last executing test programs: 10m56.604284641s ago: executing program 2 (id=476): sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001800)={'veth1_virt_wifi\x00', 0x0}) setsockopt$packet_int(r1, 0x107, 0x14, &(0x7f0000000180)=0x2, 0x4) setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000000)=0x3da, 0x4) sendto$packet(r1, &(0x7f00000000c0)="3f03fe7f0302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r2, 0x1, 0x0, 0x6, @multicast}, 0x14) 10m55.671706198s ago: executing program 2 (id=484): openat$kvm(0xffffffffffffff9c, 0x0, 0x8001, 0x0) ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x1000000) prlimit64(0x0, 0xe, 0x0, 0x0) r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2) 10m55.197803368s ago: executing program 2 (id=487): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4000, @remote}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000), 0x20000328) r1 = socket$inet6(0x10, 0x2, 0x4) sendto$inet6(r1, &(0x7f0000000080)="4c00000012001f15b9409b849ac00a00a5784002000000000000030038c88cc055c5ac27a6c5b068d0bf46d323452536005ad94a461cdbfee9bdb942352359a351d1ec0cffc8792cd8000080", 0x4c, 0x0, 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000005e00)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$F2FS_IOC_MOVE_RANGE(r3, 0x541b, &(0x7f0000000000)={0xffffffffffffffff, 0x8e59, 0x0, 0x3}) close_range(r4, r2, 0x0) sendmsg$tipc(0xffffffffffffffff, 0x0, 0x40) 10m55.123295707s ago: executing program 2 (id=488): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c) listen(r0, 0xfffffffc) r1 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x28, r3, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}]}]}, 0x28}, 0x1, 0x0, 0x0, 0xaa34a4cfdf933201}, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000003580)={0x20, 0x24, 0x107, 0x70bd2e, 0x25dfdbfb, {0x2, 0x7c}, [@nested={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x2, 0x0, 0x0, @u32=0x1}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4048011}, 0x8010) 10m54.29710252s ago: executing program 2 (id=494): mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mount$fuse(0x0, 0x0, 0x0, 0x2b18094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0]) mount(0x0, &(0x7f00000001c0)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) chdir(&(0x7f0000000140)='./file1\x00') r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x5d) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x3002a8d, 0x1) ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, 0x0) 10m53.374756965s ago: executing program 2 (id=502): sendmsg$NL80211_CMD_CHANNEL_SWITCH(0xffffffffffffffff, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @multicast1}, 0x10) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10) r1 = socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r3, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0xea, 0x0, 0xfffd, 0x0, 0x9, 0x5}, {0x12, 0x2, 0x0, 0x401, 0x8001, 0x1400}, 0xa5, 0x5, 0x10000000}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}}, 0x44080) sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0x44, 0x24, 0xd0f, 0x70bd2c, 0x25dfdbfb, {0x60, 0x0, 0x0, r3, {}, {0xffe0, 0xa}, {0xfff3, 0xe}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0xc, 0x5, 0x1, 0x1}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x55}, 0xc010) sendmsg$inet(r0, &(0x7f00000015c0)={0x0, 0x0, &(0x7f0000001600)=[{&(0x7f0000000100)="bcf26e99b01886847e2c9c6ede2c41d0c03fa6e170da86c3d613233d94b922a51e1a5e2e0bf4810091e36c819e5a41b329ab844a9daeee1d7e60fefc4119ae5c750cc8012a0628918fe3aad6c5be56f1be34092c", 0x54}], 0x1}, 0x0) 10m38.336188704s ago: executing program 32 (id=502): sendmsg$NL80211_CMD_CHANNEL_SWITCH(0xffffffffffffffff, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @multicast1}, 0x10) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10) r1 = socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r3, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0xea, 0x0, 0xfffd, 0x0, 0x9, 0x5}, {0x12, 0x2, 0x0, 0x401, 0x8001, 0x1400}, 0xa5, 0x5, 0x10000000}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}}, 0x44080) sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0x44, 0x24, 0xd0f, 0x70bd2c, 0x25dfdbfb, {0x60, 0x0, 0x0, r3, {}, {0xffe0, 0xa}, {0xfff3, 0xe}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0xc, 0x5, 0x1, 0x1}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x55}, 0xc010) sendmsg$inet(r0, &(0x7f00000015c0)={0x0, 0x0, &(0x7f0000001600)=[{&(0x7f0000000100)="bcf26e99b01886847e2c9c6ede2c41d0c03fa6e170da86c3d613233d94b922a51e1a5e2e0bf4810091e36c819e5a41b329ab844a9daeee1d7e60fefc4119ae5c750cc8012a0628918fe3aad6c5be56f1be34092c", 0x54}], 0x1}, 0x0) 12.170061241s ago: executing program 3 (id=3151): socket$nl_rdma(0x10, 0x3, 0x14) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000008140)="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", 0x2000, &(0x7f0000000440)={&(0x7f0000000340)={0x50, 0x0, 0x0, {0x7, 0x28, 0x0, 0x8110, 0x0, 0x401}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setxattr$trusted_overlay_origin(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100), 0x0, 0x0, 0x2) syz_usbip_server_init(0x6) umount2(&(0x7f00000002c0)='./file0\x00', 0x9) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$VT_RESIZEX(r3, 0x560a, &(0x7f0000000040)={0x0, 0x8, 0x0, 0x4}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) 10.858844301s ago: executing program 4 (id=3158): syz_open_dev$tty1(0xc, 0x4, 0x1) mkdir(0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x2000000000000013, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x6, 0xb8, &(0x7f0000000140)=""/184, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0) r3 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10) connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @loopback}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}, @window], 0x20000000000000e4) setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000001c0), 0x4) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0) sendto$inet(r3, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0) recvfrom$inet(r3, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25) 10.616105144s ago: executing program 0 (id=3160): sendmmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000000c80)=[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40001}], 0x1, 0x80) syz_init_net_socket$x25(0x9, 0x5, 0x0) r0 = getpgid(0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x0, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$inet_udp(0x2, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x12, 0x4, 0x8, 0x8002}, 0x50) r3 = socket$l2tp(0x2, 0x2, 0x73) r4 = socket$alg(0x26, 0x5, 0x0) bind$alg(r4, &(0x7f0000000140)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_ctr_aes192\x00'}, 0x58) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, 0x0, 0x0) close_range(r3, 0xffffffffffffffff, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0) connect$l2tp6(0xffffffffffffffff, &(0x7f0000000f40)={0xa, 0x0, 0x0, @empty}, 0x20) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000ac0)=[{{&(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1b, 0x0}}], 0x17fd147c801ae9af, 0xff00) socket$nl_rdma(0x10, 0x3, 0x14) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) 8.072615716s ago: executing program 0 (id=3162): bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd29, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x100, 0xe}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x4}, 0x0) r4 = socket$unix(0x1, 0x1, 0x0) r5 = socket$unix(0x1, 0x1, 0x0) r6 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) sendmsg$nl_route_sched(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000006c0)={0x0}}, 0x800) r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r7) socket$nl_rdma(0x10, 0x3, 0x14) ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) r8 = socket$kcm(0x11, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$kcm(r8, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, r9, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000140)='\r', 0x1}], 0x1}, 0x4) 7.740458038s ago: executing program 4 (id=3163): syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) socket$pppl2tp(0x18, 0x1, 0x1) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) socket$inet_tcp(0x2, 0x1, 0x0) r2 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000240)={'lo\x00'}) sendmsg$nl_route_sched(r2, 0x0, 0x0) ioctl$XFS_IOC_SCRUBV_METADATA(r0, 0xc0285840, &(0x7f0000000500)={0xd21, 0x200, 0x7, 0x0, 0x3, 0x0, 0x0, 0xffffffffffffffff}) socket$kcm(0x10, 0x2, 0x4) pselect6(0x40, &(0x7f0000000240)={0x0, 0x0, 0x1ff, 0x7d, 0x0, 0x8000, 0x4, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0xffffffffffffffff, 0x9, 0x4, 0xf, 0x80000006}, 0x0, 0x0) r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) close_range(r3, 0xffffffffffffffff, 0x0) 7.740043574s ago: executing program 0 (id=3164): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000280)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x23, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000e00)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) r4 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r4, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0) bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16) connect$inet(r3, &(0x7f0000000480)={0x2, 0x4, @multicast2}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@mcast2, @in6=@private2, 0x0, 0x0, 0x4e21, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x6, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x100000000000}, {}, 0x0, 0x0, 0x1, 0x0, 0x3}, {{@in6=@mcast2, 0x0, 0x33}, 0x0, @in=@loopback, 0x0, 0x0, 0x0, 0xb7, 0xfffffffe}}, 0xe8) sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0x0) 7.739803986s ago: executing program 4 (id=3165): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000280)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x23, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './cgroup\x00'}, 0x6e) sched_setaffinity(r0, 0x8, &(0x7f0000000e00)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) r3 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r3, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0) bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16) connect$inet(r2, &(0x7f0000000480)={0x2, 0x4, @multicast2}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@mcast2, @in6=@private2, 0x0, 0x0, 0x4e21, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x6, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x100000000000}, {}, 0x0, 0x0, 0x1, 0x0, 0x3}, {{@in6=@mcast2, 0x0, 0x33}, 0x0, @in=@loopback, 0x0, 0x0, 0x0, 0xb7, 0xfffffffe}}, 0xe8) sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0) 7.3500771s ago: executing program 3 (id=3167): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0) mount$9p_virtio(0x0, 0x0, 0x0, 0x8c, 0x0) r3 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0) ioctl$SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000000080)=0x40000) openat$kvm(0xffffffffffffff9c, &(0x7f0000000840), 0x0, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x100004, 0xffff, 0xb, 0x1, 0x1}, 0x50) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x4004000) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/asound/seq/clients\x00', 0x0, 0x0) lseek(r5, 0x9, 0x0) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000009c0)={0x0, 0x0, 0x0, &(0x7f0000000200), 0x2, r4}, 0x38) 4.17599406s ago: executing program 3 (id=3169): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000100)={0x0, 'erspan0\x00', {0x1}, 0x26}) bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0xc, 0xe, &(0x7f0000000a80)=ANY=[@ANYRES64=r0], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x5}, 0x10}, 0x94) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"]) chdir(&(0x7f0000000100)='./file0\x00') r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0) pwritev2(r3, &(0x7f0000000980)=[{&(0x7f0000000500)="be81", 0x2001e}], 0x1, 0x5, 0xa, 0x14) 4.049738791s ago: executing program 1 (id=3170): madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) modify_ldt$write2(0x11, &(0x7f0000000000)={0x7, 0x0, 0xffffffffffffffff, 0x1}, 0x10) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) r0 = syz_open_dev$radio(&(0x7f0000000080), 0x1, 0x2) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x3, &(0x7f0000000040)=ANY=[@ANYRES32=r0], &(0x7f0000000300)='GPL\x00', 0x2, 0xb3, &(0x7f0000000140)=""/179, 0x41100, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x38}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0) prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffa000/0x2000)=nil, 0x2000, &(0x7f0000000000)) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8c, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$VIDIOC_DQEVENT(r0, 0x80785659, &(0x7f00000003c0)={0x0, @frame_sync}) modify_ldt$write2(0x11, &(0x7f0000000040)={0x3, 0xffffffffffffffff, 0x1000, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1}, 0x10) 3.119920497s ago: executing program 3 (id=3171): bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd29, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x100, 0xe}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x4}, 0x0) r4 = socket$unix(0x1, 0x1, 0x0) r5 = socket$unix(0x1, 0x1, 0x0) r6 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) sendmsg$nl_route_sched(r6, 0x0, 0x800) r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r7) socket$nl_rdma(0x10, 0x3, 0x14) ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) r8 = socket$kcm(0x11, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$kcm(r8, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, r9, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000140)='\r', 0x1}], 0x1}, 0x4) 2.701331969s ago: executing program 0 (id=3172): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000280)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x23, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000e00)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) r4 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r4, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0) bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16) connect$inet(r3, &(0x7f0000000480)={0x2, 0x4, @multicast2}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@mcast2, @in6=@private2, 0x0, 0x0, 0x4e21, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x6, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x100000000000}, {}, 0x0, 0x0, 0x1, 0x0, 0x3}, {{@in6=@mcast2, 0x0, 0x33}, 0x0, @in=@loopback, 0x0, 0x0, 0x0, 0xb7, 0xfffffffe}}, 0xe8) sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0x0) 2.531866177s ago: executing program 4 (id=3173): bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd29, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x100, 0xe}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x4}, 0x0) r4 = socket$unix(0x1, 0x1, 0x0) r5 = socket$unix(0x1, 0x1, 0x0) r6 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) sendmsg$nl_route_sched(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000006c0)={0x0}}, 0x800) r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r7) socket$nl_rdma(0x10, 0x3, 0x14) ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) r8 = socket$kcm(0x11, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$kcm(r8, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, r9, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000140)='\r', 0x1}], 0x1}, 0x4) 2.282388091s ago: executing program 4 (id=3174): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f066bbeeb, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0) syz_io_uring_setup(0x3af6, &(0x7f0000001400)={0x0, 0xd9b2, 0x1000, 0x0, 0x23b}, &(0x7f0000000280), &(0x7f00000003c0), &(0x7f0000000000)) r3 = syz_open_dev$cec(&(0x7f0000000080), 0x0, 0xe8c00) io_setup(0x3, &(0x7f0000000180)=0x0) r5 = socket(0x400000000010, 0x3, 0x0) sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, 0x0}, 0x0) io_submit(r4, 0x1, &(0x7f0000000800)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x5, 0x0, r3, 0x0}]) mkdirat(0xffffffffffffff9c, 0x0, 0x0) mount$overlay(0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000040)={[{@xino_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4, 0x80) 2.210260814s ago: executing program 3 (id=3175): syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) socket$pppl2tp(0x18, 0x1, 0x1) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r1, &(0x7f0000000840)=[{0x0}, {0x0}], 0x2) socket$inet_tcp(0x2, 0x1, 0x0) r2 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000240)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f0000000300)={0x0, 0x9, &(0x7f0000000780)={&(0x7f0000000040)=@newqdisc={0x44, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r3, {0x0, 0xffe0}, {0xffff, 0xffff}, {0x0, 0xfff2}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_SPLIT_GSO={0x8, 0x11, 0x1}, @TCA_CAKE_AUTORATE={0x8}]}}]}, 0x44}}, 0x0) ioctl$XFS_IOC_SCRUBV_METADATA(r0, 0xc0285840, &(0x7f0000000500)={0xd21, 0x200, 0x7, 0x0, 0x3, 0x0, 0x0, 0xffffffffffffffff}) socket$kcm(0x10, 0x2, 0x4) pselect6(0x40, &(0x7f0000000240)={0x0, 0x0, 0x1ff, 0x7d, 0x0, 0x8000, 0x4, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0xffffffffffffffff, 0x9, 0x4, 0xf, 0x80000006}, 0x0, 0x0) r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) close_range(r4, 0xffffffffffffffff, 0x0) 2.136555269s ago: executing program 1 (id=3176): socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$kcm(0xa, 0x1, 0x106) setsockopt$sock_attach_bpf(r0, 0x29, 0x4b, 0x0, 0x4) r1 = getpgid(0x0) syz_init_net_socket$ax25(0x3, 0x3, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x0, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) memfd_create(&(0x7f00000003c0)='%\x00\xae\xdb\xb8\x18\xc1\xecWbNO\xde^\xff\x19\x17QE{*X\xe3\xe2\x06\x00\x00\x00\xcc\xf6\xc0H\xa2\x83?