4.2148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7fc00000 [ 715.060119][ T29] audit: type=1326 audit(1773710362.668:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.4.2148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7fc00000 [ 715.142698][ T29] audit: type=1326 audit(1773710362.708:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.4.2148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7fc00000 [ 715.236708][ T29] audit: type=1326 audit(1773710362.708:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.4.2148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7fc00000 [ 715.346840][ T29] audit: type=1326 audit(1773710362.708:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.4.2148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7fc00000 [ 718.350300][T12024] syzkaller0: entered promiscuous mode [ 718.356999][T12024] syzkaller0: entered allmulticast mode [ 718.609589][ T29] audit: type=1326 audit(1773710366.588:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12021 comm="syz.4.2165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eda59c799 code=0x7fc00000 [ 729.244696][T12163] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 731.067474][T12188] kvm: apic: phys broadcast and lowest prio [ 736.160040][T12231] kvm: apic: phys broadcast and lowest prio [ 737.881685][T12247] xt_hashlimit: size too large, truncated to 1048576 [ 744.223667][T12314] netlink: 'syz.1.2262': attribute type 13 has an invalid length. [ 744.267996][T12314] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2262'. [ 744.410665][ T51] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 744.421389][T12314] netlink: 'syz.1.2262': attribute type 13 has an invalid length. [ 744.448061][ T51] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 744.463119][T12314] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2262'. [ 744.483418][ T51] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 744.517669][ T51] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 745.966782][T12331] syzkaller0: entered promiscuous mode [ 745.972830][T12331] syzkaller0: entered allmulticast mode [ 746.445671][T12336] syzkaller0: entered promiscuous mode [ 746.463281][T12336] syzkaller0: entered allmulticast mode [ 747.727843][T12355] kvm: apic: phys broadcast and lowest prio [ 748.660393][T12367] netlink: 'syz.1.2282': attribute type 4 has an invalid length. [ 754.266015][T12416] fuse: Unknown parameter '0x0000000000000003' [ 754.341323][ T51] nci: nci_extract_activation_params_iso_dep: unsupported activation_rf_tech_and_mode 0x2 [ 754.368171][T12419] syzkaller0: entered promiscuous mode [ 754.375766][T12419] syzkaller0: entered allmulticast mode [ 754.742643][T12423] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2303'. [ 755.104947][T12426] 0: reclassify loop, rule prio 0, protocol 700 [ 756.351958][T12438] tipc: Started in network mode [ 756.371563][T12438] tipc: Node identity aa850caf51a9, cluster identity 4711 [ 756.401290][T12438] tipc: Enabled bearer , priority 0 [ 756.696306][T12439] syzkaller0: entered promiscuous mode [ 756.706041][T12439] syzkaller0: entered allmulticast mode [ 756.725237][T12439] tipc: Resetting bearer [ 756.785443][ T6061] tipc: Resetting bearer [ 756.820991][T12437] tipc: Resetting bearer [ 756.917666][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 756.925894][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 757.181865][T12437] tipc: Disabling bearer [ 757.974121][T12457] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2316'. [ 759.015141][T12465] fuse: Unknown parameter 'grou00000000000000000000' [ 762.368686][T12486] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2327'. [ 762.984838][T12494] syzkaller0: entered promiscuous mode [ 762.996892][T12494] syzkaller0: entered allmulticast mode [ 766.559676][T12535] syzkaller0: entered promiscuous mode [ 766.565337][T12535] syzkaller0: entered allmulticast mode [ 769.034812][T12572] fuse: Unknown parameter 'group_i00000000000000000000' [ 770.399421][T12586] syzkaller0: entered promiscuous mode [ 770.405093][T12586] syzkaller0: entered allmulticast mode [ 771.940905][T12606] fuse: Unknown parameter 'group_id00000000000000000000' [ 772.440202][T12610] syzkaller0: entered promiscuous mode [ 772.455926][T12610] syzkaller0: entered allmulticast mode [ 773.357463][T12617] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2376'. [ 