last executing test programs: 27m17.875954316s ago: executing program 32 (id=2223): socket$inet6_sctp(0xa, 0x5, 0x84) syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3) socket$inet_tcp(0x2, 0x1, 0x0) socket(0x2, 0x80805, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r0}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) socket(0x11, 0x800000003, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$nl_route(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e00142002800800010008000000062102000100000008000500", @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00]'], 0x54}, 0x1, 0x0, 0x0, 0x280608c0}, 0x0) 23m36.597058178s ago: executing program 33 (id=3406): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x4, 0xdd, 0xa}, 0x50) close(0x3) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010005000900000001"], 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r1, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r2}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000000)=@framed={{0x7a, 0xa, 0x0, 0xff00, 0x0, 0x71, 0x10, 0x43}}, &(0x7f0000000480)='syzkaller\x00'}, 0x80) 17m37.383698982s ago: executing program 34 (id=5638): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000500)={'syzkaller0\x00', 0x7101}) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0) close(r2) socket$netlink(0x10, 0x3, 0x0) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast}) r3 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) r5 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x70bd2c, 0xfffffffd, {0x0, 0x0, 0x0, r4, {0xb, 0xd}, {}, {0x8, 0xfff1}}}, 0x24}}, 0x40004) recvmmsg(r5, &(0x7f0000001480)=[{{0x0, 0x0, &(0x7f0000000bc0)=[{&(0x7f0000000040)=""/55, 0x37}, {&(0x7f0000000540)=""/189, 0xbd}, {0x0}, {&(0x7f0000000940)=""/74, 0x4a}], 0x4}, 0x5d}], 0x1, 0x10022, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) 16m51.665582439s ago: executing program 5 (id=5862): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008e}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x80042, 0x0) ioctl$PTP_PEROUT_REQUEST2(r4, 0x40383d0c, &(0x7f0000000040)={{0x0, 0xfffffff8}, {0xc, 0x109003ff}, 0xc, 0x4}) sched_setscheduler(0x0, 0x1, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) mlock(&(0x7f00007fe000/0x800000)=nil, 0x800000) accept4$unix(r2, &(0x7f00000002c0)=@abs, 0x0, 0x80000) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000001c0)='./file0\x00', 0xc8d0, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x1, 0x30e, &(0x7f0000000f00)="$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") r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r5, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc0d0}, 0x0) capget(&(0x7f0000000380)={0x20071026, r1}, &(0x7f00000003c0)={0x2, 0x9, 0x9, 0x160000, 0x4, 0x80000000}) userfaultfd(0x801) setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, 0x0, 0x0) r6 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_rx_ring(r6, 0x107, 0x5, 0x0, 0x0) r7 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r7, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0xfe, 0x60000000}, 0x50) sendto$inet6(r0, 0x0, 0x0, 0x20000045, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'lo\x00'}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB], 0x30}}, 0x20024090) 16m49.784580035s ago: executing program 5 (id=5866): unshare(0x22020600) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='kfree\x00', r0}, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x3, 0x8}, 0x50) bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r1, 0x0, &(0x7f0000001700)=""/53}, 0x20) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000001740)={r1, 0x0, &(0x7f0000001700)=""/53}, 0x20) 16m49.526894661s ago: executing program 5 (id=5869): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/mdstat\x00', 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000540)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 16m47.808848446s ago: executing program 5 (id=5876): mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) unshare(0x22020600) mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0xb101e, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, 0x0) openat(0xffffffffffffff9c, 0x0, 0x42, 0x0) mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0) mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000300)='\x00', 0x89901) move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) 16m47.482656726s ago: executing program 5 (id=5879): ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x16, &(0x7f0000000080)={&(0x7f0000000140)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0xd, 0xfffffffb, 0x7fffffff}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084) sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=@newqdisc={0x48, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r2, {0x3}, {}, {0x2, 0x1}}, [@qdisc_kind_options=@q_cbq={{0x8}, {0x1c, 0x2, [@TCA_CBS_PARMS={0x18, 0x1, {0x6, '\x00', 0x8, 0x8000, 0x0, 0x2}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x40098}, 0x4000000) r3 = socket$nl_route(0x10, 0x3, 0x0) mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4) sendmsg$nl_route_sched(r3, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x40098}, 0x4000000) 16m45.63909953s ago: executing program 5 (id=5888): r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00'}) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xe, 0x4, 0x8, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b7040000dd010000070000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0) syz_emit_ethernet(0x66, &(0x7f0000000300)={@random="cfb14e407d33", @broadcast, @void, {@ipv6={0x86dd, @icmpv6={0x9, 0x6, 'z&-', 0x30, 0x3a, 0xfe, @local, @mcast2, {[], @param_prob={0x4, 0x1, 0x0, 0x7, {0x4, 0x6, "70c527", 0x800, 0xff, 0x1, @mcast1, @loopback}}}}}}}, 0x0) 16m45.242036944s ago: executing program 35 (id=5888): r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00'}) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xe, 0x4, 0x8, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b7040000dd010000070000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0) syz_emit_ethernet(0x66, &(0x7f0000000300)={@random="cfb14e407d33", @broadcast, @void, {@ipv6={0x86dd, @icmpv6={0x9, 0x6, 'z&-', 0x30, 0x3a, 0xfe, @local, @mcast2, {[], @param_prob={0x4, 0x1, 0x0, 0x7, {0x4, 0x6, "70c527", 0x800, 0xff, 0x1, @mcast1, @loopback}}}}}}}, 0x0) 15m39.702071569s ago: executing program 6 (id=6598): ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000003000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x11, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = dup(r1) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000640)={0x0, 0xd000}) ioctl$KVM_NMI(r3, 0xae9a) ioctl$KVM_RUN(r3, 0xae80, 0x0) 15m39.415164077s ago: executing program 6 (id=6601): symlinkat(&(0x7f00000000c0)='.\x00', 0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00') pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) write$P9_RVERSION(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENTPLUS(r2, &(0x7f0000000440)=ANY=[@ANYBLOB="b0"], 0xb0) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) 15m39.311159003s ago: executing program 6 (id=6602): r0 = fsopen(&(0x7f0000000200)='minix\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r1 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0]) mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0) r2 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f00000003c0)=ANY=[@ANYRES16=r2, @ANYRESHEX=r0, @ANYBLOB="2c726f6f746d6f64653d30308d7d1c8c5d434a6943181108000000303030303030303030303030303034303030302c3bc305f25f690000", @ANYRESDEC=0x0, @ANYRESDEC=0x0, @ANYRES8=r2]) syz_fuse_handle_req(r2, &(0x7f0000006400)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d9a38e64519ad5700000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005ba9e3fa00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100", 0x2000, 0x0) mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040)) chdir(&(0x7f0000000080)='./file0\x00') setpgid(r1, r1) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0) mount$fuse(0x0, 0x0, &(0x7f0000002100), 0x5040, &(0x7f0000002140)=ANY=[]) openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x220901, 0x0) unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x200) getsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x14, &(0x7f0000000100), &(0x7f00000002c0)=0x10) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r3, 0x10e, 0x1, &(0x7f0000000140)=0x1, 0x4) sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="88000000000101040000000000000000020000002c00018014000180080001007f00000108000200e00000020c000280050000034000000000000008009491ed9c32b20c81c31902306824e20200ac1411c4582314bb0c00028005000100000000000800063cf18ddfa57b58024c23401cbb10a6bc04ee"], 0x88}}, 0x40014) setpgid(0x0, r1) statx(0xffffffffffffff9c, &(0x7f0000002040)='./file0/file0\x00', 0x4800, 0x100, 0x0) r4 = fsmount(r0, 0x0, 0xa) fchdir(r4) lseek(0xffffffffffffffff, 0x104, 0x1) r5 = inotify_init1(0x80000) inotify_add_watch(r5, &(0x7f0000000240)='.\x00', 0x60000726) 15m38.402316109s ago: executing program 6 (id=6622): mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000340)='./file0/../file0\x00', &(0x7f0000000280)='./file0/file0\x00', 0x0, 0xb101e, 0x0) mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0) mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0) mkdirat(0xffffffffffffff9c, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='mountinfo\x00') read$FUSE(r0, &(0x7f0000003480)={0x2020}, 0x2020) 15m38.333377343s ago: executing program 6 (id=6623): mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x0) mount$tmpfs(0x0, 0x0, &(0x7f0000000100), 0x80, 0x0) mount$tmpfs(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x84022, &(0x7f0000000000)={[{@nr_inodes={'nr_inodes', 0x3d, [0x35]}}]}) syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xa0, &(0x7f0000000700)=ANY=[], 0x1, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) 15m37.989214574s ago: executing program 6 (id=6627): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58) r1 = accept$alg(r0, 0x0, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e21, 0x3, @ipv4={'\x00', '\xff\xff', @loopback}, 0x4}, 0x1c) setsockopt$inet6_int(r2, 0x29, 0x31, &(0x7f0000000000)=0x7fffffff, 0x4) connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e21, 0x659, @empty, 0xff}, 0x1c) sendto$inet6(r2, 0x0, 0x0, 0x80, 0x0, 0x0) r3 = fcntl$dupfd(r2, 0x406, r1) setsockopt$inet_opts(r3, 0x0, 0x8, &(0x7f0000000940)="96", 0x1) recvmmsg$unix(r3, &(0x7f00000006c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@cred={{0x1c}}, @rights={{0x10}}, @rights={{0x10}}], 0x40}}], 0x1, 0x3, 0x0) 15m37.73735925s ago: executing program 36 (id=6627): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58) r1 = accept$alg(r0, 0x0, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e21, 0x3, @ipv4={'\x00', '\xff\xff', @loopback}, 0x4}, 0x1c) setsockopt$inet6_int(r2, 0x29, 0x31, &(0x7f0000000000)=0x7fffffff, 0x4) connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e21, 0x659, @empty, 0xff}, 0x1c) sendto$inet6(r2, 0x0, 0x0, 0x80, 0x0, 0x0) r3 = fcntl$dupfd(r2, 0x406, r1) setsockopt$inet_opts(r3, 0x0, 0x8, &(0x7f0000000940)="96", 0x1) recvmmsg$unix(r3, &(0x7f00000006c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@cred={{0x1c}}, @rights={{0x10}}, @rights={{0x10}}], 0x40}}], 0x1, 0x3, 0x0) 13m47.372859028s ago: executing program 2 (id=7726): r0 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0x0) symlinkat(&(0x7f0000000000)='.\x00', r1, &(0x7f0000000140)='./file0\x00') readlinkat(r1, &(0x7f0000000040)='./file0/../file0\x00', &(0x7f0000000240)=""/65, 0x41) readlinkat(r1, &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0) 13m47.299040252s ago: executing program 2 (id=7728): syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$fuse(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x4002, 0x0, 0x1, 0x0, 0x0) syz_mount_image$fuse(0x0, &(0x7f0000000040)='./bus\x00', 0x3010009, 0x0, 0x1, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c2) mount$overlay(0x0, &(0x7f0000000400)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) mount$overlay(0x0, &(0x7f0000000340)='./bus\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000000)={[{@lowerdir={'lowerdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file0/file0'}}, {@workdir={'workdir', 0x3d, './file1'}}]}) syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f00000002c0)='./bus\x00', 0x322020, &(0x7f0000000380)=ANY=[], 0x1, 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x83) bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x4, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x8}, [@call={0x85, 0x0, 0x0, 0x29}, @call={0x85, 0x0, 0x0, 0x50}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40086602, &(0x7f0000000000)) statx(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x800, 0x10, &(0x7f0000000440)) 13m47.18536546s ago: executing program 2 (id=7730): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x6, 0x3, 0x7ffcfffc}]}) map_shadow_stack(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x1) dup(0xffffffffffffffff) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) openat$tun(0xffffffffffffff9c, 0x0, 0x101080, 0x0) clock_adjtime(0x5, &(0x7f0000004dc0)={0xb, 0x45, 0x8f0f, 0x2, 0x9, 0x7cca, 0xffffffffffffffff, 0xc632, 0x7f, 0x4, 0x800000000000007c, 0x10007, 0x5, 0x1001, 0x3, 0x0, 0x8, 0x40000000000, 0xfffffffffffffff9, 0x4, 0x200000000000, 0xa5, 0x3c0000000000004, 0x9011, 0x10, 0x18}) ioctl$KVM_RUN(r0, 0xae80, 0x0) 13m46.964613383s ago: executing program 2 (id=7732): mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x12c5008, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/sctp\x00') mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) mount$fuse(0x0, 0x0, 0x0, 0x104000, 0x0) mkdirat(0xffffffffffffff9c, 0x0, 0x1c0) mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x1805406, 0x0) mount$9p_unix(&(0x7f0000000180)='./file0/file0\x00', &(0x7f0000000100)='./file0/file0\x00', 0x0, 0x321f008, 0x0) r1 = open_tree(r0, &(0x7f0000000640)='\x00', 0x89901) move_mount(r1, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='net/sctp\x00') 13m46.8541623s ago: executing program 2 (id=7733): r0 = fsopen(&(0x7f0000000200)='minix\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r1 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0]) mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0) r2 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f00000003c0)=ANY=[@ANYRES16=r2, @ANYRESHEX=r0, @ANYRESDEC=0x0, @ANYRES16=r2, @ANYRESDEC=0x0, @ANYRES8=r2]) syz_fuse_handle_req(r2, &(0x7f0000006400)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d9a38e64519ad5700000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005ba9e3fa00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100", 0x2000, 0x0) mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040)) chdir(&(0x7f0000000080)='./file0\x00') setpgid(r1, r1) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0) mount$fuse(0x0, 0x0, &(0x7f0000002100), 0x5040, &(0x7f0000002140)=ANY=[]) openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x220901, 0x0) unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x200) getsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x14, &(0x7f0000000100), &(0x7f00000002c0)=0x10) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r3, 0x10e, 0x1, &(0x7f0000000140)=0x1, 0x4) sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="88000000000101040000000000000000020000002c00018014000180080001007f00000108000200e00000020c000280050000034000000000000008009491ed9c32b20c81c31902306824e20200ac1411c4582314bb0c00028005000100000000000800063cf18ddf"], 0x88}}, 0x40014) setpgid(0x0, r1) statx(0xffffffffffffff9c, &(0x7f0000002040)='./file0/file0\x00', 0x4800, 0x100, 0x0) r4 = fsmount(r0, 0x0, 0xa) fchdir(r4) lseek(0xffffffffffffffff, 0x104, 0x1) r5 = inotify_init1(0x80000) inotify_add_watch(r5, &(0x7f0000000240)='.\x00', 0x60000726) 13m46.464450344s ago: executing program 2 (id=7738): syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$fuse(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x4002, 0x0, 0x1, 0x0, 0x0) syz_mount_image$fuse(0x0, &(0x7f0000000040)='./bus\x00', 0x3010009, 0x0, 0x1, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c2) mount$overlay(0x0, &(0x7f0000000400)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) mount$overlay(0x0, &(0x7f0000000340)='./bus\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000000)={[{@lowerdir={'lowerdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file0/file0'}}, {@workdir={'workdir', 0x3d, './file1'}}]}) syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f00000002c0)='./bus\x00', 0x322020, &(0x7f0000000380)=ANY=[], 0x1, 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x83) bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x4, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x8}, [@call={0x85, 0x0, 0x0, 0x29}, @call={0x85, 0x0, 0x0, 0x50}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40086602, &(0x7f0000000000)) statx(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x800, 0x10, &(0x7f0000000440)) 13m46.061425259s ago: executing program 37 (id=7738): syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$fuse(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x4002, 0x0, 0x1, 0x0, 0x0) syz_mount_image$fuse(0x0, &(0x7f0000000040)='./bus\x00', 0x3010009, 0x0, 0x1, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c2) mount$overlay(0x0, &(0x7f0000000400)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) mount$overlay(0x0, &(0x7f0000000340)='./bus\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000000)={[{@lowerdir={'lowerdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file0/file0'}}, {@workdir={'workdir', 0x3d, './file1'}}]}) syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f00000002c0)='./bus\x00', 0x322020, &(0x7f0000000380)=ANY=[], 0x1, 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x83) bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x4, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x8}, [@call={0x85, 0x0, 0x0, 0x29}, @call={0x85, 0x0, 0x0, 0x50}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40086602, &(0x7f0000000000)) statx(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x800, 0x10, &(0x7f0000000440)) 11m12.730754966s ago: executing program 1 (id=9295): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x20, 0x30}, 0xc) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @empty}, 0x1c) sendto$inet6(r0, &(0x7f0000000180)="1a", 0x1, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f0000000c80)="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", 0x1dd, 0xbcff, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000080), 0xc) writev(r0, &(0x7f0000001300)=[{&(0x7f0000000100)='^', 0xfdef}], 0x1) 11m11.749513227s ago: executing program 1 (id=9313): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x40202, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x74, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000031000/0x18000)=nil, 0x0, 0x0, 0x6e, 0x0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, 0x0) setrlimit(0xf, 0x0) 11m11.441194515s ago: executing program 1 (id=9317): syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000700)='./file2\x00', 0x0, &(0x7f0000000040)=ANY=[], 0xfd, 0x11f3, &(0x7f0000001b80)="$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") fchdir(0xffffffffffffffff) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) fcntl$notify(r0, 0x402, 0x25) r1 = open(&(0x7f0000000780)='./bus\x00', 0x145c7e, 0x0) io_setup(0x5ff, &(0x7f0000000400)=0x0) io_submit(r2, 0x2, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0}, 0x0]) 11m11.018344201s ago: executing program 1 (id=9323): sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x300001a, &(0x7f00000001c0)=ANY=[@ANYBLOB="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", @ANYRESOCT=0x0], 0xc, 0x2a5, &(0x7f00000007c0)="$eJzs3U9rM0UcB/Df5l+jggniRRFc0IOn8tSrl0Z5BLEnJYJ60ODzFCQJhRYCVjD21Ffg0ffhS/DixXcgeBW8tYfKymZ3TULTWmNMoX4+p2FmvjPTnZBCIL98/sp4+OQoibOLX6LdTqK2H/txmUQ3alH5NhoBADwcl1kWv2frJBu1zZ8GANiG4v9/4b7PAgBsx4cff/J+7+Dg8Qdp2o6XOueTfhIR4/NJP+af+o/iaTyKTlxFZH8p2u++d/A4GmmuG6+Pp5N+nhx/9lMZ7f1W5veiE93V+b20sJCfTvrNeDbS6B02q1N04sXV+TdX5KPfijdei+gdxpez/XejEz9/EUcxiieRZ+f5b/bS9J3su4uvP823yfNJLfo7s3lzWX17twIAAAAAAAAAAAAAAAAAAAAAwEO3m6ZJUb5nVr8n7yrr79SvZuO7aaW7XJ+nyCfVQkV9oCzKEj3TLL6v6us8StM0KyfO8414ueGHBQAAAAAAAAAAAAAAAAAAACB38tXpcDAaPT1er9Fc7qmqAVRf61935f2FnlfjdDio37zgzt33Wqw2kJ/11snRaMS6j+UfNp7Jz7PxlXfml/tRFI3qYja61wtvF4ueDgdpOVQ95OEg+bu92tXF/bA41Ip/e7Bs9pK4ypbvtP386ldLa0NPo/XcyqE/siy72zpv/VrcUdmTzEps3G33ZtlYiC/PaV+/ix9vXvDGt4z6Jt53AAAAAAAAAAAAAAAAAACA6+Zf+l0xeHZrtPafHQoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAtmz++/9Vox0Ryz3XGtMyfNucstGK45N7/hMBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4H/gzAAD//zB3TbY=") openat(0xffffffffffffff9c, 0x0, 0x105042, 0x189) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) setitimer(0x0, 0x0, 0x0) creat(&(0x7f0000000100)='./bus\x00', 0x32) mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) r0 = open(&(0x7f0000000540)='./bus\x00', 0x4000, 0x0) preadv2(r0, &(0x7f0000000200)=[{&(0x7f0000004300)=""/4096, 0x1000}], 0x1, 0x3400, 0x2, 0x8) 11m10.796717635s ago: executing program 1 (id=9325): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f0000000240)={0x2, 0x0, [{0xb, 0x80000001, 0x1, 0x6, 0x7fffffff}, {0xd, 0xd09, 0x6d4, 0x5, 0x5}]}) 11m10.412808838s ago: executing program 1 (id=9331): syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000003000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000000c0)="2ef20f017df4ba4200b07aeeb80e000f00d0660f3acfc30d0f01b91a000f20e06635000010000f22e06766c744240033d500006766c74424020001c0fe6766c744240600000000670f0114240f00d466b9410101c066b869d281cd66ba000000000f302e0f017500", 0x68}], 0x1, 0x11, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x41, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, &(0x7f0000000140)="9dbad004b837ecef6664653f66b9610a000066b82b110a8366ba000000000f308d66803e0fc7a95d000f35650f23580f78368b0066b9530300000f32", 0x3c}], 0x1, 0x40, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = dup(r1) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00'}, 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000640)={0x0, 0xd000}) ioctl$KVM_NMI(r3, 0xae9a) pwritev(0xffffffffffffffff, 0x0, 0x0, 0x200bdee, 0x1000) ioctl$KVM_RUN(r3, 0xae80, 0x0) 11m10.146025925s ago: executing program 38 (id=9331): syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000003000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000000c0)="2ef20f017df4ba4200b07aeeb80e000f00d0660f3acfc30d0f01b91a000f20e06635000010000f22e06766c744240033d500006766c74424020001c0fe6766c744240600000000670f0114240f00d466b9410101c066b869d281cd66ba000000000f302e0f017500", 0x68}], 0x1, 0x11, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x41, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, &(0x7f0000000140)="9dbad004b837ecef6664653f66b9610a000066b82b110a8366ba000000000f308d66803e0fc7a95d000f35650f23580f78368b0066b9530300000f32", 0x3c}], 0x1, 0x40, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = dup(r1) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00'}, 0x10) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000640)={0x0, 0xd000}) ioctl$KVM_NMI(r3, 0xae9a) pwritev(0xffffffffffffffff, 0x0, 0x0, 0x200bdee, 0x1000) ioctl$KVM_RUN(r3, 0xae80, 0x0) 4m46.30980569s ago: executing program 9 (id=12960): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfa, 0x0, 0xec}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr', 0x3) sendmmsg$inet(r0, &(0x7f0000000140)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000a00)="449f6aed247d197178d7f0a82e1deae14825b22ab6c0ec1ca0", 0x19}, {&(0x7f0000000640)="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", 0x289}, {&(0x7f0000000300)="2e0fd87d8d84b93c7803a87df5acd511ee50b0a0d0d9e3fc8345949042d5449c61a2b530aeea469c70772df880777d6e1744da498487c553359a7dce5cad9e69bd2bd62e1a81d61f05700503d4aa5debf98ffa041d397d5dc8cbf9dc290e08158912b52a9101557ee5d819059fd760d75380c0d07990283b882e5e5d8ecfd2f4bf9f032c99e130e994", 0x89}, {&(0x7f0000000a40)="0be623851ed424a740141583d87c98f8988e5bb236a3c8638f646c9f896c1f179a922adb3649b1196e6bed31dbbe935e", 0x30}], 0x4}}, {{0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000400)="ffbcf4974a4a645c6d8cd8ef2dde80a53f40daf5ec8c7b36eb6b4d4d5286a436a562f1656469c511aaadc7389df3d15187940450e3b35c63d66f24df397537c747612c3e38daf2f2336c6de65eb8048c4860fc269b96a50098a9485f692d75ecdfa3", 0x62}], 0x1}}], 0x2, 0x40408e0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0x1000, 0x4) sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0) 4m46.107854413s ago: executing program 8 (id=12964): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000dfff75390000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r0}, 0x10) r1 = io_uring_setup(0x5bc9, &(0x7f0000000100)) io_uring_register$IORING_REGISTER_BUFFERS2(r1, 0xf, &(0x7f0000000380)={0x1, 0x0, 0x0, &(0x7f0000000300)=[{0x0}], 0x0}, 0x20) io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r1, 0x10, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001400)=[{0xffffffffffffffff}], 0x0, 0x1}, 0x20) 4m46.036928997s ago: executing program 9 (id=12966): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000500)="7c5331fc9356b5b1000600008100", 0x0, 0xd5a2, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 4m45.919162504s ago: executing program 8 (id=12968): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000080)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x924924924924c31, 0x3ec0) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0, 0xffffffffffffff2c}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045) r2 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0xc8df, 0xc000, 0xa, 0x20002f7}) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x20040000) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4) r3 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) io_uring_enter(r2, 0x2219, 0x7721, 0x16, 0x0, 0x0) readv(r0, &(0x7f00000002c0)=[{&(0x7f0000000200)=""/171, 0xab}], 0x1) 4m45.725647046s ago: executing program 9 (id=12971): bpf$ENABLE_STATS(0x20, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000180)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1808000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000000850000002f000000b7000000000000001801000000082c2500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f00000000c0)=r3, 0x4) sendmsg$inet(r1, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0) 4m45.66164859s ago: executing program 8 (id=12973): r0 = socket$inet_udplite(0x2, 0x2, 0x88) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x4e24, @empty}, 0x10) syz_emit_ethernet(0x6f, &(0x7f0000000000)={@local, @local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x61, 0x68, 0x0, 0x1, 0x88, 0x0, @remote, @local}, {0x4e20, 0x4e24, 0x4d, 0x0, @wg=@data={0x4, 0x101, 0xb, "285b69b9c47da07bd9234b5cae1e330da1fc8415af73277e9a57a86ab955f0812c1dd7915697cf8049d57e8222edc437c7b51c4eb6"}}}}}}, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0x0, 0x0, 0x0, 0x0, 0xd01, 0x88be, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) 4m45.528555728s ago: executing program 9 (id=12976): r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd77f2e9332f24016, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}}]}, 0x0, 0x100000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r1}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xa, 0x101, 0x7ffc, 0xcc}, 0x50) 4m45.509373479s ago: executing program 8 (id=12977): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000001c0)=""/251, 0xfb}], 0x1}, 0x0) setsockopt$sock_attach_bpf(r1, 0x1, 0x10, &(0x7f0000000040), 0x4) sendmsg$inet(r1, &(0x7f00000008c0)={0x0, 0x0, 0x0}, 0x40) 4m45.365696988s ago: executing program 8 (id=12978): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENTPLUS(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="b0000000000000008d15c937040795e9ec68ba339b8fd15e58983b3da942"], 0xb0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) chdir(&(0x7f0000000280)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15) 4m45.216743977s ago: executing program 9 (id=12979): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="02000000040000000a00000002"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000a40)={0x9}, 0x8) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={r1, 0x142, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe20, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc7, 0x8, 0x0, 0x0}}, 0x10) 4m44.920943415s ago: executing program 9 (id=12980): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000040), &(0x7f0000000280)}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETOFFLOAD(r2, 0xc004743e, 0x110c230000) 4m44.479363152s ago: executing program 39 (id=12980): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000040), &(0x7f0000000280)}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETOFFLOAD(r2, 0xc004743e, 0x110c230000) 4m44.340626871s ago: executing program 8 (id=12985): r0 = socket$inet_udplite(0x2, 0x2, 0x88) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x4e24, @empty}, 0x10) syz_emit_ethernet(0x6f, &(0x7f0000000000)={@local, @local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x61, 0x68, 0x0, 0x1, 0x88, 0x0, @remote, @local}, {0x4e20, 0x4e24, 0x4d, 0x0, @wg=@data={0x4, 0x101, 0xb, "285b69b9c47da07bd9234b5cae1e330da1fc8415af73277e9a57a86ab955f0812c1dd7915697cf8049d57e8222edc437c7b51c4eb6"}}}}}}, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0x0, 0x0, 0x0, 0x0, 0xd01, 0x88be, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) 4m43.87167038s ago: executing program 40 (id=12985): r0 = socket$inet_udplite(0x2, 0x2, 0x88) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x4e24, @empty}, 0x10) syz_emit_ethernet(0x6f, &(0x7f0000000000)={@local, @local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x61, 0x68, 0x0, 0x1, 0x88, 0x0, @remote, @local}, {0x4e20, 0x4e24, 0x4d, 0x0, @wg=@data={0x4, 0x101, 0xb, "285b69b9c47da07bd9234b5cae1e330da1fc8415af73277e9a57a86ab955f0812c1dd7915697cf8049d57e8222edc437c7b51c4eb6"}}}}}}, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0x0, 0x0, 0x0, 0x0, 0xd01, 0x88be, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) 25.709557872s ago: executing program 7 (id=13669): openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x0, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000300), &(0x7f0000000400), 0x401, 0xffffffffffffffff, 0x0, 0xa002a0}, 0x38) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="740000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="2b030040000000004c0012800b00010067656e65766500"], 0x74}}, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x1e00, 0x21}, 0x94) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0xa0, 0x30, 0xffff, 0xfffffffe, 0x0, {}, [{0x8c, 0x1, [@m_gact={0x30, 0x2, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_sample={0x58, 0x1, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PARMS={0x18, 0x2, {0x2, 0x5f, 0x0, 0x101, 0x8cb8}}, @TCA_SAMPLE_PSAMPLE_GROUP={0x8, 0x5, 0x6}, @TCA_SAMPLE_RATE={0x8, 0x3, 0x3}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}]}]}, 0xa0}}, 0x0) rseq(&(0x7f0000000a40)={0x0, 0x0, 0x0, 0x5}, 0x20, 0x0, 0x0) futex_waitv(&(0x7f0000000180)=[{0x0, &(0x7f0000000000), 0x2}], 0x1, 0x0, 0x0, 0x0) futex(&(0x7f000000cffc), 0x5, 0x0, 0x0, &(0x7f0000000000), 0x0) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) write$binfmt_aout(r4, &(0x7f00000000c0)=ANY=[], 0xff2e) syz_open_pts(r4, 0x0) 20.352249455s ago: executing program 7 (id=13676): r0 = creat(&(0x7f0000000040)='./file0\x00', 0x4b) close(r0) r1 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0) open_tree(0xffffffffffffff9c, 0x0, 0x89901) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0) close(0xffffffffffffffff) socket$netlink(0x10, 0x3, 0x0) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, 0x0) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000480)=@generic={0x0}, 0x14) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000340)={0x0, &(0x7f00000002c0)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_GETFB2(r0, 0xc06864ce, &(0x7f0000000600)={0x0, 0x3, 0x1, 0x5, 0x3, [0x0, 0x0, 0x0, 0x0], [0x80000001], [0x20, 0x1001000, 0xfffffffb, 0xffffffff], [0x1, 0x401, 0x9, 0x2]}) r5 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000940), 0x1, 0x0) ioctl$SNAPSHOT_S2RAM(r5, 0x3314) ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f00000001c0)={0x0, 0xae, 0x3ff, 0x34325241, 0x0, [r3, 0x0, 0x0, r4], [0x2b8]}) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000a40)={0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe5b}) ioctl$MON_IOCG_STATS(r0, 