\xe7\x89*\xf1\xc5b\v\xec\xe4\xb0\xa2\xc5\xee\x04\x98\xa9\xb9\xe5\x8c\xc3\x97B\xaa+\xf2o\xf6k\xcc\xf7\x057\x8d\xb1\xa0\x86\xe8\xda\x90\xc2\x1e\x15\x11\x92\x9d\xc1M\xe5@\v\x001\xae\x19$\xf8\x96\x81\xcbR\xae`\xd3\xf8_R~7\xf5\x1c\xc8\xf9\xe2z\x00<\xdc\x11\x89\xc9&f\x00\x00\x00\xe2\x83\xf1\x0eg\a\xec\xac\xa5\x94~v\x80P5\xf9/$', 0x4) r4 = socket$inet_udp(0x2, 0x2, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB], 0x10}}, 0x0) bind$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16) connect$inet(r4, &(0x7f0000000480)={0x2, 0x4, @multicast2}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@mcast2, @in6=@private2, 0x0, 0x0, 0x4e21, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x6, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x100000000000}, {}, 0x0, 0x0, 0x1}, {{@in6=@mcast2, 0x0, 0x33}, 0x0, @in=@loopback, 0x0, 0x0, 0x0, 0xb7, 0xfffffffe}}, 0xe8) sendmmsg(r4, 0x0, 0x0, 0x0) 1.749648958s ago: executing program 0 (id=3177): r0 = socket$nl_rdma(0x10, 0x3, 0x14) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) setgroups(0x0, 0x0) r4 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r4, 0x560a, &(0x7f0000000040)={0x0, 0x8, 0x0, 0x4}) socket$netlink(0x10, 0x3, 0x15) bpf$PROG_LOAD(0x5, 0x0, 0x0) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) r5 = dup(0xffffffffffffffff) write$uinput_user_dev(r5, &(0x7f00000004c0)={'syz0\x00', {0x87, 0x3, 0x1, 0x9}, 0xb, [0x4, 0x6, 0x802, 0xe9a2, 0x1, 0x0, 0xa9ba, 0xc1f, 0x1, 0x7f5b, 0x3, 0x4, 0x5, 0x10004, 0x2, 0x3, 0x0, 0x3, 0xe, 0x3, 0x0, 0x2, 0xd9, 0x2, 0x6, 0x0, 0x3, 0x9, 0xfff, 0x8a0, 0x6, 0x8001, 0x33b5, 0x1, 0xfffffffc, 0x0, 0x9, 0xb, 0xcc, 0x4, 0x80, 0x401, 0x5, 0x5, 0xfffffffd, 0x8, 0xb, 0x3, 0xffff8001, 0x6, 0x3, 0x80000000, 0x1, 0xa, 0x7, 0x8, 0x5, 0xfff, 0x1, 0x7fe, 0x7fff, 0x10000, 0x2, 0x8], [0x2, 0x1, 0x10000, 0x7, 0x9, 0x6, 0x5, 0x4, 0x9, 0x7, 0x5, 0xdd5a, 0x6, 0x5, 0x7, 0x8, 0x5, 0xcc, 0xbc1, 0x80000, 0x0, 0x5e81339d, 0xffffc256, 0xb, 0x80000001, 0x0, 0x0, 0x4, 0x4, 0x7, 0x8, 0x10d, 0x1, 0x5, 0x5, 0xfffffb66, 0xfb5, 0x2, 0x4, 0x7, 0x2, 0x8000, 0x7fff, 0x1, 0x9425, 0x4, 0x6f, 0x80b, 0x1, 0x1, 0x525ba681, 0x4f74, 0x7, 0x1, 0x1, 0xfffffffd, 0x100, 0x6, 0x10000, 0x1306, 0x8b, 0x10000, 0xfe4, 0x3ff], [0x2, 0x40, 0x200, 0xfffffff9, 0x7aa, 0x10, 0x80, 0x8001, 0x5, 0x0, 0x9, 0x8, 0x7fffffff, 0x1, 0x1, 0x4, 0x8, 0xa9, 0x7, 0x49, 0x6, 0x4, 0x5, 0xa3, 0x40003, 0x2, 0x0, 0x3, 0x4c, 0x3, 0x5, 0x4, 0xd21e, 0x9, 0x12, 0x0, 0x2, 0xfff, 0x926, 0x800100, 0x7c83, 0xd, 0x1, 0x4, 0xf, 0x81, 0x47, 0x7, 0x0, 0x11, 0x2, 0xffd, 0x7, 0x7, 0x7ffd, 0x7ff, 0x10, 0x9, 0x10001, 0x8000001, 0x10001, 0x6, 0x71c], [0x81, 0x3, 0x10, 0x4e26, 0x3, 0x7, 0xfffffff3, 0x497, 0x4, 0x1, 0x3, 0x5, 0x56, 0xc28, 0x9, 0x5, 0x5, 0xa, 0x79a, 0x4, 0x9, 0x6, 0xc41f, 0x5, 0x8b6, 0xffffffff, 0x0, 0x0, 0x6a, 0x9, 0x0, 0x0, 0x1000, 0x10, 0xd, 0x6, 0x8000, 0x53, 0x78d, 0x4, 0x1, 0x9, 0xfffffff8, 0x9, 0x7, 0x7, 0x101, 0x7, 0x7, 0x4, 0x0, 0xb, 0x400400, 0x8, 0x0, 0x8, 0x7, 0x9, 0x8, 0x0, 0x1, 0x8001, 0xfffffff7, 0x5]}, 0x45c) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="380000000314230c2dbd7000ffdbdf250900020073797a32000f00000800410072786500140033007767320000000000000000000000000066129cbdaaf92ea305126427a766b1c085924cd6ad57b03cfe9655f622d77d2aeea86454e08d702ca2d6392ca31ef21b722d78da5d90886bb0db32b0e33c89a5e901bb4e0379f25665d395238e6730ad37288567b268fe7f1586d588e526e7d727ec73b81279a75e879dd960e5107507609756ec582a8032a0ae41beb16ed972c66cc59029b79ace6666660cde28316ee23ff7ea64e39ae6d39b5f45f5ccf2adaffee80cc44776710ba5c2a2e806dcb0a1fd133d11902dea4f"], 0x38}, 0x1, 0x0, 0x0, 0x400c080}, 0x0) 1.007591474s ago: executing program 3 (id=3178): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000280)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x23, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './cgroup\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000e00)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$key(0xf, 0x3, 0x2) 747.250338ms ago: executing program 0 (id=3179): sendto$inet(0xffffffffffffffff, &(0x7f0000000280), 0x0, 0x0, &(0x7f0000001100)={0x2, 0x0, @private}, 0x10) socket(0xa, 0x3, 0x3a) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff) sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0x6, 0xffffffff}, 0x0) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) mremap(&(0x7f000054e000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000022c000/0x3000)=nil) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, &(0x7f00000000c0)}) r2 = socket(0x2a, 0x2, 0x0) sendto(r2, 0x0, 0x0, 0x0, &(0x7f0000000500)=@l2tp={0x2, 0x0, @empty, 0x4}, 0x80) openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x141, 0x0, 0x4}, 0x18) ioctl$vim2m_VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, 0x0) bpf$ENABLE_STATS(0x20, &(0x7f0000000240), 0x4) mknod$loop(0x0, 0x85c68e8ab9c77084, 0x0) openat$sequencer2(0xffffff9c, 0x0, 0x143240, 0x0) r3 = io_uring_setup(0x653, &(0x7f00000000c0)) io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r3, 0xf, &(0x7f0000000540)={0x1002, 0x0, 0x0, 0x0, 0x28}, 0x20) 403.445091ms ago: executing program 1 (id=3180): socketpair$unix(0x1, 0x2, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7ffc0000}]}) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) syz_open_procfs(0x0, 0x0) r0 = gettid() rt_sigtimedwait(&(0x7f0000000000)={[0xe]}, 0x0, 0x0, 0x8) tkill(r0, 0x4) r1 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_INIT(r1, 0x0, 0xc8, &(0x7f0000003d40), 0x4) setsockopt$MRT_ADD_VIF(r1, 0x0, 0xca, &(0x7f0000003d80)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10) syz_emit_ethernet(0x46, &(0x7f00000000c0)={@local, @random="7f0a00034011", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0xb, 0x0, 0x0, 0x12, 0x0, 0x2802, {0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2f, 0x0, @loopback, @local}, "140086ddffffffff"}}}}}, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = socket$igmp(0x2, 0x3, 0x2) setsockopt$inet_mreq(r2, 0x0, 0x23, 0x0, 0x0) syz_emit_ethernet(0x2a, &(0x7f0000000040)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x80, 0x2, 0x0, @empty, @multicast1=0xe0000300}, @echo_reply={0x0, 0x0, 0x0, 0x64, 0x20d0}}}}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000340)={'syz_tun\x00', 0x0}) sendmsg$nl_route_sched(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r5, {}, {}, {0xfff3}}}, 0x24}}, 0x0) setsockopt$MRT_ADD_MFC_PROXY(r3, 0x0, 0xd2, &(0x7f0000000200)={@empty, @multicast2=0xe0000300, 0x0, "028a3f6c5805000000451697efe42811ee1df06e9264f7d866b1970548fc3c7b", 0xb2, 0xfffffff7, 0x4, 0x40000006}, 0x3c) 310.380548ms ago: executing program 4 (id=3181): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYRESOCT=0x0], &(0x7f0000000300)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x3b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff30, 0x0, 0x0, 0x10, 0x37}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0) mkdir(&(0x7f0000000400)='./file0\x00', 0x0) mkdir(&(0x7f00000000c0)='./bus\x00', 0x0) r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) mkdir(&(0x7f0000000280)='./file0\x00', 0xf) close_range(r3, r3, 0x0) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) r5 = fanotify_init(0x200, 0x8000) fanotify_mark(r5, 0x1, 0x4800003e, r4, 0x0) dup3(r4, r5, 0x80000) 59.663553ms ago: executing program 1 (id=3182): bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd29, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x100, 0xe}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x4}, 0x0) r4 = socket$unix(0x1, 0x1, 0x0) r5 = socket$unix(0x1, 0x1, 0x0) r6 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) sendmsg$nl_route_sched(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000006c0)={0x0}}, 0x800) r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r7) socket$nl_rdma(0x10, 0x3, 0x14) ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) r8 = socket$kcm(0x11, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$kcm(r8, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, r9, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000140)='\r', 0x1}], 0x1}, 0x4) 59.11615ms ago: executing program 1 (id=3183): bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd29, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x100, 0xe}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x4}, 0x0) r4 = socket$unix(0x1, 0x1, 0x0) r5 = socket$unix(0x1, 0x1, 0x0) r6 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) sendmsg$nl_route_sched(r6, 0x0, 0x800) r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r7) socket$nl_rdma(0x10, 0x3, 0x14) ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) r8 = socket$kcm(0x11, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$kcm(r8, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, r9, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000140)='\r', 0x1}], 0x1}, 0x4) 0s ago: executing program 1 (id=3184): socket$nl_netfilter(0x10, 0x3, 0xc) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @loopback={0xff00000000000000}}, 0x1c) getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f0000000440)) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0) socket(0x2a, 0x2, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a000007080002400000000209000100"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="340000003e000701feffffff00000000017c0000040042800c0001800682237b36630000100002"], 0x34}, 0x1, 0x0, 0x0, 0x4004095}, 0xc080) r4 = socket$nl_xfrm(0x10, 0x3, 0x6) clock_gettime(0x6, &(0x7f0000000140)) sendmsg$nl_xfrm(r4, 0x0, 0x0) r5 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000001100)=@migrate={0xa0, 0x21, 0x1, 0x70bd28, 0x0, {{@in6=@private2, @in=@rand_addr=0x64010102, 0x0, 0x0, 0x0, 0x0, 0xa}, 0x80004}, [@migrate={0x50, 0x11, [{@in=@local, @in=@initdev={0xac, 0x1e, 0x1, 0x0}, @in=@multicast2, @in6=@local, 0x3c, 0x4, 0x0, 0x2, 0x2, 0xa}]}]}, 0xa0}, 0x1, 0x0, 0x0, 0x40180}, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x34}, 0x1, 0x0, 0x0, 0x4000895}, 0xc000) kernel console output (not intermixed with test programs): r of the config [ 338.595141][ T71] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 338.598226][ T71] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 338.601642][ T71] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 338.607519][ T71] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 338.610398][ T71] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 338.612899][ T71] usb 5-1: Product: syz [ 338.614251][ T71] usb 5-1: Manufacturer: syz [ 338.619413][ T71] cdc_wdm 5-1:1.0: skipping garbage [ 338.621120][ T71] cdc_wdm 5-1:1.0: skipping garbage [ 338.623892][ T71] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device [ 338.626812][ T71] cdc_wdm 5-1:1.0: Unknown control protocol [ 338.896768][T12052] overlayfs: failed to clone upperpath [ 340.642274][ T5975] usb 5-1: USB disconnect, device number 8 [ 341.166652][T12080] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1884'. [ 344.314973][ T40] kauditd_printk_skb: 377 callbacks suppressed [ 344.314984][ T40] audit: type=1326 audit(2000000016.669:1450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12111 comm="syz.1.1897" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 344.335765][ T40] audit: type=1326 audit(2000000016.669:1451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12111 comm="syz.1.1897" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 344.344125][ T40] audit: type=1326 audit(2000000016.669:1452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12111 comm="syz.1.1897" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 344.363555][ T40] audit: type=1326 audit(2000000016.669:1453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12111 comm="syz.1.1897" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 344.375915][ T40] audit: type=1326 audit(2000000016.669:1454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12111 comm="syz.1.1897" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 344.384019][ T40] audit: type=1326 audit(2000000016.669:1455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12111 comm="syz.1.1897" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 344.405850][ T40] audit: type=1326 audit(2000000016.669:1456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12111 comm="syz.1.1897" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 344.423568][ T40] audit: type=1326 audit(2000000016.669:1457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12111 comm="syz.1.1897" exe="/syz-executor" sig=0 arch=40000003 syscall=394 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 344.433703][ T40] audit: type=1326 audit(2000000016.669:1458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12111 comm="syz.1.1897" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 344.441105][ T40] audit: type=1326 audit(2000000016.669:1459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12111 comm="syz.1.1897" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 344.500425][T12122] lo speed is unknown, defaulting to 1000 [ 345.150941][T12139] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1900'. [ 345.774720][T12141] lo speed is unknown, defaulting to 1000 [ 346.507499][T12157] tipc: Enabling of bearer rejected, failed to enable media [ 346.569344][T12160] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1905'. [ 347.965967][T12178] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6) [ 347.968341][T12178] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 347.986812][T12178] vhci_hcd vhci_hcd.0: Device attached [ 348.326943][T10779] usb 38-1: SetAddress Request (2) to port 0 [ 348.330071][T10779] usb 38-1: new SuperSpeed USB device number 2 using vhci_hcd [ 348.582581][T12186] lo speed is unknown, defaulting to 1000 [ 348.689760][T12179] vhci_hcd: connection reset by peer [ 348.695818][ T46] vhci_hcd vhci_hcd.0: stop threads [ 348.699582][ T46] vhci_hcd vhci_hcd.0: release socket [ 348.703816][ T46] vhci_hcd vhci_hcd.0: disconnect device [ 349.322393][T12197] lo speed is unknown, defaulting to 1000 [ 351.893389][T12216] tipc: Enabling of bearer rejected, already enabled [ 352.191071][T12222] tipc: Started in network mode [ 352.192750][T12222] tipc: Node identity bbbbbb01, cluster identity 4711 [ 352.195281][T12222] tipc: Enabled bearer , priority 10 [ 352.395458][T12227] netlink: 'syz.3.1923': attribute type 1 has an invalid length. [ 352.479836][T12227] bond10: (slave vxcan1): The slave device specified does not support setting the MAC address [ 352.484552][T12227] bond10: (slave vxcan1): Error -95 calling set_mac_address [ 352.528732][T12236] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1923'. [ 352.607476][T12242] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1923'. [ 352.654226][T12236] bond10: (slave bridge4): Enslaving as an active interface with a down link [ 352.668205][T12242] 8021q: adding VLAN 0 to HW filter on device bond10 [ 353.087892][T12261] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6) [ 353.090739][T12261] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 353.115821][T12261] vhci_hcd vhci_hcd.0: Device attached [ 353.185850][ T5990] tipc: Node number set to 3149642497 [ 353.376986][T10778] usb 44-1: SetAddress Request (2) to port 0 [ 353.379670][T10778] usb 44-1: new SuperSpeed USB device number 2 using vhci_hcd [ 353.416053][T10779] usb 38-1: device descriptor read/8, error -110 [ 353.807329][T10779] usb usb38-port1: attempt power cycle [ 353.825216][T12262] vhci_hcd: connection reset by peer [ 353.829631][ T13] vhci_hcd vhci_hcd.3: stop threads [ 353.831596][ T13] vhci_hcd vhci_hcd.3: release socket [ 353.833841][ T13] vhci_hcd vhci_hcd.3: disconnect device [ 354.386631][T10779] usb usb38-port1: unable to enumerate USB device [ 354.674815][T12273] lo speed is unknown, defaulting to 1000 [ 356.159435][T12295] gfs2: gfs2 mount does not exist [ 356.913649][T12298] netlink: 'syz.1.1935': attribute type 1 has an invalid length. [ 356.948773][T12298] bond15: (slave vxcan1): The slave device specified does not support setting the MAC address [ 356.952337][T12298] bond15: (slave vxcan1): Error -95 calling set_mac_address [ 356.998496][T12305] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1935'. [ 357.010044][T12305] bond15: (slave bridge11): Enslaving as an active interface with a down link [ 357.097791][T12298] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1935'. [ 357.106737][T12298] 8021q: adding VLAN 0 to HW filter on device bond15 [ 357.253708][T12309] binder_alloc: 12308: binder_alloc_buf, no vma [ 357.269473][T12309] binder: 12308:12309 ioctl c0306201 80004a40 returned -14 [ 357.374534][T12306] lo speed is unknown, defaulting to 1000 [ 359.068437][T10778] usb 44-1: device descriptor read/8, error -110 [ 360.092396][T10778] usb usb44-port1: attempt power cycle [ 360.104272][T12335] netlink: 'syz.1.1947': attribute type 1 has an invalid length. [ 360.132013][T12335] bond16: entered promiscuous mode [ 360.138207][T12335] 8021q: adding VLAN 0 to HW filter on device bond16 [ 360.431077][T12335] ipvlan0: entered allmulticast mode [ 360.435649][T12335] bond16: entered allmulticast mode [ 360.443879][T12344] ipvlan1: entered allmulticast mode [ 360.462508][T12345] bond16: (slave bridge12): making interface the new active one [ 360.465764][T12345] bridge12: entered promiscuous mode [ 360.468045][T12345] bridge12: entered allmulticast mode [ 360.471682][T12345] bond16: (slave bridge12): Enslaving as an active interface with an up link [ 360.536407][T12331] lo speed is unknown, defaulting to 1000 [ 360.650045][T10778] usb usb44-port1: unable to enumerate USB device [ 360.712958][ T40] kauditd_printk_skb: 200 callbacks suppressed [ 360.712971][ T40] audit: type=1326 audit(2000000033.069:1660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12347 comm="syz.1.1949" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 360.723290][ T40] audit: type=1326 audit(2000000033.069:1661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12347 comm="syz.1.1949" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 360.731328][ T40] audit: type=1326 audit(2000000033.069:1662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12347 comm="syz.1.1949" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 360.738368][ T40] audit: type=1326 audit(2000000033.069:1663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12347 comm="syz.1.1949" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 360.744962][ T40] audit: type=1326 audit(2000000033.069:1664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12347 comm="syz.1.1949" exe="/syz-executor" sig=0 arch=40000003 syscall=358 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 360.752009][ T40] audit: type=1326 audit(2000000033.069:1665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12347 comm="syz.1.1949" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 360.758919][ T40] audit: type=1326 audit(2000000033.069:1666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12347 comm="syz.1.1949" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 360.765816][ T40] audit: type=1326 audit(2000000033.069:1667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12347 comm="syz.1.1949" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 360.772528][ T40] audit: type=1326 audit(2000000033.069:1668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12347 comm="syz.1.1949" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 360.779741][ T40] audit: type=1326 audit(2000000033.069:1669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12347 comm="syz.1.1949" exe="/syz-executor" sig=0 arch=40000003 syscall=425 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 361.047739][T12357] netlink: 'syz.0.1951': attribute type 1 has an invalid length. [ 361.124536][T12357] bond15: (slave vxcan3): The slave device specified does not support setting the MAC address [ 361.132260][T12357] bond15: (slave vxcan3): Error -95 calling set_mac_address [ 361.163485][T12362] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1951'. [ 