774.627666][T12630] fuse: Unknown parameter 'group_id00000000000000000000' [ 776.960211][T12675] fuse: Unknown parameter 'group_id00000000000000000000' [ 777.857689][T12687] syzkaller0: entered promiscuous mode [ 777.863366][T12687] syzkaller0: entered allmulticast mode [ 777.986850][T12695] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2404'. [ 778.478534][T12697] fuse: Unknown parameter 'fd0x0000000000000003' [ 779.232669][T12713] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2411'. [ 779.279019][T12714] fuse: Bad value for 'user_id' [ 779.305135][T12714] fuse: Bad value for 'user_id' [ 779.872588][ T1034] nci: nci_extract_activation_params_iso_dep: unsupported activation_rf_tech_and_mode 0x6 [ 780.981358][T12748] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2425'. [ 781.217297][T12752] syzkaller0: entered promiscuous mode [ 781.233655][T12752] syzkaller0: entered allmulticast mode [ 783.490799][T12789] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 785.583361][T12821] ===================================================== [ 785.591000][T12821] BUG: KMSAN: uninit-value in eth_type_trans+0x6a2/0x9b0 [ 785.598430][T12821] eth_type_trans+0x6a2/0x9b0 [ 785.603285][T12821] __dev_forward_skb2+0x4b1/0x940 [ 785.608704][T12821] dev_forward_skb_nomtu+0x3b/0xe0 [ 785.613993][T12821] __bpf_redirect+0x14d7/0x1760 [ 785.619163][T12821] bpf_clone_redirect+0x4a6/0x6c0 [ 785.624345][T12821] ___bpf_prog_run+0x12af/0xeb60 [ 785.629617][T12821] __bpf_prog_run512+0xc5/0x100 [ 785.634740][T12821] bpf_test_run+0x493/0xdf0 [ 785.639583][T12821] bpf_prog_test_run_skb+0x22a5/0x3050 [ 785.645195][T12821] bpf_prog_test_run+0x5bb/0x9f0 [ 785.650479][T12821] __sys_bpf+0x925/0xee0 [ 785.654861][T12821] __x64_sys_bpf+0xa4/0xf0 [ 785.659544][T12821] x64_sys_call+0x13d0/0x3ea0 [ 785.664425][T12821] do_syscall_64+0x134/0xf80 [ 785.669403][T12821] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 785.675463][T12821] [ 785.678002][T12821] Uninit was created at: [ 785.682529][T12821] kmem_cache_alloc_node_noprof+0x3cd/0x12d0 [ 785.688776][T12821] pskb_expand_head+0x2ef/0x1fb0 [ 785.693934][T12821] skb_ensure_writable+0x44e/0x510 [ 785.699374][T12821] bpf_clone_redirect+0x301/0x6c0 [ 785.704547][T12821] ___bpf_prog_run+0x12af/0xeb60 [ 785.709826][T12821] __bpf_prog_run512+0xc5/0x100 [ 785.714830][T12821] bpf_test_run+0x493/0xdf0 [ 785.719601][T12821] bpf_prog_test_run_skb+0x22a5/0x3050 [ 785.725210][T12821] bpf_prog_test_run+0x5bb/0x9f0 [ 785.730515][T12821] __sys_bpf+0x925/0xee0 [ 785.734900][T12821] __x64_sys_bpf+0xa4/0xf0 [ 785.739630][T12821] x64_sys_call+0x13d0/0x3ea0 [ 785.744484][T12821] do_syscall_64+0x134/0xf80 [ 785.749410][T12821] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 785.755469][T12821] [ 785.758084][T12821] CPU: 1 UID: 0 PID: 12821 Comm: syz.4.2451 Not tainted syzkaller #0 PREEMPT(full) [ 785.767737][T12821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 785.778074][T12821] ===================================================== [ 785.785089][T12821] Disabling lock debugging due to kernel taint [ 785.791525][T12821] Kernel panic - not syncing: kmsan.panic set ... [ 785.798066][T12821] CPU: 1 UID: 0 PID: 12821 Comm: syz.4.2451 Tainted: G B syzkaller #0 PREEMPT(full) [ 785.809187][T12821] Tainted: [B]=BAD_PAGE [ 785.813427][T12821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 785.823607][T12821] Call Trace: [ 785.826976][T12821] [ 785.830004][T12821] __dump_stack+0x26/0x30 [ 785.834502][T12821] dump_stack_lvl+0x50/0x1c0 [ 785.839258][T12821] ? dump_stack+0x12/0x25 [ 785.843752][T12821] dump_stack+0x1e/0x25 [ 785.848063][T12821] vpanic+0x7b4/0x1430 [ 785.852336][T12821] panic+0x15d/0x160 [ 785.856439][T12821] kmsan_report+0x31a/0x320 [ 785.861136][T12821] ? __bpf_prog_run512+0xc5/0x100 [ 785.866344][T12821] ? __msan_warning+0x1b/0x30 [ 785.871200][T12821] ? eth_type_trans+0x6a2/0x9b0 [ 785.876303][T12821] ? __dev_forward_skb2+0x4b1/0x940 [ 785.881688][T12821] ? dev_forward_skb_nomtu+0x3b/0xe0 [ 785.887164][T12821] ? __bpf_redirect+0x14d7/0x1760 [ 785.892337][T12821] ? bpf_clone_redirect+0x4a6/0x6c0 [ 785.897673][T12821] ? ___bpf_prog_run+0x12af/0xeb60 [ 785.902922][T12821] ? __bpf_prog_run512+0xc5/0x100 [ 785.908081][T12821] ? bpf_test_run+0x493/0xdf0 [ 785.912903][T12821] ? bpf_prog_test_run_skb+0x22a5/0x3050 [ 