0x80089203, &(0x7f0000000080)) add_key$keyring(&(0x7f0000000280), &(0x7f00000003c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) 15.28562959s ago: executing program 7 (id=13678): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121) r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = dup(r2) r5 = socket$l2tp6(0xa, 0x2, 0x73) getsockopt$inet_mreqn(r4, 0x0, 0x24, 0x0, 0x0) write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c) bind$inet6(0xffffffffffffffff, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c) syz_emit_ethernet(0xbe, &(0x7f00000001c0)=ANY=[@ANYRES16=0x0, @ANYRES16, @ANYRESHEX=r2, @ANYRES64=r5, @ANYRESDEC=r3], 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000090f0400000000000200000085ed000005000000850000007d00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) r6 = socket$netlink(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RATE_NEW(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r7, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[], 0x0, 0x8000003}, 0x94) r8 = socket$inet_tcp(0x2, 0x1, 0x0) r9 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5) writev(r9, &(0x7f00000004c0)=[{&(0x7f0000000040)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436dd2a", 0x2a}], 0x1) ioctl$SG_GET_NUM_WAITING(r9, 0x227d, &(0x7f0000000540)) bind$inet(r8, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10) connect$inet(r8, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10) sendto$inet(r8, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0) recvfrom$inet(r8, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25) ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0) r10 = eventfd(0x0) ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r10) ioctl$VHOST_SET_VRING_CALL(r1, 0x4008af21, &(0x7f0000000780)={0x1, r10}) close_range(r0, 0xffffffffffffffff, 0x0) 15.066321065s ago: executing program 4 (id=13679): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg(r1, 0x0, 0x8800) r2 = socket$tipc(0x1e, 0x2, 0x0) bind$tipc(r2, &(0x7f0000000200)=@name={0x1e, 0x2, 0x0, {{0x2, 0x1}, 0x200000}}, 0x10) sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000001000000fe8000000000000000000000000000bbac1414bb000000000000000000000000000004001000000002000020000000", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100020000000000000000000000004000"], 0xb8}}, 0x0) mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0) execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0) symlink(0x0, &(0x7f0000000080)='./file0\x00') rename(&(0x7f0000000580)='./file0\x00', &(0x7f0000000780)='./file2\x00') symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00') ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x110e22fff6) r4 = openat$ppp(0xffffffffffffff9c, 0x0, 0x1980, 0x0) close(r4) 13.121364879s ago: executing program 7 (id=13683): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, 0x0) io_setup(0x1, &(0x7f0000000b80)=0x0) io_submit(r1, 0x0, &(0x7f0000001d00)) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r2 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) getrlimit(0xc, &(0x7f0000000300)) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x7, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000003000000000000000f00000018110000", @ANYRES32=0x1, @ANYBLOB="0000000000f012b0efe42ae44348ac79da1a66f1c3000000b702000000000000850000008600000094fffffff3000000"], &(0x7f00000001c0)='syzkaller\x00', 0x7, 0x40, &(0x7f0000000400)=""/64, 0x40f00, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000480), &(0x7f00000004c0)=[{0x1, 0x5, 0xb, 0x5}, {0x3, 0x3, 0x2b, 0x1}, {0x2, 0x1, 0x9, 0xa}], 0x10, 0xffffffff}, 0x94) r7 = syz_genetlink_get_family_id$wireguard(&(0x7f00000003c0), 0xffffffffffffffff) sendmsg$WG_CMD_SET_DEVICE(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000007c0)={0x3f0, r7, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PEERS={0x3a4, 0x8, 0x0, 0x1, [{0x2c, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0x4}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}]}, {0x4c, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "491bc0be1dc1f88092e741a88b64f6dd9218ad21b44b472e44f1d0807ee6675c"}]}, {0x328, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @c_g}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x10}, @WGPEER_A_ALLOWEDIPS={0x2f8, 0x9, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x3}}]}, {0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x5}}]}, {0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5}}]}, {0x70, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x3}}]}, {0x4}, {0x88, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private0}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x1}}]}, {0x94, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010100}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @private1}, {0x5, 0x3, 0x3}}]}, {0x94, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x2c}}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010101}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5, 0x3, 0x2}}]}, {0x70, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00'}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x1}}]}]}]}]}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @b}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0x3f0}, 0x1, 0x0, 0x0, 0x4004840}, 0x40000) 12.48068262s ago: executing program 3 (id=13684): r0 = socket$nl_generic(0x10, 0x3, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x2, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x800, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x53564d41, 0x0, 0x0, 0x0, 0x0) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000002380)={0xffffffffffffffff, 0x0, 0x2d, 0x0, @val=@netfilter={0x2, 0x4, 0x600, 0x1}}, 0x20) r4 = socket$kcm(0x2, 0x5, 0x0) sendmsg$inet(r4, &(0x7f00000004c0)={&(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x35}}, 0x10, &(0x7f0000000000)=[{&(0x7f0000000140)="9f", 0x1}], 0x1}, 0x4cbe8) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000005c0), &(0x7f0000000600)=0xc) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x1e, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0xb}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="30000000100001000000ce6bb9092919507f3400", @ANYRES32=0x0, @ANYRES32=r0, @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0) recvmmsg(r5, &(0x7f0000000480)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=""/11, 0x17}}], 0x400000000000179, 0x0, 0x0) getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@dev={0xfe, 0x80, '\x00', 0x39}, 0x0, 0x1, 0x0, 0x4}, 0x0) r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3) ioctl$FS_IOC_GETFSLABEL(r7, 0x400452c8, &(0x7f0000000100)) 12.292777122s ago: executing program 4 (id=13685): r0 = syz_clone(0x26020000, 0x0, 0x0, 0x0, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]}) rt_sigqueueinfo(r0, 0x9, &(0x7f00000007c0)={0x0, 0x0, 0xffffffc0}) openat$zero(0xffffff9c, &(0x7f0000000040), 0x22001, 0x0) socket$inet_sctp(0x2, 0x1, 0x84) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000010000000900010073797a300000000040000000030a01020000000000000000010000000900010073797a30000000000900030073797a3000000000140004800800024000000000080001"], 0xf0}}, 0x0) r2 = socket$inet6(0xa, 0x2, 0x3a) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x1}, 0x1c) sendto$inet6(r2, &(0x7f0000000100)="800037e9220ca1ce", 0x8, 0x0, &(0x7f0000000140)={0xa, 0x4e24, 0x6, @mcast2, 0xf}, 0x1c) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000080)={{0x1, 0x1, 0x6a, r1, {0x8000}}, './file0\x00'}) sendmsg$L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="f4ba2930", @ANYRES16=0x0, @ANYBLOB="6ba425bd7000fbdbdf250100000005000400040000000800110000000000050021000100000008001800ac1414bb060003000700000005"], 0x44}}, 0x40004) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRESDEC=r1, @ANYBLOB="0000000000008000280012800a00010076786c616e000000180002"], 0x50}}, 0x0) syz_io_uring_setup(0x34b7, 0x0, &(0x7f00000001c0), &(0x7f0000000500)) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) connect$bt_l2cap(r4, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0xb}, 0xe) sendmmsg$sock(r4, &(0x7f0000004100)=[{{0x0, 0x0, 0x0}}], 0xffffff80, 0x0) shutdown(r4, 0x1) socket$inet6(0xa, 0x2, 0x0) 11.685755381s ago: executing program 0 (id=13686): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_CONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x30, r2, 0x5, 0xfffffffe, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x30}}, 0x0) syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000300)=@mgmt_frame=@probe_response={{{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x1, [{0x2, 0x1}]}, @void, @void, @void, @void, @void, @void}, 0x2f) nanosleep(&(0x7f0000000340)={0x0, 0x2faf080}, 0x0) syz_80211_inject_frame(&(0x7f00000003c0)=@device_b, &(0x7f0000000400)=@mgmt_frame=@auth={{{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x1}}, 0x0, 0x2, 0x0, @void}, 0x1e) syz_80211_inject_frame(&(0x7f00000004c0)=@device_b, &(0x7f0000000380)=@mgmt_frame=@assoc_resp={{{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x2}}, 0x1, 0x0, @default, @val, @void}, 0x20) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000240)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_TDLS_MGMT(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000003c0)={0x44, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x42}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_TDLS_ACTION={0x5}, @NL80211_ATTR_IE={0x4}, @NL80211_ATTR_TDLS_DIALOG_TOKEN={0x5}]}, 0x44}}, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000240)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_TDLS_MGMT(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000003c0)={0x44, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_STATUS_CODE={0x6}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_TDLS_ACTION={0x5}, @NL80211_ATTR_IE={0x4}, @NL80211_ATTR_TDLS_DIALOG_TOKEN={0x5}]}, 0x44}}, 0x0) 8.998226613s ago: executing program 4 (id=13687): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121) r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = dup(r2) r5 = socket$l2tp6(0xa, 0x2, 0x73) getsockopt$inet_mreqn(r4, 0x0, 0x24, 0x0, 0x0) write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c) bind$inet6(0xffffffffffffffff, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c) syz_emit_ethernet(0xbe, &(0x7f00000001c0)=ANY=[@ANYRES16=0x0, @ANYRES16, @ANYRESHEX=r2, @ANYRES64=r5, @ANYRESDEC=r3], 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000090f0400000000000200000085ed000005000000850000007d00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) r6 = socket$netlink(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RATE_NEW(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r7, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[], 0x0, 0x8000003}, 0x94) r8 = socket$inet_tcp(0x2, 0x1, 0x0) r9 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5) writev(r9, &(0x7f00000004c0)=[{&(0x7f0000000040)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436dd2a", 0x2a}], 0x1) ioctl$SG_GET_NUM_WAITING(r9, 0x227d, &(0x7f0000000540)) bind$inet(r8, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10) connect$inet(r8, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10) sendto$inet(r8, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0) recvfrom$inet(r8, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25) ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0) r10 = eventfd(0x0) ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r10) ioctl$VHOST_SET_VRING_CALL(r1, 0x4008af21, &(0x7f0000000780)={0x1, r10}) close_range(r0, 0xffffffffffffffff, 0x0) 8.318408017s ago: executing program 0 (id=13688): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newqdisc={0x5c, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x9, 0x1}, {0x4}, {0xe, 0x8}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0x401}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x10001}]}, 0x5c}, 0x1, 0x0, 0x0, 0x90}, 0x4000c00) close(0x3) syz_io_uring_setup(0x5ef9, &(0x7f0000000280)={0x0, 0x3b4f, 0x1, 0x3, 0x14}, &(0x7f0000000240), &(0x7f0000000600)) 8.091327962s ago: executing program 7 (id=13689): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121) r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB]) r4 = dup(r2) r5 = socket$l2tp6(0xa, 0x2, 0x73) getsockopt$inet_mreqn(r4, 0x0, 0x24, 0x0, 0x0) write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c) bind$inet6(0xffffffffffffffff, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c) syz_emit_ethernet(0xbe, &(0x7f00000001c0)=ANY=[@ANYRES16=0x0, @ANYRES16, @ANYRESHEX=r2, @ANYRES64=r5, @ANYRESDEC=r3], 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000090f0400000000000200000085ed000005000000850000007d00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) r6 = socket$netlink(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RATE_NEW(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r7, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0) r8 = socket$inet_tcp(0x2, 0x1, 0x0) r9 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5) writev(r9, &(0x7f00000004c0)=[{&(0x7f0000000040)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436dd2a", 0x2a}], 0x1) ioctl$SG_GET_NUM_WAITING(r9, 0x227d, &(0x7f0000000540)) bind$inet(r8, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10) connect$inet(r8, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10) sendto$inet(r8, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0) recvfrom$inet(r8, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25) ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0) r10 = eventfd(0x0) ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r10) ioctl$VHOST_SET_VRING_CALL(r1, 0x4008af21, &(0x7f0000000780)={0x1, r10}) close_range(r0, 0xffffffffffffffff, 0x0) 7.307082601s ago: executing program 0 (id=13690): r0 = syz_clone(0x26020000, 0x0, 0x0, 0x0, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]}) rt_sigqueueinfo(r0, 0x9, &(0x7f00000007c0)={0x0, 0x0, 0xffffffc0}) openat$zero(0xffffff9c, &(0x7f0000000040), 0x22001, 0x0) socket$inet_sctp(0x2, 0x1, 0x84) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000010000000900010073797a300000000040000000030a01020000000000000000010000000900010073797a30000000000900030073797a3000000000140004800800024000000000080001"], 0xf0}}, 0x0) r2 = socket$inet6(0xa, 0x2, 0x3a) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x1}, 0x1c) sendto$inet6(r2, &(0x7f0000000100)="800037e9220ca1ce", 0x8, 0x0, &(0x7f0000000140)={0xa, 0x4e24, 0x6, @mcast2, 0xf}, 0x1c) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000080)={{0x1, 0x1, 0x6a, r1, {0x8000}}, './file0\x00'}) sendmsg$L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="f4ba2930", @ANYRES16=0x0, @ANYBLOB="6ba425bd7000fbdbdf250100000005000400040000000800110000000000050021000100000008001800ac1414bb060003000700000005"], 0x44}}, 0x40004) socket$nl_route(0x10, 0x3, 0x0) syz_io_uring_setup(0x34b7, 0x0, &(0x7f00000001c0), &(0x7f0000000500)) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) connect$bt_l2cap(r4, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0xb}, 0xe) sendmmsg$sock(r4, &(0x7f0000004100)=[{{0x0, 0x0, 0x0}}], 0xffffff80, 0x0) shutdown(r4, 0x1) socket$inet6(0xa, 0x2, 0x0) 6.921789337s ago: executing program 3 (id=13691): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121) r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB]) r4 = dup(r2) r5 = socket$l2tp6(0xa, 0x2, 0x73) getsockopt$inet_mreqn(r4, 0x0, 0x24, 0x0, 0x0) write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c) bind$inet6(0xffffffffffffffff, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c) syz_emit_ethernet(0xbe, &(0x7f00000001c0)=ANY=[@ANYRES16=0x0, @ANYRES16, @ANYRESHEX=r2, @ANYRES64=r5, @ANYRESDEC=r3], 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000090f0400000000000200000085ed000005000000850000007d00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) socket$netlink(0x10, 0x3, 0x10) syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[], 0x0, 0x8000003}, 0x94) r6 = socket$inet_tcp(0x2, 0x1, 0x0) r7 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5) writev(r7, &(0x7f00000004c0)=[{&(0x7f0000000040)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436dd2a", 0x2a}], 0x1) ioctl$SG_GET_NUM_WAITING(r7, 0x227d, &(0x7f0000000540)) bind$inet(r6, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10) connect$inet(r6, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10) sendto$inet(r6, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0) recvfrom$inet(r6, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25) ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0) r8 = eventfd(0x0) ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r8) ioctl$VHOST_SET_VRING_CALL(r1, 0x4008af21, &(0x7f0000000780)={0x1, r8}) close_range(r0, 0xffffffffffffffff, 0x0) 6.251614949s ago: executing program 0 (id=13692): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00'}) r1 = socket$key(0xf, 0x3, 0x2) r2 = openat$uinput(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$FAT_IOCTL_GET_ATTRIBUTES(r2, 0x405c5504, 0x0) sendmsg$key(r1, 0x0, 0x0) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x3) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r5 = dup(r4) write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c) r6 = syz_io_uring_setup(0xef4, &(0x7f0000000300)={0x0, 0x946, 0x10100, 0x0, 0x0, 0x0, r5}, &(0x7f0000000140)=0x0, &(0x7f00000001c0)=0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r4, 0x0, 0x0, 0x0, {}, 0x1}) io_uring_enter(r6, 0x2ded, 0x4000, 0x0, 0x0, 0x0) ppoll(&(0x7f0000000500)=[{}], 0x44, 0x0, 0x0, 0x0) setsockopt$inet_tcp_TCP_FASTOPEN_KEY(0xffffffffffffffff, 0x6, 0x21, &(0x7f0000000040)="5766b1b827f600333b09d3748ee7d700", 0x10) ioctl$HCIINQUIRY(r3, 0x400448ca, 0x0) 5.535592675s ago: executing program 4 (id=13693): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg(r1, 0x0, 0x8800) r2 = socket$tipc(0x1e, 0x2, 0x0) bind$tipc(r2, &(0x7f0000000200)=@name={0x1e, 0x2, 0x0, {{0x2, 0x1}, 0x200000}}, 0x10) sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000001000000fe8000000000000000000000000000bbac1414bb00000000000000000000000000000400100000000200002000000000", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100020000000000000000000000004000"], 0xb8}}, 0x0) mknodat(0xffffffffffffff9c, 0x0, 0x81c0, 0x0) execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0) symlink(0x0, &(0x7f0000000080)='./file0\x00') rename(&(0x7f0000000580)='./file0\x00', &(0x7f0000000780)='./file2\x00') symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00') ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x110e22fff6) r4 = openat$ppp(0xffffffffffffff9c, 0x0, 0x1980, 0x0) close(r4) 5.45959974s ago: executing program 3 (id=13694): r0 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0) shmat(0x0, &(0x7f0000479000/0x1000)=nil, 0x9000) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7) r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102) writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) mkdir(&(0x7f0000000140)='./control\x00', 0x5) r2 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0) r3 = fsmount(r2, 0x0, 0x6) mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='nfsd\x00', 0x0, 0x0) symlinkat(&(0x7f0000000400)='./file0/../file0\x00', r3, &(0x7f0000000080)='./file0\x00') r4 = inotify_init1(0x800) ioctl$EVIOCGUNIQ(r0, 0x80404508, &(0x7f00000001c0)=""/169) fcntl$setown(0xffffffffffffffff, 0x8, 0x0) fcntl$setsig(r4, 0xa, 0xe) rt_sigprocmask(0x2, 0x0, 0x0, 0x0) rt_sigtimedwait(&(0x7f0000000040)={[0xffffffffffff7ff8]}, 0x0, 0x0, 0x8) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r5, 0x400454ca, 0x0) socket$nl_route(0x10, 0x3, 0x0) sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f0000001300)=ANY=[@ANYBLOB="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"], 0x7a0}, 0x1, 0x0, 0x0, 0x40040}, 0x800) socket$nl_generic(0x10, 0x3, 0x10) 3.261843001s ago: executing program 0 (id=13695): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, 0x0) io_setup(0x1, &(0x7f0000000b80)=0x0) io_submit(r1, 0x0, &(0x7f0000001d00)) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r2 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) getrlimit(0xc, &(0x7f0000000300)) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x7, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000003000000000000000f00000018110000", @ANYRES32=0x1, @ANYBLOB="0000000000f012b0efe42ae44348ac79da1a66f1c3000000b702000000000000850000008600000094fffffff3000000"], &(0x7f00000001c0)='syzkaller\x00', 0x7, 0x40, &(0x7f0000000400)=""/64, 0x40f00, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000480), &(0x7f00000004c0)=[{0x1, 0x5, 0xb, 0x5}, {0x3, 0x3, 0x2b, 0x1}, {0x2, 0x1, 0x9, 0xa}], 0x10, 0xffffffff}, 0x94) r7 = syz_genetlink_get_family_id$wireguard(&(0x7f00000003c0), 0xffffffffffffffff) sendmsg$WG_CMD_SET_DEVICE(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000007c0)={0x3f0, r7, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PEERS={0x3a4, 0x8, 0x0, 0x1, [{0x2c, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0x4}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}]}, {0x4c, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "491bc0be1dc1f88092e741a88b64f6dd9218ad21b44b472e44f1d0807ee6675c"}]}, {0x328, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @c_g}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x10}, @WGPEER_A_ALLOWEDIPS={0x2f8, 0x9, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x3}}]}, {0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x5}}]}, {0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5}}]}, {0x70, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x3}}]}, {0x4}, {0x88, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private0}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x1}}]}, {0x94, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010100}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @private1}, {0x5, 0x3, 0x3}}]}, {0x94, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x2c}}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010101}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5, 0x3, 0x2}}]}, {0x70, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00'}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x1}}]}]}]}]}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @b}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0x3f0}, 0x1, 0x0, 0x0, 0x4004840}, 0x40000) 3.025143656s ago: executing program 3 (id=13696): r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000100)={0x4, 0x4, 0x800006}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0x1ff, 0xb}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000000)={0x7fff, 0x8, 0x100}) r3 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f00000001c0)={0x7, 0x10001, 0xf3}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000340)={0xda2, 0x8166, 0x6}) r4 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r4, 0xc02064b2, &(0x7f0000000340)={0x8, 0x8169, 0x6}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000040)={0x49, 0x7fff, 0x4}) close_range(r0, 0xffffffffffffffff, 0x0) 1.805241105s ago: executing program 7 (id=13697): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB]) r3 = dup(r2) r4 = socket$l2tp6(0xa, 0x2, 0x73) getsockopt$inet_mreqn(r3, 0x0, 0x24, 0x0, 0x0) write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c) bind$inet6(0xffffffffffffffff, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c) syz_emit_ethernet(0xbe, &(0x7f00000001c0)=ANY=[@ANYRES16=0x0, @ANYRES16, @ANYRESHEX=r2, @ANYRES64=r4, @ANYRESDEC], 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000090f0400000000000200000085ed000005000000850000007d00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) r5 = socket$netlink(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RATE_NEW(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r6, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[], 0x0, 0x8000003}, 0x94) r7 = socket$inet_tcp(0x2, 0x1, 0x0) r8 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5) writev(r8, &(0x7f00000004c0)=[{&(0x7f0000000040)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436dd2a", 0x2a}], 0x1) ioctl$SG_GET_NUM_WAITING(r8, 0x227d, &(0x7f0000000540)) bind$inet(r7, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10) connect$inet(r7, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10) sendto$inet(r7, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0) recvfrom$inet(r7, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25) ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0) r9 = eventfd(0x0) ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r9) ioctl$VHOST_SET_VRING_CALL(r1, 0x4008af21, &(0x7f0000000780)={0x1, r9}) close_range(r0, 0xffffffffffffffff, 0x0) 1.788276706s ago: executing program 4 (id=13698): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x80102, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = eventfd2(0xe5c, 0x80000) r3 = eventfd2(0x3ffd, 0x0) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000100)={r2, 0x7, 0x2, r3}) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000140)={r3, 0x0, 0x2}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000600)={0x0, 0x0, @pic={0x2a, 0xc0, 0x5, 0x7, 0x7f, 0x0, 0xf, 0x9, 0x3, 0x41, 0x3, 0x58, 0x90, 0x5, 0xb, 0x7f}}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000000)={[0xcb, 0xe, 0x6, 0x4, 0x2, 0xfff, 0x4, 0x0, 0x7fffffffffffb, 0x8d, 0xfffffffffffffffe, 0x3, 0x0, 0x5, 0xfffffffffffffffc, 0xbdc], 0x10000, 0x67a64fa265d49713}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 1.72247928s ago: executing program 3 (id=13699): r0 = socket$inet_udp(0x2, 0x2, 0x0) syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYRES64=r0], 0x8) add_key$fscrypt_v1(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe) fsopen(&(0x7f0000000280)='udf\x00', 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f00000083c0)={{0x3}}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='mm_migrate_pages\x00', r4, 0x0, 0xdf5}, 0x42) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x7, 0x6) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) 1.40189995s ago: executing program 4 (id=13700): r0 = socket$nl_generic(0x10, 0x3, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x2, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x800, 0x0, 0x0, {{0x1}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000005c0), &(0x7f0000000600)=0xc) socket$packet(0x11, 0x2, 0x300) ioctl$F2FS_IOC_ABORT_ATOMIC_WRITE(0xffffffffffffffff, 0xf505, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2}) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2}) ioctl$TUNDETACHFILTER(r4, 0x401054d6, 0x0) r5 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r5, 0x40345410, &(0x7f0000000080)={{0x0, 0x1, 0x2, 0x0, 0x40000}}) ioctl$SNDRV_TIMER_IOCTL_INFO(r5, 0x40585414, &(0x7f00000000c0)) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="30000000100001000000ce6bb9092919507f3400", @ANYRES32=0x0, @ANYRES32=r0, @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0) 702.057905ms ago: executing program 3 (id=13701): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg(r1, 0x0, 0x8800) r2 = socket$tipc(0x1e, 0x2, 0x0) bind$tipc(r2, &(0x7f0000000200)=@name={0x1e, 0x2, 0x0, {{0x2, 0x1}, 0x200000}}, 0x10) sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000001000000fe8000000000000000000000000000bbac1414bb00000000000000000000000000000400100000000200002000000000", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100020000000000000000000000004000"], 0xb8}}, 0x0) mknodat(0xffffffffffffff9c, 0x0, 0x81c0, 0x0) execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0) symlink(0x0, &(0x7f0000000080)='./file0\x00') rename(&(0x7f0000000580)='./file0\x00', &(0x7f0000000780)='./file2\x00') symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00') ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x110e22fff6) r4 = openat$ppp(0xffffffffffffff9c, 0x0, 0x1980, 0x0) close(r4) 0s ago: executing program 0 (id=13702): r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000100)={0x4, 0x4, 0x800006}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0x1ff, 0xb}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000000)={0x7fff, 0x8, 0x100}) r3 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f00000001c0)={0x7, 0x10001, 0xf3}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000340)={0xda2, 0x8166, 0x6}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000200)={0x200, 0x1fb, 0xc38}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f0000000340)={0x8, 0x8169, 0x6}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f0000000140)={0x6, 0x1000, 0x800}) close_range(r0, 0xffffffffffffffff, 0x0) kernel console output (not intermixed with test programs): s (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1506.920469][ T2637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1506.933476][ T2637] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1506.962019][ T2637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1506.978966][ T2637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1506.992736][ T2637] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1507.009073][ T2637] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1507.038716][ T2637] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1507.065462][ T2637] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1507.074235][ T2637] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1507.273285][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1507.300017][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1507.339198][ T7909] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1507.348436][ T7909] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1507.505667][T21850] Bluetooth: hci2: command tx timeout [ 1507.558225][ T2751] team0: No ports can be present during mode change [ 1509.123829][ T2777] team0: No ports can be present during mode change [ 1509.652954][ T2812] team0: No ports can be present during mode change [ 1509.661804][T21850] Bluetooth: hci2: command tx timeout [ 1511.048938][ T28] kauditd_printk_skb: 43 callbacks suppressed [ 1511.048967][ T28] audit: type=1326 audit(1761681125.971:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2831 comm="syz.9.10227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1511.193115][ T28] audit: type=1326 audit(1761681125.971:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2831 comm="syz.9.10227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1511.315387][ T28] audit: type=1326 audit(1761681125.971:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2831 comm="syz.9.10227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1511.422763][ T28] audit: type=1326 audit(1761681125.971:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2831 comm="syz.9.10227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1511.508751][ T28] audit: type=1326 audit(1761681125.971:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2831 comm="syz.9.10227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1511.531605][ T28] audit: type=1326 audit(1761681126.011:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2831 comm="syz.9.10227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1511.655838][ T28] audit: type=1326 audit(1761681126.011:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2831 comm="syz.9.10227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1511.769299][ T28] audit: type=1326 audit(1761681126.011:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2831 comm="syz.9.10227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1511.803513][T21850] Bluetooth: hci2: command tx timeout [ 1511.890393][ T28] audit: type=1326 audit(1761681126.011:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2831 comm="syz.9.10227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1511.924751][ T2854] sctp: [Deprecated]: syz.9.10233 (pid 2854) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1511.924751][ T2854] Use struct sctp_sack_info instead [ 1511.990577][ T28] audit: type=1326 audit(1761681126.011:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2831 comm="syz.9.10227" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1512.810834][ T2877] sctp: [Deprecated]: syz.8.10243 (pid 2877) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1512.810834][ T2877] Use struct sctp_sack_info instead [ 1514.590824][ T2894] team0: Unable to change to the same mode the team is in [ 1519.975458][ T28] kauditd_printk_skb: 18 callbacks suppressed [ 1519.975476][ T28] audit: type=1326 audit(1761681134.851:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2963 comm="syz.8.10275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1520.130290][ T28] audit: type=1326 