361.182235][T12362] bond15: (slave bridge7): Enslaving as an active interface with a down link [ 361.247687][T12357] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1951'. [ 361.256757][T12357] 8021q: adding VLAN 0 to HW filter on device bond15 [ 361.908528][T12373] lo: MTU too low for tipc bearer [ 361.910796][T12373] tipc: Enabling of bearer rejected, failed to enable media [ 362.343700][T12399] netlink: 'syz.4.1962': attribute type 1 has an invalid length. [ 362.373685][T12399] bond12: (slave vxcan3): The slave device specified does not support setting the MAC address [ 362.380177][T12399] bond12: (slave vxcan3): Error -95 calling set_mac_address [ 362.432356][T12401] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1962'. [ 362.445497][T12401] bond12: (slave bridge6): Enslaving as an active interface with a down link [ 362.485602][T12399] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1962'. [ 362.490879][T12399] 8021q: adding VLAN 0 to HW filter on device bond12 [ 362.854950][T12410] netlink: 14 bytes leftover after parsing attributes in process `syz.0.1964'. [ 364.385058][T12423] netlink: 'syz.4.1968': attribute type 1 has an invalid length. [ 364.402457][T12423] bond13: entered promiscuous mode [ 364.404610][T12423] 8021q: adding VLAN 0 to HW filter on device bond13 [ 364.565758][T12425] ipvlan3: entered allmulticast mode [ 364.567466][T12425] bond13: entered allmulticast mode [ 364.573549][T12426] ipvlan4: entered allmulticast mode [ 364.583635][T12427] bond13: (slave bridge7): making interface the new active one [ 364.586430][T12427] bridge7: entered promiscuous mode [ 364.588745][T12427] bridge7: entered allmulticast mode [ 364.592653][T12427] bond13: (slave bridge7): Enslaving as an active interface with an up link [ 365.857195][T12443] lo speed is unknown, defaulting to 1000 [ 366.038619][T12452] veth0_to_team: left allmulticast mode [ 368.311944][T12468] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1984'. [ 368.562567][T12473] lo speed is unknown, defaulting to 1000 [ 368.785018][T12482] netlink: 'syz.0.1978': attribute type 1 has an invalid length. [ 368.801580][T12482] bond16: entered promiscuous mode [ 368.803445][T12482] 8021q: adding VLAN 0 to HW filter on device bond16 [ 368.832188][T12482] ipvlan0: entered allmulticast mode [ 368.834594][T12482] bond16: entered allmulticast mode [ 368.852338][T12482] ipvlan1: entered allmulticast mode [ 368.873636][T12482] bond16: (slave bridge8): making interface the new active one [ 368.877087][T12482] bridge8: entered promiscuous mode [ 368.879498][T12482] bridge8: entered allmulticast mode [ 368.882310][T12482] bond16: (slave bridge8): Enslaving as an active interface with an up link [ 371.324629][T12507] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1986'. [ 372.600162][T12521] lo speed is unknown, defaulting to 1000 [ 373.267191][ T40] kauditd_printk_skb: 14 callbacks suppressed [ 373.267208][ T40] audit: type=1326 audit(2000000045.629:1684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12538 comm="syz.1.1997" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7fc00000 [ 373.342309][ T40] audit: type=1326 audit(2000000045.699:1685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12538 comm="syz.1.1997" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fb6f6c code=0x7fc00000 [ 374.045725][ T40] audit: type=1326 audit(2000000046.399:1686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12538 comm="syz.1.1997" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7fc00000 [ 374.053343][ T40] audit: type=1326 audit(2000000046.399:1687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12538 comm="syz.1.1997" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7fb6f6c code=0x7fc00000 [ 374.074585][ T40] audit: type=1326 audit(2000000046.399:1688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12538 comm="syz.1.1997" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7fc00000 [ 374.136528][ T40] audit: type=1326 audit(2000000046.399:1689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12538 comm="syz.1.1997" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7fc00000 [ 374.144610][ T40] audit: type=1326 audit(2000000046.399:1690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12538 comm="syz.1.1997" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7fc00000 [ 374.158930][ T40] audit: type=1326 audit(2000000046.399:1691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12538 comm="syz.1.1997" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7fc00000 [ 374.165815][T12558] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1999'. [ 374.169292][ T40] audit: type=1326 audit(2000000046.399:1692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12538 comm="syz.1.1997" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7fc00000 [ 374.182090][ T40] audit: type=1326 audit(2000000046.399:1693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12538 comm="syz.1.1997" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7fc00000 [ 374.303393][T12558] bridge8: port 1(veth7) entered blocking state [ 374.305586][T12558] bridge8: port 1(veth7) entered disabled state [ 374.307835][T12558] veth7: entered allmulticast mode [ 374.310661][T12558] veth7: entered promiscuous mode [ 374.335393][T12561] vlan4: entered allmulticast mode [ 374.345905][T12561] vlan0: entered allmulticast mode [ 374.347801][T12561] bridge0: entered allmulticast mode [ 374.358283][T12561] bridge8: port 2(vlan4) entered blocking state [ 374.360466][T12561] bridge8: port 2(vlan4) entered disabled state [ 374.363716][T12561] vlan4: entered promiscuous mode [ 374.368373][T12561] vlan0: entered promiscuous mode [ 374.370393][T12561] bridge0: entered promiscuous mode [ 374.937986][T12580] capability: warning: `syz.3.2003' uses deprecated v2 capabilities in a way that may be insecure [ 374.962415][T12562] lo speed is unknown, defaulting to 1000 [ 378.456479][T12601] netlink: 'syz.3.2007': attribute type 1 has an invalid length. [ 378.666862][T12601] bond11: entered promiscuous mode [ 378.669420][T12601] 8021q: adding VLAN 0 to HW filter on device bond11 [ 378.758699][T12604] ipvlan2: entered allmulticast mode [ 378.761165][T12604] bond11: entered allmulticast mode [ 378.838484][T12601] ipvlan3: entered allmulticast mode [ 378.861524][T12601] bond11: (slave bridge6): making interface the new active one [ 378.864962][T12601] bridge6: entered promiscuous mode [ 378.868058][T12601] bridge6: entered allmulticast mode [ 378.871940][T12601] bond11: (slave bridge6): Enslaving as an active interface with an up link [ 379.972330][T12617] lo speed is unknown, defaulting to 1000 [ 382.077250][T12673] can0: slcan on ttyS3. [ 382.249300][T12672] lo speed is unknown, defaulting to 1000 [ 382.373817][T12665] can0 (unregistered): slcan off ttyS3. [ 382.787340][ T40] kauditd_printk_skb: 60 callbacks suppressed [ 382.787358][ T40] audit: type=1326 audit(2000000055.149:1754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12688 comm="syz.0.2022" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 382.802496][ T40] audit: type=1326 audit(2000000055.149:1755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12688 comm="syz.0.2022" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 382.871754][ T40] audit: type=1326 audit(2000000055.159:1756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12688 comm="syz.0.2022" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 382.881243][ T40] audit: type=1326 audit(2000000055.159:1757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12688 comm="syz.0.2022" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 382.892721][ T40] audit: type=1326 audit(2000000055.159:1758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12688 comm="syz.0.2022" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 382.915928][ T40] audit: type=1326 audit(2000000055.159:1759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12688 comm="syz.0.2022" exe="/syz-executor" sig=0 arch=40000003 syscall=358 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 382.925007][ T40] audit: type=1326 audit(2000000055.159:1760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12688 comm="syz.0.2022" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 382.934394][ T40] audit: type=1326 audit(2000000055.159:1761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12688 comm="syz.0.2022" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 382.943812][ T40] audit: type=1326 audit(2000000055.229:1762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12688 comm="syz.0.2022" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 383.169206][ T1416] ieee802154 phy1 wpan1: encryption failed: -22 [ 383.481405][ T40] audit: type=1326 audit(2000000055.229:1763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12688 comm="syz.0.2022" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 384.739918][T12710] netlink: 'syz.1.2026': attribute type 1 has an invalid length. [ 384.762389][T12710] bond17: entered promiscuous mode [ 384.765137][T12710] 8021q: adding VLAN 0 to HW filter on device bond17 [ 384.794917][T12710] ipvlan2: entered allmulticast mode [ 384.797248][T12710] bond17: entered allmulticast mode [ 384.807602][T12710] ipvlan3: entered allmulticast mode [ 384.826211][T12710] bond17: (slave bridge13): making interface the new active one [ 384.829861][T12710] bridge13: entered promiscuous mode [ 384.832738][T12710] bridge13: entered allmulticast mode [ 384.838064][T12710] bond17: (slave bridge13): Enslaving as an active interface with an up link [ 384.946490][T12716] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2028'. [ 384.979416][T12716] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2028'. [ 386.318272][T12728] lo speed is unknown, defaulting to 1000 [ 387.615467][T12747] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2043'. [ 388.060789][T12754] netlink: 'syz.1.2037': attribute type 1 has an invalid length. [ 388.073440][T12754] bond18: entered promiscuous mode [ 388.075314][T12754] 8021q: adding VLAN 0 to HW filter on device bond18 [ 388.112137][T12754] ipvlan4: entered allmulticast mode [ 388.113925][T12754] bond18: entered allmulticast mode [ 388.124034][T12754] ipvlan5: entered allmulticast mode [ 388.139613][T12754] bond18: (slave bridge14): making interface the new active one [ 388.142516][T12754] bridge14: entered promiscuous mode [ 388.144314][T12754] bridge14: entered allmulticast mode [ 388.147457][T12754] bond18: (slave bridge14): Enslaving as an active interface with an up link [ 388.608338][ T40] kauditd_printk_skb: 5 callbacks suppressed [ 388.608349][ T40] audit: type=1326 audit(2000000060.969:1769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12759 comm="syz.3.2039" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 388.685811][ T40] audit: type=1326 audit(2000000060.979:1770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12759 comm="syz.3.2039" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 388.693145][ T40] audit: type=1326 audit(2000000060.979:1771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12759 comm="syz.3.2039" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 388.745920][ T40] audit: type=1326 audit(2000000060.979:1772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12759 comm="syz.3.2039" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 388.760742][ T40] audit: type=1326 audit(2000000060.979:1773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12759 comm="syz.3.2039" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 388.783000][ T40] audit: type=1326 audit(2000000060.989:1774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12759 comm="syz.3.2039" exe="/syz-executor" sig=0 arch=40000003 syscall=358 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 388.803370][ T40] audit: type=1326 audit(2000000060.989:1775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12759 comm="syz.3.2039" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 388.811339][ T40] audit: type=1326 audit(2000000060.989:1776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12759 comm="syz.3.2039" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 388.825816][ T40] audit: type=1326 audit(2000000060.989:1777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12759 comm="syz.3.2039" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 388.846039][ T40] audit: type=1326 audit(2000000060.999:1778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12759 comm="syz.3.2039" exe="/syz-executor" sig=0 arch=40000003 syscall=425 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 388.963532][T12766] lo speed is unknown, defaulting to 1000 [ 389.972358][T12781] lo speed is unknown, defaulting to 1000 [ 390.042931][T12789] netlink: 'syz.0.2044': attribute type 12 has an invalid length. [ 400.726329][ T5948] Bluetooth: hci0: Unable to find connection for big 0x00 [ 404.850755][T13029] ptrace attach of ""[13030] was attempted by "/syz-executor exec"[13029] [ 405.652487][T13051] overlayfs: failed to clone upperpath [ 405.741254][ T40] kauditd_printk_skb: 10 callbacks suppressed [ 405.741270][ T40] audit: type=1804 audit(2000000078.099:1789): pid=13051 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2091" name="bus" dev="tmpfs" ino=2956 res=1 errno=0 [ 406.627913][T13056] netlink: 'syz.4.2092': attribute type 12 has an invalid length. [ 407.783532][T13091] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2102'. [ 408.038049][T13095] netlink: 212916 bytes leftover after parsing attributes in process `syz.0.2103'. [ 409.277772][T13109] comedi comedi0: Minor 3 could not be opened [ 409.489109][T13107] lo speed is unknown, defaulting to 1000 [ 412.267480][T13144] lo speed is unknown, defaulting to 1000 [ 417.817114][ T40] audit: type=1326 audit(2000000090.179:1790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13205 comm="syz.4.2125" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef6c code=0x7ffc0000 [ 417.826315][ T40] audit: type=1326 audit(2000000090.179:1791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13205 comm="syz.4.2125" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef6c code=0x7ffc0000 [ 417.835270][ T40] audit: type=1326 audit(2000000090.179:1792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13205 comm="syz.4.2125" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf702ef6c code=0x7ffc0000 [ 418.325771][ T40] audit: type=1326 audit(2000000090.179:1793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13205 comm="syz.4.2125" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef6c code=0x7ffc0000 [ 418.332665][ T40] audit: type=1326 audit(2000000090.179:1794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13205 comm="syz.4.2125" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef6c code=0x7ffc0000 [ 418.351641][ T40] audit: type=1326 audit(2000000090.179:1795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13205 comm="syz.4.2125" exe="/syz-executor" sig=0 arch=40000003 syscall=358 compat=1 ip=0xf702ef6c code=0x7ffc0000 [ 418.382354][ T40] audit: type=1326 audit(2000000090.179:1796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13205 comm="syz.4.2125" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef6c code=0x7ffc0000 [ 418.402782][ T40] audit: type=1326 audit(2000000090.179:1797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13205 comm="syz.4.2125" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef6c code=0x7ffc0000 [ 418.422122][ T40] audit: type=1326 audit(2000000090.179:1798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13205 comm="syz.4.2125" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf702ef6c code=0x7ffc0000 [ 418.429290][ T40] audit: type=1326 audit(2000000090.179:1799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13205 comm="syz.4.2125" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef6c code=0x7ffc0000 [ 419.017123][T13217] lo speed is unknown, defaulting to 1000 [ 419.064574][T13224] netlink: 'syz.1.2128': attribute type 12 has an invalid length. [ 420.075808][ T39] usb 8-1: new high-speed USB device number 18 using dummy_hcd [ 420.246070][ T39] usb 8-1: Using ep0 maxpacket: 16 [ 420.250419][ T39] usb 8-1: config 0 has no interfaces? [ 420.256818][ T39] usb 8-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 420.260643][ T39] usb 8-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 420.263965][ T39] usb 8-1: Manufacturer: syz [ 420.369405][ T39] usb 8-1: config 0 descriptor?? [ 420.826298][T13249] x_tables: duplicate underflow at hook 1 [ 420.900333][ T53] usb 8-1: USB disconnect, device number 18 [ 420.930920][T13252] netlink: 'syz.1.2136': attribute type 4 has an invalid length. [ 422.245963][T13249] syz.0.2135 (13249) used greatest stack depth: 18376 bytes left [ 425.844023][T13286] lo speed is unknown, defaulting to 1000 [ 426.339918][T13296] netlink: 'syz.3.2143': attribute type 12 has an invalid length. [ 427.288060][T13309] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2148'. [ 427.293649][T13309] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2148'. [ 427.298405][T13309] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2148'. [ 430.484694][T13356] erspan0: entered promiscuous mode [ 430.491526][T13356] erspan0: entered allmulticast mode [ 430.674524][T13355] lo speed is unknown, defaulting to 1000 [ 430.894804][T13370] netlink: 'syz.1.2157': attribute type 12 has an invalid length. [ 434.525880][ T5948] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 434.530064][ T5948] Bluetooth: hci1: Injecting HCI hardware error event [ 434.536952][ T5938] Bluetooth: hci1: hardware error 0x00 [ 435.630617][T13433] lo speed is unknown, defaulting to 1000 [ 436.615820][ T5938] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 438.198404][T13450] lo speed is unknown, defaulting to 1000 [ 441.225783][ T39] usb 8-1: new high-speed USB device number 19 using dummy_hcd [ 444.125989][ T39] usb 8-1: unable to get BOS descriptor or descriptor too short [ 444.130291][ T39] usb 8-1: unable to read config index 0 descriptor/start: -71 [ 444.136067][ T39] usb 8-1: can't read configurations, error -71 [ 444.757050][ T1416] ieee802154 phy1 wpan1: encryption failed: -22 [ 445.851756][T13527] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2195'. [ 445.856896][T13527] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2195'. [ 445.860502][T13527] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2195'. [ 448.849203][T13572] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2207'. [ 448.855593][T13572] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2207'. [ 448.860695][T13572] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2207'. [ 449.754024][T13589] lo speed is unknown, defaulting to 1000 [ 455.156221][ T40] kauditd_printk_skb: 9 callbacks suppressed [ 455.156234][ T40] audit: type=1804 audit(2000000127.519:1809): pid=13654 