last executing test programs: 1m40.44909981s ago: executing program 3 (id=4873): mkdir(&(0x7f0000000300)='./bus\x00', 0x0) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8000000) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f00000009c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000040)={[{@index_on}, {@workdir={'workdir', 0x3d, './bus'}}]}) 1m40.304775115s ago: executing program 3 (id=4877): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) 1m40.164924199s ago: executing program 3 (id=4878): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) syz_emit_ethernet(0x256, &(0x7f0000000c00)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000086dd60"], 0x0) 1m39.898648866s ago: executing program 3 (id=4881): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendmmsg$inet(r2, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40040) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000000)='./bus\x00', 0x280008a, &(0x7f0000000180)=ANY=[@ANYBLOB='shortname=lower,shortname=win95,rodir,iocharset=default,uni_xlate=0,nonumtail=1,utf8=0,flush,rodir,shortname=win95,shortname=winnt,shortname=win95,showexec,uni_xlate=0,utf8=0,utf8=0,uni_xlate=0,shortname=mixed,\x00', @ANYRES8, @ANYRES16=0x0, @ANYRESHEX=0x0], 0x1, 0x2c3, &(0x7f00000002c0)="$eJzs3b1ra2UYAPDnpPlCh0RwEsEDOjhdbu/qkiK9cDGTkkEd9OK9F6QJQgsFPzDt5Oqim6uLILj5T7j4HwiugpsdCkdOzjn5Mo2JNK16f7+lb973efI+7zmnLR3y9P0XR0eP0nhy/tkv0W4nUetFLy6S6EYtKmexoPdlAAD/ZRdZFr9nhW3ykoho764sAGCHtv79/8POSwIAduytt99546DfP3wzTdtxf/TF6SD/yz7/WqwfPIkPYxiP42504jIimyrG97MsG9fTXDdeGY1PB3nm6L2fyvc/+C1ikr8fnehOphbzH/QP99PCXP44r+OZcv9enn8vOvH8iv0f9A/vrciPQTNefXmu/jvRiZ8/iI9iGI8mRRT5UYv4fD9NX8+++uPTd/Py8vxkfDpoTeJmsr0bvjUAAAAAAAAAAAAAAAAAAAAAAPyP3Sl757Ri0r8nnyr77+xd5i8akVa6i/15ivykeqOl/kDjLL6p+vPcTdM0KwNn+fV4oR712zk1AAAAAAAAAAAAAAAAAAAA/LucfPzJ0cPh8PHxtQyqbgDVx/r/6fv05mZeivXBrYhGuVet3HYh5utWxCwr9qqYJGJtGfkhNii12rNoe7A++OyKpeeWa64G332/8aX7dnr2xt8EN6Z7ZZ1ruu/Lg+rpOnqYrL6Grahm2tVD8uN8TDM23Kt51VK21ePXXLnU2frszWcng/GamEjWFfbar8WVK2eS5VM0J1d1ZXp13+fSF2PamzzPs++Uv0im3TqSa/0ZBAAAAAAAAAAAAAAAAAAAFGYf+l2xeL480Zh/UctaOy0NAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAG7M7P//bzEYl8kbBDfj+OSWjwgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMBT4M8AAAD//zAXXTM=") syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) 1m38.986471177s ago: executing program 0 (id=4884): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) mount(0x0, &(0x7f00000000c0)='.\x00', 0x0, 0x1004008, 0x0) 1m38.878673588s ago: executing program 3 (id=4888): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) getpeername$packet(r4, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14) 1m38.716206704s ago: executing program 0 (id=4891): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) clock_gettime(0x0, &(0x7f0000000140)) 1m38.645808271s ago: executing program 0 (id=4894): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendmmsg$inet(r2, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40040) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) syz_clone3(&(0x7f0000000140)={0x4000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 1m38.289526777s ago: executing program 0 (id=4899): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendmmsg$inet(r2, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40040) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000000)='./bus\x00', 0x280008a, &(0x7f0000000180)=ANY=[@ANYBLOB='shortname=lower,shortname=win95,rodir,iocharset=default,uni_xlate=0,nonumtail=1,utf8=0,flush,rodir,shortname=win95,shortname=winnt,shortname=win95,showexec,uni_xlate=0,utf8=0,utf8=0,uni_xlate=0,shortname=mixed,\x00', @ANYRES8, @ANYRES16=0x0, @ANYRESHEX=0x0], 0x1, 0x2c3, &(0x7f00000002c0)="$eJzs3b1ra2UYAPDnpPlCh0RwEsEDOjhdbu/qkiK9cDGTkkEd9OK9F6QJQgsFPzDt5Oqim6uLILj5T7j4HwiugpsdCkdOzjn5Mo2JNK16f7+lb973efI+7zmnLR3y9P0XR0eP0nhy/tkv0W4nUetFLy6S6EYtKmexoPdlAAD/ZRdZFr9nhW3ykoho764sAGCHtv79/8POSwIAduytt99546DfP3wzTdtxf/TF6SD/yz7/WqwfPIkPYxiP42504jIimyrG97MsG9fTXDdeGY1PB3nm6L2fyvc/+C1ikr8fnehOphbzH/QP99PCXP44r+OZcv9enn8vOvH8iv0f9A/vrciPQTNefXmu/jvRiZ8/iI9iGI8mRRT5UYv4fD9NX8+++uPTd/Py8vxkfDpoTeJmsr0bvjUAAAAAAAAAAAAAAAAAAAAAAPyP3Sl757Ri0r8nnyr77+xd5i8akVa6i/15ivykeqOl/kDjLL6p+vPcTdM0KwNn+fV4oR712zk1AAAAAAAAAAAAAAAAAAAA/LucfPzJ0cPh8PHxtQyqbgDVx/r/6fv05mZeivXBrYhGuVet3HYh5utWxCwr9qqYJGJtGfkhNii12rNoe7A++OyKpeeWa64G332/8aX7dnr2xt8EN6Z7ZZ1ruu/Lg+rpOnqYrL6Grahm2tVD8uN8TDM23Kt51VK21ePXXLnU2frszWcng/GamEjWFfbar8WVK2eS5VM0J1d1ZXp13+fSF2PamzzPs++Uv0im3TqSa/0ZBAAAAAAAAAAAAAAAAAAAFGYf+l2xeL480Zh/UctaOy0NAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAG7M7P//bzEYl8kbBDfj+OSWjwgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMBT4M8AAAD//zAXXTM=") syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) 1m38.015919855s ago: executing program 0 (id=4903): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000040)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = dup(r0) sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x4004}, 0x10000) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) linkat(0xffffffffffffff9c, &(0x7f00000003c0)='./cgroup\x00', 0xffffffffffffff9c, &(0x7f0000000100)='./file7\x00', 0x1000) 1m37.013408535s ago: executing program 3 (id=4916): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) write(r0, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) bpf$PROG_LOAD(0x5, 0x0, 0x0) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) r3 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r3, &(0x7f0000000240)={0x2, 0x0, @local}, 0x10) 1m36.830364473s ago: executing program 32 (id=4916): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) write(r0, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) bpf$PROG_LOAD(0x5, 0x0, 0x0) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) r3 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r3, &(0x7f0000000240)={0x2, 0x0, @local}, 0x10) 1m36.158069081s ago: executing program 0 (id=4926): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r4, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c) sendmmsg(r4, &(0x7f0000000e80)=[{{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000040)="c3", 0x1}], 0x1}}], 0x1, 0x0) 1m36.000535506s ago: executing program 33 (id=4926): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r4, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c) sendmmsg(r4, &(0x7f0000000e80)=[{{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000040)="c3", 0x1}], 0x1}}], 0x1, 0x0) 3.78699957s ago: executing program 1 (id=6113): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) r3 = socket$unix(0x1, 0x1, 0x0) bind$unix(r3, &(0x7f0000000380)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) listen(r3, 0x2) connect$unix(r2, &(0x7f0000fce000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc) accept(r3, 0x0, 0x0) 3.711268357s ago: executing program 2 (id=6115): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='auxv\x00') r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mount$binderfs(0x0, &(0x7f0000000080)='./binderfs\x00', 0x0, 0x2010860, 0x0) 3.607510358s ago: executing program 1 (id=6117): socket$kcm(0x21, 0x2, 0x2) openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0) socket(0x10, 0x3, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) memfd_secret(0x80000) socket$nl_netfilter(0x10, 0x3, 0xc) pipe(&(0x7f0000000240)) socket$packet(0x11, 0x3, 0x300) write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000080)={'syz1\x00', {0x1b10, 0x0, 0x1, 0x2}, 0x2f, [0x2, 0x1, 0x704d, 0x1, 0x3, 0x1, 0x2, 0x7d7, 0x4, 0xfffffc01, 0xfffffffb, 0x8, 0x200001, 0x100, 0xfe, 0x4a, 0x7, 0x5, 0x2ca, 0x8, 0x76, 0x8, 0x16, 0x200, 0x40, 0x19b2, 0x8000, 0x7, 0xc1, 0x4000000, 0x7, 0x103, 0xe, 0x7, 0x1, 0x1, 0x5, 0xf, 0x7, 0x10001, 0x9, 0x7f, 0x8, 0x6, 0xb, 0x4, 0x6, 0x40, 0x7f, 0x9, 0x1, 0x6, 0x4, 0x2284919, 0x4, 0x5643fa73, 0xfffeffff, 0x7, 0x800, 0x2, 0x8a, 0x6, 0x1, 0x6], [0xfffffed2, 0x7fffffff, 0xffff, 0x7, 0xe62, 0x3, 0x0, 0x9, 0xc33, 0xf, 0x7, 0x800, 0x6c368000, 0x4, 0x1000007, 0x0, 0x10, 0x5, 0xc, 0x8001, 0x3, 0x7fff, 0x9, 0x0, 0x5, 0x4, 0x4, 0x8, 0x40, 0xc14, 0x80000001, 0x3, 0x3, 0x7, 0x7, 0x8, 0x8, 0x5, 0x4, 0x9, 0x5, 0x3, 0x2, 0x4, 0x0, 0xfff, 0xa4, 0x4, 0x5, 0xd69, 0x9, 0x2f404, 0xf1, 0x3, 0x3, 0x1, 0x6, 0x0, 0x0, 0x6, 0x8, 0x9, 0x4, 0x1000068], [0x1, 0x1, 0x4, 0xfffffffc, 0x0, 0x7fff, 0x405, 0x9, 0x2, 0xffc, 0x7, 0x2, 0xc, 0x7, 0xa, 0xa, 0x6, 0x4, 0x5, 0x5, 0x2, 0x30000000, 0x644, 0x2, 0xfffffffd, 0x7, 0x10000, 0x7f, 0x2, 0xd, 0x400, 0x0, 0x41, 0x81, 0xc99, 0x25a, 0x2, 0xfffffffc, 0x2, 0x5d9fff6, 0x3ff, 0x10ff, 0x4, 0x8, 0x10000, 0xe7, 0x200, 0x7af5, 0x0, 0x9, 0x0, 0xffff, 0x7, 0x6, 0x0, 0x6, 0x9, 0x2000002, 0x3, 0x80, 0x8, 0x0, 0x6, 0x10], [0xffefff80, 0xd5800000, 0x0, 0x4, 0x2, 0x62a, 0x6, 0x407, 0xb343, 0x4, 0x1, 0x8, 0x7, 0x8, 0xffffff81, 0x80000000, 0x5, 0x3, 0x201, 0xfff, 0x3, 0x0, 0x3c65, 0xa, 0x6, 0x80, 0xffffffff, 0x3, 0x2, 0x7, 0x1, 0x7, 0x7, 0x8, 0x1, 0x0, 0x9, 0x17ce, 0x0, 0x3, 0x73ea7d12, 0xe, 0x7, 0x13e, 0x7, 0x8, 0xb757, 0x2, 0x117, 0x996, 0x54, 0x8c1, 0x0, 0x5, 0x5, 0xf, 0x100, 0x10000400, 0x49, 0x5, 0x3, 0xfffffffb, 0xc, 0x2]}, 0x45c) r0 = syz_io_uring_setup(0xd2, &(0x7f0000000500)={0x0, 0x2000000, 0x800, 0x0, 0xc0}, &(0x7f00000002c0)=0x0, &(0x7f0000000640)=0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc}) io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0) 3.563728632s ago: executing program 2 (id=6119): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c12020", 0x44000004, 0x0}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r3, 0x0, 0x0) syz_clone(0xa0801280, 0x0, 0x0, 0x0, 0x0, 0x0) 3.512114727s ago: executing program 1 (id=6120): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) socket$inet(0x2, 0x2, 0x1) 3.418652427s ago: executing program 1 (id=6124): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) 3.351055654s ago: executing program 2 (id=6126): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket(0x10, 0x3, 0x0) getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, &(0x7f0000cab000)) 3.296472429s ago: executing program 1 (id=6128): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendmmsg$inet(r2, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40040) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) mmap(&(0x7f000000c000/0x4000)=nil, 0x4000, 0xa, 0x31, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000048000/0x1000)=nil, 0x1000, 0xb, 0x31, 0xffffffffffffffff, 0x0) futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000)=0x2000000, 0x300) 3.243000515s ago: executing program 2 (id=6129): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8=0x0, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x20240, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0) fcntl$addseals(0xffffffffffffffff, 0x409, 0x7) write(r3, &(0x7f0000004200)='t', 0x1) sendfile(r3, r2, 0x0, 0x3ffff) sendfile(r3, r2, 0x0, 0x7ffff000) 3.239109885s ago: executing program 5 (id=6130): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0) r4 = fsmount(r3, 0x0, 0x0) fchdir(r4) 3.202459688s ago: executing program 6 (id=6131): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40004) sendmmsg$inet6(r3, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r5 = socket$inet6(0x10, 0x3, 0x0) sendto$inet6(r5, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0) 3.063479703s ago: executing program 6 (id=6134): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) fstat(r4, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) ioprio_set$uid(0x3, r5, 0x4000) 3.020429557s ago: executing program 5 (id=6135): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x6000) setresuid(0xee01, r5, r5) fsetxattr$system_posix_acl(r4, &(0x7f0000000000)='system.posix_acl_access\x00', &(0x7f0000000280)=ANY=[@ANYBLOB="0200000001000100000000000400040000000000100002000000000020"], 0x24, 0x1) 2.884154071s ago: executing program 6 (id=6137): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003780)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xf0667000) 2.843002185s ago: executing program 5 (id=6148): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r3 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r3, 0x0, 0x0, 0x805, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) accept4$vsock_stream(0xffffffffffffffff, 0x0, 0x0, 0x0) 2.552949174s ago: executing program 5 (id=6139): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) sendmmsg$inet6(r2, &(0x7f00000075c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40804) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f00000009c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket(0x10, 0x3, 0x0) sendto$inet6(r4, &(0x7f0000000100)="c10e000018001f06b9409b0dffff110d0207be040205060506100a044300040018000000fac8388827a685a168d9a44604094565360c648dcaaf6c26c291214549932fde4a460c89b6ec0cff3959547f509058ba86c902fc3a10004a320c0400160005000a00000000000000000000080756ede4ccbe5880", 0xec1, 0x0, 0x0, 0x9e5e111c47e3504f) 1.803232199s ago: executing program 1 (id=6141): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19) mremap(&(0x7f000000d000/0x2000)=nil, 0xfffffffffffffe74, 0x1000, 0x3, &(0x7f0000007000/0x1000)=nil) 1.676130662s ago: executing program 4 (id=6142): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) write(r0, 0x0, 0x0) r4 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r4, 0x0, 0x0) 1.617259257s ago: executing program 4 (id=6143): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5f114b66, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendmmsg$inet(r2, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40040) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r4 = socket(0x2, 0x2, 0x0) sendmsg$inet(r4, &(0x7f0000000200)={&(0x7f0000000180)={0x2, 0x4e23, @remote}, 0x10, 0x0, 0x0, &(0x7f00000003c0)=ANY=[], 0x18}, 0x0) 1.531378146s ago: executing program 5 (id=6144): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c0000001000010400b500000000040000000000", @ANYRES32=0x0, @ANYBLOB="00000000001400001c00128009000100626f6e64"], 0x3c}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x8000010}, 0x48000) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0) 1.466993283s ago: executing program 4 (id=6145): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) rt_sigaction(0xd, &(0x7f0000000180)={0x0, 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) 1.355644554s ago: executing program 4 (id=6146): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) prlimit64(0x0, 0x7, &(0x7f0000000140), 0x0) syz_io_uring_setup(0x36e2, &(0x7f0000000600)={0x0, 0x5946, 0x400, 0x0, 0x2c5}, 0x0, 0x0) splice(r3, 0x0, r5, 0x0, 0x6, 0x8) write$FUSE_INIT(r4, &(0x7f0000000200)={0x50, 0x0, 0x0, {0x7, 0x29, 0x20200, 0x0, 0x0, 0xffff}}, 0x50) 1.254537554s ago: executing program 6 (id=6147): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000380)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r4, 0x0) nanosleep(0x0, 0x0) 1.179528101s ago: executing program 2 (id=6149): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10) r5 = socket(0x10, 0x3, 0x9) sendmsg$NFT_BATCH(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000013c0)={{0x14, 0x453, 0x1, 0x0, 0x0, {0x5}}, [], {0x14, 0x3e8}}, 0x28}, 0x1, 0x0, 0x0, 0x64841}, 0x40000) 1.176649062s ago: executing program 4 (id=6150): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2, 0x10406) 1.001424259s ago: executing program 5 (id=6151): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendmmsg$inet(r2, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40040) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r3 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r3, 0x0, 0x0, 0x805, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]}) 1.000724259s ago: executing program 6 (id=6161): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = dup(r0) sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x4004}, 0x10000) r3 = socket$inet_tcp(0x2, 0x1, 0x0) sendmmsg$inet(r3, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40040) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) linkat(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, 0x0, 0x1000) 506.383789ms ago: executing program 6 (id=6152): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="3800000039000900000000000000000001000000040001000c000180060000002347000008000200ff0100000a"], 0x38}}, 0x0) 505.531439ms ago: executing program 4 (id=6153): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8) 0s ago: executing program 2 (id=6154): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$sock_int(r4, 0x1, 0x12, &(0x7f00000000c0)=0x6, 0x4) kernel console output (not intermixed with test programs): 0 [ 240.504396][ T26] audit: type=1326 audit(1763352361.844:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9142 comm="syz.2.2085" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7fc00000 [ 240.573919][ T26] audit: type=1326 audit(1763352361.844:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9142 comm="syz.2.2085" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7fc00000 [ 240.712045][ T26] audit: type=1326 audit(1763352361.844:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9142 comm="syz.2.2085" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7fc00000 [ 240.796098][ T26] audit: type=1326 audit(1763352361.844:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9142 comm="syz.2.2085" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7fc00000 [ 240.907002][ T26] audit: type=1326 audit(1763352361.844:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9142 comm="syz.2.2085" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7fc00000 [ 242.814826][ T9279] netlink: 'syz.4.2121': attribute type 4 has an invalid length. [ 245.710590][ T9344] gfs2: not a GFS2 filesystem [ 245.755632][ T9348] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2156'. [ 246.162530][ T1092] block nbd0: Attempted send on invalid socket [ 246.170529][ T1092] print_req_error: 25 callbacks suppressed [ 246.170544][ T1092] blk_update_request: I/O error, dev nbd0, sector 2 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 0 [ 246.197553][ T9360] EXT4-fs (nbd0): unable to read superblock [ 246.414008][ T9370] netlink: 'syz.2.2177': attribute type 2 has an invalid length. [ 246.455546][ T9370] netlink: 1 bytes leftover after parsing attributes in process `syz.2.2177'. [ 246.728331][ T9378] cgroup: Unknown subsys name 'fowner>00000000000000060929' [ 247.358978][ T9393] loop3: detected capacity change from 0 to 512 [ 247.430743][ T9393] EXT4-fs (loop3): Ignoring removed mblk_io_submit option [ 247.447384][ T9393] EXT4-fs (loop3): inline encryption not supported [ 247.462724][ T9393] EXT4-fs (loop3): Test dummy encryption mode enabled [ 247.485878][ T9393] EXT4-fs (loop3): Ignoring removed mblk_io_submit option [ 247.494479][ T9393] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 247.531325][ T9393] EXT4-fs (loop3): 1 truncate cleaned up [ 247.545511][ T9393] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,mblk_io_submit,inlinecrypt,test_dummy_encryption=v1,barrier,mblk_io_submit,nogrpid,. Quota mode: none. [ 247.905594][ T4265] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 248.231999][ T9393] fscrypt (loop3): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 249.025808][ T4265] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 249.052143][ T4265] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21 [ 249.094153][ T4265] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 249.126059][ T4265] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 249.228607][ T4265] usb 5-1: config 0 descriptor?? [ 249.259976][ T4265] usb 5-1: can't set config #0, error -71 [ 249.294154][ T26] kauditd_printk_skb: 32 callbacks suppressed [ 249.294168][ T26] audit: type=1326 audit(1763352371.254:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9430 comm="syz.2.2191" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x0 [ 249.334359][ T4265] usb 5-1: USB disconnect, device number 7 [ 250.053005][ T26] audit: type=1326 audit(1763352372.014:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9473 comm="syz.1.