last executing test programs: 10m41.664976057s ago: executing program 1 (id=93): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) r2 = fcntl$dupfd(r1, 0x0, r0) ioctl$TIOCL_UNBLANKSCREEN(r2, 0x541c, &(0x7f0000000000)) ioctl$KDSETMODE(r1, 0x4b3a, 0x1) ioctl$HIDIOCGDEVINFO(r2, 0x801c4803, &(0x7f00000001c0)=""/225) 10m40.468418297s ago: executing program 1 (id=98): ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448cb, 0x0) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x0, 0x1, 0x411}}}, 0x7) 10m39.866200511s ago: executing program 1 (id=101): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x3, 0x8, 0x8001, 0x0, 0x9, 0xfffffffffffffffc, 0x9, 0xfa11, 0x1}, 0x0) keyctl$dh_compute(0x17, 0x0, &(0x7f0000000480)=""/82, 0x52, 0x0) pipe(&(0x7f0000000600)) syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff) 10m24.460517179s ago: executing program 32 (id=101): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x3, 0x8, 0x8001, 0x0, 0x9, 0xfffffffffffffffc, 0x9, 0xfa11, 0x1}, 0x0) keyctl$dh_compute(0x17, 0x0, &(0x7f0000000480)=""/82, 0x52, 0x0) pipe(&(0x7f0000000600)) syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff) 9m26.228593688s ago: executing program 33 (id=217): socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="12000000080000000400000002"], 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r1, 0xffffffffffffffff}, &(0x7f0000000340), 0x0}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r2}, &(0x7f0000000040)=0x2, &(0x7f00000000c0)=r0}, 0x20) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r1, &(0x7f0000000040)}, 0x20) 9m0.213709749s ago: executing program 4 (id=298): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$BTRFS_IOC_SPACE_INFO(r0, 0xc0109414, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x202, 0x1, 0xcccd2000, 0x1000, &(0x7f0000009000/0x1000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x5, 0x0, 0x5000, 0x2000, &(0x7f000002f000/0x2000)=nil}) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) connect$unix(r2, 0x0, 0x0) recvmmsg(r2, 0x0, 0x0, 0x2, 0x0) creat(&(0x7f00000003c0)='./bus\x00', 0x0) r3 = open(&(0x7f00000000c0)='./bus\x00', 0x18d03e, 0x0) r4 = open(&(0x7f00000004c0)='./bus\x00', 0xc2802, 0x181) ftruncate(r4, 0x2008002) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r3, 0x0) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x200, 0x0, 0xffff1000, 0x1000, &(0x7f0000ffb000/0x1000)=nil}) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) 8m58.859978033s ago: executing program 4 (id=300): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r2 = syz_io_uring_setup(0x9e, &(0x7f00000002c0)={0x0, 0xec25, 0x0, 0x0, 0x40000733}, &(0x7f00000006c0)=0x0, &(0x7f0000000080)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x25, 0x0, @fd, 0x6, &(0x7f0000000380)=[{0x0}], 0x1}) io_uring_enter(r2, 0x847ba, 0x0, 0xe, 0x0, 0x0) 8m52.378837857s ago: executing program 5 (id=315): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2a, 0xa9}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbefb, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000700)=@abs={0x0, 0x0, 0x10000}, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) syz_open_dev$I2C(&(0x7f0000000180), 0x19a, 0x200) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x40) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_MSG_GETSET(r2, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000005c0)={0x14, 0xa, 0xa, 0x101}, 0x14}}, 0x0) 8m48.027917005s ago: executing program 4 (id=321): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15) r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) process_vm_writev(r0, &(0x7f0000001c80), 0x0, &(0x7f0000001d80)=[{&(0x7f0000001cc0)=""/116, 0x74}], 0x1, 0x0) 8m47.050253292s ago: executing program 4 (id=323): ftruncate(0xffffffffffffffff, 0x51a9497) r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) close_range(r0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000d40)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r2, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0) recvmsg$unix(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000014c0), 0xe8}, 0x0) socket$nl_route(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)) r3 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_PKTINFO(r3, 0x10e, 0xc, &(0x7f0000000040)=0x8, 0x4) sendmsg$nl_route(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)=ANY=[@ANYBLOB="2800000012000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00', @ANYRES32=r3], 0x28}}, 0x802) 8m46.095309235s ago: executing program 4 (id=325): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, 0x0, 0x48) mount$tmpfs(0x0, &(0x7f0000000040)='.\x00', &(0x7f0000000280), 0x2000001, &(0x7f0000000140)=ANY=[@ANYBLOB='fscontext=unconfined_u,f']) clock_gettime(0x7, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r3}, &(0x7f0000001c00)=0x8000000, &(0x7f0000001c40)}, 0x20) connect$unix(r2, 0x0, 0x0) r4 = socket$vsock_stream(0x28, 0x1, 0x0) r5 = syz_open_dev$usbfs(&(0x7f0000000040), 0x80006f, 0x81501) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000002bc0)=@newsa={0xf0, 0x1a, 0x1, 0xfffffffe, 0xfd, {{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x717, 0x4e23, 0x5, 0x2, 0x0, 0x20, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@remote, {0xfe, 0x1000000000000192, 0x9ba3, 0xffff, 0x8251c, 0x5, 0xffffffbffffffffc, 0x4}, {0x10000000000009, 0x7, 0x1f, 0xfffffffffffffffe}, {0xfffffffe, 0x3fc}, 0x7e, 0x3505, 0x2, 0x1, 0x0, 0x20}}, 0xf0}}, 0x844) r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]}) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r6, 0xc0502100, &(0x7f0000000680)) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r6, 0xc0502100, &(0x7f0000000380)) ioctl$USBDEVFS_SUBMITURB(r5, 0x8038550a, 0x0) close_range(r4, 0xffffffffffffffff, 0x0) 8m42.660895876s ago: executing program 4 (id=330): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r2 = syz_io_uring_setup(0x9e, &(0x7f00000002c0)={0x0, 0xec25, 0x0, 0x0, 0x40000733}, &(0x7f00000006c0)=0x0, &(0x7f0000000080)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x25, 0x0, @fd, 0x6, &(0x7f0000000380)=[{0x0}], 0x1}) io_uring_enter(r2, 0x847ba, 0x0, 0xe, 0x0, 0x0) 8m32.918673174s ago: executing program 34 (id=315): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2a, 0xa9}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbefb, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000700)=@abs={0x0, 0x0, 0x10000}, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) syz_open_dev$I2C(&(0x7f0000000180), 0x19a, 0x200) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x40) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_MSG_GETSET(r2, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000005c0)={0x14, 0xa, 0xa, 0x101}, 0x14}}, 0x0) 8m27.26613565s ago: executing program 35 (id=330): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r2 = syz_io_uring_setup(0x9e, &(0x7f00000002c0)={0x0, 0xec25, 0x0, 0x0, 0x40000733}, &(0x7f00000006c0)=0x0, &(0x7f0000000080)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x25, 0x0, @fd, 0x6, &(0x7f0000000380)=[{0x0}], 0x1}) io_uring_enter(r2, 0x847ba, 0x0, 0xe, 0x0, 0x0) 7m38.886266134s ago: executing program 3 (id=451): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x28100, 0x0) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e20, 0xf63, @loopback={0xffffffffffff0000}, 0x1}, 0x1c) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000440)={[0x0, 0x100000000, 0x0, 0x81, 0x100000, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0x7, 0x0, 0x5, 0x0, 0x2, 0xffffffffffffffff], 0x0, 0x200}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x5206, 0x5, 0x6, 0x4004, 0x2, 0x4, 0xefffffffffffffff, 0x0, 0x0, 0x2000000, 0x0, 0x1c, 0x0, 0xffffffffffffffff, 0x6, 0xffffffffffffffff], 0x0, 0x41901}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 7m37.755787649s ago: executing program 3 (id=455): r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0) getpid() creat(0x0, 0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, 0x0, 0x0) r3 = gettid() process_vm_writev(r3, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0) 7m32.348704966s ago: executing program 3 (id=456): r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000100)={0x38, 0x0, 0x0}) ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000040)={0x28, 0x7, r1, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000}) ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f00000003c0)={0x48, 0x5, r1, 0x0, 0xffffffffffffffff, 0x1}) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000100), 0x208e24b) ioctl$IOMMU_TEST_OP_ACCESS_RW(r0, 0x3ba0, &(0x7f0000000280)={0x48, 0x8, r2, 0x0, 0x83, 0x1, &(0x7f0000000480)='0', 0x5}) 7m21.918175727s ago: executing program 3 (id=472): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000180)={0x1, 0x0, [{0x48, 0x0, 0xffffffffffffffff}]}) 7m20.673355776s ago: executing program 3 (id=475): r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0) getpid() creat(0x0, 0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, 0x0, 0x0) r3 = gettid() process_vm_writev(r3, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0) 7m12.678488936s ago: executing program 3 (id=479): r0 = fsopen(&(0x7f0000000180)='hugetlbfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0x0) fchdir(r1) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x140, 0x11) r3 = fanotify_init(0x8, 0x1) fanotify_mark(r3, 0x105, 0x48000032, r2, 0x0) r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) close_range(r4, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x737f0c77864bf3b9, 0x0) 6m54.629202141s ago: executing program 36 (id=479): r0 = fsopen(&(0x7f0000000180)='hugetlbfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0x0) fchdir(r1) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x140, 0x11) r3 = fanotify_init(0x8, 0x1) fanotify_mark(r3, 0x105, 0x48000032, r2, 0x0) r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) close_range(r4, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x737f0c77864bf3b9, 0x0) 4m20.828786192s ago: executing program 9 (id=837): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) recvmmsg(r0, &(0x7f0000000100), 0x0, 0x40000001, 0x0) 4m20.154567843s ago: executing program 9 (id=841): openat(0xffffffffffffff9c, 0x0, 0x143042, 0x49) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) getpid() r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) wait4(r0, 0x0, 0x0, 0x0) ptrace$cont(0x11, r0, 0x10000000000005, 0xfffffffffffffffa) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) unshare(0x8000000) r3 = semget$private(0x0, 0x4000, 0x0) semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000740)) semctl$IPC_RMID(r3, 0x0, 0x0) 4m14.250007667s ago: executing program 9 (id=849): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)={0x34, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_DUPLEX={0x5, 0x6, 0xd}]}, 0x34}, 0x1, 0x0, 0x0, 0x4044851}, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) 4m10.520816317s ago: executing program 9 (id=855): r0 = fanotify_init(0xf00, 0x1) fanotify_mark(r0, 0x105, 0x40009965, 0xffffffffffffffff, 0x0) r1 = getpgid(0x0) r2 = syz_pidfd_open(r1, 0x0) pidfd_getfd(r2, r2, 0x0) mount$9p_fd(0x0, &(0x7f0000000980)='.\x00', 0x0, 0x104000, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) pipe2(0x0, 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262) umount2(&(0x7f0000000040)='.\x00', 0x2) 4m9.089294173s ago: executing program 9 (id=858): r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$int_in(r0, 0x5452, 0x0) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @broadcast}, 0x10) sendto$inet(r0, &(0x7f0000000140), 0xffffffffffffff58, 0x20008005, &(0x7f0000000100)={0x2, 0x4e20}, 0x10) recvfrom(r0, &(0x7f0000000480)=""/110, 0x168f6f3d, 0x734, 0x0, 0xfffffffffffffecb) 4m5.592326237s ago: executing program 9 (id=864): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000d80)={'veth0_to_bond\x00'}) sendmsg$nl_route_sched(r0, 0x0, 0x20040084) sendmsg$nl_route_sched(r0, 0x0, 0x4000080) 3m58.279077786s ago: executing program 37 (id=864): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000d80)={'veth0_to_bond\x00'}) sendmsg$nl_route_sched(r0, 0x0, 0x20040084) sendmsg$nl_route_sched(r0, 0x0, 0x4000080) 1m7.446667596s ago: executing program 1 (id=868): r0 = fanotify_init(0xf00, 0x1) fanotify_mark(r0, 0x105, 0x40009965, 0xffffffffffffffff, 0x0) r1 = getpgid(0x0) syz_pidfd_open(r1, 0x0) setns(0xffffffffffffffff, 0x66020000) mount$9p_fd(0x0, &(0x7f0000000980)='.\x00', 0x0, 0x104000, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) pipe2(0x0, 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262) umount2(&(0x7f0000000040)='.\x00', 0x2) 1m6.82226638s ago: executing program 1 (id=1279): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0) getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r3 = bpf$MAP_CREATE(0x0, 0x0, 0x50) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000180)={r3, 0x0, 0x0, 0x4}, 0x20) ioctl$KVM_RUN(r2, 0xae80, 0x0) timerfd_settime(0xffffffffffffffff, 0x7, 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r4, 0x6, 0x1e, 0x0, 0x0) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0) sendto$inet6(r4, 0x0, 0x0, 0x20000845, 0x0, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) 1m6.04416778s ago: executing program 1 (id=1284): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = open(&(0x7f00009e1000)='./file0\x00', 0x48141, 0x0) fcntl$setlease(r1, 0x400, 0x0) r2 = socket(0x400000000010, 0x3, 0x0) r3 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'wlan0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f0000003640)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=@newtfilter={0x24, 0x2c, 0xd27, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, r4, {0x0, 0x7}, {0x0, 0x2}, {0x7, 0x9}}}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x40) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, 0x0) r5 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000180)='cpuset.mem_exclusive\x00', 0x2, 0x0) write$cgroup_int(r5, &(0x7f00000000c0)=0x7, 0x12) setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000080)=0xfffffffffffffffe, 0x4) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000040)='sit0\x00', 0x10) r6 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x0) r7 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) sendfile(0xffffffffffffffff, r7, 0x0, 0x7ffff004) fstat(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000000c0)={{{@in=@rand_addr=0x64010102, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x4e21, 0xa, 0x4e22, 0xff, 0x2, 0x80, 0xa0, 0x2c, r4, r8}, {0x3, 0x100000000, 0x3, 0x4f, 0x1, 0x1, 0x7, 0x3}, {0xe452, 0xee5d, 0xa, 0x10}, 0x400, 0x6e6bb4, 0x1, 0x0, 0x1, 0x2}, {{@in=@multicast1, 0x4d2, 0xff}, 0x2, @in=@local, 0x3504, 0x2, 0x0, 0x2, 0xd97b, 0x10, 0xf}}, 0xe8) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x1, 0x0, [{0x400000f3, 0x0, 0x3}]}) 1m3.998013141s ago: executing program 38 (id=1284): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = open(&(0x7f00009e1000)='./file0\x00', 0x48141, 0x0) fcntl$setlease(r1, 0x400, 0x0) r2 = socket(0x400000000010, 0x3, 0x0) r3 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'wlan0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f0000003640)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=@newtfilter={0x24, 0x2c, 0xd27, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, r4, {0x0, 0x7}, {0x0, 0x2}, {0x7, 0x9}}}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x40) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, 0x0) r5 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000180)='cpuset.mem_exclusive\x00', 0x2, 0x0) write$cgroup_int(r5, &(0x7f00000000c0)=0x7, 0x12) setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000080)=0xfffffffffffffffe, 0x4) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000040)='sit0\x00', 0x10) r6 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x0) r7 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) sendfile(0xffffffffffffffff, r7, 0x0, 0x7ffff004) fstat(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000000c0)={{{@in=@rand_addr=0x64010102, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x4e21, 0xa, 0x4e22, 0xff, 0x2, 0x80, 0xa0, 0x2c, r4, r8}, {0x3, 0x100000000, 0x3, 0x4f, 0x1, 0x1, 0x7, 0x3}, {0xe452, 0xee5d, 0xa, 0x10}, 0x400, 0x6e6bb4, 0x1, 0x0, 0x1, 0x2}, {{@in=@multicast1, 0x4d2, 0xff}, 0x2, @in=@local, 0x3504, 0x2, 0x0, 0x2, 0xd97b, 0x10, 0xf}}, 0xe8) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x1, 0x0, [{0x400000f3, 0x0, 0x3}]}) 59.80473402s ago: executing program 7 (id=1311): bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x8, 0x4, 0x4, 0x9}, 0x50) 59.159535119s ago: executing program 7 (id=1314): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1, 0x1, 0x4, 0x8, 0x100}, 0x50) bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xb, 0x8, 0x10001, 0x9, 0x1}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002e00000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0xe, 0x0, &(0x7f00000008c0)="7a7fa22c2aff88df53ef2a2d280f", 0x0, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 58.53288602s ago: executing program 7 (id=1318): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd634936f2}) ioctl$TUNSETVNETLE(r0, 0x400454dc, &(0x7f0000000000)=0x1) 56.95721272s ago: executing program 7 (id=1328): r0 = fanotify_init(0xf00, 0x1) fanotify_mark(r0, 0x105, 0x40009965, 0xffffffffffffffff, 0x0) getpgid(0x0) r1 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) setns(r1, 0x66020000) mount$9p_fd(0x0, &(0x7f0000000980)='.\x00', 0x0, 0x104000, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) pipe2(0x0, 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262) umount2(&(0x7f0000000040)='.