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2226" name="/newroot/560/file0" dev="tmpfs" ino=3021 res=1 errno=0 [ 460.080741][T13700] futex_wake_op: syz.4.2237 tries to shift op by 144; fix this program [ 460.424006][ T40] audit: type=1326 audit(2000000132.779:1810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13703 comm="syz.0.2239" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f16f88 code=0x7ffc0000 [ 460.475851][ T40] audit: type=1326 audit(2000000132.779:1811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13703 comm="syz.0.2239" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f16f88 code=0x7ffc0000 [ 460.483797][ T40] audit: type=1326 audit(2000000132.779:1812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13703 comm="syz.0.2239" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f16f88 code=0x7ffc0000 [ 460.509936][ T40] audit: type=1326 audit(2000000132.779:1813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13703 comm="syz.0.2239" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f16f88 code=0x7ffc0000 [ 460.526653][ T40] audit: type=1326 audit(2000000132.779:1814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13703 comm="syz.0.2239" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f16f88 code=0x7ffc0000 [ 460.539359][ T40] audit: type=1326 audit(2000000132.779:1815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13703 comm="syz.0.2239" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f16f88 code=0x7ffc0000 [ 460.548857][ T40] audit: type=1326 audit(2000000132.779:1816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13703 comm="syz.0.2239" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f16f88 code=0x7ffc0000 [ 460.558130][ T40] audit: type=1326 audit(2000000132.779:1817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13703 comm="syz.0.2239" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f16f88 code=0x7ffc0000 [ 460.567676][ T40] audit: type=1326 audit(2000000132.779:1818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13703 comm="syz.0.2239" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f16f88 code=0x7ffc0000 [ 460.577201][ T40] audit: type=1326 audit(2000000132.779:1819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13703 comm="syz.0.2239" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f16f88 code=0x7ffc0000 [ 461.897103][T13720] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7) [ 461.899518][T13720] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 461.906024][T13720] vhci_hcd vhci_hcd.0: Device attached [ 462.171875][T13721] vhci_hcd: connection closed [ 462.186007][ T1146] vhci_hcd vhci_hcd.3: stop threads [ 462.191149][ T1146] vhci_hcd vhci_hcd.3: release socket [ 462.195486][ T1146] vhci_hcd vhci_hcd.3: disconnect device [ 462.228246][ T39] usb 44-1: enqueue for inactive port 0 [ 462.736677][ T39] usb usb44-port1: attempt power cycle [ 463.544444][ T39] usb usb44-port1: unable to enumerate USB device [ 466.221597][ T40] kauditd_printk_skb: 1824 callbacks suppressed [ 466.221616][ T40] audit: type=1800 audit(2000000138.579:3644): pid=13759 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2253" name="bus" dev="ramfs" ino=53106 res=0 errno=0 [ 467.495844][T10778] usb 8-1: new high-speed USB device number 21 using dummy_hcd [ 467.645878][T10778] usb 8-1: Using ep0 maxpacket: 32 [ 467.649480][T10778] usb 8-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 467.652860][T10778] usb 8-1: config 4 has 0 interfaces, different from the descriptor's value: 9 [ 467.658443][ T5938] Bluetooth: hci4: unexpected event for opcode 0x0c12 [ 467.658519][T10778] usb 8-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 467.663840][T10778] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 467.666891][T10778] usb 8-1: Product: syz [ 467.668363][T10778] usb 8-1: Manufacturer: syz [ 467.670114][T10778] usb 8-1: SerialNumber: syz [ 467.891363][T10778] usb 8-1: USB disconnect, device number 21 [ 468.497639][T13795] binder: 13794:13795 ioctl 4018620d 0 returned -22 [ 468.502529][T13795] binder: 13794:13795 ioctl c0306201 0 returned -14 [ 470.873659][T13797] lo speed is unknown, defaulting to 1000 [ 471.725857][ T5938] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0 [ 471.731988][ T5938] Bluetooth: hci4: Injecting HCI hardware error event [ 471.739041][ T5938] Bluetooth: hci4: hardware error 0x00 [ 473.805780][ T5938] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 474.376982][T13835] futex_wake_op: syz.0.2273 tries to shift op by 144; fix this program [ 474.914334][T13842] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7) [ 474.917167][T13842] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 474.926490][T13842] vhci_hcd vhci_hcd.0: Device attached [ 474.994739][T13845] kAFS: No cell specified [ 475.652750][T13851] vhci_hcd: connection closed [ 475.655485][ T1252] vhci_hcd vhci_hcd.3: stop threads [ 475.668018][ T1252] vhci_hcd vhci_hcd.3: release socket [ 475.673111][ T1252] vhci_hcd vhci_hcd.3: disconnect device [ 475.677102][ T39] usb 44-1: SetAddress Request (10) to port 0 [ 475.679984][ T39] usb 44-1: new SuperSpeed USB device number 10 using vhci_hcd [ 475.767006][T13864] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2279'. [ 478.190045][T13916] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 478.193180][T13916] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 478.198008][T13916] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 478.200975][T13916] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 478.203838][T13916] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 478.207711][T13916] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 478.210520][T13916] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 478.213344][T13916] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 478.218475][T13916] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 478.223071][T13916] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 479.076542][T13935] lo speed is unknown, defaulting to 1000 [ 480.457957][T13959] x_tables: duplicate underflow at hook 1 [ 480.768962][ T39] usb 44-1: device descriptor read/8, error -110 [ 481.495928][ T39] usb 44-1: SetAddress Request (11) to port 0 [ 481.498160][ T39] usb 44-1: new SuperSpeed USB device number 11 using vhci_hcd [ 484.396944][ T40] audit: type=1800 audit(2000000156.759:3645): pid=14003 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2314" name="bus" dev="ramfs" ino=54407 res=0 errno=0 [ 486.336880][T14048] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2327'. [ 486.629339][ T39] usb 44-1: device descriptor read/8, error -110 [ 486.746562][ T39] usb usb44-port1: attempt power cycle [ 486.917268][ T39] usb 44-1: SetAddress Request (12) to port 0 [ 486.932272][ T39] usb 44-1: new SuperSpeed USB device number 12 using vhci_hcd [ 488.416564][ T40] audit: type=1800 audit(2000000160.769:3646): pid=14056 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2329" name="bus" dev="ramfs" ino=54445 res=0 errno=0 [ 491.583344][T14089] x_tables: duplicate underflow at hook 1 [ 492.062943][ T39] usb 44-1: device descriptor read/8, error -110 [ 492.686925][ T39] usb 44-1: SetAddress Request (13) to port 0 [ 492.695847][ T39] usb 44-1: new SuperSpeed USB device number 13 using vhci_hcd [ 492.734185][T14093] vhci_hcd vhci_hcd.0: port 0 already used [ 492.740442][T14093] random: crng reseeded on system resumption [ 493.906295][T14118] lo speed is unknown, defaulting to 1000 [ 496.071125][T14130] lo speed is unknown, defaulting to 1000 [ 496.286328][T14132] vcan0: tx drop: invalid da for name 0x0000000000000001 [ 497.432598][ T5938] Bluetooth: hci0: unexpected event for opcode 0x0c03 [ 497.438744][ T5938] Bluetooth: hci0: unexpected event for opcode 0x1003 [ 497.530365][T14142] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2346'. [ 497.735873][ T39] usb 44-1: device descriptor read/8, error -110 [ 497.928540][ T39] usb usb44-port1: unable to enumerate USB device [ 498.092094][ T40] audit: type=1326 audit(2000000170.449:3647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14161 comm="syz.0.2354" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 498.108379][ T40] audit: type=1326 audit(2000000170.449:3648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14161 comm="syz.0.2354" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 498.118007][ T40] audit: type=1326 audit(2000000170.459:3649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14161 comm="syz.0.2354" exe="/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 498.127512][ T40] audit: type=1326 audit(2000000170.459:3650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14161 comm="syz.0.2354" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 498.136815][ T40] audit: type=1326 audit(2000000170.459:3651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14161 comm="syz.0.2354" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 498.146387][ T40] audit: type=1326 audit(2000000170.459:3652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14161 comm="syz.0.2354" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7115cab code=0x7ffc0000 [ 498.155510][ T40] audit: type=1326 audit(2000000170.459:3653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14161 comm="syz.0.2354" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7115cab code=0x7ffc0000 [ 498.164898][ T40] audit: type=1326 audit(2000000170.459:3654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14161 comm="syz.0.2354" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 498.171925][T14162] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2354'. [ 498.185814][ T40] audit: type=1326 audit(2000000170.459:3655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14161 comm="syz.0.2354" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 498.198240][ T40] audit: type=1326 audit(2000000170.459:3656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14161 comm="syz.0.2354" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 498.722425][T14170] mac80211_hwsim hwsim5 syzkaller0: left promiscuous mode [ 498.728022][T14170] mac80211_hwsim hwsim5 syzkaller0: left allmulticast mode [ 499.423311][T14159] lo speed is unknown, defaulting to 1000 [ 501.010868][T14187] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2361'. [ 501.485870][ T5938] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 501.489908][ T5938] Bluetooth: hci0: Injecting HCI hardware error event [ 501.495015][ T5938] Bluetooth: hci0: hardware error 0x00 [ 501.988982][T14217] netlink: 'syz.1.2368': attribute type 1 has an invalid length. [ 502.030662][T14217] 8021q: adding VLAN 0 to HW filter on device bond20 [ 502.034790][T14217] bond19: (slave bond20): making interface the new active one [ 502.038648][T14217] bond19: (slave bond20): Enslaving as an active interface with an up link [ 502.060320][T14217] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2368'. [ 502.064610][T14217] bond19: entered promiscuous mode [ 502.067329][T14217] bond20: entered promiscuous mode [ 502.070174][T14217] 8021q: adding VLAN 0 to HW filter on device bond19 [ 503.565994][ T5938] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 503.705253][T14243] kAFS: No cell specified [ 503.927602][T14234] bond0: entered promiscuous mode [ 503.930420][T14234] bond0: left promiscuous mode [ 505.740310][T14287] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2387'. [ 505.747120][T14287] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported [ 505.789033][T14281] syz.4.2377: page allocation failure: order:0, mode:0x340cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_THISNODE), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 505.794017][T14281] CPU: 1 UID: 0 PID: 14281 Comm: syz.4.2377 Tainted: G L syzkaller #0 PREEMPT(full) [ 505.794034][T14281] Tainted: [L]=SOFTLOCKUP [ 505.794038][T14281] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 505.794045][T14281] Call Trace: [ 505.794051][T14281] [ 505.794056][T14281] dump_stack_lvl+0x100/0x190 [ 505.794081][T14281] warn_alloc.cold+0x95/0x1c1 [ 505.794102][T14281] ? __pfx_warn_alloc+0x10/0x10 [ 505.794119][T14281] ? __mutex_unlock_slowpath+0x15c/0x790 [ 505.794137][T14281] ? __alloc_frozen_pages_noprof+0xd68/0x2ba0 [ 505.794160][T14281] __alloc_frozen_pages_noprof+0xf36/0x2ba0 [ 505.794183][T14281] ? __lock_acquire+0x4a5/0x2630 [ 505.794202][T14281] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 505.794223][T14281] ? lock_acquire+0x1cf/0x380 [ 505.794245][T14281] __folio_alloc_noprof+0x13/0x2f0 [ 505.794262][T14281] alloc_migration_target+0x1d7/0x6d0 [ 505.794277][T14281] migrate_pages_batch+0x4f2/0x4530 [ 505.794291][T14281] ? __pfx_alloc_migration_target+0x10/0x10 [ 505.794307][T14281] ? __page_table_check_ptes_set+0x1b5/0x4e0 [ 505.794322][T14281] ? __pfx_migrate_pages_batch+0x10/0x10 [ 505.794338][T14281] ? set_ptes+0x14c/0x1d0 [ 505.794353][T14281] ? find_held_lock+0x2b/0x80 [ 505.794366][T14281] ? lock_acquire+0x1cf/0x380 [ 505.794381][T14281] migrate_pages_sync+0x12c/0x880 [ 505.794395][T14281] ? __pfx_alloc_migration_target+0x10/0x10 [ 505.794411][T14281] ? lock_acquire+0x1cf/0x380 [ 505.794424][T14281] ? __pfx_migrate_pages_sync+0x10/0x10 [ 505.794438][T14281] ? finish_task_switch.isra.0+0x200/0xb80 [ 505.794456][T14281] migrate_pages+0x1aae/0x28a0 [ 505.794471][T14281] ? __pfx_alloc_migration_target+0x10/0x10 [ 505.794487][T14281] ? __pfx_migrate_pages+0x10/0x10 [ 505.794503][T14281] ? __lock_acquire+0x4a5/0x2630 [ 505.794518][T14281] ? mtree_load+0x32d/0xa40 [ 505.794532][T14281] move_pages_and_store_status+0xf1/0x230 [ 505.794547][T14281] ? __pfx_move_pages_and_store_status+0x10/0x10 [ 505.794567][T14281] kernel_move_pages+0xc47/0x13f0 [ 505.794585][T14281] ? __pfx_kernel_move_pages+0x10/0x10 [ 505.794598][T14281] ? __fget_files+0x21f/0x3d0 [ 505.794612][T14281] ? xfd_validate_state+0x129/0x190 [ 505.794632][T14281] __ia32_sys_move_pages+0xdd/0x1b0 [ 505.794646][T14281] ? __do_fast_syscall_32+0x94/0x8c0 [ 505.794659][T14281] ? lockdep_hardirqs_on+0x78/0x100 [ 505.794670][T14281] __do_fast_syscall_32+0xe3/0x8c0 [ 505.794684][T14281] do_fast_syscall_32+0x32/0x70 [ 505.794696][T14281] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 505.794710][T14281] RIP: 0023:0xf702ef6c [ 505.794720][T14281] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8 [ 505.794730][T14281] RSP: 002b:00000000f541d50c EFLAGS: 00000292 ORIG_RAX: 000000000000013d [ 505.794741][T14281] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000002064 [ 505.794748][T14281] RDX: 0000000080000040 RSI: 0000000080001180 RDI: 0000000080000000 [ 505.794754][T14281] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 505.794760][T14281] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 505.794767][T14281] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 505.794780][T14281] [ 505.794783][T14281] Mem-Info: [ 505.981620][T14286] x_tables: duplicate underflow at hook 1 [ 505.993530][T14281] active_anon:8414 inactive_anon:2164 isolated_anon:0 [ 505.993530][T14281] active_file:8663 inactive_file:14454 isolated_file:0 [ 505.993530][T14281] unevictable:1768 dirty:45 writeback:0 [ 505.993530][T14281] slab_reclaimable:8401 slab_unreclaimable:70998 [ 505.993530][T14281] mapped:33889 shmem:5263 pagetables:1416 [ 505.993530][T14281] sec_pagetables:307 bounce:0 [ 505.993530][T14281] kernel_misc_reclaimable:0 [ 505.993530][T14281] free:41385 free_pcp:13232 free_cma:0 [ 506.022825][T14281] Node 0 active_anon:20kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:36kB dirty:0kB writeback:0kB shmem:3556kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8000kB pagetables:2028kB sec_pagetables:1108kB all_unreclaimable? yes Balloon:0kB [ 506.039261][T14281] Node 1 active_anon:33736kB inactive_anon:8656kB active_file:34652kB inactive_file:57684kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:135520kB dirty:280kB writeback:0kB shmem:17496kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:4096kB kernel_stack:7568kB pagetables:3636kB sec_pagetables:120kB all_unreclaimable? no Balloon:0kB [ 506.056907][T14281] Node 0 DMA free:2616kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 506.070154][T14281] lowmem_reserve[]: 0 285 285 285 285 [ 506.073032][T14281] Node 0 DMA32 free:28828kB boost:22528kB min:35596kB low:38860kB high:42124kB reserved_highatomic:0KB free_highatomic:0KB active_anon:20kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:3536kB writepending:0kB zspages:0kB present:1032196kB managed:292452kB mlocked:0kB bounce:0kB free_pcp:3228kB local_pcp:936kB free_cma:0kB [ 506.087459][T14281] lowmem_reserve[]: 0 0 0 0 0 [ 506.090049][T14281] Node 1 DMA32 free:134096kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:33736kB inactive_anon:8656kB active_file:34652kB inactive_file:57684kB unevictable:3536kB writepending:280kB zspages:2376kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:50080kB local_pcp:7936kB free_cma:0kB [ 506.105272][T14281] lowmem_reserve[]: 0 0 0 0 0 [ 506.108003][T14281] Node 0 DMA: 68*4kB (U) 11*8kB (U) 5*16kB (U) 8*32kB (U) 8*64kB (U) 3*128kB (U) 2*256kB (U) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 2616kB [ 506.115191][T14281] Node 0 DMA32: 628*4kB (UME) 259*8kB (UME) 137*16kB (UME) 179*32kB (UME) 42*64kB (UME) 17*128kB (UME) 13*256kB (UME) 8*512kB (UM) 2*1024kB (M) 1*2048kB (U) 0*4096kB = 28888kB [ 506.123233][T14281] Node 1 DMA32: 2856*4kB (UME) 2811*8kB (UME) 1770*16kB (UME) 260*32kB (ME) 181*64kB (ME) 125*128kB (UME) 52*256kB (UM) 22*512kB (UM) 7*1024kB (M) 2*2048kB (U) 0*4096kB = 133976kB [ 506.132425][T14281] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 506.137722][T14281] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 506.143508][T14281] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 506.150005][T14281] Node 1 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 506.156684][T14281] 28979 total pagecache pages [ 506.163682][T14281] 603 pages in swap cache [ 506.167470][T14281] Free swap = 117760kB [ 506.170127][T14281] Total swap = 124996kB [ 506.172241][T14281] 524155 pages RAM [ 506.174921][T14281] 0 pages HighMem/MovableOnly [ 506.178326][T14281] 210149 pages reserved [ 506.185238][T14281] 0 pages cma reserved [ 506.196603][ T1416] ieee802154 phy1 wpan1: encryption failed: -22 [ 506.981081][T14303] lo: Caught tx_queue_len zero misconfig [ 507.073070][T14308] netlink: 'syz.0.2384': attribute type 10 has an invalid length. [ 507.076614][T14308] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2384'. [ 507.866988][ T40] kauditd_printk_skb: 36 callbacks suppressed [ 507.867004][ T40] audit: type=1326 audit(2000000180.199:3693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14322 comm="syz.0.2395" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 507.896025][ T40] audit: type=1326 audit(2000000180.229:3694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14322 comm="syz.0.2395" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 