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 250.159022][ T26] audit: type=1326 audit(1763352372.014:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9473 comm="syz.1.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 250.249785][ T26] audit: type=1326 audit(1763352372.064:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9473 comm="syz.1.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 250.330757][ T26] audit: type=1326 audit(1763352372.064:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9473 comm="syz.1.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 250.405505][ T26] audit: type=1326 audit(1763352372.064:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9473 comm="syz.1.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 250.504922][ T26] audit: type=1326 audit(1763352372.064:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9473 comm="syz.1.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 250.520759][ T9492] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 250.534871][ T9492] IPv6: NLM_F_CREATE should be set when creating new route [ 250.577283][ T26] audit: type=1326 audit(1763352372.064:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9473 comm="syz.1.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 250.649512][ T26] audit: type=1326 audit(1763352372.064:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9473 comm="syz.1.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 250.743907][ T26] audit: type=1326 audit(1763352372.064:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9473 comm="syz.1.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 251.217270][ T9514] loop4: detected capacity change from 0 to 512 [ 251.241436][ T9514] EXT4-fs (loop4): Ignoring removed mblk_io_submit option [ 251.286503][ T9514] EXT4-fs (loop4): inline encryption not supported [ 251.293124][ T9514] EXT4-fs (loop4): Test dummy encryption mode enabled [ 251.365460][ T9514] EXT4-fs (loop4): Ignoring removed mblk_io_submit option [ 251.372721][ T9514] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 251.467571][ T9514] EXT4-fs (loop4): 1 truncate cleaned up [ 251.473301][ T9514] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,mblk_io_submit,inlinecrypt,test_dummy_encryption=v1,barrier,mblk_io_submit,nogrpid,. Quota mode: none. [ 251.646393][ T9514] fscrypt: AES-256-XTS using implementation "xts-aes-aesni" [ 251.700931][ T9540] loop0: detected capacity change from 0 to 512 [ 251.801074][ T9540] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #11: comm syz.0.2235: ea_inode with extended attributes [ 251.830955][ T9540] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.2235: error while reading EA inode 11 err=-117 [ 251.871131][ T9540] EXT4-fs (loop0): 1 orphan inode deleted [ 251.901796][ T9540] EXT4-fs (loop0): mounted filesystem without journal. Opts: nodioread_nolock,journal_dev=0x00000000000000ff,debug_want_extra_isize=0x000000000000004c,nouid32,resgid=0x0000000000000000,acl,init_itable=0x0000000000008d55,,errors=continue. Quota mode: none. [ 254.840914][ T26] kauditd_printk_skb: 14 callbacks suppressed [ 254.840929][ T26] audit: type=1326 audit(1763352376.804:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9556 comm="syz.2.2243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f4f202b3757 code=0x7ffc0000 [ 254.945484][ T26] audit: type=1326 audit(1763352376.834:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9556 comm="syz.2.2243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4f202b1f10 code=0x7ffc0000 [ 255.046227][ T26] audit: type=1326 audit(1763352376.834:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9556 comm="syz.2.2243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f4f202b232a code=0x7ffc0000 [ 255.305791][ T26] audit: type=1326 audit(1763352377.264:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9556 comm="syz.2.2243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 255.426977][ T1423] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.433303][ T1423] ieee802154 phy1 wpan1: encryption failed: -22 [ 257.164365][ T9691] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2305'. [ 259.935211][ T9751] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2316'. [ 261.081660][ T26] audit: type=1326 audit(1763352383.044:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9768 comm="syz.3.2323" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x0 [ 262.389066][ T9824] overlayfs: failed to clone upperpath [ 262.872543][ T9843] netlink: 'syz.0.2345': attribute type 2 has an invalid length. [ 262.902219][ T9843] netlink: 1 bytes leftover after parsing attributes in process `syz.0.2345'. [ 263.747208][ T9887] overlayfs: missing 'lowerdir' [ 263.837067][ T9891] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2368'. [ 263.924428][ T9897] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2371'. [ 263.939319][ T26] audit: type=1326 audit(1763352385.904:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9892 comm="syz.3.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 263.968660][ T9895] loop3: detected capacity change from 0 to 128 [ 264.010352][ T9899] netlink: 68 bytes leftover after parsing attributes in process `syz.0.2372'. [ 264.021086][ T26] audit: type=1326 audit(1763352385.924:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9892 comm="syz.3.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 264.086037][ T26] audit: type=1326 audit(1763352385.924:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9892 comm="syz.3.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 264.136034][ T9895] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 264.145494][ T26] audit: type=1326 audit(1763352385.924:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9892 comm="syz.3.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 264.171174][ T26] audit: type=1326 audit(1763352385.924:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9892 comm="syz.3.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 264.193803][ T26] audit: type=1326 audit(1763352385.924:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9892 comm="syz.3.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 264.223076][ T26] audit: type=1326 audit(1763352385.924:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9892 comm="syz.3.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 264.240121][ T9895] ext4 filesystem being mounted at /480/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 264.254583][ T26] audit: type=1326 audit(1763352385.924:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9892 comm="syz.3.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 264.285808][ T26] audit: type=1326 audit(1763352385.924:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9892 comm="syz.3.2369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 264.426749][ T9908] device vlan2 entered promiscuous mode [ 264.432459][ T9908] device bridge0 entered promiscuous mode [ 264.613196][ T9912] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2381'. [ 265.143197][ T9934] lo speed is unknown, defaulting to 1000 [ 265.163098][ T9934] lo speed is unknown, defaulting to 1000 [ 265.177405][ T9934] lo speed is unknown, defaulting to 1000 [ 265.641724][ T9934] infiniband syz2: set down [ 265.715983][ T9934] infiniband syz2: added lo [ 265.740889][ T9934] infiniband syz2: Couldn't open port 1 [ 265.776633][ T9341] lo speed is unknown, defaulting to 1000 [ 265.802593][ T9934] RDS/IB: syz2: added [ 265.807382][ T9934] smc: adding ib device syz2 with port count 1 [ 265.813752][ T9934] smc: ib device syz2 port 1 has pnetid [ 265.824584][ T9934] lo speed is unknown, defaulting to 1000 [ 265.849699][ T21] lo speed is unknown, defaulting to 1000 [ 266.002989][ T9934] lo speed is unknown, defaulting to 1000 [ 266.232794][ T9934] lo speed is unknown, defaulting to 1000 [ 266.368458][ T9933] lo speed is unknown, defaulting to 1000 [ 266.940518][ T9934] lo speed is unknown, defaulting to 1000 [ 267.075228][ T9934] lo speed is unknown, defaulting to 1000 [ 267.200712][ T9934] lo speed is unknown, defaulting to 1000 [ 267.344677][ T9934] lo speed is unknown, defaulting to 1000 [ 267.498692][ T9934] lo speed is unknown, defaulting to 1000 [ 267.646164][ T9976] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2404'. [ 267.720259][ T9934] lo speed is unknown, defaulting to 1000 [ 269.091872][T10006] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2420'. [ 269.119751][T10010] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2421'. [ 269.169474][T10007] lo speed is unknown, defaulting to 1000 [ 269.255110][T10013] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2424'. [ 269.399113][ T26] kauditd_printk_skb: 17 callbacks suppressed [ 269.399130][ T26] audit: type=1326 audit(1763352391.364:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10018 comm="syz.0.2425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8292f056c9 code=0x7ffc0000 [ 269.609740][ T26] audit: type=1326 audit(1763352391.404:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10018 comm="syz.0.2425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f8292f056c9 code=0x7ffc0000 [ 269.706541][ T26] audit: type=1326 audit(1763352391.404:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10018 comm="syz.0.2425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f8292f05703 code=0x7ffc0000 [ 270.791368][ T26] audit: type=1326 audit(1763352392.754:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10018 comm="syz.0.2425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f8292f0417f code=0x7ffc0000 [ 270.903431][T10041] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2432'. [ 271.453936][ T26] audit: type=1326 audit(1763352393.414:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10018 comm="syz.0.2425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f8292f05757 code=0x7ffc0000 [ 271.457444][T10019] loop0: detected capacity change from 0 to 40427 [ 271.560703][ T26] audit: type=1326 audit(1763352393.424:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10018 comm="syz.0.2425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8292f03f10 code=0x7ffc0000 [ 271.571674][T10019] F2FS-fs (loop0): Found nat_bits in checkpoint [ 271.685681][ T26] audit: type=1326 audit(1763352393.424:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10018 comm="syz.0.2425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8292f052cb code=0x7ffc0000 [ 271.742773][T10074] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2447'. [ 271.759374][ T26] audit: type=1326 audit(1763352393.484:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10018 comm="syz.0.2425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f8292f0432a code=0x7ffc0000 [ 271.786546][T10019] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 271.860170][ T26] audit: type=1326 audit(1763352393.484:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10018 comm="syz.0.2425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f8292f0432a code=0x7ffc0000 [ 271.893947][T10071] lo speed is unknown, defaulting to 1000 [ 271.965083][ T26] audit: type=1326 audit(1763352393.484:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10018 comm="syz.0.2425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f8292f03e17 code=0x7ffc0000 [ 272.433150][T10096] loop4: detected capacity change from 0 to 256 [ 274.844848][ T26] kauditd_printk_skb: 8 callbacks suppressed [ 274.844863][ T26] audit: type=1326 audit(1763352396.804:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10119 comm="syz.1.2465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 274.950223][ T26] audit: type=1326 audit(1763352396.844:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10119 comm="syz.1.2465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 275.038486][T10127] cgroup: Setting release_agent not allowed [ 275.053356][ T26] audit: type=1326 audit(1763352396.844:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10119 comm="syz.1.2465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fca93d13703 code=0x7ffc0000 [ 275.233945][ T26] audit: type=1326 audit(1763352397.194:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10119 comm="syz.1.2465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fca93d1217f code=0x7ffc0000 [ 275.858609][ T26] audit: type=1326 audit(1763352397.824:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10152 comm="syz.4.2479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bfbb616c9 code=0x7ffc0000 [ 275.884636][T10153] loop4: detected capacity change from 0 to 128 [ 275.935442][ T26] audit: type=1326 audit(1763352397.824:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10152 comm="syz.4.2479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bfbb616c9 code=0x7ffc0000 [ 276.014859][ T26] audit: type=1326 audit(1763352397.824:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10152 comm="syz.4.2479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4bfbb616c9 code=0x7ffc0000 [ 276.137748][ T26] audit: type=1326 audit(1763352397.824:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10152 comm="syz.4.2479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bfbb616c9 code=0x7ffc0000 [ 276.251041][ T26] audit: type=1326 audit(1763352397.824:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10152 comm="syz.4.2479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bfbb616c9 code=0x7ffc0000 [ 276.306914][ T26] audit: type=1326 audit(1763352397.824:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10152 comm="syz.4.2479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4bfbb616c9 code=0x7ffc0000 [ 276.677624][T10171] overlayfs: missing 'lowerdir' [ 276.739506][T10169] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2486'. [ 277.226794][T10197] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2501'. [ 277.338371][T10200] netlink: 96 bytes leftover after parsing attributes in process `syz.4.2502'. [ 277.377620][T10189] loop0: detected capacity change from 0 to 128 [ 278.596438][T10189] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 278.839584][T10189] ext4 filesystem being mounted at /492/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 279.809455][T10244] overlayfs: failed to clone upperpath [ 280.244980][T10260] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2529'. [ 281.569402][T10276] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 282.129866][ T26] kauditd_printk_skb: 60 callbacks suppressed [ 282.129882][ T26] audit: type=1326 audit(1763352404.094:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10285 comm="syz.2.2536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 282.231803][ T26] audit: type=1326 audit(1763352404.094:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10285 comm="syz.2.2536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 282.331562][ T26] audit: type=1326 audit(1763352404.124:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10285 comm="syz.2.2536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 282.420998][ T26] audit: type=1326 audit(1763352404.124:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10285 comm="syz.2.2536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 282.517612][ T26] audit: type=1326 audit(1763352404.124:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10285 comm="syz.2.2536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 282.603948][ T26] audit: type=1326 audit(1763352404.124:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10285 comm="syz.2.2536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 282.685942][ T26] audit: type=1326 audit(1763352404.124:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10285 comm="syz.2.2536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 282.775505][ T26] audit: type=1326 audit(1763352404.124:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10285 comm="syz.2.2536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 