last executing test programs: 6.07808507s ago: executing program 4 (id=1635): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="8300d1c4c9036e8866400fe2de0fae4e0afaf2466ff00fc01e63df", 0xdc000006, 0x0, {[0x3]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8=0x0, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=@nat={'nat\x00', 0x2, 0x5, 0x4a0, 0x0, 0x1e0, 0xffffffff, 0x0, 0x1e0, 0x400, 0x400, 0xffffffff, 0x400, 0x400, 0x5, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00', @remote, [], [], 'dvmrp0\x00', 'veth0_to_batadv\x00'}, 0x0, 0xa8, 0xf0}, @REDIRECT={0x48, 'REDIRECT\x00', 0x0, {0x1, @ipv6=@loopback, @ipv6=@mcast2, @gre_key, @gre_key}}}, {{@ipv6={@dev, @loopback, [], [], 'dvmrp0\x00', 'veth1_vlan\x00'}, 0x0, 0xa8, 0xf0}, @unspec=@SNAT1={0x48, 'SNAT\x00', 0x1, {0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @ipv6=@private0, @icmp_id, @gre_key}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @NETMAP={0x48, 'NETMAP\x00', 0x0, {0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @dev}, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @port, @gre_key}}}, {{@ipv6={@rand_addr=' \x01\x00', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', [], [], 'ipvlan0\x00', 'pim6reg\x00'}, 0x0, 0xd0, 0x100, 0x0, {}, [@common=@mh={{0x28}, {"a7fe"}}]}, @common=@inet=@SET2={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x500) 5.015447788s ago: executing program 4 (id=1643): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) getsockopt$WPAN_SECURITY(r2, 0x0, 0x1, 0x0, &(0x7f0000000080)) 4.002851261s ago: executing program 4 (id=1651): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_MCAST_MSFILTER(r2, 0x0, 0x30, 0x0, 0x5000) 3.503223987s ago: executing program 2 (id=1654): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) openat$adsp1(0xffffffffffffff9c, &(0x7f00000001c0), 0x1a1201, 0x0) 3.133449246s ago: executing program 1 (id=1656): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_TX_RING(r2, 0x11b, 0x3, &(0x7f0000000140)=0x4000, 0x4) 2.948047412s ago: executing program 3 (id=1657): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={0x70, 0x0, 0x1, 0x401, 0x11, 0x0, {0x2, 0x0, 0xfffd}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @loopback=0x64010101}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0xc, 0x6, 0x0, 0x1, [@CTA_NAT_V4_MINIP={0x8, 0x1, @rand_addr=0x64010101}]}]}, 0x70}}, 0x0) 2.921908293s ago: executing program 4 (id=1658): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000000200)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) ioctl$sock_FIOSETOWN(r2, 0x8901, &(0x7f0000000100)) 2.768341968s ago: executing program 2 (id=1659): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) getsockopt$IP6T_SO_GET_INFO(r2, 0x29, 0x40, 0x0, &(0x7f00000000c0)) 2.748799211s ago: executing program 0 (id=1660): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=ANY=[@ANYBLOB="1c0000004a000102"], 0x164}}, 0x0) 2.620364815s ago: executing program 1 (id=1661): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) fchmod(0xffffffffffffffff, 0x1c0) 2.429156282s ago: executing program 3 (id=1662): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000180)) 2.251773273s ago: executing program 0 (id=1663): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x84000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f00000004c0)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8=0x0, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmmsg$inet6(r2, &(0x7f0000000a40)=[{{&(0x7f0000000000)={0xa, 0x4e24, 0x0, @remote, 0x9}, 0x1c, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="38020000000000"], 0x590}}], 0x1, 0x8008800) 2.143327361s ago: executing program 2 (id=1664): r0 = socket$tipc(0x1e, 0x5, 0x0) r1 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000080)={0x42, 0x80000009, 0x2}, 0x10) r2 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000300)={0x42, 0x3}, 0x10) r3 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x4}, 0x10) bind$tipc(r0, &(0x7f0000000100)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x2, 0x8000002}}, 0x10) sendmsg$tipc(r2, &(0x7f00000002c0)={&(0x7f0000000280)=@name={0x1e, 0x2, 0x0, {{0x42, 0x4}, 0x1}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x240080c0) 2.077527116s ago: executing program 1 (id=1665): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x12}, 0x50) 1.916541864s ago: executing program 4 (id=1666): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000006040), r2) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000006080)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000006180)={0x0, 0x0, &(0x7f0000006140)={&(0x7f0000000000)={0x44, r3, 0x11, 0x70bd26, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x1, 0xfffffffc}}}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x1}, @NL80211_ATTR_IFNAME={0x14, 0x4, 'pimreg\x00'}]}, 0x44}, 0x1, 0x0, 0x0, 0x4040}, 0x20004014) 1.861945101s ago: executing program 3 (id=1667): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8=0x0, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6f, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket(0x11, 0x3, 0x0) sendmmsg(r2, &(0x7f0000000000)=[{{&(0x7f0000000400)=@qipcrtr={0x2a, 0x1, 0x4001}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000040)="d479183d7d98d181a4b5f3e38100", 0xe}], 0x1}}], 0x1, 0x24044015) 1.689343774s ago: executing program 0 (id=1668): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8=0x0, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x1000, 0x0, @mcast2, 0x28}, 0x1c) 1.619157672s ago: executing program 2 (id=1669): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffed3) mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1d4e, 0x103) 1.467386895s ago: executing program 1 (id=1670): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f00000041c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8044) bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="8500000008000000d4020000200000009500000000000000"], &(0x7f0000000240)='GPL\x00', 0x1, 0x473, &(0x7f0000000280)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff60}, 0x48) syz_read_part_table(0x5c8, &(0x7f0000000000)="$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") 1.343564346s ago: executing program 3 (id=1671): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) chmod(0x0, 0x24c) 1.179781075s ago: executing program 0 (id=1672): r0 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00') openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff) r1 = inotify_init() inotify_add_watch(r1, &(0x7f0000000180)='./file1\x00', 0x2) ioctl$INOTIFY_IOC_SETNEXTWD(r1, 0x40044900, 0x200) r2 = syz_create_resource$binfmt(&(0x7f0000001400)='./file0\x00') openat$binfmt(0xffffffffffffff9c, r2, 0x42, 0x1ff) inotify_add_watch(r1, &(0x7f0000000080)='./file0\x00', 0x80000006) utime(&(0x7f0000000000)='./file0\x00', 0x0) 1.067512143s ago: executing program 2 (id=1673): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8) 703.388499ms ago: executing program 4 (id=1674): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) prlimit64(0x0, 0x0, &(0x7f00000039c0)={0xc, 0xb6}, 0x0) 676.694304ms ago: executing program 3 (id=1675): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sigaltstack(&(0x7f0000000000)={0x0, 0x2}, 0x0) 672.999902ms ago: executing program 0 (id=1676): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) 638.401245ms ago: executing program 1 (id=1677): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="240000002a00010a"], 0x24}}, 0x0) 347.520687ms ago: executing program 2 (id=1678): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup(r0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) r3 = socket(0x2, 0xa, 0x300) setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000100)={0x1, &(0x7f00000001c0)=[{0x6, 0x4, 0x6, 0x6}]}, 0x10) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}) write$tun(r2, &(0x7f0000000440)=ANY=[@ANYBLOB="080086dd0001110004000000a60c6eec00be00442ffffe8000000000000000000000000000aaff020000000000000000000000000001042088be", @ANYRESDEC=r0], 0xfdef) 119.311571ms ago: executing program 3 (id=1679): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) syz_io_uring_setup(0x2, &(0x7f0000000040)={0x0, 0x800389b, 0xc000, 0x1, 0x323}, 0x0, 0x0) 60.724737ms ago: executing program 0 (id=1680): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000240)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0}) r2 = dup3(r1, r0, 0x0) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x8, 0x0, &(0x7f0000001600)=[@increfs={0x40046304, 0x1}], 0x0, 0x0, 0x0}) 0s ago: executing program 1 (id=1681): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = memfd_create(&(0x7f0000000300)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6\xb5\x00\x83y\xf3\xb2\xe6b \x00\x00\x00\x00\x00\x00\x01\x00\x00\xf7\xffg\xf5\x12oP\xfe\xe6\xd2SLR\xa1\x00\x00\x17\x1f$^\xe1\x00\x00\x00\x00\x00\x00\a\xff;\xeb\xf1\xd0\xce\xe5\x19\x12\b\x01\xd9\xae>/\x05\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xdcc\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0D\x93.\xf25\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x05\x00\xfd\xc7\x00\x00\x00\x00\x91\x98\x15\xec\xdb\xaa\t9\x11\xb4O$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{a?\xd0\xe1{\x84\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3J\xc2t\x96\xf8\xb1\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9\xb6Pr\xd4\xb5X\\\xdbD\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xba\xce\xb3%QF\x03\b\x9dh\xcb)\xf4f\x12[\xf9\r\t\xef{h\xb0\xc0:\x8f|\x8f\x06\xf8T\x826`M\x11\x1c\xb0*8\v\x1e\xcf\x03\xd3\xe8,?P\xac\x86\x13b\xa8D\x0f\x93\xab\x1c\x11\x00\xc5\x8d\x82\x9c\xd6B[\xc9\x00\xf5]\x81\xf3\xfd\x06M\xbe\xf9\xba\x9em\xe9\"\x03\x933P\x9b\xcc\x9b\f\xa7\x8f9\x988\tgC\xbc\xe0\xc5\xf4\xe0E%\xd9\xd8w\x00k\x042Y\xd9\xc5\xe59\xa95\xd1m\xd8hCuZYi\x10D\xb9\xe6\xff\x04K%yH\xe5\xf4\x8b\x03Ca8\x1e\xe9\\#\xf8O\fw\xd9\xf5cF\xcc\x1a2ex\xb4\x0fi$\x97\x81.\x02\x04m\xfbT2\xd4\"\x1e\xf0\x16\x0f\x97\xe6j}J\xca\xb8)f\xd5\xfd>\x9bU\xb0\x03Zt0\xc0b\xad\xef@o\xc1\xd6\x17T\f\xc30\xe2\x89\xf6L\x1b1\x9c\x19\xa7\x80\x1b:\xbb\x04\xd7\xd1\x06\xa0\xe9\xbah\xb6\xb2\xea/{Q\xca\x14\x13\x9ajWt\xc9\xecd\r\xd5)\x1d\xaf\n\xc0\xc1\x1d}DY\x95&\xe7\xf4U\xff\xcd&\a\x9f\x1bg\xe5|~\xc1\xc5n\x12%ur\xa1\x9e`\xc2\x01\b,\x18\xaf\xccD\xdeag\xc6\xf3\xd6\x94\x9d\xae\x8bl\xee\x7fu\xe5bu\x84\x04\xb3@\xa1\xf7\xc6\x13\xf9I\xfa\x12\xfc\x96\",aT\xfd\"\x01\xcdSL\b\x7f\xfe\xab\xd7\x88\x87\x82\x9c:L\xd2\xb8\xfa5\x066\x82\xf3_LUr\xfa\xd2\x99d \x97c9G\x99\xe3\xcc$\x96cu\x97\xe7\xc7a\tm\xe8F\xc7j\xf8\x98\x81\xe7\xf7\xab3F\xf4u\xdaav\xd21\v\x99HG\xdfx\x1cPl\t#\xc1\x8e\xddW\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x0f\xa4\x83t\xdcyx', 0x8) fallocate(r2, 0x52, 0x0, 0x8000400001) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.95' (ED25519) to the list of known hosts. syzkaller login: [ 170.931065][ T5781] cgroup: Unknown subsys name 'net' [ 171.077301][ T5781] cgroup: Unknown subsys name 'cpuset' [ 171.091242][ T5781] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 176.595162][ T5781] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 180.832844][ T5802] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 180.840902][ T5804] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 180.851140][ T5804] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 180.859962][ T5807] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 180.867836][ T5807] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 180.878023][ T5807] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 180.893398][ T5810] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 180.903897][ T5807] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 180.907751][ T5810] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 180.921603][ T5810] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 180.922082][ T5807] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 180.930027][ T5811] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 180.944013][ T5807] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 180.952413][ T51] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 180.965015][ T5807] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 180.976786][ T5807] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 180.984865][ T5096] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 180.997477][ T5811] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 181.007151][ T5811] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 181.019152][ T5810] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 181.019803][ T5096] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 181.030029][ T5811] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 181.044846][ T5096] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 181.072232][ T5802] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 181.101425][ T5811] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 182.199906][ T5799] chnl_net:caif_netlink_parms(): no params data found [ 182.812772][ T5796] chnl_net:caif_netlink_parms(): no params data found [ 183.006920][ T5809] chnl_net:caif_netlink_parms(): no params data found [ 183.009351][ T5811] Bluetooth: hci1: command tx timeout [ 183.020362][ T5811] Bluetooth: hci0: command tx timeout [ 183.088952][ T5808] Bluetooth: hci3: command tx timeout [ 183.094531][ T5808] Bluetooth: hci2: command tx timeout [ 183.133742][ T5799] bridge0: port 1(bridge_slave_0) entered