\x00', 0x2) 56.206968568s ago: executing program 7 (id=1330): r0 = syz_open_dev$loop(&(0x7f0000000100), 0x6, 0x8201) set_mempolicy(0x3, &(0x7f0000000000)=0x5, 0x8) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.usage_all\x00', 0x275a, 0x0) write$binfmt_misc(r1, &(0x7f0000000040), 0xe09) ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0x2000000000001]}}) 55.296648191s ago: executing program 7 (id=1335): inotify_init1(0x80000) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="5c000000020601080a000000050001000700000005000400000000000900f9a673797a3100000400160003006861"], 0x5c}, 0x1, 0x0, 0x0, 0x20000814}, 0x0) syz_mount_image$msdos(&(0x7f00000008c0), &(0x7f0000001200)='./file2\x00', 0x0, &(0x7f00000000c0)=ANY=[], 0x1, 0x11c1, &(0x7f0000001240)="$eJzs209LdFUcB/CfPtpj86TZP0s3HWpTm0u6aNVGQiEcKNQJNAiuONYw08wwdxYz0kJo16rXES3bBdEb8F20kyBq46qJHNMUIw30Bn0+m/nB95y5v8OFC+dyz8k7X33WPCiyg7wfkxMTMdWdjnSaIsVkPIqxo3jzi/Vfv9za2d1YrVbXNlNaX91efjulNPfq9x99/s1rP/SffPjt3HeP43j+45OfV348XjhePPlt+9NGkRpFanf6KU97nU4/32vV036jaGYpfdCq50U9NdpFvXclP2h1ut1hytv7s5Vur14UKW8PU7M+TP1O6veGKf8kb7RTlmVpthJcNxqNRrcdW/v69Gz0aDQdT53NfDoq8SSeidmYi2djPp6L5+OFeDFeioV4OV6JxTv9PwAAAAAAAAAAAAAAAAAAAHAbzv8DAAAAAAAAAAAAAAAAAABA+Zz/BwAAAAAAAAAAAAAAAAAAgPI5/w8AAAAAAAAAAAAAAAAAAADl29rZ3VitVtc2U5qJ+OloUBvUxr/jfP296tpb6cz85axfBoPao4t8eZynq/njqJznKzfmM/HG6+P8j+zd96vX8qXYv//lAwAAwP9Cli7cuL/Psr/Lx9Vf3g9c279PxdLUTVecua+l8C8Uw8Nm3mrVe8Vw+s/isLRi4ryrkttQKO6rmPxvtPHPRckPJh7E5U0vuxMAAAAAAAAAAADu4iE+Jyx7jQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwOztwLAAAAAAgzN86jY4NAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCqAAAA//9fwpXh") mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0) pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='net_prio.prioidx\x00', 0x275a, 0x0) 53.516999576s ago: executing program 39 (id=1335): inotify_init1(0x80000) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="5c000000020601080a000000050001000700000005000400000000000900f9a673797a3100000400160003006861"], 0x5c}, 0x1, 0x0, 0x0, 0x20000814}, 0x0) syz_mount_image$msdos(&(0x7f00000008c0), &(0x7f0000001200)='./file2\x00', 0x0, &(0x7f00000000c0)=ANY=[], 0x1, 0x11c1, &(0x7f0000001240)="$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") mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0) pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='net_prio.prioidx\x00', 0x275a, 0x0) 9.018138443s ago: executing program 5 (id=1337): bpf$BPF_PROG_DETACH(0x9, &(0x7f0000001100)={@cgroup, 0xffffffffffffffff, 0xb, 0x30}, 0x20) 8.171837737s ago: executing program 0 (id=1472): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6, 0xff, 0x7, 0x7fc00002}]}) membarrier(0x10, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000300)) socket$nl_audit(0x10, 0x3, 0x9) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f000068c000/0xc000)=nil, &(0x7f0000817000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0) r1 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1}) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="16"], 0x50) io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, 0x0) 8.096840266s ago: executing program 5 (id=1473): unshare(0x28000600) r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x4, 0x40, 0x7fff0000}]}) bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="000200"/19, @ANYRES16], 0x50) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) ioctl$SECCOMP_IOCTL_NOTIF_SEND(r0, 0xc0182101, &(0x7f0000000100)={0x0, 0x7ffbffffffffffff, 0xbb3}) 7.22419401s ago: executing program 5 (id=1477): r0 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) r2 = socket$can_j1939(0x1d, 0x2, 0x7) bind$can_j1939(r2, &(0x7f0000000680)={0x1d, r1, 0x2, {0x2, 0xf0}, 0x1fb}, 0x18) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f00000000c0)={'vcan0\x00', 0x0}) bind$can_j1939(r4, &(0x7f0000000340)={0x1d, r5, 0x0, {0x2, 0x0, 0x6}, 0xfe}, 0x18) setsockopt$sock_int(r4, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4) sendmsg$inet(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000100)="810741f1f38437812a", 0x9}], 0x1}, 0x4048081) sendmsg$nl_route_sched(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0xf0ffffffffffff}, 0x20000000) 5.486746671s ago: executing program 0 (id=1479): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_percpu\x00', 0x275a, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x8}) fcntl$lock(r0, 0x26, &(0x7f0000000280)={0x1, 0x0, 0x9, 0x9}) 4.740196067s ago: executing program 5 (id=1482): openat(0xffffffffffffff9c, 0x0, 0x2080c2, 0x84) prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$GIO_UNIMAP(r0, 0x4b66, &(0x7f0000000100)={0x0, 0x0}) 4.46814682s ago: executing program 2 (id=1483): unshare(0x2a020400) r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000100), 0x2) r1 = memfd_create(&(0x7f0000000340)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\xdenJ\xeb\x87\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38\x14\xcb\xfa\xb3j\x92\f\xe0\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf0\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x2) ftruncate(r1, 0x10002) fcntl$addseals(r1, 0x409, 0x7) r2 = ioctl$UDMABUF_CREATE(r0, 0x40187542, &(0x7f0000000140)={r1, 0x0, 0x0, 0x4000}) ioctl$DMA_BUF_IOCTL_SYNC(r2, 0x40086200, &(0x7f00000000c0)=0x2) 3.993280856s ago: executing program 5 (id=1487): sched_setscheduler(0x0, 0x1, 0x0) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) syz_clone(0x1144280, 0x0, 0x0, 0x0, 0x0, 0x0) mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94) 3.99307473s ago: executing program 2 (id=1488): socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="380000005500e50226bd700001000000070000", @ANYRES32=r2, @ANYBLOB="20000100", @ANYRES32=r0], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x20000100) 3.852550819s ago: executing program 0 (id=1489): r0 = socket$inet6(0xa, 0x2, 0x3a) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e24, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x9}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000340)=[{{&(0x7f0000000380)={0xa, 0x0, 0x0, @mcast2={0xff, 0x5, '\x00', 0x0}}, 0x1c, &(0x7f0000000000)=[{&(0x7f0000000100)="a0002883781ecc0e", 0x4008}], 0x6}}], 0x1, 0x0) 3.39747517s ago: executing program 8 (id=1491): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47) setsockopt$sock_int(r0, 0x1, 0x21, &(0x7f0000000000)=0x5, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4) connect$inet(r0, &(0x7f0000000300)={0x2, 0x4e21, @empty}, 0x10) sendto$inet(r0, &(0x7f0000000200)="b44cd1", 0x3, 0x40080, 0x0, 0x0) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000340)=[@mss={0x2, 0x80000000}, @timestamp, @window={0x3, 0x0, 0x4}, @window={0x3, 0x8, 0x6}, @window={0x3, 0xc, 0x4}, @sack_perm, @sack_perm], 0x7) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4) sendto$inet(r0, &(0x7f00000004c0)='<', 0x381, 0x805, 0x0, 0x0) 3.32448554s ago: executing program 2 (id=1492): r0 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) r2 = socket$can_j1939(0x1d, 0x2, 0x7) bind$can_j1939(r2, &(0x7f0000000680)={0x1d, r1, 0x2, {0x2, 0xf0}, 0x1fb}, 0x18) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f00000000c0)={'vcan0\x00', 0x0}) bind$can_j1939(r4, &(0x7f0000000340)={0x1d, r5, 0x0, {0x2, 0x0, 0x6}, 0xfe}, 0x18) setsockopt$sock_int(r4, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4) sendmsg$inet(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000100)="810741f1f38437812a", 0x9}], 0x1}, 0x4048081) sendmsg$nl_route_sched(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0xf0ffffffffffff}, 0x20000000) 3.164742405s ago: executing program 0 (id=1493): r0 = mq_open(&(0x7f0000000000)='bat\x13\x1b\r\xcbs\xecave_5\x00', 0x8c2, 0x30, &(0x7f0000000080)={0x8000000000000000, 0x8, 0x1, 0xc05}) mq_getsetattr(r0, &(0x7f0000000040)={0x0, 0x40, 0x4, 0xffff}, 0x0) mq_timedreceive(r0, &(0x7f00000003c0)=""/100, 0x64, 0xfffffffffffffff8, 0x0) 2.830001317s ago: executing program 8 (id=1494): ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaa"], 0x0) syz_mount_image$vfat(&(0x7f00000001c0), &(0x7f0000000040)='./file0\x00', 0x4000, &(0x7f00000000c0)=ANY=[@ANYBLOB="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"], 0xfd, 0x21b, &(0x7f0000000480)="$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") mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) 2.809965837s ago: executing program 6 (id=1495): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001080)={0x6, 0x14, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000045000000180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000007000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0xe, 0xe00, &(0x7f0000000900)="e02742e8680d85ff9782762f0800", 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x50) 2.160646396s ago: executing program 8 (id=1496): pipe2$9p(&(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80800) write$P9_RWRITE(r1, &(0x7f0000000200)={0xb, 0x77, 0x2, 0x8}, 0xb) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) mount$9p_fd(0x0, &(0x7f00000001c0)='./cgroup.cpu/cpuset.cpus\x00', &(0x7f0000000240), 0x208800, &(0x7f0000000040)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}}) 2.160408345s ago: executing program 6 (id=1497): r0 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000180)=0x80000004, 0x4) bind$inet6(r0, &(0x7f0000000200)={0xa, 0x4e20, 0x4000b, @empty, 0x80ad}, 0x1c) syz_emit_ethernet(0xd2, &(0x7f0000001dc0)={@link_local, @remote, @void, {@ipv6={0x86dd, @udp={0xa, 0x6, '\x00', 0x9c, 0x11, 0xff, @local, @local, {[], {0x4e21, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x1, "26d66bbb335810de8df4c925833b692fa7462994a1a9f7459fe2c9b20c5430f4", "9b329eb597633eca7fd0172e5e4eb17a5d026afa22ccf891d5f67a319d6271e3fd6a92d1fbc56e03b5b2d0b16731b49e", "3150c03f87f629cc53eeaef437681792cf01197226edd08ed1d146db", {"0c3e6f2a9378e43f30b250dbce62bd8a", "18f59e71cdfcb8ef36b3ef191bf332cc"}}}}}}}}, 0x0) 2.037413372s ago: executing program 2 (id=1498): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000380)={'pimreg\x00', 0x5005}) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="280000001000010024bd7000fc0ddf2500000000", @ANYRES32=0x0, @ANYBLOB="1b0b04000300000008001b"], 0x28}, 0x1, 0x0, 0x0, 0x68010}, 0x0) write$tun(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="00000800ed06196700004a06907800000000e00000014e234e22"], 0xffb) 1.749163367s ago: executing program 0 (id=1499): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_percpu\x00', 0x275a, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x8}) fcntl$lock(r0, 0x26, &(0x7f0000000280)={0x1, 0x0, 0x9, 0x9}) 1.637455642s ago: executing program 8 (id=1500): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x7a, 0x0, 0x0, 0x40f00, 0xd, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000340)=r2, 0x4) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c0000006800e97800000000000000000a00000000000000040004"], 0x1c}}, 0x0) 1.553386124s ago: executing program 6 (id=1501): capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000, 0x0, 0x0, 0x10000}) ioctl$VT_RESIZE(0xffffffffffffffff, 0x5609, 0x0) write$P9_RWRITE(0xffffffffffffffff, 0x0, 0x0) syz_open_procfs(0xffffffffffffffff, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0x0, &(0x7f0000000040)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@default_permissions}]}}, 0x1, 0x0, 0x0) read$FUSE(r0, &(0x7f0000000300)={0x2020, 0x0, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000002340)={0x50, 0x0, r1, {0x7, 0x2b, 0x7, 0x800, 0x101, 0x2, 0x2, 0x3ff, 0x0, 0x0, 0x80}}, 0x50) syz_fuse_handle_req(r0, &(0x7f00000023c0)="7183c1654c792752d2252c111505954b0b2d4062f31328bea54f310d5dcf627fa7f8f45e484f7bbd0c20f5de909f0c29f7418403b0a343182340147475653be9aec286f773355d274454a71a5eb1afafccb166cd4b995af5b23ea89439fd58f9d4b07fac9ffde1c16f9ec644e02386c4c879f97495d65b6cd2bda928253538ab5c7061572b7be5483b6fa86968358b4b537fa0b95fc63d8631b1084611daee62ad3bcd2cb9f53a59416985d77f219e29f289a45fbb1ae3ebb4e046d6a9633ec25ea3156f36effa0491e125047e7948e3f889f713abc9474f577d84e8cafe011ee3eec12b43270d728146e2ff22d74bdb0694e93b7f977fa1952ab5b9a69cde45ec4d22047e785794c827c42173a26930b088520677246ac55b5bac5574325eb6aa71b5f67e151efab73f7582588be5eede94b20c257eec7cffb6d6c898f2a525ab0fe9fd0a1fa480137eae2905a932e175ffbba70f1dc7cde443abcfdc2e1fc12b1bf444e65b802eb4859b62a06ff813611a6ea1d8d35bde0348c02af3b8c70fe172d899ff191850604b2786e06cedc28de58093cb585b49a5c1d4c8669e8a59f95ff3bb4287a56d19de4c65d18ae9335cf1cfedc47e6741fdc6a6ca45290cda457a87162fd6868d80e26bbad4657db5214f98e89240c27b071bba6dfc206308a078593c7b7b1d20d64291b7dae4ed3303c5d90d0df3e1be68c47f99baa2cacab4f87878e4a497fe5bd4f9f0bd4e7253dda9a951d1906a6da9e4def5e6fb8df7dcc085957c59b0b725deb104dfa0e38f5d3f4bb6e55d0af541348cfe50f17fcbded2419d939196a349ff139a1545765379442078676ef2287d9a07eeb2758ca36536640820366f99f31155c1d571792bef6c7ee7570f1a267ee692f93203efa00b5678b6f1549068fff92651c9ffe1be516575883c42313c9175bf9dec1c559c8414dcf3c928809f9d4cdc3279164d570b5f2c3f549d7c57acc17286622983bde3db9e6eeaa53fd6dfc30b87edcceed4543eef1ced8a43584a2a0b90ef0c11d92682a7c3647888fdebaf8522a3886cb6874032b803b9024fd2df89a291c8479b6fd1f29202484d2227ee9cfebb58cbbc5459583392c78f4cdea2aaa353fc10d0f6f219e041cb95fc4fcfe95d6e2fdf8680d4d4315ec4a90735aac77c02e0bec67e1f6b8edef2cf8c3b2334aed69bcd855fc70ec13412322bcdfeb9ba36f48b62a19c489ff0be02bb5042bb7b911ba53c2cb73cdc2c8afbcaf4a067c9f33427249ca462fcfc760ad265f468ea8417f1cd35be629d35ddd0901ed6c1be436f248dce3a6280a8e0c245bb409fc4461efdca9b3fbbeb1090f665e2491cb86198d87973ffa4129bd5cc31dd472313f55b3ce5d7517d76414684431ea0eefe3fb4dbcf462cd8ee3605daa4a372b0ecfcddcf9fbea616721cbfc12dbfbf77ebc02de165157bfc7540a8271c2d1f445a2c7afba38c3ebeb61169894ae9ceb8e228c7331137db6f870a19550f2f495c7f08d0b131208fdbab2003479d18093ce57ed13780fed91050ac7be47f4ac661a160f014c18b572c7982c0b03851babdee50a066827ed740f265cc118effc7ef7608a947680c4bee1a305b2cac9f2f37a2771f1382fdb24cb936dc4220a9a6a44669d7c48564e85b475a076c4b06f1f2b8dc04e2d0a0775bf52fcb811a903270d704bac39ed1eeb3caee9b0940e0c22f513ad3c262000047db217f2aea76370af22adbc3c8e6f1e6fc22b5fb4b176f405517e5fc483c50076ecbd2af833c45f1b7fe21722d35bbb5153068426c1a630f9d08517953b39b9adf9b9c5f5f7a9bf2f0020e84edc541bb5112bd00d3dda0a5a784b038de7f2bada95b5040690ef556a5ae169b874f26f85c114e71a0393bda4c8c1aaad8b4c7523f24a901324c9d2cdf6deb88bfc03092130aafcbb75ed469f269a78b83937dea2fc1d0e3d826edb978471c5cbadbd60bd3b9f418ef30aa6a437319793d5b252b30e6c6587b7c888da6d257a59356d2e3aa7ddfe477cb7122a727289d42a5d0773a3a2a93a76e3ba0c854a98a4297ae388f0861f64f1949eda7cb8f1d643b1a8ea488f1565a829c3dc06ddf10ef193ddc74661d4a1e8ade01fe2652ff606d48eee3732c88603f8059c56d08b231069eee3c4c9b62ce59fd03352723ae4068983c5ef5f3aefdacb92756bc051c15936f86ab70910141a897545489da87f8ec6a545626dfeedd1a01b39b03c0961030fca2eef0e0935f0afcf495598ae5e1b428152e62ecf21512ea27d7295bb9697eca3a6fffe5d7c1f1c389ec0d4f509d3bbda5d3bc31cbf8d6a32f966d654b18c25134fb994b1acca6ded0e13f7a2d94964b5e16ec0e0448398c297314254a9acd36d14c342d637084b96e0b770ad7a46d67238f26625e2f3e2c1283983bea299ad149fafaea62e4622c29f168ba2b091ad8a19e5c19f0f51608c0f55012f829af2934bf00b59ef689b93fb5e080620da166f61251a83ef4c52f246bd5ead76449c99048eadf778e52313935ca50d953a962941d07cdb5f201cad408efeac1802f1b622bf9ff338ec0dc0b61297e681c15db4ba82b9a7c7879b2897e2f4da36de9d366770c222a064d5b56ca800009d260376a6dc19f63d0a5fbb4f2b7ccb71b9d693d4596a4580d7822872f29a3af6d0419aad50b5e44515ce4b48bfb923c16dff60eb890bc04a8997b4bb347a643ca436ffb8f4cdab529c2fc847ef8db017dbb8ea76f645eaf3d8314d8b68ebefdff622076f5f5365fb00db199dcf6ffc998d4007a2d3ff11abd03a71f7c2b23bf7da785010acaddc388d21ca5700ec57407e025ab5a93750820a0814b330fca50534edb5a1b8658301a7f175f110c8513b9e0841074f135200965e8d74c93732c7c34c003cb727e86e6caf3fa8ddf54927001e1f29c7ffe1cce3cee719f980d4ffc9abebfeb1c5059b52afe9c78413a6e825af24fb1c675b906577bb1afd02fae10b6d7b6d9a394826987a621c3d332320f714e74b709236dbdcda930db15650d1fb3dac7333944a205c69f78433545b942dc8bc41a670da0ede8b0383e66838a2980344d35977e9a1fa94c164f73ddb673c7e65eeb70df39bf25b692dd09ddbdb6a5d0bd0a5b5773c128abeb021147277cca9c8f76dacdf75174969ea62b479d05557ad3365f0aeaf061323d8de1773c81cfdb809a55e5aa6967a3fde5eb3b590a523e3b986997bd42adcaf55f5859641d8a20288e48eac8b5d3ee23d71be3298120031437d650645e36786b6f887d9dc74e7dbbfdb6d463e912f3e462480b5dac49a2804eb56ff333d7fce4c1b29036ff26cf7ebfa0bb46e36f6ab37cf8a4480fe85004a05a046a7e367ce78699a893f7d9471fa1b81b23d59bc1dcec14ac85db72056c7c84be166e87a2b120c6d7e53d3b1505c1336cd362e1d101a2c29d62ce1e2733efb4e4861a9f712f678b09f174fce6ab5957c185e77b0017964f7caf17ab31531f8ad3afdebadaa949aac1f85b1fe31553afb464ece3b0db14a5c0b42b9574729bd41f1e543529219939685e7dfc643263f363b3836cace58433244180f1ca6bcc740a0e6c66ec22f5c0edb91599faad9ff618d541568680831e5659c73d01151dc4a89ad6666cca1ad7e57bfe819a305328f00d680555f4979348fb444c508785db795d3505b764f328bd123dd2f4fd13c3be9094b5232ff38b02e485da80ea0418d1d6c6facf7bbf020c5d2894f8c4f6d67a0ecf660dc87af9c625c7b8dc12921f3f01edc8954fbc40a61d87bd64a1eb7aa18d525df842492d16d380fbfa0022118c22fe617e4a43dc311fbcc06ed9fa656deadd965021ff973a19a84bb2c04eeeda2b0d8e9dc4ebc9818c21661fe95c42f8917d88ebb5beafb7e0ac35e7174e9851ba2a8c5cf4115a5e0391b65a8fdaa9750c07046e67881cc491dfb14999cae28e835dd083fb5962ea9809664fb5dbacaec93423f9ca2bd37da35fe5560409f76adafded418891cb45d22363cd77f0eabbf90e6c0413f56175ead17954d18f5e13e16f9a43e3d50ecfcaca20cdeadc6a85e3c5d8039d502e82c8657b0d8d67aa81003d5eab83884df0206fa5020e32eee186aab41da797a32c8e7d2ba8309b463bd84447d27d51f8978d744474dac867822814e1adf897c79e53662a3db2575a6ed5654e41baf4da6415fa4f79baa0dd5870916814fb42e72441080dc50f33fed0ec21597dd7baa72a31f3ef6b53786911afc7ce6b89d8984f5dfe26d29c6d1b59671820390b7c9695f51bc13aa84abb6bb49cfc8dfeb7aebc2d21b9ea4a44be2f90ac7934d6f3910d388dc65ca3f18c6875ff5ee81a4bd61202443bb96e40af5c8d840ecc4374ecccd8c242fbaab3bd5b57beadc8562e5280716898d6684c0f09102f378e9e4c5dc0f2e735acb8c5f312974e1c80c817fa504fbb948c9a5fe779f249b1faf95d3de797615f29ad83807fc357c3de2fa1dea6b75d70bb20d3db88b7ed167e377e7c1f2b0f185cfc598c54a3de9a3c6a1099f3dbdac4ccf9b541c5b82ecc46a02054dadc255b27507615ea028b887e3446f7bfe9f07a397ed271b31f6b61e4d4fe4f444dd501d1bbe5ad0d9f532f22f7d181cdf2eacf02fe73b86bff775c1d27c97fb5d61a62c7bd160fa9abc411628339926915f016c15cb9d7dd6a161a46d0dbe8ce79ee8f92e4b0b1a90d26fd9a336d2dabb6844086ab91ccb875039c22d3e3cd623369642416b13940da156fc38bf22ccd790eaa594a43057886e31aa1d9b08d551128c227b111c21c11149e9f17ba10ef9fa330cf779b53777067d118d92a029359b60a4967460db0ad15437c26cddbe0467cb86332a4ee5a7db0994c70fae7b0c91b2be8ab0b8fd59724f22a7499f367f0a564eaec5a6c6ec33e217d1179e063bdfca7aea8643b258a91326996cea21c3f5833e88ffaf7162760360b068136172e8ff3896c6cb3f85ed389087b782bddc2787d316d02218651e726ac74f0680f41375eaacb65f5e07fe02554b4ef68d21c0057151f1885e40efa06cc575d9da764646ad1623a12476fd22a1689b80029d686b49fc5e3809ecb67a3d455db985f9fa5ef94ff15a37b7f436e25fb6b332a61593b0091320aa059fa4e7b40218721e93a4852a305afb91482711959886dba77ca130d6b704152c88a497492a8c8497d6500d4c00303c976ce4feb63af3c04d79470798916a39a35bbe286f0139ab4a389776216f0ff45192b78ef7bc37a591961f29334bb159f05cfb29077d25ae64e25511cb0e06d04bce0bee9940cc9301e5188410d90de2e6f3c8b2bc7d3b63a7e9e81e06c0f7aba6deb3f65ade427ee759f4a145d48f46be57452c186f79756eddbd57a8afa56c464ec2390bd0de443e9050358600d2aae0f4c26c57509ca44f87828a78b3402877097793a124f1d8797df9ee8a3d4ee31b2d0b6ff15d9fd4dfed8576f8473f11ff1fa8a9ba5d6a98b496fa8ee07b780a2f3db6096ef7a210944c421f917a1dbb6656b5dd1b5d28b9c12fffca50c7ae219cf2fc942f44157e6a9075df8bd1d1a4e78c5257de2c0547ecdbdecab658dbb78cd12f123cf30126f6d3bb9862ac2577dafa57f6d781de013c24de2c1a61b68852933cd52a008188c81db89a3a5f6d726b4a36ec94b88c1f9897ff4c8b70357dd6b8df89814979f23e6299bef881b418b43b2b8b2f9a2b4fdb63602b4855b6af76a0738b05f9595f109a087f51fec1d8c8fd89fc65a7a5e87fb51c6c1d5f7681a03866935099d71a14090b4acbd9b32b53f41b5bd941825099d2b60b8a2824b2ae8a6a280bb49664b168b680b5557cd4c043cd8317740b7bfc67c09c572a6f9430717a7fe8c0de6eac2a8197353fd98008318301586574d3d0a9bd940119c86eab16c37b52f5279ef017dd05ee01ec251ecfa4552faf56b2e6c5da623db3dbbe5b61c997b587a1ff324bd52ebc009083abc3b38ec8e025a74c9a93b4ab93563b077fe21bf8e003ec94d0ba086c755d57d089a4d26da0dc3905794e9f514e6489fb1fd17017214d13e5f8953b5ccbbcdceabbb795c47509b77b856a325062bb576472639a9c5945758862e9919a585a08323e3f6b373daeeae53fc34bcb0348c225b42681698b560adad4d6e76a142fb24fac16ffe41d3ce90f3c8d2c23c9bc9a1f1cb6d7d914a52a4a81e0bcdc81c3db916280b5064e337dbeb609fc55349c3b3c157fd5f290f96a49b9bf793bfc86a5e2f2aa8640b7051cfefc60079807daba74caadda51e509c45b6334364751424f6812aa649044cda11ce9f667433ce507521a2fa5b2bf7426a06c4cd2b96cd5daddf40b83f5201066962ccab5aa240abfc161cd22767af0c9f38eaa353ec94ebc91cd5d0d692199c51c94ab0ad01a96fa5acd1dc426732f46c97b48ca6122e35c165d67af9c1c7939efc4b34b94287339ae19dde488d5ac009b271ddcde85ea9651bc793b1c6a6a71aa569f03f350e0bc9b7f03697bc8c676f8adca0dab2885b40c5ca0cb39f5aafea2ca215267af81f67b1f3598395e1f7b4b98fb85add7d260d53aa7d6720454809daabd390283214a8c04fd86be5fad5417c7256beb270d6528b611d57d9889792f6615ccc8b27e36de49960b2027c12915fa472bd15b233eae9026771be4459397016ebe5e7c03f0c9c24aa62936a98f09c37aabbcc001b55b1fad4729be3b708e70f893fd1901064c5863e444c38ecc8127c40fe573a412f154731587fb4ed173a112ab5ef727f9d35538a00280b099dce9aa990cbc3fb5ba0f224d637d26060c93dd768e4ce14ecdeff52d374e1bbb75b4e36f5c24bc2efd619896d4ae7ce89b3eebc96024c0f20643c8722b20570f52546f0b7950a8b1364041611a57f1cbf0473d1b4c0fb270c3eddcb7ec770990e738057e1e147c7cb222a4fa1d43159b00a5cb4bf8693f46e338c5342fb779dcf3774c47916c9b6378bb7024c46d3a9283db02f06f33e923194f377b60d3a3544df65d7fd0e864bdd2f5498a186d00c055a3266ae58df5324b5577ff8bc10e802587ce4b40224795634a8740f46ca4684513bfdfd058fb3dcacae59fd81328752a4dea349073bee3f8f6deb4ab49d07dc8e12f5c07c03e18dd9f3ed50a81cfaa34b7d76a0ca136800c7dc9d8e4d031dd83d350fdc5f1c381dfe9a4d50ce7a3d672497686e36417bf42c963ea4d57b4a1e8406a8d8366e48d90ca841f11d578707745642a92bee162bf53413193c4f56393fd6f3f16104b037e540467e4399ebb474911ae4e3f6bd8de3b8d78d465a0f965aa83a9a6915e1a8680173dcfc943b0b22e72a9c1e2ff91035c73e1ae8a391433927b4f98721926e27c24ebfd9ae433305de8ae18e4f7e58fba0a71711bc2462e6f58b52f62eedfdd188d82e837d84c695128c442c7feca7cf33bf9f3e0419c2ad2c0d0ce716cd3aa50d14590a1b0cc3f7a7faaf6edbe23f3dca06328618c47eb300aa2e70eaa9d3d9ef1fedc7c62f678001d00b73afedcb904064ab9402556bba36635d6009200524723e30f9e5f3ba0fe7f0dcdd7a71e917d20ce83385832477aed639ff46a6407b6bda8adcc1445c9ac5050012779d5d203e01c1a60a6ec1189e0c311baa8b4b7f80353c2545ed25d4e967bfb55d60502909177e51a4fab5f14bfafeb2f8e29b8c358c4c6e01126ae4909dfce62c05b7c1f26ebec4ca1eeffadf7e2de92d505d4dbce9f01f5898b78a29df49041334f7723ed3f33ef66d47a7d7934bddb65bbc35c61f6f87aaca98e33ed76d99bdf91028202aac5fdc2e8f2349d213d720ed20342275ba17dbd4513771a523d59d4e58f1a85a5b2db3444a7426aeeeee000c7732b580136dbb5da4e38bfeb9b4bcc8d8277191a6bdd3cc8999e7b029eac6d4a3230f3921bb7c05aee79eeb6582da5f55ae988284fb406944f60ce5f56c91571d9871d08e1abbd727021af7de75ed8636ae66b58e28e49ed26f90858103f40477500d8ea9dda0aeb93f8f3ed64584aa53281c0e823f421d2a5ae4c5c6dbed7a5eea7759e5f88e0b1e4c5aba30402eec0f31cad961c7b91f97718d69d36b2e05116003e48b154bd192463c88a91bff59469260d5253f7592d88d7d1b404eb44a1a37b9bc168d2aaae1d9c1bc76