282.870338][ T26] audit: type=1326 audit(1763352404.124:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10285 comm="syz.2.2536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 282.950908][ T26] audit: type=1326 audit(1763352404.124:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10285 comm="syz.2.2536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 283.226560][T10335] device batadv_slave_1 entered promiscuous mode [ 283.263450][T10334] device batadv_slave_1 left promiscuous mode [ 284.129953][T10379] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2583'. [ 284.175646][T10379] device bridge_slave_1 left promiscuous mode [ 284.183791][T10379] bridge0: port 2(bridge_slave_1) entered disabled state [ 284.211002][T10379] device bridge_slave_0 left promiscuous mode [ 284.221931][T10379] bridge0: port 1(bridge_slave_0) entered disabled state [ 284.256977][T10386] netlink: 104 bytes leftover after parsing attributes in process `syz.1.2586'. [ 284.381889][T10385] device vlan2 entered promiscuous mode [ 284.402454][T10385] device bridge0 entered promiscuous mode [ 284.553866][T10392] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 284.605838][T10392] overlayfs: missing 'lowerdir' [ 285.230822][T10423] device vlan2 entered promiscuous mode [ 285.263699][T10423] device bridge0 entered promiscuous mode [ 287.868454][ T26] kauditd_printk_skb: 9 callbacks suppressed [ 287.868468][ T26] audit: type=1326 audit(1763352409.834:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10418 comm="syz.1.2602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 287.959476][ T26] audit: type=1326 audit(1763352409.864:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10418 comm="syz.1.2602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 288.039218][ T26] audit: type=1326 audit(1763352409.864:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10418 comm="syz.1.2602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 288.157950][ T26] audit: type=1326 audit(1763352409.994:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10418 comm="syz.1.2602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 288.219214][T10473] 9pnet: Could not find request transport: 0xffffffffffffffff [ 288.285246][ T26] audit: type=1326 audit(1763352409.994:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10418 comm="syz.1.2602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 288.317535][T10476] usb usb1: usbfs: process 10476 (syz.3.2625) did not claim interface 6 before use [ 288.374658][T10482] loop3: detected capacity change from 0 to 256 [ 288.569319][T10486] binder: Bad value for 'stats' [ 289.133571][T10512] device wlan0 entered promiscuous mode [ 289.630398][T10542] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2653'. [ 289.670890][T10542] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2653'. [ 289.749118][T10547] netlink: 148 bytes leftover after parsing attributes in process `syz.2.2655'. [ 289.758508][ T26] audit: type=1107 audit(1763352411.714:365): pid=10550 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 289.810173][T10547] net_ratelimit: 23 callbacks suppressed [ 289.810190][T10547] A link change request failed with some changes committed already. Interface sit0 may have been left with an inconsistent configuration, please check. [ 290.492003][T10584] loop3: detected capacity change from 0 to 512 [ 290.640285][T10584] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option [ 290.660247][T10584] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option [ 290.769802][T10584] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a816c099, mo2=0002] [ 290.778297][T10584] System zones: 1-12 [ 290.799536][T10584] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.2670: inode #1: comm syz.3.2670: iget: illegal inode # [ 290.820984][T10584] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.2670: error while reading EA inode 1 err=-117 [ 291.003003][T10584] EXT4-fs (loop3): 1 orphan inode deleted [ 291.108741][T10584] EXT4-fs (loop3): mounted filesystem without journal. Opts: nodioread_nolock,usrjquota=,usrjquota=,journal_dev=0x0000000000000dcd,resgid=0x0000000000000000,minixdf,debug,grpquota,nombcache,minixdf,nomblk_io_submit,nomblk_io_submit,i_version,,errors=continue. Quota mode: writeback. [ 291.278286][T10593] netlink: 152 bytes leftover after parsing attributes in process `syz.1.2674'. [ 292.064131][T10627] device vlan2 entered promiscuous mode [ 292.074096][T10627] device bridge0 entered promiscuous mode [ 292.393816][T10645] netlink: 120 bytes leftover after parsing attributes in process `syz.4.2697'. [ 292.424210][T10645] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2697'. [ 296.118065][T10761] loop4: detected capacity change from 0 to 512 [ 296.150532][T10761] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option [ 296.164733][T10761] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option [ 296.202554][T10761] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a816c099, mo2=0002] [ 296.211118][T10761] System zones: 1-12 [ 296.235711][T10761] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.2745: inode #1: comm syz.4.2745: iget: illegal inode # [ 296.262948][T10761] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.2745: error while reading EA inode 1 err=-117 [ 296.287223][T10761] EXT4-fs (loop4): 1 orphan inode deleted [ 296.295176][T10761] EXT4-fs (loop4): mounted filesystem without journal. Opts: nodioread_nolock,usrjquota=,usrjquota=,journal_dev=0x0000000000000dcd,resgid=0x0000000000000000,minixdf,debug,grpquota,nombcache,minixdf,nomblk_io_submit,nomblk_io_submit,i_version,,errors=continue. Quota mode: writeback. [ 297.506192][ T26] audit: type=1326 audit(1763352419.474:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10797 comm="syz.4.2761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bfbb616c9 code=0x7ffc0000 [ 297.585981][ T26] audit: type=1326 audit(1763352419.514:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10797 comm="syz.4.2761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f4bfbb616c9 code=0x7ffc0000 [ 297.655514][ T26] audit: type=1326 audit(1763352419.514:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10797 comm="syz.4.2761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bfbb616c9 code=0x7ffc0000 [ 297.714932][T10805] loop0: detected capacity change from 0 to 512 [ 297.728235][ T26] audit: type=1326 audit(1763352419.514:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10797 comm="syz.4.2761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f4bfbb616c9 code=0x7ffc0000 [ 297.822157][T10805] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option [ 297.945353][T10805] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option [ 298.547549][T10805] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a816c099, mo2=0002] [ 298.600607][T10805] System zones: 1-12 [ 298.621499][ T26] audit: type=1326 audit(1763352419.514:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10797 comm="syz.4.2761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bfbb616c9 code=0x7ffc0000 [ 298.654375][T10805] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.2763: inode #1: comm syz.0.2763: iget: illegal inode # [ 298.707355][T10805] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.2763: error while reading EA inode 1 err=-117 [ 298.726445][ T26] audit: type=1326 audit(1763352419.514:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10797 comm="syz.4.2761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4bfbb616c9 code=0x7ffc0000 [ 298.749004][T10805] EXT4-fs (loop0): 1 orphan inode deleted [ 298.765553][T10805] EXT4-fs (loop0): mounted filesystem without journal. Opts: nodioread_nolock,usrjquota=,usrjquota=,journal_dev=0x0000000000000dcd,resgid=0x0000000000000000,minixdf,debug,grpquota,nombcache,minixdf,nomblk_io_submit,nomblk_io_submit,i_version,,errors=continue. Quota mode: writeback. [ 298.824160][ T26] audit: type=1326 audit(1763352419.514:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10797 comm="syz.4.2761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bfbb616c9 code=0x7ffc0000 [ 298.896951][ T26] audit: type=1326 audit(1763352419.514:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10797 comm="syz.4.2761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4bfbb616c9 code=0x7ffc0000 [ 299.015467][ T26] audit: type=1326 audit(1763352419.514:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10797 comm="syz.4.2761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bfbb616c9 code=0x7ffc0000 [ 299.082480][ T26] audit: type=1326 audit(1763352419.514:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10797 comm="syz.4.2761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f4bfbb616c9 code=0x7ffc0000 [ 299.817445][T10875] netlink: 536 bytes leftover after parsing attributes in process `syz.1.2793'. [ 299.876630][T10875] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2793'. [ 302.486513][T10915] ODEBUG: Out of memory. ODEBUG disabled [ 302.614519][T10910] lo speed is unknown, defaulting to 1000 [ 304.030822][T10945] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2822'. [ 304.342341][T10958] loop0: detected capacity change from 0 to 512 [ 305.141451][T10958] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option [ 305.154257][T10958] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option [ 305.172060][T10958] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a816c099, mo2=0002] [ 305.189879][T10958] System zones: 1-12 [ 305.209997][T10958] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.2828: inode #1: comm syz.0.2828: iget: illegal inode # [ 305.282400][T10958] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.2828: error while reading EA inode 1 err=-117 [ 305.328461][T10958] EXT4-fs (loop0): 1 orphan inode deleted [ 305.334539][T10958] EXT4-fs (loop0): mounted filesystem without journal. Opts: nodioread_nolock,usrjquota=,usrjquota=,journal_dev=0x0000000000000dcd,resgid=0x0000000000000000,minixdf,debug,grpquota,nombcache,minixdf,nomblk_io_submit,nomblk_io_submit,i_version,,errors=continue. Quota mode: writeback. [ 306.492506][T11051] netlink: 'syz.0.2872': attribute type 4 has an invalid length. [ 308.781677][T11143] overlayfs: failed to clone upperpath [ 310.161739][T11181] loop0: detected capacity change from 0 to 1024 [ 310.265768][T11181] EXT4-fs (loop0): Ignoring removed nobh option [ 310.272065][T11181] EXT4-fs (loop0): Ignoring removed bh option [ 310.302720][T11181] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 310.414988][T11181] EXT4-fs (loop0): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,grpquota,nobh,user_xattr,bh,dioread_nolock,,errors=continue. Quota mode: writeback. [ 310.495511][ T4518] usb 4-1: new full-speed USB device number 4 using dummy_hcd [ 310.855779][ T4518] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 310.965539][ T4518] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 310.994451][ T4518] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 311.013126][ T4518] usb 4-1: SerialNumber: syz [ 311.076492][ T4518] cdc_acm 4-1:1.0: skipping garbage [ 311.083830][ T4518] cdc_acm: probe of 4-1:1.0 failed with error -12 [ 311.302694][ T4518] usb 4-1: USB disconnect, device number 4 [ 312.159872][T11280] kvm: pic: single mode not supported [ 312.159895][T11280] kvm: pic: level sensitive irq not supported [ 312.193772][T11280] kvm: pic: single mode not supported [ 312.215016][T11286] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 312.280840][T11286] overlayfs: missing 'lowerdir' [ 312.470321][T11304] overlayfs: overlapping lowerdir path [ 312.571316][T11310] tmpfs: Bad value for 'mpol' [ 312.738439][T11324] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 312.811424][T11324] overlayfs: missing 'lowerdir' [ 313.341084][T11364] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 313.370508][T11364] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 313.855673][T11385] xt_NFQUEUE: number of total queues is 0 [ 314.849249][T11403] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3032'. [ 315.018088][T11410] loop0: detected capacity change from 0 to 2048 [ 315.059136][T11416] loop4: detected capacity change from 0 to 256 [ 315.105539][ T26] kauditd_printk_skb: 25 callbacks suppressed [ 315.105555][ T26] audit: type=1800 audit(1763352437.064:401): pid=11416 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.3039" name="file1" dev="loop4" ino=1048601 res=0 errno=0 [ 315.189698][T11410] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 315.210255][T11410] ext4 filesystem being mounted at /576/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 315.641684][T11453] lo speed is unknown, defaulting to 1000 [ 315.890334][T11469] fuse: Bad value for 'fd' [ 316.376872][T11495] 9pnet: p9_fd_create_tcp (11495): problem connecting socket to 127.0.0.1 [ 316.886753][ T1423] ieee802154 phy0 wpan0: encryption failed: -22 [ 316.899133][ T1423] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.062891][T11501] netlink: 'syz.4.3077': attribute type 29 has an invalid length. [ 317.071081][T11501] netlink: 'syz.4.3077': attribute type 29 has an invalid length. [ 317.167504][T11501] netlink: 'syz.4.3077': attribute type 29 has an invalid length. [ 317.218530][T11501] netlink: 'syz.4.3077': attribute type 29 has an invalid length. [ 317.255669][T11501] netlink: 'syz.4.3077': attribute type 29 has an invalid length. [ 317.277133][T11501] netlink: 'syz.4.3077': attribute type 29 has an invalid length. [ 317.301425][T11501] netlink: 'syz.4.3077': attribute type 29 has an invalid length. [ 317.335580][T11501] netlink: 'syz.4.3077': attribute type 29 has an invalid length. [ 317.863641][T11536] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 317.938975][T11536] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 318.992310][ T21] usb 5-1: new full-speed USB device number 8 using dummy_hcd [ 319.058129][T11563] netlink: 'syz.1.3106': attribute type 10 has an invalid length. [ 319.088857][T11563] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3106'. [ 319.121168][T11563] device dummy0 entered promiscuous mode [ 319.375641][ T21] usb 5-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 319.405269][ T21] usb 5-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid maxpacket 512, setting to 64 [ 319.445423][ T21] usb 5-1: config 0 interface 0 has no altsetting 0 [ 319.452159][ T21] usb 5-1: New USB device found, idVendor=046d, idProduct=c24f, bcdDevice= 0.00 [ 319.489444][ T21] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 319.517920][ T21] usb 5-1: config 0 descriptor?? [ 319.555714][T11555] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 320.106476][ T21] usbhid 5-1:0.0: can't add hid device: -71 [ 320.117319][ T21] usbhid: probe of 5-1:0.0 failed with error -71 [ 320.159431][ T21] usb 5-1: USB disconnect, device number 8 [ 320.986350][T11610] lo speed is unknown, defaulting to 1000 [ 325.272508][T11712] netlink: 'syz.3.3172': attribute type 10 has an invalid length. [ 325.299392][T11712] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3172'. [ 325.328948][T11712] device dummy0 entered promiscuous mode [ 326.303087][T11760] lo speed is unknown, defaulting to 1000 [ 327.044786][T11780] xt_NFQUEUE: number of total queues is 0 [ 328.194261][T11793] lo speed is unknown, defaulting to 1000 [ 328.428511][T11808] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3218'. [ 330.452414][T11865] lo speed is unknown, defaulting to 1000 [ 333.256233][T11893] TCP: TCP_TX_DELAY enabled [ 333.371938][T11904] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3259'. [ 333.537515][ T26] audit: type=1326 audit(1763352455.504:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11911 comm="syz.2.3264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 333.607332][ T26] audit: type=1326 audit(1763352455.504:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11911 comm="syz.2.3264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 333.770311][ T26] audit: type=1326 audit(1763352455.504:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11911 comm="syz.2.3264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 333.842970][ T26] audit: type=1326 audit(1763352455.504:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11911 comm="syz.2.3264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 333.945418][ T26] audit: type=1326 audit(1763352455.504:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11911 comm="syz.2.3264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 334.095624][ T26] audit: type=1326 audit(1763352455.504:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11911 comm="syz.2.3264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 334.161555][ T26] audit: type=1326 audit(1763352455.504:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11911 comm="syz.2.3264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 334.215495][ T26] audit: type=1326 audit(1763352455.504:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11911 comm="syz.2.3264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 334.380610][ T26] audit: type=1326 audit(1763352455.504:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11911 comm="syz.2.3264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 334.380793][T11962] 9pnet: Unknown protocol version 9p [ 334.423126][T11964] loop3: detected capacity change from 0 to 128 [ 334.478945][ T26] audit: type=1326 audit(1763352455.504:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11911 comm="syz.2.3264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 334.541689][T11964] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option [ 334.619624][T11964] EXT4-fs (loop3): Ignoring removed oldalloc option [ 334.752267][T11964] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpquota,grpjquota=,nomblk_io_submit,jqfmt=vfsold,oldalloc,,errors=continue. Quota mode: writeback. [ 334.777622][T11964] ext4 filesystem being mounted at /654/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 335.685158][T11995] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3300'. [ 335.712075][T11994] lo speed is unknown, defaulting to 1000 [ 336.379967][T12042] netlink: 'syz.2.3319': attribute type 11 has an invalid length. [ 336.424084][T12044] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3320'. [ 336.429789][T12042] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3319'. [ 337.143822][T12084] fuse: Unknown parameter 'g' [ 337.438226][T12100] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3348'. [ 337.992051][T12135] overlayfs: failed to clone upperpath [ 339.696158][T12181] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 339.729741][T12183] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3383'. [ 339.786299][T12183] device bridge_slave_1 left promiscuous mode [ 339.843328][T12183] bridge0: port 2(bridge_slave_1) entered disabled state [ 339.894347][T12183] device bridge_slave_0 left promiscuous mode [ 339.939980][T12183] bridge0: port 1(bridge_slave_0) entered disabled state [ 342.242004][T12260] lo speed is unknown, defaulting to 1000 [ 345.706616][T12401] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3486'. [ 346.306994][T12425] lo speed is unknown, defaulting to 1000 [ 346.468963][T12435] overlayfs: failed to clone upperpath [ 347.456602][T12469] netlink: 388 bytes leftover after parsing attributes in process `syz.2.3520'. [ 347.657114][T12477] fuse: Bad value for 'fd' [ 348.486514][ T26] kauditd_printk_skb: 19 callbacks suppressed [ 348.486530][ T26] audit: type=1326 audit(1763352470.454:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12507 comm="syz.0.