audit(1761681134.861:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2963 comm="syz.8.10275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1520.290424][ T28] audit: type=1326 audit(1761681134.851:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2963 comm="syz.8.10275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1520.595397][ T28] audit: type=1326 audit(1761681134.871:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2963 comm="syz.8.10275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1521.515426][ T28] audit: type=1326 audit(1761681134.871:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2963 comm="syz.8.10275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1521.623710][ T28] audit: type=1326 audit(1761681134.871:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2963 comm="syz.8.10275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1521.727873][ T28] audit: type=1326 audit(1761681134.871:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2963 comm="syz.8.10275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1521.777907][ T28] audit: type=1326 audit(1761681134.871:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2963 comm="syz.8.10275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1521.808131][ T28] audit: type=1326 audit(1761681134.871:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2963 comm="syz.8.10275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1521.831922][ T28] audit: type=1326 audit(1761681134.871:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2963 comm="syz.8.10275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1523.695723][ T3018] netlink: 16 bytes leftover after parsing attributes in process `syz.8.10297'. [ 1524.350220][ T3028] sctp: [Deprecated]: syz.7.10300 (pid 3028) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1524.350220][ T3028] Use struct sctp_sack_info instead [ 1524.650758][ T3041] netlink: 16 bytes leftover after parsing attributes in process `syz.8.10306'. [ 1528.305400][T21850] Bluetooth: hci3: command 0x0406 tx timeout [ 1530.395570][ T3137] netlink: 'syz.7.10347': attribute type 1 has an invalid length. [ 1530.957169][ T28] kauditd_printk_skb: 19 callbacks suppressed [ 1530.957184][ T28] audit: type=1326 audit(1761681145.891:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3144 comm="syz.7.10350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76ea98efc9 code=0x7ffc0000 [ 1531.065387][ T28] audit: type=1326 audit(1761681145.921:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3144 comm="syz.7.10350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76ea98efc9 code=0x7ffc0000 [ 1531.125508][ T28] audit: type=1326 audit(1761681145.921:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3144 comm="syz.7.10350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76ea98efc9 code=0x7ffc0000 [ 1531.184639][ T28] audit: type=1326 audit(1761681145.921:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3144 comm="syz.7.10350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76ea98efc9 code=0x7ffc0000 [ 1531.246248][ T28] audit: type=1326 audit(1761681145.931:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3144 comm="syz.7.10350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=254 compat=0 ip=0x7f76ea98efc9 code=0x7ffc0000 [ 1531.295408][ T28] audit: type=1326 audit(1761681145.931:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3144 comm="syz.7.10350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76ea98efc9 code=0x7ffc0000 [ 1531.375204][ T28] audit: type=1326 audit(1761681145.931:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3144 comm="syz.7.10350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76ea98efc9 code=0x7ffc0000 [ 1531.418517][ T28] audit: type=1326 audit(1761681145.931:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3144 comm="syz.7.10350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f76ea98efc9 code=0x7ffc0000 [ 1531.495327][ T28] audit: type=1326 audit(1761681145.931:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3144 comm="syz.7.10350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f76ea98efc9 code=0x7ffc0000 [ 1531.840617][ T3163] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1531.871498][ T3163] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1532.162953][ T3175] netlink: 16 bytes leftover after parsing attributes in process `syz.0.10362'. [ 1532.655932][ T28] audit: type=1326 audit(1761681147.591:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3189 comm="syz.7.10370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76ea98efc9 code=0x7ffc0000 [ 1535.084080][ T3272] sctp: [Deprecated]: syz.0.10405 (pid 3272) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1535.084080][ T3272] Use struct sctp_sack_info instead [ 1536.224534][ T3303] sctp: [Deprecated]: syz.9.10415 (pid 3303) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1536.224534][ T3303] Use struct sctp_sack_info instead [ 1537.140575][ T3323] sctp: [Deprecated]: syz.0.10425 (pid 3323) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1537.140575][ T3323] Use struct sctp_sack_info instead [ 1537.831419][ T28] kauditd_printk_skb: 8 callbacks suppressed [ 1537.831436][ T28] audit: type=1326 audit(1761681152.761:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3337 comm="syz.0.10434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3dd6f8efc9 code=0x7ffc0000 [ 1537.904522][ T28] audit: type=1326 audit(1761681152.761:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3337 comm="syz.0.10434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3dd6f8efc9 code=0x7ffc0000 [ 1537.961827][ T28] audit: type=1326 audit(1761681152.761:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3337 comm="syz.0.10434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3dd6f8efc9 code=0x7ffc0000 [ 1538.005366][ T28] audit: type=1326 audit(1761681152.761:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3337 comm="syz.0.10434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3dd6f8efc9 code=0x7ffc0000 [ 1538.055029][ T28] audit: type=1326 audit(1761681152.761:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3337 comm="syz.0.10434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3dd6f8efc9 code=0x7ffc0000 [ 1538.085057][ T3350] sctp: [Deprecated]: syz.7.10437 (pid 3350) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1538.085057][ T3350] Use struct sctp_sack_info instead [ 1538.096249][ T28] audit: type=1326 audit(1761681152.761:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3337 comm="syz.0.10434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f3dd6f8efc9 code=0x7ffc0000 [ 1538.137473][ T28] audit: type=1326 audit(1761681152.761:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3337 comm="syz.0.10434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3dd6f8efc9 code=0x7ffc0000 [ 1538.170077][ T28] audit: type=1326 audit(1761681152.761:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3337 comm="syz.0.10434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3dd6f8efc9 code=0x7ffc0000 [ 1538.212642][ T28] audit: type=1326 audit(1761681152.761:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3337 comm="syz.0.10434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3dd6f8efc9 code=0x7ffc0000 [ 1538.245340][ T28] audit: type=1326 audit(1761681152.761:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3337 comm="syz.0.10434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f3dd6f8efc9 code=0x7ffc0000 [ 1538.675220][ T3379] sctp: [Deprecated]: syz.8.10447 (pid 3379) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1538.675220][ T3379] Use struct sctp_sack_info instead [ 1539.292292][ T3403] sctp: [Deprecated]: syz.0.10456 (pid 3403) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1539.292292][ T3403] Use struct sctp_sack_info instead [ 1539.995143][ T3430] sctp: [Deprecated]: syz.7.10468 (pid 3430) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1539.995143][ T3430] Use struct sctp_sack_info instead [ 1540.598453][ T3454] sctp: [Deprecated]: syz.0.10478 (pid 3454) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1540.598453][ T3454] Use struct sctp_sack_info instead [ 1541.023015][ T3477] sctp: [Deprecated]: syz.0.10488 (pid 3477) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1541.023015][ T3477] Use struct sctp_sack_info instead [ 1541.469795][ T3499] sctp: [Deprecated]: syz.9.10498 (pid 3499) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1541.469795][ T3499] Use struct sctp_sack_info instead [ 1542.221328][ T3519] sctp: [Deprecated]: syz.0.10507 (pid 3519) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1542.221328][ T3519] Use struct sctp_sack_info instead [ 1542.821174][ T3545] sctp: [Deprecated]: syz.9.10518 (pid 3545) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1542.821174][ T3545] Use struct sctp_sack_info instead [ 1543.440277][ T3571] sctp: [Deprecated]: syz.8.10528 (pid 3571) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1543.440277][ T3571] Use struct sctp_sack_info instead [ 1544.158245][ T28] kauditd_printk_skb: 9 callbacks suppressed [ 1544.158261][ T28] audit: type=1326 audit(1761681159.091:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3586 comm="syz.7.10535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76ea98efc9 code=0x7ffc0000 [ 1544.221873][ T28] audit: type=1326 audit(1761681159.091:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3586 comm="syz.7.10535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76ea98efc9 code=0x7ffc0000 [ 1544.256656][ T28] audit: type=1326 audit(1761681159.091:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3586 comm="syz.7.10535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76ea98efc9 code=0x7ffc0000 [ 1544.279544][ T3591] sctp: [Deprecated]: syz.7.10537 (pid 3591) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1544.279544][ T3591] Use struct sctp_sack_info instead [ 1544.286194][ T28] audit: type=1326 audit(1761681159.091:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3586 comm="syz.7.10535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76ea98efc9 code=0x7ffc0000 [ 1544.324026][ T28] audit: type=1326 audit(1761681159.091:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3586 comm="syz.7.10535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=76 compat=0 ip=0x7f76ea98efc9 code=0x7ffc0000 [ 1544.378288][ T28] audit: type=1326 audit(1761681159.091:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3586 comm="syz.7.10535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76ea98efc9 code=0x7ffc0000 [ 1544.424182][ T28] audit: type=1326 audit(1761681159.091:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3586 comm="syz.7.10535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76ea98efc9 code=0x7ffc0000 [ 1544.453299][ T28] audit: type=1326 audit(1761681159.091:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3586 comm="syz.7.10535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f76ea98efc9 code=0x7ffc0000 [ 1544.501547][ T28] audit: type=1326 audit(1761681159.091:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3586 comm="syz.7.10535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f76ea98efc9 code=0x7ffc0000 [ 1544.536346][ T28] audit: type=1326 audit(1761681159.411:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3592 comm="syz.7.10538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76ea98efc9 code=0x7ffc0000 [ 1544.818823][ T3612] sctp: [Deprecated]: syz.8.10546 (pid 3612) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1544.818823][ T3612] Use struct sctp_sack_info instead [ 1545.219569][ T3631] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 1545.284359][ T3633] sctp: [Deprecated]: syz.8.10556 (pid 3633) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1545.284359][ T3633] Use struct sctp_sack_info instead [ 1545.718480][ T3655] sctp: [Deprecated]: syz.0.10566 (pid 3655) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1545.718480][ T3655] Use struct sctp_sack_info instead [ 1546.190945][ T3673] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 1546.361129][ T3682] sctp: [Deprecated]: syz.8.10576 (pid 3682) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1546.361129][ T3682] Use struct sctp_sack_info instead [ 1546.713328][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 1546.985999][ T3701] sctp: [Deprecated]: syz.7.10585 (pid 3701) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1546.985999][ T3701] Use struct sctp_sack_info instead [ 1547.712050][ T3725] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 1548.785774][T21850] Bluetooth: hci0: command 0x0406 tx timeout [ 1549.489243][ T3782] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 1549.710888][ T28] kauditd_printk_skb: 138 callbacks suppressed [ 1549.710906][ T28] audit: type=1326 audit(1761681164.631:526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3788 comm="syz.8.10622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1549.781495][ T28] audit: type=1326 audit(1761681164.631:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3788 comm="syz.8.10622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1549.842487][ T28] audit: type=1326 audit(1761681164.641:527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3788 comm="syz.8.10622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1549.885389][ T28] audit: type=1326 audit(1761681164.641:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3788 comm="syz.8.10622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1549.931617][ T28] audit: type=1326 audit(1761681164.641:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3788 comm="syz.8.10622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1549.964882][ T28] audit: type=1326 audit(1761681164.641:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3788 comm="syz.8.10622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1549.998780][ T28] audit: type=1326 audit(1761681164.641:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3788 comm="syz.8.10622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1550.022492][ T28] audit: type=1326 audit(1761681164.641:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3788 comm="syz.8.10622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1550.049919][ T28] audit: type=1326 audit(1761681164.641:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3788 comm="syz.8.10622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1550.092650][ T28] audit: type=1326 audit(1761681164.641:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3788 comm="syz.8.10622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1550.653655][ T3833] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 1552.126149][ T3900] dummy0: entered allmulticast mode [ 1552.132760][ T3900] futex_wake_op: syz.0.10672 tries to shift op by -1; fix this program [ 1552.143705][ T3898] dummy0: left allmulticast mode [ 1552.898229][ T3937] netlink: 16 bytes leftover after parsing attributes in process `syz.9.10688'. [ 1552.955813][ T49] hsr_slave_0: left promiscuous mode [ 1552.967039][ T49] hsr_slave_1: left promiscuous mode [ 1552.978192][ T49] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1552.987486][ T49] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1552.999433][ T49] bridge_slave_1: left allmulticast mode [ 1553.011846][ T49] bridge_slave_1: left promiscuous mode [ 1553.021404][ T49] bridge0: port 2(bridge_slave_1) entered disabled state [ 1553.034461][ T49] bridge0: port 1(bridge_slave_0) entered disabled state [ 1553.075049][ T49] bond17 (unregistering): Released all slaves [ 1553.460955][ T49] bond16 (unregistering): Released all slaves [ 1553.511917][ T49] bond15 (unregistering): Released all slaves [ 1553.546776][ T3960] netlink: 16 bytes leftover after parsing attributes in process `syz.7.10699'. [ 1553.552344][ T49] bond14 (unregistering): Released all slaves [ 1553.590639][ T49] bond13 (unregistering): Released all slaves [ 1553.637639][ T49] bond12 (unregistering): Released all slaves [ 1553.683599][ T49] bond11 (unregistering): Released all slaves [ 1553.727356][ T49] bond10 (unregistering): Released all slaves [ 1553.787384][ T49] bond9 (unregistering): Released all slaves [ 1553.841912][ T49] bond8 (unregistering): Released all slaves [ 1553.872574][ T49] bond7 (unregistering): Released all slaves [ 1553.892412][ T49] bond6 (unregistering): Released all slaves [ 1553.914568][ T49] bond5 (unregistering): Released all slaves [ 1553.939628][ T49] bond4 (unregistering): Released all slaves [ 1553.968157][ T49] bond3 (unregistering): Released all slaves [ 1554.012466][ T49] bond2 (unregistering): Released all slaves [ 1554.045197][ T49] bond1 (unregistering): Released all slaves [ 1554.875177][ T49] team0 (unregistering): Port device team_slave_0 removed [ 1554.910111][ T3987] netlink: 16 bytes leftover after parsing attributes in process `syz.8.10712'. [ 1554.985170][ T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1555.088996][ T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1555.621588][ T4009] netlink: 16 bytes leftover after parsing attributes in process `syz.9.10722'. [ 1555.918321][ T4013] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1555.961298][ T49] bond0 (unregistering): Released all slaves [ 1556.496284][ T4032] netlink: 16 bytes leftover after parsing attributes in process `syz.7.10731'. [ 1557.739013][ T4061] netlink: 16 bytes leftover after parsing attributes in process `syz.7.10743'. [ 1558.294563][ T4085] netlink: 16 bytes leftover after parsing attributes in process `syz.9.10754'. [ 1558.873744][ T4106] netlink: 16 bytes leftover after parsing attributes in process `syz.9.10763'. [ 1559.532961][ T4135] netlink: 16 bytes leftover after parsing attributes in process `syz.9.10777'. [ 1559.845967][T21850] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 1559.864454][T21850] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 1559.873708][T21850] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 1559.888374][T21850] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 1559.899884][T21850] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 1559.908185][T21850] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 1560.472852][ T4139] chnl_net:caif_netlink_parms(): no params data found [ 1560.894991][ T4139] bridge0: port 1(bridge_slave_0) entered blocking state [ 1560.934068][ T4139] bridge0: port 1(bridge_slave_0) entered disabled state [ 1560.970416][ T4139] bridge_slave_0: entered allmulticast mode [ 1561.009106][ T4139] bridge_slave_0: entered promiscuous mode [ 1561.050535][ T4139] bridge0: port 2(bridge_slave_1) entered blocking state [ 1561.090263][ T4139] bridge0: port 2(bridge_slave_1) entered disabled state [ 1561.114001][ T4139] bridge_slave_1: entered allmulticast mode [ 1561.137230][ T4139] bridge_slave_1: entered promiscuous mode [ 1561.224393][ T4139] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1561.269467][ T4139] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1561.467427][ T4139] team0: Port device team_slave_0 added [ 1561.495988][ T4139] team0: Port device team_slave_1 added [ 1561.576182][ T4139] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1561.583183][ T4139] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1561.622640][ T4139] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1561.638039][ T4139] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1561.646440][ T4139] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1561.683840][ T4139] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1561.769197][ T4139] hsr_slave_0: entered promiscuous mode [ 1561.781843][ T4139] hsr_slave_1: entered promiscuous mode [ 1561.986155][T21850] Bluetooth: hci4: command tx timeout [ 1563.011074][ T4206] netlink: 20 bytes leftover after parsing attributes in process `syz.8.10801'. [ 1563.127661][ T4139] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 1563.143167][ T4139] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 1563.168762][ T4139] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 1563.190884][ T4139] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 1563.409227][ T4139] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1563.447906][ T4139] 8021q: adding VLAN 0 to HW filter on device team0 [ 1563.484378][T32201] bridge0: port 1(bridge_slave_0) entered blocking state [ 1563.491598][T32201] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1563.558962][T32201] bridge0: port 2(bridge_slave_1) entered blocking state [ 1563.566202][T32201] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1563.791923][ T4139] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1563.822874][ T4238] netlink: 20 bytes leftover after parsing attributes in process `syz.9.10811'. [ 1564.115522][T21850] Bluetooth: hci4: command tx timeout [ 1564.295066][ T4139] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1564.390665][ T28] kauditd_printk_skb: 31 callbacks suppressed [ 1564.390682][ T28] audit: type=1326 audit(1761681179.321:566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4254 comm="syz.9.10816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1564.462121][ T28] audit: type=1326 audit(1761681179.351:567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4254 comm="syz.9.10816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1564.545813][ T28] audit: type=1326 audit(1761681179.351:568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4254 comm="syz.9.10816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1564.584854][ T28] audit: type=1326 audit(1761681179.351:569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4254 comm="syz.9.10816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1564.618653][ T28] audit: type=1326 audit(1761681179.351:570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4254 comm="syz.9.10816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0c7cd8d810 code=0x7ffc0000 [ 1564.668968][ T28] audit: type=1326 audit(1761681179.351:571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4254 comm="syz.9.10816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0c7cd8d810 code=0x7ffc0000 [ 1564.720110][ T28] audit: type=1326 audit(1761681179.351:572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4254 comm="syz.9.10816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1564.762063][ T28] audit: type=1326 audit(1761681179.351:573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4254 comm="syz.9.10816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1564.842000][ T28] audit: type=1326 audit(1761681179.351:574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4254 comm="syz.9.10816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1564.891231][ T28] audit: type=1326 audit(1761681179.351:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4254 comm="syz.9.10816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1564.964434][ T4274] netlink: 20 bytes leftover after parsing attributes in process `syz.8.10821'. [ 1565.053118][ T4139] veth0_vlan: entered promiscuous mode [ 1565.072448][ T4139] veth1_vlan: entered promiscuous mode [ 1565.134258][ T4139] veth0_macvtap: entered promiscuous mode [ 1565.159880][ T4139] veth1_macvtap: entered promiscuous mode [ 1565.180967][ T4139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1565.199613][ T4139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1565.210880][ T4139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1565.222318][ T4139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1565.236696][ T4139] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1565.264154][ T4139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1565.288765][ T4139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1565.299386][ T4139] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1565.322558][ T4139] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1565.348589][ T4139] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1565.374843][ T4139] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1565.391720][ T4139] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1565.402471][ T4139] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1565.411449][ T4139] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1565.567319][T22721] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1565.587681][T22721] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1565.662006][ T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1565.683729][ T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1565.845990][ T4293] netlink: 20 bytes leftover after parsing attributes in process `syz.9.10830'. [ 1566.148965][T21850] Bluetooth: hci4: command tx timeout [ 1566.430428][ T4322] netlink: 20 bytes leftover after parsing attributes in process `syz.9.10841'. [ 1567.167484][ T4349] netlink: 20 bytes leftover after parsing attributes in process `syz.9.10853'. [ 1567.968426][ T4374] netlink: 20 bytes leftover after parsing attributes in process `syz.9.10864'. [ 1568.225580][T21850] Bluetooth: hci4: command tx timeout [ 1570.604331][ T4477] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 1571.869572][ T4523] netlink: 4 bytes leftover after parsing attributes in process `syz.9.10920'. [ 1571.949628][ T28] kauditd_printk_skb: 42 callbacks suppressed [ 1571.949644][ T28] audit: type=1326 audit(1761681186.881:618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4524 comm="syz.9.10923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1571.995318][ T28] audit: type=1326 audit(1761681186.891:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4524 comm="syz.9.10923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1572.057281][ T28] audit: type=1326 audit(1761681186.911:620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4524 comm="syz.9.10923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1572.109909][ T28] audit: type=1326 audit(1761681187.041:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4524 comm="syz.9.10923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1572.194612][ T28] audit: type=1326 audit(1761681187.041:622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4524 comm="syz.9.10923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1572.320641][ T28] audit: type=1326 audit(1761681187.061:623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4524 comm="syz.9.10923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1572.424152][ T28] audit: type=1326 audit(1761681187.061:624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4524 comm="syz.9.10923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1572.493000][ T28] audit: type=1326 audit(1761681187.061:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4524 comm="syz.9.10923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1572.556532][ T28] audit: type=1326 audit(1761681187.061:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4524 comm="syz.9.10923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1572.625740][ T28] audit: type=1326 audit(1761681187.061:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4524 comm="syz.9.10923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1578.805306][ T28] kauditd_printk_skb: 13 callbacks suppressed [ 1578.805323][ T28] audit: type=1326 audit(1761681193.731:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4645 comm="syz.8.10969" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7e9b38efc9 code=0x0 [ 1579.478384][ T4665] overlayfs: failed to clone upperpath [ 1580.845827][ T28] audit: type=1326 audit(1761681195.781:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4688 comm="syz.9.10986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1580.877249][ T28] audit: type=1326 audit(1761681195.801:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4688 comm="syz.9.10986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1580.916983][ T28] audit: type=1326 audit(1761681195.831:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4688 comm="syz.9.10986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1581.002791][ T28] audit: type=1326 audit(1761681195.831:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4688 comm="syz.9.10986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1581.073803][ T28] audit: type=1326 audit(1761681195.831:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4688 comm="syz.9.10986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1581.122062][ T28] audit: type=1326 audit(1761681195.871:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4688 comm="syz.9.10986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1581.353571][ T28] audit: type=1326 audit(1761681195.871:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4688 comm="syz.9.10986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1581.376666][ T28] audit: type=1326 audit(1761681195.871:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4688 comm="syz.9.10986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1581.399204][ T28] audit: type=1326 audit(1761681195.871:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4688 comm="syz.9.10986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f0c7cd8efc9 code=0x7ffc0000 [ 1587.290891][ T4822] loop9: detected capacity change from 0 to 256 [ 1587.317124][ T28] kauditd_printk_skb: 9 callbacks suppressed [ 1587.317138][ T28] audit: type=1326 audit(1761681202.246:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4825 comm="syz.7.11042" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa61718efc9 code=0x0 [ 1587.371103][ T4822] kvm: requested 134933 ns i8254 timer period limited to 200000 ns [ 1587.384853][ T4822] kvm: requested 40228 ns i8254 timer period limited to 200000 ns [ 1587.425084][ T4822] kvm: requested 134933 ns i8254 timer period limited to 200000 ns [ 1587.554200][ T4832] overlayfs: failed to clone lowerpath [ 1587.576866][ T4832] overlayfs: failed to clone lowerpath [ 1588.110894][ T4853] netlink: 8 bytes leftover after parsing attributes in process `syz.0.11054'. [ 1588.459644][ T4859] loop7: detected capacity change from 0 to 128 [ 1588.850328][ T4871] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 1588.875371][ T4871] overlayfs: failed to set xattr on upper [ 1588.899301][ T4871] overlayfs: ...falling back to redirect_dir=nofollow. [ 1588.912028][ T4871] overlayfs: ...falling back to index=off. [ 1588.921813][ T4871] overlayfs: ...falling back to uuid=null. [ 1590.476491][ T4927] overlayfs: failed to clone upperpath [ 1590.729485][ T4936] netlink: 12 bytes leftover after parsing attributes in process `syz.8.11089'. [ 1591.692075][ T4972] loop9: detected capacity change from 0 to 256 [ 1592.425361][ T28] audit: type=1326 audit(1761681207.346:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4993 comm="syz.9.11114" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0c7cd8efc9 code=0x0 [ 1592.598793][ T4999] team0: Port device team_slave_0 removed [ 1593.242959][ T5025] overlayfs: failed to clone upperpath [ 1593.894838][ T5041] overlayfs: failed to clone upperpath [ 1595.036742][ T5067] kvm: vcpu 0: requested 53248 ns lapic timer period limited to 200000 ns [ 1595.080728][ T5067] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1420284373 (45449099936 ns) > initial count (200000 ns). Using initial count to start timer. [ 1595.145642][ T5077] netlink: 4 bytes leftover after parsing attributes in process `syz.7.11145'. [ 1595.489847][ T5084] loop9: detected capacity change from 0 to 2048 [ 1595.579575][ T5084] loop9: p1 p3 p4 [ 1595.614461][ T5084] loop9: p4 size 589824 extends beyond EOD, truncated [ 1597.424513][ T28] audit: type=1326 audit(1761681212.346:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5125 comm="syz.0.11163" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3dd6f8efc9 code=0x0 [ 1598.935607][ T5169] loop9: detected capacity change from 0 to 16 [ 1598.966820][ T5168] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 1598.977107][ T5169] erofs: (device loop9): mounted with root inode @ nid 36. [ 1599.033222][ T5169] erofs: (device loop9): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1599.092423][ T5169] erofs: (device loop9): z_erofs_readahead: readahead error at folio 2 @ nid 89 [ 1599.140827][ T5169] erofs: (device loop9): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1599.227446][ T5169] erofs: (device loop9): z_erofs_readahead: readahead error at folio 1 @ nid 89 [ 1599.305341][ T5169] erofs: (device loop9): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1599.343530][ T5169] erofs: (device loop9): z_erofs_readahead: readahead error at folio 0 @ nid 89 [ 1599.390018][ T5169] erofs: (device loop9): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1599.422936][ T5169] erofs: (device