blocking state [ 183.142553][ T5799] bridge0: port 1(bridge_slave_0) entered disabled state [ 183.150302][ T5799] bridge_slave_0: entered allmulticast mode [ 183.159850][ T5799] bridge_slave_0: entered promiscuous mode [ 183.178891][ T5811] Bluetooth: hci4: command tx timeout [ 183.190017][ T5799] bridge0: port 2(bridge_slave_1) entered blocking state [ 183.197596][ T5799] bridge0: port 2(bridge_slave_1) entered disabled state [ 183.206809][ T5799] bridge_slave_1: entered allmulticast mode [ 183.216217][ T5799] bridge_slave_1: entered promiscuous mode [ 183.462417][ T5799] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 183.479850][ T5805] chnl_net:caif_netlink_parms(): no params data found [ 183.501611][ T5795] chnl_net:caif_netlink_parms(): no params data found [ 183.579355][ T5799] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 183.882374][ T5799] team0: Port device team_slave_0 added [ 183.983154][ T5796] bridge0: port 1(bridge_slave_0) entered blocking state [ 183.990857][ T5796] bridge0: port 1(bridge_slave_0) entered disabled state [ 183.998511][ T5796] bridge_slave_0: entered allmulticast mode [ 184.007656][ T5796] bridge_slave_0: entered promiscuous mode [ 184.033228][ T5799] team0: Port device team_slave_1 added [ 184.123497][ T5796] bridge0: port 2(bridge_slave_1) entered blocking state [ 184.131076][ T5796] bridge0: port 2(bridge_slave_1) entered disabled state [ 184.138951][ T5796] bridge_slave_1: entered allmulticast mode [ 184.148172][ T5796] bridge_slave_1: entered promiscuous mode [ 184.344886][ T5809] bridge0: port 1(bridge_slave_0) entered blocking state [ 184.352718][ T5809] bridge0: port 1(bridge_slave_0) entered disabled state [ 184.360363][ T5809] bridge_slave_0: entered allmulticast mode [ 184.369760][ T5809] bridge_slave_0: entered promiscuous mode [ 184.391389][ T5799] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 184.400123][ T5799] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 184.426489][ T5799] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 184.538271][ T5809] bridge0: port 2(bridge_slave_1) entered blocking state [ 184.545857][ T5809] bridge0: port 2(bridge_slave_1) entered disabled state [ 184.553586][ T5809] bridge_slave_1: entered allmulticast mode [ 184.562910][ T5809] bridge_slave_1: entered promiscuous mode [ 184.583773][ T5796] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 184.595142][ T5799] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 184.605234][ T5799] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 184.633250][ T5799] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 184.648110][ T5805] bridge0: port 1(bridge_slave_0) entered blocking state [ 184.655736][ T5805] bridge0: port 1(bridge_slave_0) entered disabled state [ 184.663790][ T5805] bridge_slave_0: entered allmulticast mode [ 184.673165][ T5805] bridge_slave_0: entered promiscuous mode [ 184.734424][ T5796] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 184.824841][ T5805] bridge0: port 2(bridge_slave_1) entered blocking state [ 184.832406][ T5805] bridge0: port 2(bridge_slave_1) entered disabled state [ 184.840031][ T5805] bridge_slave_1: entered allmulticast mode [ 184.848023][ T5805] bridge_slave_1: entered promiscuous mode [ 184.964205][ T5796] team0: Port device team_slave_0 added [ 184.981805][ T5809] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 185.053315][ T5795] bridge0: port 1(bridge_slave_0) entered blocking state [ 185.061019][ T5795] bridge0: port 1(bridge_slave_0) entered disabled state [ 185.068665][ T5795] bridge_slave_0: entered allmulticast mode [ 185.077639][ T5795] bridge_slave_0: entered promiscuous mode [ 185.093819][ T5811] Bluetooth: hci0: command tx timeout [ 185.095440][ T5808] Bluetooth: hci1: command tx timeout [ 185.116461][ T5796] team0: Port device team_slave_1 added [ 185.167916][ T5809] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 185.178794][ T5808] Bluetooth: hci2: command tx timeout [ 185.184348][ T5808] Bluetooth: hci3: command tx timeout [ 185.187628][ T5805] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 185.199925][ T5795] bridge0: port 2(bridge_slave_1) entered blocking state [ 185.207372][ T5795] bridge0: port 2(bridge_slave_1) entered disabled state [ 185.215099][ T5795] bridge_slave_1: entered allmulticast mode [ 185.223709][ T5795] bridge_slave_1: entered promiscuous mode [ 185.248568][ T5811] Bluetooth: hci4: command tx timeout [ 185.326731][ T5805] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 185.415726][ T5799] hsr_slave_0: entered promiscuous mode [ 185.425788][ T5799] hsr_slave_1: entered promiscuous mode [ 185.437500][ T5796] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 185.444738][ T5796] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 185.471130][ T5796] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 185.582875][ T5795] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 185.594329][ T5796] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 185.601586][ T5796] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 185.627874][ T5796] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 185.646630][ T5809] team0: Port device team_slave_0 added [ 185.698848][ T5795] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 185.767412][ T5809] team0: Port device team_slave_1 added [ 185.785818][ T5805] team0: Port device team_slave_0 added [ 185.805446][ T5805] team0: Port device team_slave_1 added [ 185.885441][ T5795] team0: Port device team_slave_0 added [ 186.041796][ T5795] team0: Port device team_slave_1 added [ 186.124541][ T5796] hsr_slave_0: entered promiscuous mode [ 186.133923][ T5796] hsr_slave_1: entered promiscuous mode [ 186.141570][ T5796] debugfs: 'hsr0' already exists in 'hsr' [ 186.147435][ T5796] Cannot create hsr debugfs directory [ 186.212276][ T5809] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 186.220764][ T5809] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 186.248462][ T5809] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 186.298057][ T5805] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 186.305407][ T5805] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 186.331732][ T5805] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 186.379817][ T5809] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 186.386921][ T5809] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 186.413357][ T5809] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 186.443433][ T5795] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 186.450717][ T5795] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 186.477049][ T5795] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 186.492420][ T5805] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 186.499729][ T5805] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 186.525947][ T5805] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 186.605899][ T5795] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 186.613204][ T5795] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 186.640229][ T5795] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 186.861444][ T5809] hsr_slave_0: entered promiscuous mode [ 186.872024][ T5809] hsr_slave_1: entered promiscuous mode [ 186.880704][ T5809] debugfs: 'hsr0' already exists in 'hsr' [ 186.886573][ T5809] Cannot create hsr debugfs directory [ 187.105397][ T5795] hsr_slave_0: entered promiscuous mode [ 187.115264][ T5795] hsr_slave_1: entered promiscuous mode [ 187.124059][ T5795] debugfs: 'hsr0' already exists in 'hsr' [ 187.130001][ T5795] Cannot create hsr debugfs directory [ 187.168817][ T5811] Bluetooth: hci0: command tx timeout [ 187.174441][ T5808] Bluetooth: hci1: command tx timeout [ 187.201190][ T5805] hsr_slave_0: entered promiscuous mode [ 187.211269][ T5805] hsr_slave_1: entered promiscuous mode [ 187.219970][ T5805] debugfs: 'hsr0' already exists in 'hsr' [ 187.225836][ T5805] Cannot create hsr debugfs directory [ 187.252734][ T5808] Bluetooth: hci3: command tx timeout [ 187.259278][ T5811] Bluetooth: hci2: command tx timeout [ 187.330189][ T5808] Bluetooth: hci4: command tx timeout [ 188.166182][ T5799] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 188.199177][ T5799] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 188.272987][ T5799] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 188.293025][ T5799] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 188.516147][ T5796] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 188.536731][ T5796] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 188.560117][ T5796] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 188.633452][ T5796] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 188.763288][ T5809] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 188.816004][ T5809] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 188.840200][ T5809] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 188.886115][ T5809] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 189.007278][ T5805] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 189.067062][ T5805] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 189.108082][ T5805] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 189.130288][ T5805] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 189.255065][ T5808] Bluetooth: hci1: command tx timeout [ 189.260989][ T5811] Bluetooth: hci0: command tx timeout [ 189.316406][ T5795] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 189.329692][ T5808] Bluetooth: hci3: command tx timeout [ 189.334782][ T5811] Bluetooth: hci2: command tx timeout [ 189.357193][ T5795] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 189.387130][ T5795] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 189.410075][ T5811] Bluetooth: hci4: command tx timeout [ 189.429797][ T5795] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 189.646054][ T5799] 8021q: adding VLAN 0 to HW filter on device bond0 [ 189.879905][ T5799] 8021q: adding VLAN 0 to HW filter on device team0 [ 189.914920][ T4034] bridge0: port 1(bridge_slave_0) entered blocking state [ 189.922505][ T4034] bridge0: port 1(bridge_slave_0) entered forwarding state [ 190.046234][ T4034] bridge0: port 2(bridge_slave_1) entered blocking state [ 190.053833][ T4034] bridge0: port 2(bridge_slave_1) entered forwarding state [ 190.201119][ T5805] 8021q: adding VLAN 0 to HW filter on device bond0 [ 190.287495][ T5796] 8021q: adding VLAN 0 to HW filter on device bond0 [ 190.415750][ T5809] 8021q: adding VLAN 0 to HW filter on device bond0 [ 190.442747][ T5805] 8021q: adding VLAN 0 to HW filter on device team0 [ 190.488912][ T5796] 8021q: adding VLAN 0 to HW filter on device team0 [ 190.533079][ T3953] bridge0: port 1(bridge_slave_0) entered blocking state [ 190.540643][ T3953] bridge0: port 1(bridge_slave_0) entered forwarding state [ 190.642176][ T3953] bridge0: port 1(bridge_slave_0) entered blocking state [ 190.649739][ T3953] bridge0: port 1(bridge_slave_0) entered forwarding state [ 190.664987][ T3953] bridge0: port 2(bridge_slave_1) entered blocking state [ 190.672559][ T3953] bridge0: port 2(bridge_slave_1) entered forwarding state [ 190.693875][ T3953] bridge0: port 2(bridge_slave_1) entered blocking state [ 190.701429][ T3953] bridge0: port 2(bridge_slave_1) entered forwarding state [ 190.740947][ T5809] 8021q: adding VLAN 0 to HW filter on device team0 [ 190.814945][ T4160] bridge0: port 1(bridge_slave_0) entered blocking state [ 190.822487][ T4160] bridge0: port 1(bridge_slave_0) entered forwarding state [ 190.966346][ T4160] bridge0: port 2(bridge_slave_1) entered blocking state [ 190.973904][ T4160] bridge0: port 2(bridge_slave_1) entered forwarding state [ 191.022236][ T5795] 8021q: adding VLAN 0 to HW filter on device bond0 [ 191.326897][ T5795] 8021q: adding VLAN 0 to HW filter on device team0 [ 191.460581][ T4210] bridge0: port 1(bridge_slave_0) entered blocking state [ 191.468213][ T4210] bridge0: port 1(bridge_slave_0) entered forwarding state [ 191.552072][ T4210] bridge0: port 2(bridge_slave_1) entered blocking state [ 191.559660][ T4210] bridge0: port 2(bridge_slave_1) entered forwarding state [ 192.454727][ T5799] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 192.940009][ T5799] veth0_vlan: entered promiscuous mode [ 193.056284][ T5799] veth1_vlan: entered promiscuous mode [ 193.126473][ T5796] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 193.274296][ T5805] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 193.507669][ T5799] veth0_macvtap: entered promiscuous mode [ 193.629779][ T5799] veth1_macvtap: entered promiscuous mode [ 193.661436][ T5809] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 193.766200][ T5796] veth0_vlan: entered promiscuous mode [ 193.825946][ T5799] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 193.866282][ T5795] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 193.890314][ T5799] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 193.912281][ T5796] veth1_vlan: entered promiscuous mode [ 194.027698][ T3991] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.064466][ T3991] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.123424][ T3991] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.189142][ T3991] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.265815][ T5809] veth0_vlan: entered promiscuous mode [ 194.337427][ T5796] veth0_macvtap: entered promiscuous