785.918685][T12821] ? bpf_prog_test_run+0x5bb/0x9f0 [ 785.923943][T12821] ? __sys_bpf+0x925/0xee0 [ 785.928484][T12821] ? __x64_sys_bpf+0xa4/0xf0 [ 785.933189][T12821] ? x64_sys_call+0x13d0/0x3ea0 [ 785.938196][T12821] ? do_syscall_64+0x134/0xf80 [ 785.943106][T12821] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 785.949322][T12821] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 785.955338][T12821] ? kmsan_get_metadata+0xf1/0x160 [ 785.960641][T12821] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 785.966642][T12821] ? should_fail_ex+0x45/0x8c0 [ 785.971686][T12821] ? stack_depot_save_flags+0x35/0x790 [ 785.977320][T12821] ? kmsan_get_metadata+0xf1/0x160 [ 785.982619][T12821] ? kmsan_get_metadata+0xf1/0x160 [ 785.987909][T12821] ? kmsan_get_metadata+0xf1/0x160 [ 785.993206][T12821] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 785.999707][T12821] ? kmsan_get_metadata+0xf1/0x160 [ 786.005000][T12821] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 786.010988][T12821] ? kmsan_get_metadata+0xf1/0x160 [ 786.016304][T12821] __msan_warning+0x1b/0x30 [ 786.020976][T12821] eth_type_trans+0x6a2/0x9b0 [ 786.025833][T12821] __dev_forward_skb2+0x4b1/0x940 [ 786.031052][T12821] dev_forward_skb_nomtu+0x3b/0xe0 [ 786.036345][T12821] __bpf_redirect+0x14d7/0x1760 [ 786.041337][T12821] ? kmsan_get_metadata+0xf1/0x160 [ 786.046648][T12821] bpf_clone_redirect+0x4a6/0x6c0 [ 786.051860][T12821] ___bpf_prog_run+0x12af/0xeb60 [ 786.056991][T12821] __bpf_prog_run512+0xc5/0x100 [ 786.062020][T12821] ? kmsan_internal_poison_memory+0x78/0x90 [ 786.068102][T12821] ? kmsan_internal_poison_memory+0x4a/0x90 [ 786.074163][T12821] ? kmsan_slab_alloc+0xdc/0x160 [ 786.079269][T12821] ? kmem_cache_alloc_noprof+0x37b/0x1270 [ 786.085121][T12821] ? slab_build_skb+0x5c/0x5b0 [ 786.090134][T12821] ? bpf_prog_test_run_skb+0x74d/0x3050 [ 786.095821][T12821] ? bpf_prog_test_run+0x5bb/0x9f0 [ 786.101085][T12821] ? __sys_bpf+0x925/0xee0 [ 786.105629][T12821] ? kmsan_get_metadata+0xf1/0x160 [ 786.110921][T12821] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 786.116924][T12821] ? bpf_test_run+0xf1/0xdf0 [ 786.121662][T12821] ? filter_irq_stacks+0x49/0x190 [ 786.126944][T12821] ? kmsan_get_metadata+0xf1/0x160 [ 786.132262][T12821] ? kmsan_get_metadata+0xf1/0x160 [ 786.137545][T12821] ? kmsan_get_metadata+0xf1/0x160 [ 786.142831][T12821] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 786.149323][T12821] ? kmsan_get_metadata+0x146/0x160 [ 786.154704][T12821] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 786.160685][T12821] ? __pfx___bpf_prog_run512+0x10/0x10 [ 786.166294][T12821] ? __pfx___bpf_prog_run512+0x10/0x10 [ 786.171901][T12821] bpf_test_run+0x493/0xdf0 [ 786.176540][T12821] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 786.182530][T12821] ? kmsan_get_metadata+0xf1/0x160 [ 786.187814][T12821] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 786.193817][T12821] ? bpf_test_run+0x2f4/0xdf0 [ 786.198645][T12821] ? kmsan_get_metadata+0xf1/0x160 [ 786.203933][T12821] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 786.209935][T12821] bpf_prog_test_run_skb+0x22a5/0x3050 [ 786.215538][T12821] ? kmsan_get_metadata+0xf1/0x160 [ 786.220900][T12821] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 786.226871][T12821] bpf_prog_test_run+0x5bb/0x9f0 [ 786.232008][T12821] __sys_bpf+0x925/0xee0 [ 786.236437][T12821] __x64_sys_bpf+0xa4/0xf0 [ 786.240986][T12821] x64_sys_call+0x13d0/0x3ea0 [ 786.245829][T12821] do_syscall_64+0x134/0xf80 [ 786.250562][T12821] ? clear_bhb_loop+0x50/0xa0 [ 786.255382][T12821] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 786.261427][T12821] RIP: 0033:0x7f2eda59c799 [ 786.265942][T12821] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 786.285693][T12821] RSP: 002b:00007f2edb3bb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 786.294243][T12821] RAX: ffffffffffffffda RBX: 00007f2eda815fa0 RCX: 00007f2eda59c799 [ 786.302326][T12821] RDX: 0000000000000023 RSI: 0000200000000240 RDI: 000000000000000a [ 786.310401][T12821] RBP: 00007f2eda632c99 R08: 0000000000000000 R09: 0000000000000000 [ 786.318470][T12821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 786.326539][T12821] R13: 00007f2eda816038 R14: 00007f2eda815fa0 R15: 00007fff98a7e968 [ 786.334662][T12821] [ 786.337915][T12821] Kernel Offset: disabled [ 786.342312][T12821] Rebooting in 86400 seconds..