loop9): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1599.453732][ T5169] erofs: (device loop9): z_erofs_read_folio: read error -117 @ 0 of nid 89 [ 1599.476851][ T28] audit: type=1800 audit(1761681214.406:663): pid=5169 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.9.11174" name="file2" dev="loop9" ino=89 res=0 errno=0 [ 1599.892990][ T5179] kvm: vcpu 0: requested 53248 ns lapic timer period limited to 200000 ns [ 1599.915425][ T5179] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1420284373 (45449099936 ns) > initial count (200000 ns). Using initial count to start timer. [ 1599.948205][ T28] audit: type=1326 audit(1761681214.866:664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5181 comm="syz.8.11184" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f7e9b38efc9 code=0x0 [ 1602.366856][ T28] audit: type=1326 audit(1761681217.296:665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5207 comm="syz.8.11194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1602.420871][ T28] audit: type=1326 audit(1761681217.326:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5207 comm="syz.8.11194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1602.477808][ T28] audit: type=1326 audit(1761681217.326:667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5207 comm="syz.8.11194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1602.518605][ T5212] netlink: 24 bytes leftover after parsing attributes in process `syz.8.11196'. [ 1602.527957][ T28] audit: type=1326 audit(1761681217.326:668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5207 comm="syz.8.11194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1602.591038][ T28] audit: type=1326 audit(1761681217.326:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5207 comm="syz.8.11194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1602.649799][ T28] audit: type=1326 audit(1761681217.326:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5207 comm="syz.8.11194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1602.678078][ T28] audit: type=1326 audit(1761681217.326:671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5207 comm="syz.8.11194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1602.726236][ T28] audit: type=1326 audit(1761681217.326:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5207 comm="syz.8.11194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f7e9b38efc9 code=0x7ffc0000 [ 1602.993766][ T5227] netlink: 20 bytes leftover after parsing attributes in process `syz.0.11202'. [ 1603.015759][ T5227] netlink: 36 bytes leftover after parsing attributes in process `syz.0.11202'. [ 1603.028513][ T5227] netlink: 20 bytes leftover after parsing attributes in process `syz.0.11202'. [ 1603.050391][ T5227] netlink: 36 bytes leftover after parsing attributes in process `syz.0.11202'. [ 1607.205886][ T5291] netlink: 4 bytes leftover after parsing attributes in process `syz.7.11226'. [ 1607.508254][ T5297] loop7: detected capacity change from 0 to 8192 [ 1607.585751][ T5297] loop7: p1 < > [ 1608.154557][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 1611.763882][ T5364] netlink: 24 bytes leftover after parsing attributes in process `syz.0.11254'. [ 1613.236249][ T5395] netlink: 24 bytes leftover after parsing attributes in process `syz.0.11265'. [ 1613.726763][ T5406] overlayfs: failed to clone upperpath [ 1613.890904][ T5414] overlayfs: failed to resolve './file0': -2 [ 1614.061842][ T5419] netlink: 24 bytes leftover after parsing attributes in process `syz.8.11274'. [ 1614.310683][ T5429] overlayfs: failed to clone upperpath [ 1614.356685][ T5435] overlayfs: failed to resolve './file0': -2 [ 1615.021213][ T5457] loop7: detected capacity change from 0 to 164 [ 1615.074427][ T5459] overlayfs: failed to resolve './file0': -2 [ 1615.528850][ T28] kauditd_printk_skb: 3 callbacks suppressed [ 1615.528867][ T28] audit: type=1326 audit(1761681230.456:676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5468 comm="syz.7.11298" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa61718efc9 code=0x0 [ 1615.857480][ T5481] overlayfs: failed to clone upperpath [ 1615.895315][ T28] audit: type=1326 audit(1761681230.816:677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5482 comm="syz.0.11303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3dd6f8efc9 code=0x7ffc0000 [ 1615.965156][ T28] audit: type=1326 audit(1761681230.816:678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5482 comm="syz.0.11303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3dd6f8efc9 code=0x7ffc0000 [ 1616.021738][ T28] audit: type=1326 audit(1761681230.826:679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5482 comm="syz.0.11303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f3dd6f8efc9 code=0x7ffc0000 [ 1616.065296][ T28] audit: type=1326 audit(1761681230.826:680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5482 comm="syz.0.11303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3dd6f8efc9 code=0x7ffc0000 [ 1616.119434][ T28] audit: type=1326 audit(1761681230.826:681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5482 comm="syz.0.11303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f3dd6f8efc9 code=0x7ffc0000 [ 1616.157210][ T28] audit: type=1326 audit(1761681230.826:682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5482 comm="syz.0.11303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3dd6f8efc9 code=0x7ffc0000 [ 1616.220523][ T28] audit: type=1326 audit(1761681230.826:683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5482 comm="syz.0.11303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f3dd6f8efc9 code=0x7ffc0000 [ 1616.250332][ T28] audit: type=1326 audit(1761681230.826:684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5482 comm="syz.0.11303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3dd6f8efc9 code=0x7ffc0000 [ 1616.321330][ T28] audit: type=1326 audit(1761681230.826:685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5482 comm="syz.0.11303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f3dd6f8efc9 code=0x7ffc0000 [ 1617.456180][ T5514] loop7: detected capacity change from 0 to 7 [ 1617.487054][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 1617.496319][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 1617.507453][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 1617.516666][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 1617.526844][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 1617.536066][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 1617.548632][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 1617.557866][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 1617.573868][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 1617.583083][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 1617.591250][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 1617.600528][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 1617.608775][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 1617.617986][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 1617.628727][ T5514] ldm_validate_partition_table(): Disk read failed. [ 1617.649562][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 1617.658795][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 1617.676845][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 1617.686073][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 1617.694228][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 1617.703448][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 1617.716041][ T5514] Dev loop7: unable to read RDB block 0 [ 1617.739383][ T5514] loop7: unable to read partition table [ 1617.775482][ T5514] loop7: partition table beyond EOD, truncated [ 1617.781798][ T5514] loop_reread_partitions: partition scan of loop7 (úùƒå¡™‰ü¾CêjÌ–ã¢P=ý?ã}X‹ºÐ œëÜ%õ«`ÉæÖ€ù…ˆ{í©Ö˜Èµ4FLQkÝŠ) failed (rc=-5) [ 1620.178925][ T5584] syz.9.11342[5584] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1620.179069][ T5584] syz.9.11342[5584] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1620.283712][ T5586] netlink: 24 bytes leftover after parsing attributes in process `syz.7.11343'. [ 1620.693608][ T28] kauditd_printk_skb: 79 callbacks suppressed [ 1620.693626][ T28] audit: type=1326 audit(1761681235.616:765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5591 comm="syz.7.11346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61718efc9 code=0x7ffc0000 [ 1620.779826][ T28] audit: type=1326 audit(1761681235.616:766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5591 comm="syz.7.11346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61718efc9 code=0x7ffc0000 [ 1620.850059][ T28] audit: type=1326 audit(1761681235.666:767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5591 comm="syz.7.11346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fa61718efc9 code=0x7ffc0000 [ 1620.938710][ T28] audit: type=1326 audit(1761681235.666:768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5591 comm="syz.7.11346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61718efc9 code=0x7ffc0000 [ 1620.967259][ T28] audit: type=1326 audit(1761681235.666:769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5591 comm="syz.7.11346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61718efc9 code=0x7ffc0000 [ 1621.011970][ T28] audit: type=1326 audit(1761681235.666:770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5591 comm="syz.7.11346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=333 compat=0 ip=0x7fa61718efc9 code=0x7ffc0000 [ 1621.062131][ T28] audit: type=1326 audit(1761681235.666:771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5591 comm="syz.7.11346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61718efc9 code=0x7ffc0000 [ 1621.112220][ T28] audit: type=1326 audit(1761681235.666:772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5591 comm="syz.7.11346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61718efc9 code=0x7ffc0000 [ 1621.217498][ T28] audit: type=1326 audit(1761681235.666:773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5591 comm="syz.7.11346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa61718efc9 code=0x7ffc0000 [ 1621.271210][ T28] audit: type=1326 audit(1761681235.676:774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5591 comm="syz.7.11346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61718efc9 code=0x7ffc0000 [ 1621.985799][ T5610] netlink: 24 bytes leftover after parsing attributes in process `syz.7.11352'. [ 1623.455952][ T5635] netlink: 24 bytes leftover after parsing attributes in process `syz.0.11362'. [ 1624.900408][ T5662] netlink: 24 bytes leftover after parsing attributes in process `syz.9.11372'. [ 1625.585610][T21850] Bluetooth: hci2: command 0x0406 tx timeout [ 1625.688763][ T5683] netlink: 24 bytes leftover after parsing attributes in process `syz.8.11382'. [ 1626.352488][ T5690] loop7: detected capacity change from 0 to 8192 [ 1626.429717][ T5690] loop7: p1 < > [ 1626.560308][ T5700] netlink: 24 bytes leftover after parsing attributes in process `syz.8.11391'. [ 1627.902054][ T5735] netlink: 44 bytes leftover after parsing attributes in process `syz.8.11405'. [ 1631.103461][ T5813] overlayfs: failed to clone upperpath [ 1632.401502][ T5862] netlink: 96 bytes leftover after parsing attributes in process `syz.7.11455'. [ 1633.824471][ T5904] binfmt_misc: register: failed to install interpreter file ./bus [ 1635.391438][ T28] kauditd_printk_skb: 19 callbacks suppressed [ 1635.391456][ T28] audit: type=1107 audit(1761681250.316:794): pid=5947 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 1635.403389][ T5948] overlayfs: failed to resolve '/aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 1635.581902][ T5950] IPv6: addrconf: prefix option has invalid lifetime [ 1635.893619][ T5953] netlink: 96 bytes leftover after parsing attributes in process `syz.9.11498'. [ 1636.516776][ T5968] syz.7.11505 (5968): attempted to duplicate a private mapping with mremap. This is not supported. [ 1637.308687][ T6003] overlayfs: failed to clone upperpath [ 1637.318936][ T6003] overlayfs: failed to clone upperpath [ 1637.656831][ T6017] netlink: 44 bytes leftover after parsing attributes in process `syz.8.11525'. [ 1638.374324][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 1638.691707][T21850] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 1638.703181][T21850] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 1638.724596][T21850] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 1638.741778][ T6039] overlayfs: failed to clone upperpath [ 1638.748646][T21850] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 1638.756654][T21850] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 1638.764204][T21850] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 1638.977008][ T6042] netlink: 44 bytes leftover after parsing attributes in process `syz.9.11535'. [ 1639.385335][ T6036] chnl_net:caif_netlink_parms(): no params data found [ 1639.648818][T23234] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1640.191338][ T6062] overlayfs: failed to clone upperpath [ 1640.339794][ T6056] bridge0: port 2(bridge_slave_1) entered disabled state [ 1640.347557][ T6056] bridge0: port 1(bridge_slave_0) entered disabled state [ 1640.736324][ T6056] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1640.752826][ T6056] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1640.865597][T21850] Bluetooth: hci1: command tx timeout [ 1640.928439][ T6056] netdevsim netdevsim9 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1640.939255][ T6056] netdevsim netdevsim9 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1640.948604][ T6056] netdevsim netdevsim9 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1640.958961][ T6056] netdevsim netdevsim9 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1641.088247][T23234] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1641.165559][ T6036] bridge0: port 1(bridge_slave_0) entered blocking state [ 1641.172727][ T6036] bridge0: port 1(bridge_slave_0) entered disabled state [ 1641.209436][ T6036] bridge_slave_0: entered allmulticast mode [ 1641.237052][ T6036] bridge_slave_0: entered promiscuous mode [ 1641.270015][ T6036] bridge0: port 2(bridge_slave_1) entered blocking state [ 1641.308192][ T6036] bridge0: port 2(bridge_slave_1) entered disabled state [ 1641.324696][ T6036] bridge_slave_1: entered allmulticast mode [ 1641.333397][ T6036] bridge_slave_1: entered promiscuous mode [ 1641.395157][T23234] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1641.471668][ T6077] netlink: 'syz.0.11546': attribute type 4 has an invalid length. [ 1641.554109][ T6079] netlink: 'syz.0.11546': attribute type 4 has an invalid length. [ 1641.632137][T23234] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1641.677321][ T6036] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1641.701485][ T6036] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1641.809972][ T6036] team0: Port device team_slave_0 added [ 1641.846152][ T6036] team0: Port device team_slave_1 added [ 1641.919948][ T6036] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1641.929997][ T6036] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1641.966159][ T6036] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1641.994155][ T6036] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1642.002440][ T6036] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1642.044607][ T6036] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1642.262246][ T6036] hsr_slave_0: entered promiscuous mode [ 1642.270274][ T6036] hsr_slave_1: entered promiscuous mode [ 1642.278204][ T6090] overlayfs: failed to clone upperpath [ 1642.283831][ T6036] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1642.292187][ T6036] Cannot create hsr debugfs directory [ 1642.945340][T21850] Bluetooth: hci1: command tx timeout [ 1643.437262][ T6107] overlayfs: failed to clone upperpath [ 1643.764548][ T28] audit: type=1800 audit(1761681258.686:795): pid=6070 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.11552" name="file1" dev="overlay" ino=994 res=0 errno=0 [ 1643.920784][T23234] hsr_slave_0: left promiscuous mode [ 1643.934773][T23234] hsr_slave_1: left promiscuous mode [ 1643.945078][T23234] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1643.961084][T23234] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1643.982288][T23234] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1643.984909][ T6120] overlayfs: failed to clone upperpath [ 1644.014684][T23234] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1644.026515][T23234] bridge_slave_1: left allmulticast mode [ 1644.032271][T23234] bridge_slave_1: left promiscuous mode [ 1644.045497][T23234] bridge0: port 2(bridge_slave_1) entered disabled state [ 1644.077598][T23234] bridge_slave_0: left allmulticast mode [ 1644.083295][T23234] bridge_slave_0: left promiscuous mode [ 1644.105484][T23234] bridge0: port 1(bridge_slave_0) entered disabled state [ 1644.197658][T23234] veth1_macvtap: left promiscuous mode [ 1644.203262][T23234] veth0_macvtap: left promiscuous mode [ 1644.227446][T23234] veth1_vlan: left promiscuous mode [ 1644.234260][T23234] veth0_vlan: left promiscuous mode [ 1644.505441][T23234] bond3 (unregistering): Released all slaves [ 1644.828878][T23234] bond2 (unregistering): Released all slaves [ 1645.035522][T21850] Bluetooth: hci1: command tx timeout [ 1645.156141][T23234] bond1 (unregistering): Released all slaves [ 1645.958166][T23234] team0 (unregistering): Port device team_slave_1 removed [ 1646.033951][T23234] team0 (unregistering): Port device team_slave_0 removed [ 1646.145632][T23234] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1646.226785][ T6134] overlayfs: failed to clone upperpath [ 1646.280029][T23234] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1646.331756][ T6136] trusted_key: encrypted_key: key user:syz not found [ 1647.083703][ T6148] loop7: detected capacity change from 0 to 256 [ 1647.107116][ T6148] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1647.124632][T21850] Bluetooth: hci1: command tx timeout [ 1647.509915][T23234] bond0 (unregistering): Released all slaves [ 1647.633327][ T6036] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 1647.654548][ T6036] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 1647.705542][ T6036] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 1647.727631][ T6036] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 1647.994845][ T6036] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1648.019868][ T6036] 8021q: adding VLAN 0 to HW filter on device team0 [ 1648.033725][T32201] bridge0: port 1(bridge_slave_0) entered blocking state [ 1648.040978][T32201] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1648.099712][ T42] bridge0: port 2(bridge_slave_1) entered blocking state [ 1648.106927][ T42] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1648.622038][ T6036] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1648.753567][ T6191] netlink: 44 bytes leftover after parsing attributes in process `syz.7.11590'. [ 1648.969114][ T28] audit: type=1326 audit(1761681263.896:796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.0.11593" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3dd6f8efc9 code=0x0 [ 1649.111719][ T6036] veth0_vlan: entered promiscuous mode [ 1649.128535][ T6036] veth1_vlan: entered promiscuous mode [ 1649.158997][ T6036] veth0_macvtap: entered promiscuous mode [ 1649.169294][ T6036] veth1_macvtap: entered promiscuous mode [ 1649.187805][ T6036] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1649.207082][ T6036] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1649.219870][ T6036] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1649.243894][ T6036] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1649.260151][ T6036] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1649.277972][ T6036] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1649.299690][ T6036] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1649.311784][ T6036] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1649.324675][ T6036] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1649.336947][ T6036] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1649.444897][T32201] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1649.462395][T32201] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1649.494469][ T7909] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1649.504034][ T7909] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1649.997670][ T6221] netlink: 44 bytes leftover after parsing attributes in process `syz.7.11599'. [ 1650.781831][ T28] audit: type=1326 audit(1761681265.706:797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6239 comm="syz.8.11606" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9639f8efc9 code=0x0 [ 1650.948667][ T6250] netlink: 44 bytes leftover after parsing attributes in process `syz.0.11610'. [ 1651.983608][ T6272] netlink: 44 bytes leftover after parsing attributes in process `syz.9.11620'. [ 1652.631430][ T6302] netlink: 44 bytes leftover after parsing attributes in process `syz.0.11631'. [ 1652.647590][ T6302] netlink: 44 bytes leftover after parsing attributes in process `syz.0.11631'. [ 1652.907247][ T6307] 9pnet_fd: Insufficient options for proto=fd [ 1654.363945][ T6330] netlink: 20 bytes leftover after parsing attributes in process `syz.8.11643'. [ 1654.403121][ T6330] netlink: 24 bytes leftover after parsing attributes in process `syz.8.11643'. [ 1654.424238][ T6330] netlink: 20 bytes leftover after parsing attributes in process `syz.8.11643'. [ 1654.443698][ T6330] netlink: 24 bytes leftover after parsing attributes in process `syz.8.11643'. [ 1654.581566][ T6336] netlink: 44 bytes leftover after parsing attributes in process `syz.8.11645'. [ 1654.603664][ T6336] netlink: 44 bytes leftover after parsing attributes in process `syz.8.11645'. [ 1654.643347][ T6318] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 1654.808822][ T6338] kvm: apic: phys broadcast and lowest prio [ 1655.517233][ T6358] netlink: 8 bytes leftover after parsing attributes in process `syz.9.11654'. [ 1655.555283][ T6358] netlink: 12 bytes leftover after parsing attributes in process `syz.9.11654'. [ 1655.613040][ T6358] netlink: 44 bytes leftover after parsing attributes in process `syz.9.11654'. [ 1655.658310][ T6360] loop7: detected capacity change from 0 to 8192 [ 1658.163734][ T6389] netlink: 8 bytes leftover after parsing attributes in process `syz.8.11666'. [ 1666.626080][ T6511] kvm_intel: kvm [6508]: vcpu0, guest rIP: 0x0 Unhandled WRMSR(0x1d9) = 0x74bbcb8e18df163e [ 1666.686691][ T6516] overlayfs: failed to resolve './file0': -2 [ 1668.342711][ T6542] overlayfs: failed to resolve './file0': -2 [ 1668.589144][ T6551] 9pnet_fd: Insufficient options for proto=fd [ 1669.591955][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 1670.452156][ T6582] 9pnet_fd: Insufficient options for proto=fd [ 1670.952479][ T6589] loop7: detected capacity change from 0 to 128 [ 1673.925045][ T28] audit: type=1326 audit(1761681288.846:798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6644 comm="syz.0.11764" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3dd6f8efc9 code=0x0 [ 1675.146672][ T6668] __nla_validate_parse: 2 callbacks suppressed [ 1675.146688][ T6668] netlink: 20 bytes leftover after parsing attributes in process `syz.8.11773'. [ 1675.595629][ T28] audit: type=1326 audit(1761681290.526:799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6686 comm="syz.8.11781" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9639f8efc9 code=0x0 [ 1676.324706][ T6691] loop7: detected capacity change from 0 to 16 [ 1676.333497][ T6691] erofs: (device loop7): mounted with root inode @ nid 36. [ 1676.342828][ T6691] erofs: (device loop7): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1676.352516][ T6691] erofs: (device loop7): z_erofs_readahead: readahead error at folio 2 @ nid 89 [ 1676.361847][ T6691] erofs: (device loop7): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1676.371464][ T6691] erofs: (device loop7): z_erofs_readahead: readahead error at folio 1 @ nid 89 [ 1676.373975][ T6694] 9pnet_fd: Insufficient options for proto=fd [ 1676.380543][ T6691] erofs: (device loop7): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1676.380611][ T6691] erofs: (device loop7): z_erofs_readahead: readahead error at folio 0 @ nid 89 [ 1676.380658][ T6691] erofs: (device loop7): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1676.380682][ T6691] erofs: (device loop7): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1676.380699][ T6691] erofs: (device loop7): z_erofs_read_folio: read error -117 @ 0 of nid 89 [ 1676.380987][ T28] audit: type=1800 audit(1761681291.316:800): pid=6691 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.11782" name="file2" dev="loop7" ino=89 res=0 errno=0 [ 1677.323495][T15089] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 1677.336009][T15089] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 1677.345112][T15089] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 1677.354897][T15089] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 1677.364048][T15089] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 1677.371977][T15089] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 1677.445081][ T28] audit: type=1326 audit(1761681292.366:801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6713 comm="syz.9.11792" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0c7cd8efc9 code=0x0 [ 1677.590644][ T6699] bridge0: port 2(bridge_slave_1) entered disabled state [ 1677.598346][ T6699] bridge0: port 1(bridge_slave_0) entered disabled state [ 1677.800056][ T6699] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1677.822794][ T6699] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1677.973157][ T6699] netdevsim netdevsim7 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1677.984494][ T6699] netdevsim netdevsim7 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1677.998956][ T6699] netdevsim netdevsim7 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1678.009137][ T6699] netdevsim netdevsim7 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1678.437044][ T6724] 9pnet_fd: Insufficient options for proto=fd [ 1678.806772][ T6737] netlink: 40 bytes leftover after parsing attributes in process `syz.8.11800'. [ 1678.854690][ T28] audit: type=1326 audit(1761681293.776:802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6740 comm="syz.7.11801" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa61718efc9 code=0x0 [ 1679.038554][ T6710] chnl_net:caif_netlink_parms(): no params data found [ 1679.214752][ T6710] bridge0: port 1(bridge_slave_0) entered blocking state [ 1679.222596][ T6710] bridge0: port 1(bridge_slave_0) entered disabled state [ 1679.229873][ T6710] bridge_slave_0: entered allmulticast mode [ 1679.237408][ T6710] bridge_slave_0: entered promiscuous mode [ 1679.246488][ T6710] bridge0: port 2(bridge_slave_1) entered blocking state [ 1679.253727][ T6710] bridge0: port 2(bridge_slave_1) entered disabled state [ 1679.261084][ T6710] bridge_slave_1: entered allmulticast mode [ 1679.269077][ T6710] bridge_slave_1: entered promiscuous mode [ 1679.300408][ T6753] loop8: detected capacity change from 0 to 16 [ 1679.330017][ T6710] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1679.342940][ T6710] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1679.361899][ T6753] erofs: (device loop8): mounted with root inode @ nid 36. [ 1679.371932][ T6753] erofs: (device loop8): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1679.381655][ T6753] erofs: (device loop8): z_erofs_readahead: readahead error at folio 2 @ nid 89 [ 1679.390834][ T6753] erofs: (device loop8): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1679.401246][ T6753] erofs: (device loop8): z_erofs_readahead: readahead error at folio 1 @ nid 89 [ 1679.410422][ T6753] erofs: (device loop8): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1679.420102][ T6753] erofs: (device loop8): z_erofs_readahead: readahead error at folio 0 @ nid 89 [ 1679.429278][ T6753] erofs: (device loop8): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1679.438908][ T6753] erofs: (device loop8): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1679.457031][ T6753] erofs: (device loop8): z_erofs_read_folio: read error -117 @ 0 of nid 89 [ 1679.495578][ T28] audit: type=1800 audit(1761681294.396:803): pid=6753 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.11803" name="file2" dev="loop8" ino=89 res=0 errno=0 [ 1679.516029][T21850] Bluetooth: hci3: command tx timeout [ 1679.630311][ T6710] team0: Port device team_slave_0 added [ 1679.644469][ T6710] team0: Port device team_slave_1 added [ 1679.797307][ T6710] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1679.873512][ T6710] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1679.962840][ T6756] 9pnet_fd: Insufficient options for proto=fd [ 1679.983331][ T6710] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1680.037966][ T6710] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1680.044960][ T6710] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1680.188510][ T6710] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1680.319220][ T6762] tmpfs: Bad value for 'mpol' [ 1680.479006][ T6710] hsr_slave_0: entered promiscuous mode [ 1680.499720][ T6710] hsr_slave_1: entered promiscuous mode [ 1680.513725][ T6710] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1680.536676][ T6710] Cannot create hsr debugfs directory [ 1681.011175][ T28] audit: type=1326 audit(1761681295.936:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6771 comm="syz.8.11811" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9639f8efc9 code=0x0 [ 1681.013761][ T6770] netlink: 40 bytes leftover after parsing attributes in process `syz.9.11810'. [ 1681.128288][ T6710] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1681.229281][ T6710] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1681.379316][ T6710] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1681.585498][T21850] Bluetooth: hci3: command tx timeout [ 1681.671410][ T6710] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1682.147233][ T6794] netlink: 40 bytes leftover after parsing attributes in process `syz.8.11820'. [ 1682.309671][ T6710] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1682.366701][ T6710] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1682.415569][ T6710] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1682.446175][ T6710] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1682.862253][ T6710] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1682.970631][ T6710] 8021q: adding VLAN 0 to HW filter on device team0 [ 1683.087911][ T135] bridge0: port 1(bridge_slave_0) entered blocking state [ 1683.095220][ T135] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1683.159793][ T135] bridge0: port 2(bridge_slave_1) entered blocking state [ 1683.167016][ T135] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1683.310115][ T6710] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1683.338232][ T28] audit: type=1326 audit(1761681298.236:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6816 comm="syz.7.11827" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa61718efc9 code=0x0 [ 1683.550496][ T6829] fuse: Bad value for 'fd' [ 1683.610036][ T6710] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1683.660394][ T6710] veth0_vlan: entered promiscuous mode [ 1683.666294][T21850] Bluetooth: hci3: command tx timeout [ 1683.681797][ T6710] veth1_vlan: entered promiscuous mode [ 1683.762298][ T6710] veth0_macvtap: entered promiscuous mode [ 1683.783260][ T6710] veth1_macvtap: entered promiscuous mode [ 1683.817390][ T6835] overlayfs: failed to clone upperpath [ 1683.832964][ T6710] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1683.851256][ T6710] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1683.864525][ T6710] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1683.888872][ T6710] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1683.892386][ T6837] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1683.903602][ T6710] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1683.923820][ T6710] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1683.938484][ T6710] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1683.947742][ T6710] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1683.956704][ T6710] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1683.965985][ T6710] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1684.098556][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1684.116441][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1684.190840][T23860] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1684.236669][T23860] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1685.484855][ T28] audit: type=1326 audit(1761681300.406:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6867 comm="syz.7.11844" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa61718efc9 code=0x0 [ 1685.745673][T15089] Bluetooth: hci3: command tx timeout [ 1686.088502][ T6873] fuse: Bad value for 'fd' [ 1687.106662][T21850] Bluetooth: hci4: command 0x0406 tx timeout [ 1688.135259][ T28] audit: type=1326 audit(1761681303.056:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6915 comm="syz.7.11863" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa61718efc9 code=0x0 [ 1688.714499][ T6923] loop0: detected capacity change from 0 to 16 [ 1688.734531][ T6923] erofs: (device loop0): mounted with root inode @ nid 36. [ 1688.744910][ T6923] erofs: (device loop0): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1688.755543][ T6923] erofs: (device loop0): z_erofs_readahead: readahead error at folio 2 @ nid 89 [ 1688.764632][ T6923] erofs: (device loop0): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1688.774903][ T6923] erofs: (device loop0): z_erofs_readahead: readahead error at folio 1 @ nid 89 [ 1688.784042][ T6923] erofs: (device loop0): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1688.794032][ T6923] erofs: (device loop0): z_erofs_readahead: readahead error at folio 0 @ nid 89 [ 1688.805432][ T6923] erofs: (device loop0): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1688.815407][ T6923] erofs: (device loop0): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1688.826096][ T6923] erofs: (device loop0): z_erofs_read_folio: read error -117 @ 0 of nid 89 [ 1688.841137][ T28] audit: type=1800 audit(1761681303.756:808): pid=6923 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.11865" name="file2" dev="loop0" ino=89 res=0 errno=0 [ 1689.014349][ T28] audit: type=1326 audit(1761681303.936:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6932 comm="syz.8.11869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9639f8efc9 code=0x7ffc0000 [ 1689.082863][ T28] audit: type=1326 audit(1761681303.936:810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6932 comm="syz.8.11869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9639f8efc9 code=0x7ffc0000 [ 1689.141174][ T28] audit: type=1326 audit(1761681303.966:811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6932 comm="syz.8.11869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9639f8efc9 code=0x7ffc0000 [ 1689.172360][ T28] audit: type=1326 audit(1761681303.966:812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6932 comm="syz.8.11869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f9639f8efc9 code=0x7ffc0000 [ 1689.196190][ T28] audit: type=1326 audit(1761681303.966:813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6932 comm="syz.8.11869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f9639f8efc9 code=0x7ffc0000 [ 1689.871292][ T28] audit: type=1326 audit(1761681304.786:814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6953 comm="syz.8.11878" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9639f8efc9 code=0x0 [ 1691.459646][ T28] audit: type=1326 audit(1761681306.386:815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7004 comm="syz.7.11895" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa61718efc9 code=0x0 [ 1692.914505][ T28] audit: type=1326 audit(1761681307.836:816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7053 comm="syz.0.11916" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6d2738efc9 code=0x0 [ 1693.935082][ T7071] netlink: 56 bytes leftover after parsing attributes in process `syz.0.11923'. [ 1693.965290][ T7071] netlink: 12 bytes leftover after parsing attributes in process `syz.0.11923'. [ 1694.635266][ T28] audit: type=1326 audit(1761681309.526:817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7091 comm="syz.7.11931" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa61718efc9 code=0x0 [ 1694.742389][ T7095] netlink: 56 bytes leftover after parsing attributes in process `syz.9.11933'. [ 1694.876481][ T28] audit: type=1326 audit(1761681309.806:818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7098 comm="syz.8.11934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9639f8efc9 code=0x7ffc0000 [ 1694.952037][ T28] audit: type=1326 audit(1761681309.806:819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7098 comm="syz.8.11934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9639f8efc9 code=0x7ffc0000 [ 1694.989583][ T28] audit: type=1326 audit(1761681309.836:820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7098 comm="syz.8.11934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9639f8efc9 code=0x7ffc0000 [ 1695.049512][ T28] audit: type=1326 audit(1761681309.836:821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7098 comm="syz.8.11934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=192 compat=0 ip=0x7f9639f8efc9 code=0x7ffc0000 [ 1695.143108][ T28] audit: type=1326 audit(1761681309.836:822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7098 comm="syz.8.11934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9639f8efc9 code=0x7ffc0000 [ 1695.208721][ T28] audit: type=1326 audit(1761681309.836:823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7098 comm="syz.8.11934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9639f8efc9 code=0x7ffc0000 [ 1695.261465][ T28] audit: type=1326 audit(1761681309.836:825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7098 comm="syz.8.11934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9639f8efc9 code=0x7ffc0000 [ 1696.166981][ T7122] netlink: 56 bytes leftover after parsing attributes in process `syz.9.11943'. [ 1696.245962][ T7124] overlayfs: failed to clone upperpath [ 1697.006163][ T7148] netlink: 56 bytes leftover after parsing attributes in process `syz.8.11954'. [ 1699.354368][ T7174] overlayfs: failed to clone upperpath [ 1699.942855][ T28] kauditd_printk_skb: 2 callbacks suppressed [ 1699.942869][ T28] audit: type=1326 audit(1761681314.866:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7191 comm="syz.7.11974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61718efc9 code=0x7ffc0000 [ 1700.037237][ T28] audit: type=1326 audit(1761681314.866:828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7191 comm="syz.7.11974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61718efc9 code=0x7ffc0000 [ 1700.101733][ T28] audit: type=1326 audit(1761681314.866:829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7191 comm="syz.7.11974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61718efc9 code=0x7ffc0000 [ 1700.170428][ T28] audit: type=1326 audit(1761681314.866:830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7191 comm="syz.7.11974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61718efc9 code=0x7ffc0000 [ 1700.275365][ T28] audit: type=1326 audit(1761681314.876:831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7191 comm="syz.7.11974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7fa61718efc9 code=0x7ffc0000 [ 1700.338517][ T28] audit: type=1326 audit(1761681314.876:832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7191 comm="syz.7.11974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61718efc9 code=0x7ffc0000 [ 1700.361153][ T28] audit: type=1326 audit(1761681314.876:833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7191 comm="syz.7.11974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61718efc9 code=0x7ffc0000 [ 1700.383820][ T28] audit: type=1326 audit(1761681314.876:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7191 comm="syz.7.11974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61718efc9 code=0x7ffc0000 [ 1700.406937][ T28] audit: type=1326 audit(1761681314.876:835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7191 comm="syz.7.11974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61718efc9 code=0x7ffc0000 [ 1700.473640][ T28] audit: type=1326 audit(1761681314.876:836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7191 comm="syz.7.11974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7fa61718efc9 code=0x7ffc0000 [ 1707.087953][ T7326] overlayfs: failed to clone upperpath [ 1709.084948][ T7389] overlayfs: failed to clone upperpath [ 1709.557469][ T7413] overlayfs: failed to clone upperpath [ 1710.614552][ T6718] kernel write not supported for file bpf-prog (pid: 6718 comm: kworker/0:16) [ 1711.994542][ T7488] overlayfs: missing 'lowerdir' [ 1712.997255][ T7508] overlayfs: failed to clone upperpath [ 1713.968430][ T7531] overlayfs: failed to clone upperpath [ 1714.868610][ T7556] overlayfs: failed to clone upperpath [ 1715.087775][ T28] kauditd_printk_skb: 4 callbacks suppressed [ 1715.087790][ T28] audit: type=1326 audit(1761681330.016:841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7561 comm="syz.7.12137" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa61718efc9 code=0x0 [ 1715.536876][ T7576] overlayfs: failed to clone upperpath [ 1716.081518][ T7581] xt_hashlimit: max too large, truncated to 1048576 [ 1716.128473][ T7583] netlink: 20 bytes leftover after parsing attributes in process `syz.9.12146'. [ 1716.629795][ T7599] overlayfs: failed to clone upperpath [ 1716.695993][ T28] audit: type=1326 audit(1761681331.616:842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7600 comm="syz.9.12153" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0c7cd8efc9 code=0x0 [ 1717.349751][ T7628] overlayfs: failed to clone upperpath [ 1720.129493][ T7699] overlayfs: failed to resolve './file0/file0': -2 [ 1720.157867][ T7699] overlayfs: failed to clone lowerpath [ 1720.521046][ T7711] overlayfs: failed to clone upperpath [ 1723.482378][ T28] audit: type=1326 audit(1761681338.406:843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7795 comm="syz.9.12235" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0c7cd8efc9 code=0x0 [ 1724.653756][ T7824] fuse: Bad value for 'rootmode' [ 1725.101312][ T28] audit: type=1326 audit(1761681340.026:844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7839 comm="syz.7.12253" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa61718efc9 code=0x0 [ 1726.265705][ T7860] netlink: 28 bytes leftover after parsing attributes in process `syz.7.12260'. [ 1728.687478][ T28] audit: type=1326 audit(1761681343.606:845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7919 comm="syz.8.12285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9639f8efc9 code=0x7ffc0000 [ 1728.986581][ T7927] 9pnet: p9_errstr2errno: server reported unknown error 00000000000000000000003 [ 1730.566024][ T7980] syz.8.12309[7980] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1730.566264][ T7980] syz.8.12309[7980] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1731.045618][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 1734.446418][ T8049] overlayfs: failed to clone upperpath [ 1736.126503][ T8072] overlayfs: failed to clone upperpath [ 1736.924954][ T8099] overlayfs: failed to resolve './cgroup': -2 [ 1738.303425][ T8127] netlink: 'syz.7.12367': attribute type 4 has an invalid length. [ 1738.347443][ T8127] netlink: 'syz.7.12367': attribute type 4 has an invalid length. [ 1740.305635][ T8182] overlayfs: failed to clone upperpath [ 1743.309115][ T8238] netlink: 71 bytes leftover after parsing attributes in process `syz.7.12411'. [ 1744.258663][ T8263] overlayfs: failed to clone upperpath [ 1744.272338][ T8263] overlayfs: failed to clone lowerpath [ 1745.198511][ T8281] overlayfs: failed to clone upperpath [ 1745.368117][ T8283] overlayfs: failed to clone upperpath [ 1753.495522][ T8465] netlink: 8 bytes leftover after parsing attributes in process `syz.9.12509'. [ 1753.736992][ T8475] 9pnet_fd: Insufficient options for proto=fd [ 1753.855474][ T8482] overlayfs: failed to clone upperpath [ 1754.414012][ T8505] 9pnet_fd: Insufficient options for proto=fd [ 1755.513034][ T8526] 9pnet_fd: Insufficient options for proto=fd [ 1758.694474][ T8566] overlayfs: failed to clone upperpath [ 1758.731374][ T8566] overlayfs: failed to clone upperpath [ 1759.031754][ T8572] overlayfs: failed to clone upperpath [ 1759.182614][ T8575] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1759.239711][ T8575] overlayfs: missing 'lowerdir' [ 1763.915443][T21850] Bluetooth: hci1: command 0x0406 tx timeout [ 1763.951762][T15089] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 1763.962004][T15089] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 1764.006366][T15089] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 1764.034261][T15089] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 1764.045489][T15089] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 1764.052904][T15089] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 1764.848931][ T8641] chnl_net:caif_netlink_parms(): no params data found [ 1765.091156][ T8693] overlayfs: failed to clone lowerpath [ 1765.181797][ T8641] bridge0: port 1(bridge_slave_0) entered blocking state [ 1765.199846][ T8641] bridge0: port 1(bridge_slave_0) entered disabled state [ 1765.213424][ T8641] bridge_slave_0: entered allmulticast mode [ 1765.229648][ T8641] bridge_slave_0: entered promiscuous mode [ 1765.273328][ T8641] bridge0: port 2(bridge_slave_1) entered blocking state [ 1765.286336][ T8641] bridge0: port 2(bridge_slave_1) entered disabled state [ 1765.300040][ T8641] bridge_slave_1: entered allmulticast mode [ 1765.310287][ T8641] bridge_slave_1: entered promiscuous mode [ 1765.418670][ T8703] overlayfs: failed to clone upperpath [ 1765.451913][ T8641] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1765.468552][ T8641] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1765.663009][ T8641] team0: Port device team_slave_0 added [ 1765.713834][ T8641] team0: Port device team_slave_1 added [ 1765.809234][ T8641] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1765.817864][ T8641] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1765.856811][ T8641] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1765.908430][ T8641] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1765.915656][ T8641] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1765.944081][ T8641] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1766.155419][T21850] Bluetooth: hci0: command tx timeout [ 1766.232449][ T8641] hsr_slave_0: entered promiscuous mode [ 1766.240454][ T8641] hsr_slave_1: entered promiscuous mode [ 1766.249559][ T8641] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1766.259027][ T8641] Cannot create hsr debugfs directory [ 1766.284701][ T135] hsr_slave_0: left promiscuous mode [ 1766.291102][ T135] hsr_slave_1: left promiscuous mode [ 1766.299547][ T135] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1766.309538][ T135] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1766.318379][ T135] bridge_slave_1: left allmulticast mode [ 1766.324037][ T135] bridge_slave_1: left promiscuous mode [ 1766.331572][ T135] bridge0: port 2(bridge_slave_1) entered disabled state [ 1766.341215][ T135] bridge_slave_0: left allmulticast mode [ 1766.347103][ T135] bridge_slave_0: left promiscuous mode [ 1766.352858][ T135] bridge0: port 1(bridge_slave_0) entered disabled state [ 1767.066232][ T135] team0 (unregistering): Port device team_slave_1 removed [ 1767.108423][ T8739] xt_hashlimit: max too large, truncated to 1048576 [ 1767.234018][ T135] team0 (unregistering): Port device team_slave_0 removed [ 1767.353350][ T135] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1767.450669][ T135] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1768.225484][T21850] Bluetooth: hci0: command tx timeout [ 1769.024921][ T8776] 9pnet_fd: Insufficient options for proto=fd [ 1769.082228][ T135] bond0 (unregistering): Released all slaves [ 1769.285125][ T8782] netlink: 4 bytes leftover after parsing attributes in process `syz.7.12648'. [ 1769.432599][ T8782] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1770.305855][T21850] Bluetooth: hci0: command tx timeout [ 1770.437588][ T8801] 9pnet_fd: Insufficient options for proto=fd [ 1770.821721][ T8641] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 1770.850302][ T8641] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 1770.874993][ T8641] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 1770.919017][ T8641] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 1771.144827][ T8641] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1771.172573][ T8641] 8021q: adding VLAN 0 to HW filter on device team0 [ 1771.187597][T23860] bridge0: port 1(bridge_slave_0) entered blocking state [ 1771.194801][T23860] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1771.238152][T23860] bridge0: port 2(bridge_slave_1) entered blocking state [ 1771.245401][T23860] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1771.775908][ T8832] 9pnet_fd: Insufficient options for proto=fd [ 1772.329094][ T8641] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1772.386026][T21850] Bluetooth: hci0: command tx timeout [ 1773.333797][ T8641] veth0_vlan: entered promiscuous mode [ 1773.386302][ T8641] veth1_vlan: entered promiscuous mode [ 1773.616344][ T8884] overlayfs: failed to clone upperpath [ 1773.629988][ T8641] veth0_macvtap: entered promiscuous mode [ 1773.657450][ T8641] veth1_macvtap: entered promiscuous mode [ 1773.687670][ T8641] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1773.706824][ T8641] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1773.731603][ T8641] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1773.763129][ T8641] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1773.786344][ T8641] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1773.814555][ T8641] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1773.856417][ T8641] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1773.885298][ T8641] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1773.928380][ T8641] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1773.969604][ T8641] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1774.004784][ T8641] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1774.024491][ T8641] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1774.034645][ T8641] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1774.050254][ T8641] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1774.253640][T23860] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1774.273096][T23860] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1774.321544][ T135] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1774.334039][ T135] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1774.865735][ T8909] loop9: detected capacity change from 0 to 16 [ 1774.908190][ T8909] erofs: (device loop9): mounted with root inode @ nid 36. [ 1774.934201][ T8909] erofs: (device loop9): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1774.944587][ T8909] erofs: (device loop9): z_erofs_readahead: readahead error at folio 2 @ nid 89 [ 1774.953990][ T8909] erofs: (device loop9): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1774.963685][ T8909] erofs: (device loop9): z_erofs_readahead: readahead error at folio 1 @ nid 89 [ 1774.972864][ T8909] erofs: (device loop9): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1774.982515][ T8909] erofs: (device loop9): z_erofs_readahead: readahead error at folio 0 @ nid 89 [ 1774.992066][ T8909] erofs: (device loop9): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1775.043598][ T8909] erofs: (device loop9): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1775.053303][ T8909] erofs: (device loop9): z_erofs_read_folio: read error -117 @ 0 of nid 89 [ 1775.082525][ T28] audit: type=1800 audit(1761681389.986:846): pid=8909 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.9.12582" name="file2" dev="loop9" ino=89 res=0 errno=0 [ 1777.026846][ T8947] overlayfs: failed to resolve './cgroup': -2 [ 1780.997728][ T9081] overlayfs: failed to clone upperpath [ 1782.300798][ T9107] netlink: 12 bytes leftover after parsing attributes in process `syz.8.12773'. [ 1782.329654][ T9109] 9pnet_fd: Insufficient options for proto=fd [ 1784.239115][ T9127] 9pnet_fd: Insufficient options for proto=fd [ 1787.626947][ T9221] overlayfs: failed to clone upperpath [ 1788.940392][ T9251] fuse: Unexpected value for 'default_permissions' [ 1792.475631][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 1793.252076][ T9315] fuse: Bad value for 'fd' [ 1793.317730][ T9317] netlink: 12 bytes leftover after parsing attributes in process `syz.8.12855'. [ 1794.615711][ T9340] fuse: Bad value for 'fd' [ 1799.665758][T21850] Bluetooth: hci3: command 0x0406 tx timeout [ 1800.805803][ T9451] xt_hashlimit: max too large, truncated to 1048576 [ 1801.793039][ T9473] fuse: Bad value for 'fd' [ 1802.563856][ T9489] overlayfs: failed to clone upperpath [ 1803.767094][ T9521] overlayfs: failed to resolve './cgroup': -2 [ 1806.389758][ T12] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1806.530167][ T12] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1806.746540][ T12] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1807.068129][ T12] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1807.243337][T21850] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 1807.261706][T21850] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 1807.270970][T21850] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 1807.315423][T21850] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 1807.325793][T21850] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 1807.336056][T21850] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 1808.156117][T15089] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 1808.174488][T15089] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 1808.185439][T15089] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 1808.194535][T15089] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 1808.203733][T15089] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 1808.208451][ T9618] chnl_net:caif_netlink_parms(): no params data found [ 1808.223288][T15089] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 1808.803419][ T9618] bridge0: port 1(bridge_slave_0) entered blocking state [ 1808.845466][ T9618] bridge0: port 1(bridge_slave_0) entered disabled state [ 1808.852751][ T9618] bridge_slave_0: entered allmulticast mode [ 1808.884965][ T9618] bridge_slave_0: entered promiscuous mode [ 1809.032122][ T9618] bridge0: port 2(bridge_slave_1) entered blocking state [ 1809.075287][ T9618] bridge0: port 2(bridge_slave_1) entered disabled state [ 1809.082562][ T9618] bridge_slave_1: entered allmulticast mode [ 1809.096603][ T9618] bridge_slave_1: entered promiscuous mode [ 1809.426574][T21850] Bluetooth: hci0: command tx timeout [ 1809.627899][ T9618] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1809.686035][ T9618] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1810.306516][T21850] Bluetooth: hci1: command tx timeout [ 1810.332952][ T12] hsr_slave_0: left promiscuous mode [ 1810.339279][ T12] hsr_slave_1: left promiscuous mode [ 1810.354180][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1810.375223][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1810.383310][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1810.405214][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1810.416279][ T12] bridge_slave_1: left allmulticast mode [ 1810.421955][ T12] bridge_slave_1: left promiscuous mode [ 1810.438338][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 1810.467448][ T12] bridge_slave_0: left allmulticast mode [ 1810.473556][ T12] bridge_slave_0: left promiscuous mode [ 1810.485305][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 1810.562571][ T12] veth1_macvtap: left promiscuous mode [ 1810.571812][ T12] veth0_macvtap: left promiscuous mode [ 1810.585546][ T12] veth1_vlan: left promiscuous mode [ 1810.597779][ T12] veth0_vlan: left promiscuous mode [ 1811.505694][T21850] Bluetooth: hci0: command tx timeout [ 1812.385241][T21850] Bluetooth: hci1: command tx timeout [ 1812.632967][ T12] team0 (unregistering): Port device team_slave_1 removed [ 1812.738208][ T12] team0 (unregistering): Port device team_slave_0 removed [ 1812.830668][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1812.912241][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1813.586254][T21850] Bluetooth: hci0: command tx timeout [ 1814.465875][T15089] Bluetooth: hci1: command tx timeout [ 1814.778156][ T12] bond0 (unregistering): Released all slaves [ 1815.042789][ T9618] team0: Port device team_slave_0 added [ 1815.076667][ T9618] team0: Port device team_slave_1 added [ 1815.243308][ T9618] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1815.253395][ T9618] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1815.294192][ T9618] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1815.360312][ T9618] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1815.368468][ T9618] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1815.409894][ T9618] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1815.668603][T15089] Bluetooth: hci0: command tx timeout [ 1815.731692][ T9618] hsr_slave_0: entered promiscuous mode [ 1815.784531][ T9618] hsr_slave_1: entered promiscuous mode [ 1815.818002][ T9618] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1815.834691][ T9618] Cannot create hsr debugfs directory [ 1815.873223][ T9636] chnl_net:caif_netlink_parms(): no params data found [ 1816.550635][T15089] Bluetooth: hci1: command tx timeout [ 1816.697183][ T9636] bridge0: port 1(bridge_slave_0) entered blocking state [ 1816.736246][ T9636] bridge0: port 1(bridge_slave_0) entered disabled state [ 1816.743527][ T9636] bridge_slave_0: entered allmulticast mode [ 1816.796620][ T9636] bridge_slave_0: entered promiscuous mode [ 1816.992776][ T12] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1817.058328][ T9636] bridge0: port 2(bridge_slave_1) entered blocking state [ 1817.068415][ T9636] bridge0: port 2(bridge_slave_1) entered disabled state [ 1817.091814][ T9636] bridge_slave_1: entered allmulticast mode [ 1817.115498][ T9636] bridge_slave_1: entered promiscuous mode [ 1817.282858][ T12] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1817.580878][ T12] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1817.685818][ T9636] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1817.701629][ T9636] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1818.561806][ T12] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1818.773721][ T9636] team0: Port device team_slave_0 added [ 1819.267816][ T9636] team0: Port device team_slave_1 added [ 1819.686353][ T9636] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1819.724947][ T9636] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1819.805811][ T9636] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1820.095527][ T9636] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1820.103271][ T9636] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1820.160593][ T9636] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1820.341753][ T9636] hsr_slave_0: entered promiscuous mode [ 1820.374798][ T9636] hsr_slave_1: entered promiscuous mode [ 1820.424703][ T9636] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1820.473428][ T9636] Cannot create hsr debugfs directory [ 1822.505721][ T9618] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 1822.529553][ T9618] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 1822.587179][ T9618] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 1822.620248][ T9618] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 1823.771870][ T9618] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1823.939508][ T9618] 8021q: adding VLAN 0 to HW filter on device team0 [ 1823.992550][ T12] hsr_slave_0: left promiscuous mode [ 1824.003527][ T12] hsr_slave_1: left promiscuous mode [ 1824.011095][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1824.025280][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1824.043770][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1824.060414][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1824.075365][ T12] bridge_slave_1: left allmulticast mode [ 1824.081061][ T12] bridge_slave_1: left promiscuous mode [ 1824.114036][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 1824.132732][ T12] bridge_slave_0: left allmulticast mode [ 1824.140957][ T12] bridge_slave_0: left promiscuous mode [ 1824.151464][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 1824.212793][ T12] veth1_macvtap: left promiscuous mode [ 1824.221509][ T12] veth0_macvtap: left promiscuous mode [ 1824.228005][ T12] veth1_vlan: left promiscuous mode [ 1824.245412][ T12] veth0_vlan: left promiscuous mode [ 1825.326875][ T12] team0 (unregistering): Port device team_slave_1 removed [ 1825.392501][ T12] team0 (unregistering): Port device team_slave_0 removed [ 1825.462459][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1825.553336][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1826.214464][ T12] bond0 (unregistering): Released all slaves [ 1826.406126][ T42] bridge0: port 1(bridge_slave_0) entered blocking state [ 1826.413398][ T42] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1826.430180][ T42] bridge0: port 2(bridge_slave_1) entered blocking state [ 1826.437382][ T42] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1826.530039][ T9636] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 1826.607734][ T9636] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 1826.635110][ T9636] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 1826.662997][ T9636] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 1826.978886][ T9636] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1827.041949][ T9636] 8021q: adding VLAN 0 to HW filter on device team0 [ 1827.091182][ T135] bridge0: port 1(bridge_slave_0) entered blocking state [ 1827.098455][ T135] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1827.144976][T23234] bridge0: port 2(bridge_slave_1) entered blocking state [ 1827.152284][T23234] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1827.363226][ T9618] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1827.746240][ T9636] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1828.082976][ T9636] veth0_vlan: entered promiscuous mode [ 1828.254016][ T9618] veth0_vlan: entered promiscuous mode [ 1828.275985][ T9636] veth1_vlan: entered promiscuous mode [ 1828.449023][ T9618] veth1_vlan: entered promiscuous mode [ 1828.724587][ T9636] veth0_macvtap: entered promiscuous mode [ 1828.878049][ T9618] veth0_macvtap: entered promiscuous mode [ 1828.911581][ T9636] veth1_macvtap: entered promiscuous mode [ 1828.953061][ T9618] veth1_macvtap: entered promiscuous mode [ 1829.040727][ T9636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1829.066458][ T9636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1829.106924][ T9636] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1829.183171][ T9618] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1829.209464][ T9618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1829.224642][ T9618] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1829.255161][ T9618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1829.290715][ T9618] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1829.328407][ T9636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1829.361693][ T9636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1829.383722][ T9636] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1829.439554][ T9636] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1829.459684][ T9636] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1829.490410][ T9636] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1829.499346][ T9636] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1829.512680][ T9618] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1829.525993][ T9618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1829.536198][ T9618] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1829.547631][ T9618] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1829.563977][ T9618] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1829.605872][ T9618] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1829.635544][ T9618] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1829.644410][ T9618] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1829.695304][ T9618] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1829.968326][ T135] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1830.001957][ T135] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1830.140699][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1830.176985][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1830.205904][T23234] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1830.213773][T23234] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1830.358985][ T9125] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1830.384785][ T9125] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1831.787807][T21850] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 1831.805385][T21850] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 1831.813608][T21850] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 1831.828184][T21850] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 1831.836049][T21850] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 1831.844168][T21850] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 1832.772340][T10078] chnl_net:caif_netlink_parms(): no params data found [ 1833.066861][T10078] bridge0: port 1(bridge_slave_0) entered blocking state [ 1833.079553][T10078] bridge0: port 1(bridge_slave_0) entered disabled state [ 1833.089891][T10078] bridge_slave_0: entered allmulticast mode [ 1833.097506][T10078] bridge_slave_0: entered promiscuous mode [ 1833.120538][T10078] bridge0: port 2(bridge_slave_1) entered blocking state [ 1833.143931][T10078] bridge0: port 2(bridge_slave_1) entered disabled state [ 1833.175364][T10078] bridge_slave_1: entered allmulticast mode [ 1833.197729][T10078] bridge_slave_1: entered promiscuous mode [ 1834.012131][T21850] Bluetooth: hci2: command tx timeout [ 1834.045551][T10131] syzkaller0: entered allmulticast mode [ 1834.111816][T10078] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1834.137245][T10078] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1834.272361][T10078] team0: Port device team_slave_0 added [ 1834.304097][T10078] team0: Port device team_slave_1 added [ 1834.450679][T10078] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1834.466974][T10078] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1834.544944][T10078] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1834.583055][T10078] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1834.594136][T10078] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1834.628389][T10078] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1834.738548][T10078] hsr_slave_0: entered promiscuous mode [ 1834.770916][T10078] hsr_slave_1: entered promiscuous mode [ 1834.815496][T10078] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1834.823136][T10078] Cannot create hsr debugfs directory [ 1836.065661][T21850] Bluetooth: hci2: command tx timeout [ 1836.205475][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 1836.214318][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 1836.222926][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 1836.457125][T10202] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1836.627898][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 1836.890608][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 1836.985220][T10078] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 1837.095767][ T0] NOHZ tick-stop error: local softirq work is pending, handler #c2!!! [ 1837.104069][ T0] NOHZ tick-stop error: local softirq work is pending, handler #c2!!! [ 1837.284624][T10202] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1837.326513][T10078] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 1837.337516][T10078] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 1837.467585][T10202] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1837.493804][T10078] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 1837.593907][T10202] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1837.705449][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 1837.716380][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 1838.155600][T21850] Bluetooth: hci2: command tx timeout [ 1838.287854][T10202] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1838.445515][T10202] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1838.473895][T10078] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1838.526461][T10202] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1838.559463][T10202] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1838.589463][T10078] 8021q: adding VLAN 0 to HW filter on device team0 [ 1838.660786][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 1838.668038][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1838.693059][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 1838.700367][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1838.800830][T10233] binder: 10232:10233 ioctl c0306201 200000000500 returned -11 [ 1839.208097][T10240] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1839.472923][T10240] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1839.798847][T10240] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1840.009377][T10240] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1840.101873][T10078] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1840.200650][T10240] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1840.227202][T21850] Bluetooth: hci2: command tx timeout [ 1840.304956][T10240] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1840.379466][T10240] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1840.480007][T10240] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1842.563977][T10078] veth0_vlan: entered promiscuous mode [ 1842.807855][T10078] veth1_vlan: entered promiscuous mode [ 1842.934131][T10078] veth0_macvtap: entered promiscuous mode [ 1842.968582][T10078] veth1_macvtap: entered promiscuous mode [ 1843.031424][T10078] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1843.058555][T10078] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1843.073407][T10078] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1843.092318][T10078] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1843.103569][T10078] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1843.118285][T10078] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1843.144657][T10078] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1843.228486][T10078] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1843.269753][T10078] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1843.283359][T10078] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1843.300195][T10078] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1843.314523][T10078] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1843.326507][T10078] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1843.353035][T10078] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1843.423146][T10078] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1843.447751][T10078] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1843.556073][T10078] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1843.579622][T10078] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1843.914385][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1843.941222][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1843.992405][T23234] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1844.001087][T23234] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1844.075283][T10298] tipc: Can't bind to reserved service type 2 [ 1846.716513][ T1615] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 1846.958386][ T1615] usb 8-1: Using ep0 maxpacket: 8 [ 1847.063507][ T1615] usb 8-1: unable to get BOS descriptor or descriptor too short [ 1847.172767][ T1615] usb 8-1: config 4 interface 0 has no altsetting 0 [ 1847.268743][ T1615] usb 8-1: string descriptor 0 read error: -22 [ 1847.301053][ T1615] usb 8-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05 [ 1847.380519][ T1615] usb 8-1: New USB device strings: Mfr=2, Product=0, SerialNumber=3 [ 1847.803070][ T1615] usb 8-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state [ 1847.879586][ T1615] usb 8-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 1847.958127][ T1615] dvbdev: DVB: registering new adapter (Sigmatek DVB-110) [ 1848.002981][ T1615] usb 8-1: media controller created [ 1848.053683][T10318] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1848.074919][ T1615] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 1848.095040][T10318] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1848.117128][T10348] binder: 10347:10348 ioctl c0306201 0 returned -14 [ 1848.128813][T10348] binder: 10347:10348 ioctl c0306201 200000000500 returned -11 [ 1848.169675][ T1615] zl10353_read_register: readreg error (reg=127, ret==0) [ 1848.412526][ T1615] usb 8-1: USB disconnect, device number 2 [ 1848.775219][ T6205] usb 4-1: new high-speed USB device number 20 using dummy_hcd [ 1848.965250][ T6205] usb 4-1: Using ep0 maxpacket: 16 [ 1848.992088][ T6205] usb 4-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6 [ 1849.052598][ T6205] usb 4-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3 [ 1849.105069][ T6205] usb 4-1: Product: syz [ 1849.109503][ T6205] usb 4-1: Manufacturer: syz [ 1849.125265][ T6205] usb 4-1: SerialNumber: syz [ 1849.160847][ T6205] usb 4-1: config 0 descriptor?? [ 1851.761426][ T6209] usb 4-1: USB disconnect, device number 20 [ 1852.025569][T10378] netlink: 24 bytes leftover after parsing attributes in process `syz.0.13272'. [ 1852.165311][ T6718] IPVS: starting estimator thread 0... [ 1852.275411][T10379] IPVS: using max 27 ests per chain, 64800 per kthread [ 1852.914899][T10391] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1852.956492][ T1615] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 1853.212463][ T1615] usb 5-1: Using ep0 maxpacket: 8 [ 1853.250137][T10391] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1853.279998][ T1615] usb 5-1: config 0 interface 0 has no altsetting 0 [ 1853.306898][ T1615] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 1853.346854][ T1615] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1853.417716][ T1615] usb 5-1: config 0 descriptor?? [ 1853.527078][T10391] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1853.911030][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 1856.316149][ T1615] mcp2221 0003:04D8:00DD.002C: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.4-1/input0 [ 1856.385835][T10391] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1856.635612][ T1615] usb 5-1: USB disconnect, device number 6 [ 1857.818874][T10391] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1857.835573][T10391] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1857.877399][T10391] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1857.909693][T10391] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1858.165209][ T6718] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 1858.245365][ T6205] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 1858.272141][T10416] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1858.445740][ T6205] usb 5-1: Using ep0 maxpacket: 8 [ 1858.506041][ T6718] usb 8-1: Using ep0 maxpacket: 8 [ 1858.514644][ T6718] usb 8-1: unable to get BOS descriptor or descriptor too short [ 1858.567623][T10416] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1858.590403][ T6718] usb 8-1: config 4 interface 0 has no altsetting 0 [ 1858.624495][ T6718] usb 8-1: string descriptor 0 read error: -22 [ 1858.634609][ T6718] usb 8-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05 [ 1858.658398][ T6718] usb 8-1: New USB device strings: Mfr=2, Product=0, SerialNumber=3 [ 1858.698144][ T6718] usb 8-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state [ 1858.712395][ T6205] usb 5-1: unable to get BOS descriptor or descriptor too short [ 1858.732777][ T6718] usb 8-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 1858.779282][ T6718] dvbdev: DVB: registering new adapter (Sigmatek DVB-110) [ 1858.800581][T10416] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1858.825261][ T6718] usb 8-1: media controller created [ 1858.843421][ T6205] usb 5-1: config 4 interface 0 has no altsetting 0 [ 1858.878125][ T6205] usb 5-1: string descriptor 0 read error: -22 [ 1858.884434][ T6205] usb 5-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05 [ 1858.899480][ T6718] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 1858.921341][T10416] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1858.944654][T10409] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1858.957682][ T6205] usb 5-1: New USB device strings: Mfr=2, Product=0, SerialNumber=3 [ 1859.009985][ T6205] usb 5-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state [ 1859.011533][T10409] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1859.069224][ T6205] usb 5-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 1859.101951][ T6205] dvbdev: DVB: registering new adapter (Sigmatek DVB-110) [ 1859.132416][ T6205] usb 5-1: media controller created [ 1859.139116][ T6718] zl10353_read_register: readreg error (reg=127, ret==0) [ 1859.217758][T10411] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1859.247450][T10411] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1859.280750][ T6718] usb 8-1: USB disconnect, device number 3 [ 1859.294230][ T6205] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 1859.454363][ T6205] zl10353_read_register: readreg error (reg=127, ret==0) [ 1859.502759][ T6205] usb 5-1: USB disconnect, device number 7 [ 1862.871695][ T28] audit: type=1326 audit(1761681477.796:847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10460 comm="syz.3.13294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 1862.910953][ T28] audit: type=1326 audit(1761681477.816:848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10460 comm="syz.3.13294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 1862.964913][T10461] netlink: 48 bytes leftover after parsing attributes in process `syz.3.13294'. [ 1864.106678][ T28] audit: type=1326 audit(1761681478.246:849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10460 comm="syz.3.13294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb9e8d8d810 code=0x7ffc0000 [ 1864.428177][ T28] audit: type=1326 audit(1761681478.246:850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10460 comm="syz.3.13294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fb9e8d907f7 code=0x7ffc0000 [ 1864.485280][ T28] audit: type=1326 audit(1761681478.246:851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10460 comm="syz.3.13294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 1864.508156][ T28] audit: type=1326 audit(1761681478.246:852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10460 comm="syz.3.13294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fb9e8d907f7 code=0x7ffc0000 [ 1864.533050][ T28] audit: type=1326 audit(1761681478.246:853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10460 comm="syz.3.13294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fb9e8d8dc2a code=0x7ffc0000 [ 1864.624155][ T28] audit: type=1326 audit(1761681478.246:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10460 comm="syz.3.13294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 1864.632744][T10416] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1864.851758][ T28] audit: type=1326 audit(1761681478.246:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10460 comm="syz.3.13294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 1864.876974][ T28] audit: type=1326 audit(1761681478.266:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10460 comm="syz.3.13294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 1865.008299][T10416] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1865.678745][T10416] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1865.751468][T10416] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1866.147669][T10485] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1866.487479][T10485] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1866.769643][ T1385] usb 4-1: new high-speed USB device number 21 using dummy_hcd [ 1866.777907][T10485] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1866.871595][T10485] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1866.988355][ T1385] usb 4-1: Using ep0 maxpacket: 16 [ 1867.118652][ T1385] usb 4-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6 [ 1867.151846][ T6205] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 1867.175183][ T1385] usb 4-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3 [ 1867.183415][ T1385] usb 4-1: Product: syz [ 1867.212930][ T1385] usb 4-1: Manufacturer: syz [ 1867.217649][ T1385] usb 4-1: SerialNumber: syz [ 1867.234092][ T1385] usb 4-1: config 0 descriptor?? [ 1867.375179][ T6205] usb 5-1: Using ep0 maxpacket: 8 [ 1867.401984][ T6205] usb 5-1: config 0 interface 0 has no altsetting 0 [ 1867.444604][ T6205] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 1867.505475][ T6205] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1867.571695][ T1615] usb 4-1: USB disconnect, device number 21 [ 1867.613716][ T6205] usb 5-1: config 0 descriptor?? [ 1868.087243][ T6205] mcp2221 0003:04D8:00DD.002D: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.4-1/input0 [ 1868.345876][ T6205] usb 5-1: USB disconnect, device number 8 [ 1869.292572][T10505] binder: 10504:10505 ioctl c0306201 200000000500 returned -11 [ 1869.496455][T10514] netlink: 24 bytes leftover after parsing attributes in process `syz.7.13307'. [ 1869.526634][ T6205] IPVS: starting estimator thread 0... [ 1869.655498][T10515] IPVS: using max 17 ests per chain, 40800 per kthread [ 1869.865538][ T6205] usb 4-1: new high-speed USB device number 22 using dummy_hcd [ 1870.136263][ T6205] usb 4-1: Using ep0 maxpacket: 8 [ 1870.232904][ T6205] usb 4-1: unable to get BOS descriptor or descriptor too short [ 1870.288980][ T6205] usb 4-1: config 4 interface 0 has no altsetting 0 [ 1870.361753][ T6205] usb 4-1: string descriptor 0 read error: -22 [ 1870.370746][ T6205] usb 4-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05 [ 1870.410885][ T6205] usb 4-1: New USB device strings: Mfr=2, Product=0, SerialNumber=3 [ 1870.447509][ T6205] usb 4-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state [ 1870.461592][ T6205] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 1870.484587][ T6205] dvbdev: DVB: registering new adapter (Sigmatek DVB-110) [ 1870.503332][ T6205] usb 4-1: media controller created [ 1870.661943][T10508] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1870.673614][T10508] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1870.688962][ T6205] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 1870.705944][ T6205] zl10353_read_register: readreg error (reg=127, ret==0) [ 1870.744547][ T6205] usb 4-1: USB disconnect, device number 22 [ 1870.805248][ T1385] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 1870.995230][ T1385] usb 5-1: Using ep0 maxpacket: 8 [ 1871.030303][ T1385] usb 5-1: unable to get BOS descriptor or descriptor too short [ 1871.097098][ T1385] usb 5-1: config 4 interface 0 has no altsetting 0 [ 1871.142655][ T1385] usb 5-1: string descriptor 0 read error: -22 [ 1871.150975][ T1385] usb 5-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05 [ 1871.160595][ T1385] usb 5-1: New USB device strings: Mfr=2, Product=0, SerialNumber=3 [ 1871.178414][ T1385] usb 5-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state [ 1871.193428][ T1385] usb 5-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 1871.205280][ T1385] dvbdev: DVB: registering new adapter (Sigmatek DVB-110) [ 1871.212526][ T1385] usb 5-1: media controller created [ 1871.234367][ T1385] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 1871.272518][T10485] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1871.300058][T10485] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1871.321568][T10485] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1871.391511][T10485] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1871.506739][T10519] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1871.534139][T10519] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1871.564599][ T1385] zl10353_read_register: readreg error (reg=127, ret==0) [ 1871.692521][ T1385] usb 5-1: USB disconnect, device number 9 [ 1872.107390][T10535] netlink: 24 bytes leftover after parsing attributes in process `syz.0.13315'. [ 1873.798308][T10554] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1874.341323][T10554] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1874.447396][T10554] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1874.580234][T10554] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1876.017249][ T1385] usb 4-1: new high-speed USB device number 23 using dummy_hcd [ 1876.276742][ T1385] usb 4-1: Using ep0 maxpacket: 8 [ 1876.328429][ T1385] usb 4-1: unable to get BOS descriptor or descriptor too short [ 1876.368208][ T1385] usb 4-1: config 4 interface 0 has no altsetting 0 [ 1876.380571][ T1385] usb 4-1: string descriptor 0 read error: -22 [ 1876.396397][ T1385] usb 4-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05 [ 1876.414181][ T1385] usb 4-1: New USB device strings: Mfr=2, Product=0, SerialNumber=3 [ 1876.458323][ T1385] usb 4-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state [ 1876.473196][ T1385] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 1876.484079][ T1385] dvbdev: DVB: registering new adapter (Sigmatek DVB-110) [ 1876.497509][ T1385] usb 4-1: media controller created [ 1876.528343][ T1385] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 1876.564712][T10580] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1876.633811][T10580] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1876.705931][T10571] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1876.714899][T10571] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1876.722762][ T1387] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 1876.736686][ T1385] zl10353_read_register: readreg error (reg=127, ret==0) [ 1876.746863][T10580] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1876.819773][T10580] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1876.850144][ T1385] usb 4-1: USB disconnect, device number 23 [ 1876.934365][ T1387] usb 8-1: Using ep0 maxpacket: 8 [ 1876.958578][ T1387] usb 8-1: config 0 interface 0 has no altsetting 0 [ 1876.980803][ T1387] usb 8-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 1877.012146][ T1387] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1877.062239][T10580] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1877.078120][ T1387] usb 8-1: config 0 descriptor?? [ 1877.121706][T10580] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1877.171987][T10580] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1877.221363][T10580] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1877.493486][ T1387] mcp2221 0003:04D8:00DD.002E: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.7-1/input0 [ 1877.626440][T10588] netlink: 24 bytes leftover after parsing attributes in process `syz.3.13329'. [ 1877.647941][T20245] IPVS: starting estimator thread 0... [ 1878.985824][T10590] IPVS: using max 31 ests per chain, 74400 per kthread [ 1879.030389][ T1387] usb 8-1: USB disconnect, device number 4 [ 1879.271909][ T28] kauditd_printk_skb: 11 callbacks suppressed [ 1879.271925][ T28] audit: type=1326 audit(1761681494.196:868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10598 comm="syz.4.13332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 1879.304075][ T28] audit: type=1326 audit(1761681494.196:869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10598 comm="syz.4.13332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 1879.339170][ T28] audit: type=1326 audit(1761681494.196:870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10598 comm="syz.4.13332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=129 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 1879.346042][T10599] netlink: 48 bytes leftover after parsing attributes in process `syz.4.13332'. [ 1879.361626][ C0] vkms_vblank_simulate: vblank timer overrun [ 1879.377710][ T28] audit: type=1326 audit(1761681494.196:871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10598 comm="syz.4.13332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 1879.400195][ C0] vkms_vblank_simulate: vblank timer overrun [ 1879.409057][ T28] audit: type=1326 audit(1761681494.196:872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10598 comm="syz.4.13332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 1879.431470][ C0] vkms_vblank_simulate: vblank timer overrun [ 1879.465291][ T28] audit: type=1326 audit(1761681494.196:873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10598 comm="syz.4.13332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 1879.491869][ T28] audit: type=1326 audit(1761681494.206:874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10598 comm="syz.4.13332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 1879.514303][ C0] vkms_vblank_simulate: vblank timer overrun [ 1880.324318][T10554] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1880.474774][ T28] audit: type=1326 audit(1761681494.206:875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10598 comm="syz.4.13332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 1880.497839][ T28] audit: type=1326 audit(1761681494.206:876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10598 comm="syz.4.13332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 1880.521211][ T28] audit: type=1326 audit(1761681494.206:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10598 comm="syz.4.13332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 1880.543709][T10554] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1880.604033][T10554] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1880.621264][T10554] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1880.823496][T10609] netlink: 24 bytes leftover after parsing attributes in process `syz.4.13334'. [ 1880.976276][T20245] IPVS: starting estimator thread 0... [ 1881.065449][T10610] IPVS: using max 21 ests per chain, 50400 per kthread [ 1883.080676][T10616] netlink: 24 bytes leftover after parsing attributes in process `syz.0.13337'. [ 1883.857297][T10631] netlink: 8 bytes leftover after parsing attributes in process `syz.4.13340'. [ 1884.052948][T10631] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1887.629698][T10648] netlink: 8 bytes leftover after parsing attributes in process `syz.7.13343'. [ 1887.882373][T10648] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1888.449399][T15089] Bluetooth: hci3: SCO packet for unknown connection handle 0 [ 1888.776520][T10663] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1889.093519][T10663] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1889.183508][T10669] netlink: 24 bytes leftover after parsing attributes in process `syz.0.13349'. [ 1889.579349][T10663] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1889.815895][T10663] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1890.182112][T10663] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1890.238267][T10663] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1890.293513][T10663] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1890.357316][T23234] hsr_slave_0: left promiscuous mode [ 1890.364387][T23234] hsr_slave_1: left promiscuous mode [ 1890.381394][T23234] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1890.402221][T23234] bridge_slave_1: left allmulticast mode [ 1890.433938][T23234] bridge_slave_1: left promiscuous mode [ 1890.507026][T23234] bridge0: port 2(bridge_slave_1) entered disabled state [ 1890.867329][T23234] bridge_slave_0: left allmulticast mode [ 1890.918956][T23234] bridge_slave_0: left promiscuous mode [ 1890.957259][T23234] bridge0: port 1(bridge_slave_0) entered disabled state [ 1893.694089][T10706] netlink: 24 bytes leftover after parsing attributes in process `syz.4.13356'. [ 1896.319432][T23234] team0 (unregistering): Port device team_slave_1 removed [ 1896.384103][T23234] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1896.481316][T23234] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1897.596654][T23234] bond0 (unregistering): Released all slaves [ 1897.679221][T10663] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1897.692382][T10688] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13352'. [ 1897.769625][T10688] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1897.808651][T10700] netlink: 8 bytes leftover after parsing attributes in process `syz.7.13354'. [ 1897.844715][T10700] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1897.899698][T10711] netlink: 8 bytes leftover after parsing attributes in process `syz.4.13357'. [ 1897.952082][T10711] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1898.286706][T10719] random: crng reseeded on system resumption [ 1899.504547][ T28] kauditd_printk_skb: 46 callbacks suppressed [ 1899.504563][ T28] audit: type=1326 audit(1761681514.366:924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10723 comm="syz.3.13361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 1899.607249][ T28] audit: type=1326 audit(1761681514.366:925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10723 comm="syz.3.13361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 1899.630511][ T28] audit: type=1326 audit(1761681514.376:926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10723 comm="syz.3.13361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=129 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 1899.749457][T10724] netlink: 48 bytes leftover after parsing attributes in process `syz.3.13361'. [ 1899.795298][ T28] audit: type=1326 audit(1761681514.376:927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10723 comm="syz.3.13361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 1899.817741][ C1] vkms_vblank_simulate: vblank timer overrun [ 1899.824274][ T28] audit: type=1326 audit(1761681514.386:928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10723 comm="syz.3.13361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 1900.531643][ T28] audit: type=1326 audit(1761681514.396:929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10723 comm="syz.3.13361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 1900.695493][ T28] audit: type=1326 audit(1761681514.406:930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10723 comm="syz.3.13361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 1900.717946][ C1] vkms_vblank_simulate: vblank timer overrun [ 1900.830044][ T28] audit: type=1326 audit(1761681514.406:931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10723 comm="syz.3.13361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 1901.837884][ T28] audit: type=1326 audit(1761681514.416:932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10723 comm="syz.3.13361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 1901.845602][T10750] netlink: 48 bytes leftover after parsing attributes in process `syz.3.13366'. [ 1901.860478][ T28] audit: type=1326 audit(1761681514.426:933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10723 comm="syz.3.13361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 1903.494920][T10780] netlink: 8 bytes leftover after parsing attributes in process `syz.7.13368'. [ 1903.576784][T10780] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1906.975594][T20245] usb 4-1: new high-speed USB device number 24 using dummy_hcd [ 1907.051701][T15089] Bluetooth: hci3: SCO packet for unknown connection handle 0 [ 1907.189927][T10805] netlink: 24 bytes leftover after parsing attributes in process `syz.4.13378'. [ 1907.207649][T20245] usb 4-1: Using ep0 maxpacket: 8 [ 1908.099256][T20245] usb 4-1: unable to get BOS descriptor or descriptor too short [ 1908.144181][T20245] usb 4-1: unable to read config index 0 descriptor/start: -71 [ 1908.185648][T20245] usb 4-1: can't read configurations, error -71 [ 1908.447874][T10821] netlink: 24 bytes leftover after parsing attributes in process `syz.3.13380'. [ 1911.441502][T10833] netlink: 24 bytes leftover after parsing attributes in process `syz.4.13383'. [ 1914.262746][T10855] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13386'. [ 1914.332785][T10855] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1914.966331][T10856] netlink: 8 bytes leftover after parsing attributes in process `syz.4.13390'. [ 1914.997648][T10856] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1915.279205][T10864] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1915.350337][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 1915.703331][T10864] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1915.810250][T10864] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1915.820393][ T6717] usb 8-1: new high-speed USB