507.904741][ T40] audit: type=1326 audit(2000000180.229:3695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14322 comm="syz.0.2395" exe="/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 507.915946][ T40] audit: type=1326 audit(2000000180.229:3696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14322 comm="syz.0.2395" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 507.923174][ T40] audit: type=1326 audit(2000000180.229:3697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14322 comm="syz.0.2395" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 507.930825][ T40] audit: type=1326 audit(2000000180.229:3698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14322 comm="syz.0.2395" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7115cab code=0x7ffc0000 [ 507.939305][ T40] audit: type=1326 audit(2000000180.229:3699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14322 comm="syz.0.2395" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7115cab code=0x7ffc0000 [ 507.948823][ T40] audit: type=1326 audit(2000000180.229:3700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14322 comm="syz.0.2395" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 507.957631][ T40] audit: type=1326 audit(2000000180.229:3701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14322 comm="syz.0.2395" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 507.966185][ T40] audit: type=1326 audit(2000000180.229:3702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14322 comm="syz.0.2395" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 507.978363][T14327] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2395'. [ 510.264736][T14372] erspan0: left allmulticast mode [ 510.266651][T14372] erspan0: left promiscuous mode [ 510.269068][T14372] bridge7: port 1(erspan0) entered disabled state [ 510.448119][T14372] bond8: (slave dummy0): Releasing active interface [ 510.467985][T14372] bridge_slave_1: left allmulticast mode [ 510.475345][T14372] bridge_slave_1: left promiscuous mode [ 510.477764][T14372] bridge0: port 2(bridge_slave_1) entered disabled state [ 510.498785][T14372] bond0: (slave bond_slave_0): Releasing backup interface [ 510.507184][T14372] bond0: (slave bond_slave_1): Releasing backup interface [ 510.514162][T14372] team0: Port device team_slave_0 removed [ 510.517550][T14372] team0: Port device team_slave_1 removed [ 510.519714][T14372] net_ratelimit: 1014 callbacks suppressed [ 510.519724][T14372] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 510.662974][T14382] binder: 14375:14382 ioctl c0046209 0 returned -22 [ 511.875823][T14392] binder: 14389:14392 ioctl c0285840 80000500 returned -22 [ 513.839899][T14416] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma? [ 515.221571][T14417] lo speed is unknown, defaulting to 1000 [ 519.020672][T14454] overlayfs: failed to clone upperpath [ 519.633004][T14457] kAFS: No cell specified [ 524.173331][T14512] binder: 14510:14512 ioctl c0285840 80000500 returned -22 [ 529.310598][T14579] netlink: 76 bytes leftover after parsing attributes in process `syz.4.2448'. [ 530.460752][T14595] x_tables: duplicate underflow at hook 1 [ 532.493451][T14607] lo speed is unknown, defaulting to 1000 [ 533.103001][T14614] vhci_hcd vhci_hcd.0: port 0 already used [ 533.124541][T14614] random: crng reseeded on system resumption [ 536.234838][T14639] input: syz0 as /devices/virtual/input/input8 [ 536.257879][ T40] kauditd_printk_skb: 25 callbacks suppressed [ 536.257896][ T40] audit: type=1326 audit(2000000208.619:3728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14641 comm="syz.0.2462" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 536.273839][ T40] audit: type=1326 audit(2000000208.629:3729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14641 comm="syz.0.2462" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 536.282941][ T40] audit: type=1326 audit(2000000208.639:3730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14641 comm="syz.0.2462" exe="/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 536.291614][ T40] audit: type=1326 audit(2000000208.639:3731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14641 comm="syz.0.2462" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 536.302032][ T40] audit: type=1326 audit(2000000208.639:3732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14641 comm="syz.0.2462" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 536.312276][ T40] audit: type=1326 audit(2000000208.649:3733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14641 comm="syz.0.2462" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7115cab code=0x7ffc0000 [ 536.321077][ T40] audit: type=1326 audit(2000000208.649:3734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14641 comm="syz.0.2462" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7115cab code=0x7ffc0000 [ 536.396488][ T40] audit: type=1326 audit(2000000208.649:3735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14641 comm="syz.0.2462" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 536.404273][ T40] audit: type=1326 audit(2000000208.649:3736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14641 comm="syz.0.2462" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 536.426040][ T40] audit: type=1326 audit(2000000208.659:3737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14641 comm="syz.0.2462" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 536.469163][T14648] kAFS: No cell specified [ 536.562368][T14649] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2462'. [ 537.011106][T14661] x_tables: duplicate underflow at hook 1 [ 537.331976][T14663] 9p: Bad value for 'wfdno' [ 543.090263][T14728] x_tables: duplicate underflow at hook 1 [ 544.726260][T14742] overlayfs: failed to clone upperpath [ 547.419939][T14762] lo speed is unknown, defaulting to 1000 [ 548.511113][T14770] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2490'. [ 548.517396][T14770] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2490'. [ 549.023610][T14770] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2490'. [ 549.036268][T14770] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2490'. [ 549.039880][T14770] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2490'. [ 549.043442][T14770] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2490'. [ 549.047326][T14770] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2490'. [ 549.051454][T14770] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2490'. [ 549.159456][T14770] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2490'. [ 549.167990][T14770] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2490'. [ 549.176899][T14774] lo speed is unknown, defaulting to 1000 [ 553.773800][T14835] overlayfs: failed to clone upperpath [ 553.855905][ T40] kauditd_printk_skb: 32 callbacks suppressed [ 553.855920][ T40] audit: type=1804 audit(2000000226.209:3770): pid=14835 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2506" name="bus" dev="tmpfs" ino=2531 res=1 errno=0 [ 554.913907][T14844] syz.4.2508 invoked oom-killer: gfp_mask=0xdc0(GFP_KERNEL|__GFP_ZERO), order=0, oom_score_adj=0 [ 554.919048][T14844] CPU: 2 UID: 0 PID: 14844 Comm: syz.4.2508 Tainted: G L syzkaller #0 PREEMPT(full) [ 554.919092][T14844] Tainted: [L]=SOFTLOCKUP [ 554.919097][T14844] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 554.919105][T14844] Call Trace: [ 554.919110][T14844] [ 554.919116][T14844] dump_stack_lvl+0x100/0x190 [ 554.919140][T14844] dump_header+0xfb/0x606 [ 554.919154][T14844] oom_kill_process.cold+0xd/0x330 [ 554.919169][T14844] out_of_memory+0x1256/0x14f0 [ 554.919193][T14844] ? __pfx_out_of_memory+0x10/0x10 [ 554.919216][T14844] __alloc_frozen_pages_noprof+0x233d/0x2ba0 [ 554.919241][T14844] ? is_bpf_text_address+0x8a/0x1a0 [ 554.919260][T14844] ? is_bpf_text_address+0x8a/0x1a0 [ 554.919277][T14844] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 554.919295][T14844] ? kasan_save_stack+0x3f/0x50 [ 554.919306][T14844] ? kasan_save_track+0x14/0x30 [ 554.919317][T14844] ? kmem_cache_alloc_node_noprof+0x25a/0x6f0 [ 554.919335][T14844] ? __get_vm_area_node+0x1ca/0x330 [ 554.919348][T14844] ? __vmalloc_node_range_noprof+0x213/0x1530 [ 554.919362][T14844] ? __vmalloc_node_noprof+0xad/0xf0 [ 554.919376][T14844] ? packet_setsockopt+0x11c4/0x2380 [ 554.919394][T14844] ? do_sock_setsockopt+0xf3/0x1d0 [ 554.919408][T14844] ? __sys_setsockopt+0x119/0x190 [ 554.919432][T14844] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 554.919444][T14844] ? cpuset_nodemask_valid_mems_allowed+0x5f/0x80 [ 554.919462][T14844] ? policy_nodemask+0xed/0x4f0 [ 554.919476][T14844] alloc_pages_mpol+0x1fb/0x550 [ 554.919489][T14844] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 554.919506][T14844] alloc_pages_noprof+0x136/0x390 [ 554.919519][T14844] get_free_pages_noprof+0x10/0xb0 [ 554.919532][T14844] __kasan_populate_vmalloc+0xa0/0x210 [ 554.919555][T14844] alloc_vmap_area+0x95d/0x2bd0 [ 554.919574][T14844] ? __pfx_alloc_vmap_area+0x10/0x10 [ 554.919591][T14844] __get_vm_area_node+0x1ca/0x330 [ 554.919608][T14844] __vmalloc_node_range_noprof+0x213/0x1530 [ 554.919623][T14844] ? packet_set_ring+0xb14/0x1860 [ 554.919641][T14844] ? packet_set_ring+0xb14/0x1860 [ 554.919659][T14844] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 554.919671][T14844] ? policy_nodemask+0xed/0x4f0 [ 554.919683][T14844] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 554.919700][T14844] ? alloc_pages_mpol+0x25a/0x550 [ 554.919713][T14844] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 554.919726][T14844] ? trace_kmalloc+0x101/0x130 [ 554.919739][T14844] ? packet_set_ring+0xb14/0x1860 [ 554.919752][T14844] __vmalloc_node_noprof+0xad/0xf0 [ 554.919767][T14844] ? packet_set_ring+0xb14/0x1860 [ 554.919782][T14844] packet_set_ring+0xb14/0x1860 [ 554.919803][T14844] packet_setsockopt+0x11c4/0x2380 [ 554.919818][T14844] ? __lock_acquire+0x4a5/0x2630 [ 554.919835][T14844] ? __pfx_packet_setsockopt+0x10/0x10 [ 554.919850][T14844] ? aa_sk_perm+0x309/0xaa0 [ 554.919871][T14844] ? find_held_lock+0x2b/0x80 [ 554.919884][T14844] ? aa_sock_opt_perm+0xfe/0x1b0 [ 554.919911][T14844] ? __pfx_packet_setsockopt+0x10/0x10 [ 554.919929][T14844] do_sock_setsockopt+0xf3/0x1d0 [ 554.919947][T14844] __sys_setsockopt+0x119/0x190 [ 554.919969][T14844] __ia32_sys_setsockopt+0xbc/0x160 [ 554.919987][T14844] ? __do_fast_syscall_32+0x94/0x8c0 [ 554.920004][T14844] ? lockdep_hardirqs_on+0x78/0x100 [ 554.920016][T14844] __do_fast_syscall_32+0xe3/0x8c0 [ 554.920031][T14844] do_fast_syscall_32+0x32/0x70 [ 554.920044][T14844] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 554.920060][T14844] RIP: 0023:0xf702ef6c [ 554.920071][T14844] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8 [ 554.920081][T14844] RSP: 002b:00000000f53fc50c EFLAGS: 00000292 ORIG_RAX: 000000000000016e [ 554.920093][T14844] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000000107 [ 554.920100][T14844] RDX: 0000000000000005 RSI: 00000000800000c0 RDI: 000000000000001c [ 554.920107][T14844] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 554.920113][T14844] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 554.920121][T14844] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 554.920137][T14844] [ 554.920256][T14844] Mem-Info: [ 555.070373][T14844] active_anon:11845 inactive_anon:926 isolated_anon:0 [ 555.070373][T14844] active_file:9767 inactive_file:14435 isolated_file:0 [ 555.070373][T14844] unevictable:1768 dirty:25 writeback:0 [ 555.070373][T14844] slab_reclaimable:8407 slab_unreclaimable:72216 [ 555.070373][T14844] mapped:34724 shmem:8135 pagetables:1477 [ 555.070373][T14844] sec_pagetables:309 bounce:0 [ 555.070373][T14844] kernel_misc_reclaimable:0 [ 555.070373][T14844] free:49608 free_pcp:1108 free_cma:0 [ 555.088871][T14844] Node 0 active_anon:0kB inactive_anon:0kB active_file:76kB inactive_file:56kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:16kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:7936kB pagetables:2012kB sec_pagetables:1108kB all_unreclaimable? yes Balloon:0kB [ 555.101944][T14844] Node 0 DMA free:2616kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:124kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:28kB local_pcp:0kB free_cma:0kB [ 555.115819][T14844] lowmem_reserve[]: 0 285 285 285 285 [ 555.118508][T14844] Node 0 DMA32 free:27992kB boost:22528kB min:35596kB low:38860kB high:42124kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:3536kB writepending:0kB zspages:0kB present:1032196kB managed:292452kB mlocked:0kB bounce:0kB free_pcp:4404kB local_pcp:96kB free_cma:0kB [ 555.132696][T14844] lowmem_reserve[]: 0 0 0 0 0 [ 555.135108][T14844] Node 0 DMA: 68*4kB (U) 11*8kB (U) 5*16kB (U) 8*32kB (U) 8*64kB (U) 3*128kB (U) 2*256kB (U) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 2616kB [ 555.183161][T14844] Node 0 DMA32: 628*4kB (UME) 259*8kB (UME) 137*16kB (UME) 179*32kB (UME) 42*64kB (UME) 14*128kB (UME) 11*256kB (UME) 8*512kB (UM) 2*1024kB (M) 1*2048kB (U) 0*4096kB = 27992kB [ 555.223958][T14844] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 555.238191][T14844] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 555.241341][T14844] 33006 total pagecache pages [ 555.242848][T14844] 698 pages in swap cache [ 555.255966][T14844] Free swap = 113020kB [ 555.257448][T14844] Total swap = 124996kB [ 555.258794][T14844] 524155 pages RAM [ 555.260326][T14844] 0 pages HighMem/MovableOnly [ 555.262264][T14844] 210149 pages reserved [ 555.263658][T14844] 0 pages cma reserved [ 555.265518][T14844] Unreclaimable slab info: [ 555.267520][T14844] Name Used Total [ 555.269995][T14844] pid_3 36KB 63KB [ 555.272372][T14844] pid_2 71KB 110KB [ 555.274631][T14844] bio-464 17KB 31KB [ 555.277227][T14844] bio-528 19KB 31KB [ 555.279477][T14844] bio-544 19KB 31KB [ 555.282184][T14844] bio-560 19KB 31KB [ 555.284722][T14844] afs_inode_cache 28KB 30KB [ 555.287973][T14844] zswap_entry 213KB 237KB [ 555.290299][T14844] AF_VSOCK 50KB 153KB [ 555.293095][T14844] sw_flow_stats 15KB 20KB [ 555.298128][T14844] sw_flow 43KB 61KB [ 555.300456][T14844] batadv_tt_change_cache 11KB 16KB [ 555.303017][T14844] batadv_tl_cache 26KB 32KB [ 555.305852][T14844] ceph_osd_request 5KB 63KB [ 555.308259][T14844] ceph_msg 2KB 30KB [ 555.310603][T14844] IEEE-802.15.4-MAC 34KB 62KB [ 555.312938][T14844] IEEE-802.15.4-RAW 33KB 63KB [ 555.315281][T14844] p9_req_t 20KB 31KB [ 555.318189][T14844] SMC6 87KB 187KB [ 555.321189][T14844] SMC 87KB 218KB [ 555.324154][T14844] TIPC 47KB 184KB [ 555.326924][T14844] rds_tcp_connection 21KB 31KB [ 555.329542][T14844] RDS 49KB 123KB [ 555.332777][T14844] rds_connection 8KB 15KB [ 555.336796][T14844] SCTPv6 55KB 150KB [ 555.339459][T14844] SCTP 32KB 183KB [ 555.342021][T14844] sctp_chunk 11KB 39KB [ 555.373556][T14844] sctp_bind_bucket 9KB 16KB [ 555.378484][T14844] PNPIPE 29KB 61KB [ 555.381230][T14844] PHONET 64KB 126KB [ 555.383591][T14844] L2TP/IPv6 78KB 127KB [ 555.387152][T14844] L2TP/IP 45KB 94KB [ 555.389908][T14844] KCM 85KB 124KB [ 555.392908][T14844] kcm_mux 74KB 126KB [ 555.413411][T14844] RXRPC 70KB 96KB [ 555.423650][T14844] rxrpc_call_jar 146KB 286KB [ 555.426328][T14844] can_gw 7KB 8KB [ 555.428882][T14844] can_receiver 18KB 27KB [ 555.433819][T14844] net_bridge_fdb_entry 36KB 47KB [ 555.443990][T14844] MPTCPv6 82KB 191KB [ 555.446710][T14844] fib6_node 29KB 76KB [ 555.449790][T14844] ip6_dst_cache 35KB 187KB [ 555.452545][T14844] mfc6_cache 7KB 8KB [ 555.455400][T14844] PINGv6 45KB 61KB [ 555.458896][T14844] RAWv6 148KB 247KB [ 555.461897][T14844] UDPLITEv6 58KB 126KB [ 555.464007][T14844] UDPv6 60KB 189KB [ 555.466288][T14844] tw_sock_TCPv6 19KB 31KB [ 555.468375][T14844] TCPv6 228KB 357KB [ 555.479353][T14844] nf_conntrack 21KB 47KB [ 555.481442][T14844] fq_flow_cache 31KB 35KB [ 555.483492][T14844] wg_peer 99KB 118KB [ 555.485549][T14844] allowedips_node 21KB 31KB [ 555.487820][T14844] t10_alua_lu_gp_cache 8KB 15KB [ 555.490719][T14844] scsi_sense_cache 60KB 60KB [ 555.493516][T14844] virtio_scsi_cmd 21KB 24KB [ 555.495561][T14844] bio-136 56KB 76KB [ 555.497629][T14844] io_kiocb 0KB 62KB [ 555.499836][T14844] bio-264 10KB 15KB [ 555.501924][T14844] mqueue_inode_cache 67KB 182KB [ 555.503950][T14844] f2fs_bio_post_read_ctx 30KB 31KB [ 555.506612][T14844] jfs_mp 14KB 15KB [ 555.509014][T14844] fuse_request 23KB 63KB [ 555.511089][T14844] cifs_small_rq 28KB 32KB [ 555.513228][T14844] cifs_request 67KB 67KB [ 555.515459][T14844] cifs_mpx_ids 8KB 15KB [ 555.517512][T14844] cifs_io_subrequest 42KB 47KB [ 555.519601][T14844] cifs_io_request 105KB 111KB [ 555.521727][T14844] nfs_commit_data 24KB 31KB [ 555.524017][T14844] nfs_write_data 38KB 63KB [ 555.526567][T14844] jbd2_inode 22KB 23KB [ 555.528824][T14844] ext4_system_zone 1KB 3KB [ 555.531066][T14844] ext4_io_end_vec 8KB 19KB [ 555.533284][T14844] kioctx 35KB 159KB [ 555.535502][T14844] aio_kiocb 27KB 54KB [ 555.537608][T14844] userfaultfd_ctx_cache 18KB 110KB [ 555.539965][T14844] fanotify_mark 44KB 46KB [ 555.542421][T14844] dnotify_mark 22KB 23KB [ 555.544813][T14844] dnotify_struct 5KB 7KB [ 555.555773][T14844] fasync_cache 30KB 43KB [ 555.557752][T14844] zspage 83KB 94KB [ 555.565941][T14844] zs_handle 78KB 80KB [ 555.584037][ T40] audit: type=1326 audit(2000000227.939:3771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14848 comm="syz.3.2511" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 555.591988][T14844] pid_namespace 43KB 108KB [ 555.596994][ T40] audit: type=1326 audit(2000000227.959:3772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14848 comm="syz.3.2511" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 555.605439][ T40] audit: type=1326 audit(2000000227.959:3773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14848 comm="syz.3.2511" exe="/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 555.613164][ T40] audit: type=1326 audit(2000000227.959:3774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14848 comm="syz.3.2511" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 555.620091][T14844] kvm_gmem_inode_cache 44KB 63KB [ 555.620116][T14844] kvm_async_pf 13KB 15KB [ 555.620131][T14844] kvm_vcpu 20KB 250KB [ 555.620144][T14844] kvm_mmu_page_header 9KB 34KB [ 555.620159][T14844] pte_list_desc 18KB 39KB [ 555.622332][ T40] audit: type=1326 audit(2000000227.959:3775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14848 comm="syz.3.2511" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 555.635769][T14844] x86_emulator 17KB 126KB [ 555.643778][T14844] rpc_buffers 25KB 31KB [ 555.645837][ T40] audit: type=1326 audit(2000000227.959:3776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14848 comm="syz.3.2511" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7155cab code=0x7ffc0000 [ 555.645880][ T40] audit: type=1326 audit(2000000227.959:3777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14848 comm="syz.3.2511" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7155cab