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8292f056c9 code=0x7ffc0000 [ 348.629907][ T26] audit: type=1326 audit(1763352470.494:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12507 comm="syz.0.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8292f056c9 code=0x7ffc0000 [ 348.705077][ T26] audit: type=1326 audit(1763352470.494:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12507 comm="syz.0.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8292f056c9 code=0x7ffc0000 [ 348.711310][T12522] netlink: 'syz.2.3545': attribute type 16 has an invalid length. [ 348.803953][T12522] netlink: 64130 bytes leftover after parsing attributes in process `syz.2.3545'. [ 348.843542][ T26] audit: type=1326 audit(1763352470.494:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12507 comm="syz.0.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f8292f056c9 code=0x7ffc0000 [ 348.947388][ T26] audit: type=1326 audit(1763352470.494:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12507 comm="syz.0.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8292f056c9 code=0x7ffc0000 [ 349.044978][T12535] af_packet: tpacket_rcv: packet too big, clamped from 14 to 4294967286. macoff=82 [ 349.048430][ T26] audit: type=1326 audit(1763352470.494:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12507 comm="syz.0.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8292f056c9 code=0x7ffc0000 [ 349.181258][ T26] audit: type=1326 audit(1763352470.494:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12507 comm="syz.0.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8292f056c9 code=0x7ffc0000 [ 349.300241][ T26] audit: type=1326 audit(1763352470.494:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12507 comm="syz.0.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f8292f056c9 code=0x7ffc0000 [ 349.358234][ T26] audit: type=1326 audit(1763352470.494:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12507 comm="syz.0.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8292f056c9 code=0x7ffc0000 [ 349.639978][T12572] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3571'. [ 352.538261][T12646] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3601'. [ 352.950020][T12676] device batadv_slave_1 entered promiscuous mode [ 352.972835][T12675] device batadv_slave_1 left promiscuous mode [ 353.149611][T12686] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3619'. [ 353.228226][T12690] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 355.162956][ T26] audit: type=1326 audit(1763352477.124:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12741 comm="syz.4.3645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bfbb616c9 code=0x7ffc0000 [ 355.700793][T12757] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3652'. [ 356.222894][T12771] netlink: 120 bytes leftover after parsing attributes in process `syz.2.3668'. [ 356.261266][T12773] lo speed is unknown, defaulting to 1000 [ 357.099688][T12808] loop3: detected capacity change from 0 to 2048 [ 357.232258][T12808] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities [ 357.297753][T12817] lo speed is unknown, defaulting to 1000 [ 360.012358][ T26] audit: type=1326 audit(1763352481.974:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12903 comm="syz.3.3714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 360.127333][ T26] audit: type=1326 audit(1763352482.004:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12903 comm="syz.3.3714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 360.251133][ T26] audit: type=1326 audit(1763352482.004:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12903 comm="syz.3.3714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=111 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 360.365757][ T26] audit: type=1326 audit(1763352482.004:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12903 comm="syz.3.3714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 360.518506][ T26] audit: type=1326 audit(1763352482.004:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12903 comm="syz.3.3714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 360.585790][ T26] audit: type=1326 audit(1763352482.004:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12903 comm="syz.3.3714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 360.685474][ T26] audit: type=1326 audit(1763352482.004:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12903 comm="syz.3.3714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 360.807168][ T26] audit: type=1326 audit(1763352482.004:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12903 comm="syz.3.3714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 360.915399][ T26] audit: type=1326 audit(1763352482.024:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12903 comm="syz.3.3714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 360.996480][T12947] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3734'. [ 361.015974][ T26] audit: type=1326 audit(1763352482.024:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12903 comm="syz.3.3714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 361.085526][T12947] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3734'. [ 361.125518][ T26] audit: type=1326 audit(1763352482.024:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12903 comm="syz.3.3714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 361.225515][ T26] audit: type=1326 audit(1763352482.034:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12903 comm="syz.3.3714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 362.071990][T12991] netlink: 56 bytes leftover after parsing attributes in process `syz.0.3756'. [ 363.275010][T13053] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3782'. [ 363.396610][T13053] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3782'. [ 363.876101][T13085] 9p: Unknown uid 00000000004294967295 [ 363.978159][T13086] netlink: 104 bytes leftover after parsing attributes in process `syz.4.3796'. [ 364.640561][T13128] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3816'. [ 364.855932][T13134] lo speed is unknown, defaulting to 1000 [ 364.957356][T13138] binder: 13137:13138 ioctl c0306201 2000000004c0 returned -22 [ 366.163568][T13175] lo speed is unknown, defaulting to 1000 [ 370.338940][T13321] loop3: detected capacity change from 0 to 128 [ 370.396000][T13321] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 370.486895][T13321] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 370.892210][T13348] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3919'. [ 370.934589][T13348] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3919'. [ 371.044779][T13348] 8021q: adding VLAN 0 to HW filter on device bond0 [ 371.077934][T13348] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3919'. [ 371.089353][T13348] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3919'. [ 371.200256][T13348] 8021q: adding VLAN 0 to HW filter on device bond1 [ 372.509789][T13449] lo speed is unknown, defaulting to 1000 [ 374.055822][T13482] overlayfs: failed to clone upperpath [ 375.818719][T13538] overlayfs: failed to clone upperpath [ 376.219601][T13558] netlink: 56 bytes leftover after parsing attributes in process `syz.4.4016'. [ 376.342959][T13565] netlink: 44 bytes leftover after parsing attributes in process `syz.4.4019'. [ 376.375291][T13565] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4019'. [ 376.406616][T13569] netlink: 152 bytes leftover after parsing attributes in process `syz.1.4021'. [ 377.069488][T13601] loop0: detected capacity change from 0 to 512 [ 377.329878][T13601] EXT4-fs error (device loop0): ext4_ext_check_inode:501: inode #16: comm syz.0.4036: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 1, max 2052(4), depth 0(0) [ 377.413794][T13601] EXT4-fs error (device loop0): ext4_orphan_get:1406: comm syz.0.4036: couldn't read orphan inode 16 (err -117) [ 377.446073][T13601] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 377.461326][T13611] lo speed is unknown, defaulting to 1000 [ 377.468141][T13601] ext4 filesystem being mounted at /767/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 377.863219][T13623] lo speed is unknown, defaulting to 1000 [ 378.364294][ T1423] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.370660][ T1423] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.402976][T13641] lo speed is unknown, defaulting to 1000 [ 379.115723][ T26] kauditd_printk_skb: 56 callbacks suppressed [ 379.115778][ T26] audit: type=1326 audit(1763352500.984:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13647 comm="syz.0.4053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8292f056c9 code=0x7ffc0000 [ 379.529323][ T26] audit: type=1326 audit(1763352500.994:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13647 comm="syz.0.4053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8292f056c9 code=0x7ffc0000 [ 379.649699][ T26] audit: type=1326 audit(1763352501.074:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13647 comm="syz.0.4053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8292f056c9 code=0x7ffc0000 [ 379.713040][ T26] audit: type=1326 audit(1763352501.124:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13647 comm="syz.0.4053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8292f056c9 code=0x7ffc0000 [ 379.799981][ T26] audit: type=1326 audit(1763352501.134:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13647 comm="syz.0.4053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8292f056c9 code=0x7ffc0000 [ 380.028695][ T26] audit: type=1326 audit(1763352501.204:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13647 comm="syz.0.4053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8292f056c9 code=0x7ffc0000 [ 380.075462][ T26] audit: type=1326 audit(1763352501.244:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13647 comm="syz.0.4053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8292f056c9 code=0x7ffc0000 [ 380.694463][ T26] audit: type=1326 audit(1763352501.254:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13647 comm="syz.0.4053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8292f056c9 code=0x7ffc0000 [ 380.721615][T13675] netlink: 140 bytes leftover after parsing attributes in process `syz.1.4065'. [ 380.726444][ T26] audit: type=1326 audit(1763352501.344:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13647 comm="syz.0.4053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8292f056c9 code=0x7ffc0000 [ 380.825595][ T26] audit: type=1326 audit(1763352501.424:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13647 comm="syz.0.4053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8292f056c9 code=0x7ffc0000 [ 381.032487][T13690] lo speed is unknown, defaulting to 1000 [ 382.493155][T13721] fuse: Bad value for 'user_id' [ 383.725895][T13791] netlink: 108 bytes leftover after parsing attributes in process `syz.1.4118'. [ 384.075086][T13807] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4124'. [ 384.094564][T13807] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4124'. [ 384.135640][T13807] 8021q: adding VLAN 0 to HW filter on device bond1 [ 384.146928][T13807] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4124'. [ 384.156399][T13807] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4124'. [ 384.179780][T13807] 8021q: adding VLAN 0 to HW filter on device bond2 [ 384.753705][T13846] lo speed is unknown, defaulting to 1000 [ 385.833868][T13863] netlink: 72 bytes leftover after parsing attributes in process `syz.4.4148'. [ 385.883143][T13870] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4152'. [ 386.255208][T13875] netlink: 64 bytes leftover after parsing attributes in process `syz.0.4154'. [ 386.745216][T13899] netlink: 72 bytes leftover after parsing attributes in process `syz.2.4166'. [ 387.940370][T13944] lo speed is unknown, defaulting to 1000 [ 388.121426][T13958] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4202'. [ 388.128231][T13957] fuse: Bad value for 'fd' [ 389.407248][ T26] kauditd_printk_skb: 7 callbacks suppressed [ 389.407264][ T26] audit: type=1326 audit(1763352511.374:526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13971 comm="syz.1.4199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 389.527529][ T26] audit: type=1326 audit(1763352511.374:527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13971 comm="syz.1.4199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 389.650905][ T26] audit: type=1326 audit(1763352511.374:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13971 comm="syz.1.4199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 389.755431][ T26] audit: type=1326 audit(1763352511.374:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13971 comm="syz.1.4199" exe="/root/syz-executor" sig=0 arch=40000003 syscall=94 compat=1 ip=0x200000000006 code=0x7ffc0000 [ 389.859142][ T26] audit: type=1326 audit(1763352511.374:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13971 comm="syz.1.4199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 390.025423][ T26] audit: type=1326 audit(1763352511.374:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13971 comm="syz.1.4199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 390.065201][T14002] lo speed is unknown, defaulting to 1000 [ 390.756396][T14001] lo speed is unknown, defaulting to 1000 [ 391.176478][ T26] audit: type=1326 audit(1763352513.134:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14024 comm="syz.3.4216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 391.268554][ T26] audit: type=1326 audit(1763352513.184:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14024 comm="syz.3.4216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 391.410043][ T26] audit: type=1326 audit(1763352513.184:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14024 comm="syz.3.4216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 391.488811][ T26] audit: type=1326 audit(1763352513.184:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14024 comm="syz.3.4216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 391.770520][T14056] __nla_validate_parse: 1 callbacks suppressed [ 391.770539][T14056] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4238'. [ 392.149733][T14069] overlayfs: failed to clone upperpath [ 392.229124][T14072] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4246'. [ 392.712714][T14096] 9p: Unknown access argument a [ 394.522316][T14169] lo speed is unknown, defaulting to 1000 [ 394.748878][T14177] xt_CT: No such helper "pptp" [ 396.047568][ T26] kauditd_printk_skb: 30 callbacks suppressed [ 396.047583][ T26] audit: type=1326 audit(1763352518.014:566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14206 comm="syz.4.4305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bfbb616c9 code=0x7ffc0000 [ 396.049185][T14209] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4306'. [ 396.065218][ T26] audit: type=1326 audit(1763352518.014:567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14206 comm="syz.4.4305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bfbb616c9 code=0x7ffc0000 [ 396.555422][T14231] loop3: detected capacity change from 0 to 512 [ 396.796176][T14243] 9pnet: Could not find request transport: 0xffffffffffffffff [ 396.857295][T14235] lo speed is unknown, defaulting to 1000 [ 397.159694][T14258] sch_fq: defrate 9 ignored. [ 398.219430][T14290] input: syz1 as /devices/virtual/input/input9 [ 399.148056][T14335] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4364'. [ 401.287314][T14421] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4403'. [ 401.660329][ T26] audit: type=1326 audit(1763352523.624:568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14439 comm="syz.3.4413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 401.707206][ T26] audit: type=1326 audit(1763352523.674:569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14439 comm="syz.3.4413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 401.748772][ T26] audit: type=1326 audit(1763352523.714:570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14439 comm="syz.3.4413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 401.852750][T14446] xt_CHECKSUM: unsupported CHECKSUM operation 68 [ 401.981638][ T26] audit: type=1326 audit(1763352523.714:571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14439 comm="syz.3.4413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 402.536347][ T26] audit: type=1326 audit(1763352523.714:572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14439 comm="syz.3.4413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 402.571612][ T26] audit: type=1326 audit(1763352523.734:573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14439 comm="syz.3.4413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=155 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 402.654435][ T26] audit: type=1326 audit(1763352523.734:574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14439 comm="syz.3.4413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 402.700598][ T26] audit: type=1326 audit(1763352523.734:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14439 comm="syz.3.4413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 402.759615][T14448] netlink: 120 bytes leftover after parsing attributes in process `syz.3.4415'. [ 402.770952][T14454] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4418'. [ 402.789151][T14448] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4415'. [ 403.478361][T14494] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4436'. [ 404.369072][T14504] overlayfs: failed to resolve '/Jòv ‚Øz/@«FÄòæê7ÁðÀG¬çµÀ¨!