device number 5 using dummy_hcd [ 1915.915495][T10864] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1916.007415][ T6717] usb 8-1: Using ep0 maxpacket: 8 [ 1916.057135][ T6717] usb 8-1: unable to get BOS descriptor or descriptor too short [ 1916.083479][T10864] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1916.085469][ T6717] usb 8-1: config 4 interface 0 has no altsetting 0 [ 1916.141387][ T6717] usb 8-1: string descriptor 0 read error: -22 [ 1916.152255][T10864] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1916.160020][ T6717] usb 8-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05 [ 1916.189948][T10864] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1916.198225][ T6717] usb 8-1: New USB device strings: Mfr=2, Product=0, SerialNumber=3 [ 1916.239594][T10864] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1916.258712][ T6717] usb 8-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state [ 1916.288130][ T6717] usb 8-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 1916.325792][ T6717] dvbdev: DVB: registering new adapter (Sigmatek DVB-110) [ 1916.343343][ T6717] usb 8-1: media controller created [ 1916.402444][ T6717] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 1916.463426][T10867] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1916.495252][T20245] usb 4-1: new high-speed USB device number 26 using dummy_hcd [ 1916.513337][T10867] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1916.549665][ T6717] zl10353_read_register: readreg error (reg=127, ret==0) [ 1916.671580][ T6717] usb 8-1: USB disconnect, device number 5 [ 1916.685168][T20245] usb 4-1: Using ep0 maxpacket: 8 [ 1916.703928][T20245] usb 4-1: unable to get BOS descriptor or descriptor too short [ 1916.726176][T20245] usb 4-1: config 4 interface 0 has no altsetting 0 [ 1916.746777][T20245] usb 4-1: string descriptor 0 read error: -22 [ 1916.783937][T20245] usb 4-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05 [ 1916.804554][T20245] usb 4-1: New USB device strings: Mfr=2, Product=0, SerialNumber=3 [ 1916.830350][T20245] usb 4-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state [ 1916.857783][T20245] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 1916.904564][T20245] dvbdev: DVB: registering new adapter (Sigmatek DVB-110) [ 1916.922330][T20245] usb 4-1: media controller created [ 1917.011219][T20245] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 1917.044542][T10872] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1917.072338][T10872] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1917.093365][T20245] zl10353_read_register: readreg error (reg=127, ret==0) [ 1917.159591][T20245] usb 4-1: USB disconnect, device number 26 [ 1917.733700][T10886] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1917.804226][T10886] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1918.459368][T10886] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1918.544187][T10886] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1919.205486][T10914] netlink: 24 bytes leftover after parsing attributes in process `syz.4.13401'. [ 1923.185484][ T6209] usb 8-1: new high-speed USB device number 6 using dummy_hcd [ 1923.365221][ T6209] usb 8-1: Using ep0 maxpacket: 8 [ 1923.380588][ T6209] usb 8-1: config 0 interface 0 has no altsetting 0 [ 1923.400800][ T6209] usb 8-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 1923.416472][ T6209] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1923.431960][ T6209] usb 8-1: config 0 descriptor?? [ 1923.527393][T10886] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1923.568552][T10886] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1924.051124][T10886] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1924.093290][ T6209] mcp2221 0003:04D8:00DD.002F: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.7-1/input0 [ 1924.149172][T10886] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1924.339411][ T6717] usb 8-1: USB disconnect, device number 6 [ 1924.796049][T10957] block device autoloading is deprecated and will be removed. [ 1927.717524][T10999] netlink: 8 bytes leftover after parsing attributes in process `syz.4.13420'. [ 1927.762732][T10999] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1928.039347][T11001] netlink: 8 bytes leftover after parsing attributes in process `syz.7.13422'. [ 1928.163437][T11001] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1929.419249][ T28] kauditd_printk_skb: 79 callbacks suppressed [ 1929.419264][ T28] audit: type=1326 audit(1761681544.346:1013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11008 comm="syz.4.13425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 1929.489960][ T28] audit: type=1326 audit(1761681544.346:1014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11008 comm="syz.4.13425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 1929.599220][T11009] netlink: 48 bytes leftover after parsing attributes in process `syz.4.13425'. [ 1929.698694][ T28] audit: type=1326 audit(1761681544.626:1015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11008 comm="syz.4.13425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff41578d810 code=0x7ffc0000 [ 1929.739757][T15089] Bluetooth: hci2: link tx timeout [ 1929.745813][T15089] Bluetooth: hci2: killing stalled connection 10:aa:aa:aa:aa:aa [ 1929.757132][T15089] Bluetooth: hci2: link tx timeout [ 1929.762396][T15089] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa [ 1930.283118][T15089] Bluetooth: hci2: link tx timeout [ 1930.289629][T15089] Bluetooth: hci2: killing stalled connection 10:aa:aa:aa:aa:aa [ 1930.297433][T15089] Bluetooth: hci2: link tx timeout [ 1930.302687][T15089] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa [ 1930.366986][ T28] audit: type=1326 audit(1761681544.646:1016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11008 comm="syz.4.13425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7ff4157907f7 code=0x7ffc0000 [ 1930.485585][ T28] audit: type=1326 audit(1761681544.646:1017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11008 comm="syz.4.13425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 1930.716885][ T28] audit: type=1326 audit(1761681544.646:1018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11008 comm="syz.4.13425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7ff4157907f7 code=0x7ffc0000 [ 1930.752572][T11021] netlink: 24 bytes leftover after parsing attributes in process `syz.4.13427'. [ 1932.698135][ T5790] Bluetooth: hci2: command 0x0406 tx timeout [ 1932.715462][ T28] audit: type=1326 audit(1761681544.646:1019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11008 comm="syz.4.13425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7ff41578dc2a code=0x7ffc0000 [ 1932.745856][ T28] audit: type=1326 audit(1761681544.656:1020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11008 comm="syz.4.13425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 1932.836650][ T28] audit: type=1326 audit(1761681544.656:1021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11008 comm="syz.4.13425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 1933.032899][ T28] audit: type=1326 audit(1761681544.656:1022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11008 comm="syz.4.13425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 1933.452306][T11029] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13429'. [ 1933.515504][T11029] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1934.711023][T15089] Bluetooth: hci1: command 0x0406 tx timeout [ 1934.755467][ T6206] usb 8-1: new high-speed USB device number 7 using dummy_hcd [ 1934.845710][T11059] netlink: 24 bytes leftover after parsing attributes in process `syz.4.13435'. [ 1934.865176][T15089] Bluetooth: hci2: command 0x0406 tx timeout [ 1936.835190][ T6206] usb 8-1: Using ep0 maxpacket: 8 [ 1936.858577][ T6206] usb 8-1: unable to get BOS descriptor or descriptor too short [ 1937.250762][ T6206] usb 8-1: config 4 interface 0 has no altsetting 0 [ 1937.321162][ T6206] usb 8-1: string descriptor 0 read error: -22 [ 1937.334685][ T6206] usb 8-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05 [ 1937.354691][ T6206] usb 8-1: New USB device strings: Mfr=2, Product=0, SerialNumber=3 [ 1937.955421][ T6206] usb 8-1: can't set config #4, error -71 [ 1937.985305][ T6206] usb 8-1: USB disconnect, device number 7 [ 1938.365601][T11071] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13437'. [ 1938.445476][T11071] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1940.880028][T11089] netlink: 24 bytes leftover after parsing attributes in process `syz.7.13441'. [ 1944.489830][T11107] binder: 11103:11107 ioctl c06864ce 200000000600 returned -22 [ 1944.499841][T11107] random: crng reseeded on system resumption [ 1944.554039][T11108] binder: 11103:11108 ioctl c06864b8 2000000001c0 returned -22 [ 1944.564904][T11108] binder: 11103:11108 ioctl c04064a0 200000000a40 returned -22 [ 1944.574965][T11108] binder: 11103:11108 ioctl 80089203 200000000080 returned -22 [ 1945.795220][ T1396] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 1945.975233][ T1396] usb 5-1: Using ep0 maxpacket: 16 [ 1945.975285][ T1387] usb 4-1: new high-speed USB device number 27 using dummy_hcd [ 1945.997995][ T1396] usb 5-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6 [ 1946.015345][ T1396] usb 5-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3 [ 1946.023664][ T1396] usb 5-1: Product: syz [ 1946.043954][ T1396] usb 5-1: Manufacturer: syz [ 1946.055304][ T1396] usb 5-1: SerialNumber: syz [ 1946.076232][ T1396] usb 5-1: config 0 descriptor?? [ 1946.265138][ T1387] usb 4-1: Using ep0 maxpacket: 8 [ 1946.272872][ T1387] usb 4-1: unable to get BOS descriptor or descriptor too short [ 1946.281649][ T1387] usb 4-1: config 4 interface 0 has no altsetting 0 [ 1946.294776][ T1387] usb 4-1: string descriptor 0 read error: -22 [ 1946.302706][ T1387] usb 4-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05 [ 1946.320341][ T1387] usb 4-1: New USB device strings: Mfr=2, Product=0, SerialNumber=3 [ 1946.348874][ T6206] usb 5-1: USB disconnect, device number 10 [ 1946.364226][ T1387] usb 4-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state [ 1946.413690][ T1387] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 1946.462321][ T1387] dvbdev: DVB: registering new adapter (Sigmatek DVB-110) [ 1946.522745][ T1387] usb 4-1: media controller created [ 1946.555133][T11128] netlink: 8 bytes leftover after parsing attributes in process `syz.7.13450'. [ 1946.600058][T11119] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1946.615771][T11119] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1946.657298][T11128] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1946.690234][ T1387] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 1946.885202][ T1387] zl10353_read_register: readreg error (reg=127, ret==0) [ 1947.435595][ T1387] usb 4-1: USB disconnect, device number 27 [ 1947.868321][T11135] netlink: 8 bytes leftover after parsing attributes in process `syz.4.13452'. [ 1947.924290][T11135] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1949.466327][ T28] kauditd_printk_skb: 8 callbacks suppressed [ 1949.466342][ T28] audit: type=1326 audit(1761681564.386:1031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11148 comm="syz.0.13456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 1949.495412][ T28] audit: type=1326 audit(1761681564.396:1032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11148 comm="syz.0.13456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 1949.706599][T11149] netlink: 48 bytes leftover after parsing attributes in process `syz.0.13456'. [ 1949.762062][ T28] audit: type=1326 audit(1761681564.686:1033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11148 comm="syz.0.13456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 1949.915218][ T28] audit: type=1326 audit(1761681564.686:1034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11148 comm="syz.0.13456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 1949.937742][ C1] vkms_vblank_simulate: vblank timer overrun [ 1950.095283][ T28] audit: type=1326 audit(1761681564.686:1035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11148 comm="syz.0.13456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 1950.117931][ C1] vkms_vblank_simulate: vblank timer overrun [ 1950.192063][ T28] audit: type=1326 audit(1761681564.686:1036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11148 comm="syz.0.13456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 1950.224712][T11155] netlink: 48 bytes leftover after parsing attributes in process `syz.4.13458'. [ 1950.394913][ T28] audit: type=1326 audit(1761681564.686:1037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11148 comm="syz.0.13456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 1950.417718][ C1] vkms_vblank_simulate: vblank timer overrun [ 1952.392495][ T28] audit: type=1326 audit(1761681564.686:1038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11148 comm="syz.0.13456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 1952.416126][ T28] audit: type=1326 audit(1761681564.686:1039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11148 comm="syz.0.13456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 1952.439022][ T28] audit: type=1326 audit(1761681564.686:1040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11148 comm="syz.0.13456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 1952.693418][T11169] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1952.878215][T11170] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13459'. [ 1953.242554][T11170] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1953.857055][T11169] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1954.111093][T11169] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1954.761830][T11169] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1954.865463][T20245] usb 4-1: new high-speed USB device number 28 using dummy_hcd [ 1955.026214][T11190] netlink: 24 bytes leftover after parsing attributes in process `syz.4.13465'. [ 1956.255335][T20245] usb 4-1: config index 0 descriptor too short (expected 52, got 36) [ 1956.263551][T20245] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1956.385498][T15089] Bluetooth: hci2: command 0x0406 tx timeout [ 1956.895983][T11169] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1957.590717][T20245] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 196, using maximum allowed: 30 [ 1957.601870][T20245] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 196 [ 1957.616829][T20245] usb 4-1: string descriptor 0 read error: -71 [ 1957.624059][T20245] usb 4-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.00 [ 1957.634211][T11169] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1957.642494][T20245] usb 4-1: New USB device strings: Mfr=9, Product=0, SerialNumber=0 [ 1957.659505][T20245] usb 4-1: config 0 descriptor?? [ 1957.662689][T11169] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1957.682914][T20245] usb 4-1: can't set config #0, error -71 [ 1957.696462][T20245] usb 4-1: USB disconnect, device number 28 [ 1957.750144][T11169] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1957.911047][T11197] netlink: 24 bytes leftover after parsing attributes in process `syz.3.13467'. [ 1962.457798][T11223] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13473'. [ 1962.504455][T11223] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1965.667810][T11241] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13477'. [ 1965.755503][T11241] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1966.338397][T11263] netlink: 24 bytes leftover after parsing attributes in process `syz.4.13480'. [ 1967.920231][T11267] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1968.143860][T11267] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1968.299014][T11267] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1968.511670][T11267] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1970.430153][T11267] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1970.485566][T11267] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1970.554784][T11267] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1970.611842][T11267] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1971.026012][T11301] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1971.083177][T11301] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1971.174317][T11301] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1971.273892][T11301] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1971.302442][T15089] Bluetooth: hci2: unexpected event for opcode 0x0c38 [ 1971.421277][T11301] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1971.443158][T11301] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1971.461602][T11301] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1971.481474][T11301] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1973.564357][T11333] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1974.284211][T11333] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1974.377239][T11333] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1974.478543][T11333] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1975.112209][T11333] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1975.140395][T11333] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1975.203246][T11333] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1975.316787][T11333] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1975.342306][T11350] netlink: 8 bytes leftover after parsing attributes in process `syz.7.13498'. [ 1975.520468][T11350] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1976.791666][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 1977.424125][T11365] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1978.343726][T11377] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1979.032597][T11365] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1979.244548][T11377] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1979.481783][T11365] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1979.517658][T11385] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13507'. [ 1979.593291][T11385] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1979.690377][T11377] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1980.203999][T11365] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1980.422910][T11377] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1980.783228][T11365] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1980.854866][T11365] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1980.909076][T11365] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1980.953049][T11365] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1981.152668][T15089] Bluetooth: hci3: SCO packet for unknown connection handle 0 [ 1981.695468][T17965] usb 8-1: new high-speed USB device number 8 using dummy_hcd [ 1981.947209][T17965] usb 8-1: config index 0 descriptor too short (expected 52, got 36) [ 1981.965450][T17965] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 196, using maximum allowed: 30 [ 1981.984103][T17965] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1982.005630][T17965] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 196 [ 1982.037448][T17965] usb 8-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.00 [ 1982.079911][T17965] usb 8-1: New USB device strings: Mfr=9, Product=0, SerialNumber=0 [ 1982.111727][T17965] usb 8-1: Manufacturer: syz [ 1982.124377][T17965] usb 8-1: config 0 descriptor?? [ 1982.136414][T17965] usbhid 8-1:0.0: couldn't find an input interrupt endpoint [ 1982.181928][T11377] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1982.389254][T11377] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1982.413799][T11377] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1982.451074][T11377] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1983.254975][T11410] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1983.267438][T11410] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1983.284788][T11404] netlink: 8 bytes leftover after parsing attributes in process `syz.4.13512'. [ 1983.311064][T11404] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1983.432178][T21850] Bluetooth: hci2: command 0x0406 tx timeout [ 1984.346856][ T6717] usb 8-1: USB disconnect, device number 8 [ 1984.662506][T11423] netlink: 32 bytes leftover after parsing attributes in process `syz.7.13517'. [ 1986.398074][T21850] Bluetooth: hci3: SCO packet for unknown connection handle 0 [ 1989.535180][T11425] usb 4-1: new high-speed USB device number 29 using dummy_hcd [ 1989.699033][T11452] netlink: 8 bytes leftover after parsing attributes in process `syz.7.13522'. [ 1989.855752][T11452] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1989.915123][T11425] usb 4-1: Using ep0 maxpacket: 8 [ 1989.941377][T11425] usb 4-1: config 0 interface 0 has no altsetting 0 [ 1989.976141][T11425] usb 4-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 1990.108970][T11425] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1990.256441][T11425] usb 4-1: config 0 descriptor?? [ 1990.975629][T11425] mcp2221 0003:04D8:00DD.0030: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.3-1/input0 [ 1991.785295][ T6717] usb 4-1: USB disconnect, device number 29 [ 1992.115199][T11425] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 1992.255135][T17965] usb 8-1: new high-speed USB device number 9 using dummy_hcd [ 1992.305612][T11425] usb 5-1: Using ep0 maxpacket: 8 [ 1992.313678][T11425] usb 5-1: config 0 interface 0 has no altsetting 0 [ 1992.320361][T11425] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 1992.329654][T11425] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1992.350779][T11425] usb 5-1: config 0 descriptor?? [ 1992.442772][T17965] usb 8-1: config index 0 descriptor too short (expected 23569, got 27) [ 1992.451311][T17965] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1992.461640][T17965] usb 8-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1992.478322][T17965] usb 8-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 1992.491776][T17965] usb 8-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 1992.500149][T17965] usb 8-1: Manufacturer: syz [ 1992.507639][T17965] usb 8-1: config 0 descriptor?? [ 1992.524993][T17965] igorplugusb 8-1:0.0: incorrect number of endpoints [ 1992.755464][T17965] usb 8-1: USB disconnect, device number 9 [ 1992.771421][T11425] mcp2221 0003:04D8:00DD.0031: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.4-1/input0 [ 1993.239572][ T1394] usb 5-1: USB disconnect, device number 11 [ 1994.368775][T11508] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1994.581495][T11508] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1994.946421][T11508] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1995.254101][T11508] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1995.867870][T11508] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1995.921723][T11508] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1995.943004][T11508] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1995.973226][T11508] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1996.128632][T11530] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13538'. [ 1996.171719][T11530] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1998.025214][ T6717] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 1998.226985][ T6717] usb 5-1: config index 0 descriptor too short (expected 23569, got 27) [ 1998.239092][ T6717] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1998.285332][ T6717] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1998.334398][ T6717] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 1998.352734][ T6717] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 1998.425301][ T6717] usb 5-1: Manufacturer: syz [ 1998.435644][ T6717] usb 5-1: config 0 descriptor?? [ 1998.447631][ T6717] igorplugusb 5-1:0.0: incorrect number of endpoints [ 1998.505965][T11557] netlink: 32 bytes leftover after parsing attributes in process `syz.0.13544'. [ 1998.810561][ T6717] usb 5-1: USB disconnect, device number 12 [ 1999.089075][T11561] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13545'. [ 1999.157146][T11561] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2000.392588][T11569] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2000.692888][T11569] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2000.840933][T11569] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2001.254343][T11569] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2001.380391][T11579] netlink: 8 bytes leftover after parsing attributes in process `syz.7.13548'. [ 2001.470607][T11579] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2003.077034][T11582] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13549'. [ 2003.092580][T11582] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2003.661671][T11588] netlink: 8 bytes leftover after parsing attributes in process `syz.7.13550'. [ 2003.705007][T11588] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2004.803903][T11602] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2004.922834][T11602] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2005.053856][T11602] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2005.227937][T11602] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2005.326491][T11569] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2005.393425][T11569] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2005.421922][T11569] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2005.479500][T11569] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2005.555646][T11602] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2005.610296][T11602] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2005.684814][T11602] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2005.736758][T11602] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2005.927105][T11619] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2006.190766][T11619] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2006.609406][T11619] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2006.907367][T11630] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13560'. [ 2007.001132][T11630] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2007.664671][T11619] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2008.152377][ T28] kauditd_printk_skb: 48 callbacks suppressed [ 2008.152395][ T28] audit: type=1326 audit(1761681623.076:1089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11633 comm="syz.7.13561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6c5f8efc9 code=0x7ffc0000 [ 2008.234425][ T28] audit: type=1326 audit(1761681623.076:1090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11633 comm="syz.7.13561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6c5f8efc9 code=0x7ffc0000 [ 2008.266156][ T28] audit: type=1326 audit(1761681623.116:1091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11633 comm="syz.7.13561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=129 compat=0 ip=0x7ff6c5f8efc9 code=0x7ffc0000 [ 2008.314191][ T28] audit: type=1326 audit(1761681623.116:1092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11633 comm="syz.7.13561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6c5f8efc9 code=0x7ffc0000 [ 2008.343316][ T28] audit: type=1326 audit(1761681623.116:1093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11633 comm="syz.7.13561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6c5f8efc9 code=0x7ffc0000 [ 2008.366358][T11634] netlink: 48 bytes leftover after parsing attributes in process `syz.7.13561'. [ 2008.503483][ T28] audit: type=1326 audit(1761681623.316:1094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11633 comm="syz.7.13561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6c5f8efc9 code=0x7ffc0000 [ 2008.527243][ T28] audit: type=1326 audit(1761681623.316:1095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11633 comm="syz.7.13561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6c5f8efc9 code=0x7ffc0000 [ 2008.550309][ T28] audit: type=1326 audit(1761681623.316:1096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11633 comm="syz.7.13561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff6c5f8efc9 code=0x7ffc0000 [ 2008.573395][ T28] audit: type=1326 audit(1761681623.316:1097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11633 comm="syz.7.13561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6c5f8efc9 code=0x7ffc0000 [ 2008.637168][ T28] audit: type=1326 audit(1761681623.316:1098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11633 comm="syz.7.13561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6c5f8efc9 code=0x7ffc0000 [ 2009.084955][T11651] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2009.197827][T11651] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2009.573986][T11651] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2009.807858][T11651] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2010.465219][T15089] Bluetooth: hci2: command 0x0406 tx timeout [ 2010.754061][T11651] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2010.814193][T11651] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2010.877911][T11651] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2010.930122][T11651] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2011.026531][T11662] netlink: 104 bytes leftover after parsing attributes in process `syz.0.13566'. [ 2011.366941][T11671] netlink: 24 bytes leftover after parsing attributes in process `syz.0.13570'. [ 2012.140080][T11619] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2012.580634][T11619] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2012.590707][T11667] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13567'. [ 2012.620154][T11667] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2012.663721][T11619] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2012.699932][T11619] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2012.839498][T11684] random: crng reseeded on system resumption [ 2014.249500][T11691] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13574'. [ 2014.268373][T11691] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2014.711352][T11703] random: crng reseeded on system resumption [ 2014.874210][T11701] netlink: 24 bytes leftover after parsing attributes in process `syz.0.13576'. [ 2015.537717][T11713] netlink: 24 bytes leftover after parsing attributes in process `syz.7.13580'. [ 2017.448403][ T28] kauditd_printk_skb: 14 callbacks suppressed [ 2017.448420][ T28] audit: type=1326 audit(1761681632.346:1113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11709 comm="syz.3.13579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 2017.550687][T11715] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13578'. [ 2017.665775][T11715] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2017.683070][ T28] audit: type=1326 audit(1761681632.346:1114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11709 comm="syz.3.13579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 2017.759650][T11710] netlink: 48 bytes leftover after parsing attributes in process `syz.3.13579'. [ 2018.014315][ T28] audit: type=1326 audit(1761681632.936:1115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11709 comm="syz.3.13579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 2018.517776][ T28] audit: type=1326 audit(1761681632.966:1116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11709 comm="syz.3.13579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 2018.616454][T11723] random: crng reseeded on system resumption [ 2019.009520][ T28] audit: type=1326 audit(1761681633.756:1117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11709 comm="syz.3.13579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb9e8d8d810 code=0x7ffc0000 [ 2019.089069][ T28] audit: type=1326 audit(1761681633.756:1118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11709 comm="syz.3.13579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fb9e8d907f7 code=0x7ffc0000 [ 2019.176400][ T28] audit: type=1326 audit(1761681633.756:1119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11709 comm="syz.3.13579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 2019.233623][ T28] audit: type=1326 audit(1761681633.756:1120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11709 comm="syz.3.13579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fb9e8d907f7 code=0x7ffc0000 [ 2019.398556][ T28] audit: type=1326 audit(1761681633.756:1121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11709 