mode [ 194.414575][ T5809] veth1_vlan: entered promiscuous mode [ 194.466542][ T5796] veth1_macvtap: entered promiscuous mode [ 194.541994][ T5795] veth0_vlan: entered promiscuous mode [ 194.625196][ T5796] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 194.684828][ T5795] veth1_vlan: entered promiscuous mode [ 194.767337][ T5796] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 194.795258][ T5809] veth0_macvtap: entered promiscuous mode [ 194.849549][ T5809] veth1_macvtap: entered promiscuous mode [ 194.905033][ T3953] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.931049][ T69] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.969716][ T4034] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 195.006483][ T4160] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 195.030092][ T5795] veth0_macvtap: entered promiscuous mode [ 195.128859][ T5809] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 195.177539][ T5809] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 195.189753][ T5795] veth1_macvtap: entered promiscuous mode [ 195.271697][ T69] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 195.324058][ T4210] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 195.374007][ T5795] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 195.389265][ T4210] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 195.398241][ T4210] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 195.460323][ T5795] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 195.529633][ T12] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 195.581156][ T12] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 195.623308][ T12] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 195.667800][ T12] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 196.115011][ T5805] veth0_vlan: entered promiscuous mode [ 196.234516][ T5805] veth1_vlan: entered promiscuous mode [ 196.591851][ T5805] veth0_macvtap: entered promiscuous mode [ 196.652231][ T5805] veth1_macvtap: entered promiscuous mode [ 196.827069][ T5805] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 196.881464][ T5805] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 197.032113][ T3826] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 197.085520][ T3826] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 197.145386][ T3826] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 197.236075][ T4210] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 200.517004][ T3826] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 200.525370][ T3826] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 200.819591][ T4034] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 200.827592][ T4034] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 200.861026][ T69] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 200.869314][ T69] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 201.126071][ T3991] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 201.134278][ T3991] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 201.310762][ T5799] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 201.556644][ T3953] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 201.564746][ T3953] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 201.616782][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 201.624960][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 202.016333][ T3953] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 202.024541][ T3953] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 202.340569][ T4210] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 202.348885][ T4210] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 203.250527][ T5996] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 203.429548][ T4034] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 203.437559][ T4034] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 203.759260][ T1855] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 203.767265][ T1855] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 204.803409][ T6012] netlink: 8 bytes leftover after parsing attributes in process `syz.1.13'. [ 205.536411][ T6025] netlink: 20 bytes leftover after parsing attributes in process `syz.3.17'. [ 205.560546][ T6025] bridge0: port 1(bridge_slave_0) entered disabled state [ 205.636748][ T6025] bridge_slave_0 (unregistering): left allmulticast mode [ 205.648734][ T6025] bridge_slave_0 (unregistering): left promiscuous mode [ 205.656109][ T6025] bridge0: port 1(bridge_slave_0) entered disabled state [ 205.729940][ T6026] netlink: 8 bytes leftover after parsing attributes in process `syz.0.18'. [ 206.114966][ T6029] netlink: 12 bytes leftover after parsing attributes in process `syz.4.20'. [ 206.338060][ T6034] syz.0.22 uses obsolete (PF_INET,SOCK_PACKET) [ 207.825249][ T6055] netlink: 68 bytes leftover after parsing attributes in process `syz.2.32'. [ 208.341283][ T30] audit: type=1326 audit(1763246497.919:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6059 comm="syz.0.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 208.363843][ T30] audit: type=1326 audit(1763246497.919:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6059 comm="syz.0.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 208.583134][ T30] audit: type=1326 audit(1763246497.969:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6059 comm="syz.0.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 208.605720][ T30] audit: type=1326 audit(1763246497.969:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6059 comm="syz.0.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 208.633492][ T30] audit: type=1326 audit(1763246497.999:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6059 comm="syz.0.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 208.657532][ T30] audit: type=1326 audit(1763246497.999:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6059 comm="syz.0.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 208.680013][ T30] audit: type=1326 audit(1763246498.009:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6059 comm="syz.0.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 208.702407][ T30] audit: type=1326 audit(1763246498.009:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6059 comm="syz.0.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 208.730077][ T30] audit: type=1326 audit(1763246498.009:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6059 comm="syz.0.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 208.754007][ T30] audit: type=1326 audit(1763246498.009:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6059 comm="syz.0.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 211.511916][ T6105] netlink: 12 bytes leftover after parsing attributes in process `syz.2.56'. [ 211.613100][ T6107] overlayfs: missing 'lowerdir' [ 212.904525][ T6125] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 214.465551][ T6148] netlink: 12 bytes leftover after parsing attributes in process `syz.0.76'. [ 214.634000][ T6150] loop3: detected capacity change from 0 to 64 [ 214.700852][ T6150] ======================================================= [ 214.700852][ T6150] WARNING: The mand mount option has been deprecated and [ 214.700852][ T6150] and is ignored by this kernel. Remove the mand [ 214.700852][ T6150] option from the mount to silence this warning. [ 214.700852][ T6150] ======================================================= [ 215.946937][ T6168] binder: 6167:6168 ioctl c0306201 200000000000 returned -22 [ 216.850295][ T6184] mmap: syz.2.95 (6184) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 218.253048][ T6204] IPv6: A: Disabled Multicast RS [ 218.588875][ T30] kauditd_printk_skb: 7 callbacks suppressed [ 218.588949][ T30] audit: type=1326 audit(1763246508.159:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6209 comm="syz.3.108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 218.738531][ T30] audit: type=1326 audit(1763246508.239:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6209 comm="syz.3.108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 218.766315][ T30] audit: type=1326 audit(1763246508.289:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6209 comm="syz.3.108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 218.790996][ T30] audit: type=1326 audit(1763246508.289:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6209 comm="syz.3.108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 218.813547][ T30] audit: type=1326 audit(1763246508.289:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6209 comm="syz.3.108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 218.836105][ T30] audit: type=1326 audit(1763246508.299:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6209 comm="syz.3.108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 218.863808][ T30] audit: type=1326 audit(1763246508.319:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6209 comm="syz.3.108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 218.887984][ T30] audit: type=1326 audit(1763246508.319:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6209 comm="syz.3.108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 218.910494][ T30] audit: type=1326 audit(1763246508.319:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6209 comm="syz.3.108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 218.934484][ T30] audit: type=1326 audit(1763246508.319:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6209 comm="syz.3.108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 220.143969][ T6231] usb usb9: usbfs: process 6231 (syz.4.117) did not claim interface 0 before use [ 220.514307][ T6235] netlink: 56 bytes leftover after parsing attributes in process `syz.1.121'. [ 221.825060][ T6257] netlink: 68 bytes leftover after parsing attributes in process `syz.2.130'. [ 222.855748][ T6272] netlink: 9 bytes leftover after parsing attributes in process `syz.1.137'. [ 222.865720][ T6272] z00ªX¹¦: renamed from gretap0 (while UP) [ 222.997618][ T6272] z00ªX¹¦: entered allmulticast mode [ 224.476485][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 224.487966][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 226.672426][ T30] kauditd_printk_skb: 13 callbacks suppressed [ 226.672501][ T30] audit: type=1804 audit(1763246516.249:42): pid=6320 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.159" name="file0" dev="tmpfs" ino=214 res=1 errno=0 [ 228.970192][ T6359] cgroup: subsys name conflicts with all [ 229.610983][ T6366] netlink: 32 bytes leftover after parsing attributes in process `syz.0.178'. [ 231.051823][ T6387] EXT4-fs (nullb0): VFS: Can't find ext4 filesystem [ 232.216216][ T30] audit: type=1326 audit(1763246521.769:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.0.199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 232.239277][ T30] audit: type=1326 audit(1763246521.769:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.0.199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 232.499879][ T30] audit: type=1326 audit(1763246521.879:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.0.199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 232.523327][ T30] audit: type=1326 audit(1763246521.889:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.0.199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 232.545913][ T30] audit: type=1326 audit(1763246521.899:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.0.199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 232.568645][ T30] audit: type=1326 audit(1763246521.909:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.0.199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 232.596353][ T30] audit: type=1326 audit(1763246521.909:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.0.199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 232.620593][ T30] audit: type=1326 audit(1763246521.919:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.0.199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 232.643185][ T30] audit: type=1326 audit(1763246521.919:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.0.199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 232.665660][ T30] audit: type=1326 audit(1763246521.929:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6403 comm="syz.0.199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 234.286849][ T6432] loop2: detected capacity change from 0 to 512 [ 234.410406][ T6432] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 234.458313][ T6432] EXT4-fs (loop2): orphan cleanup on readonly fs [ 234.504578][ T6432] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.211: Failed to acquire dquot type 1 [ 234.631222][ T6432] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.211: bg 0: block 40: padding at end of block bitmap is not set [ 234.668882][ T6432] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 234.686978][ T6432] EXT4-fs (loop2): 1 truncate cleaned up [ 234.695799][ T6432] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 234.944593][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 235.923130][ T6457] netlink: 24 bytes leftover after parsing attributes in process `syz.3.222'. [ 236.498786][ T6465] netlink: 16 bytes leftover after parsing attributes in process `syz.1.226'. [ 237.219525][ T30] kauditd_printk_skb: 22 callbacks suppressed [ 237.219593][ T30] audit: type=1326 audit(1763246526.809:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.3.232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 237.326423][ T30] audit: type=1326 audit(1763246526.839:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.3.232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 237.351496][ T30] audit: type=1326 audit(1763246526.839:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.3.232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 237.376907][ T30] audit: type=1326 audit(1763246526.839:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.3.232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 237.401787][ T30] audit: type=1326 audit(1763246526.849:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.3.232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 237.426536][ T30] audit: type=1326 audit(1763246526.849:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.3.232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 237.449386][ T30] audit: type=1326 audit(1763246526.849:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.3.232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 237.472046][ T30] audit: type=1326 audit(1763246526.849:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.3.232" exe="/root/syz-executor" sig=0 arch=40000003 syscall=92 compat=1 ip=0x200000000006 code=0x7ffc0000 [ 237.496720][ T30] audit: type=1326 audit(1763246526.849:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.3.232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 237.878880][ T6488] loop2: detected capacity change from 0 to 16 [ 237.914723][ T6488] erofs (device loop2): rootino(nid 36) is not a directory(i_mode 142735) [ 239.698837][ T30] audit: type=1326 audit(1763246529.279:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6513 comm="syz.4.