®Ié«$‚@VÀ': -2 [ 404.689637][T14521] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4451'. [ 404.720867][T14525] overlayfs: failed to set xattr on upper [ 404.759504][T14525] overlayfs: ...falling back to index=off,metacopy=off. [ 404.820140][T14521] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 404.833893][T14529] overlayfs: unrecognized mount option "/" or missing value [ 404.887822][T14521] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 404.926742][T14521] bond0 (unregistering): Released all slaves [ 406.355463][ T21] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 406.775678][ T21] usb 1-1: Using ep0 maxpacket: 32 [ 406.955662][ T21] usb 1-1: config 1 has an invalid interface number: 3 but max is 0 [ 407.016058][ T21] usb 1-1: config 1 has no interface number 0 [ 407.174996][ T21] usb 1-1: config 1 interface 3 has no altsetting 0 [ 407.695636][ T21] usb 1-1: New USB device found, idVendor=d084, idProduct=c487, bcdDevice=f4.ce [ 407.704734][ T21] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 407.745671][ T21] usb 1-1: Product: syz [ 407.749883][ T21] usb 1-1: Manufacturer: syz [ 407.754493][ T21] usb 1-1: SerialNumber: syz [ 408.085551][ T21] usb 1-1: USB disconnect, device number 6 [ 408.331636][T14641] loop3: detected capacity change from 0 to 128 [ 408.668839][T14641] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 408.809058][T14641] ext4 filesystem being mounted at /880/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 410.556754][T14702] loop0: detected capacity change from 0 to 128 [ 410.610376][T14702] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option [ 410.622993][T14702] EXT4-fs (loop0): Ignoring removed oldalloc option [ 410.665774][T14702] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,grpjquota=,nomblk_io_submit,jqfmt=vfsold,oldalloc,,errors=continue. Quota mode: writeback. [ 410.687921][T14702] ext4 filesystem being mounted at /860/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 410.752677][T14712] netlink: 'syz.3.4535': attribute type 1 has an invalid length. [ 411.053882][T14734] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4547'. [ 411.116007][T14738] netlink: 52 bytes leftover after parsing attributes in process `syz.4.4549'. [ 411.131798][T14734] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4547'. [ 411.299172][T14751] netlink: 9 bytes leftover after parsing attributes in process `syz.0.4555'. [ 413.045873][T14806] lo speed is unknown, defaulting to 1000 [ 413.202852][T14811] loop3: detected capacity change from 0 to 512 [ 413.381620][T14811] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a806e02c, mo2=0002] [ 413.395111][T14811] System zones: 1-12 [ 413.421386][T14811] EXT4-fs error (device loop3): dx_probe:823: inode #2: comm syz.3.4591: Directory hole found for htree index block 0 [ 413.485504][T14811] EXT4-fs (loop3): Remounting filesystem read-only [ 413.504485][T14811] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -117 [ 413.555700][T14811] EXT4-fs error (device loop3): dx_probe:823: inode #2: comm syz.3.4591: Directory hole found for htree index block 0 [ 413.585486][T14811] EXT4-fs (loop3): Remounting filesystem read-only [ 413.615501][T14811] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117 [ 413.629554][T14811] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpjquota=Jdebug,jqfmt=vfsold,noquota,bsdgroups,usrjquota="nojournal_checksum,errors=remount-ro,,. Quota mode: writeback. [ 413.664805][ T26] audit: type=1326 audit(1763352535.624:576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14827 comm="syz.2.4585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 413.762504][ T26] audit: type=1326 audit(1763352535.624:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14827 comm="syz.2.4585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 413.875610][ T26] audit: type=1326 audit(1763352535.634:578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14827 comm="syz.2.4585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=440 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 413.981813][ T26] audit: type=1326 audit(1763352535.634:579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14827 comm="syz.2.4585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 414.048549][ T26] audit: type=1326 audit(1763352535.634:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14827 comm="syz.2.4585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 415.355590][T14848] xt_CHECKSUM: unsupported CHECKSUM operation 68 [ 416.531482][T14884] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4615'. [ 417.202728][T14920] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4633'. [ 417.550477][ T26] audit: type=1326 audit(1763352539.514:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14943 comm="syz.1.4644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 417.660074][ T26] audit: type=1326 audit(1763352539.514:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14943 comm="syz.1.4644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 417.768952][ T26] audit: type=1326 audit(1763352539.554:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14943 comm="syz.1.4644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 417.855661][ T26] audit: type=1326 audit(1763352539.554:584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14943 comm="syz.1.4644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 417.955915][ T26] audit: type=1326 audit(1763352539.554:585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14943 comm="syz.1.4644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca93d136c9 code=0x7ffc0000 [ 418.151175][T14973] 9pnet: p9_errstr2errno: server reported unknown error [ 418.367890][T14985] device sit0 entered promiscuous mode [ 418.412064][T14985] netlink: 'syz.0.4663': attribute type 1 has an invalid length. [ 418.472755][T14985] netlink: 1 bytes leftover after parsing attributes in process `syz.0.4663'. [ 418.773432][ T26] kauditd_printk_skb: 23 callbacks suppressed [ 418.773446][ T26] audit: type=1326 audit(1763352540.734:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15006 comm="syz.4.4674" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4bfbb616c9 code=0x0 [ 418.941256][T15019] netlink: 9 bytes leftover after parsing attributes in process `syz.4.4680'. [ 418.976600][T15019] device gretap0 entered promiscuous mode [ 419.135598][ T21] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 419.379704][T15043] fuse: Unknown parameter '&' [ 419.415609][ T21] usb 4-1: Using ep0 maxpacket: 32 [ 419.596104][ T21] usb 4-1: config 1 has an invalid interface number: 3 but max is 0 [ 419.644033][ T21] usb 4-1: config 1 has no interface number 0 [ 419.751074][ T21] usb 4-1: config 1 interface 3 has no altsetting 0 [ 420.165889][ T21] usb 4-1: New USB device found, idVendor=d084, idProduct=c487, bcdDevice=f4.ce [ 420.178703][ T21] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 420.192331][ T21] usb 4-1: Product: syz [ 420.197413][ T21] usb 4-1: Manufacturer: syz [ 420.202266][ T21] usb 4-1: SerialNumber: syz [ 421.195480][ T21] usb 4-1: USB disconnect, device number 5 [ 422.424590][T15112] tipc: Failed to remove unknown binding: 66,1,1/65537:187507017/187507019 [ 423.599589][T15140] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4727'. [ 423.626484][T15140] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4727'. [ 423.652337][T15140] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4727'. [ 423.687574][T15140] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4727'. [ 423.704627][T15146] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4731'. [ 424.101129][T15176] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4746'. [ 424.138108][T15180] netlink: 'syz.4.4745': attribute type 1 has an invalid length. [ 424.275264][T15192] lo speed is unknown, defaulting to 1000 [ 424.307308][T15190] bond0: (slave bridge0): making interface the new active one [ 424.368145][T15190] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 424.400710][T15180] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4745'. [ 424.444515][T15180] 8021q: adding VLAN 0 to HW filter on device bond0 [ 425.093111][T15235] loop3: detected capacity change from 0 to 256 [ 425.248757][T15245] overlayfs: missing 'lowerdir' [ 425.350255][ T9253] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 425.564708][T15265] netlink: 'syz.3.4785': attribute type 4 has an invalid length. [ 425.583021][T15265] netlink: 'syz.3.4785': attribute type 4 has an invalid length. [ 426.211458][T15308] netlink: 172 bytes leftover after parsing attributes in process `syz.2.4805'. [ 427.388892][ T26] audit: type=1326 audit(1763352549.354:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15330 comm="syz.3.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 427.480050][ T26] audit: type=1326 audit(1763352549.404:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15330 comm="syz.3.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 427.531888][ T26] audit: type=1326 audit(1763352549.404:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15330 comm="syz.3.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 427.614759][ T26] audit: type=1326 audit(1763352549.404:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15330 comm="syz.3.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 427.685419][ T26] audit: type=1326 audit(1763352549.404:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15330 comm="syz.3.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 427.772717][ T26] audit: type=1326 audit(1763352549.404:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15330 comm="syz.3.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 427.807658][ T26] audit: type=1326 audit(1763352549.404:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15330 comm="syz.3.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 427.866011][ T26] audit: type=1326 audit(1763352549.404:617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15330 comm="syz.3.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 428.560372][ T26] audit: type=1326 audit(1763352549.404:618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15330 comm="syz.3.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 428.680397][ T26] audit: type=1326 audit(1763352549.404:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15330 comm="syz.3.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9bfe66c9 code=0x7ffc0000 [ 428.695196][T15362] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4827'. [ 429.262298][T15384] netlink: 'syz.2.4840': attribute type 15 has an invalid length. [ 429.293302][T15384] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4840'. [ 429.517831][T15393] overlayfs: missing 'lowerdir' [ 429.648309][T15401] netlink: 'syz.4.4846': attribute type 4 has an invalid length. [ 429.668628][T15401] netlink: 'syz.4.4846': attribute type 4 has an invalid length. [ 429.963394][T15408] lo speed is unknown, defaulting to 1000 [ 430.322938][T15418] loop3: detected capacity change from 0 to 256 [ 430.665403][T15425] qnx4: no qnx4 filesystem (no root dir). [ 430.992152][T15441] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4866'. [ 431.247989][T15451] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 431.260061][T15451] overlayfs: option "index=on" is useless in a non-upper mount, ignore [ 431.279310][T15451] overlayfs: missing 'lowerdir' [ 431.310930][T15455] lo speed is unknown, defaulting to 1000 [ 431.416170][T15462] overlayfs: missing 'workdir' [ 432.235934][T15472] loop3: detected capacity change from 0 to 256 [ 432.760033][ T4186] FAT-fs (loop3): error, corrupted directory (invalid entries) [ 432.801797][ T4186] FAT-fs (loop3): Filesystem has been set read-only [ 432.823337][ T4186] FAT-fs (loop3): error, corrupted directory (invalid entries) [ 433.032950][T15495] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4893'. [ 433.420114][T15507] loop0: detected capacity change from 0 to 256 [ 433.611582][ T4182] FAT-fs (loop0): error, corrupted directory (invalid entries) [ 433.665896][ T4182] FAT-fs (loop0): Filesystem has been set read-only [ 433.700048][ T4182] FAT-fs (loop0): error, corrupted directory (invalid entries) [ 433.798109][ T26] kauditd_printk_skb: 4 callbacks suppressed [ 433.798124][ T26] audit: type=1326 audit(1763352555.764:624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15520 comm="syz.2.4905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 433.891299][ T26] audit: type=1326 audit(1763352555.794:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15520 comm="syz.2.4905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 433.974850][ T26] audit: type=1326 audit(1763352555.794:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15520 comm="syz.2.4905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 434.057363][ T26] audit: type=1326 audit(1763352555.794:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15520 comm="syz.2.4905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 434.139838][ T26] audit: type=1326 audit(1763352555.794:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15520 comm="syz.2.4905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 434.219916][ T26] audit: type=1326 audit(1763352555.794:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15520 comm="syz.2.4905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 434.325519][ T26] audit: type=1326 audit(1763352555.794:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15520 comm="syz.2.4905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 434.388666][ T26] audit: type=1326 audit(1763352555.794:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15520 comm="syz.2.4905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 434.460963][ T26] audit: type=1326 audit(1763352555.794:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15520 comm="syz.2.4905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 434.523303][ T26] audit: type=1326 audit(1763352555.794:633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15520 comm="syz.2.4905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7ffc0000 [ 435.062774][T15553] netlink: 'syz.1.4920': attribute type 1 has an invalid length. [ 435.321731][T15556] lo speed is unknown, defaulting to 1000 [ 436.761577][T15556] chnl_net:caif_netlink_parms(): no params data found [ 436.797819][T15579] lo speed is unknown, defaulting to 1000 [ 436.813102][T15586] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it. [ 436.855502][T15586] overlayfs: missing 'lowerdir' [ 436.977080][T15556] bridge0: port 1(bridge_slave_0) entered blocking state [ 436.984245][T15556] bridge0: port 1(bridge_slave_0) entered disabled state [ 437.010623][T15556] device bridge_slave_0 entered promiscuous mode [ 437.064717][T15600] overlayfs: failed to clone upperpath [ 437.066098][T15556] bridge0: port 2(bridge_slave_1) entered blocking state [ 437.085435][T15556] bridge0: port 2(bridge_slave_1) entered disabled state [ 437.093745][T15556] device bridge_slave_1 entered promiscuous mode [ 437.178045][T15556] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 437.219133][T15556] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 437.340175][T15556] team0: Port device team_slave_0 added [ 437.355864][ T21] Bluetooth: hci0: command 0x0409 tx timeout [ 437.361152][T15556] team0: Port device team_slave_1 added [ 437.439574][T15556] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 437.485402][T15556] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 437.584734][T15556] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 437.660086][T15556] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 437.672876][T15556] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 437.709305][T15556] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 437.804561][ T9251] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 437.861219][T15579] chnl_net:caif_netlink_parms(): no params data found [ 437.919697][ T9251] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 437.984911][T15556] device hsr_slave_0 entered promiscuous mode [ 437.993116][T15556] device hsr_slave_1 entered promiscuous mode [ 438.008387][T15556] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 438.023986][T15556] Cannot create hsr debugfs directory [ 438.046119][ T9251] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 438.118092][ T9251] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 438.194625][T15579] bridge0: port 1(bridge_slave_0) entered blocking state [ 438.215044][T15579] bridge0: port 1(bridge_slave_0) entered