429b443e750c5465c9964024401dd840827b6562119bfd26419be851774ee6f042d03023e8733d5e5da81f0d79eb6b2d44680c761a4067340a70e64928ff083d3d6d580818dacc91cf911e43996fdef4e7a2b99961ff9f1524429a619c262bdca9d66ea3d6e2af7726d53fb2daf4aad27c4f140463c2f28ca0080361ebf1bc53d04ed095e79ea456a7df398b27ac4968c91fc05f25ce547c55584b1fd4409bf831f1c094b7b5b922ac320b68f0a2ed9fdf6589cec5664d086832fd2d124ac0a3414cd79231f7608d6a7bb282cd2294b976e76f677a0c55b6230b16ba5c778e7c4b098b254f61c48a96840dea31526ea453a64bd8c6c79cfa6b2d9b67c1f43dd09dae0474234e370dbb87e09c2dd3c06f6e2537d0730258c267dc0125b5de1abf6c873327558059c1f15f8ae330f57bd01e922e7ddfd1645cb7f65fa93758346f40795f7fb4ee34a52a77b88e21bb4ae5f3992a8ecf3749543c9a29018270dc78b2e1b2e2ba8cabfff252d2beab6f3a03fd97f7a3c64c9dc653fa2776247f18806fcaa806adbd1e1f40e452778799dfaa54ddc5034b68b1111204831d172666fe2491f8e7d1b774125021e1e506846a85bf0595e3a4f1d6749fb1e0f307db076f793fbb376748eb4848d277f339f8402c34996a6f0402867b4842a2b49dc5000aa7fd1d1ece309a7d9ac2de864be2f891714f80dc33de0ba12b443d4c797028b428fefa73f4d449db3d8857f54b87bb18be180defec7d342f9bc6a62cf7e803019d5b34699b4d641f7b877473b31eb285ed7298942b390c6f0dc3f2d020b99e97cf77d9c0deb5f7a4d24acfed27529983238a9396387004c1d0d559914fdd328d8138d8a09a239d13ea7cbe6a1e5bb15ef31744c47db7b2ed9adba3490c925f7cd32ebadf1703abfb6f7208a0618fac5ce87c41c34614f12890262e7b768fd61d18ade5dddd17f981a331481d8cf51a4ea0de2b5ae771cd9854eb837e0c3161135c2ea96bc65368fd4ade64bbe8b1ad83bf8e441efa5ad58b504b3363e4f64b107a052e520da8592d5a82cdca61e62dc929675d43ec22adf0d5e6e1b2c6e6da2a8331e43891ec01b8d437ad2eef660f0819b1cdc0da41dcb10e3ab569400b2bfc6596aa3fe74c0a9eab4d49734f8ba17ae80dc2af75f003872b9242d0ea419bfd8f7998e8f5efc3a3f31aae23228f5df23e1a4f9f887aaf62d16db191e16423363228ffb7e5707dbf48b0718664104ca1b3b8094ca2f2e505efeca17449391a1de5273f9945d778a44d25bed43e88627e0f02ac99b17b6062f1cf1c3ff896ffedd647fbf5b17bba1c9f48b44f37c175cab7423bb515266c351bcd32cb8e686dcc2f53c0e6e69370bfeb26a92eed46345faa54d16fb8631abbf87155893a00321d4e6895f1db18791570a3c3bafdc4a0a0ee400879babfb96c32de9fe4f0c7e5525b214f2efa6134fd11b7cce737306c9a2f181589296861a069b52ab409f6d68947d4e93408c58a2583852eef6180386095cf05af416dc753e04d01e63850954877052b91e0106e9e4a09188db2e3d20c4d0f55cbc70191eee8306627934b4385f0388d4473d255edeb2863fd199c7de24e4017eb3419a01986efdd686e6811eafce821a4990612618c635f5493fbbf078f7ebb6ad2524685673ff6de8ddd1f31f5e8c38a4ea82032acc1bc4492921a227869de3465b63c8af1f9da042d6a4ff6038fe2d5d8b33957b2da3751263fc761e474183e9d98800b9a8f70b6c14dc3088e6433e873635e892e0011b619e75d1a9a8f2cdb05cd400a3c9e1e3a49d3e2b94dd31ee691b3405c9d7afc2cd90b158630877b369fc7fa89e99436d8199844c9c8d983dcdc9265ac7fce701366b77a96188bf3e38edd51db71b6e812e5ad91b365c42113579a9a21d6ae1763cd661abeb0d44818b48d0044852bbbde748d0d553e3248e6b8c8b96626955e558ea3545d37bdf8678650846328a192a3094499e278f97ffe373fb84b66cf632cf310e2f9f7bf9796949d8e3df3ce3449962ef94e802866b15a96f639a01563196eebcf5d4c44874b04fe0af19f5e529da8b5c84c4a7720c4a4e376853a62803f147a0b02af0cdb84c8beb82943544e818a405dac88240d5d16163dcd305863ae3e23cbd30a3afee464d3c650584b3f0a4d18d433629584de57bfeae052f0ee56fcbe9e99fb8889330cfde95c2acf458a9547d845d9f16d61c91086e6b093c3231f4ef8ee1d9a483b3ff64e5e1dd458ab1498d5c9ffad7dcffc08f3c17e3471e5d7864d7ff46e3edbd31006cc007692082ab2b876e00003437ae98a12fb5113f30fe0273d6e54bb724e1a68231b514a684c652d9b3221f1002d107607e95690f42441a42fb27ea8c06bff93989868b69b7d89595aff235177a7033cd8460b5ce72d693a465ed5f32db2eb84de6a073df764b171bf95d989fb1d5aecf51a035b6b3a2598178c626355dd45fcfd7418cbefa7266408ead0b0758bdb20458ca2a9e17c4948ed2b448ee0b05c9ca40d2737f18b5d55c1bbcdc54d8d84057211148fd29c673a4d9d40c9ea95934adbd92cf51bc04bb5a129de5e61e745549c3661216cc95ca8bdbaf1300afa4a1b217520498471e25786535183bc9f9e807d5e2f8a719371b36f582b89829c3d122f609d6fbab9ba3f9b531254cf8f136da347fca26c134038e9fe5c37a20a747273a6312a2c8c54a9ef16f1309704b4c6e8f28c64b120c7fc4527250580de7febe7bed26976a2b5f50af3d391005b06216946b0cb83029848092f473b0504a747c10302ead0743abf7879a6bcacf66c51ab74c85dcc9ab80ea97c8e410f4ca2be1496ada764b0d40710110b609b94959063cdd744bfff8a205cc78267451319181314c1ec3f0f7698c91592f5e876a6953cba7040a5dd5abba1064319ca4c9776a5d164b2378765b385c4bd046ece0c19853e5a6b0a95cc4e64ad056327209f6f98f085e2abad270930e1c74f462137184c7ad9cf88a73db662c15235e79065eed8c89e3ad88a68a51505dd09e042871d65204ef36b7958543b23dc4661cd796f98738d8638b3ec8612da6bbd01b3915a23076a55497b8442c6895f2d708e5212e3bc4a377849f690fbf2a4f40189d1416a1c30b841fdf035e97832af641162d221dfd9b9f636ba0e280a338bb5ee8fb9421216f6fab09b782dcc34190bc65f906dfcbf31a932c85440ca6e8e6f20c2a9a76a27a2cba65403ba8ebacccc9a282e29cb8373c24858e51f7f19fa0f484ff15f1f70a819a84abdf69f09c0a8d4fb84ff43f867a4574e1a517b8f3f3724388d90a82dd0ec5d207d40e72812e2b3cb098e9d0a491330fad438355e7bee0240e4fc3b99675ff5f51434746fa700a2bddc2573b2cb5ae6fdfe7130869fc26c95d800ec5870d63fc5b54256cec89f738d62f7921569b4b72ffa7d19823d2da72215a6f994f950945c", 0x2000, &(0x7f0000007080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006680)={0x78, 0x0, 0x6, {0x7, 0x2, 0x0, {0x80000000004, 0x5, 0x8, 0x0, 0x9, 0x2, 0x4, 0x8000004, 0xffffd2c3, 0x4000, 0x9, r2, 0x0, 0x5, 0x2}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) mkdirat(0xffffffffffffff9c, 0x0, 0x1c0) 1.092310335s ago: executing program 6 (id=1502): socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="380000005500e50226bd700001000000070000", @ANYRES32=r2, @ANYBLOB="20000100", @ANYRES32=r0], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x20000100) 732.443448ms ago: executing program 2 (id=1503): r0 = socket$igmp6(0xa, 0x3, 0x2) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000140)=@raw={'raw\x00', 0x8, 0x3, 0x278, 0x150, 0xffffffff, 0xffffffff, 0x150, 0xffffffff, 0x3d8, 0xffffffff, 0xffffffff, 0x3d8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@mcast2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [0x0, 0xffffff00, 0xff, 0xff], [0xff000000, 0xffffff00, 0xff000000, 0xff], 'bridge_slave_0\x00', 'pim6reg\x00', {}, {}, 0x73, 0x4, 0x6, 0x44}, 0x0, 0xa8, 0xd0}, @common=@unspec=@STANDARD={0x28}}, {{@ipv6={@remote, @remote, [0x0, 0x0, 0xff000000], [], 'erspan0\x00', 'gre0\x00', {}, {}, 0x0, 0x0, 0x0, 0x66}, 0x0, 0xa8, 0xd8}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x2d8) 661.595447ms ago: executing program 8 (id=1504): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47) setsockopt$sock_int(r0, 0x1, 0x21, &(0x7f0000000000)=0x5, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4) connect$inet(r0, &(0x7f0000000300)={0x2, 0x4e21, @empty}, 0x10) sendto$inet(r0, &(0x7f0000000200)="b44cd1", 0x3, 0x40080, 0x0, 0x0) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000340)=[@mss={0x2, 0x80000000}, @timestamp, @window={0x3, 0x0, 0x4}, @window={0x3, 0x8, 0x6}, @window={0x3, 0xc, 0x4}, @sack_perm, @sack_perm], 0x7) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4) sendto$inet(r0, &(0x7f00000004c0)='<', 0x381, 0x805, 0x0, 0x0) 542.189355ms ago: executing program 6 (id=1505): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0) getsockname$packet(r1, &(0x7f0000000340)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="38000000100005070000000000040000000000", @ANYRES32=r2, @ANYBLOB="00000016010000001800120008000100736974000c0002000800030036"], 0x38}}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=@newlink={0x30, 0x10, 0x439, 0x70bd2c, 0xffffffea, {0x0, 0x0, 0xe403, r2, 0x40083, 0x44310}, [@IFLA_LINKINFO={0x10, 0x12, 0x0, 0x1, @sit={{0x8}, {0x4}}}]}, 0x30}, 0x1, 0x0, 0x0, 0x24008004}, 0x4040) 277.753977ms ago: executing program 0 (id=1506): mkdirat(0xffffffffffffff9c, 0x0, 0x1e3) syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x40) lsetxattr$security_capability(&(0x7f0000000100)='./file1\x00', &(0x7f0000000140), 0x0, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000780)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) setxattr$security_capability(&(0x7f0000000240)='./file0/file1\x00', &(0x7f0000000280), 0x0, 0x0, 0x0) 123.703207ms ago: executing program 8 (id=1507): r0 = socket(0x11, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000005c0)={'ip6gretap0\x00', 0x0}) bind$packet(r0, &(0x7f0000000180)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @remote}, 0x14) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xe9, 0x4) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x10, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61}, 0x94) setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000080)=0x9, 0x4) sendmsg$netlink(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000280)=ANY=[@ANYBLOB="3f011400dcdc14"], 0xdd12}], 0x1}, 0x20040051) 52.204565ms ago: executing program 2 (id=1508): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x11, 0x4, 0x0, &(0x7f0000000580)='syzkaller\x00', 0x8, 0x1000, &(0x7f00000014c0)=""/4096, 0x0, 0xc}, 0x94) 0s ago: executing program 6 (id=1509): epoll_create1(0x0) r0 = socket$igmp6(0xa, 0x3, 0x2) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x170, 0xffffffff, 0xffffffff, 0x170, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0x0, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528) r1 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r1, &(0x7f0000002c80)={0xa, 0x14e24}, 0x1c) connect$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c) sendmmsg(r1, &(0x7f00000092c0), 0x4ff, 0x0) kernel console output (not intermixed with test programs): ave_0) entered blocking state [ 438.034008][ T7782] bridge0: port 1(bridge_slave_0) entered disabled state [ 438.082163][ T7782] bridge_slave_0: entered allmulticast mode [ 438.121984][ T7782] bridge_slave_0: entered promiscuous mode [ 438.294878][ T5884] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 438.440440][ T7782] bridge0: port 2(bridge_slave_1) entered blocking state [ 438.498227][ T7782] bridge0: port 2(bridge_slave_1) entered disabled state [ 438.527886][ T7782] bridge_slave_1: entered allmulticast mode [ 438.550445][ T7782] bridge_slave_1: entered promiscuous mode [ 439.054342][ T7782] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 439.164962][ T7782] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 439.265523][ T5825] usb 7-1: USB disconnect, device number 3 [ 439.792118][ T49] Bluetooth: hci4: command tx timeout [ 440.241081][ T7782] team0: Port device team_slave_0 added [ 440.473685][ T7782] team0: Port device team_slave_1 added [ 440.480311][ T5884] bridge_slave_1: left allmulticast mode [ 440.506763][ T5884] bridge_slave_1: left promiscuous mode [ 440.559520][ T5884] bridge0: port 2(bridge_slave_1) entered disabled state [ 440.668481][ T5884] bridge_slave_0: left allmulticast mode [ 440.674324][ T5884] bridge_slave_0: left promiscuous mode [ 440.746552][ T5884] bridge0: port 1(bridge_slave_0) entered disabled state [ 441.904065][ T49] Bluetooth: hci4: command tx timeout [ 442.314916][ T5884] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 442.436630][ T5884] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 442.507490][ T5884] bond0 (unregistering): Released all slaves [ 442.977004][ T7782] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 442.997584][ T7782] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 443.082043][ T7782] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 443.310356][ T7782] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 443.360446][ T7782] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 443.464798][ T7782] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 449.903713][ T49] Bluetooth: hci1: command 0x0406 tx timeout [ 450.586461][ T30] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 450.824801][ T30] usb 7-1: Using ep0 maxpacket: 8 [ 450.896035][ T30] usb 7-1: config index 0 descriptor too short (expected 301, got 45) [ 450.904421][ T30] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 450.927143][ T5884] hsr_slave_0: left promiscuous mode [ 450.951112][ T30] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 450.977524][ T30] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 450.997416][ T30] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 451.011183][ T5884] hsr_slave_1: left promiscuous mode [ 451.036876][ T5884] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 451.044895][ T30] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 451.072509][ T5884] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 451.102513][ T30] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 451.121592][ T5884] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 451.137760][ T5884] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 451.329434][ T5884] veth1_macvtap: left promiscuous mode [ 451.360850][ T5884] veth0_macvtap: left promiscuous mode [ 451.383177][ T30] usb 7-1: usb_control_msg returned -32 [ 451.397032][ T5884] veth1_vlan: left promiscuous mode [ 451.405640][ T30] usbtmc 7-1:16.0: can't read capabilities [ 451.416043][ T5884] veth0_vlan: left promiscuous mode [ 453.034646][ T5884] team0 (unregistering): Port device team_slave_1 removed [ 453.113173][ T5884] team0 (unregistering): Port device team_slave_0 removed [ 453.968585][ T794] usb 7-1: USB disconnect, device number 4 [ 454.558266][ T7782] hsr_slave_0: entered promiscuous mode [ 454.592832][ T7782] hsr_slave_1: entered promiscuous mode [ 454.830176][ T29] audit: type=1326 audit(1771410112.650:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7901 comm="syz.2.485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f043719bf79 code=0x7ffc0000 [ 454.951201][ T29] audit: type=1326 audit(1771410112.680:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7901 comm="syz.2.485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f043719bf79 code=0x7ffc0000 [ 455.079012][ T29] audit: type=1326 audit(1771410112.680:562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7901 comm="syz.2.485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f043719bf79 code=0x7ffc0000 [ 456.232789][ T29] audit: type=1326 audit(1771410112.690:563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7901 comm="syz.2.485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f043715c84e code=0x7ffc0000 [ 457.145964][ T29] audit: type=1326 audit(1771410112.690:564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7901 comm="syz.2.485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f043715c84e code=0x7ffc0000 [ 457.345892][ T29] audit: type=1326 audit(1771410112.690:565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7901 comm="syz.2.485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f043719bf79 code=0x7ffc0000 [ 457.435360][ T7912] netlink: 12 bytes leftover after parsing attributes in process `syz.8.487'. [ 457.955848][ T29] audit: type=1326 audit(1771410112.740:566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7901 comm="syz.2.485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f043719bf79 code=0x7ffc0000 [ 458.110231][ T29] audit: type=1326 audit(1771410112.740:567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7901 comm="syz.2.485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f043719bf79 code=0x7ffc0000 [ 460.600275][ T29] audit: type=1326 audit(1771410112.740:568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7901 comm="syz.2.485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f043719bf79 code=0x7ffc0000 [ 460.744523][ T29] audit: type=1326 audit(1771410112.769:569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7901 comm="syz.2.485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f043719bf79 code=0x7ffc0000 [ 460.871980][ T29] audit: type=1326 audit(1771410112.769:570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7901 comm="syz.2.485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f043719bf79 code=0x7ffc0000 [ 461.022765][ T29] audit: type=1326 audit(1771410112.769:571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7901 comm="syz.2.485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f043719bf79 code=0x7ffc0000 [ 461.133618][ T29] audit: type=1326 audit(1771410112.769:572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7901 comm="syz.2.485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f043719bf79 code=0x7ffc0000 [ 461.269241][ T29] audit: type=1326 audit(1771410112.769:573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7901 comm="syz.2.485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f043719bf79 code=0x7ffc0000 [ 462.223722][ T7930] overlayfs: failed to clone upperpath [ 463.071870][ T7782] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 463.190570][ T7941] loop8: detected capacity change from 0 to 128 [ 463.228880][ T7782] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 463.398469][ T7782] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 463.505076][ T7782] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 463.598527][ T7945] netlink: 292 bytes leftover after parsing attributes in process `syz.2.498'. [ 463.649924][ T7945] netlink: 292 bytes leftover after parsing attributes in process `syz.2.498'. [ 470.328703][ T7782] 8021q: adding VLAN 0 to HW filter on device bond0 [ 470.610764][ T7782] 8021q: adding VLAN 0 to HW filter on device team0 [ 470.687699][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 470.698429][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 470.872664][ T5953] bridge0: port 1(bridge_slave_0) entered blocking state [ 470.880223][ T5953] bridge0: port 1(bridge_slave_0) entered forwarding state [ 471.284402][ T57] bridge0: port 2(bridge_slave_1) entered blocking state [ 471.291743][ T57] bridge0: port 2(bridge_slave_1) entered forwarding state [ 471.372715][ T49] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 471.474907][ T49] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 471.514642][ T49] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 471.560535][ T49] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 471.577429][ T49] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 473.707082][ T49] Bluetooth: hci0: command tx timeout [ 474.244059][ T7991] Driver unsupported XDP return value 0 on prog (id 18) dev N/A, expect packet loss! [ 475.088084][ T7782] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 476.633049][ T5781] Bluetooth: hci0: command tx timeout [ 477.674125][ T7973] chnl_net:caif_netlink_parms(): no params data found [ 478.581794][ T7959] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 478.681847][ T49] Bluetooth: hci0: command tx timeout [ 479.083400][ T7959] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 479.144820][ T8023] netlink: 8 bytes leftover after parsing attributes in process `syz.2.513'. [ 479.533932][ T7959] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 479.897204][ T7959] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 480.761663][ T49] Bluetooth: hci0: command tx timeout [ 481.541515][ T7973] bridge0: port 1(bridge_slave_0) entered blocking state [ 481.646541][ T7973] bridge0: port 1(bridge_slave_0) entered disabled state [ 481.675286][ T7973] bridge_slave_0: entered allmulticast mode [ 481.704184][ T7973] bridge_slave_0: entered promiscuous mode [ 481.768287][ T7973] bridge0: port 2(bridge_slave_1) entered blocking state [ 481.781503][ T7973] bridge0: port 2(bridge_slave_1) entered disabled state [ 481.933709][ T7973] bridge_slave_1: entered allmulticast mode [ 481.960152][ T7973] bridge_slave_1: entered promiscuous mode [ 481.981544][ T7959] bridge_slave_1: left allmulticast mode [ 482.029600][ T7959] bridge_slave_1: left promiscuous mode [ 482.057805][ T7959] bridge0: port 2(bridge_slave_1) entered disabled state [ 482.113706][ T7959] bridge_slave_0: left allmulticast mode [ 482.119528][ T7959] bridge_slave_0: left promiscuous mode [ 482.172171][ T7959] bridge0: port 1(bridge_slave_0) entered disabled state [ 482.670181][ T8054] 9p: Bad value for 'rfdno' [ 483.459970][ T7959] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 483.546762][ T7959] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 485.549138][ T7959] bond0 (unregistering): Released all slaves [ 486.251392][ T7973] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 486.326677][ T7973] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 488.035302][ T7973] team0: Port device team_slave_0 added [ 488.114516][ T7973] team0: Port device team_slave_1 added [ 488.892126][ T7959] hsr_slave_0: left promiscuous mode [ 489.117483][ T7959] hsr_slave_1: left promiscuous mode [ 489.214275][ T7959] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 