code=0x7ffc0000 [ 555.645913][ T40] audit: type=1326 audit(2000000227.959:3778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14848 comm="syz.3.2511" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 555.645948][ T40] audit: type=1326 audit(2000000227.959:3779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14848 comm="syz.3.2511" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 555.654372][T14844] rpc_tasks 8KB 15KB [ 555.676553][T14849] bridge0: entered allmulticast mode [ 555.683500][T14844] UNIX-STREAM 102KB 275KB [ 555.685995][T14844] UNIX 236KB 398KB [ 555.688607][T14844] ip4-frags 9KB 15KB [ 555.691595][T14844] mfc_cache 13KB 16KB [ 555.693901][T14844] UDP-Lite 72KB 127KB [ 555.696844][T14844] MPTCP 76KB 214KB [ 555.699442][T14844] request_sock_subflow_v4 38KB 45KB [ 555.702398][T14844] tcp_bind2_bucket 19KB 36KB [ 555.705560][T14844] tcp_bind_bucket 23KB 36KB [ 555.708658][T14844] inet_peer 14KB 16KB [ 555.711322][T14844] xfrm_dst 23KB 47KB [ 555.714283][T14844] xfrm_state 189KB 318KB [ 555.717022][T14844] ip_fib_trie 21KB 32KB [ 555.720062][T14844] ip_fib_alias 45KB 79KB [ 555.723059][T14844] rtable 548KB 556KB [ 555.726248][T14844] PING 47KB 126KB [ 555.728346][T14844] RAW 110KB 223KB [ 555.730294][T14844] UDP 65KB 191KB [ 555.732303][T14844] tw_sock_TCP 19KB 23KB [ 555.734736][T14844] request_sock_TCP 20KB 23KB [ 555.737074][T14844] TCP 347KB 478KB [ 555.740242][T14853] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2511'. [ 555.740593][T14844] hugetlbfs_inode_cache 41KB 93KB [ 555.746536][T14844] fscache_cookie_jar 35KB 54KB [ 555.748930][T14844] netfs_subrequest 49KB 62KB [ 555.755626][T14848] bridge0: left allmulticast mode [ 555.766447][T14844] netfs_request 143KB 175KB [ 555.768677][T14844] bio-280 21KB 23KB [ 555.770964][T14844] backing_aio 6KB 8KB [ 555.773113][T14844] ep_head 3KB 24KB [ 555.775093][T14844] eventpoll_pwq 13KB 31KB [ 555.777134][T14844] eventpoll_epi 57KB 63KB [ 555.779092][T14844] inotify_inode_mark 34KB 46KB [ 555.781081][T14844] sgpool-128 25KB 178KB [ 555.783624][T14844] sgpool-64 46KB 159KB [ 555.790150][T14844] sgpool-32 13KB 94KB [ 555.792133][T14844] sgpool-16 49KB 109KB [ 555.794162][T14844] sgpool-8 20KB 39KB [ 555.796241][T14844] bio_crypt_ctx 9KB 11KB [ 555.798991][T14844] bio_integrity_data 7KB 8KB [ 555.801867][T14844] request_queue 219KB 247KB [ 555.804619][T14844] blkdev_ioc 21KB 55KB [ 555.808510][T14844] bio-200 95KB 117KB [ 555.810827][T14844] biovec-max 964KB 1011KB [ 555.813183][T14844] biovec-128 48KB 95KB [ 555.815057][T14844] biovec-64 33KB 189KB [ 555.817229][T14844] biovec-16 14KB 46KB [ 555.820657][T14844] mm_slot 9KB 15KB [ 555.822626][T14844] ksm_mm_slot 14KB 16KB [ 555.824733][T14844] ksm_stable_node 10KB 15KB [ 555.827123][T14844] ksm_rmap_item 8KB 23KB [ 555.829353][T14844] user_namespace 13KB 30KB [ 555.895904][T14844] uid_cache 31KB 54KB [ 555.897820][T14844] iommu_iova_magazine 997KB 1134KB [ 555.899915][T14844] iommu_iova 185KB 188KB [ 555.901848][T14844] dmaengine-unmap-256 26KB 30KB [ 555.903631][T14844] dmaengine-unmap-128 14KB 30KB [ 555.905459][T14844] dmaengine-unmap-16 7KB 8KB [ 555.909667][T14844] dmaengine-unmap-2 3KB 4KB [ 555.911391][T14844] QIPCRTR 59KB 125KB [ 555.915038][T14844] audit_buffer 39KB 42KB [ 555.917931][T14844] skbuff_ext_cache 16KB 28KB [ 555.920422][T14844] skbuff_small_head 3120KB 3164KB [ 555.923176][T14844] skbuff_fclone_cache 163KB 218KB [ 555.926007][T14844] skbuff_head_cache 1878KB 1906KB [ 555.928209][T14844] configfs_dir_cache 29KB 32KB [ 555.930521][T14844] file_lease_cache 18KB 87KB [ 555.932779][T14844] file_lock_cache 13KB 87KB [ 555.945826][T14844] file_lock_ctx 31KB 43KB [ 555.948268][T14844] fsnotify_inode_mark_connector 26KB 43KB [ 555.950931][T14844] fsnotify_mark_connector 13KB 15KB [ 555.953499][T14844] posix_timers_cache 25KB 48KB [ 555.955912][T14844] taskstats 61KB 143KB [ 555.958925][T14844] mem_cgroup_per_node 119KB 247KB [ 555.961518][T14844] mem_cgroup 152KB 208KB [ 555.964287][T14844] proc_dir_entry 776KB 835KB [ 555.967156][T14844] pde_opener 7KB 15KB [ 555.969065][T14844] seq_file 21KB 62KB [ 555.970827][T14844] sigqueue 13KB 31KB [ 555.972669][T14844] shmem_inode_cache 7974KB 8111KB [ 555.974424][T14844] kernfs_iattrs_cache 46KB 46KB [ 555.976629][T14844] kernfs_node_cache 42297KB 42433KB [ 555.979311][T14844] mnt_cache 55KB 110KB [ 555.981594][T14844] bfilp 42KB 63KB [ 555.983639][T14844] filp 377KB 559KB [ 555.985706][T14844] names_cache 235KB 244KB [ 555.987608][T14844] net_namespace 144KB 317KB [ 555.989597][T14844] ima_iint_cache 51KB 63KB [ 555.991354][T14844] lsm_inode_cache 1619KB 2185KB [ 555.993237][T14844] lsm_file_cache 110KB 188KB [ 555.995043][T14844] key_jar 35KB 70KB [ 555.997106][T14844] uts_namespace 82KB 108KB [ 555.999012][T14844] nsproxy 7KB 27KB [ 556.001152][T14844] vm_area_struct 1089KB 1335KB [ 556.003083][T14844] fs_cache 28KB 56KB [ 556.004891][T14844] files_cache 122KB 239KB [ 556.007359][T14844] signal_cache 982KB 1941KB [ 556.009363][T14844] sighand_cache 1221KB 2374KB [ 556.011358][T14844] task_struct 5402KB 5540KB [ 556.013357][T14844] cred 168KB 336KB [ 556.015384][T14844] anon_vma_chain 330KB 409KB [ 556.017552][T14844] anon_vma 372KB 494KB [ 556.019601][T14844] pid 160KB 437KB [ 556.021571][T14844] Acpi-Operand 195KB 332KB [ 556.023424][T14844] Acpi-ParseExt 31KB 35KB [ 556.025367][T14844] Acpi-Parse 19KB 27KB [ 556.027478][T14844] Acpi-State 16KB 39KB [ 556.029521][T14844] Acpi-Namespace 31KB 40KB [ 556.031480][T14844] shared_policy_node 14KB 16KB [ 556.033567][T14844] numa_policy 11KB 16KB [ 556.035414][T14844] perf_event 34KB 62KB [ 556.037266][T14844] trace_event_file 540KB 540KB [ 556.039076][T14844] ftrace_event_field 1026KB 1027KB [ 556.041249][T14844] pool_workqueue 1970KB 2000KB [ 556.043495][T14844] task_group 68KB 92KB [ 556.046047][T14844] maple_node 1028KB 1752KB [ 556.048267][T14844] mm_struct 321KB 520KB [ 556.050673][T14844] vmap_area 1108KB 1263KB [ 556.053190][T14844] debug_objects_cache 2789KB 7541KB [ 556.055813][T14844] page->ptl 171KB 208KB [ 556.058625][T14844] kmalloc-cg-8k 3872KB 4000KB [ 556.061129][T14844] kmalloc-cg-4k 17696KB 18176KB [ 556.063411][T14844] kmalloc-cg-2k 11620KB 12256KB [ 556.065848][T14844] kmalloc-cg-1k 3218KB 3424KB [ 556.068073][T14844] kmalloc-cg-512 1570KB 1600KB [ 556.070719][T14844] kmalloc-cg-256 540KB 632KB [ 556.073261][T14844] kmalloc-cg-128 281KB 304KB [ 556.075555][T14844] kmalloc-cg-64 85KB 136KB [ 556.077826][T14844] kmalloc-cg-32 46KB 180KB [ 556.080046][T14844] kmalloc-cg-16 8KB 28KB [ 556.082452][T14844] kmalloc-cg-8 23KB 36KB [ 556.084687][T14844] kmalloc-cg-192 83KB 92KB [ 556.087063][T14844] kmalloc-cg-96 60KB 72KB [ 556.089302][T14844] kmalloc-8k 9968KB 10112KB [ 556.091565][T14844] kmalloc-4k 15784KB 15872KB [ 556.094146][T14844] kmalloc-2k 13384KB 13824KB [ 556.096713][T14844] kmalloc-1k 8634KB 9464KB [ 556.099313][T14844] kmalloc-512 11925KB 12960KB [ 556.101798][T14844] kmalloc-256 5568KB 6584KB [ 556.104396][T14844] kmalloc-128 2895KB 4672KB [ 556.106804][T14844] kmalloc-64 4580KB 5064KB [ 556.109104][T14844] kmalloc-32 2615KB 2820KB [ 556.111378][T14844] kmalloc-16 459KB 628KB [ 556.113720][T14844] kmalloc-8 1679KB 1776KB [ 556.116344][T14844] kmalloc-192 2675KB 2984KB [ 556.118780][T14844] kmalloc-96 1533KB 1792KB [ 556.121341][T14844] kmem_cache_node 213KB 224KB [ 556.123871][T14844] kmem_cache 177KB 218KB [ 556.126249][T14844] oom-kill:constraint=CONSTRAINT_MEMORY_POLICY,nodemask=0,cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz4,task=syz.4.2508,pid=14844,uid=0 [ 556.131222][T14844] Out of memory (oom_kill_allocating_task): Killed process 14844 (syz.4.2508) total-vm:104328kB, anon-rss:352kB, file-rss:23176kB, shmem-rss:0kB, UID:0 pgtables:112kB oom_score_adj:0 [ 562.020845][T14959] vhci_hcd vhci_hcd.0: port 0 already used [ 562.500169][ T40] kauditd_printk_skb: 29 callbacks suppressed [ 562.500181][ T40] audit: type=1326 audit(2000000234.859:3809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14981 comm="syz.4.2539" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf702ef6c code=0x0 [ 565.971543][T15036] x_tables: duplicate underflow at hook 1 [ 567.453517][T15060] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 567.457377][T15060] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 567.487881][ T1416] ieee802154 phy1 wpan1: encryption failed: -22 [ 568.410504][T15081] binder: 15077:15081 ioctl c0285840 80000500 returned -22 [ 569.670455][T15090] x_tables: duplicate underflow at hook 1 [ 571.915986][ T5975] usb 8-1: new high-speed USB device number 22 using dummy_hcd [ 572.069765][ T5975] usb 8-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00 [ 572.074075][ T5975] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 572.077947][ T5975] usb 8-1: Product: syz [ 572.079757][ T5975] usb 8-1: Manufacturer: syz [ 572.081732][ T5975] usb 8-1: SerialNumber: syz [ 572.225879][ T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!! [ 572.285786][ T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!! [ 572.361357][ T5975] lan78xx 8-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPIPE [ 572.381624][ T5975] lan78xx 8-1:1.0 (unnamed net_device) (uninitialized): lan78xx_setup_irq_domain() failed : -32 [ 572.385143][ T5975] lan78xx 8-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED [ 572.449968][ T5975] lan78xx 8-1:1.0: probe with driver lan78xx failed with error -32 [ 572.464422][ T5975] usb 8-1: USB disconnect, device number 22 [ 573.107530][T15131] 9pnet_fd: p9_fd_create_unix (15131): address too long: ./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 573.804342][T15144] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2582'. [ 574.358489][T15159] binder: 15158:15159 ioctl c0306201 0 returned -14 [ 576.747697][T15165] netlink: 'syz.1.2587': attribute type 12 has an invalid length. [ 576.865890][T15160] binder: 15158:15160 ioctl c0306201 0 returned -14 [ 577.608456][T15180] netlink: 'syz.3.2590': attribute type 4 has an invalid length. [ 579.526940][T15200] gre0: entered promiscuous mode [ 579.529167][T15200] gre0: entered allmulticast mode [ 582.074632][T15211] netlink: 'syz.0.2598': attribute type 39 has an invalid length. [ 583.114643][T15226] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 584.297694][T15243] netem: incorrect gi model size [ 584.300702][T15243] netem: change failed [ 584.367563][T15245] mac80211_hwsim hwsim5 syzkaller0: entered promiscuous mode [ 584.370002][T15245] mac80211_hwsim hwsim5 syzkaller0: entered allmulticast mode [ 584.439634][ T40] audit: type=1326 audit(2000000256.799:3810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15249 comm="syz.3.2609" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 584.451410][ T40] audit: type=1326 audit(2000000256.799:3811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15249 comm="syz.3.2609" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 584.469155][ T40] audit: type=1326 audit(2000000256.799:3812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15249 comm="syz.3.2609" exe="/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 584.484706][ T40] audit: type=1326 audit(2000000256.799:3813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15249 comm="syz.3.2609" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 584.501960][ T40] audit: type=1326 audit(2000000256.799:3814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15249 comm="syz.3.2609" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 584.509349][ T40] audit: type=1326 audit(2000000256.799:3815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15249 comm="syz.3.2609" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7155cab code=0x7ffc0000 [ 584.519551][ T40] audit: type=1326 audit(2000000256.799:3816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15249 comm="syz.3.2609" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7155cab code=0x7ffc0000 [ 584.527348][ T40] audit: type=1326 audit(2000000256.799:3817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15249 comm="syz.3.2609" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 584.534350][ T40] audit: type=1326 audit(2000000256.799:3818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15249 comm="syz.3.2609" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 584.542320][ T40] audit: type=1326 audit(2000000256.799:3819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15249 comm="syz.3.2609" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 584.549811][T15251] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2609'. [ 590.295795][ T40] kauditd_printk_skb: 32 callbacks suppressed [ 590.295819][ T40] audit: type=1326 audit(2000000262.649:3852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15288 comm="syz.4.2619" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef6c code=0x7ffc0000 [ 590.306491][ T40] audit: type=1326 audit(2000000262.649:3853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15288 comm="syz.4.2619" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef6c code=0x7ffc0000 [ 590.313607][ T40] audit: type=1326 audit(2000000262.649:3854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15288 comm="syz.4.2619" exe="/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf702ef6c code=0x7ffc0000 [ 590.341616][ T40] audit: type=1326 audit(2000000262.649:3855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15288 comm="syz.4.2619" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef6c code=0x7ffc0000 [ 590.348198][T15289] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2619'. [ 590.365852][ T40] audit: type=1326 audit(2000000262.649:3856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15288 comm="syz.4.2619" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef6c code=0x7ffc0000 [ 590.373206][ T40] audit: type=1326 audit(2000000262.649:3857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15288 comm="syz.4.2619" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7165cab code=0x7ffc0000 [ 590.381302][ T40] audit: type=1326 audit(2000000262.649:3858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15288 comm="syz.4.2619" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7165cab code=0x7ffc0000 [ 590.395750][ T40] audit: type=1326 audit(2000000262.649:3859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15288 comm="syz.4.2619" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef6c code=0x7ffc0000 [ 590.403389][ T40] audit: type=1326 audit(2000000262.649:3860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15288 comm="syz.4.2619" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702ef6c code=0x7ffc0000 [ 590.411167][ T40] audit: type=1326 audit(2000000262.649:3861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15288 comm="syz.4.2619" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf702ef6c code=0x7ffc0000 [ 596.089090][T15377] mac80211_hwsim hwsim5 syzkaller0: left promiscuous mode [ 596.091855][T15377] mac80211_hwsim hwsim5 syzkaller0: left allmulticast mode [ 598.308041][T15386] netlink: 9 bytes leftover after parsing attributes in process `syz.3.2650'. [ 598.313205][T15386] netlink: 9 bytes leftover after parsing attributes in process `syz.3.2650'. [ 598.799208][T15399] x_tables: duplicate underflow at hook 1 [ 598.837183][T15401] mac80211_hwsim hwsim5 syzkaller0: entered promiscuous mode [ 598.839937][T15401] mac80211_hwsim hwsim5 syzkaller0: entered allmulticast mode [ 598.939615][T15405] mac80211_hwsim hwsim5 syzkaller0: left promiscuous mode [ 598.942030][T15405] mac80211_hwsim hwsim5 syzkaller0: left allmulticast mode [ 599.533668][T15374] lo speed is unknown, defaulting to 1000 [ 599.684020][T15412] siw: device registration error -23 [ 604.848706][T15473] x_tables: duplicate underflow at hook 1 [ 604.881609][T15475] netlink: 'syz.0.2672': attribute type 2 has an invalid length. [ 605.686286][T15486] nbd2: detected capacity change from 0 to 127 [ 605.706451][T14203] block nbd2: Receive control failed (result -104) [ 605.710970][ T5938] block nbd2: Receive control failed (result -32) [ 610.531449][T15532] x_tables: duplicate underflow at hook 1 [ 610.533922][T15531] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2685'. [ 611.190473][T15543] vhci_hcd vhci_hcd.0: port 0 already used [ 612.303214][T15543] EXT4-fs (sr0): VFS: Can't find ext4 filesystem [ 613.109014][ T40] kauditd_printk_skb: 29 callbacks suppressed [ 613.109031][ T40] audit: type=1326 audit(2000000285.469:3891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15571 comm="syz.1.2699" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 613.123944][ T40] audit: type=1326 audit(2000000285.479:3892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15571 comm="syz.1.2699" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 613.134455][ T40] audit: type=1326 audit(2000000285.489:3893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15571 comm="syz.1.2699" exe="/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 613.146257][ T40] audit: type=1326 audit(2000000285.499:3894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15571 comm="syz.1.2699" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 613.155576][ T40] audit: type=1326 audit(2000000285.509:3895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15571 comm="syz.1.2699" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 613.165226][ T40] audit: type=1326 audit(2000000285.519:3896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15571 comm="syz.1.2699" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf71b5cab code=0x7ffc0000 [ 613.174555][ T40] audit: type=1326 audit(2000000285.519:3897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15571 comm="syz.1.2699" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf71b5cab code=0x7ffc0000 [ 613.182270][ T40] audit: type=1326 audit(2000000285.519:3898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15571 comm="syz.1.2699" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 613.190507][ T40] audit: type=1326 audit(2000000285.519:3899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15571 comm="syz.1.2699" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 613.199385][ T40] audit: type=1326 audit(2000000285.519:3900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15571 comm="syz.1.2699" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7fb6f6c code=0x7ffc0000 [ 617.131248][T15603] kAFS: No cell specified [ 622.712672][T15657] lo speed is unknown, defaulting to 1000 [ 623.921119][T15666] ipvlan6: entered promiscuous mode [ 623.923205][T15666] bridge0: port 1(ipvlan6) entered blocking state [ 624.676133][T15666] bridge0: port 1(ipvlan6) entered disabled state [ 624.679324][T15666] ipvlan6: entered allmulticast mode [ 624.681407][T15666] bridge0: entered allmulticast mode [ 624.684223][T15666] ipvlan6: left allmulticast mode [ 624.686912][T15666] bridge0: left allmulticast