disabled state [ 438.240498][T15579] device bridge_slave_0 entered promiscuous mode [ 438.288370][T15579] bridge0: port 2(bridge_slave_1) entered blocking state [ 438.308079][T15579] bridge0: port 2(bridge_slave_1) entered disabled state [ 438.333022][T15579] device bridge_slave_1 entered promiscuous mode [ 438.492482][T15670] overlayfs: missing 'workdir' [ 438.604406][T15579] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 438.617396][T15579] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 439.271345][ T4251] Bluetooth: hci3: command 0x0409 tx timeout [ 439.371308][T15579] team0: Port device team_slave_0 added [ 439.395804][T15579] team0: Port device team_slave_1 added [ 439.420605][ T9251] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 439.431500][ T21] Bluetooth: hci0: command 0x041b tx timeout [ 439.491682][T15579] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 439.502767][T15579] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 439.532595][T15579] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 439.560254][ T9251] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 439.582030][T15686] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4972'. [ 439.597199][T15579] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 439.604199][T15579] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 439.690712][T15579] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 439.724100][ T9251] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 439.751937][ T1423] ieee802154 phy0 wpan0: encryption failed: -22 [ 439.758395][ T1423] ieee802154 phy1 wpan1: encryption failed: -22 [ 439.826133][ T9251] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 440.958654][T15579] device hsr_slave_0 entered promiscuous mode [ 440.998757][T15579] device hsr_slave_1 entered promiscuous mode [ 441.025424][T15579] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 441.051031][T15579] Cannot create hsr debugfs directory [ 441.441906][T15556] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 441.449315][ T9341] Bluetooth: hci3: command 0x041b tx timeout [ 441.468529][T15556] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 441.478279][T15556] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 441.490901][T15556] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 441.505716][ T9341] Bluetooth: hci0: command 0x040f tx timeout [ 441.524826][T15579] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 441.539330][T15579] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 441.598774][T15579] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 441.613237][T15579] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 441.799171][T15556] 8021q: adding VLAN 0 to HW filter on device bond0 [ 441.814943][T15579] 8021q: adding VLAN 0 to HW filter on device bond0 [ 441.829008][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 441.839953][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 441.857508][T15556] 8021q: adding VLAN 0 to HW filter on device team0 [ 441.888635][T15579] 8021q: adding VLAN 0 to HW filter on device team0 [ 441.900195][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 441.908559][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 441.929496][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 441.938217][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 441.947490][ T410] bridge0: port 1(bridge_slave_0) entered blocking state [ 441.954530][ T410] bridge0: port 1(bridge_slave_0) entered forwarding state [ 441.962984][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 441.993860][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 442.003380][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 442.012286][ T410] bridge0: port 2(bridge_slave_1) entered blocking state [ 442.019389][ T410] bridge0: port 2(bridge_slave_1) entered forwarding state [ 442.028510][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 442.037157][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 442.045596][ T410] bridge0: port 1(bridge_slave_0) entered blocking state [ 442.052673][ T410] bridge0: port 1(bridge_slave_0) entered forwarding state [ 442.061013][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 442.071590][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 442.080028][ T410] bridge0: port 2(bridge_slave_1) entered blocking state [ 442.087099][ T410] bridge0: port 2(bridge_slave_1) entered forwarding state [ 442.094869][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 442.104140][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 442.113231][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 442.123130][ T4933] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 442.150933][ T4933] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 442.161596][ T4933] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 442.170372][ T4933] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 442.179619][ T4933] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 442.189241][ T4933] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 442.204171][ T4485] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 442.216242][ T4485] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 442.224553][ T4485] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 442.259802][T15579] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 442.271762][T15579] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 442.281565][ T4933] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 442.291837][ T4933] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 442.300928][ T4933] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 442.310321][ T4933] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 442.321833][ T4933] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 442.330465][ T4933] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 442.354993][T15556] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 442.372994][T15556] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 442.385823][ T4933] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 442.402580][ T4933] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 442.411557][ T4933] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 442.428881][ T4933] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 442.441192][ T4933] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 442.484929][ T4933] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 442.582185][ T9253] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 442.594655][ T9253] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 442.612229][T15579] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 442.747315][T15556] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 442.754471][ T9247] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 442.764307][ T9247] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 443.060136][ T9247] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 443.076264][ T9247] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 443.095803][ T9253] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 443.105183][ T9253] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 443.125221][ T9253] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 443.133428][ T9253] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 443.163845][T15579] device veth0_vlan entered promiscuous mode [ 443.186970][ T4485] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 443.202954][ T4485] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 443.217739][T15579] device veth1_vlan entered promiscuous mode [ 443.271808][T15556] device veth0_vlan entered promiscuous mode [ 443.286074][ T9253] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 443.294324][ T9253] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 443.314969][ T9253] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 443.336235][ T9253] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 443.353332][T15579] device veth0_macvtap entered promiscuous mode [ 443.377867][ T9253] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 443.387294][ T9253] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 443.408780][T15556] device veth1_vlan entered promiscuous mode [ 443.420966][T15579] device veth1_macvtap entered promiscuous mode [ 443.431188][ T9253] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 443.439986][ T9253] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 443.453427][ T9253] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 443.483063][T15579] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 443.494052][T15579] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 443.504597][T15579] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 443.515399][ T4514] Bluetooth: hci3: command 0x040f tx timeout [ 443.522865][T15579] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 443.533048][T15579] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 443.543873][T15579] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 443.553948][T15579] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 443.564660][T15579] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 443.582750][T15579] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 443.593306][ T4514] Bluetooth: hci0: command 0x0419 tx timeout [ 443.616590][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 443.625160][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 443.636073][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 443.644869][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 443.667143][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 443.695135][T15579] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 443.713965][T15579] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 443.734978][T15579] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 443.753390][T15579] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 443.763339][T15579] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 443.780764][T15579] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 443.790884][T15579] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 443.801771][T15579] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 443.813143][T15579] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 443.823226][T15556] device veth0_macvtap entered promiscuous mode [ 443.838522][ T4485] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 443.857102][ T4485] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 443.865955][ T4485] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 443.882788][ T9251] device hsr_slave_0 left promiscuous mode [ 443.889964][ T9251] device hsr_slave_1 left promiscuous mode [ 443.897094][ T9251] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 443.904674][ T9251] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 443.912866][ T9251] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 443.920547][ T9251] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 443.931762][ T9251] device bridge_slave_1 left promiscuous mode [ 443.939623][ T9251] bridge0: port 2(bridge_slave_1) entered disabled state [ 443.949676][ T9251] device bridge_slave_0 left promiscuous mode [ 443.955957][ T9251] bridge0: port 1(bridge_slave_0) entered disabled state [ 443.967430][ T9251] device hsr_slave_0 left promiscuous mode [ 443.973764][ T9251] device hsr_slave_1 left promiscuous mode [ 443.980942][ T9251] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 443.988785][ T9251] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 443.996749][ T9251] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 444.004140][ T9251] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 444.011845][ T9251] device bridge_slave_1 left promiscuous mode [ 444.018081][ T9251] bridge0: port 2(bridge_slave_1) entered disabled state [ 444.026656][ T9251] device bridge_slave_0 left promiscuous mode [ 444.032811][ T9251] bridge0: port 1(bridge_slave_0) entered disabled state [ 444.050241][ T9251] device veth1_macvtap left promiscuous mode [ 444.056805][ T9251] device veth0_macvtap left promiscuous mode [ 444.062879][ T9251] device veth1_vlan left promiscuous mode [ 444.070091][ T9251] device veth0_vlan left promiscuous mode [ 444.078727][ T9251] device veth1_macvtap left promiscuous mode [ 444.084770][ T9251] device veth0_macvtap left promiscuous mode [ 444.091094][ T9251] device veth1_vlan left promiscuous mode [ 444.097190][ T9251] device veth0_vlan left promiscuous mode [ 444.461635][ T9251] bond2 (unregistering): Released all slaves [ 444.473185][ T9251] bond1 (unregistering): Released all slaves [ 444.560785][ T9251] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 444.576679][ T9251] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 444.623533][ T9251] bond0 (unregistering): Released all slaves [ 444.686670][T15556] device veth1_macvtap entered promiscuous mode [ 444.710528][T15579] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 444.719383][T15579] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 444.729063][T15579] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 444.738028][T15579] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 444.748436][ T9247] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 444.764388][T15556] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 444.775246][T15556] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 444.785165][T15556] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 444.795987][T15556] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 444.805867][T15556] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 444.816686][T15556] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 444.829165][T15556] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 444.866717][ T9247] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 444.877967][ T9247] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 444.890015][T15556] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 444.901198][T15556] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 444.911120][T15556] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 444.922209][T15556] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 444.932089][T15556] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 444.942726][T15556] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 444.956153][T15556] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 444.969198][ T9247] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 444.983194][ T9247] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 445.006705][T15556] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 445.024475][T15556] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 445.033627][T15556] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 445.042559][T15556] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 445.150015][ T9247] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 445.168921][ T9247] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 445.181707][ T9253] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 445.254968][ T9253] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 445.254977][ T4933] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 445.296090][ T9253] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 445.312379][ T9247] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 445.314617][ T4933] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 445.330251][ T9247] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 445.341319][ T9247] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 445.349057][ T9253] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 445.389686][ T9253] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 445.494828][T15809] overlayfs: missing 'lowerdir' [ 445.605361][ T4514] Bluetooth: hci3: command 0x0419 tx timeout [ 445.616737][T15815] loop6: detected capacity change from 0 to 512 [ 445.724625][T15824] lo speed is unknown, defaulting to 1000 [ 445.769813][T15815] EXT4-fs (loop6): couldn't mount as ext3 due to feature incompatibilities [ 447.526477][T15859] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5000'. [ 447.685544][ T9075] usb 7-1: new full-speed USB device number 2 using dummy_hcd [ 448.069819][ T9075] usb 7-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 448.111698][ T9075] usb 7-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid maxpacket 512, setting to 64 [ 448.153082][ T9075] usb 7-1: config 0 interface 0 has no altsetting 0 [ 448.332455][ T9075] usb 7-1: New USB device found, idVendor=046d, idProduct=c24f, bcdDevice= 0.00 [ 448.343999][ T9075] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 448.360889][ T9075] usb 7-1: config 0 descriptor?? [ 448.386063][T15863] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 448.776023][ T9075] usbhid 7-1:0.0: can't add hid device: -71 [ 448.785048][ T9075] usbhid: probe of 7-1:0.0 failed with error -71 [ 449.305840][ T9075] usb 7-1: USB disconnect, device number 2 [ 450.153831][T15949] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5029'. [ 451.266694][T15992] overlayfs: missing 'workdir' [ 451.742212][T16008] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5050'. [ 452.364469][T16026] netlink: 368 bytes leftover after parsing attributes in process `syz.2.5057'. [ 452.727165][T16044] netlink: 'syz.1.5062': attribute type 13 has an invalid length. [ 452.755853][T16044] rdma_rxe: ignoring netdev event = 30 for lo [ 453.366116][T16081] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5077'. [ 453.482759][T16087] loop5: detected capacity change from 0 to 512 [ 453.545372][T16087] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a803c02c, mo2=0002] [ 453.570187][T16081] team0 (unregistering): Port device team_slave_0 removed [ 453.585493][T16087] System zones: 1-12 [ 453.602640][T16081] team0 (unregistering): Port device team_slave_1 removed [ 453.694051][T16087] EXT4-fs error (device loop5): ext4_xattr_inode_iget:409: comm