489.272394][ T7959] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 489.343731][ T8086] loop8: detected capacity change from 0 to 256 [ 489.416052][ T7959] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 489.475421][ T7959] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 489.563263][ T7959] veth1_macvtap: left promiscuous mode [ 489.569007][ T7959] veth0_macvtap: left promiscuous mode [ 489.576462][ T7959] veth1_vlan: left promiscuous mode [ 489.581824][ T7959] veth0_vlan: left promiscuous mode [ 494.336802][ T7959] team0 (unregistering): Port device team_slave_1 removed [ 494.545625][ T7959] team0 (unregistering): Port device team_slave_0 removed [ 494.663434][ T5781] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 494.675796][ T5781] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 494.685283][ T5781] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 494.698274][ T5781] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 494.709515][ T5781] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 495.554286][ T7973] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 495.616287][ T7973] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 495.724167][ T7973] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 495.748749][ T8119] fuse: Bad value for 'fd' [ 495.908894][ T7973] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 495.958053][ T7973] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 496.045924][ T7973] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 496.868980][ T5781] Bluetooth: hci3: command tx timeout [ 497.148430][ T7973] hsr_slave_0: entered promiscuous mode [ 497.156750][ T7973] hsr_slave_1: entered promiscuous mode [ 497.230416][ T7973] debugfs: 'hsr0' already exists in 'hsr' [ 497.258859][ T7973] Cannot create hsr debugfs directory [ 498.979810][ T5781] Bluetooth: hci3: command tx timeout [ 501.036731][ T5781] Bluetooth: hci3: command tx timeout [ 502.293396][ T7973] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 502.509050][ T7973] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 502.668145][ T7973] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 502.801535][ T8114] chnl_net:caif_netlink_parms(): no params data found [ 503.060919][ T7973] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 503.132002][ T49] Bluetooth: hci3: command tx timeout [ 503.505471][ T49] Bluetooth: hci5: command 0x0406 tx timeout [ 507.801289][ T8114] bridge0: port 1(bridge_slave_0) entered blocking state [ 507.813840][ T8114] bridge0: port 1(bridge_slave_0) entered disabled state [ 507.821542][ T8114] bridge_slave_0: entered allmulticast mode [ 507.870734][ T8114] bridge_slave_0: entered promiscuous mode [ 507.965495][ T8114] bridge0: port 2(bridge_slave_1) entered blocking state [ 507.998452][ T8114] bridge0: port 2(bridge_slave_1) entered disabled state [ 508.040338][ T8114] bridge_slave_1: entered allmulticast mode [ 508.061163][ T8114] bridge_slave_1: entered promiscuous mode [ 508.109274][ T5988] bridge_slave_1: left allmulticast mode [ 508.139177][ T5988] bridge_slave_1: left promiscuous mode [ 508.194365][ T5988] bridge0: port 2(bridge_slave_1) entered disabled state [ 508.429318][ T5988] bridge_slave_0: left allmulticast mode [ 508.461801][ T5988] bridge_slave_0: left promiscuous mode [ 508.504011][ T5988] bridge0: port 1(bridge_slave_0) entered disabled state [ 509.732495][ T5988] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 509.880610][ T5988] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 510.029613][ T5988] bond0 (unregistering): Released all slaves [ 510.638166][ T8114] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 510.688730][ T8114] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 510.924233][ T5988] hsr_slave_0: left promiscuous mode [ 511.087375][ T5988] hsr_slave_1: left promiscuous mode [ 511.165530][ T5988] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 511.235823][ T5988] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 511.479923][ T793] usb 9-1: new high-speed USB device number 2 using dummy_hcd [ 511.739153][ T793] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 511.804067][ T793] usb 9-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 511.846160][ T793] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 511.899985][ T793] usb 9-1: config 0 descriptor?? [ 512.053233][ T793] pwc: Askey VC010 type 2 USB webcam detected. [ 512.166652][ T8212] netlink: 8 bytes leftover after parsing attributes in process `syz.2.566'. [ 512.434356][ T793] pwc: recv_control_msg error -32 req 02 val 2b00 [ 512.590209][ T793] pwc: recv_control_msg error -32 req 02 val 2700 [ 512.613395][ T793] pwc: recv_control_msg error -32 req 02 val 2c00 [ 512.655556][ T793] pwc: recv_control_msg error -32 req 04 val 1000 [ 512.667501][ T793] pwc: recv_control_msg error -32 req 04 val 1300 [ 512.729729][ T793] pwc: recv_control_msg error -32 req 04 val 1400 [ 512.754954][ T793] pwc: recv_control_msg error -32 req 02 val 2000 [ 512.797080][ T793] pwc: recv_control_msg error -32 req 02 val 2100 [ 512.835283][ T793] pwc: recv_control_msg error -32 req 04 val 1500 [ 512.885303][ T793] pwc: recv_control_msg error -32 req 02 val 2500 [ 512.908659][ T793] pwc: recv_control_msg error -32 req 02 val 2400 [ 512.965605][ T793] pwc: recv_control_msg error -32 req 02 val 2600 [ 513.015469][ T793] pwc: recv_control_msg error -32 req 02 val 2900 [ 513.336942][ T793] pwc: recv_control_msg error -71 req 04 val 1100 [ 513.404164][ T793] pwc: recv_control_msg error -71 req 04 val 1200 [ 513.435197][ T5988] team0 (unregistering): Port device team_slave_1 removed [ 513.453840][ T793] pwc: Registered as video103. [ 513.468478][ T793] input: PWC snapshot button as /devices/platform/dummy_hcd.8/usb9/9-1/input/input5 [ 515.739547][ T793] usb 9-1: USB disconnect, device number 2 [ 515.917267][ T5988] team0 (unregistering): Port device team_slave_0 removed [ 517.300776][ T8223] bridge_slave_0: default FDB implementation only supports local addresses [ 517.453136][ T7973] 8021q: adding VLAN 0 to HW filter on device bond0 [ 517.514815][ T8114] team0: Port device team_slave_0 added [ 517.599747][ T8114] team0: Port device team_slave_1 added [ 518.193947][ T7973] 8021q: adding VLAN 0 to HW filter on device team0 [ 518.379028][ T8114] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 518.404038][ T8114] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 518.503312][ T8114] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 518.561400][ T8114] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 518.579924][ T8114] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 518.685586][ T8114] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 519.061533][ T3440] bridge0: port 1(bridge_slave_0) entered blocking state [ 519.068927][ T3440] bridge0: port 1(bridge_slave_0) entered forwarding state [ 519.259459][ T7959] bridge0: port 2(bridge_slave_1) entered blocking state [ 519.266811][ T7959] bridge0: port 2(bridge_slave_1) entered forwarding state [ 519.881096][ T8244] netlink: 8 bytes leftover after parsing attributes in process `syz.2.576'. [ 519.887815][ T8114] hsr_slave_0: entered promiscuous mode [ 519.946393][ T8114] hsr_slave_1: entered promiscuous mode [ 521.095869][ T10] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 521.346095][ T10] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 521.402480][ T10] usb 7-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 521.417032][ T10] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 521.500340][ T10] usb 7-1: config 0 descriptor?? [ 521.697975][ T10] pwc: Askey VC010 type 2 USB webcam detected. [ 521.941209][ T8263] bridge_slave_0: default FDB implementation only supports local addresses [ 522.189591][ T10] pwc: recv_control_msg error -32 req 02 val 2b00 [ 522.240157][ T10] pwc: recv_control_msg error -32 req 02 val 2700 [ 522.280722][ T10] pwc: recv_control_msg error -32 req 02 val 2c00 [ 522.295154][ T10] pwc: recv_control_msg error -32 req 04 val 1000 [ 522.352521][ T10] pwc: recv_control_msg error -32 req 04 val 1300 [ 522.436615][ T10] pwc: recv_control_msg error -32 req 04 val 1400 [ 522.466056][ T10] pwc: recv_control_msg error -32 req 02 val 2000 [ 522.526626][ T10] pwc: recv_control_msg error -32 req 02 val 2100 [ 522.566788][ T10] pwc: recv_control_msg error -32 req 04 val 1500 [ 522.645583][ T10] pwc: recv_control_msg error -32 req 02 val 2500 [ 522.681037][ T10] pwc: recv_control_msg error -32 req 02 val 2400 [ 522.721017][ T10] pwc: recv_control_msg error -32 req 02 val 2600 [ 522.764252][ T10] pwc: recv_control_msg error -32 req 02 val 2900 [ 523.088425][ T10] pwc: recv_control_msg error -71 req 04 val 1100 [ 523.124802][ T10] pwc: recv_control_msg error -71 req 04 val 1200 [ 523.217719][ T10] pwc: Registered as video103. [ 523.338026][ T10] input: PWC snapshot button as /devices/platform/dummy_hcd.6/usb7/7-1/input/input6 [ 523.530142][ T10] usb 7-1: USB disconnect, device number 5 [ 523.795093][ T8114] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 524.007449][ T8114] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 524.036741][ T8281] loop8: detected capacity change from 0 to 512 [ 524.311355][ T8114] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 524.445785][ T8114] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 524.958723][ T7973] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 526.394293][ T8114] 8021q: adding VLAN 0 to HW filter on device bond0 [ 526.498459][ T8304] bridge_slave_0: default FDB implementation only supports local addresses [ 526.737043][ T8114] 8021q: adding VLAN 0 to HW filter on device team0 [ 526.924021][ T2920] bridge0: port 1(bridge_slave_0) entered blocking state [ 526.931544][ T2920] bridge0: port 1(bridge_slave_0) entered forwarding state [ 527.109206][ T5883] bridge0: port 2(bridge_slave_1) entered blocking state [ 527.116664][ T5883] bridge0: port 2(bridge_slave_1) entered forwarding state [ 528.553109][ T7973] veth0_vlan: entered promiscuous mode [ 528.875517][ T7973] veth1_vlan: entered promiscuous mode [ 530.646901][ T8354] bridge_slave_0: default FDB implementation only supports local addresses [ 530.824377][ T8114] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 530.990386][ T2920] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 531.296115][ T2920] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 531.369152][ T49] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 531.383347][ T49] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 531.396990][ T49] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 531.425465][ T49] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 531.439962][ T49] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 531.834885][ T2920] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 532.178679][ T2920] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 532.196150][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 532.206764][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 532.414917][ T8370] overlayfs: missing 'lowerdir' [ 533.506774][ T49] Bluetooth: hci4: command tx timeout [ 533.769963][ T2920] bridge_slave_1: left allmulticast mode [ 533.805709][ T2920] bridge_slave_1: left promiscuous mode [ 533.830493][ T2920] bridge0: port 2(bridge_slave_1) entered disabled state [ 533.910240][ T2920] bridge_slave_0: left allmulticast mode [ 533.916099][ T2920] bridge_slave_0: left promiscuous mode [ 533.947497][ T2920] bridge0: port 1(bridge_slave_0) entered disabled state [ 534.914198][ T2920] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 534.987081][ T2920] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 535.021806][ T2920] bond0 (unregistering): Released all slaves [ 535.588280][ T49] Bluetooth: hci4: command tx timeout [ 535.905795][ T5781] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 535.916838][ T5781] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 535.926321][ T5781] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 535.979804][ T5781] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 536.002346][ T5781] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 536.305554][ T2920] hsr_slave_0: left promiscuous mode [ 536.339564][ T2920] hsr_slave_1: left promiscuous mode [ 536.363675][ T2920] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 536.382451][ T2920] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 536.405216][ T2920] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 536.414943][ T2920] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 536.512088][ T2920] veth1_macvtap: left promiscuous mode [ 536.527693][ T2920] veth0_macvtap: left promiscuous mode [ 536.555222][ T2920] veth1_vlan: left promiscuous mode [ 536.589887][ T2920] veth0_vlan: left promiscuous mode [ 537.470999][ T8415] fuse: Bad value for 'fd' [ 537.510490][ T2920] team0 (unregistering): Port device team_slave_1 removed [ 537.541960][ T2920] team0 (unregistering): Port device team_slave_0 removed [ 537.667111][ T5781] Bluetooth: hci4: command tx timeout [ 537.853323][ T8411] bridge_slave_0: default FDB implementation only supports local addresses [ 537.953296][ T8358] chnl_net:caif_netlink_parms(): no params data found [ 538.067423][ T5781] Bluetooth: hci0: command tx timeout [ 538.403480][ T29] audit: type=1326 audit(1771410196.080:574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8420 comm="syz.6.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 538.502640][ T29] audit: type=1326 audit(1771410196.080:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8420 comm="syz.6.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 538.600912][ T8114] veth0_vlan: entered promiscuous mode [ 538.607073][ T29] audit: type=1326 audit(1771410196.080:576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8420 comm="syz.6.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 538.631162][ T29] audit: type=1326 audit(1771410196.080:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8420 comm="syz.6.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 538.667138][ T29] audit: type=1326 audit(1771410196.080:578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8420 comm="syz.6.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 538.747363][ T29] audit: type=1326 audit(1771410196.080:579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8420 comm="syz.6.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 538.847297][ T29] audit: type=1326 audit(1771410196.080:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8420 comm="syz.6.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 538.938082][ T29] audit: type=1326 audit(1771410196.080:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8420 comm="syz.6.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 538.964190][ T8114] veth1_vlan: entered promiscuous mode [ 539.007199][ T29] audit: type=1326 audit(1771410196.140:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8420 comm="syz.6.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 539.037359][ T29] audit: type=1326 audit(1771410196.140:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8420 comm="syz.6.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f1c5e99bce2 code=0x7ffc0000 [ 539.749603][ T5781] Bluetooth: hci4: command tx timeout [ 540.148728][ T5781] Bluetooth: hci0: command tx timeout [ 540.167070][ T8358] bridge0: port 1(bridge_slave_0) entered blocking state [ 540.187726][ T8358] bridge0: port 1(bridge_slave_0) entered disabled state [ 540.214649][ T8358] bridge_slave_0: entered allmulticast mode [ 540.224291][ T8358] bridge_slave_0: entered promiscuous mode [ 540.491605][ T8358] bridge0: port 2(bridge_slave_1) entered blocking state [ 540.537008][ T8358] bridge0: port 2(bridge_slave_1) entered disabled state [ 540.544696][ T8358] bridge_slave_1: entered allmulticast mode [ 540.593010][ T8358] bridge_slave_1: entered promiscuous mode [ 540.669476][ T8399] chnl_net:caif_netlink_parms(): no params data found [ 540.931743][ T8114] veth0_macvtap: entered promiscuous mode [ 540.994812][ T8358] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 541.190057][ T8358] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 541.534864][ T8358] team0: Port device team_slave_0 added [ 541.619100][ T8114] veth1_macvtap: entered promiscuous mode [ 541.816233][ T8358] team0: Port device team_slave_1 added [ 542.227276][ T5781] Bluetooth: hci0: command tx timeout [ 542.245973][ T8358] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 542.255185][ T8358] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 542.303219][ T8358] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 542.393616][ T8399] bridge0: port 1(bridge_slave_0) entered blocking state [ 542.447449][ T8399] bridge0: port 1(bridge_slave_0) entered disabled state [ 542.455160][ T8399] bridge_slave_0: entered allmulticast mode [ 542.511153][ T8399] bridge_slave_0: entered promiscuous mode [ 542.561107][ T2920] bridge_slave_1: left allmulticast mode [ 542.567421][ T2920] bridge_slave_1: left promiscuous mode [ 542.573856][ T2920] bridge0: port 2(bridge_slave_1) entered disabled state [ 542.609235][ T2920] bridge_slave_0: left allmulticast mode [ 542.615071][ T2920] bridge_slave_0: left promiscuous mode [ 542.621863][ T2920] bridge0: port 1(bridge_slave_0) entered disabled state [ 542.964446][ T2920] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 542.983139][ T2920] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 543.004759][ T2920] bond0 (unregistering): Released all slaves [ 543.023885][ T8358] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 543.036425][ T8358] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 543.085138][ T8358] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 543.163454][ T8491] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 543.183445][ T8399] bridge0: port 2(bridge_slave_1) entered blocking state [ 543.206286][ T8399] bridge0: port 2(bridge_slave_1) entered disabled state [ 543.215532][ T8399] bridge_slave_1: entered allmulticast mode [ 543.226839][ T8399] bridge_slave_1: entered promiscuous mode [ 543.340025][ T2920] hsr_slave_0: left promiscuous mode [ 543.351878][ T2920] hsr_slave_1: left promiscuous mode [ 543.364374][ T2920] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 543.384513][ T2920] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 543.431094][ T2920] veth1_vlan: left promiscuous mode [ 543.436622][ T2920] veth0_vlan: left promiscuous mode [ 543.926114][ T2920] team0 (unregistering): Port device team_slave_1 removed [ 543.956143][ T2920] team0 (unregistering): Port device team_slave_0 removed [ 544.265312][ T8497] bridge_slave_0: default FDB implementation only supports local addresses [ 544.308728][ T5781] Bluetooth: hci0: command tx timeout [ 544.371388][ T8399] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 544.435128][ T8399] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 544.453025][ T8114] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 544.682105][ T8114] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 544.944887][ T8358] hsr_slave_0: entered promiscuous mode [ 544.985850][ T8358] hsr_slave_1: entered promiscuous mode [ 545.000263][ T8358] debugfs: 'hsr0' already exists in 'hsr' [ 545.006161][ T8358] Cannot create hsr debugfs directory [ 545.042028][ T8399] team0: Port device team_slave_0 added [ 545.058357][ T7959] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 545.076115][ T7959] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 545.134722][ T8399] team0: Port device team_slave_1 added [ 545.216164][ T7959] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 545.430675][ T50] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 545.762110][ T8399] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 545.791165][ T8399] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 545.877406][ T8399] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 545.949004][ T8399] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 545.956113][ T8399] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 545.985855][ T8399] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 545.997506][ T5829] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 546.183834][ T5829] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 546.207803][ T5829] usb 7-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 