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 240.121922][ T6518] raw_sendmsg: syz.2.251 forgot to set AF_INET. Fix it! [ 241.862216][ T6543] netlink: 'syz.4.263': attribute type 10 has an invalid length. [ 241.907571][ T6543] team0: Failed to send port change of device netdevsim3 via netlink (err -105) [ 241.918254][ T6543] team0: Failed to send options change via netlink (err -105) [ 241.926084][ T6543] team0: Port device netdevsim3 added [ 241.953092][ T4160] team0: Failed to send port change of device netdevsim3 via netlink (err -105) [ 242.542866][ T6551] netlink: 24 bytes leftover after parsing attributes in process `syz.4.267'. [ 242.601960][ T6552] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 244.873117][ T30] kauditd_printk_skb: 22 callbacks suppressed [ 244.873189][ T30] audit: type=1326 audit(1763246534.459:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6584 comm="syz.1.284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 244.902393][ T30] audit: type=1326 audit(1763246534.459:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6584 comm="syz.1.284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 244.989231][ T30] audit: type=1326 audit(1763246534.569:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6584 comm="syz.1.284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 245.011946][ T30] audit: type=1326 audit(1763246534.569:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6584 comm="syz.1.284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 245.034850][ T30] audit: type=1326 audit(1763246534.569:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6584 comm="syz.1.284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 245.057566][ T30] audit: type=1326 audit(1763246534.569:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6584 comm="syz.1.284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 245.174626][ T6587] netlink: 288 bytes leftover after parsing attributes in process `syz.4.286'. [ 245.315997][ T30] audit: type=1326 audit(1763246534.689:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6584 comm="syz.1.284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 245.339217][ T30] audit: type=1326 audit(1763246534.689:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6584 comm="syz.1.284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 245.362024][ T30] audit: type=1326 audit(1763246534.739:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6584 comm="syz.1.284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 245.393525][ T30] audit: type=1326 audit(1763246534.749:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6584 comm="syz.1.284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 247.450121][ T6624] Driver unsupported XDP return value 0 on prog (id 15) dev N/A, expect packet loss! [ 249.493088][ T6642] loop2: detected capacity change from 0 to 32768 [ 249.504444][ T6642] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.311 (6642) [ 249.628080][ T6642] BTRFS info (device loop2): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 249.638757][ T6642] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm [ 249.891936][ T6642] BTRFS info (device loop2): enabling ssd optimizations [ 249.899563][ T6642] BTRFS info (device loop2): turning on async discard [ 249.906503][ T6642] BTRFS info (device loop2): enabling free space tree [ 249.913763][ T6642] BTRFS info (device loop2): use zstd compression, level 3 [ 250.474752][ T5796] BTRFS info (device loop2): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 251.222153][ T6681] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 251.231271][ T6681] overlayfs: option "index=on" is useless in a non-upper mount, ignore [ 251.239845][ T6681] overlayfs: missing 'lowerdir' [ 251.303899][ T6685] ecryptfs_validate_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 251.320570][ T6685] Error validating options; rc = [-22] [ 251.360537][ T6684] syz_tun: entered promiscuous mode [ 251.366089][ T6684] macvtap1: entered promiscuous mode [ 251.372653][ T6684] macvtap1: entered allmulticast mode [ 251.378195][ T6684] syz_tun: entered allmulticast mode [ 251.448788][ T30] kauditd_printk_skb: 13 callbacks suppressed [ 251.448860][ T30] audit: type=1326 audit(1763246541.019:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6686 comm="syz.4.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 251.477915][ T30] audit: type=1326 audit(1763246541.019:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6686 comm="syz.4.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 251.501878][ T30] audit: type=1326 audit(1763246541.089:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6686 comm="syz.4.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 251.529521][ T30] audit: type=1326 audit(1763246541.089:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6686 comm="syz.4.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 251.553995][ T30] audit: type=1326 audit(1763246541.089:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6686 comm="syz.4.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 251.578134][ T6684] syz_tun: left allmulticast mode [ 251.584659][ T6684] syz_tun: left promiscuous mode [ 252.210767][ T30] audit: type=1326 audit(1763246541.189:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6686 comm="syz.4.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 252.240904][ T30] audit: type=1326 audit(1763246541.199:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6686 comm="syz.4.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 252.263540][ T30] audit: type=1326 audit(1763246541.199:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6686 comm="syz.4.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 252.286100][ T30] audit: type=1326 audit(1763246541.199:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6686 comm="syz.4.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 252.308771][ T30] audit: type=1326 audit(1763246541.199:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6686 comm="syz.4.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 257.307078][ T6754] loop4: detected capacity change from 0 to 8 [ 258.108140][ T6754] Dev loop4: unable to read RDB block 8 [ 258.115105][ T6754] loop4: unable to read partition table [ 258.157807][ T6754] loop4: partition table beyond EOD, truncated [ 258.164462][ T6754] loop_reread_partitions: partition scan of loop4 (úùƒå¡™‰ü¾SêjÌ–ã¢P=ý?ã}X‹ºÐ œëÜ%õ«`ÉæÖ€ù…ˆŠ5) failed (rc=-5) [ 259.126979][ T5153] Dev loop4: unable to read RDB block 8 [ 259.133466][ T5153] loop4: unable to read partition table [ 259.168065][ T5153] loop4: partition table beyond EOD, truncated [ 259.339781][ T6783] trusted_key: encrypted_key: keylen parameter is missing [ 261.223743][ T6816] tipc: Started in network mode [ 261.229695][ T6816] tipc: Node identity fe657ef29342, cluster identity 4711 [ 261.237790][ T6816] tipc: Enabled bearer , priority 0 [ 261.333605][ T6816] syzkaller0: MTU too low for tipc bearer [ 261.339717][ T6816] tipc: Disabling bearer [ 262.031807][ T6831] netlink: 12 bytes leftover after parsing attributes in process `syz.4.386'. [ 262.138840][ T6831] 8021q: adding VLAN 0 to HW filter on device bond1 [ 263.005235][ T6846] netlink: 16 bytes leftover after parsing attributes in process `syz.3.392'. [ 263.745638][ T6858] tmpfs: Bad value for 'mpol' [ 263.930142][ T6863] loop2: detected capacity change from 0 to 512 [ 263.986414][ T6863] EXT4-fs: Ignoring removed nomblk_io_submit option [ 263.993378][ T6863] EXT4-fs: Ignoring removed bh option [ 263.999400][ T6863] journal_path: Non-blockdev passed as './file0' [ 264.005981][ T6863] EXT4-fs: error: could not find journal device path [ 264.714177][ T6876] netlink: 17 bytes leftover after parsing attributes in process `syz.0.403'. [ 265.485885][ T6889] loop1: detected capacity change from 0 to 16 [ 265.566655][ T6889] erofs (device loop1): mounted with root inode @ nid 36. [ 265.702347][ T6891] loop2: detected capacity change from 0 to 512 [ 265.801506][ T6891] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 265.814938][ T6891] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 266.024481][ T6891] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 266.158804][ T6891] EXT4-fs (loop2): 1 truncate cleaned up [ 266.175953][ T6891] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 266.693120][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 268.898313][ T6929] netlink: 240 bytes leftover after parsing attributes in process `syz.4.431'. [ 269.388201][ T6935] Invalid ELF header magic: != ELF [ 271.985504][ T6985] loop4: detected capacity change from 0 to 256 [ 272.270054][ T6985] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 273.446634][ T7010] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 274.319008][ T5853] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 274.540332][ T5853] usb 5-1: Using ep0 maxpacket: 32 [ 274.581198][ T5853] usb 5-1: config 0 has an invalid interface number: 217 but max is 0 [ 274.589690][ T5853] usb 5-1: config 0 has no interface number 0 [ 274.639908][ T5853] usb 5-1: New USB device found, idVendor=1532, idProduct=d2a2, bcdDevice=f7.ed [ 274.652470][ T5853] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 274.665686][ T5853] usb 5-1: Product: syz [ 274.671990][ T5853] usb 5-1: Manufacturer: syz [ 274.676772][ T5853] usb 5-1: SerialNumber: syz [ 274.732904][ T5853] usb 5-1: config 0 descriptor?? [ 275.020711][ T5853] usb 5-1: USB disconnect, device number 2 [ 275.561590][ T7045] netlink: 76 bytes leftover after parsing attributes in process `syz.3.485'. [ 276.179224][ T7056] netlink: 8 bytes leftover after parsing attributes in process `syz.1.489'. [ 277.846039][ T7082] netlink: 8 bytes leftover after parsing attributes in process `syz.0.502'. [ 277.855314][ T7082] netlink: 8 bytes leftover after parsing attributes in process `syz.0.502'. [ 277.888688][ T7080] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 278.000682][ T7087] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 279.052093][ T7102] netlink: 12 bytes leftover after parsing attributes in process `syz.3.512'. [ 280.413780][ T7128] netlink: 'syz.4.525': attribute type 4 has an invalid length. [ 280.920414][ T7136] netlink: 12 bytes leftover after parsing attributes in process `syz.2.529'. [ 281.016434][ T7139] netlink: 12 bytes leftover after parsing attributes in process `syz.4.530'. [ 281.076428][ T7143] netlink: 'syz.1.531': attribute type 1 has an invalid length. [ 281.145302][ T7143] 8021q: adding VLAN 0 to HW filter on device bond1 [ 281.274721][ T7143] netlink: 4 bytes leftover after parsing attributes in process `syz.1.531'. [ 281.299455][ T7143] bond1 (unregistering): Released all slaves [ 282.883784][ T7176] netlink: 'syz.0.546': attribute type 29 has an invalid length. [ 282.891983][ T7176] netlink: 8 bytes leftover after parsing attributes in process `syz.0.546'. [ 284.321370][ T7208] netlink: 12 bytes leftover after parsing attributes in process `syz.0.556'. [ 285.908948][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 285.915677][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 286.161550][ T30] kauditd_printk_skb: 37 callbacks suppressed [ 286.161625][ T30] audit: type=1326 audit(1763246575.749:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7235 comm="syz.0.568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 286.191872][ T30] audit: type=1326 audit(1763246575.749:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7235 comm="syz.0.568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 