mode [ 624.824228][T15664] lo speed is unknown, defaulting to 1000 [ 625.306572][T15676] kAFS: No cell specified [ 628.930247][ T1416] ieee802154 phy1 wpan1: encryption failed: -22 [ 631.493072][T15724] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2730'. [ 631.650679][T15747] netlink: 'syz.1.2732': attribute type 2 has an invalid length. [ 631.861828][T15754] netlink: 'syz.0.2734': attribute type 2 has an invalid length. [ 633.295008][T15771] kAFS: No cell specified [ 634.139153][T15781] siw: device registration error -23 [ 635.968394][ T1287] block nbd2: Connection timed out, retrying (0/2 alive) [ 635.973127][ T1287] block nbd2: Connection timed out, retrying (0/2 alive) [ 635.976392][ T1287] block nbd2: Connection timed out, retrying (0/2 alive) [ 635.980436][ T1287] block nbd2: Connection timed out, retrying (0/2 alive) [ 635.984586][ T1287] block nbd2: Dead connection, failed to find a fallback [ 635.987577][ T1287] block nbd2: shutting down sockets [ 635.990141][ T1287] I/O error, dev nbd2, sector 6 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 635.994250][ T1287] Buffer I/O error on dev nbd2, logical block 3, async page read [ 635.998320][ T1287] I/O error, dev nbd2, sector 4 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 636.004340][ T1287] Buffer I/O error on dev nbd2, logical block 2, async page read [ 636.436832][ T1287] I/O error, dev nbd2, sector 2 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 636.439804][ T1287] Buffer I/O error on dev nbd2, logical block 1, async page read [ 636.442508][ T1287] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 636.445965][ T1287] Buffer I/O error on dev nbd2, logical block 0, async page read [ 636.450986][T15496] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 636.454816][T15496] Buffer I/O error on dev nbd2, logical block 0, async page read [ 636.457642][T15496] I/O error, dev nbd2, sector 2 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 636.460645][T15496] Buffer I/O error on dev nbd2, logical block 1, async page read [ 636.463057][T15496] I/O error, dev nbd2, sector 4 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 636.466322][T15496] Buffer I/O error on dev nbd2, logical block 2, async page read [ 636.469108][T15496] I/O error, dev nbd2, sector 6 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 636.472543][T15496] Buffer I/O error on dev nbd2, logical block 3, async page read [ 636.475271][T15496] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 636.478279][T15496] Buffer I/O error on dev nbd2, logical block 0, async page read [ 636.480711][T15496] I/O error, dev nbd2, sector 2 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 636.483707][T15496] Buffer I/O error on dev nbd2, logical block 1, async page read [ 636.487388][T15496] ldm_validate_partition_table(): Disk read failed. [ 636.489777][T15496] Dev nbd2: unable to read RDB block 0 [ 636.491862][T15496] nbd2: unable to read partition table [ 636.733403][T15496] ldm_validate_partition_table(): Disk read failed. [ 636.737064][T15496] Dev nbd2: unable to read RDB block 0 [ 636.740190][T15496] nbd2: unable to read partition table [ 638.656853][T15842] kAFS: No cell specified [ 638.867943][T15835] lo speed is unknown, defaulting to 1000 [ 638.974482][T15839] vcan0: tx drop: invalid da for name 0x0000000000000001 [ 644.924231][T15914] bridge0: port 1(erspan0) entered blocking state [ 644.926706][T15914] bridge0: port 1(erspan0) entered disabled state [ 645.474899][T15928] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2761'. [ 648.814435][T15972] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2772'. [ 649.545852][T15981] binder: 15979:15981 ioctl c0285840 80000500 returned -22 [ 651.282639][T15994] netlink: 'syz.1.2778': attribute type 2 has an invalid length. [ 653.448279][ T54] IPVS: starting estimator thread 0... [ 653.536468][T16057] IPVS: using max 37 ests per chain, 88800 per kthread [ 656.758334][T16125] netlink: 2 bytes leftover after parsing attributes in process `syz.0.2793'. [ 656.761854][T16125] netlink: 2 bytes leftover after parsing attributes in process `syz.0.2793'. [ 656.765176][T16125] netlink: 2 bytes leftover after parsing attributes in process `syz.0.2793'. [ 656.768553][T16125] netlink: 2 bytes leftover after parsing attributes in process `syz.0.2793'. [ 656.775778][T16125] netlink: 2 bytes leftover after parsing attributes in process `syz.0.2793'. [ 656.785785][T16125] netlink: 2 bytes leftover after parsing attributes in process `syz.0.2793'. [ 656.789214][T16125] netlink: 2 bytes leftover after parsing attributes in process `syz.0.2793'. [ 656.795771][T16125] netlink: 2 bytes leftover after parsing attributes in process `syz.0.2793'. [ 656.805759][T16125] netlink: 2 bytes leftover after parsing attributes in process `syz.0.2793'. [ 656.815784][T16125] netlink: 2 bytes leftover after parsing attributes in process `syz.0.2793'. [ 658.759207][T16172] netlink: 'syz.1.2800': attribute type 4 has an invalid length. [ 660.178926][ T40] kauditd_printk_skb: 2 callbacks suppressed [ 660.178938][ T40] audit: type=1804 audit(2000000332.539:3903): pid=16186 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.2804" name="/newroot/697/bus/bus" dev="overlay" ino=3752 res=1 errno=0 [ 660.201640][ T40] audit: type=1804 audit(2000000332.559:3904): pid=16186 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2804" name="/newroot/697/bus/bus" dev="overlay" ino=3752 res=1 errno=0 [ 661.036116][T16187] lo speed is unknown, defaulting to 1000 [ 662.711094][T16209] netlink: 2 bytes leftover after parsing attributes in process `syz.4.2805'. [ 662.719645][T16209] netlink: 2 bytes leftover after parsing attributes in process `syz.4.2805'. [ 662.733774][T16209] netlink: 2 bytes leftover after parsing attributes in process `syz.4.2805'. [ 662.745608][T16209] netlink: 2 bytes leftover after parsing attributes in process `syz.4.2805'. [ 662.751745][T16209] netlink: 2 bytes leftover after parsing attributes in process `syz.4.2805'. [ 662.787600][T16209] netlink: 2 bytes leftover after parsing attributes in process `syz.4.2805'. [ 662.792122][T16209] netlink: 2 bytes leftover after parsing attributes in process `syz.4.2805'. [ 662.805710][T16209] netlink: 2 bytes leftover after parsing attributes in process `syz.4.2805'. [ 662.810744][T16209] netlink: 2 bytes leftover after parsing attributes in process `syz.4.2805'. [ 662.816463][T16209] netlink: 2 bytes leftover after parsing attributes in process `syz.4.2805'. [ 662.949649][T16227] netlink: 'syz.4.2809': attribute type 2 has an invalid length. [ 663.825413][T16257] lo speed is unknown, defaulting to 1000 [ 666.285934][T16279] lo speed is unknown, defaulting to 1000 [ 667.180475][T16316] binder: 16314:16316 ioctl c0285840 80000500 returned -22 [ 667.580577][T16337] netlink: 'syz.1.2825': attribute type 2 has an invalid length. [ 669.716532][T16364] BTRFS info: 'norecovery' is for compatibility only, recommended to use 'rescue=nologreplay' [ 672.907740][T16442] siw: device registration error -23 [ 677.528162][T16479] lo speed is unknown, defaulting to 1000 [ 678.098625][T16528] netlink: 'syz.0.2858': attribute type 2 has an invalid length. [ 679.471529][T16550] syz_tun: entered allmulticast mode [ 679.486619][T16550] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2864'. [ 679.638167][T16550] syz_tun (unregistering): left allmulticast mode [ 681.780805][T16592] kAFS: No cell specified [ 681.928252][T16591] lo speed is unknown, defaulting to 1000 [ 683.325185][T16625] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2873'. [ 684.820529][T16619] bridge0: entered allmulticast mode [ 684.823400][T16619] bridge0: left allmulticast mode [ 686.175908][T16654] lo: entered allmulticast mode [ 686.775861][T16659] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2884'. [ 686.795278][T16653] lo: left allmulticast mode [ 687.361888][T16657] lo speed is unknown, defaulting to 1000 [ 690.378728][ T1416] ieee802154 phy1 wpan1: encryption failed: -22 [ 690.525433][T16708] kAFS: No cell specified [ 690.842586][T16713] bridge0: port 1(erspan0) entered blocking state [ 690.845002][T16713] bridge0: port 1(erspan0) entered disabled state [ 690.848830][T16713] erspan0: entered promiscuous mode [ 691.223340][T16721] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2898'. [ 691.270908][T16717] lo speed is unknown, defaulting to 1000 [ 691.613050][T16724] binder: 16723:16724 ioctl c0285840 80000500 returned -22 [ 691.910404][T16729] tipc: Enabling of bearer rejected, already enabled [ 693.643115][T16760] overlayfs: failed to clone upperpath [ 694.471119][T16778] netlink: 'syz.3.2911': attribute type 12 has an invalid length. [ 694.942271][T16812] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2915'. [ 695.133686][T16816] overlayfs: missing 'workdir' [ 695.177241][T16813] overlayfs: failed to resolve './file1': -2 [ 698.805041][T16840] netlink: 'syz.3.2927': attribute type 2 has an invalid length. [ 701.798690][T16898] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2935'. [ 701.842925][T16896] lo speed is unknown, defaulting to 1000 [ 702.417847][T16907] netlink: 'syz.1.2938': attribute type 2 has an invalid length. [ 705.149323][T16928] netlink: 'syz.4.2941': attribute type 12 has an invalid length. [ 708.097127][T16955] lo speed is unknown, defaulting to 1000 [ 708.760537][T16964] netlink: 'syz.3.2950': attribute type 2 has an invalid length. [ 708.834368][T16967] overlayfs: failed to clone upperpath [ 709.783703][T16977] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2956'. [ 709.786859][T16977] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2956'. [ 711.040065][T16994] netlink: 'syz.1.2961': attribute type 2 has an invalid length. [ 713.067625][T17016] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma? [ 713.095109][T17009] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2965'. [ 713.098645][T17009] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2965'. [ 713.504911][T17033] siw: device registration error -23 [ 713.807804][T17037] lo speed is unknown, defaulting to 1000 [ 714.054645][T17046] netlink: 'syz.0.2970': attribute type 2 has an invalid length. [ 715.314541][T17053] lo: left allmulticast mode [ 715.326311][T17053] tunl0: left allmulticast mode [ 715.329524][T17053] gre0: left allmulticast mode [ 715.346994][T17053] ip_vti0: left allmulticast mode [ 715.351528][T17053] ip6_vti0: left allmulticast mode [ 715.354262][T17053] sit0: left allmulticast mode [ 715.360271][T17053] ip6tnl0: left allmulticast mode [ 715.362926][T17053] ip6gre0: left allmulticast mode [ 715.365622][T17053] ip6gretap0: left allmulticast mode [ 715.370689][T17053] vcan0: left allmulticast mode [ 715.373125][T17053] .`: left allmulticast mode [ 715.375470][T17053] 8021q: adding VLAN 0 to HW filter on device .` [ 715.378583][T17053] team0: left allmulticast mode [ 715.381044][T17053] 8021q: adding VLAN 0 to HW filter on device team0 [ 715.385379][T17053] nlmon0: left allmulticast mode [ 715.388171][T17053] caif0: left allmulticast mode [ 715.391068][T17053] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 715.809240][T17064] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2972'. [ 715.942467][T17063] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2976'. [ 718.893753][T17092] netlink: 'syz.0.2983': attribute type 2 has an invalid length. [ 720.102006][T17105] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2986'. [ 722.696209][ T40] audit: type=1326 audit(2000000395.059:3905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17143 comm="syz.0.2992" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 722.715900][ T40] audit: type=1326 audit(2000000395.059:3906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17143 comm="syz.0.2992" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 722.723132][ T40] audit: type=1326 audit(2000000395.059:3907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17143 comm="syz.0.2992" exe="/syz-executor" sig=0 arch=40000003 syscall=296 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 722.745788][ T40] audit: type=1326 audit(2000000395.059:3908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17143 comm="syz.0.2992" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 722.753183][ T40] audit: type=1326 audit(2000000395.059:3909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17143 comm="syz.0.2992" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 722.775820][ T40] audit: type=1326 audit(2000000395.059:3910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17143 comm="syz.0.2992" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 722.827210][T17181] netlink: 'syz.3.2995': attribute type 2 has an invalid length. [ 722.997604][T17186] binder: 17185:17186 ioctl c0285840 80000500 returned -22 [ 723.048905][T17184] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2996'. [ 723.060367][ T40] audit: type=1326 audit(2000000395.419:3911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17143 comm="syz.0.2992" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 723.075746][ T40] audit: type=1326 audit(2000000395.419:3912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17143 comm="syz.0.2992" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 725.644760][T17243] netlink: 'syz.0.3005': attribute type 2 has an invalid length. [ 727.491132][T17275] netlink: 'syz.0.3019': attribute type 2 has an invalid length. [ 728.863374][ T40] audit: type=1326 audit(2000000401.219:3913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17314 comm="syz.0.3016" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 728.888142][ T40] audit: type=1326 audit(2000000401.219:3914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17314 comm="syz.0.3016" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 728.911730][ T40] audit: type=1326 audit(2000000401.219:3915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17314 comm="syz.0.3016" exe="/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 728.921860][ T40] audit: type=1326 audit(2000000401.229:3916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17314 comm="syz.0.3016" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 728.922158][T17317] kAFS: No cell specified [ 728.934343][ T40] audit: type=1326 audit(2000000401.229:3917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17314 comm="syz.0.3016" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 728.941908][ T40] audit: type=1326 audit(2000000401.259:3918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17314 comm="syz.0.3016" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7115cab code=0x7ffc0000 [ 728.953999][ T40] audit: type=1326 audit(2000000401.259:3919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17314 comm="syz.0.3016" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7115cab code=0x7ffc0000 [ 728.964081][ T40] audit: type=1326 audit(2000000401.259:3920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17314 comm="syz.0.3016" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 728.975925][ T40] audit: type=1326 audit(2000000401.259:3921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17314 comm="syz.0.3016" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 728.988733][ T40] audit: type=1326 audit(2000000401.259:3922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17314 comm="syz.0.3016" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 729.008415][T17319] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3016'. [ 729.639782][T17329] binder: 17328:17329 ioctl c0285840 80000500 returned -22 [ 730.081317][T17338] netlink: 'syz.0.3022': attribute type 2 has an invalid length. [ 730.697062][T17348] openvswitch: netlink: Key type 67 is out of range max 32 [ 731.074428][T17354] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3026'. [ 731.214108][T17362] binder: 17361:17362 ioctl c0285840 80000500 returned -22 [ 731.990711][T17367] netlink: 'syz.0.3025': attribute type 12 has an invalid length. [ 734.130044][T17416] netlink: 'syz.3.3036': attribute type 2 has an invalid length. [ 734.257639][T17418] siw: device registration error -23 [ 738.527889][T17469] 8021q: adding VLAN 0 to HW filter on device bond0 [ 738.546036][T17469] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 740.256212][T17547] tipc: Resetting bearer [ 740.328346][T17547] bond4: left allmulticast mode [ 740.330163][T17547] ip6gretap1: left allmulticast mode [ 740.333711][T17547] bond6: left promiscuous mode [ 740.335708][T17547] bond6: left allmulticast mode [ 740.337364][T17554] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3051'. [ 740.338095][T17547] bond7: left promiscuous mode [ 740.342234][T17547] bond7: left allmulticast mode [ 740.351504][T17547] bond11: left promiscuous mode [ 740.353367][T17547] bridge6: left promiscuous mode [ 740.359410][T17547] ipvlan2: left allmulticast mode [ 740.361315][T17547] ipvlan3: left allmulticast mode [ 740.363098][T17547] bond11: left allmulticast mode [ 740.364829][T17547] bridge6: left allmulticast mode [ 742.262028][T17621] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3058'. [ 745.497975][T17698] netlink: 'syz.0.3069': attribute type 2 has an invalid length. [ 749.423940][T17787] netlink: 'syz.4.3084': attribute type 2 has an invalid length. [ 751.493143][T17854] tipc: Resetting bearer [ 751.809445][ T1416] ieee802154 phy1 wpan1: encryption failed: -22 [ 753.260489][T14317] usb 8-1: new high-speed USB device number 23 using dummy_hcd [ 754.269409][T17889] lo speed is unknown, defaulting to 1000 [ 755.761191][ T40] kauditd_printk_skb: 455 callbacks suppressed [ 755.761208][ T40] audit: type=1326 audit(2000000428.119:4378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17902 comm="syz.0.3105" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 755.774097][ T40] audit: type=1326 audit(2000000428.129:4379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17902 comm="syz.0.3105" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 755.781146][ T40] audit: type=1326 audit(2000000428.129:4380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17902 comm="syz.0.3105" exe="/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 755.797325][ T40] audit: type=1326 audit(2000000428.129:4381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17902 comm="syz.0.3105" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 755.806595][ T40] audit: type=1326 audit(2000000428.129:4382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17902 comm="syz.0.3105" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 755.817446][ T40] audit: type=1326 audit(2000000428.129:4383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17902 comm="syz.0.3105" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7115cab code=0x7ffc0000 [ 755.825310][ T40] audit: type=1326 audit(2000000428.129:4384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17902 