546.232244][ T5829] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 546.264103][ T5829] usb 7-1: config 0 descriptor?? [ 546.301115][ T5829] pwc: Askey VC010 type 2 USB webcam detected. [ 546.545311][ T8399] hsr_slave_0: entered promiscuous mode [ 546.585417][ T8399] hsr_slave_1: entered promiscuous mode [ 546.598342][ T8399] debugfs: 'hsr0' already exists in 'hsr' [ 546.604234][ T8399] Cannot create hsr debugfs directory [ 546.732242][ T5829] pwc: recv_control_msg error -32 req 02 val 2b00 [ 546.750457][ T5829] pwc: recv_control_msg error -32 req 02 val 2700 [ 546.769580][ T5829] pwc: recv_control_msg error -32 req 02 val 2c00 [ 546.782237][ T5829] pwc: recv_control_msg error -32 req 04 val 1000 [ 546.799634][ T5829] pwc: recv_control_msg error -32 req 04 val 1300 [ 546.817611][ T5829] pwc: recv_control_msg error -32 req 04 val 1400 [ 546.841787][ T5829] pwc: recv_control_msg error -32 req 02 val 2000 [ 546.869771][ T5829] pwc: recv_control_msg error -32 req 02 val 2100 [ 546.893204][ T5829] pwc: recv_control_msg error -32 req 04 val 1500 [ 546.912368][ T5829] pwc: recv_control_msg error -32 req 02 val 2500 [ 546.926449][ T5829] pwc: recv_control_msg error -32 req 02 val 2400 [ 546.962676][ T5829] pwc: recv_control_msg error -32 req 02 val 2600 [ 546.974978][ T5829] pwc: recv_control_msg error -32 req 02 val 2900 [ 547.195290][ T5829] pwc: recv_control_msg error -71 req 04 val 1100 [ 547.208691][ T5829] pwc: recv_control_msg error -71 req 04 val 1200 [ 547.220426][ T5829] pwc: Registered as video103. [ 547.239178][ T5829] input: PWC snapshot button as /devices/platform/dummy_hcd.6/usb7/7-1/input/input7 [ 547.293888][ T5829] usb 7-1: USB disconnect, device number 6 [ 549.929216][ T8358] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 550.242147][ T8358] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 550.329558][ T8358] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 550.490647][ T8358] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 550.691334][ T8399] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 550.808683][ T8399] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 550.885542][ T8399] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 551.025157][ T8399] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 551.683776][ T50] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 551.693585][ T50] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 551.986702][ T50] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 552.018897][ T50] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 552.073162][ T8358] 8021q: adding VLAN 0 to HW filter on device bond0 [ 552.269365][ T8358] 8021q: adding VLAN 0 to HW filter on device team0 [ 552.433025][ T5953] bridge0: port 1(bridge_slave_0) entered blocking state [ 552.440643][ T5953] bridge0: port 1(bridge_slave_0) entered forwarding state [ 552.645072][ T50] bridge0: port 2(bridge_slave_1) entered blocking state [ 552.652778][ T50] bridge0: port 2(bridge_slave_1) entered forwarding state [ 553.117905][ T8399] 8021q: adding VLAN 0 to HW filter on device bond0 [ 553.490153][ T8399] 8021q: adding VLAN 0 to HW filter on device team0 [ 553.702570][ T2920] bridge0: port 1(bridge_slave_0) entered blocking state [ 553.710104][ T2920] bridge0: port 1(bridge_slave_0) entered forwarding state [ 553.821862][ T57] bridge0: port 2(bridge_slave_1) entered blocking state [ 553.829389][ T57] bridge0: port 2(bridge_slave_1) entered forwarding state [ 554.579457][ T8399] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 555.219996][ T8607] capability: warning: `syz.7.661' uses 32-bit capabilities (legacy support in use) [ 555.860305][ T8358] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 556.582629][ T8399] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 557.300137][ T8636] loop6: detected capacity change from 0 to 1024 [ 557.436160][ T8636] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 557.558730][ T8636] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 161808409 free clusters [ 557.653803][ T8636] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 557.736060][ T8636] EXT4-fs (loop6): This should not happen!! Data will be lost [ 557.736060][ T8636] [ 557.804781][ T8636] EXT4-fs (loop6): Total free blocks count 0 [ 557.882916][ T8636] EXT4-fs (loop6): Free/Dirty block details [ 557.947574][ T8636] EXT4-fs (loop6): free_blocks=2588934144 [ 557.953510][ T8636] EXT4-fs (loop6): dirty_blocks=80 [ 558.044121][ T8636] EXT4-fs (loop6): Block reservation details [ 558.105106][ T8636] EXT4-fs (loop6): i_reserved_data_blocks=5 [ 558.408282][ T5953] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 64 with error 28 [ 558.500608][ T8358] veth0_vlan: entered promiscuous mode [ 558.632508][ T8358] veth1_vlan: entered promiscuous mode [ 559.231718][ T8358] veth0_macvtap: entered promiscuous mode [ 559.441853][ T8358] veth1_macvtap: entered promiscuous mode [ 559.757815][ T8399] veth0_vlan: entered promiscuous mode [ 559.848807][ T8358] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 559.981757][ T8358] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 560.193417][ T57] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 560.295000][ T57] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 560.356278][ T5953] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 560.420650][ T8399] veth1_vlan: entered promiscuous mode [ 560.491369][ T5953] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 561.395225][ T8399] veth0_macvtap: entered promiscuous mode [ 561.523707][ T8399] veth1_macvtap: entered promiscuous mode [ 565.030891][ T8399] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 565.287586][ T8399] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 565.516294][ T129] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 565.552021][ T13] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 565.674790][ T13] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 565.748300][ T7959] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 566.129189][ T793] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 566.319012][ T793] usb 8-1: Using ep0 maxpacket: 32 [ 566.352450][ T793] usb 8-1: config 0 interface 0 has no altsetting 0 [ 566.403700][ T793] usb 8-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e [ 566.457456][ T793] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 566.465677][ T793] usb 8-1: Product: syz [ 566.524544][ T793] usb 8-1: Manufacturer: syz [ 566.549793][ T793] usb 8-1: SerialNumber: syz [ 566.580289][ T793] usb 8-1: config 0 descriptor?? [ 567.040051][ T793] gs_usb 8-1:0.0: Configuring for 242 interfaces [ 567.245242][ T793] gs_usb 8-1:0.0: Couldn't get bit timing const for channel 0 (-EREMOTEIO) [ 567.295394][ T793] gs_usb 8-1:0.0: probe with driver gs_usb failed with error -121 [ 567.448960][ T5826] usb 8-1: USB disconnect, device number 2 [ 572.054870][ T8778] loop7: detected capacity change from 0 to 1024 [ 572.326191][ T8778] hfsplus: cannot replace xattr [ 572.761359][ T2920] hfsplus: b-tree write err: -5, ino 25 [ 572.790518][ T2920] hfsplus: b-tree write err: -5, ino 4 [ 572.825824][ T2920] hfsplus: b-tree write err: -5, ino 2 [ 574.177388][ T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 574.206816][ T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 574.257549][ T793] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 574.630852][ T8704] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 574.683948][ T8704] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 575.077627][ T793] usb 7-1: Using ep0 maxpacket: 32 [ 576.030170][ T793] usb 7-1: config 0 interface 0 has no altsetting 0 [ 576.870286][ T793] usb 7-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e [ 576.950339][ T793] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 576.979155][ T793] usb 7-1: Product: syz [ 576.983532][ T793] usb 7-1: Manufacturer: syz [ 576.997434][ T793] usb 7-1: SerialNumber: syz [ 577.022759][ T793] usb 7-1: config 0 descriptor?? [ 577.310253][ T793] usb 7-1: can't set config #0, error -71 [ 577.369661][ T793] usb 7-1: USB disconnect, device number 7 [ 579.728663][ T6009] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 579.736667][ T6009] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 580.080577][ T5826] kernel read not supported for file [fscontext] (pid: 5826 comm: kworker/0:4) [ 580.346708][ T8846] binder: 8845:8846 ioctl c0306201 0 returned -14 [ 580.492512][ T8847] binder: 8845:8847 ioctl c0306201 200000000040 returned -22 [ 580.504755][ T6009] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 580.525902][ T8847] binder: 8845:8847 ioctl c0306201 200000000640 returned -22 [ 580.566225][ T6009] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 581.817594][ T5826] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 582.023684][ T5826] usb 8-1: Using ep0 maxpacket: 32 [ 582.079044][ T5826] usb 8-1: config 0 interface 0 has no altsetting 0 [ 582.166274][ T5826] usb 8-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e [ 582.222021][ T8874] loop8: detected capacity change from 0 to 128 [ 582.228738][ T5826] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 582.266826][ T5826] usb 8-1: Product: syz [ 582.291961][ T5826] usb 8-1: Manufacturer: syz [ 582.296769][ T5826] usb 8-1: SerialNumber: syz [ 582.363304][ T5826] usb 8-1: config 0 descriptor?? [ 582.469886][ T8874] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 582.609106][ T8874] ext4 filesystem being mounted at /1/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 582.888020][ T5826] gs_usb 8-1:0.0: Configuring for 242 interfaces [ 583.092348][ T5826] gs_usb 8-1:0.0: Couldn't get bit timing const for channel 0 (-EREMOTEIO) [ 583.151424][ T5826] gs_usb 8-1:0.0: probe with driver gs_usb failed with error -121 [ 583.300383][ T5826] usb 8-1: USB disconnect, device number 3 [ 583.867901][ T8399] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 584.238083][ T8907] binder: 8906:8907 ioctl c0306201 0 returned -14 [ 584.370119][ T8909] binder: 8906:8909 ioctl c0306201 200000000040 returned -22 [ 584.419096][ T8909] binder: 8906:8909 ioctl c0306201 200000000640 returned -22 [ 585.791491][ T8924] overlayfs: missing 'lowerdir' [ 586.686687][ T8932] loop6: detected capacity change from 0 to 256 [ 586.793858][ T8932] vfat: Bad value for 'fmask' [ 587.153334][ T8935] loop9: detected capacity change from 0 to 4096 [ 587.291241][ T8935] EXT4-fs (loop9): Test dummy encryption mode enabled [ 587.374159][ T8935] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0103] [ 587.405624][ T8935] System zones: 0-5 [ 587.475503][ T8948] overlayfs: failed to clone upperpath [ 587.498981][ T8935] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 588.170862][ T8358] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 588.396722][ T8960] loop6: detected capacity change from 0 to 1024 [ 588.421361][ T8955] loop8: detected capacity change from 0 to 1024 [ 588.431340][ T8960] EXT4-fs: inline encryption not supported [ 588.511955][ T8960] EXT4-fs: Ignoring removed nobh option [ 588.533453][ T8960] EXT4-fs: Ignoring removed bh option [ 588.554392][ T8955] EXT4-fs: Ignoring removed nomblk_io_submit option [ 588.672404][ T8960] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 588.796294][ T8955] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 591.404395][ T6777] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 591.427635][ T8955] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 592.324569][ T8991] loop9: detected capacity change from 0 to 512 [ 592.383645][ T8991] EXT4-fs: Ignoring removed nomblk_io_submit option [ 592.448535][ T8991] EXT4-fs (loop9): Test dummy encryption mode enabled [ 592.501443][ T8991] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 592.543670][ T8994] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 592.594354][ T8991] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode [ 592.606415][ T8994] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 592.743046][ T8991] EXT4-fs (loop9): 1 truncate cleaned up [ 592.822246][ T8991] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 592.977413][ T5826] usb 9-1: new high-speed USB device number 3 using dummy_hcd [ 593.079664][ T8991] EXT4-fs error (device loop9): ext4_lookup:1785: inode #14: comm syz.9.753: invalid fast symlink length 39 [ 593.157944][ T8991] EXT4-fs error (device loop9): ext4_lookup:1785: inode #14: comm syz.9.753: invalid fast symlink length 39 [ 593.233838][ T5826] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 593.288103][ T5826] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 593.350835][ T5826] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 593.408535][ T5826] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 593.462118][ T5826] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 593.524021][ T5826] usb 9-1: config 0 descriptor?? [ 593.992998][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 594.000167][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 594.095715][ T9014] xt_NFQUEUE: number of total queues is 0 [ 594.790608][ T9015] loop7: detected capacity change from 0 to 1024 [ 594.879969][ T8358] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 596.335521][ T9021] loop9: detected capacity change from 0 to 128 [ 596.546408][ T5826] usbhid 9-1:0.0: can't add hid device: -71 [ 596.561139][ T5826] usbhid 9-1:0.0: probe with driver usbhid failed with error -71 [ 596.573818][ T5826] usb 9-1: USB disconnect, device number 3 [ 598.312857][ T9046] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 598.359765][ T9046] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 598.775744][ T9055] process 'syz.7.771' launched './file1' with NULL argv: empty string added [ 601.269113][ T8753] usb 10-1: new high-speed USB device number 2 using dummy_hcd [ 601.792695][ T8753] usb 10-1: Using ep0 maxpacket: 32 [ 601.836396][ T8753] usb 10-1: config 0 has an invalid interface number: 188 but max is 0 [ 601.929891][ T8753] usb 10-1: config 0 has no interface number 0 [ 601.998262][ T8753] usb 10-1: config 0 interface 188 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 602.448595][ T8753] usb 10-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36 [ 602.477379][ T8753] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 602.485655][ T8753] usb 10-1: Product: syz [ 602.577524][ T8753] usb 10-1: Manufacturer: syz [ 602.582417][ T8753] usb 10-1: SerialNumber: syz [ 602.670192][ T8753] usb 10-1: config 0 descriptor?? [ 602.719061][ T8753] asix 10-1:0.188: probe with driver asix failed with error -22 [ 603.514748][ T9107] loop7: detected capacity change from 0 to 1024 [ 603.873753][ T29] kauditd_printk_skb: 92 callbacks suppressed [ 603.873824][ T29] audit: type=1800 audit(1771410261.546:676): pid=9107 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.785" name="file1" dev="loop7" ino=20 res=0 errno=0 [ 604.128454][ T29] audit: type=1326 audit(1771410261.626:677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9118 comm="syz.6.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 604.252571][ T29] audit: type=1326 audit(1771410261.656:678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9118 comm="syz.6.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 604.365426][ T5826] usb 10-1: USB disconnect, device number 2 [ 604.428107][ T29] audit: type=1326 audit(1771410261.676:679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9118 comm="syz.6.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 604.633211][ T29] audit: type=1326 audit(1771410261.676:680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9118 comm="syz.6.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 604.794467][ T29] audit: type=1326 audit(1771410261.676:681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9118 comm="syz.6.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 604.918289][ T9129] 9p: Bad value for 'wfdno' [ 604.949458][ T29] audit: type=1326 audit(1771410261.696:683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9118 comm="syz.6.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 605.017439][ T29] audit: type=1326 audit(1771410261.696:682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9118 comm="syz.6.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 605.124521][ T29] audit: type=1326 audit(1771410261.726:685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9118 comm="syz.6.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 605.247432][ T29] audit: type=1326 audit(1771410261.726:686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9118 comm="syz.6.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 607.124170][ T9146] overlayfs: failed to clone upperpath [ 613.744437][ T9207] loop7: detected capacity change from 0 to 1024 [ 613.831394][ T9207] EXT4-fs: Ignoring removed mblk_io_submit option [ 614.341584][ T9207] EXT4-fs (loop7): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 614.465520][ T9207] ext4 filesystem being mounted at /39/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 614.648367][ T9218] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set [ 616.064650][ T29] kauditd_printk_skb: 24 callbacks suppressed [ 616.064718][ T29] audit: type=1800 audit(1771410273.736:710): pid=9207 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.815" name="file1" dev="loop7" ino=15 res=0 errno=0 [ 616.092491][ T9207] EXT4-fs error (device loop7): ext4_map_blocks:825: inode #15: block 8: comm syz.7.815: lblock 8 mapped to illegal pblock 8 (length 8) [ 616.139636][ T9218] EXT4-fs (loop7): Remounting filesystem read-only [ 616.711287][ T8114] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 617.322686][ T9244] netlink: 72 bytes leftover after parsing attributes in process `syz.7.824'. [ 620.466753][ T9260] loop7: detected capacity change from 0 to 512 [ 620.765326][ T9260] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 620.881613][ T9260] ext4 filesystem being mounted at /41/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 621.170111][ T9260] EXT4-fs error (device loop7): ext4_do_update_inode:5617: inode #2: comm syz.7.830: corrupted inode contents [ 621.325117][ T9260] EXT4-fs error (device loop7): ext4_dirty_inode:6502: inode #2: comm syz.7.830: mark_inode_dirty error [ 621.448203][ T9260] EXT4-fs error (device loop7): ext4_do_update_inode:5617: inode #2: comm syz.7.830: corrupted inode contents [ 622.498680][ T49] Bluetooth: hci3: command 0x0406 tx timeout [ 622.946529][ T9274] EXT4-fs error (device loop7): ext4_do_update_inode:5617: inode #2: comm syz.7.830: corrupted inode contents [ 623.118299][ T9274] EXT4-fs error (device loop7): ext4_dirty_inode:6502: inode #2: comm syz.7.830: mark_inode_dirty error [ 623.182456][ T9274] EXT4-fs error (device loop7): ext4_do_update_inode:5617: inode #2: comm syz.7.830: corrupted inode contents [ 623.267744][ T9274] EXT4-fs error (device loop7): __ext4_ext_dirty:206: inode #2: comm syz.7.830: mark_inode_dirty error [ 623.393289][ T9274] EXT4-fs error (device loop7): ext4_do_update_inode:5617: inode #2: comm syz.7.830: corrupted inode contents [ 623.446829][ T9274] EXT4-fs error (device loop7): ext4_dirty_inode:6502: inode #2: comm syz.7.830: mark_inode_dirty error [ 623.570654][ T9280] EXT4-fs error (device loop7): ext4_do_update_inode:5617: inode #2: comm syz.7.830: corrupted inode contents [ 624.073622][ T8114] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 640.183647][ T57] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 643.321026][ T57] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 643.782489][ T57] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 644.172252][ T57] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 644.742292][ T57] bridge_slave_1: left allmulticast mode [ 644.757543][ T57] bridge_slave_1: left promiscuous mode [ 644.792161][ T57] bridge0: port 2(bridge_slave_1) entered disabled state [ 644.896543][ T57] bridge_slave_0: left allmulticast mode [ 644.930434][ T57] bridge_slave_0: left promiscuous mode [ 644.936988][ T57] bridge0: port 1(bridge_slave_0) entered disabled state [ 645.923152][ T57] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 645.944836][ T9402] loop7: detected capacity change from 0 to 128 [ 646.026554][ T57] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 646.037425][ T9402] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (30846!