286.364078][ T30] audit: type=1326 audit(1763246575.819:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7235 comm="syz.0.568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 286.386968][ T30] audit: type=1326 audit(1763246575.819:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7235 comm="syz.0.568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 286.410029][ T30] audit: type=1326 audit(1763246575.819:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7235 comm="syz.0.568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 286.432706][ T30] audit: type=1326 audit(1763246575.819:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7235 comm="syz.0.568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 286.457458][ T30] audit: type=1326 audit(1763246575.819:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7235 comm="syz.0.568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 286.480797][ T30] audit: type=1326 audit(1763246575.819:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7235 comm="syz.0.568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 286.503368][ T30] audit: type=1326 audit(1763246575.829:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7235 comm="syz.0.568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 286.526001][ T30] audit: type=1326 audit(1763246575.829:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7235 comm="syz.0.568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 288.635968][ T7276] binder: 7274:7276 ioctl 4018620d 0 returned -22 [ 291.177011][ T7323] loop2: detected capacity change from 0 to 256 [ 291.314698][ T30] kauditd_printk_skb: 46 callbacks suppressed [ 291.314779][ T30] audit: type=1326 audit(1763246580.899:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7324 comm="syz.1.611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 291.429617][ T30] audit: type=1326 audit(1763246580.949:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7324 comm="syz.1.611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 291.455314][ T30] audit: type=1326 audit(1763246580.979:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7324 comm="syz.1.611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 291.478651][ T30] audit: type=1326 audit(1763246580.979:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7324 comm="syz.1.611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 291.502702][ T30] audit: type=1326 audit(1763246580.979:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7324 comm="syz.1.611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 291.518899][ T7328] cgroup: name respecified [ 291.525556][ T30] audit: type=1326 audit(1763246580.989:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7324 comm="syz.1.611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 291.552704][ T30] audit: type=1326 audit(1763246580.999:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7324 comm="syz.1.611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 291.577277][ T30] audit: type=1326 audit(1763246580.999:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7324 comm="syz.1.611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 291.604311][ T30] audit: type=1326 audit(1763246580.999:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7324 comm="syz.1.611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 291.627071][ T30] audit: type=1326 audit(1763246581.009:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7324 comm="syz.1.611" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 292.024168][ T7335] batadv_slave_1: entered promiscuous mode [ 292.086719][ T7333] netlink: 4 bytes leftover after parsing attributes in process `syz.3.615'. [ 292.096088][ T7333] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 292.194633][ T7333] batadv_slave_1 (unregistering): left promiscuous mode [ 292.202210][ T7333] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 294.860275][ T7388] netlink: 'syz.0.639': attribute type 4 has an invalid length. [ 295.454267][ T7396] loop2: detected capacity change from 0 to 2048 [ 295.667280][ T7396] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 296.107236][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 297.776609][ T7437] netlink: 168 bytes leftover after parsing attributes in process `syz.0.662'. [ 298.274248][ T7446] binder: 7444:7446 ioctl c0306201 2000000001c0 returned -22 [ 299.092467][ T7458] loop1: detected capacity change from 0 to 512 [ 299.858731][ T30] kauditd_printk_skb: 24 callbacks suppressed [ 299.858807][ T30] audit: type=1326 audit(1763246589.429:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="syz.3.679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 299.893543][ T30] audit: type=1326 audit(1763246589.429:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="syz.3.679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 299.954988][ T30] audit: type=1326 audit(1763246589.519:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="syz.3.679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 299.978302][ T30] audit: type=1326 audit(1763246589.519:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="syz.3.679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 300.001753][ T30] audit: type=1326 audit(1763246589.529:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="syz.3.679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 300.027917][ T30] audit: type=1326 audit(1763246589.529:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="syz.3.679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 300.050890][ T30] audit: type=1326 audit(1763246589.529:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="syz.3.679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 300.435615][ T30] audit: type=1326 audit(1763246589.669:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="syz.3.679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 300.459626][ T30] audit: type=1326 audit(1763246589.669:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="syz.3.679" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 300.798703][ T30] audit: type=1326 audit(1763246590.369:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7488 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 302.251706][ T7511] netlink: 4 bytes leftover after parsing attributes in process `syz.3.697'. [ 302.260999][ T7511] bridge_slave_1: left allmulticast mode [ 302.266827][ T7511] bridge_slave_1: left promiscuous mode [ 302.273776][ T7511] bridge0: port 2(bridge_slave_1) entered disabled state [ 302.894998][ T7518] loop4: detected capacity change from 0 to 512 [ 302.927357][ T7522] Zero length message leads to an empty skb [ 303.114699][ T7518] EXT4-fs warning (device loop4): ext4_enable_quotas:7180: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 303.272252][ T7518] EXT4-fs (loop4): mount failed [ 303.336575][ T5810] Bluetooth: hci2: command 0x0406 tx timeout [ 303.340784][ T5811] Bluetooth: hci4: command 0x0406 tx timeout [ 303.343500][ T51] Bluetooth: hci1: command 0x0406 tx timeout [ 303.351618][ T5807] Bluetooth: hci0: command 0x0406 tx timeout [ 303.358805][ T5810] Bluetooth: hci3: command 0x0406 tx timeout [ 303.990002][ T7539] loop2: detected capacity change from 0 to 256 [ 304.979723][ T7555] netlink: 12 bytes leftover after parsing attributes in process `syz.2.713'. [ 305.976570][ T30] kauditd_printk_skb: 22 callbacks suppressed [ 305.976644][ T30] audit: type=1326 audit(1763246595.559:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7572 comm="syz.4.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 306.110835][ T30] audit: type=1326 audit(1763246595.599:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7572 comm="syz.4.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 306.133778][ T30] audit: type=1326 audit(1763246595.599:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7572 comm="syz.4.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 306.156432][ T30] audit: type=1326 audit(1763246595.629:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7572 comm="syz.4.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 306.179141][ T30] audit: type=1326 audit(1763246595.629:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7572 comm="syz.4.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 306.206636][ T30] audit: type=1326 audit(1763246595.629:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7572 comm="syz.4.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 306.230790][ T30] audit: type=1326 audit(1763246595.639:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7572 comm="syz.4.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 306.253379][ T30] audit: type=1326 audit(1763246595.639:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7572 comm="syz.4.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 306.275950][ T30] audit: type=1326 audit(1763246595.639:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7572 comm="syz.4.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 306.300145][ T30] audit: type=1326 audit(1763246595.639:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7572 comm="syz.4.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 308.095896][ T7604] netlink: 20 bytes leftover after parsing attributes in process `syz.2.734'. [ 309.088547][ T7623] netlink: 'syz.2.741': attribute type 1 has an invalid length. [ 309.150958][ T7616] ceph: No mds server is up or the cluster is laggy [ 309.254082][ T7628] 8021q: adding VLAN 0 to HW filter on device bond2 [ 309.268684][ T7628] bond1: (slave bond2): making interface the new active one [ 309.285964][ T7628] bond1: (slave bond2): Enslaving as an active interface with an up link [ 310.620750][ T5800] Bluetooth: hci1: command 0x0406 tx timeout [ 311.684773][ T30] kauditd_printk_skb: 40 callbacks suppressed [ 311.684845][ T30] audit: type=1326 audit(1763246601.269:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7668 comm="syz.3.762" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa5c498f6c9 code=0x0 [ 313.149993][ T7692] netlink: 44 bytes leftover after parsing attributes in process `syz.2.772'. [ 313.159371][ T7692] netlink: 8 bytes leftover after parsing attributes in process `syz.2.772'. [ 313.169392][ T30] audit: type=1326 audit(1763246602.729:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7691 comm="syz.4.773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 313.169624][ T30] audit: type=1326 audit(1763246602.729:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7691 comm="syz.4.773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 313.234672][ T30] audit: type=1326 audit(1763246602.809:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7691 comm="syz.4.773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 313.260462][ T30] audit: type=1326 audit(1763246602.819:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7691 comm="syz.4.773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 313.287650][ T30] audit: type=1326 audit(1763246602.819:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7691 comm="syz.4.773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 313.311748][ T30] audit: type=1326 audit(1763246602.869:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7691 comm="syz.4.773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 313.334315][ T30] audit: type=1326 audit(1763246602.879:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7691 comm="syz.4.773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 313.357005][ T30] audit: type=1326 audit(1763246602.879:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7691 comm="syz.4.773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 313.384030][ T30] audit: type=1326 audit(1763246602.879:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7691 comm="syz.4.773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5d1198f6c9 code=0x7ffc0000 [ 313.670377][ T7697] netlink: 8 bytes leftover after parsing attributes in process `syz.3.775'. [ 313.681948][ T7697] netlink: 32 bytes leftover after parsing attributes in process `syz.3.775'. [ 313.781847][ T7699] batadv_slave_1: entered promiscuous mode [ 313.805417][ T7699] batadv_slave_0: entered promiscuous mode [ 313.843839][ T7698] batadv_slave_0: left promiscuous mode [ 313.850641][ T7698] batadv_slave_1: left promiscuous mode [ 316.231348][ T7736] 9pnet_fd: Insufficient options for proto=fd [ 316.257072][ T7738] netlink: 4 bytes leftover after parsing attributes in process `syz.4.795'. [ 316.266240][ T7738] tc_dump_action: action bad kind [ 316.902467][ T30] kauditd_printk_skb: 14 callbacks suppressed [ 316.902544][ T30] audit: type=1326 audit(1763246606.479:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7745 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bcd58f6c9 code=0x7ffc0000 [ 316.932352][ T30] audit: type=1326 audit(1763246606.489:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7745 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f6bcd58f6c9 code=0x7ffc0000 [ 316.959357][ T30] audit: type=1326 audit(1763246606.489:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7745 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bcd58f6c9 code=0x7ffc0000 [ 316.983505][ T30] audit: type=1326 audit(1763246606.499:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7745 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f6bcd58f6c9 code=0x7ffc0000 [ 317.006059][ T30] audit: type=1326 audit(1763246606.499:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7745 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bcd58f6c9 code=0x7ffc0000 [ 317.028661][ T30] audit: type=1326 audit(1763246606.559:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7745 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6bcd58f6c9 code=0x7ffc0000 [ 317.051539][ T30] audit: type=1326 audit(1763246606.559:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7745 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bcd58f6c9 code=0x7ffc0000 [ 317.080565][ T30] audit: type=1326 audit(1763246606.569:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7745 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f6bcd58f6c9 code=0x7ffc0000 [ 317.104654][ T30] audit: type=1326 audit(1763246606.569:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7745 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=40000003 syscall=67 compat=1 ip=0x200000000006 code=0x7ffc0000 [ 317.127413][ T30] audit: type=1326 audit(1763246606.569:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7745 comm="syz.2.