comm="syz.3.13579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fb9e8d8dc2a code=0x7ffc0000 [ 2019.850547][ T28] audit: type=1326 audit(1761681633.756:1122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11709 comm="syz.3.13579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 2020.105243][ T6206] usb 8-1: new high-speed USB device number 10 using dummy_hcd [ 2020.878102][T15089] Bluetooth: hci2: command 0x0406 tx timeout [ 2021.214087][T11739] netlink: 8 bytes leftover after parsing attributes in process `syz.4.13584'. [ 2021.234033][T11739] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2021.252107][T11731] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13582'. [ 2021.267983][ T6206] usb 8-1: config index 0 descriptor too short (expected 52, got 36) [ 2021.302150][ T6206] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 196, using maximum allowed: 30 [ 2021.324544][ T6206] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 2021.660859][T11731] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2021.765343][ T6206] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 196 [ 2021.816464][ T6206] usb 8-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.00 [ 2021.859839][ T6206] usb 8-1: New USB device strings: Mfr=9, Product=0, SerialNumber=0 [ 2021.882069][T11747] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13587'. [ 2021.912185][ T6206] usb 8-1: Manufacturer: syz [ 2021.931609][ T6206] usb 8-1: config 0 descriptor?? [ 2021.957753][T11747] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2022.945441][T15089] Bluetooth: hci2: command 0x0406 tx timeout [ 2023.575803][ T28] kauditd_printk_skb: 7 callbacks suppressed [ 2023.575818][ T28] audit: type=1326 audit(1761681638.496:1130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11755 comm="syz.3.13590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 2023.605562][ T28] audit: type=1326 audit(1761681638.506:1131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11755 comm="syz.3.13590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 2023.628086][ C0] vkms_vblank_simulate: vblank timer overrun [ 2023.634519][ T28] audit: type=1326 audit(1761681638.506:1132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11755 comm="syz.3.13590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=129 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 2023.658671][ T28] audit: type=1326 audit(1761681638.506:1133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11755 comm="syz.3.13590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 2023.685680][ T28] audit: type=1326 audit(1761681638.506:1134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11755 comm="syz.3.13590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 2023.711804][ T28] audit: type=1326 audit(1761681638.506:1135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11755 comm="syz.3.13590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 2023.712066][T11756] netlink: 48 bytes leftover after parsing attributes in process `syz.3.13590'. [ 2023.743347][ T28] audit: type=1326 audit(1761681638.506:1136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11755 comm="syz.3.13590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 2023.929762][ T28] audit: type=1326 audit(1761681638.516:1137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11755 comm="syz.3.13590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 2023.970023][ T6206] usbhid 8-1:0.0: can't add hid device: -71 [ 2024.066880][ T28] audit: type=1326 audit(1761681638.516:1138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11755 comm="syz.3.13590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 2024.337082][ T28] audit: type=1326 audit(1761681638.516:1139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11755 comm="syz.3.13590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 2024.359736][ C0] vkms_vblank_simulate: vblank timer overrun [ 2024.566721][ T6206] usbhid: probe of 8-1:0.0 failed with error -71 [ 2024.581426][ T6206] usb 8-1: USB disconnect, device number 10 [ 2024.624337][T11753] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13589'. [ 2024.669934][T11753] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2024.719786][T11776] netlink: 104 bytes leftover after parsing attributes in process `syz.3.13593'. [ 2024.758269][T11764] netlink: 48 bytes leftover after parsing attributes in process `syz.4.13592'. [ 2025.437463][T11779] random: crng reseeded on system resumption [ 2026.065140][T11020] Bluetooth: hci2: command 0x0406 tx timeout [ 2026.221958][T11792] netlink: 24 bytes leftover after parsing attributes in process `syz.0.13599'. [ 2026.395944][T11796] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2026.510967][T11796] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2026.557343][T11802] netlink: 24 bytes leftover after parsing attributes in process `syz.7.13602'. [ 2027.035379][T21850] Bluetooth: hci4: Entering manufacturer mode failed (-110) [ 2027.035426][T11020] Bluetooth: hci4: command 0xfc11 tx timeout [ 2027.467557][T11796] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2027.854256][T11796] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2028.094910][T11817] netlink: 8 bytes leftover after parsing attributes in process `syz.7.13604'. [ 2028.134151][T11817] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2028.149729][T21850] Bluetooth: hci2: command 0x0406 tx timeout [ 2029.113149][T11796] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2029.134745][T11796] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2029.276901][T11796] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2029.361921][T11796] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2029.673131][T11825] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2029.789902][T11825] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2029.899560][T11825] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2029.965159][ T6205] usb 4-1: new high-speed USB device number 30 using dummy_hcd [ 2030.012917][T11825] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2030.265351][ T6205] usb 4-1: Using ep0 maxpacket: 8 [ 2030.300317][ T6205] usb 4-1: config 0 interface 0 has no altsetting 0 [ 2030.307018][ T6205] usb 4-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 2030.324510][ T6205] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 2030.362892][ T6205] usb 4-1: config 0 descriptor?? [ 2030.541581][T11836] netlink: 8 bytes leftover after parsing attributes in process `syz.7.13609'. [ 2030.599563][T11836] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2030.732527][ T28] kauditd_printk_skb: 53 callbacks suppressed [ 2030.732541][ T28] audit: type=1800 audit(1761681645.586:1193): pid=11835 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.13610" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 2032.951282][ T6205] usbhid 4-1:0.0: can't add hid device: -71 [ 2032.967583][ T6205] usbhid: probe of 4-1:0.0 failed with error -71 [ 2033.032223][ T6205] usb 4-1: USB disconnect, device number 30 [ 2033.628545][T11847] netlink: 104 bytes leftover after parsing attributes in process `syz.4.13612'. [ 2033.693995][ T135] Bluetooth: hci4: Frame reassembly failed (-84) [ 2033.904255][T11851] netdevsim netdevsim7 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2033.969033][T11851] netdevsim netdevsim7 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2034.070087][T11851] netdevsim netdevsim7 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2034.204404][T11851] netdevsim netdevsim7 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2034.344784][T11851] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2034.468840][T11851] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2034.531585][T11851] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2034.594813][T11851] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2035.015618][T11861] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13615'. [ 2035.061179][T11861] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2035.524718][T11866] netdevsim netdevsim7 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2035.755205][T11020] Bluetooth: hci4: command 0xfc11 tx timeout [ 2035.763200][T21850] Bluetooth: hci4: Entering manufacturer mode failed (-110) [ 2035.784338][T11866] netdevsim netdevsim7 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2036.214151][T11866] netdevsim netdevsim7 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2036.304458][T11866] netdevsim netdevsim7 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2036.883317][T11825] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2036.932517][T11825] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2036.958860][T11825] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2037.008687][T11825] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2037.816334][T11889] netlink: 8 bytes leftover after parsing attributes in process `syz.4.13621'. [ 2037.934950][T11889] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2038.275681][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 2038.313826][T11888] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13620'. [ 2038.705346][T11888] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2039.403232][T11895] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13622'. [ 2039.815189][T11895] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2042.264500][T11913] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2042.324875][T11912] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13626'. [ 2042.389367][T11912] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2042.747503][T11913] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2042.810448][T11866] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2042.849492][T11866] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2043.250097][T11866] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2043.320133][T11866] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2043.428808][T11913] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2043.501027][T11913] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2043.922904][T11913] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2043.963530][T11913] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2043.991138][T11913] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2044.021907][T11913] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2044.731010][T11933] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13632'. [ 2044.822436][T11933] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2044.845983][ T28] audit: type=1326 audit(1761681659.776:1194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11935 comm="syz.0.13633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 2044.888942][ T28] audit: type=1326 audit(1761681659.776:1195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11935 comm="syz.0.13633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 2044.929195][T11936] netlink: 48 bytes leftover after parsing attributes in process `syz.0.13633'. [ 2044.967753][ T28] audit: type=1326 audit(1761681659.806:1196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11935 comm="syz.0.13633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=129 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 2045.312176][ T28] audit: type=1326 audit(1761681659.806:1197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11935 comm="syz.0.13633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 2045.362597][ T28] audit: type=1326 audit(1761681659.806:1198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11935 comm="syz.0.13633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 2045.406973][ T28] audit: type=1326 audit(1761681659.806:1199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11935 comm="syz.0.13633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 2045.471537][ T28] audit: type=1326 audit(1761681659.806:1200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11935 comm="syz.0.13633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 2045.525302][ T28] audit: type=1326 audit(1761681659.806:1201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11935 comm="syz.0.13633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 2045.573136][ T28] audit: type=1326 audit(1761681659.806:1202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11935 comm="syz.0.13633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 2045.597738][ T28] audit: type=1326 audit(1761681659.806:1203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11935 comm="syz.0.13633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 2045.723614][T11944] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2045.975113][T11425] usb 8-1: new high-speed USB device number 11 using dummy_hcd [ 2046.013205][T11944] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2046.165159][T11425] usb 8-1: Using ep0 maxpacket: 8 [ 2046.188980][T11425] usb 8-1: config 0 interface 0 has no altsetting 0 [ 2046.201826][T11425] usb 8-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 2046.211138][T11425] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 2046.241134][T11944] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2046.290523][T11950] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13636'. [ 2046.307244][T11425] usb 8-1: config 0 descriptor?? [ 2046.417663][T11950] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2046.589758][T11944] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2047.343414][T11425] usbhid 8-1:0.0: can't add hid device: -71 [ 2047.352740][T11425] usbhid: probe of 8-1:0.0 failed with error -71 [ 2047.371229][T11425] usb 8-1: USB disconnect, device number 11 [ 2047.769763][T11944] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2047.812924][T11944] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2047.846638][T11944] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2047.886437][T11944] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2048.739029][T11974] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13638'. [ 2049.301752][T11974] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2049.628200][T11976] netlink: 8 bytes leftover after parsing attributes in process `syz.4.13642'. [ 2049.643489][T11979] netlink: 24 bytes leftover after parsing attributes in process `syz.0.13643'. [ 2049.975356][T11976] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2050.385761][T21850] Bluetooth: hci3: SCO packet for unknown connection handle 0 [ 2052.189128][T11994] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2052.277607][T11994] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2052.355868][T11994] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2052.509769][T12000] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13645'. [ 2052.609935][T12000] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2052.752253][T11994] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2054.195851][T12001] netlink: 8 bytes leftover after parsing attributes in process `syz.7.13648'. [ 2054.455522][T12001] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2054.948368][ T7909] Bluetooth: hci4: Frame reassembly failed (-84) [ 2055.125203][ T6206] usb 4-1: new high-speed USB device number 31 using dummy_hcd [ 2055.325151][ T6206] usb 4-1: Using ep0 maxpacket: 8 [ 2055.333013][ T6206] usb 4-1: config 0 interface 0 has no altsetting 0 [ 2055.339850][ T6206] usb 4-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 2055.348937][ T6206] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 2055.359520][ T6206] usb 4-1: config 0 descriptor?? [ 2055.526353][T12018] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2055.590872][T12018] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2055.659625][T12018] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2055.731594][T12018] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2055.789673][ T6206] usbhid 4-1:0.0: can't add hid device: -71 [ 2055.811490][ T6206] usbhid: probe of 4-1:0.0 failed with error -71 [ 2055.817409][T11994] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2055.824847][ T6206] usb 4-1: USB disconnect, device number 31 [ 2055.846499][T11994] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2055.862280][T11994] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2055.903599][T11994] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2055.973721][T12018] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2056.020633][T12018] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2056.040524][T12018] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2056.078038][T12018] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2057.052805][T11020] Bluetooth: hci4: command 0xfc11 tx timeout [ 2057.052921][T21850] Bluetooth: hci4: Entering manufacturer mode failed (-110) [ 2057.970434][T12030] netlink: 8 bytes leftover after parsing attributes in process `syz.4.13656'. [ 2057.984619][T12030] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2058.060084][T12036] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13664'. [ 2058.237686][ T6205] usb 8-1: new high-speed USB device number 12 using dummy_hcd [ 2059.734575][T12036] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2059.925521][ T6205] usb 8-1: Using ep0 maxpacket: 8 [ 2059.932887][ T6205] usb 8-1: config 0 interface 0 has no altsetting 0 [ 2059.955610][ T6205] usb 8-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 2059.966169][ T6205] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 2059.976850][ T6205] usb 8-1: config 0 descriptor?? [ 2060.005821][ T6206] usb 4-1: new high-speed USB device number 32 using dummy_hcd [ 2060.223529][ T6206] usb 4-1: config index 0 descriptor too short (expected 52, got 36) [ 2060.233964][ T6206] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 196, using maximum allowed: 30 [ 2060.245316][ T6206] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 2060.255683][ T6206] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 196 [ 2060.275371][ T6206] usb 4-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.00 [ 2060.280715][T12051] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2060.287398][ T6206] usb 4-1: New USB device strings: Mfr=9, Product=0, SerialNumber=0 [ 2060.311937][ T6206] usb 4-1: Manufacturer: syz [ 2060.331087][ T6206] usb 4-1: config 0 descriptor?? [ 2060.364226][T12051] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2060.452682][ T6205] usbhid 8-1:0.0: can't add hid device: -71 [ 2060.464121][T12051] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2060.482139][ T6205] usbhid: probe of 8-1:0.0 failed with error -71 [ 2060.506327][ T6205] usb 8-1: USB disconnect, device number 12 [ 2060.577002][T12051] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2061.345277][T11020] Bluetooth: hci2: command 0x0406 tx timeout [ 2062.181572][ T6206] usbhid 4-1:0.0: can't add hid device: -71 [ 2062.205947][ T6206] usbhid: probe of 4-1:0.0 failed with error -71 [ 2062.226872][ T6206] usb 4-1: USB disconnect, device number 32 [ 2062.528157][T12077] netlink: 24 bytes leftover after parsing attributes in process `syz.4.13667'. [ 2064.741163][T12074] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2064.895899][T12074] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2065.022543][T12074] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2065.143126][T12074] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2065.343549][T12051] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2065.437335][T12051] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2065.459499][T12051] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2065.479794][T12051] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2065.537655][T12074] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2065.592905][T12074] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2065.772894][T12074] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2065.851984][T12074] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2066.405783][ T28] kauditd_printk_skb: 58 callbacks suppressed [ 2066.405799][ T28] audit: type=1326 audit(1761681681.336:1262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12098 comm="syz.3.13672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 2066.829101][ T28] audit: type=1326 audit(1761681681.506:1263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12098 comm="syz.3.13672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 2067.017791][ T28] audit: type=1326 audit(1761681681.936:1264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12098 comm="syz.3.13672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb9e8d8d810 code=0x7ffc0000 [ 2067.235599][ T28] audit: type=1326 audit(1761681681.936:1265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12098 comm="syz.3.13672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fb9e8d907f7 code=0x7ffc0000 [ 2067.258320][ T28] audit: type=1326 audit(1761681681.936:1266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12098 comm="syz.3.13672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 2067.283074][ T28] audit: type=1326 audit(1761681681.936:1267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12098 comm="syz.3.13672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fb9e8d907f7 code=0x7ffc0000 [ 2067.306790][ T28] audit: type=1326 audit(1761681681.936:1268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12098 comm="syz.3.13672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fb9e8d8dc2a code=0x7ffc0000 [ 2067.331489][ T28] audit: type=1326 audit(1761681681.936:1269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12098 comm="syz.3.13672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 2067.355429][ T28] audit: type=1326 audit(1761681681.936:1270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12098 comm="syz.3.13672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 2067.378972][ T28] audit: type=1326 audit(1761681681.936:1271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12098 comm="syz.3.13672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb9e8d8efc9 code=0x7ffc0000 [ 2067.919975][T12115] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 Stopping sshd: [ 2068.189777][T12115] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2068.384612][T12115] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 stopped /usr/sbin/sshd (pid 5548) OK [ 2068.813594][T12115] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 Stopping crond: [ 2069.106575][T11020] Bluetooth: hci2: command 0x0406 tx timeout stopped /usr/sbin/crond (pid 5531) OK [ 2070.867892][T12128] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13675'. [ 2070.949810][T12133] random: crng reseeded on system resumption [ 2073.392131][T12128] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2073.534487][T12115] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2073.574148][ T28] kauditd_printk_skb: 6 callbacks suppressed [ 2073.574162][ T28] audit: type=1326 audit(1761681688.496:1278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12137 comm="syz.4.13677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 2073.636466][T12115] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2073.875083][ T28] audit: type=1326 audit(1761681688.496:1279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12137 comm="syz.4.13677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 2075.745446][T11020] Bluetooth: hci2: command 0x0406 tx timeout [ 2075.820642][ T28] audit: type=1326 audit(1761681688.506:1280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12137 comm="syz.4.13677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=129 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 2075.900382][T12115] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2075.909219][ T28] audit: type=1326 audit(1761681688.506:1281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12137 comm="syz.4.13677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 2076.030321][T12115] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2076.055124][ T28] audit: type=1326 audit(1761681688.506:1282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12137 comm="syz.4.13677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 Stopping dhcpcd... [ 2076.169617][ T28] audit: type=1326 audit(1761681688.506:1283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12137 comm="syz.4.13677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 2076.201603][ T28] audit: type=1326 audit(1761681688.506:1284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12137 comm="syz.4.13677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 2076.224182][ C1] vkms_vblank_simulate: vblank timer overrun [ 2076.258882][T12146] netdevsim netdevsim7 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2076.354068][ T28] audit: type=1326 audit(1761681688.506:1285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12137 comm="syz.4.13677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 2076.505463][T12146] netdevsim netdevsim7 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2076.590275][ T28] audit: type=1326 audit(1761681688.506:1286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12137 comm="syz.4.13677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 no /sbin/dhcpcd found; none killed [ 2076.926773][ T28] audit: type=1326 audit(1761681688.506:1287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12137 comm="syz.4.13677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 2077.053873][T12146] netdevsim netdevsim7 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 Stopping network: [ 2077.347954][T12146] netdevsim netdevsim7 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2077.596569][T12164] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 2077.680311][T12164] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 2077.714572][T12164] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 2077.739461][T12146] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2077.783707][T12146] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2077.824879][T12146] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2077.921981][T12146] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0 OK Stopping iptables: OK Stopping system message bus: [ 2079.526155][ T28] kauditd_printk_skb: 39 callbacks suppressed [ 2079.526172][ T28] audit: type=1326 audit(1761681694.456:1327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12183 comm="syz.4.13685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 2079.584390][ T28] audit: type=1326 audit(1761681694.456:1328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12183 comm="syz.4.13685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 2079.611563][T12190] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 2081.809194][T21850] Bluetooth: hci2: command 0x0406 tx timeout [ 2081.818909][T12191] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 2081.934558][ T28] audit: type=1326 audit(1761681694.486:1329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12183 comm="syz.4.13685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=129 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 2081.992134][T12195] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13684'. [ 2082.049374][T12195] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2082.155433][ T28] audit: type=1326 audit(1761681694.486:1330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12183 comm="syz.4.13685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 2082.269021][ T28] audit: type=1326 audit(1761681694.486:1331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12183 comm="syz.4.13685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 2082.362953][ T28] audit: type=1326 audit(1761681694.496:1332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12183 comm="syz.4.13685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 2082.451639][ T28] audit: type=1326 audit(1761681694.496:1333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12183 comm="syz.4.13685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 2082.505248][ T28] audit: type=1326 audit(1761681694.496:1334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12183 comm="syz.4.13685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 2082.532814][ T28] audit: type=1326 audit(1761681694.506:1335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12183 comm="syz.4.13685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 2082.655290][ T28] audit: type=1326 audit(1761681694.506:1336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12183 comm="syz.4.13685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff41578efc9 code=0x7ffc0000 [ 2082.701024][T12198] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2083.728547][T12198] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 done [ 2083.898840][T12210] netdevsim netdevsim7 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2083.970018][T12198] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2084.105963][T12210] netdevsim netdevsim7 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2084.212288][T12198] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2084.400047][T12210] netdevsim netdevsim7 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2084.553651][ T28] kauditd_printk_skb: 88 callbacks suppressed [ 2084.553665][ T28] audit: type=1326 audit(1761681699.476:1425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12212 comm="syz.0.13690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 2084.599554][T12210] netdevsim netdevsim7 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2084.884331][ T28] audit: type=1326 audit(1761681699.516:1426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12212 comm="syz.0.13690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 2085.075686][ T28] audit: type=1326 audit(1761681699.516:1427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12212 comm="syz.0.13690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 2085.098671][ T28] audit: type=1326 audit(1761681699.536:1428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12212 comm="syz.0.13690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 2085.123356][ T28] audit: type=1326 audit(1761681699.536:1429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12212 comm="syz.0.13690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 2085.146586][ T28] audit: type=1326 audit(1761681699.536:1430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12212 comm="syz.0.13690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 2085.169498][ T28] audit: type=1326 audit(1761681699.536:1431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12212 comm="syz.0.13690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 2085.192206][T12198] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2085.245306][ T28] audit: type=1326 audit(1761681699.536:1432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12212 comm="syz.0.13690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 2085.269188][T12198] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2085.327917][ T28] audit: type=1326 audit(1761681699.536:1433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12212 comm="syz.0.13690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d2738efc9 code=0x7ffc0000 [ 2085.444063][T12198] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2085.462884][ T28] audit: type=1326 audit(1761681699.536:1434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12212 comm="syz.0.13690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f6d2738d810 code=0x7ffc0000 [ 2085.530021][T12198] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 killall: udevd: no process killed Stopping klogd: [ 2088.120482][T12210] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2088.352873][T12210] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0 start-stop-daemon: warning: killing process 5146: No such process FAIL [ 2088.454982][T12210] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2088.512792][T12210] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0 Stopping acpid: [ 2089.310940][T12249] kthread_run failed with err -4 acpid: exiting [ 2089.581090][T12259] netdevsim netdevsim7 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2089.609654][T11020] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 2089.691412][T12259] netdevsim netdevsim7 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2089.956934][T12259] netdevsim netdevsim7 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2090.174054][T12259] netdevsim netdevsim7 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 OK serialport: VM disconnected.