=65535) [ 646.758807][ T57] bond0 (unregistering): Released all slaves [ 647.157888][ T9402] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none. [ 648.030314][ T8114] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 648.497616][ T9278] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 648.509131][ T9278] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 648.518591][ T9278] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 648.536198][ T9278] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 648.588931][ T9278] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 648.776822][ T9423] netlink: 'syz.2.874': attribute type 1 has an invalid length. [ 649.378305][ T9432] loop7: detected capacity change from 0 to 1024 [ 649.505674][ T9426] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link [ 649.931648][ T9432] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 650.627869][ T5781] Bluetooth: hci4: command tx timeout [ 650.681845][ T57] hsr_slave_0: left promiscuous mode [ 650.764654][ T8114] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 650.784467][ T57] hsr_slave_1: left promiscuous mode [ 650.802899][ T57] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 650.848226][ T57] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 650.878659][ T57] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 650.897823][ T57] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 651.048064][ T57] veth1_macvtap: left promiscuous mode [ 651.053769][ T57] veth0_macvtap: left promiscuous mode [ 651.100408][ T57] veth1_vlan: left promiscuous mode [ 651.105935][ T57] veth0_vlan: left promiscuous mode [ 652.710404][ T5781] Bluetooth: hci4: command tx timeout [ 654.666350][ T57] team0 (unregistering): Port device team_slave_1 removed [ 654.735378][ T57] team0 (unregistering): Port device team_slave_0 removed [ 654.787489][ T5781] Bluetooth: hci4: command tx timeout [ 655.053968][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 655.068200][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 656.868890][ T5781] Bluetooth: hci4: command tx timeout [ 659.238627][ T9417] chnl_net:caif_netlink_parms(): no params data found [ 659.571481][ T9511] ptrace attach of "./syz-executor exec"[6777] was attempted by " [ 662.237949][ T9278] Bluetooth: hci0: command 0x0406 tx timeout [ 662.474647][ T9417] bridge0: port 1(bridge_slave_0) entered blocking state [ 662.487850][ T9417] bridge0: port 1(bridge_slave_0) entered disabled state [ 662.510260][ T9417] bridge_slave_0: entered allmulticast mode [ 662.530477][ T9417] bridge_slave_0: entered promiscuous mode [ 662.759931][ T9542] fuse: Bad value for 'fd' [ 663.263586][ T9417] bridge0: port 2(bridge_slave_1) entered blocking state [ 663.327056][ T9417] bridge0: port 2(bridge_slave_1) entered disabled state [ 663.395885][ T9417] bridge_slave_1: entered allmulticast mode [ 663.491823][ T9417] bridge_slave_1: entered promiscuous mode [ 663.886912][ T9417] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 663.956799][ T9417] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 664.318538][ T9417] team0: Port device team_slave_0 added [ 664.404471][ T9417] team0: Port device team_slave_1 added [ 664.719277][ T9417] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 664.726386][ T9417] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 664.852573][ T9417] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 664.905733][ T9417] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 664.937497][ T9417] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 664.956754][ T9562] ptrace attach of "./syz-executor exec"[5783] was attempted by "./syz-executor exec"[9562] [ 665.097825][ T9417] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 665.646419][ T9417] hsr_slave_0: entered promiscuous mode [ 665.688223][ T9417] hsr_slave_1: entered promiscuous mode [ 665.720652][ T9417] debugfs: 'hsr0' already exists in 'hsr' [ 665.726549][ T9417] Cannot create hsr debugfs directory [ 668.194815][ T9598] ptrace attach of "./syz-executor exec"[8399] was attempted by "./syz-executor exec"[9598] [ 669.042573][ T9417] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 669.179885][ T9417] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 669.258184][ T9417] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 669.342868][ T9417] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 671.867813][ T9417] 8021q: adding VLAN 0 to HW filter on device bond0 [ 671.961568][ T9417] 8021q: adding VLAN 0 to HW filter on device team0 [ 672.260913][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 672.268430][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 672.333237][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 672.340756][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 672.432372][ T9646] ptrace attach of "./syz-executor exec"[8114] was attempted by "./syz-executor exec"[9646] [ 672.598732][ T9649] netlink: 20 bytes leftover after parsing attributes in process `syz.8.940'. [ 672.872402][ T9417] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 673.229348][ T9655] overlayfs: failed to clone upperpath [ 673.339866][ T9658] loop7: detected capacity change from 0 to 512 [ 676.717444][ T9691] ptrace attach of "./syz-executor exec"[6777] was attempted by " [ 678.008630][ T9686] loop7: detected capacity change from 0 to 8192 [ 678.248174][ T9686] UDF-fs: warning (device loop7): udf_load_vrs: No VRS found [ 678.255752][ T9686] UDF-fs: Scanning with blocksize 512 failed [ 678.388756][ T9686] UDF-fs: warning (device loop7): udf_load_vrs: No VRS found [ 678.402958][ T9686] UDF-fs: Scanning with blocksize 1024 failed [ 678.438870][ T9686] UDF-fs: warning (device loop7): udf_load_vrs: No VRS found [ 678.475129][ T9417] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 678.475600][ T9686] UDF-fs: Scanning with blocksize 2048 failed [ 678.583517][ T9686] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 678.814684][ T9695] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 679.465179][ T9417] veth0_vlan: entered promiscuous mode [ 679.606135][ T9417] veth1_vlan: entered promiscuous mode [ 680.156061][ T9417] veth0_macvtap: entered promiscuous mode [ 680.261298][ T9417] veth1_macvtap: entered promiscuous mode [ 680.676230][ T9726] loop7: detected capacity change from 0 to 512 [ 680.705797][ T9417] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 681.009798][ T9726] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 681.188189][ T9726] ext4 filesystem being mounted at /67/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 681.500757][ T9417] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 682.190026][ T5988] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 682.246307][ T5988] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 682.320813][ T9742] ptrace attach of "./syz-executor exec"[6777] was attempted by " [ 682.690275][ T8114] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 683.262112][ T9376] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 684.572027][ T9376] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 689.771854][ T9790] loop7: detected capacity change from 0 to 512 [ 690.008051][ T9790] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended [ 690.130173][ T9790] EXT4-fs (loop7): warning: mounting unchecked fs, running e2fsck is recommended [ 690.169887][ T9790] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 690.180445][ T9790] System zones: 0-2, 18-18, 34-35 [ 690.223422][ T9790] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 692.254745][ T9798] ptrace attach of "./syz-executor exec"[8399] was attempted by " [ 694.395321][ T9792] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 353: padding at end of block bitmap is not set [ 697.865312][ T8114] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 699.398933][ T9818] binder: 9815:9818 ioctl c0306201 0 returned -14 [ 699.469936][ T9818] binder: 9815:9818 ioctl c0306201 200000000640 returned -22 [ 701.628556][ T9843] ptrace attach of "./syz-executor exec"[8399] was attempted by "./syz-executor exec"[9843] [ 706.553193][ T9874] binder: 9868:9874 ioctl c0306201 0 returned -14 [ 706.678767][ T9874] binder: 9868:9874 ioctl c0306201 200000000640 returned -22 [ 708.347750][ T9884] raw_sendmsg: syz.7.1000 forgot to set AF_INET. Fix it! [ 709.647804][ T9890] ptrace attach of "./syz-executor exec"[8399] was attempted by "./syz-executor exec"[9890] [ 712.144528][ T9899] loop7: detected capacity change from 0 to 512 [ 712.201354][ T9278] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 712.219930][ T9278] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 712.230090][ T9278] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 712.329069][ T9278] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 712.361836][ T9278] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 712.766474][ T9910] netlink: 20 bytes leftover after parsing attributes in process `syz.8.1008'. [ 713.081872][ T9899] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 713.377894][ T9899] ext4 filesystem being mounted at /77/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 713.941894][ T29] audit: type=1800 audit(1771410371.616:711): pid=9920 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.1005" name="file1" dev="loop7" ino=15 res=0 errno=0 [ 714.027822][ T29] audit: type=1800 audit(1771410371.646:712): pid=9899 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.1005" name="file1" dev="loop7" ino=15 res=0 errno=0 [ 714.467532][ T9278] Bluetooth: hci5: command tx timeout [ 714.604199][ T8114] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 716.495024][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 716.697829][ T9278] Bluetooth: hci5: command tx timeout [ 717.190048][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 717.336855][ T5884] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 719.311960][ T5781] Bluetooth: hci5: command tx timeout [ 719.637383][ T5830] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 719.658043][ T9901] chnl_net:caif_netlink_parms(): no params data found [ 719.797493][ T5830] usb 8-1: Using ep0 maxpacket: 8 [ 719.812810][ T5884] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 719.847472][ T5830] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 719.888515][ T5830] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 719.909324][ T5830] usb 8-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 719.937579][ T5830] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 720.014999][ T5830] usb 8-1: config 0 descriptor?? [ 720.276666][ T5884] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 720.478586][ T5830] usb 8-1: can't set config #0, error -71 [ 720.535260][ T5830] usb 8-1: USB disconnect, device number 4 [ 720.641950][ T5884] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 721.360672][ T9278] Bluetooth: hci5: command tx timeout [ 721.419726][ T5884] bridge_slave_1: left allmulticast mode [ 721.425557][ T5884] bridge_slave_1: left promiscuous mode [ 721.469751][ T5884] bridge0: port 2(bridge_slave_1) entered disabled state [ 721.568251][ T5884] bridge_slave_0: left allmulticast mode [ 721.574091][ T5884] bridge_slave_0: left promiscuous mode [ 721.628787][ T5884] bridge0: port 1(bridge_slave_0) entered disabled state [ 723.235540][ T9996] ptrace attach of "./syz-executor exec"[8114] was attempted by ""[9996] [ 725.546884][ T5884] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 725.741953][ T5884] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 725.855804][ T5884] bond0 (unregistering): Released all slaves [ 727.689831][ T9901] bridge0: port 1(bridge_slave_0) entered blocking state [ 727.698493][ T9901] bridge0: port 1(bridge_slave_0) entered disabled state [ 727.706100][ T9901] bridge_slave_0: entered allmulticast mode [ 727.717024][ T9901] bridge_slave_0: entered promiscuous mode [ 727.992565][ T5884] hsr_slave_0: left promiscuous mode [ 728.054953][ T5884] hsr_slave_1: left promiscuous mode [ 728.137936][ T5884] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 728.145423][ T5884] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 728.266860][ T5884] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 728.287545][ T5884] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 728.398003][ T5884] veth1_macvtap: left promiscuous mode [ 728.404416][ T5884] veth0_macvtap: left promiscuous mode [ 728.412151][ T5884] veth1_vlan: left promiscuous mode [ 728.429251][ T5884] veth0_vlan: left promiscuous mode [ 735.363444][T10060] netlink: 24 bytes leftover after parsing attributes in process `syz.8.1049'. [ 738.507866][T10077] loop7: detected capacity change from 0 to 2048 [ 738.616224][T10077] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 739.402246][ T5884] team0 (unregistering): Port device team_slave_1 removed [ 739.609186][ T8114] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 740.306203][ T5884] team0 (unregistering): Port device team_slave_0 removed [ 741.451431][ T9901] bridge0: port 2(bridge_slave_1) entered blocking state [ 742.809295][ T9901] bridge0: port 2(bridge_slave_1) entered disabled state [ 742.816985][ T9901] bridge_slave_1: entered allmulticast mode [ 742.894940][ T9901] bridge_slave_1: entered promiscuous mode [ 743.325599][ T9901] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 743.529149][ T9901] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 744.955643][T10126] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1065'. [ 745.656130][ T9901] team0: Port device team_slave_0 added [ 745.727616][ T9901] team0: Port device team_slave_1 added [ 746.114622][T10137] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1069'. [ 746.130356][ T9901] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 746.153160][ T9901] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 746.263821][ T9901] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 746.488731][ T9901] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 746.495846][ T9901] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 746.735761][ T9901] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 747.220697][ T9901] hsr_slave_0: entered promiscuous mode [ 747.279830][ T9901] hsr_slave_1: entered promiscuous mode [ 747.320183][ T9901] debugfs: 'hsr0' already exists in 'hsr' [ 747.371403][ T9901] Cannot create hsr debugfs directory [ 748.988262][T10168] ptrace attach of "./syz-executor exec"[8399] was attempted by ""[10168] [ 750.461305][T10178] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1081'. [ 750.916674][T10183] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1084'. [ 754.723619][ T9901] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 754.815294][T10224] ptrace attach of "./syz-executor exec"[6777] was attempted by ""[10224] [ 755.114939][ T9901] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 755.135105][T10227] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1097'. [ 755.389111][ T9901] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 755.581878][ T9901] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 756.164915][T10236] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1099'. [ 757.638486][T10251] loop7: detected capacity change from 0 to 512 [ 757.674622][ T9901] 8021q: adding VLAN 0 to HW filter on device bond0 [ 757.686219][T10251] EXT4-fs: Ignoring removed mblk_io_submit option [ 757.749159][T10251] EXT4-fs: Ignoring removed nobh option [ 757.903451][ T9901] 8021q: adding VLAN 0 to HW filter on device team0 [ 757.954275][T10251] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 758.072601][T10251] ext4 filesystem being mounted at /98/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 758.101563][ T5884] bridge0: port 1(bridge_slave_0) entered blocking state [ 758.108958][ T5884] bridge0: port 1(bridge_slave_0) entered forwarding state [ 758.179938][T10251] EXT4-fs error (device loop7): ext4_do_update_inode:5617: inode #2: comm syz.7.1104: corrupted inode contents [ 758.236804][ T7959] bridge0: port 2(bridge_slave_1) entered blocking state [ 758.244381][ T7959] bridge0: port 2(bridge_slave_1) entered forwarding state [ 758.620116][T10251] EXT4-fs error (device loop7): ext4_dirty_inode:6502: inode #2: comm syz.7.1104: mark_inode_dirty error [ 759.049969][T10251] EXT4-fs error (device loop7): ext4_do_update_inode:5617: inode #2: comm syz.7.1104: corrupted inode contents [ 759.280326][T10251] EXT4-fs error (device loop7): __ext4_ext_dirty:206: inode #2: comm syz.7.1104: mark_inode_dirty error [ 760.863818][T10251] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 761.940781][T10277] ptrace attach of "./syz-executor exec"[5783] was attempted by ""[10277] [ 762.229669][T10286] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1112'. [ 763.538793][T10302] bridge_slave_0: left allmulticast mode [ 763.546659][T10302] bridge_slave_0: left promiscuous mode [ 763.556325][T10302] bridge0: port 1(bridge_slave_0) entered disabled state [ 763.928527][T10302] bridge_slave_1: left allmulticast mode [ 764.437486][T10302] bridge_slave_1: left promiscuous mode [ 764.444119][T10302] bridge0: port 2(bridge_slave_1) entered disabled state [ 764.731195][T10302] bond0: (slave bond_slave_0): Releasing backup interface [ 764.919990][T10302] bond0: (slave bond_slave_1): Releasing backup interface [ 765.176653][T10302] team0: Port device team_slave_0 removed [ 765.402558][T10302] team0: Port device team_slave_1 removed [ 765.485484][T10302] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 765.539650][T10302] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 765.622042][T10302] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 765.710261][T10302] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 765.832368][T10302] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 766.569766][T10332] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1127'. [ 766.843852][T10333] ptrace attach of "./syz-executor exec"[5783] was attempted by ""[10333] [ 770.135400][ T5781] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 770.156653][T10371] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1138'. [ 770.183588][ T5781] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 770.195249][ T5781] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 770.210726][ T5781] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 770.225567][ T5781] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 772.041137][T10387] ptrace attach of "./syz-executor exec"[5783] was attempted by ""[10387] [ 772.307489][ T5777] Bluetooth: hci4: command tx timeout [ 773.519276][T10367] chnl_net:caif_netlink_parms(): no params data found [ 774.052568][T10411] loop7: detected capacity change from 0 to 4096 [ 774.239179][T10411] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 774.395064][ T5777] Bluetooth: hci4: command tx timeout [ 774.516785][T10410] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.1150: bg 0: block 33: padding at end of block bitmap is not set [ 774.535688][ T29] audit: type=1800 audit(1771410432.176:713): pid=10411 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1150" name="file1" dev="loop7" ino=15 res=0 errno=0 [ 774.646041][T10410] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6688: Corrupt filesystem [ 775.093161][ T8114] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 775.562609][ T13] bridge_slave_1: left allmulticast mode [ 775.581878][ T13] bridge_slave_1: left promiscuous mode [ 775.606839][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 775.688562][ T13] bridge_slave_0: left allmulticast mode [ 775.694398][ T13] bridge_slave_0: left promiscuous mode [ 775.738832][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 776.497684][ T5777] Bluetooth: hci4: command tx timeout [ 776.550693][T10453] 9p: Bad value for 'rfdno' [ 776.751216][ T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 776.861931][ T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 776.909027][ T13] bond0 (unregistering): Released all slaves [ 777.448032][T10465] netlink: 156 bytes leftover after parsing attributes in process `syz.8.1170'. [ 777.654540][ T13] hsr_slave_0: left promiscuous mode [ 777.725508][ T13] hsr_slave_1: left promiscuous mode [ 777.803032][ T13] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 777.884484][ T13] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 