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bcd58f6c9 code=0x7ffc0000 [ 317.828910][ T7761] netlink: 5 bytes leftover after parsing attributes in process `syz.4.805'. [ 317.837883][ T7761] netlink: 52 bytes leftover after parsing attributes in process `syz.4.805'. [ 317.848110][ T7761] netlink: 5 bytes leftover after parsing attributes in process `syz.4.805'. [ 318.827614][ T7779] loop2: detected capacity change from 0 to 512 [ 318.928112][ T7779] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 318.938584][ T7779] EXT4-fs (loop2): can't mount with commit=, fs mounted w/o journal [ 323.685789][ T7859] netlink: 24 bytes leftover after parsing attributes in process `syz.2.851'. [ 323.911641][ T7868] capability: warning: `syz.3.854' uses deprecated v2 capabilities in a way that may be insecure [ 325.473159][ T30] audit: type=1326 audit(1763246615.049:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7894 comm="syz.2.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bcd58f6c9 code=0x7ffc0000 [ 325.496145][ T30] audit: type=1326 audit(1763246615.059:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7894 comm="syz.2.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f6bcd58f6c9 code=0x7ffc0000 [ 325.518837][ T30] audit: type=1326 audit(1763246615.059:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7894 comm="syz.2.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bcd58f6c9 code=0x7ffc0000 [ 325.541451][ T30] audit: type=1326 audit(1763246615.109:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7894 comm="syz.2.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f6bcd58f6c9 code=0x7ffc0000 [ 325.566002][ T30] audit: type=1326 audit(1763246615.109:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7894 comm="syz.2.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bcd58f6c9 code=0x7ffc0000 [ 325.589340][ T30] audit: type=1326 audit(1763246615.109:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7894 comm="syz.2.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f6bcd58f6c9 code=0x7ffc0000 [ 325.611911][ T30] audit: type=1326 audit(1763246615.109:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7894 comm="syz.2.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bcd58f6c9 code=0x7ffc0000 [ 325.636593][ T30] audit: type=1326 audit(1763246615.109:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7894 comm="syz.2.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6bcd58f6c9 code=0x7ffc0000 [ 325.661076][ T30] audit: type=1326 audit(1763246615.109:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7894 comm="syz.2.868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bcd58f6c9 code=0x7ffc0000 [ 326.845930][ T7921] overlayfs: failed to clone upperpath [ 327.327479][ T7928] overlayfs: missing 'lowerdir' [ 327.451835][ T7930] netlink: 'syz.2.883': attribute type 64 has an invalid length. [ 327.460703][ T7930] netlink: 5 bytes leftover after parsing attributes in process `syz.2.883'. [ 328.667790][ T7950] netlink: 132 bytes leftover after parsing attributes in process `syz.2.893'. [ 332.585773][ T8016] netlink: 8 bytes leftover after parsing attributes in process `syz.0.924'. [ 333.489437][ T8024] kvm: vcpu 0: requested 3328 ns lapic timer period limited to 200000 ns [ 336.130749][ T8077] loop1: detected capacity change from 0 to 512 [ 336.259166][ T8077] Quota error (device loop1): v2_read_header: Failed header read: expected=8 got=6 [ 336.275848][ T8077] EXT4-fs warning (device loop1): ext4_enable_quotas:7180: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 336.364589][ T8077] EXT4-fs (loop1): mount failed [ 340.452475][ T8147] netlink: 20 bytes leftover after parsing attributes in process `syz.1.983'. [ 340.647999][ T8152] netlink: 8 bytes leftover after parsing attributes in process `syz.3.985'. [ 340.996102][ T8155] 9pnet: Could not find request transport: 0xffffffffffffffff [ 341.192221][ T8163] netlink: 72 bytes leftover after parsing attributes in process `syz.3.990'. [ 342.770857][ T8189] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1000'. [ 342.966102][ T8193] bridge0: port 3(ip6gretap0) entered blocking state [ 342.974857][ T8193] bridge0: port 3(ip6gretap0) entered disabled state [ 342.982373][ T8193] ip6gretap0: entered allmulticast mode [ 342.991389][ T8193] ip6gretap0: entered promiscuous mode [ 342.999528][ T8193] bridge0: port 3(ip6gretap0) entered blocking state [ 343.006621][ T8193] bridge0: port 3(ip6gretap0) entered forwarding state [ 344.269319][ T30] audit: type=1326 audit(1763246633.839:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8213 comm="syz.1.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 344.351571][ T30] audit: type=1326 audit(1763246633.889:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8213 comm="syz.1.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 344.374532][ T30] audit: type=1326 audit(1763246633.889:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8213 comm="syz.1.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 344.401811][ T30] audit: type=1326 audit(1763246633.889:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8213 comm="syz.1.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 344.426090][ T30] audit: type=1326 audit(1763246633.889:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8213 comm="syz.1.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 344.448764][ T30] audit: type=1326 audit(1763246633.899:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8213 comm="syz.1.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 344.471412][ T30] audit: type=1326 audit(1763246633.899:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8213 comm="syz.1.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 344.494092][ T30] audit: type=1326 audit(1763246633.909:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8213 comm="syz.1.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 344.521529][ T30] audit: type=1326 audit(1763246633.909:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8213 comm="syz.1.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 344.545733][ T30] audit: type=1326 audit(1763246633.909:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8213 comm="syz.1.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 347.355534][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 347.366064][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 349.297948][ T8272] loop2: detected capacity change from 0 to 512 [ 349.508855][ T8272] __quota_error: 10 callbacks suppressed [ 349.508991][ T8272] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=6 [ 349.536811][ T8272] EXT4-fs warning (device loop2): ext4_enable_quotas:7180: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 349.644306][ T8272] EXT4-fs (loop2): mount failed [ 350.225236][ T8289] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1048'. [ 350.480759][ T8294] loop2: detected capacity change from 0 to 512 [ 350.626034][ T8294] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 350.639443][ T8294] ext4 filesystem being mounted at /200/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 350.840802][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 351.818626][ T8316] loop4: detected capacity change from 0 to 512 [ 351.864611][ T8316] ext4: Unknown parameter 'nouser_xattr' [ 353.146530][ T30] audit: type=1326 audit(1763246642.729:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.0.1075" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 353.272335][ T30] audit: type=1326 audit(1763246642.809:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.0.1075" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 353.295355][ T30] audit: type=1326 audit(1763246642.809:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.0.1075" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 353.322551][ T30] audit: type=1326 audit(1763246642.809:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.0.1075" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 353.348617][ T30] audit: type=1326 audit(1763246642.839:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.0.1075" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 353.371609][ T30] audit: type=1326 audit(1763246642.839:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.0.1075" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 353.394259][ T30] audit: type=1326 audit(1763246642.849:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.0.1075" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 353.421788][ T30] audit: type=1326 audit(1763246642.849:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.0.1075" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 353.445892][ T30] audit: type=1326 audit(1763246642.849:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.0.1075" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f3d9278f6c9 code=0x7ffc0000 [ 354.002311][ T8357] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1080'. [ 354.911432][ T8372] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1087'. [ 355.210742][ T8378] overlayfs: missing 'lowerdir' [ 355.548763][ T8384] loop4: detected capacity change from 0 to 128 [ 355.664594][ T8384] FAT-fs (loop4): bogus number of reserved sectors [ 355.671594][ T8384] FAT-fs (loop4): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero [ 355.681274][ T8384] FAT-fs (loop4): Can't find a valid FAT filesystem [ 358.381999][ T8418] loop4: detected capacity change from 0 to 40427 [ 358.457488][ T8418] F2FS-fs (loop4): build fault injection rate: 14 [ 358.465608][ T8418] F2FS-fs (loop4): build fault injection type: 0x3bfe8c [ 358.510046][ T8418] F2FS-fs (loop4): invalid crc value [ 358.572905][ C0] F2FS-fs (loop4): inject read IO error in f2fs_read_end_io of bio_endio+0xeb4/0x1010 [ 358.605363][ C1] F2FS-fs (loop4): inject read IO error in f2fs_read_end_io of bio_endio+0xeb4/0x1010 [ 359.075071][ T8418] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 359.084392][ T8418] F2FS-fs (loop4): inject page alloc in f2fs_grab_cache_folio of f2fs_get_tmp_folio+0x38/0x50 [ 359.099671][ T8418] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 359.174123][ T8418] F2FS-fs (loop4): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x831/0x19b0 [ 359.193766][ T8418] F2FS-fs (loop4): inject dquot initialize in f2fs_dquot_initialize of f2fs_new_inode+0x945/0x1e20 [ 359.214103][ T8418] F2FS-fs (loop4): inject no more block in inc_valid_node_count of f2fs_new_node_folio+0x79e/0x19b0 [ 359.229607][ T8418] F2FS-fs (loop4): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x831/0x19b0 [ 359.259569][ T8418] F2FS-fs (loop4): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_xattr_generic_get+0x199/0x1f0 [ 359.272357][ T8418] syz.4.1110: attempt to access beyond end of device [ 359.272357][ T8418] loop4: rw=2049, sector=45096, nr_sectors = 16 limit=40427 [ 359.286857][ T8418] F2FS-fs (loop4): inject write IO error in f2fs_write_end_io of bio_endio+0xeb4/0x1010 [ 359.297089][ T8418] CPU: 0 UID: 0 PID: 8418 Comm: syz.4.1110 Not tainted syzkaller #0 PREEMPT(none) [ 359.297232][ T8418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 359.297326][ T8418] Call Trace: [ 359.297387][ T8418] [ 359.297445][ T8418] __dump_stack+0x26/0x30 [ 359.297618][ T8418] dump_stack_lvl+0x1df/0x270 [ 359.297789][ T8418] dump_stack+0x1e/0x25 [ 359.297935][ T8418] f2fs_handle_critical_error+0xa6f/0xc20 [ 359.298128][ T8418] f2fs_stop_checkpoint+0x65/0x80 [ 359.298278][ T8418] f2fs_write_end_io+0x101c/0x1bc0 [ 359.298483][ T8418] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 359.298633][ T8418] bio_endio+0xeb4/0x1010 [ 359.298792][ T8418] submit_bio_noacct+0x2009/0x2930 [ 359.299008][ T8418] submit_bio+0x57c/0x630 [ 359.299170][ T8418] f2fs_submit_write_bio+0x92/0x250 [ 359.299369][ T8418] __submit_merged_bio+0x16f/0x6a0 [ 359.299570][ T8418] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 359.299740][ T8418] __submit_merged_write_cond+0x458/0x9a0 [ 359.299960][ T8418] f2fs_write_data_pages+0x4bb2/0x5480 [ 359.300188][ T8418] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 359.300387][ T8418] ? __msan_warning+0x1b/0x30 [ 359.300527][ T8418] ? kmsan_get_metadata+0xfb/0x160 [ 359.300675][ T8418] ? kmsan_get_metadata+0xfb/0x160 [ 359.300823][ T8418] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 359.300981][ T8418] ? kmsan_get_metadata+0xfb/0x160 [ 359.301125][ T8418] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 359.301296][ T8418] ? kmsan_get_metadata+0xfb/0x160 [ 359.301449][ T8418] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 359.301605][ T8418] ? kmsan_get_metadata+0xfb/0x160 [ 359.301756][ T8418] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 359.301912][ T8418] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 359.302061][ T8418] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 359.302206][ T8418] do_writepages+0x3f2/0x860 [ 359.302385][ T8418] ? _raw_spin_unlock+0x30/0x50 [ 359.302545][ T8418] ? wbc_attach_and_unlock_inode+0x131/0x680 [ 359.302728][ T8418] filemap_fdatawrite+0x207/0x260 [ 359.302995][ T8418] f2fs_sync_dirty_inodes+0x2ab/0x9e0 [ 359.303190][ T8418] f2fs_write_checkpoint+0x10a4/0x3730 [ 359.303496][ T8418] f2fs_issue_checkpoint+0x4cd/0x810 [ 359.303663][ T8418] ? kmsan_get_metadata+0xfb/0x160 [ 359.303809][ T8418] ? kmsan_get_metadata+0xfb/0x160 [ 359.303958][ T8418] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 359.304173][ T8418] ? kmsan_get_metadata+0xfb/0x160 [ 359.304323][ T8418] ? kmsan_get_metadata+0xfb/0x160 [ 359.304479][ T8418] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 359.304705][ T8418] f2fs_sync_fs+0x1ee/0x440 [ 359.304905][ T8418] f2fs_do_sync_file+0xdcd/0x31c0 [ 359.305188][ T8418] f2fs_sync_file+0x107/0x180 [ 359.305358][ T8418] ? __pfx_f2fs_sync_file+0x10/0x10 [ 359.305530][ T8418] vfs_fsync_range+0x1a1/0x240 [ 359.305686][ T8418] f2fs_file_write_iter+0xcd2/0x4bb0 [ 359.305889][ T8418] ? __x64_sys_write+0x1fb/0x4d0 [ 359.306099][ T8418] vfs_write+0xbe2/0x15d0 [ 359.306248][ T8418] ? __pfx_f2fs_file_write_iter+0x10/0x10 [ 359.306455][ T8418] __x64_sys_write+0x1fb/0x4d0 [ 359.306608][ T8418] x64_sys_call+0x3014/0x3e30 [ 359.306784][ T8418] do_syscall_64+0xd9/0xfa0 [ 359.306958][ T8418] ? irqentry_exit+0x16/0x60 [ 359.307120][ T8418] ? clear_bhb_loop+0x40/0x90 [ 359.307271][ T8418] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 359.307430][ T8418] RIP: 0033:0x7f5d1198f6c9 [ 359.307541][ T8418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 359.307664][ T8418] RSP: 002b:00007f5d0fbf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 359.307797][ T8418] RAX: ffffffffffffffda RBX: 00007f5d11be5fa0 RCX: 00007f5d1198f6c9 [ 359.307898][ T8418] RDX: 00000000000001b2 RSI: 0000200000000200 RDI: 0000000000000004 [ 359.307987][ T8418] RBP: 00007f5d11a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 359.308074][ T8418] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 359.308157][ T8418] R13: 00007f5d11be6038 R14: 00007f5d11be5fa0 R15: 00007ffed41feeb8 [ 359.308293][ T8418] [ 359.705738][ T8418] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 359.723897][ T8418] CPU: 0 UID: 0 PID: 8418 Comm: syz.4.1110 Not tainted syzkaller #0 PREEMPT(none) [ 359.724036][ T8418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 359.724118][ T8418] Call Trace: [ 359.724167][ T8418] [ 359.724217][ T8418] __dump_stack+0x26/0x30 [ 359.724387][ T8418] dump_stack_lvl+0x1df/0x270 [ 359.724559][ T8418] dump_stack+0x1e/0x25 [ 359.724706][ T8418] f2fs_handle_critical_error+0xa6f/0xc20 [ 359.724890][ T8418] f2fs_stop_checkpoint+0x65/0x80 [ 359.725039][ T8418] f2fs_write_end_io+0x101c/0x1bc0 [ 359.725235][ T8418] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 359.725390][ T8418] bio_endio+0xeb4/0x1010 [ 359.725547][ T8418] submit_bio_noacct+0x2009/0x2930 [ 359.725755][ T8418] submit_bio+0x57c/0x630 [ 359.725922][ T8418] f2fs_submit_write_bio+0x92/0x250 [ 359.726120][ T8418] __submit_merged_bio+0x16f/0x6a0 [ 359.726313][ T8418] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 359.726484][ T8418] __submit_merged_write_cond+0x458/0x9a0 [ 359.726709][ T8418] f2fs_write_data_pages+0x4bb2/0x5480 [ 359.726937][ T8418] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 359.727132][ T8418] ? __msan_warning+0x1b/0x30 [ 359.727265][ T8418] ? kmsan_get_metadata+0xfb/0x160 [ 359.727415][ T8418] ? kmsan_get_metadata+0xfb/0x160 [ 359.727564][ T8418] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 359.727729][ T8418] ? kmsan_get_metadata+0xfb/0x160 [ 359.727878][ T8418] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 359.728055][ T8418] ? kmsan_get_metadata+0xfb/0x160 [ 359.728202][ T8418] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 359.728359][ T8418] ? kmsan_get_metadata+0xfb/0x160 [ 359.728514][ T8418] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 359.728669][ T8418] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 359.728815][ T8418] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 359.728960][ T8418] do_writepages+0x3f2/0x860 [ 359.729140][ T8418] ? _raw_spin_unlock+0x30/0x50 [ 359.729290][ T8418] ? wbc_attach_and_unlock_inode+0x131/0x680 [ 359.729480][ T8418] filemap_fdatawrite+0x207/0x260 [ 359.729753][ T8418] f2fs_sync_dirty_inodes+0x2ab/0x9e0 [ 359.729949][ T8418] f2fs_write_checkpoint+0x10a4/0x3730 [ 359.730247][ T8418] f2fs_issue_checkpoint+0x4cd/0x810 [ 359.730424][ T8418] ? kmsan_get_metadata+0xfb/0x160 [ 359.730578][ T8418] ? kmsan_get_metadata+0xfb/0x160 [ 359.730733][ T8418] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 359.730952][ T8418] ? kmsan_get_metadata+0xfb/0x160 [ 359.731102][ T8418] ? kmsan_get_metadata+0xfb/0x160 [ 359.731250][ T8418] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 359.731482][ T8418] f2fs_sync_fs+0x1ee/0x440 [ 359.731684][ T8418] f2fs_do_sync_file+0xdcd/0x31c0 [ 359.731965][ T8418] f2fs_sync_file+0x107/0x180 [ 359.732138][ T8418] ? __pfx_f2fs_sync_file+0x10/0x10 [ 359.732304][ T8418] vfs_fsync_range+0x1a1/0x240 [ 359.732464][ T8418] f2fs_file_write_iter+0xcd2/0x4bb0 [ 359.732666][ T8418] ? __x64_sys_write+0x1fb/0x4d0 [ 359.732870][ T8418] vfs_write+0xbe2/0x15d0 [ 359.733021][ T8418] ? __pfx_f2fs_file_write_iter+0x10/0x10 [ 359.733223][ T8418] __x64_sys_write+0x1fb/0x4d0 [ 359.733374][ T8418] x64_sys_call+0x3014/0x3e30 [ 359.733556][ T8418] do_syscall_64+0xd9/0xfa0 [ 359.733731][ T8418] ? irqentry_exit+0x16/0x60 [ 359.733895][ T8418] ? clear_bhb_loop+0x40/0x90 [ 359.734044][ T8418] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 359.734188][ T8418] RIP: 0033:0x7f5d1198f6c9 [ 359.734290][ T8418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 359.734411][ T8418] RSP: 002b:00007f5d0fbf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 359.734541][ T8418] RAX: ffffffffffffffda RBX: 00007f5d11be5fa0 RCX: 00007f5d1198f6c9 [ 359.734635][ T8418] RDX: 00000000000001b2 RSI: 0000200000000200 RDI: 0000000000000004 [ 359.734722][ T8418] RBP: 00007f5d11a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 359.734808][ T8418] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 359.734890][ T8418] R13: 00007f5d11be6038 R14: 00007f5d11be5fa0 R15: 00007ffed41feeb8 [ 359.735023][ T8418] [ 360.135056][ T8418] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 361.925232][ T8458] netlink: 'syz.2.1126': attribute type 1 has an invalid length. [ 363.005634][ T8468] loop1: detected capacity change from 0 to 128 [ 364.090716][ T8480] overlayfs: failed to clone lowerpath [ 364.112813][ T8480] overlayfs: failed to clone lowerpath [ 366.453763][ T8512] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1150'. [ 366.463217][ T8512] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1150'. [ 366.472628][ T8512] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1150'. [ 367.150294][ T8524] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1154'. [ 367.567323][ T8528] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1157'. [ 367.631044][ T8530] netlink: 'syz.4.1158': attribute type 4 has an invalid length. [ 367.733114][ T30] kauditd_printk_skb: 5 callbacks suppressed [ 367.733188][ T30] audit: type=1326 audit(1763246657.319:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8532 comm="syz.1.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 367.883434][ T30] audit: type=1326 audit(1763246657.379:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8532 comm="syz.1.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 367.907881][ T30] audit: type=1326 audit(1763246657.379:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8532 comm="syz.1.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 367.931306][ T30] audit: type=1326 audit(1763246657.379:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8532 comm="syz.1.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 367.958560][ T30] audit: type=1326 audit(1763246657.379:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8532 comm="syz.1.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 367.982744][ T30] audit: type=1326 audit(1763246657.379:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8532 comm="syz.1.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 368.006386][ T30] audit: type=1326 audit(1763246657.379:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8532 comm="syz.1.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 368.029216][ T30] audit: type=1326 audit(1763246657.409:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8532 comm="syz.1.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 368.056110][ T30] audit: type=1326 audit(1763246657.409:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8532 comm="syz.1.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 368.080315][ T30] audit: type=1326 audit(1763246657.409:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8532 comm="syz.1.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 368.961855][ T8547] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1167'. [ 369.624368][ T8557] netlink: 300 bytes leftover after parsing attributes in process `syz.3.1171'. [ 370.119840][ T8565] netlink: 'syz.3.1173': attribute type 4 has an invalid length. [ 370.684634][ T8573] syz_tun: entered allmulticast mode [ 370.728958][ T8571] syz_tun: left allmulticast mode [ 372.705925][ T8598] netlink: 80 bytes leftover after parsing attributes in process `syz.1.1190'. [ 374.147814][ T8619] loop2: detected capacity change from 0 to 512 [ 374.228647][ T8619] EXT4-fs: Ignoring removed orlov option [ 374.319755][ T8619] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors [ 374.334428][ T8619] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 not in group (block 2)! [ 374.344823][ T8619] EXT4-fs (loop2): group descriptors corrupted! [ 374.649493][ T8628] XFS (nullb0): Invalid superblock magic number [ 379.466876][ T30] kauditd_printk_skb: 6 callbacks suppressed [ 379.466950][ T30] audit: type=1326 audit(1763246669.049:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8706 comm="syz.3.1239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 379.497554][ T30] audit: type=1326 audit(1763246669.059:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8706 comm="syz.3.1239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 379.526204][ T30] audit: type=1326 audit(1763246669.059:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8706 comm="syz.3.1239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5c498f6c9 code=0x7ffc0000 [ 382.389313][ T8752] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1260'. [ 382.398980][ T8752] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1260'. [ 382.408088][ T8752] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1260'. [ 384.072968][ T8779] loop1: detected capacity change from 0 to 8 [ 384.176808][ T8779] unable to read id index table [ 387.973878][ T8846] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1304'. [ 388.512067][ T8853] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 389.274049][ T8867] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1312'. [ 389.472377][ T8872] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1315'. [ 389.738766][ T30] audit: type=1326 audit(1763246679.319:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8873 comm="syz.1.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 389.864018][ T30] audit: type=1326 audit(1763246679.359:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8873 comm="syz.1.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 389.886780][ T30] audit: type=1326 audit(1763246679.369:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8873 comm="syz.1.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 389.909614][ T30] audit: type=1326 audit(1763246679.369:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8873 comm="syz.1.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 389.933131][ T30] audit: type=1326 audit(1763246679.369:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8873 comm="syz.1.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 389.956066][ T30] audit: type=1326 audit(1763246679.379:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8873 comm="syz.1.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 389.980231][ T30] audit: type=1326 audit(1763246679.389:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8873 comm="syz.1.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 390.003251][ T30] audit: type=1326 audit(1763246679.389:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8873 comm="syz.1.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 390.026066][ T30] audit: type=1326 audit(1763246679.389:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8873 comm="syz.1.