syz.5.5080: error while reading EA inode 32 err=-116 [ 453.797725][T16087] EXT4-fs (loop5): Remounting filesystem read-only [ 453.805009][T16087] EXT4-fs error (device loop5): ext4_xattr_inode_iget:409: comm syz.5.5080: error while reading EA inode 32 err=-116 [ 453.836745][T16087] EXT4-fs (loop5): Remounting filesystem read-only [ 453.843463][T16087] EXT4-fs (loop5): 1 orphan inode deleted [ 454.297736][T16087] EXT4-fs (loop5): mounted filesystem without journal. Opts: errors=remount-ro,debug,debug_want_extra_isize=0x000000000000005e,noauto_da_alloc,bsddf,jqfmt=vfsv1,grpid,. Quota mode: none. [ 455.213134][T16152] syz.1.5102 (16152): attempted to duplicate a private mapping with mremap. This is not supported. [ 455.403357][T16169] netlink: 188 bytes leftover after parsing attributes in process `syz.6.5109'. [ 457.547745][T16215] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5128'. [ 458.287996][T16259] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5144'. [ 458.681905][T16274] overlayfs: failed to clone upperpath [ 459.562182][T16288] netlink: 188 bytes leftover after parsing attributes in process `syz.4.5151'. [ 460.896664][T16322] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5165'. [ 460.925410][T16322] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5165'. [ 462.068280][T16350] netlink: 1004 bytes leftover after parsing attributes in process `syz.1.5176'. [ 462.095180][T16356] loop5: detected capacity change from 0 to 128 [ 462.182312][T16356] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 462.193537][T16356] ext4 filesystem being mounted at /34/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 463.750528][T16409] overlayfs: failed to clone upperpath [ 466.530804][T16481] lo speed is unknown, defaulting to 1000 [ 467.263104][T16528] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5239'. [ 467.384463][T16535] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5239'. [ 467.854472][T16579] overlayfs: unrecognized mount option "appraise" or missing value [ 468.767287][T16627] netlink: 80 bytes leftover after parsing attributes in process `syz.4.5275'. [ 468.855379][T16634] device sit0 entered promiscuous mode [ 468.879267][T16634] netlink: 'syz.5.5276': attribute type 1 has an invalid length. [ 469.385277][T16634] netlink: 1 bytes leftover after parsing attributes in process `syz.5.5276'. [ 469.791877][T16653] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5283'. [ 470.041768][T16667] netlink: 32 bytes leftover after parsing attributes in process `syz.4.5288'. [ 470.377807][T16690] overlayfs: unrecognized mount option "appraise" or missing value [ 470.578215][T16706] netlink: 'syz.5.5301': attribute type 17 has an invalid length. [ 471.842875][T16780] netlink: 'syz.6.5331': attribute type 1 has an invalid length. [ 471.871007][T16781] loop5: detected capacity change from 0 to 512 [ 471.961320][T16780] 8021q: adding VLAN 0 to HW filter on device bond1 [ 471.986391][T16781] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 472.081632][T16783] device vlan2 entered promiscuous mode [ 472.135431][T16783] device bond1 entered promiscuous mode [ 472.183345][T16781] EXT4-fs (loop5): 1 truncate cleaned up [ 472.236565][T16781] EXT4-fs (loop5): mounted filesystem without journal. Opts: debug_want_extra_isize=0x000000000000002e,min_batch_time=0x0000000000000fff,inode_readahead_blks=0x0000000000000080,stripe=0x0000000000000012,inode_readahead_blks=0x0000000000000020,max_batch_time=0x0000000000000007,,errors=continue. Quota mode: none. [ 472.390922][T16784] bond1: (slave gretap1): making interface the new active one [ 472.423480][T16784] device gretap1 entered promiscuous mode [ 472.456433][T16784] bond1: (slave gretap1): Enslaving as an active interface with an up link [ 472.490239][ T1220] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready [ 472.523727][ T1220] IPv6: ADDRCONF(NETDEV_CHANGE): vlan2: link becomes ready [ 473.069758][T16816] netlink: 'syz.6.5343': attribute type 4 has an invalid length. [ 473.112464][T16820] overlayfs: missing 'workdir' [ 473.716085][T16848] lo speed is unknown, defaulting to 1000 [ 474.654735][T16911] loop5: detected capacity change from 0 to 512 [ 474.722789][T16911] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a806e02c, mo2=0002] [ 474.736006][T16911] System zones: 1-12 [ 474.901083][T16911] EXT4-fs error (device loop5): dx_probe:823: inode #2: comm syz.5.5379: Directory hole found for htree index block 0 [ 474.958262][T16911] EXT4-fs (loop5): Remounting filesystem read-only [ 474.964871][T16911] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -117 [ 475.100097][T16911] EXT4-fs error (device loop5): dx_probe:823: inode #2: comm syz.5.5379: Directory hole found for htree index block 0 [ 475.442781][T16911] EXT4-fs (loop5): Remounting filesystem read-only [ 475.613360][T16911] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -117 [ 475.621643][T16911] EXT4-fs (loop5): mounted filesystem without journal. Opts: grpjquota=Jdebug,jqfmt=vfsold,noquota,bsdgroups,usrjquota="nojournal_checksum,errors=remount-ro,,. Quota mode: writeback. [ 475.773351][T16911] EXT4-fs (loop5): re-mounted. Opts: (null). Quota mode: writeback. [ 477.035573][T16948] lo speed is unknown, defaulting to 1000 [ 477.313844][T16967] netlink: 388 bytes leftover after parsing attributes in process `syz.6.5395'. [ 477.467965][T16974] overlayfs: failed to clone upperpath [ 477.686045][T16983] netlink: 40 bytes leftover after parsing attributes in process `syz.1.5404'. [ 477.841360][T16992] netlink: 140 bytes leftover after parsing attributes in process `syz.1.5407'. [ 478.176892][T17008] netlink: 136 bytes leftover after parsing attributes in process `syz.1.5412'. [ 478.219859][T17008] A link change request failed with some changes committed already. Interface ip6_vti0 may have been left with an inconsistent configuration, please check. [ 478.591149][T17032] overlayfs: failed to clone lowerpath [ 479.506057][T17090] netlink: 'syz.1.5444': attribute type 4 has an invalid length. [ 479.965562][ T4193] usb 6-1: new full-speed USB device number 2 using dummy_hcd [ 480.519807][ T4193] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 480.564028][ T4193] usb 6-1: New USB device found, idVendor=172f, idProduct=0037, bcdDevice= 0.00 [ 480.607151][ T4193] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 480.660811][ T4193] usb 6-1: config 0 descriptor?? [ 481.035494][ T4193] usbhid 6-1:0.0: can't add hid device: -71 [ 481.041531][ T4193] usbhid: probe of 6-1:0.0 failed with error -71 [ 481.085481][ T4193] usb 6-1: USB disconnect, device number 2 [ 481.700810][T17151] loop5: detected capacity change from 0 to 2048 [ 481.781129][T17151] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 481.805586][T17151] ext4 filesystem being mounted at /84/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 482.436443][T17192] tipc: Started in network mode [ 482.451842][T17192] tipc: Node identity 569f5f475e27, cluster identity 4711 [ 482.476704][T17192] tipc: Enabled bearer , priority 0 [ 482.905050][T17212] netlink: 68 bytes leftover after parsing attributes in process `syz.2.5490'. [ 482.947816][T17214] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 483.020857][T17214] overlayfs: missing 'lowerdir' [ 483.082293][ T26] kauditd_printk_skb: 236 callbacks suppressed [ 483.082308][ T26] audit: type=1326 audit(1780130050.048:870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17219 comm="syz.1.5493" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca93d136c9 code=0x0 [ 483.601398][T17237] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 484.081544][ T21] tipc: Node number set to 146300743 [ 486.242060][T17282] netlink: 'syz.4.5515': attribute type 4 has an invalid length. [ 486.704708][T17316] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5527'. [ 487.351348][ T26] audit: type=1326 audit(1780130054.318:871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17302 comm="syz.2.5524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7fc00000 [ 487.440468][ T26] audit: type=1326 audit(1780130054.318:872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17302 comm="syz.2.5524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4f202b36c9 code=0x7fc00000 [ 487.464195][T17357] netlink: 20 bytes leftover after parsing attributes in process `syz.6.5540'. [ 487.518879][ T26] audit: type=1326 audit(1780130054.318:873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17302 comm="syz.2.5524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7fc00000 [ 487.598903][ T26] audit: type=1326 audit(1780130054.318:874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17302 comm="syz.2.5524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7fc00000 [ 487.628070][T17367] netlink: 132 bytes leftover after parsing attributes in process `syz.6.5544'. [ 487.671436][ T26] audit: type=1326 audit(1780130054.318:875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17302 comm="syz.2.5524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7fc00000 [ 487.742015][ T26] audit: type=1326 audit(1780130054.318:876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17302 comm="syz.2.5524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7fc00000 [ 487.889931][ T26] audit: type=1326 audit(1780130054.318:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17302 comm="syz.2.5524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7fc00000 [ 487.912560][ T26] audit: type=1326 audit(1780130054.318:878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17302 comm="syz.2.5524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7fc00000 [ 487.935492][ T26] audit: type=1326 audit(1780130054.318:879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17302 comm="syz.2.5524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f202b36c9 code=0x7fc00000 [ 488.042171][T17381] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 488.941507][T17406] netlink: 212 bytes leftover after parsing attributes in process `syz.5.5555'. [ 489.206256][T17418] lo speed is unknown, defaulting to 1000 [ 489.341900][T17430] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5564'. [ 489.379060][T17430] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5564'. [ 489.404842][T17430] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5564'. [ 489.430208][T17430] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5564'. [ 489.560124][T17438] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 489.602734][T17438] overlayfs: missing 'lowerdir' [ 492.011654][ T4485] tipc: Subscription rejected, illegal request [ 492.053669][T17515] bridge0: port 3(hsr_slave_1) entered blocking state [ 492.080547][T17515] bridge0: port 3(hsr_slave_1) entered disabled state [ 492.106635][T17511] lo speed is unknown, defaulting to 1000 [ 492.179979][ T26] kauditd_printk_skb: 58 callbacks suppressed [ 492.179995][ T26] audit: type=1326 audit(1780130059.148:938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17512 comm="syz.1.5589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca93d136c9 code=0x7fc00000 [ 492.316100][T17524] netlink: 132 bytes leftover after parsing attributes in process `syz.2.5592'. [ 493.700220][T17567] 9pnet: Insufficient options for proto=fd [ 497.633513][T17658] lo speed is unknown, defaulting to 1000 [ 498.208500][T17672] lo speed is unknown, defaulting to 1000 [ 501.206498][ T1423] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.213485][ T1423] ieee802154 phy1 wpan1: encryption failed: -22 [ 501.841554][T17810] lo speed is unknown, defaulting to 1000 [ 504.210921][T17907] lo speed is unknown, defaulting to 1000 [ 505.326963][T17924] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5720'. [ 506.964060][T17958] 9pnet: Insufficient options for proto=fd [ 507.949021][T17986] netlink: 64 bytes leftover after parsing attributes in process `syz.6.5746'. [ 510.796139][ T4514] Bluetooth: hci3: command 0x2016 tx timeout [ 511.446117][T18106] netlink: 'syz.1.5803': attribute type 4 has an invalid length. [ 511.454045][T18106] rdma_rxe: ignoring netdev event = 23 for lo [ 511.500328][T18106] rdma_rxe: lo changed mtu to 11337732 [ 511.531520][T18106] rdma_rxe: ignoring netdev event = 14 for lo [ 511.559969][T18106] infiniband syz2: set active [ 511.641628][ T4518] lo speed is unknown, defaulting to 1000 [ 511.691768][ T1326] lo speed is unknown, defaulting to 1000 [ 511.726233][T18120] raw_sendmsg: syz.4.5807 forgot to set AF_INET. Fix it! [ 511.789342][T18121] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 513.842677][T18200] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5844'. [ 514.715937][T18239] netlink: 'syz.6.5856': attribute type 21 has an invalid length. [ 514.723936][T18239] IPv6: NLM_F_CREATE should be specified when creating new route [ 515.629951][T18254] overlayfs: failed to clone upperpath [ 515.743565][T18262] netlink: 'syz.6.5872': attribute type 10 has an invalid length. [ 515.765954][T18262] netlink: 40 bytes leftover after parsing attributes in process `syz.6.5872'. [ 515.826835][T18262] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check. [ 516.501849][T18313] 9pnet: Insufficient options for proto=fd [ 516.882783][T18330] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5904'. [ 516.900582][T18330] syz.1.5904 uses obsolete (PF_INET,SOCK_PACKET) [ 517.037641][T18333] device  entered promiscuous mode [ 517.707368][T18337] tipc: Enabling of bearer rejected, failed to enable media [ 518.606667][T18408] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5940'. [ 518.689926][T18415] netlink: 44 bytes leftover after parsing attributes in process `syz.5.5942'. [ 518.743602][T18415] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5942'. [ 518.769634][T18415] netlink: 16 bytes leftover after parsing attributes in process `syz.5.5942'. [ 518.786289][T18415] netlink: 16 bytes leftover after parsing attributes in process `syz.5.5942'. [ 519.499669][T18480] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5969'. [ 519.845080][T18490] netlink: 'syz.4.5967': attribute type 21 has an invalid length. [ 519.853310][T18490] IPv6: NLM_F_CREATE should be specified when creating new route [ 520.844830][T18507] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 520.864683][T18507] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 520.990394][T18517] netlink: 44 bytes leftover after parsing attributes in process `syz.6.5985'. [ 521.265063][T18539] 9pnet: Could not find request transport: 0xffffffffffffffff [ 521.369564][T18545] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 521.382139][T18548] overlayfs: failed to clone upperpath [ 521.393693][T18545] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 521.493847][T18551] binder: 18550:18551 ioctl c0306201 0 returned -14 [ 522.077800][T18592] netlink: 'syz.6.6022': attribute type 4 has an invalid length. [ 522.099528][T18592] netlink: 'syz.6.6022': attribute type 5 has an invalid length. [ 522.113753][T18592] netlink: 3657 bytes leftover after parsing attributes in process `syz.6.6022'. [ 522.127339][T18597] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6025'. [ 522.136416][T18595] @0Ù: renamed from bond_slave_1 [ 523.384470][T18628] kernel read not supported for file /cpuacct.usage_percpu (pid: 18628 comm: syz.6.6038) [ 523.395881][ T26] audit: type=1800 audit(1780130090.368:939): pid=18628 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.6038" name="cpuacct.usage_percpu" dev="mqueue" ino=92816 res=0 errno=0 [ 523.869217][T18667] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6058'. [ 524.188548][T18648] futex_wake_op: syz.4.6049 tries to shift op by -1; fix this program [ 524.230322][T18693] lo speed is unknown, defaulting to 1000 [ 524.334168][T18701] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6073'. [ 524.373216][T18701] device bridge_slave_1 left promiscuous mode [ 524.390683][T18701] bridge0: port 2(bridge_slave_1) entered disabled state [ 524.413458][T18701] device bridge_slave_0 left promiscuous mode [ 524.428555][T18701] bridge0: port 1(bridge_slave_0) entered disabled state [ 524.854124][T18723] netlink: 12 bytes leftover after parsing attributes in process `syz.6.6083'. [ 526.415359][ T26] audit: type=1326 audit(1780130093.318:940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18754 comm="syz.6.6099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43931c26c9 code=0x7ffc0000 [ 526.568058][ T26] audit: type=1326 audit(1780130093.338:941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18754 comm="syz.6.6099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f43931c26c9 code=0x7ffc0000 [ 526.790522][ T26] audit: type=1326 audit(1780130093.338:942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18754 comm="syz.6.6099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43931c26c9 code=0x7ffc0000 [ 526.909382][ T26] audit: type=1326 audit(1780130093.338:943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18754 comm="syz.6.6099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43931c26c9 code=0x7ffc0000 [ 527.062331][ T26] audit: type=1326 audit(1780130093.348:944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18754 comm="syz.6.6099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f43931c26c9 code=0x7ffc0000 [ 527.142999][ T26] audit: type=1326 audit(1780130093.348:945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18754 comm="syz.6.6099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43931c26c9 code=0x7ffc0000 [ 527.165470][ T26] audit: type=1326 audit(1780130093.348:946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18754 comm="syz.6.6099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43931c26c9 code=0x7ffc0000 [ 527.310401][ T26] audit: type=1326 audit(1780130093.348:947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18754 comm="syz.6.6099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f43931c26c9 code=0x7ffc0000 [ 527.406519][ T26] audit: type=1326 audit(1780130093.348:948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18754 