777.965921][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 777.993941][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 779.167805][ T5777] Bluetooth: hci4: command tx timeout [ 782.732769][T10496] netlink: 92 bytes leftover after parsing attributes in process `syz.2.1174'. [ 785.241008][ T13] team0 (unregistering): Port device team_slave_1 removed [ 785.349714][ T13] team0 (unregistering): Port device team_slave_0 removed [ 786.222699][T10367] bridge0: port 1(bridge_slave_0) entered blocking state [ 786.277788][T10367] bridge0: port 1(bridge_slave_0) entered disabled state [ 786.285433][T10367] bridge_slave_0: entered allmulticast mode [ 786.369332][T10367] bridge_slave_0: entered promiscuous mode [ 786.384395][T10367] bridge0: port 2(bridge_slave_1) entered blocking state [ 786.392216][T10367] bridge0: port 2(bridge_slave_1) entered disabled state [ 786.403573][T10367] bridge_slave_1: entered allmulticast mode [ 786.412965][T10367] bridge_slave_1: entered promiscuous mode [ 787.273384][T10367] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 787.345734][T10367] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 787.392090][T10517] tap0: tun_chr_ioctl cmd 1074025677 [ 787.418059][T10517] tap0: linktype set to 780 [ 787.954813][T10367] team0: Port device team_slave_0 added [ 788.103410][T10367] team0: Port device team_slave_1 added [ 788.401536][T10367] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 788.444436][T10367] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 788.491846][T10367] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 788.523763][T10367] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 788.544250][T10367] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 788.583542][T10367] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 789.305691][T10367] hsr_slave_0: entered promiscuous mode [ 789.418825][T10550] loop7: detected capacity change from 0 to 128 [ 789.420812][T10367] hsr_slave_1: entered promiscuous mode [ 789.428842][T10550] vfat: Unknown parameter '18446744073709551615ÿÿÿ' [ 789.668441][T10367] debugfs: 'hsr0' already exists in 'hsr' [ 789.719171][T10367] Cannot create hsr debugfs directory [ 792.998696][T10582] loop7: detected capacity change from 0 to 128 [ 793.048948][T10582] vfat: Unknown parameter '18446744073709551615ÿÿÿ' [ 795.012326][T10367] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 795.266002][T10367] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 795.383616][T10597] netlink: 72 bytes leftover after parsing attributes in process `syz.7.1209'. [ 795.502822][T10600] loop7: detected capacity change from 0 to 8 [ 795.564721][T10367] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 795.889563][T10597] SQUASHFS error: Failed to read block 0x636: -5 [ 795.917963][T10597] SQUASHFS error: Unable to read metadata cache entry [634] [ 796.001928][T10367] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 797.643600][T10367] 8021q: adding VLAN 0 to HW filter on device bond0 [ 797.865354][T10367] 8021q: adding VLAN 0 to HW filter on device team0 [ 797.951510][ T8704] bridge0: port 1(bridge_slave_0) entered blocking state [ 797.959461][ T8704] bridge0: port 1(bridge_slave_0) entered forwarding state [ 798.066266][ T8704] bridge0: port 2(bridge_slave_1) entered blocking state [ 798.073796][ T8704] bridge0: port 2(bridge_slave_1) entered forwarding state [ 802.022924][T10655] loop7: detected capacity change from 0 to 128 [ 802.099508][T10655] vfat: Unknown parameter '18446744073709551615ÿÿÿ' [ 802.130354][T10367] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 803.919951][T10367] veth0_vlan: entered promiscuous mode [ 804.268243][T10367] veth1_vlan: entered promiscuous mode [ 804.725877][T10670] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1235'. [ 805.235027][T10367] veth0_macvtap: entered promiscuous mode [ 805.364738][T10367] veth1_macvtap: entered promiscuous mode [ 805.683340][T10367] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 805.811853][T10367] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 805.917306][ T5931] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 805.952957][ T5931] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 806.023360][ T5931] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 806.065435][ T5931] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 806.422043][T10694] loop7: detected capacity change from 0 to 128 [ 806.484580][T10694] vfat: Unknown parameter '18446744073709551615ÿÿÿ' [ 809.678394][T10721] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1250'. [ 810.024630][T10726] loop7: detected capacity change from 0 to 512 [ 810.094362][T10726] EXT4-fs: Ignoring removed nobh option [ 810.147630][T10726] EXT4-fs (loop7): Test dummy encryption mode enabled [ 810.230628][T10726] EXT4-fs error (device loop7): __ext4_iget:5426: inode #11: block 1: comm syz.7.1252: invalid block [ 810.298301][T10726] loop7: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 810.340940][T10726] EXT4-fs error (device loop7): ext4_orphan_get:1396: comm syz.7.1252: couldn't read orphan inode 11 (err -117) [ 810.425175][T10726] loop7: lost filesystem error report for type 5 error -117 [ 810.429022][T10726] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 810.620660][T10726] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 812.230341][T10767] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1263'. [ 812.830290][T10778] fuse: Bad value for 'fd' [ 813.839028][T10793] fuse: Unknown parameter '0xffffffffffffffff' [ 813.926512][T10793] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 813.962165][T10793] overlayfs: missing 'lowerdir' [ 815.643006][ T5884] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 815.707464][ T5884] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 815.976098][ T57] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 816.015821][ T57] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 817.020908][T10827] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1277'. [ 817.854647][T10838] fuse: Unknown parameter '0x0000000000000003' [ 817.909105][T10838] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 817.951390][T10838] overlayfs: missing 'lowerdir' [ 818.012149][ T8704] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 818.341532][ T8704] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 818.703424][ T8704] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 818.848594][ T8704] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 819.300272][ T8704] bridge_slave_1: left allmulticast mode [ 819.306099][ T8704] bridge_slave_1: left promiscuous mode [ 819.328233][ T8704] bridge0: port 2(bridge_slave_1) entered disabled state [ 819.363269][ T8704] bridge_slave_0: left allmulticast mode [ 819.381235][ T8704] bridge_slave_0: left promiscuous mode [ 819.404101][ T8704] bridge0: port 1(bridge_slave_0) entered disabled state [ 820.218273][ T8704] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 820.332924][ T8704] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 820.474414][ T8704] bond0 (unregistering): Released all slaves [ 821.228474][T10872] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1293'. [ 821.506776][ T5781] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 821.528367][ T5781] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 821.557785][ T5781] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 821.583219][ T5781] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 821.598843][ T5781] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 821.922488][T10885] loop7: detected capacity change from 0 to 8 [ 821.940164][T10888] fuse: Unknown parameter '0xffffffffffffffff' [ 821.996334][T10888] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 822.039420][T10885] SQUASHFS error: Failed to read block 0x636: -5 [ 822.051621][T10885] SQUASHFS error: Unable to read metadata cache entry [634] [ 822.072420][T10888] overlayfs: missing 'lowerdir' [ 822.077335][ T8704] hsr_slave_0: left promiscuous mode [ 822.097561][ T8704] hsr_slave_1: left promiscuous mode [ 822.105962][ T8704] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 822.158085][ T8704] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 822.221456][ T8704] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 822.266100][ T8704] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 822.415881][ T8704] veth1_macvtap: left promiscuous mode [ 822.479538][ T8704] veth0_macvtap: left promiscuous mode [ 822.485401][ T8704] veth1_vlan: left promiscuous mode [ 822.539520][ T8704] veth0_vlan: left promiscuous mode [ 823.667509][ T5777] Bluetooth: hci4: command tx timeout [ 824.564149][T10932] fuse: Unknown parameter 'fd0xffffffffffffffff' [ 824.613524][T10932] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 824.660795][T10932] overlayfs: missing 'lowerdir' [ 825.143533][ T8704] team0 (unregistering): Port device team_slave_1 removed [ 825.288604][ T8704] team0 (unregistering): Port device team_slave_0 removed [ 825.747409][ T5777] Bluetooth: hci4: command tx timeout [ 827.828198][ T5781] Bluetooth: hci4: command tx timeout [ 828.454694][T10881] chnl_net:caif_netlink_parms(): no params data found [ 828.762854][ T5931] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 829.190402][ T5931] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 829.333520][ T5931] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 829.484531][ T5931] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 829.908311][ T5777] Bluetooth: hci4: command tx timeout [ 830.052045][T10881] bridge0: port 1(bridge_slave_0) entered blocking state [ 830.060097][T10881] bridge0: port 1(bridge_slave_0) entered disabled state [ 830.069855][T10881] bridge_slave_0: entered allmulticast mode [ 830.093906][T10881] bridge_slave_0: entered promiscuous mode [ 830.119242][T10881] bridge0: port 2(bridge_slave_1) entered blocking state [ 830.133019][T10881] bridge0: port 2(bridge_slave_1) entered disabled state [ 830.142545][T10881] bridge_slave_1: entered allmulticast mode [ 830.153403][T10881] bridge_slave_1: entered promiscuous mode [ 831.766257][ T5781] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 831.792221][ T5781] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 831.814367][ T5781] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 831.838805][ T5781] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 831.860992][ T5781] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 831.912142][ T5931] bond0 (unregistering): Released all slaves [ 832.043889][T10881] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 832.086368][T11035] mmap: syz.2.1344 (11035) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 832.098644][T10881] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 832.690376][T10881] team0: Port device team_slave_0 added [ 832.780161][T10881] team0: Port device team_slave_1 added [ 833.991489][ T5781] Bluetooth: hci3: command tx timeout [ 834.124003][T10881] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 834.177232][T10881] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 834.372444][T10881] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 834.473390][T10881] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 834.507370][T10881] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 834.672622][T10881] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 834.907168][ T5931] hsr_slave_0: left promiscuous mode [ 834.966162][ T5931] hsr_slave_1: left promiscuous mode [ 835.109844][ T5931] veth1_macvtap: left promiscuous mode [ 835.138969][ T5931] veth0_macvtap: left promiscuous mode [ 835.189887][ T5931] veth1_vlan: left promiscuous mode [ 835.227713][ T5931] veth0_vlan: left promiscuous mode [ 836.071825][ T5781] Bluetooth: hci3: command tx timeout [ 836.514354][ T29] audit: type=1326 audit(1771410494.186:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11074 comm="syz.6.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 836.598272][ T29] audit: type=1326 audit(1771410494.186:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11074 comm="syz.6.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 836.692319][ T29] audit: type=1326 audit(1771410494.186:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11074 comm="syz.6.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 836.797768][ T29] audit: type=1326 audit(1771410494.186:717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11074 comm="syz.6.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 836.931431][ T29] audit: type=1326 audit(1771410494.186:718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11074 comm="syz.6.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 837.026147][ T29] audit: type=1326 audit(1771410494.186:719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11074 comm="syz.6.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 837.157512][ T29] audit: type=1326 audit(1771410494.186:720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11074 comm="syz.6.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 837.272097][ T29] audit: type=1326 audit(1771410494.186:721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11074 comm="syz.6.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 837.367399][ T29] audit: type=1326 audit(1771410494.186:722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11074 comm="syz.6.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 837.467532][ T29] audit: type=1326 audit(1771410494.226:723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11074 comm="syz.6.1353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 838.147804][ T5781] Bluetooth: hci3: command tx timeout [ 838.481456][T10881] hsr_slave_0: entered promiscuous mode [ 838.501613][T10881] hsr_slave_1: entered promiscuous mode [ 839.374363][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 839.381665][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 840.008002][T11031] chnl_net:caif_netlink_parms(): no params data found [ 840.227760][ T5781] Bluetooth: hci3: command tx timeout [ 842.850762][T11031] bridge0: port 1(bridge_slave_0) entered blocking state [ 842.876042][T11031] bridge0: port 1(bridge_slave_0) entered disabled state [ 842.907809][T11031] bridge_slave_0: entered allmulticast mode [ 842.916997][T11031] bridge_slave_0: entered promiscuous mode [ 842.976752][T11031] bridge0: port 2(bridge_slave_1) entered blocking state [ 842.997933][T11031] bridge0: port 2(bridge_slave_1) entered disabled state [ 843.027592][T11031] bridge_slave_1: entered allmulticast mode [ 843.036792][T11031] bridge_slave_1: entered promiscuous mode [ 843.329941][T11031] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 843.390824][ T29] kauditd_printk_skb: 114 callbacks suppressed [ 843.390897][ T29] audit: type=1326 audit(1771410501.066:838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11172 comm="syz.8.1375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 843.477817][ T29] audit: type=1326 audit(1771410501.066:839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11172 comm="syz.8.1375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 843.514815][ T29] audit: type=1326 audit(1771410501.096:840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11172 comm="syz.8.1375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 843.542181][T11031] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 843.556816][ T29] audit: type=1326 audit(1771410501.096:841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11172 comm="syz.8.1375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 843.660160][ T29] audit: type=1326 audit(1771410501.096:842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11172 comm="syz.8.1375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 843.695291][ T29] audit: type=1326 audit(1771410501.096:843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11172 comm="syz.8.1375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 843.779012][ T29] audit: type=1326 audit(1771410501.096:844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11172 comm="syz.8.1375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 843.890872][ T29] audit: type=1326 audit(1771410501.116:845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11172 comm="syz.8.1375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 843.945763][ T29] audit: type=1326 audit(1771410501.116:846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11172 comm="syz.8.1375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 844.005087][ T29] audit: type=1326 audit(1771410501.116:847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11172 comm="syz.8.1375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 844.080649][T11031] team0: Port device team_slave_0 added [ 844.146025][T11031] team0: Port device team_slave_1 added [ 844.456038][T11031] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 844.493301][T11031] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 844.587236][T11031] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 844.624398][T10881] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 844.741423][T11031] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 844.763671][T11031] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 844.847326][T11031] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 844.926821][T10881] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 845.039821][T10881] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 845.252004][T10881] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 845.491249][T11031] hsr_slave_0: entered promiscuous mode [ 845.531547][T11031] hsr_slave_1: entered promiscuous mode [ 845.556137][T11031] debugfs: 'hsr0' already exists in 'hsr' [ 845.581134][T11031] Cannot create hsr debugfs directory [ 845.781739][T11200] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 848.102552][T11240] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1392'. [ 848.150344][T10881] 8021q: adding VLAN 0 to HW filter on device bond0 [ 848.523697][T10881] 8021q: adding VLAN 0 to HW filter on device team0 [ 848.542089][T11246] overlayfs: failed to clone upperpath [ 848.684600][ T129] bridge0: port 1(bridge_slave_0) entered blocking state [ 848.692156][ T129] bridge0: port 1(bridge_slave_0) entered forwarding state [ 848.846260][ T5931] bridge0: port 2(bridge_slave_1) entered blocking state [ 848.854059][ T5931] bridge0: port 2(bridge_slave_1) entered forwarding state [ 849.085303][T11031] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 849.146948][T11031] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 849.262584][T11031] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 849.274876][ T29] kauditd_printk_skb: 125 callbacks suppressed [ 849.274948][ T29] audit: type=1326 audit(1771410506.946:973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11255 comm="syz.8.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 849.347007][T11031] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 849.400968][ T29] audit: type=1326 audit(1771410506.986:974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11255 comm="syz.8.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 849.479990][ T29] audit: type=1326 audit(1771410506.986:975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11255 comm="syz.8.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 849.600064][ T29] audit: type=1326 audit(1771410506.986:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11255 comm="syz.8.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 849.675796][ T29] audit: type=1326 audit(1771410507.006:977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11255 comm="syz.8.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 849.797795][ T29] audit: type=1326 audit(1771410507.006:978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11255 comm="syz.8.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 849.909392][ T29] audit: type=1326 audit(1771410507.006:979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11255 comm="syz.8.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 850.027422][ T29] audit: type=1326 audit(1771410507.006:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11255 comm="syz.8.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 850.117746][ T29] audit: type=1326 audit(1771410507.006:981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11255 comm="syz.8.