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 390.048750][ T30] audit: type=1326 audit(1763246679.389:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8873 comm="syz.1.1316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9a58f6c9 code=0x7ffc0000 [ 390.468634][ T8884] sd 0:0:1:0: PR command failed: 1026 [ 390.475815][ T8884] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 390.483491][ T8884] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 398.908514][ T9041] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 398.920449][ T9041] overlayfs: missing 'lowerdir' [ 399.169493][ T9045] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1397'. [ 400.088587][ T30] kauditd_printk_skb: 54 callbacks suppressed [ 400.088663][ T30] audit: type=1326 audit(1763246689.669:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9059 comm="syz.0.1406" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3d9278f6c9 code=0x0 [ 401.618681][ T9086] loop4: detected capacity change from 0 to 512 [ 401.673349][ T9086] EXT4-fs: Ignoring removed mblk_io_submit option [ 401.680362][ T9086] EXT4-fs: Ignoring removed bh option [ 401.728113][ T9086] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 401.881619][ T9086] EXT4-fs (loop4): 1 truncate cleaned up [ 401.890091][ T9086] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 402.040153][ T9097] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1421'. [ 402.326374][ T5805] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 403.157297][ T9115] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1430'. [ 405.390500][ T9149] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1445'. [ 405.399890][ T9149] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1445'. [ 405.409309][ T9149] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1445'. [ 407.427120][ T30] audit: type=1326 audit(1763246696.999:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9182 comm="syz.2.1460" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6bcd58f6c9 code=0x0 [ 408.821452][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 408.828077][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 410.676386][ T9230] capability: warning: `syz.3.1482' uses 32-bit capabilities (legacy support in use) [ 413.694383][ T9279] netlink: 92 bytes leftover after parsing attributes in process `syz.3.1504'. [ 414.818604][ T9302] input: syz1 as /devices/virtual/input/input6 [ 418.205148][ T9358] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1543'. [ 421.780289][ T9421] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1572'. [ 422.591437][ T9431] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1575'. [ 422.781246][ T9431] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 422.865142][ T9431] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 422.914518][ T9431] bond0 (unregistering): Released all slaves [ 422.960649][ T9433] Device name cannot be null; rc = [-22] [ 425.691478][ T9477] overlayfs: failed to clone upperpath [ 426.029206][ T9485] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1598'. [ 426.375789][ T9488] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1600'. [ 428.164960][ T9521] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1616'. [ 428.661988][ T9529] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1619'. [ 428.682096][ T9525] ceph: No mds server is up or the cluster is laggy [ 432.164743][ T30] audit: type=1326 audit(1763246721.739:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9583 comm="syz.3.1644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5c498f6c9 code=0x7fc00000 [ 435.629207][ T9636] loop1: detected capacity change from 0 to 2048 [ 436.665823][ C1] ===================================================== [ 436.673165][ C1] BUG: KMSAN: uninit-value in netif_skb_features+0x115b/0x2160 [ 436.681046][ C1] netif_skb_features+0x115b/0x2160 [ 436.686438][ C1] validate_xmit_skb+0xb6/0x1d50 [ 436.691716][ C1] __dev_queue_xmit+0x23f8/0x5e60 [ 436.696926][ C1] br_dev_queue_push_xmit+0xa12/0xc20 [ 436.702659][ C1] br_forward_finish+0xfe/0x330 [ 436.707796][ C1] __br_forward+0x8cc/0xb30 [ 436.712625][ C1] maybe_deliver+0x3e0/0x5c0 [ 436.717408][ C1] br_flood+0x45b/0xb70 [ 436.721832][ C1] br_handle_frame_finish+0x2b7a/0x2f70 [ 436.727528][ C1] br_handle_frame+0x179f/0x2180 [ 436.732777][ C1] __netif_receive_skb_core+0x2043/0x7150 [ 436.738773][ C1] __netif_receive_skb_list_core+0x2f1/0x16b0 [ 436.745060][ C1] netif_receive_skb_list_internal+0xee7/0x1530 [ 436.751640][ C1] napi_complete_done+0x3fb/0x7d0 [ 436.756903][ C1] gro_cell_poll+0x2c9/0x310 [ 436.761732][ C1] __napi_poll+0xdd/0x8a0 [ 436.766194][ C1] net_rx_action+0xbc8/0x1c30 [ 436.771137][ C1] handle_softirqs+0x169/0x6e0 [ 436.776101][ C1] __do_softirq+0x14/0x1b [ 436.780730][ C1] do_softirq+0x99/0x100 [ 436.785171][ C1] __local_bh_enable_ip+0xa1/0xb0 [ 436.790504][ C1] tun_rx_batched+0x889/0x980 [ 436.795359][ C1] tun_get_user+0x5d62/0x6d70 [ 436.800334][ C1] tun_chr_write_iter+0x3e9/0x5c0 [ 436.805529][ C1] vfs_write+0xbe2/0x15d0 [ 436.810111][ C1] __x64_sys_write+0x1fb/0x4d0 [ 436.815009][ C1] x64_sys_call+0x3014/0x3e30 [ 436.819942][ C1] do_syscall_64+0xd9/0xfa0 [ 436.824627][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 436.830818][ C1] [ 436.833202][ C1] Uninit was created at: [ 436.837665][ C1] kmem_cache_alloc_node_noprof+0x989/0x16b0 [ 436.843948][ C1] kmalloc_reserve+0x13c/0x4b0 [ 436.848962][ C1] __alloc_skb+0x347/0x7d0 [ 436.853542][ C1] alloc_skb_with_frags+0xc5/0xa60 [ 436.858964][ C1] sock_alloc_send_pskb+0xacc/0xc60 [ 436.864362][ C1] tun_get_user+0x1142/0x6d70 [ 436.869283][ C1] tun_chr_write_iter+0x3e9/0x5c0 [ 436.874479][ C1] vfs_write+0xbe2/0x15d0 [ 436.879076][ C1] __x64_sys_write+0x1fb/0x4d0 [ 436.883980][ C1] x64_sys_call+0x3014/0x3e30 [ 436.888971][ C1] do_syscall_64+0xd9/0xfa0 [ 436.893656][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 436.899842][ C1] [ 436.902250][ C1] CPU: 1 UID: 0 PID: 9652 Comm: syz.2.1678 Not tainted syzkaller #0 PREEMPT(none) [ 436.911773][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 436.922076][ C1] ===================================================== [ 436.929151][ C1] Disabling lock debugging due to kernel taint [ 436.935394][ C1] Kernel panic - not syncing: kmsan.panic set ... [ 436.941922][ C1] CPU: 1 UID: 0 PID: 9652 Comm: syz.2.1678 Tainted: G B syzkaller #0 PREEMPT(none) [ 436.952946][ C1] Tainted: [B]=BAD_PAGE [ 436.957181][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 436.967348][ C1] Call Trace: [ 436.970710][ C1] [ 436.973638][ C1] __dump_stack+0x26/0x30 [ 436.978138][ C1] dump_stack_lvl+0x53/0x270 [ 436.982901][ C1] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 436.988882][ C1] dump_stack+0x1e/0x25 [ 436.993202][ C1] vpanic+0x435/0xd30 [ 436.997376][ C1] panic+0x15d/0x160 [ 437.001499][ C1] kmsan_report+0x31c/0x320 [ 437.006165][ C1] ? __msan_warning+0x1b/0x30 [ 437.010983][ C1] ? netif_skb_features+0x115b/0x2160 [ 437.016548][ C1] ? validate_xmit_skb+0xb6/0x1d50 [ 437.021842][ C1] ? __dev_queue_xmit+0x23f8/0x5e60 [ 437.027228][ C1] ? br_dev_queue_push_xmit+0xa12/0xc20 [ 437.032965][ C1] ? br_forward_finish+0xfe/0x330 [ 437.038167][ C1] ? __br_forward+0x8cc/0xb30 [ 437.043012][ C1] ? maybe_deliver+0x3e0/0x5c0 [ 437.047945][ C1] ? br_flood+0x45b/0xb70 [ 437.052438][ C1] ? br_handle_frame_finish+0x2b7a/0x2f70 [ 437.058296][ C1] ? br_handle_frame+0x179f/0x2180 [ 437.063541][ C1] ? __netif_receive_skb_core+0x2043/0x7150 [ 437.069625][ C1] ? __netif_receive_skb_list_core+0x2f1/0x16b0 [ 437.076065][ C1] ? netif_receive_skb_list_internal+0xee7/0x1530 [ 437.082670][ C1] ? napi_complete_done+0x3fb/0x7d0 [ 437.088048][ C1] ? gro_cell_poll+0x2c9/0x310 [ 437.092965][ C1] ? __napi_poll+0xdd/0x8a0 [ 437.097588][ C1] ? net_rx_action+0xbc8/0x1c30 [ 437.102566][ C1] ? handle_softirqs+0x169/0x6e0 [ 437.107683][ C1] ? __do_softirq+0x14/0x1b [ 437.112338][ C1] ? do_softirq+0x99/0x100 [ 437.116921][ C1] ? __local_bh_enable_ip+0xa1/0xb0 [ 437.122298][ C1] ? tun_rx_batched+0x889/0x980 [ 437.127309][ C1] ? tun_get_user+0x5d62/0x6d70 [ 437.132315][ C1] ? tun_chr_write_iter+0x3e9/0x5c0 [ 437.137664][ C1] ? vfs_write+0xbe2/0x15d0 [ 437.142285][ C1] ? __x64_sys_write+0x1fb/0x4d0 [ 437.147339][ C1] ? x64_sys_call+0x3014/0x3e30 [ 437.152357][ C1] ? do_syscall_64+0xd9/0xfa0 [ 437.157195][ C1] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 437.163397][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 437.168658][ C1] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 437.174618][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 437.179875][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 437.185125][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 437.190378][ C1] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 437.196330][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 437.201585][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 437.206832][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 437.212082][ C1] ? __pfx_passthru_features_check+0x10/0x10 [ 437.218238][ C1] __msan_warning+0x1b/0x30 [ 437.222867][ C1] netif_skb_features+0x115b/0x2160 [ 437.228280][ C1] validate_xmit_skb+0xb6/0x1d50 [ 437.233412][ C1] ? netdev_core_pick_tx+0x341/0x4f0 [ 437.238907][ C1] __dev_queue_xmit+0x23f8/0x5e60 [ 437.244145][ C1] ? __dev_queue_xmit+0x30c/0x5e60 [ 437.249469][ C1] br_dev_queue_push_xmit+0xa12/0xc20 [ 437.255028][ C1] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 437.261000][ C1] ? __rcu_read_unlock+0x47/0xd0 [ 437.266079][ C1] br_forward_finish+0xfe/0x330 [ 437.271118][ C1] ? __pfx_br_dev_queue_push_xmit+0x10/0x10 [ 437.277216][ C1] __br_forward+0x8cc/0xb30 [ 437.281901][ C1] ? __pfx_br_forward_finish+0x10/0x10 [ 437.287570][ C1] maybe_deliver+0x3e0/0x5c0 [ 437.292366][ C1] br_flood+0x45b/0xb70 [ 437.296730][ C1] br_handle_frame_finish+0x2b7a/0x2f70 [ 437.302421][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 437.307728][ C1] br_handle_frame+0x179f/0x2180 [ 437.312814][ C1] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 437.318891][ C1] ? __pfx_br_handle_frame+0x10/0x10 [ 437.324324][ C1] __netif_receive_skb_core+0x2043/0x7150 [ 437.330247][ C1] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 437.336211][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 437.341467][ C1] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 437.347438][ C1] ? filter_irq_stacks+0x49/0x190 [ 437.352658][ C1] ? stack_depot_save_flags+0x35/0x7b0 [ 437.358266][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 437.363550][ C1] ? __pfx_br_handle_frame+0x10/0x10 [ 437.368998][ C1] ? __pfx_packet_rcv_spkt+0x10/0x10 [ 437.374449][ C1] __netif_receive_skb_list_core+0x2f1/0x16b0 [ 437.380768][ C1] netif_receive_skb_list_internal+0xee7/0x1530 [ 437.387253][ C1] napi_complete_done+0x3fb/0x7d0 [ 437.392479][ C1] ? kmsan_get_metadata+0xc0/0x160 [ 437.397756][ C1] gro_cell_poll+0x2c9/0x310 [ 437.402513][ C1] ? kmsan_get_metadata+0x150/0x160 [ 437.407867][ C1] ? __pfx_gro_cell_poll+0x10/0x10 [ 437.413141][ C1] __napi_poll+0xdd/0x8a0 [ 437.417599][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 437.422857][ C1] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 437.428829][ C1] net_rx_action+0xbc8/0x1c30 [ 437.433653][ C1] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 437.439619][ C1] ? sched_clock_cpu+0x59/0xa80 [ 437.444594][ C1] ? try_to_wake_up+0xffc/0x1f50 [ 437.449764][ C1] ? __pfx_net_rx_action+0x10/0x10 [ 437.455014][ C1] handle_softirqs+0x169/0x6e0 [ 437.459990][ C1] __do_softirq+0x14/0x1b [ 437.464475][ C1] do_softirq+0x99/0x100 [ 437.468894][ C1] [ 437.471898][ C1] [ 437.474907][ C1] __local_bh_enable_ip+0xa1/0xb0 [ 437.480129][ C1] ? tun_rx_batched+0x16c/0x980 [ 437.485144][ C1] tun_rx_batched+0x889/0x980 [ 437.489997][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 437.495268][ C1] tun_get_user+0x5d62/0x6d70 [ 437.500115][ C1] ? stack_depot_save_flags+0x35/0x7b0 [ 437.505717][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 437.510968][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 437.516227][ C1] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 437.522757][ C1] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 437.529088][ C1] tun_chr_write_iter+0x3e9/0x5c0 [ 437.534298][ C1] vfs_write+0xbe2/0x15d0 [ 437.538774][ C1] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 437.544497][ C1] __x64_sys_write+0x1fb/0x4d0 [ 437.549405][ C1] x64_sys_call+0x3014/0x3e30 [ 437.554252][ C1] do_syscall_64+0xd9/0xfa0 [ 437.558923][ C1] ? irqentry_exit+0x16/0x60 [ 437.563678][ C1] ? clear_bhb_loop+0x40/0x90 [ 437.568503][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 437.574545][ C1] RIP: 0033:0x7f6bcd58f6c9 [ 437.579061][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 437.598809][ C1] RSP: 002b:00007f6bce489038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 437.607365][ C1] RAX: ffffffffffffffda RBX: 00007f6bcd7e5fa0 RCX: 00007f6bcd58f6c9 [ 437.615452][ C1] RDX: 000000000000fdef RSI: 0000200000000440 RDI: 0000000000000005 [ 437.623523][ C1] RBP: 00007f6bcd611f91 R08: 0000000000000000 R09: 0000000000000000 [ 437.631592][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 437.639671][ C1] R13: 00007f6bcd7e6038 R14: 00007f6bcd7e5fa0 R15: 00007ffee7ec31a8 [ 437.647785][ C1] [ 437.651159][ C1] Kernel Offset: disabled [ 437.655527][ C1] Rebooting in 86400 seconds..