comm="syz.6.6099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43931c26c9 code=0x7ffc0000 [ 527.827183][T18782] @0Ù: renamed from bond_slave_1 [ 528.498755][T18824] netlink: 96 bytes leftover after parsing attributes in process `syz.6.6131'. [ 529.198784][T18844] device  entered promiscuous mode [ 529.846469][T18846] netlink: 'syz.5.6139': attribute type 4 has an invalid length. [ 529.884691][T18846] netlink: 'syz.5.6139': attribute type 5 has an invalid length. [ 529.949228][T18846] netlink: 3657 bytes leftover after parsing attributes in process `syz.5.6139'. [ 530.280143][T18856] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6144'. [ 530.389446][T18856] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6144'. [ 530.905416][ T26] kauditd_printk_skb: 23 callbacks suppressed [ 530.905606][ T26] audit: type=1107 audit(1780130097.788:972): pid=18869 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 531.647655][ C0] ------------[ cut here ]------------ [ 531.653297][ C0] WARNING: CPU: 0 PID: 18880 at net/mac80211/tx.c:4859 __ieee80211_beacon_get+0x172c/0x1f80 [ 531.663568][ C0] Modules linked in: [ 531.667506][ C0] CPU: 0 PID: 18880 Comm: syz.6.6152 Not tainted syzkaller #0 [ 531.674991][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 531.685116][ C0] RIP: 0010:__ieee80211_beacon_get+0x172c/0x1f80 [ 531.691516][ C0] Code: f8 0f 0b e9 f1 fa ff ff e8 01 51 3a f8 0f 0b 4c 8b 74 24 08 e9 36 fe ff ff e8 f0 50 3a f8 0f 0b e9 3c ef ff ff e8 e4 50 3a f8 <0f> 0b e9 b8 f2 ff ff e8 98 f2 6b 00 44 89 e1 80 e1 07 80 c1 03 38 [ 531.711178][ C0] RSP: 0018:ffffc900000078c0 EFLAGS: 00010246 [ 531.717304][ C0] RAX: ffffffff893d7b2c RBX: ffff888038268c80 RCX: ffff888022671dc0 [ 531.725319][ C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000 [ 531.733328][ C0] RBP: ffffc90000007ae8 R08: ffff888022671dc0 R09: 0000000000000003 [ 531.741379][ C0] R10: 0000000000000007 R11: 0000000000000100 R12: ffff888061c84a00 [ 531.749423][ C0] R13: dffffc0000000000 R14: 0000000000000000 R15: 1ffff92000000f28 [ 531.757459][ C0] FS: 00007f43914296c0(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000 [ 531.766439][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 531.773048][ C0] CR2: 0000001b31f20ff8 CR3: 0000000061b97000 CR4: 00000000003506f0 [ 531.781091][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 531.789244][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 531.797288][ C0] Call Trace: [ 531.800589][ C0] [ 531.803460][ C0] ? entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 531.809617][ C0] ? ieee80211_beacon_get_template+0x30/0x30 [ 531.815656][ C0] ? verify_lock_unused+0x140/0x140 [ 531.820893][ C0] ? __lock_acquire+0x13ad/0x7c60 [ 531.826014][ C0] ieee80211_beacon_get_tim+0x48/0x840 [ 531.831514][ C0] mac80211_hwsim_beacon_tx+0xf4/0x920 [ 531.837060][ C0] __iterate_interfaces+0x243/0x500 [ 531.842285][ C0] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0 [ 531.848590][ C0] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0 [ 531.854855][ C0] ieee80211_iterate_active_interfaces_atomic+0xb3/0x140 [ 531.861954][ C0] mac80211_hwsim_beacon+0x9b/0x180 [ 531.867222][ C0] __hrtimer_run_queues+0x53d/0xc40 [ 531.872445][ C0] ? ktime_get_update_offsets_now+0x95/0x3e0 [ 531.878481][ C0] ? ktime_get_update_offsets_now+0x95/0x3e0 [ 531.884492][ C0] ? hw_scan_work+0xeb0/0xeb0 [ 531.889245][ C0] ? hrtimer_interrupt+0x8d0/0x8d0 [ 531.894391][ C0] hrtimer_run_softirq+0x176/0x240 [ 531.899585][ C0] handle_softirqs+0x328/0x820 [ 531.904447][ C0] ? __irq_exit_rcu+0x12f/0x220 [ 531.909371][ C0] ? do_softirq+0x200/0x200 [ 531.913910][ C0] __irq_exit_rcu+0x12f/0x220 [ 531.918654][ C0] ? irq_exit_rcu+0x20/0x20 [ 531.923193][ C0] irq_exit_rcu+0x5/0x20 [ 531.927497][ C0] sysvec_apic_timer_interrupt+0xa0/0xc0 [ 531.933161][ C0] [ 531.936147][ C0] [ 531.939100][ C0] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 531.945121][ C0] RIP: 0010:__sanitizer_cov_trace_pc+0x32/0x60 [ 531.951380][ C0] Code: a4 a3 8a 7e 65 8b 15 a5 a3 8a 7e 81 e2 00 01 ff 00 74 11 81 fa 00 01 00 00 75 35 83 b9 34 16 00 00 00 74 2c 8b 91 10 16 00 00 <83> fa 02 75 21 48 8b 91 18 16 00 00 48 8b 32 48 8d 7e 01 8b 89 14 [ 531.971034][ C0] RSP: 0018:ffffc900042aebf0 EFLAGS: 00000246 [ 531.977165][ C0] RAX: ffffffff818478d5 RBX: 00007f43931c26c9 RCX: ffff888022671dc0 [ 531.985154][ C0] RDX: 0000000000000002 RSI: 000000000007ffff RDI: 0000000000080000 [ 531.993199][ C0] RBP: 000000000000e301 R08: 0000000000000004 R09: 000000000000000e [ 532.001221][ C0] R10: fffff52000855d9d R11: 1ffff92000855d9b R12: ffff888022671dc0 [ 532.009253][ C0] R13: 1ffff92000855dbc R14: 00007f43931c26c9 R15: 1ffff92000855d9a [ 532.017279][ C0] ? rcu_lock_acquire+0x5/0x30 [ 532.022082][ C0] rcu_lock_acquire+0x5/0x30 [ 532.026748][ C0] is_bpf_text_address+0x1d/0x270 [ 532.031814][ C0] __kernel_text_address+0x9a/0x100 [ 532.037082][ C0] unwind_get_return_address+0x49/0x80 [ 532.042575][ C0] ? stack_trace_save+0xe0/0xe0 [ 532.047487][ C0] arch_stack_walk+0xf2/0x140 [ 532.052198][ C0] stack_trace_save+0x98/0xe0 [ 532.056927][ C0] ? stack_trace_snprint+0xf0/0xf0 [ 532.062058][ C0] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 532.062565][T18891] overlayfs: missing 'lowerdir' [ 532.068103][ C0] ? lock_chain_count+0x20/0x20 [ 532.068149][ C0] save_stack+0xf3/0x1e0 [ 532.082130][ C0] ? __reset_page_owner+0x180/0x180 [ 532.087408][ C0] ? get_page_from_freelist+0x1b77/0x1c60 [ 532.093160][ C0] ? __alloc_pages+0x1e1/0x470 [ 532.097991][ C0] ? alloc_pages_vma+0x393/0x7c0 [ 532.102949][ C0] ? shmem_alloc_and_acct_page+0x427/0xb70 [ 532.108812][ C0] ? shmem_getpage_gfp+0x14f4/0x2d40 [ 532.114121][ C0] ? shmem_fault+0x1a9/0x520 [ 532.118776][ C0] ? __do_fault+0x141/0x330 [ 532.123302][ C0] ? handle_mm_fault+0x2946/0x43b0 [ 532.128599][ C0] ? __get_user_pages+0x93e/0x11c0 [ 532.133746][ C0] ? populate_vma_page_range+0x213/0x290 [ 532.139446][ C0] ? __mm_populate+0x26f/0x3a0 [ 532.144233][ C0] ? vm_mmap_pgoff+0x203/0x2b0 [ 532.149066][ C0] ? ksys_mmap_pgoff+0x140/0x780 [ 532.154026][ C0] ? do_syscall_64+0x4c/0xa0 [ 532.158686][ C0] ? entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 532.164791][ C0] ? lock_chain_count+0x20/0x20 [ 532.169709][ C0] ? preempt_count_add+0x8d/0x190 [ 532.174766][ C0] __set_page_owner+0x41/0x2d0 [ 532.179597][ C0] ? post_alloc_hook+0x106/0x220 [ 532.184628][ C0] get_page_from_freelist+0x1b77/0x1c60 [ 532.190264][ C0] ? __might_sleep+0xf0/0xf0 [ 532.194881][ C0] ? mark_lock+0x94/0x320 [ 532.199284][ C0] ? __alloc_pages+0x470/0x470 [ 532.204095][ C0] ? prepare_alloc_pages+0x368/0x5f0 [ 532.209449][ C0] __alloc_pages+0x1e1/0x470 [ 532.214064][ C0] ? zone_statistics+0x170/0x170 [ 532.219088][ C0] ? verify_lock_unused+0x140/0x140 [ 532.224316][ C0] alloc_pages_vma+0x393/0x7c0 [ 532.229164][ C0] ? mpol_shared_policy_lookup+0x147/0x1e0 [ 532.235007][ C0] shmem_alloc_and_acct_page+0x427/0xb70 [ 532.240702][ C0] ? shmem_swapin_page+0x2140/0x2140 [ 532.246048][ C0] ? __lock_acquire+0x7c60/0x7c60 [ 532.251099][ C0] ? xas_descend+0x210/0x3b0 [ 532.255748][ C0] ? xas_load+0x127/0x140 [ 532.260131][ C0] ? pagecache_get_page+0xbff/0xef0 [ 532.265403][ C0] ? page_cache_prev_miss+0x360/0x360 [ 532.270799][ C0] ? mark_lock+0x94/0x320 [ 532.273113][T18896] syz.4.6160[18896] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 532.275155][ C0] ? verify_lock_unused+0x140/0x140 [ 532.291782][ C0] ? __lock_acquire+0x13ad/0x7c60 [ 532.296880][ C0] shmem_getpage_gfp+0x14f4/0x2d40 [ 532.302058][ C0] shmem_fault+0x1a9/0x520 [ 532.306572][ C0] ? shmem_fallocate+0xe20/0xe20 [ 532.311538][ C0] ? filemap_read_page+0x4c0/0x4c0 [ 532.316710][ C0] ? count_memcg_event_mm+0x311/0x360 [ 532.322119][ C0] __do_fault+0x141/0x330 [ 532.326528][ C0] handle_mm_fault+0x2946/0x43b0 [ 532.331155][T18896] syz.4.6160[18896] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 532.331501][ C0] ? get_page+0xe0/0xe0 [ 532.347117][ C0] ? follow_page_mask+0xa6e/0x12d0 [ 532.352271][ C0] __get_user_pages+0x93e/0x11c0 [ 532.357302][ C0] ? populate_vma_page_range+0x290/0x290 [ 532.362969][ C0] ? read_lock_is_recursive+0x10/0x10 [ 532.368415][ C0] populate_vma_page_range+0x213/0x290 [ 532.373933][ C0] __mm_populate+0x26f/0x3a0 [ 532.378597][ C0] ? check_vma_flags+0x480/0x480 [ 532.383562][ C0] ? preempt_count_add+0x8d/0x190 [ 532.388660][ C0] ? up_write+0x1bb/0x420 [ 532.393025][ C0] vm_mmap_pgoff+0x203/0x2b0 [ 532.397693][ C0] ? account_locked_vm+0xe0/0xe0 [ 532.402673][ C0] ? __lock_acquire+0x7c60/0x7c60 [ 532.407773][ C0] ksys_mmap_pgoff+0x140/0x780 [ 532.412574][ C0] ? mmap_region+0x1660/0x1660 [ 532.417416][ C0] ? lockdep_hardirqs_on+0x94/0x140 [ 532.422649][ C0] do_syscall_64+0x4c/0xa0 [ 532.427123][ C0] ? clear_bhb_loop+0x30/0x80 [ 532.431838][ C0] ? clear_bhb_loop+0x30/0x80 [ 532.436588][ C0] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 532.442504][ C0] RIP: 0033:0x7f43931c26c9 [ 532.446994][ C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 532.466671][ C0] RSP: 002b:00007f4391429038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 532.475115][ C0] RAX: ffffffffffffffda RBX: 00007f4393418fa0 RCX: 00007f43931c26c9 [ 532.483142][ C0] RDX: b635773f06ebbeee RSI: 0000000000b36000 RDI: 0000200000000000 [ 532.491153][ C0] RBP: 00007f4393244f91 R08: ffffffffffffffff R09: 0000000000000000 [ 532.499184][ C0] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000 [ 532.507196][ C0] R13: 00007f4393419038 R14: 00007f4393418fa0 R15: 00007fffc672cfc8 [ 532.515201][ C0] [ 532.518293][ C0] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 532.525581][ C0] CPU: 0 PID: 18880 Comm: syz.6.6152 Not tainted syzkaller #0 [ 532.533049][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 532.543249][ C0] Call Trace: [ 532.546554][ C0] [ 532.549449][ C0] dump_stack_lvl+0x168/0x230 [ 532.554159][ C0] ? show_regs_print_info+0x20/0x20 [ 532.559369][ C0] ? load_image+0x3b0/0x3b0 [ 532.563886][ C0] panic+0x2c9/0x7f0 [ 532.567784][ C0] ? bpf_jit_dump+0xd0/0xd0 [ 532.572307][ C0] ? __ieee80211_beacon_get+0x172c/0x1f80 [ 532.578074][ C0] __warn+0x248/0x2b0 [ 532.582070][ C0] ? __ieee80211_beacon_get+0x172c/0x1f80 [ 532.587800][ C0] report_bug+0x1b7/0x2e0 [ 532.592141][ C0] handle_bug+0x3a/0x70 [ 532.596294][ C0] exc_invalid_op+0x16/0x40 [ 532.600799][ C0] asm_exc_invalid_op+0x16/0x20 [ 532.605670][ C0] RIP: 0010:__ieee80211_beacon_get+0x172c/0x1f80 [ 532.612029][ C0] Code: f8 0f 0b e9 f1 fa ff ff e8 01 51 3a f8 0f 0b 4c 8b 74 24 08 e9 36 fe ff ff e8 f0 50 3a f8 0f 0b e9 3c ef ff ff e8 e4 50 3a f8 <0f> 0b e9 b8 f2 ff ff e8 98 f2 6b 00 44 89 e1 80 e1 07 80 c1 03 38 [ 532.631642][ C0] RSP: 0018:ffffc900000078c0 EFLAGS: 00010246 [ 532.637720][ C0] RAX: ffffffff893d7b2c RBX: ffff888038268c80 RCX: ffff888022671dc0 [ 532.645700][ C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000 [ 532.653674][ C0] RBP: ffffc90000007ae8 R08: ffff888022671dc0 R09: 0000000000000003 [ 532.661665][ C0] R10: 0000000000000007 R11: 0000000000000100 R12: ffff888061c84a00 [ 532.669647][ C0] R13: dffffc0000000000 R14: 0000000000000000 R15: 1ffff92000000f28 [ 532.677654][ C0] ? __ieee80211_beacon_get+0x172c/0x1f80 [ 532.683405][ C0] ? entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 532.689484][ C0] ? ieee80211_beacon_get_template+0x30/0x30 [ 532.695470][ C0] ? verify_lock_unused+0x140/0x140 [ 532.700677][ C0] ? __lock_acquire+0x13ad/0x7c60 [ 532.705716][ C0] ieee80211_beacon_get_tim+0x48/0x840 [ 532.711174][ C0] mac80211_hwsim_beacon_tx+0xf4/0x920 [ 532.716636][ C0] __iterate_interfaces+0x243/0x500 [ 532.722266][ C0] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0 [ 532.728511][ C0] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0 [ 532.734743][ C0] ieee80211_iterate_active_interfaces_atomic+0xb3/0x140 [ 532.741787][ C0] mac80211_hwsim_beacon+0x9b/0x180 [ 532.746992][ C0] __hrtimer_run_queues+0x53d/0xc40 [ 532.752185][ C0] ? ktime_get_update_offsets_now+0x95/0x3e0 [ 532.758160][ C0] ? ktime_get_update_offsets_now+0x95/0x3e0 [ 532.764147][ C0] ? hw_scan_work+0xeb0/0xeb0 [ 532.768836][ C0] ? hrtimer_interrupt+0x8d0/0x8d0 [ 532.773952][ C0] hrtimer_run_softirq+0x176/0x240 [ 532.779070][ C0] handle_softirqs+0x328/0x820 [ 532.783837][ C0] ? __irq_exit_rcu+0x12f/0x220 [ 532.788692][ C0] ? do_softirq+0x200/0x200 [ 532.793200][ C0] __irq_exit_rcu+0x12f/0x220 [ 532.797873][ C0] ? irq_exit_rcu+0x20/0x20 [ 532.802383][ C0] irq_exit_rcu+0x5/0x20 [ 532.806617][ C0] sysvec_apic_timer_interrupt+0xa0/0xc0 [ 532.812251][ C0] [ 532.815190][ C0] [ 532.818123][ C0] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 532.824107][ C0] RIP: 0010:__sanitizer_cov_trace_pc+0x32/0x60 [ 532.830262][ C0] Code: a4 a3 8a 7e 65 8b 15 a5 a3 8a 7e 81 e2 00 01 ff 00 74 11 81 fa 00 01 00 00 75 35 83 b9 34 16 00 00 00 74 2c 8b 91 10 16 00 00 <83> fa 02 75 21 48 8b 91 18 16 00 00 48 8b 32 48 8d 7e 01 8b 89 14 [ 532.849869][ C0] RSP: 0018:ffffc900042aebf0 EFLAGS: 00000246 [ 532.855933][ C0] RAX: ffffffff818478d5 RBX: 00007f43931c26c9 RCX: ffff888022671dc0 [ 532.863899][ C0] RDX: 0000000000000002 RSI: 000000000007ffff RDI: 0000000000080000 [ 532.871869][ C0] RBP: 000000000000e301 R08: 0000000000000004 R09: 000000000000000e [ 532.879838][ C0] R10: fffff52000855d9d R11: 1ffff92000855d9b R12: ffff888022671dc0 [ 532.887807][ C0] R13: 1ffff92000855dbc R14: 00007f43931c26c9 R15: 1ffff92000855d9a [ 532.895783][ C0] ? rcu_lock_acquire+0x5/0x30 [ 532.900567][ C0] rcu_lock_acquire+0x5/0x30 [ 532.905151][ C0] is_bpf_text_address+0x1d/0x270 [ 532.910182][ C0] __kernel_text_address+0x9a/0x100 [ 532.915382][ C0] unwind_get_return_address+0x49/0x80 [ 532.920836][ C0] ? stack_trace_save+0xe0/0xe0 [ 532.925679][ C0] arch_stack_walk+0xf2/0x140 [ 532.930363][ C0] stack_trace_save+0x98/0xe0 [ 532.935042][ C0] ? stack_trace_snprint+0xf0/0xf0 [ 532.940145][ C0] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 532.946122][ C0] ? lock_chain_count+0x20/0x20 [ 532.950972][ C0] save_stack+0xf3/0x1e0 [ 532.955217][ C0] ? __reset_page_owner+0x180/0x180 [ 532.960411][ C0] ? get_page_from_freelist+0x1b77/0x1c60 [ 532.966127][ C0] ? __alloc_pages+0x1e1/0x470 [ 532.970895][ C0] ? alloc_pages_vma+0x393/0x7c0 [ 532.975829][ C0] ? shmem_alloc_and_acct_page+0x427/0xb70 [ 532.981638][ C0] ? shmem_getpage_gfp+0x14f4/0x2d40 [ 532.986922][ C0] ? shmem_fault+0x1a9/0x520 [ 532.991509][ C0] ? __do_fault+0x141/0x330 [ 532.996008][ C0] ? handle_mm_fault+0x2946/0x43b0 [ 533.001116][ C0] ? __get_user_pages+0x93e/0x11c0 [ 533.006218][ C0] ? populate_vma_page_range+0x213/0x290 [ 533.011845][ C0] ? __mm_populate+0x26f/0x3a0 [ 533.016601][ C0] ? vm_mmap_pgoff+0x203/0x2b0 [ 533.021360][ C0] ? ksys_mmap_pgoff+0x140/0x780 [ 533.026291][ C0] ? do_syscall_64+0x4c/0xa0 [ 533.030874][ C0] ? entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 533.036935][ C0] ? lock_chain_count+0x20/0x20 [ 533.041786][ C0] ? preempt_count_add+0x8d/0x190 [ 533.047244][ C0] __set_page_owner+0x41/0x2d0 [ 533.052004][ C0] ? post_alloc_hook+0x106/0x220 [ 533.056939][ C0] get_page_from_freelist+0x1b77/0x1c60 [ 533.062496][ C0] ? __might_sleep+0xf0/0xf0 [ 533.067087][ C0] ? mark_lock+0x94/0x320 [ 533.071423][ C0] ? __alloc_pages+0x470/0x470 [ 533.076186][ C0] ? prepare_alloc_pages+0x368/0x5f0 [ 533.081477][ C0] __alloc_pages+0x1e1/0x470 [ 533.086066][ C0] ? zone_statistics+0x170/0x170 [ 533.091016][ C0] ? verify_lock_unused+0x140/0x140 [ 533.096218][ C0] alloc_pages_vma+0x393/0x7c0 [ 533.100988][ C0] ? mpol_shared_policy_lookup+0x147/0x1e0 [ 533.106805][ C0] shmem_alloc_and_acct_page+0x427/0xb70 [ 533.112438][ C0] ? shmem_swapin_page+0x2140/0x2140 [ 533.117732][ C0] ? __lock_acquire+0x7c60/0x7c60 [ 533.122801][ C0] ? xas_descend+0x210/0x3b0 [ 533.127393][ C0] ? xas_load+0x127/0x140 [ 533.131715][ C0] ? pagecache_get_page+0xbff/0xef0 [ 533.136911][ C0] ? page_cache_prev_miss+0x360/0x360 [ 533.142284][ C0] ? mark_lock+0x94/0x320 [ 533.146611][ C0] ? verify_lock_unused+0x140/0x140 [ 533.151807][ C0] ? __lock_acquire+0x13ad/0x7c60 [ 533.156822][ C0] shmem_getpage_gfp+0x14f4/0x2d40 [ 533.161945][ C0] shmem_fault+0x1a9/0x520 [ 533.166379][ C0] ? shmem_fallocate+0xe20/0xe20 [ 533.171315][ C0] ? filemap_read_page+0x4c0/0x4c0 [ 533.176431][ C0] ? count_memcg_event_mm+0x311/0x360 [ 533.181807][ C0] __do_fault+0x141/0x330 [ 533.186137][ C0] handle_mm_fault+0x2946/0x43b0 [ 533.191087][ C0] ? get_page+0xe0/0xe0 [ 533.195253][ C0] ? follow_page_mask+0xa6e/0x12d0 [ 533.200379][ C0] __get_user_pages+0x93e/0x11c0 [ 533.205339][ C0] ? populate_vma_page_range+0x290/0x290 [ 533.210965][ C0] ? read_lock_is_recursive+0x10/0x10 [ 533.216341][ C0] populate_vma_page_range+0x213/0x290 [ 533.221799][ C0] __mm_populate+0x26f/0x3a0 [ 533.226473][ C0] ? check_vma_flags+0x480/0x480 [ 533.231525][ C0] ? preempt_count_add+0x8d/0x190 [ 533.236556][ C0] ? up_write+0x1bb/0x420 [ 533.240900][ C0] vm_mmap_pgoff+0x203/0x2b0 [ 533.245498][ C0] ? account_locked_vm+0xe0/0xe0 [ 533.250438][ C0] ? __lock_acquire+0x7c60/0x7c60 [ 533.255468][ C0] ksys_mmap_pgoff+0x140/0x780 [ 533.260235][ C0] ? mmap_region+0x1660/0x1660 [ 533.265003][ C0] ? lockdep_hardirqs_on+0x94/0x140 [ 533.270202][ C0] do_syscall_64+0x4c/0xa0 [ 533.274610][ C0] ? clear_bhb_loop+0x30/0x80 [ 533.279281][ C0] ? clear_bhb_loop+0x30/0x80 [ 533.283956][ C0] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 533.289850][ C0] RIP: 0033:0x7f43931c26c9 [ 533.294268][ C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 533.313877][ C0] RSP: 002b:00007f4391429038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 533.322289][ C0] RAX: ffffffffffffffda RBX: 00007f4393418fa0 RCX: 00007f43931c26c9 [ 533.330272][ C0] RDX: b635773f06ebbeee RSI: 0000000000b36000 RDI: 0000200000000000 [ 533.338240][ C0] RBP: 00007f4393244f91 R08: ffffffffffffffff R09: 0000000000000000 [ 533.346218][ C0] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000 [ 533.354206][ C0] R13: 00007f4393419038 R14: 00007f4393418fa0 R15: 00007fffc672cfc8 [ 533.362188][ C0] [ 533.365481][ C0] Kernel Offset: disabled [ 533.370110][ C0] Rebooting in 86400 seconds..