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 850.212312][ T29] audit: type=1326 audit(1771410507.006:982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11255 comm="syz.8.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 850.672832][T11269] bridge0: port 2(bridge_slave_1) entered disabled state [ 850.681405][T11269] bridge0: port 1(bridge_slave_0) entered disabled state [ 851.084012][T11269] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 851.154267][T11269] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 852.185956][ T8704] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 852.239372][ T9376] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 852.321572][ T9376] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 852.380081][ T9376] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 853.050533][T11031] 8021q: adding VLAN 0 to HW filter on device bond0 [ 853.226164][T10881] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 853.347552][T11031] 8021q: adding VLAN 0 to HW filter on device team0 [ 853.458352][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 853.465814][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 853.581656][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 853.589430][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 853.868774][T11321] 9p: Bad value for 'rfdno' [ 854.014865][T10881] veth0_vlan: entered promiscuous mode [ 854.205287][T11031] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 854.240845][T11031] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 854.443664][T10881] veth1_vlan: entered promiscuous mode [ 855.015409][T10881] veth0_macvtap: entered promiscuous mode [ 855.204180][T10881] veth1_macvtap: entered promiscuous mode [ 855.774389][T10881] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 855.983578][T10881] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 856.221390][ T5988] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 856.286468][ T5988] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 856.347952][ T29] kauditd_printk_skb: 115 callbacks suppressed [ 856.348027][ T29] audit: type=1326 audit(1771410514.026:1098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11366 comm="syz.8.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 856.401904][ T5988] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 856.437594][ T5988] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 856.489902][ T29] audit: type=1326 audit(1771410514.026:1099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11366 comm="syz.8.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 856.591882][ T29] audit: type=1326 audit(1771410514.026:1100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11366 comm="syz.8.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 856.687408][ T29] audit: type=1326 audit(1771410514.026:1101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11366 comm="syz.8.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 856.807473][ T29] audit: type=1326 audit(1771410514.026:1102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11366 comm="syz.8.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 856.907341][ T29] audit: type=1326 audit(1771410514.026:1103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11366 comm="syz.8.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 856.966284][T11031] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 856.998541][ T29] audit: type=1326 audit(1771410514.026:1104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11366 comm="syz.8.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 857.059789][ T29] audit: type=1326 audit(1771410514.026:1105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11366 comm="syz.8.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 857.193992][ T29] audit: type=1326 audit(1771410514.026:1106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11366 comm="syz.8.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 857.283264][ T29] audit: type=1326 audit(1771410514.026:1107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11366 comm="syz.8.1421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 861.760589][ T29] kauditd_printk_skb: 47 callbacks suppressed [ 861.760668][ T29] audit: type=1326 audit(1771410519.426:1155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11416 comm="syz.6.1432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 861.954639][ T29] audit: type=1326 audit(1771410519.476:1156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11416 comm="syz.6.1432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 862.196656][ T29] audit: type=1326 audit(1771410519.496:1158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11416 comm="syz.6.1432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 862.400707][ T29] audit: type=1326 audit(1771410519.506:1159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11416 comm="syz.6.1432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 862.604567][ T29] audit: type=1326 audit(1771410519.506:1160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11416 comm="syz.6.1432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 862.744619][ T29] audit: type=1326 audit(1771410519.476:1157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11416 comm="syz.6.1432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 862.858475][ T29] audit: type=1326 audit(1771410519.516:1161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11416 comm="syz.6.1432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 862.970021][ T29] audit: type=1326 audit(1771410519.516:1162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11416 comm="syz.6.1432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 863.084042][ T29] audit: type=1326 audit(1771410519.516:1163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11416 comm="syz.6.1432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 863.219237][ T29] audit: type=1326 audit(1771410519.516:1164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11416 comm="syz.6.1432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 863.344673][T11031] veth0_vlan: entered promiscuous mode [ 863.462312][T11031] veth1_vlan: entered promiscuous mode [ 863.874812][T11031] veth0_macvtap: entered promiscuous mode [ 864.023628][T11031] veth1_macvtap: entered promiscuous mode [ 864.338146][T11031] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 864.498510][T11031] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 864.611852][ T5988] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 864.657640][ T5988] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 864.706294][ T5988] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 864.726591][ T5988] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 866.382164][ T8704] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 866.437481][ T8704] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 866.674132][ T5884] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 866.706456][ T5884] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 868.686567][T11528] fuse: Bad value for 'rootmode' [ 869.155899][ T29] kauditd_printk_skb: 135 callbacks suppressed [ 869.155974][ T29] audit: type=1326 audit(1771410526.826:1300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11537 comm="syz.6.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 869.318296][ T29] audit: type=1326 audit(1771410526.826:1301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11537 comm="syz.6.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 869.436535][T11544] overlayfs: failed to clone upperpath [ 869.454136][ T29] audit: type=1326 audit(1771410526.866:1302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11537 comm="syz.6.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 869.568450][ T29] audit: type=1326 audit(1771410526.866:1303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11537 comm="syz.6.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 869.659592][ T29] audit: type=1326 audit(1771410526.866:1304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11537 comm="syz.6.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 869.737409][ T29] audit: type=1326 audit(1771410526.866:1305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11537 comm="syz.6.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 869.870406][ T29] audit: type=1326 audit(1771410526.866:1306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11537 comm="syz.6.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 869.981697][ T29] audit: type=1326 audit(1771410526.866:1307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11537 comm="syz.6.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 870.057555][ T29] audit: type=1326 audit(1771410526.876:1308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11537 comm="syz.6.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 870.112457][ T29] audit: type=1326 audit(1771410526.876:1309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11537 comm="syz.6.1455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5e99bf79 code=0x7ffc0000 [ 872.911950][ T5884] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 873.003482][ T5884] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 873.019912][T11578] fuse: Bad value for 'rootmode' [ 873.266577][ T5884] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 873.283839][ T5884] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 873.296184][T11584] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1467'. [ 873.389474][T11584] bridge_slave_1: left allmulticast mode [ 873.395326][T11584] bridge_slave_1: left promiscuous mode [ 873.436710][T11584] bridge0: port 2(bridge_slave_1) entered disabled state [ 873.564121][T11584] bridge_slave_0: left allmulticast mode [ 873.607777][T11584] bridge_slave_0: left promiscuous mode [ 873.614404][T11584] bridge0: port 1(bridge_slave_0) entered disabled state [ 876.189486][ T29] kauditd_printk_skb: 70 callbacks suppressed [ 876.189563][ T29] audit: type=1326 audit(1771410533.816:1380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11602 comm="syz.8.1471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 876.375220][ T29] audit: type=1326 audit(1771410533.916:1381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11602 comm="syz.8.1471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 876.481147][ T29] audit: type=1326 audit(1771410533.916:1382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11602 comm="syz.8.1471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 876.536622][T11614] netlink: 32 bytes leftover after parsing attributes in process `syz.6.1475'. [ 876.546209][ T29] audit: type=1326 audit(1771410533.916:1383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11602 comm="syz.8.1471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 876.642409][ T29] audit: type=1326 audit(1771410533.916:1384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11602 comm="syz.8.1471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 876.738072][ T29] audit: type=1326 audit(1771410533.916:1385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11602 comm="syz.8.1471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 876.771161][ T29] audit: type=1326 audit(1771410533.916:1386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11602 comm="syz.8.1471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 876.914772][ T29] audit: type=1326 audit(1771410533.916:1387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11602 comm="syz.8.1471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 876.998936][ T29] audit: type=1326 audit(1771410533.916:1388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11602 comm="syz.8.1471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 877.977384][ T29] audit: type=1326 audit(1771410533.916:1389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11602 comm="syz.8.1471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa00b79bf79 code=0x7ffc0000 [ 878.284503][ C1] vcan0: j1939_tp_rxtimer: 0xffff888053fa5800: rx timeout, send abort [ 878.785251][ C1] vcan0: j1939_tp_rxtimer: 0xffff888053fa5000: rx timeout, send abort [ 878.797345][ C1] vcan0: j1939_tp_rxtimer: 0xffff888053fa5800: abort rx timeout. Force session deactivation [ 879.293845][ C1] vcan0: j1939_tp_rxtimer: 0xffff888053fa5000: abort rx timeout. Force session deactivation [ 880.321983][T11651] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1488'. [ 882.658707][T11692] fuse: Bad value for 'fd' [ 882.736011][T11683] ip6gretap0: left promiscuous mode [ 882.813909][T11683] 8021q: adding VLAN 0 to HW filter on device bond0 [ 882.846060][T11683] 8021q: adding VLAN 0 to HW filter on device team0 [ 883.000776][T11683] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 883.075433][T11697] netlink: 32 bytes leftover after parsing attributes in process `syz.6.1502'. [ 883.612537][T11705] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1505'. [ 884.159707][T11712] ===================================================== [ 884.167336][T11712] BUG: KMSAN: uninit-value in validate_xmit_skb+0x14e1/0x2400 [ 884.174980][T11712] validate_xmit_skb+0x14e1/0x2400 [ 884.180540][T11712] validate_xmit_skb_list+0xd4/0x320 [ 884.185996][T11712] sch_direct_xmit+0xd4/0xcf0 [ 884.191145][T11712] __dev_queue_xmit+0x2f2d/0x5890 [ 884.196338][T11712] packet_xmit+0x8f/0x710 [ 884.201046][T11712] packet_sendmsg+0x91d9/0xa320 [ 884.206046][T11712] ____sys_sendmsg+0xfe7/0x1080 [ 884.211353][T11712] ___sys_sendmsg+0x271/0x3b0 [ 884.216202][T11712] __x64_sys_sendmsg+0x211/0x3e0 [ 884.221508][T11712] x64_sys_call+0x1e20/0x3ea0 [ 884.226456][T11712] do_syscall_64+0x134/0xf80 [ 884.231429][T11712] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 884.237661][T11712] [ 884.240060][T11712] Uninit was stored to memory at: [ 884.245288][T11712] validate_xmit_skb+0x14da/0x2400 [ 884.250762][T11712] validate_xmit_skb_list+0xd4/0x320 [ 884.256212][T11712] sch_direct_xmit+0xd4/0xcf0 [ 884.261166][T11712] __dev_queue_xmit+0x2f2d/0x5890 [ 884.266443][T11712] packet_xmit+0x8f/0x710 [ 884.271082][T11712] packet_sendmsg+0x91d9/0xa320 [ 884.276069][T11712] ____sys_sendmsg+0xfe7/0x1080 [ 884.281282][T11712] ___sys_sendmsg+0x271/0x3b0 [ 884.286131][T11712] __x64_sys_sendmsg+0x211/0x3e0 [ 884.291474][T11712] x64_sys_call+0x1e20/0x3ea0 [ 884.296323][T11712] do_syscall_64+0x134/0xf80 [ 884.301173][T11712] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 884.307327][T11712] [ 884.309716][T11712] Uninit was created at: [ 884.314307][T11712] kmem_cache_alloc_node_noprof+0x3d0/0x1270 [ 884.320648][T11712] kmalloc_reserve+0x13c/0x4b0 [ 884.325631][T11712] __alloc_skb+0x805/0x1030 [ 884.330467][T11712] alloc_skb_with_frags+0xc5/0xa60 [ 884.335792][T11712] sock_alloc_send_pskb+0xacb/0xc60 [ 884.341316][T11712] packet_sendmsg+0x7477/0xa320 [ 884.346306][T11712] ____sys_sendmsg+0xfe7/0x1080 [ 884.351462][T11712] ___sys_sendmsg+0x271/0x3b0 [ 884.356306][T11712] __x64_sys_sendmsg+0x211/0x3e0 [ 884.361545][T11712] x64_sys_call+0x1e20/0x3ea0 [ 884.366394][T11712] do_syscall_64+0x134/0xf80 [ 884.371252][T11712] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 884.377396][T11712] [ 884.379831][T11712] CPU: 0 UID: 0 PID: 11712 Comm: syz.8.1507 Tainted: G L syzkaller #0 PREEMPT(full) [ 884.391150][T11712] Tainted: [L]=SOFTLOCKUP [ 884.395558][T11712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 884.405895][T11712] ===================================================== [ 884.413035][T11712] Disabling lock debugging due to kernel taint [ 884.419435][T11712] Kernel panic - not syncing: kmsan.panic set ... [ 884.425970][T11712] CPU: 0 UID: 0 PID: 11712 Comm: syz.8.1507 Tainted: G B L syzkaller #0 PREEMPT(full) [ 884.437102][T11712] Tainted: [B]=BAD_PAGE, [L]=SOFTLOCKUP [ 884.442733][T11712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 884.452922][T11712] Call Trace: [ 884.456288][T11712] [ 884.459300][T11712] __dump_stack+0x26/0x30 [ 884.463798][T11712] dump_stack_lvl+0x50/0x1c0 [ 884.468560][T11712] ? dump_stack+0x12/0x25 [ 884.473061][T11712] dump_stack+0x1e/0x25 [ 884.477371][T11712] vpanic+0x435/0xd40 [ 884.481542][T11712] panic+0x15d/0x160 [ 884.485671][T11712] kmsan_report+0x31a/0x320 [ 884.490350][T11712] ? __msan_warning+0x1b/0x30 [ 884.495165][T11712] ? validate_xmit_skb+0x14e1/0x2400 [ 884.500613][T11712] ? validate_xmit_skb_list+0xd4/0x320 [ 884.506236][T11712] ? sch_direct_xmit+0xd4/0xcf0 [ 884.511228][T11712] ? __dev_queue_xmit+0x2f2d/0x5890 [ 884.516583][T11712] ? packet_xmit+0x8f/0x710 [ 884.521239][T11712] ? packet_sendmsg+0x91d9/0xa320 [ 884.526399][T11712] ? ____sys_sendmsg+0xfe7/0x1080 [ 884.531588][T11712] ? ___sys_sendmsg+0x271/0x3b0 [ 884.536607][T11712] ? __x64_sys_sendmsg+0x211/0x3e0 [ 884.541885][T11712] ? x64_sys_call+0x1e20/0x3ea0 [ 884.546917][T11712] ? do_syscall_64+0x134/0xf80 [ 884.551820][T11712] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 884.558050][T11712] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 884.564291][T11712] ? skb_network_protocol+0x898/0xaa0 [ 884.569849][T11712] ? kmsan_get_metadata+0xf1/0x160 [ 884.575134][T11712] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 884.581123][T11712] ? netif_skb_features+0x1788/0x2160 [ 884.586684][T11712] ? kmsan_get_metadata+0xf1/0x160 [ 884.591961][T11712] __msan_warning+0x1b/0x30 [ 884.596592][T11712] validate_xmit_skb+0x14e1/0x2400 [ 884.601860][T11712] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 884.607843][T11712] ? filter_irq_stacks+0x49/0x190 [ 884.613160][T11712] validate_xmit_skb_list+0xd4/0x320 [ 884.618623][T11712] sch_direct_xmit+0xd4/0xcf0 [ 884.623429][T11712] ? kmsan_get_metadata+0x146/0x160 [ 884.628771][T11712] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 884.635320][T11712] __dev_queue_xmit+0x2f2d/0x5890 [ 884.640505][T11712] ? kmsan_get_metadata+0xf1/0x160 [ 884.645759][T11712] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 884.651750][T11712] ? __dev_queue_xmit+0x27d/0x5890 [ 884.657050][T11712] packet_xmit+0x8f/0x710 [ 884.661516][T11712] ? kmsan_get_metadata+0xf1/0x160 [ 884.666769][T11712] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 884.672750][T11712] packet_sendmsg+0x91d9/0xa320 [ 884.677735][T11712] ? kmsan_get_metadata+0xf1/0x160 [ 884.683002][T11712] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 884.688979][T11712] ? aa_label_sk_perm+0x759/0x810 [ 884.694311][T11712] ? tomoyo_socket_bind_permission+0x321/0x370 [ 884.700702][T11712] ? filter_irq_stacks+0x49/0x190 [ 884.705892][T11712] ? cpu_rmap_update+0x100/0xd20 [ 884.711027][T11712] ? kmsan_get_metadata+0xf1/0x160 [ 884.716297][T11712] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 884.722907][T11712] ? __pfx_packet_sendmsg+0x10/0x10 [ 884.728225][T11712] ? __pfx_packet_sendmsg+0x10/0x10 [ 884.733546][T11712] ____sys_sendmsg+0xfe7/0x1080 [ 884.738592][T11712] ___sys_sendmsg+0x271/0x3b0 [ 884.743414][T11712] ? kmsan_get_metadata+0xf1/0x160 [ 884.748701][T11712] ? __rcu_read_unlock+0x6c/0xd0 [ 884.753916][T11712] ? __fget_files+0x3b4/0x4a0 [ 884.758826][T11712] ? __fget_files+0x3b9/0x4a0 [ 884.763666][T11712] ? kmsan_get_metadata+0xf1/0x160 [ 884.768929][T11712] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 884.774901][T11712] __x64_sys_sendmsg+0x211/0x3e0 [ 884.780022][T11712] ? kmsan_get_metadata+0xf1/0x160 [ 884.785296][T11712] x64_sys_call+0x1e20/0x3ea0 [ 884.790139][T11712] do_syscall_64+0x134/0xf80 [ 884.794852][T11712] ? clear_bhb_loop+0x50/0xa0 [ 884.799672][T11712] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 884.805716][T11712] RIP: 0033:0x7fa00b79bf79 [ 884.810255][T11712] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 884.830005][T11712] RSP: 002b:00007fa00c5c9028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 884.838570][T11712] RAX: ffffffffffffffda RBX: 00007fa00ba15fa0 RCX: 00007fa00b79bf79 [ 884.846650][T11712] RDX: 0000000020040051 RSI: 0000200000002ac0 RDI: 0000000000000003 [ 884.854720][T11712] RBP: 00007fa00b8327e0 R08: 0000000000000000 R09: 0000000000000000 [ 884.862797][T11712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 884.870858][T11712] R13: 00007fa00ba16038 R14: 00007fa00ba15fa0 R15: 00007ffdf3f6d858 [ 884.878973][T11712] [ 884.882442][T11712] Kernel Offset: disabled [ 884.886806][T11712] Rebooting in 86400 seconds..