comm="syz.0.3105" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7115cab code=0x7ffc0000 [ 755.845786][ T40] audit: type=1326 audit(2000000428.129:4385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17902 comm="syz.0.3105" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 755.853147][ T40] audit: type=1326 audit(2000000428.129:4386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17902 comm="syz.0.3105" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 755.865716][ T40] audit: type=1326 audit(2000000428.129:4387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17902 comm="syz.0.3105" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 755.886122][T17910] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3105'. [ 755.937857][T17917] futex_wake_op: syz.0.3107 tries to shift op by 144; fix this program [ 756.888729][T17960] x_tables: duplicate underflow at hook 1 [ 757.453028][T17978] lo: entered allmulticast mode [ 757.566532][T17980] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3115'. [ 757.598282][T17977] lo: left allmulticast mode [ 757.688125][T17988] netlink: 'syz.4.3117': attribute type 2 has an invalid length. [ 759.889232][T18048] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3125'. [ 760.109316][T18059] netlink: 'syz.0.3127': attribute type 2 has an invalid length. [ 765.739998][T18192] Cannot find del_set index 65533 as target [ 765.748793][T18192] netlink: 56 bytes leftover after parsing attributes in process `syz.4.3149'. [ 766.329195][T18221] netlink: 'syz.4.3153': attribute type 2 has an invalid length. [ 766.390803][T18227] vhci_hcd vhci_hcd.0: port 0 already used [ 766.604542][T18253] netlink: 'syz.0.3155': attribute type 2 has an invalid length. [ 767.552892][ T40] kauditd_printk_skb: 105 callbacks suppressed [ 767.552911][ T40] audit: type=1326 audit(2000000439.909:4493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18272 comm="syz.0.3159" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 767.565918][ T40] audit: type=1326 audit(2000000439.919:4494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18272 comm="syz.0.3159" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 767.578988][ T40] audit: type=1326 audit(2000000439.929:4495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18272 comm="syz.0.3159" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 767.589421][ T40] audit: type=1326 audit(2000000439.929:4496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18272 comm="syz.0.3159" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 767.600164][ T40] audit: type=1326 audit(2000000439.929:4497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18272 comm="syz.0.3159" exe="/syz-executor" sig=0 arch=40000003 syscall=360 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 767.635074][ T40] audit: type=1326 audit(2000000439.949:4498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18272 comm="syz.0.3159" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 767.642136][ T40] audit: type=1326 audit(2000000439.949:4499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18272 comm="syz.0.3159" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 767.653742][ T40] audit: type=1326 audit(2000000439.959:4500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18272 comm="syz.0.3159" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 767.661231][ T40] audit: type=1326 audit(2000000439.959:4501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18272 comm="syz.0.3159" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 767.670741][ T40] audit: type=1326 audit(2000000439.959:4502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18272 comm="syz.0.3159" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16f6c code=0x7ffc0000 [ 774.413497][ T40] audit: type=1326 audit(2000000446.769:4503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18333 comm="syz.3.3169" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 774.421112][ T40] audit: type=1326 audit(2000000446.769:4504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18333 comm="syz.3.3169" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 774.429160][ T40] audit: type=1326 audit(2000000446.779:4505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18333 comm="syz.3.3169" exe="/syz-executor" sig=0 arch=40000003 syscall=296 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 774.440077][ T40] audit: type=1326 audit(2000000446.779:4506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18333 comm="syz.3.3169" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 774.448470][ T40] audit: type=1326 audit(2000000446.779:4507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18333 comm="syz.3.3169" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 774.456896][ T40] audit: type=1326 audit(2000000446.779:4508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18333 comm="syz.3.3169" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 774.464081][ T40] audit: type=1326 audit(2000000446.799:4509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18333 comm="syz.3.3169" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 774.472699][ T40] audit: type=1326 audit(2000000446.799:4510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18333 comm="syz.3.3169" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 774.480525][ T40] audit: type=1326 audit(2000000446.809:4511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18333 comm="syz.3.3169" exe="/syz-executor" sig=0 arch=40000003 syscall=12 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 774.488886][ T40] audit: type=1326 audit(2000000446.809:4512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18333 comm="syz.3.3169" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57f6c code=0x7ffc0000 [ 774.791438][T18341] 9pnet_virtio: no channels available for device syz [ 776.113950][T18358] binder: 18357:18358 ioctl c0285840 80000500 returned -22 [ 777.232233][T18385] rdma_rxe: rxe_newlink: failed to add wg2 [ 778.101818][T18395] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3180'. [ 778.354028][T18408] netlink: 'syz.1.3184': attribute type 2 has an invalid length. [ 778.439237][T18408] [ 778.440144][T18408] ====================================================== [ 778.442350][T18408] WARNING: possible circular locking dependency detected [ 778.444621][T18408] syzkaller #0 Tainted: G L [ 778.447453][T18408] ------------------------------------------------------ [ 778.450581][T18408] syz.1.3184/18408 is trying to acquire lock: [ 778.453201][T18408] ffffffff8e9aa720 (fs_reclaim){+.+.}-{0:0}, at: __kmalloc_cache_noprof+0x4b/0x6f0 [ 778.457064][T18408] [ 778.457064][T18408] but task is already holding lock: [ 778.460125][T18408] ffff8880595b3538 (&idev->mc_lock){+.+.}-{4:4}, at: __ipv6_dev_mc_inc+0x53/0xbc0 [ 778.464319][T18408] [ 778.464319][T18408] which lock already depends on the new lock. [ 778.464319][T18408] [ 778.468688][T18408] [ 778.468688][T18408] the existing dependency chain (in reverse order) is: [ 778.472342][T18408] [ 778.472342][T18408] -> #7 (&idev->mc_lock){+.+.}-{4:4}: [ 778.475736][T18408] __mutex_lock+0x1a2/0x1b90 [ 778.478041][T18408] __ipv6_dev_mc_inc+0x53/0xbc0 [ 778.480379][T18408] __ipv6_sock_mc_join+0x5b8/0x8e0 [ 778.482759][T18408] do_ipv6_mcast_group_source+0x21e/0x270 [ 778.485346][T18408] do_ipv6_setsockopt+0x1d89/0x4400 [ 778.487696][T18408] ipv6_setsockopt+0xcb/0x170 [ 778.489887][T18408] udpv6_setsockopt+0x7d/0xd0 [ 778.492159][T18408] do_sock_setsockopt+0xf3/0x1d0 [ 778.494640][T18408] __sys_setsockopt+0x119/0x190 [ 778.497037][T18408] __ia32_sys_setsockopt+0xbc/0x160 [ 778.499375][T18408] __do_fast_syscall_32+0xe3/0x8c0 [ 778.501671][T18408] do_fast_syscall_32+0x32/0x70 [ 778.503993][T18408] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 778.507024][T18408] [ 778.507024][T18408] -> #6 (sk_lock-AF_INET6){+.+.}-{0:0}: [ 778.510276][T18408] lock_sock_nested+0x41/0xf0 [ 778.512447][T18408] inet_shutdown+0x67/0x410 [ 778.514608][T18408] nbd_mark_nsock_dead+0xae/0x5c0 [ 778.517125][T18408] recv_work+0x5fb/0x8c0 [ 778.519317][T18408] process_one_work+0xa23/0x19a0 [ 778.521734][T18408] worker_thread+0x5ef/0xe50 [ 778.523794][T18408] kthread+0x370/0x450 [ 778.525256][T18408] ret_from_fork+0x754/0xd80 [ 778.526869][T18408] ret_from_fork_asm+0x1a/0x30 [ 778.528546][T18408] [ 778.528546][T18408] -> #5 (&nsock->tx_lock){+.+.}-{4:4}: [ 778.531028][T18408] __mutex_lock+0x1a2/0x1b90 [ 778.532876][T18408] nbd_queue_rq+0x428/0x1080 [ 778.534768][T18408] blk_mq_dispatch_rq_list+0x422/0x1e70 [ 778.536908][T18408] __blk_mq_sched_dispatch_requests+0xcea/0x1620 [ 778.538846][T18408] blk_mq_sched_dispatch_requests+0xd7/0x1c0 [ 778.540877][T18408] blk_mq_run_hw_queue+0x23c/0x670 [ 778.542631][T18408] blk_mq_dispatch_list+0x51d/0x1360 [ 778.544571][T18408] blk_mq_flush_plug_list+0x130/0x600 [ 778.546552][T18408] __blk_flush_plug+0x2c4/0x4b0 [ 778.548372][T18408] __submit_bio+0x584/0x6c0 [ 778.550041][T18408] submit_bio_noacct_nocheck+0x562/0xc10 [ 778.552061][T18408] submit_bio_noacct+0xd17/0x2010 [ 778.553846][T18408] submit_bh_wbc+0x59c/0x770 [ 778.555479][T18408] block_read_full_folio+0x264/0x8e0 [ 778.557332][T18408] filemap_read_folio+0xfc/0x3b0 [ 778.559111][T18408] do_read_cache_folio+0x2d7/0x6b0 [ 778.560871][T18408] read_part_sector+0xd1/0x370 [ 778.562578][T18408] adfspart_check_ICS+0x93/0x910 [ 778.564407][T18408] bdev_disk_changed+0x7f8/0xc80 [ 778.566198][T18408] blkdev_get_whole+0x187/0x290 [ 778.567948][T18408] bdev_open+0x2c7/0xe40 [ 778.569503][T18408] blkdev_open+0x34e/0x4f0 [ 778.571089][T18408] do_dentry_open+0x6d8/0x1660 [ 778.572797][T18408] vfs_open+0x82/0x3f0 [ 778.574321][T18408] path_openat+0x208c/0x31a0 [ 778.575961][T18408] do_file_open+0x20e/0x430 [ 778.577659][T18408] do_sys_openat2+0x10d/0x1e0 [ 778.579456][T18408] __x64_sys_openat+0x12d/0x210 [ 778.581247][T18408] do_syscall_64+0x106/0xf80 [ 778.582876][T18408] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 778.584952][T18408] [ 778.584952][T18408] -> #4 (&cmd->lock){+.+.}-{4:4}: [ 778.587215][T18408] __mutex_lock+0x1a2/0x1b90 [ 778.588897][T18408] nbd_queue_rq+0xba/0x1080 [ 778.590587][T18408] blk_mq_dispatch_rq_list+0x422/0x1e70 [ 778.592513][T18408] __blk_mq_sched_dispatch_requests+0xcea/0x1620 [ 778.594701][T18408] blk_mq_sched_dispatch_requests+0xd7/0x1c0 [ 778.596775][T18408] blk_mq_run_hw_queue+0x23c/0x670 [ 778.598607][T18408] blk_mq_dispatch_list+0x51d/0x1360 [ 778.600564][T18408] blk_mq_flush_plug_list+0x130/0x600 [ 778.602484][T18408] __blk_flush_plug+0x2c4/0x4b0 [ 778.604281][T18408] __submit_bio+0x584/0x6c0 [ 778.605936][T18408] submit_bio_noacct_nocheck+0x562/0xc10 [ 778.607941][T18408] submit_bio_noacct+0xd17/0x2010 [ 778.609698][T18408] submit_bh_wbc+0x59c/0x770 [ 778.611323][T18408] block_read_full_folio+0x264/0x8e0 [ 778.613179][T18408] filemap_read_folio+0xfc/0x3b0 [ 778.614977][T18408] do_read_cache_folio+0x2d7/0x6b0 [ 778.616912][T18408] read_part_sector+0xd1/0x370 [ 778.618734][T18408] adfspart_check_ICS+0x93/0x910 [ 778.620593][T18408] bdev_disk_changed+0x7f8/0xc80 [ 778.622306][T18408] blkdev_get_whole+0x187/0x290 [ 778.624051][T18408] bdev_open+0x2c7/0xe40 [ 778.625584][T18408] blkdev_open+0x34e/0x4f0 [ 778.627160][T18408] do_dentry_open+0x6d8/0x1660 [ 778.628837][T18408] vfs_open+0x82/0x3f0 [ 778.630309][T18408] path_openat+0x208c/0x31a0 [ 778.631957][T18408] do_file_open+0x20e/0x430 [ 778.633611][T18408] do_sys_openat2+0x10d/0x1e0 [ 778.635345][T18408] __x64_sys_openat+0x12d/0x210 [ 778.637207][T18408] do_syscall_64+0x106/0xf80 [ 778.639026][T18408] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 778.641184][T18408] [ 778.641184][T18408] -> #3 (set->srcu){.+.+}-{0:0}: [ 778.643438][T18408] __synchronize_srcu+0xa2/0x300 [ 778.645246][T18408] blk_mq_quiesce_queue+0x149/0x1c0 [ 778.647036][T18408] elevator_switch+0x17b/0x7e0 [ 778.648813][T18408] elevator_change+0x352/0x530 [ 778.650601][T18408] elevator_set_default+0x29e/0x360 [ 778.652597][T18408] blk_register_queue+0x412/0x590 [ 778.654434][T18408] __add_disk+0x73f/0xe40 [ 778.656001][T18408] add_disk_fwnode+0x118/0x5c0 [ 778.657679][T18408] nbd_dev_add+0x77a/0xb10 [ 778.659247][T18408] nbd_init+0x291/0x2b0 [ 778.661017][T18408] do_one_initcall+0x11d/0x760 [ 778.662761][T18408] kernel_init_freeable+0x6e5/0x7a0 [ 778.664904][T18408] kernel_init+0x1f/0x1e0 [ 778.666565][T18408] ret_from_fork+0x754/0xd80 [ 778.668238][T18408] ret_from_fork_asm+0x1a/0x30 [ 778.669908][T18408] [ 778.669908][T18408] -> #2 (&q->elevator_lock){+.+.}-{4:4}: [ 778.672380][T18408] __mutex_lock+0x1a2/0x1b90 [ 778.674091][T18408] elevator_change+0x1bc/0x530 [ 778.675907][T18408] elevator_set_none+0x92/0xf0 [ 778.677753][T18408] blk_mq_update_nr_hw_queues+0x4c1/0x15f0 [ 778.679822][T18408] nbd_start_device+0x1a6/0xbd0 [ 778.681514][T18408] nbd_genl_connect+0xff2/0x1a40 [ 778.683240][T18408] genl_family_rcv_msg_doit+0x214/0x300 [ 778.685329][T18408] genl_rcv_msg+0x560/0x800 [ 778.687030][T18408] netlink_rcv_skb+0x159/0x420 [ 778.688724][T18408] genl_rcv+0x28/0x40 [ 778.690175][T18408] netlink_unicast+0x5aa/0x870 [ 778.691890][T18408] netlink_sendmsg+0x8b0/0xda0 [ 778.693631][T18408] ____sys_sendmsg+0x9e1/0xb70 [ 778.695477][T18408] ___sys_sendmsg+0x190/0x1e0 [ 778.697263][T18408] __sys_sendmsg+0x170/0x220 [ 778.698956][T18408] __do_fast_syscall_32+0xe3/0x8c0 [ 778.700740][T18408] do_fast_syscall_32+0x32/0x70 [ 778.702449][T18408] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 778.704662][T18408] [ 778.704662][T18408] -> #1 (&q->q_usage_counter(io)#51){++++}-{0:0}: [ 778.707434][T18408] blk_alloc_queue+0x610/0x790 [ 778.709167][T18408] blk_mq_alloc_queue+0x174/0x290 [ 778.710980][T18408] __blk_mq_alloc_disk+0x29/0x120 [ 778.712756][T18408] nbd_dev_add+0x492/0xb10 [ 778.714370][T18408] nbd_init+0x291/0x2b0 [ 778.715876][T18408] do_one_initcall+0x11d/0x760 [ 778.717552][T18408] kernel_init_freeable+0x6e5/0x7a0 [ 778.719362][T18408] kernel_init+0x1f/0x1e0 [ 778.720991][T18408] ret_from_fork+0x754/0xd80 [ 778.722719][T18408] ret_from_fork_asm+0x1a/0x30 [ 778.724499][T18408] [ 778.724499][T18408] -> #0 (fs_reclaim){+.+.}-{0:0}: [ 778.726783][T18408] __lock_acquire+0x14b8/0x2630 [ 778.728493][T18408] lock_acquire+0x1cf/0x380 [ 778.730081][T18408] fs_reclaim_acquire+0xc4/0x100 [ 778.731804][T18408] __kmalloc_cache_noprof+0x4b/0x6f0 [ 778.733767][T18408] __ipv6_dev_mc_inc+0x2f1/0xbc0 [ 778.735546][T18408] ipv6_add_dev+0xb78/0x1520 [ 778.737196][T18408] addrconf_notify+0x563/0x19d0 [ 778.738889][T18408] notifier_call_chain+0x99/0x420 [ 778.740637][T18408] call_netdevice_notifiers_info+0xbe/0x110 [ 778.742725][T18408] register_netdevice+0x16e6/0x2210 [ 778.744590][T18408] internal_dev_create+0x2d3/0x520 [ 778.746613][T18408] ovs_vport_add+0x147/0x4d0 [ 778.748362][T18408] new_vport+0x16/0x1d0 [ 778.749959][T18408] ovs_dp_cmd_new+0x65d/0xdf0 [ 778.751675][T18408] genl_family_rcv_msg_doit+0x214/0x300 [ 778.753582][T18408] genl_rcv_msg+0x560/0x800 [ 778.755188][T18408] netlink_rcv_skb+0x159/0x420 [ 778.756843][T18408] genl_rcv+0x28/0x40 [ 778.758282][T18408] netlink_unicast+0x5aa/0x870 [ 778.759951][T18408] netlink_sendmsg+0x8b0/0xda0 [ 778.761613][T18408] ____sys_sendmsg+0x9e1/0xb70 [ 778.763351][T18408] ___sys_sendmsg+0x190/0x1e0 [ 778.765185][T18408] __sys_sendmsg+0x170/0x220 [ 778.767007][T18408] __do_fast_syscall_32+0xe3/0x8c0 [ 778.768849][T18408] do_fast_syscall_32+0x32/0x70 [ 778.770538][T18408] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 778.772715][T18408] [ 778.772715][T18408] other info that might help us debug this: [ 778.772715][T18408] [ 778.775946][T18408] Chain exists of: [ 778.775946][T18408] fs_reclaim --> sk_lock-AF_INET6 --> &idev->mc_lock [ 778.775946][T18408] [ 778.780074][T18408] Possible unsafe locking scenario: [ 778.780074][T18408] [ 778.782647][T18408] CPU0 CPU1 [ 778.784451][T18408] ---- ---- [ 778.786199][T18408] lock(&idev->mc_lock); [ 778.787585][T18408] lock(sk_lock-AF_INET6); [ 778.789812][T18408] lock(&idev->mc_lock); [ 778.791983][T18408] lock(fs_reclaim); [ 778.793263][T18408] [ 778.793263][T18408] *** DEADLOCK *** [ 778.793263][T18408] [ 778.795867][T18408] 4 locks held by syz.1.3184/18408: [ 778.797579][T18408] #0: ffffffff906c35f0 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 [ 778.800455][T18408] #1: ffffffff90b81ba8 (ovs_mutex){+.+.}-{4:4}, at: ovs_dp_cmd_new+0x5ad/0xdf0 [ 778.803514][T18408] #2: ffffffff906172a8 (rtnl_mutex){+.+.}-{4:4}, at: internal_dev_create+0x2b0/0x520 [ 778.806678][T18408] #3: ffff8880595b3538 (&idev->mc_lock){+.+.}-{4:4}, at: __ipv6_dev_mc_inc+0x53/0xbc0 [ 778.809760][T18408] [ 778.809760][T18408] stack backtrace: [ 778.811775][T18408] CPU: 1 UID: 0 PID: 18408 Comm: syz.1.3184 Tainted: G L syzkaller #0 PREEMPT(full) [ 778.811795][T18408] Tainted: [L]=SOFTLOCKUP [ 778.811799][T18408] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 778.811806][T18408] Call Trace: [ 778.811813][T18408] [ 778.811819][T18408] dump_stack_lvl+0x100/0x190 [ 778.811840][T18408] print_circular_bug.cold+0x178/0x1c7 [ 778.811858][T18408] check_noncircular+0x146/0x160 [ 778.811875][T18408] __lock_acquire+0x14b8/0x2630 [ 778.811891][T18408] ? __ipv6_dev_mc_inc+0x53/0xbc0 [ 778.811909][T18408] lock_acquire+0x1cf/0x380 [ 778.811923][T18408] ? __kmalloc_cache_noprof+0x4b/0x6f0 [ 778.811941][T18408] fs_reclaim_acquire+0xc4/0x100 [ 778.811954][T18408] ? __kmalloc_cache_noprof+0x4b/0x6f0 [ 778.811969][T18408] __kmalloc_cache_noprof+0x4b/0x6f0 [ 778.811985][T18408] ? __ipv6_dev_mc_inc+0x2f1/0xbc0 [ 778.812002][T18408] __ipv6_dev_mc_inc+0x2f1/0xbc0 [ 778.812021][T18408] ipv6_add_dev+0xb78/0x1520 [ 778.812033][T18408] addrconf_notify+0x563/0x19d0 [ 778.812047][T18408] ? ip6mr_device_event+0x1bc/0x230 [ 778.812064][T18408] notifier_call_chain+0x99/0x420 [ 778.812081][T18408] call_netdevice_notifiers_info+0xbe/0x110 [ 778.812096][T18408] register_netdevice+0x16e6/0x2210 [ 778.812110][T18408] ? __pfx_register_netdevice+0x10/0x10 [ 778.812123][T18408] internal_dev_create+0x2d3/0x520 [ 778.812137][T18408] ovs_vport_add+0x147/0x4d0 [ 778.812149][T18408] new_vport+0x16/0x1d0 [ 778.812164][T18408] ovs_dp_cmd_new+0x65d/0xdf0 [ 778.812182][T18408] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 778.812200][T18408] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280 [ 778.812216][T18408] ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280 [ 778.812232][T18408] genl_family_rcv_msg_doit+0x214/0x300 [ 778.812247][T18408] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 778.812261][T18408] ? genl_get_cmd+0x3ef/0x720 [ 778.812274][T18408] ? bpf_lsm_capable+0x9/0x10 [ 778.812287][T18408] ? security_capable+0x80/0x260 [ 778.812375][T18408] ? ns_capable+0xd2/0xf0 [ 778.812387][T18408] genl_rcv_msg+0x560/0x800 [ 778.812401][T18408] ? __pfx_genl_rcv_msg+0x10/0x10 [ 778.812414][T18408] ? __pfx_ovs_dp_cmd_new+0x10/0x10 [ 778.812431][T18408] ? __lock_acquire+0x4a5/0x2630 [ 778.812445][T18408] ? rcu_preempt_deferred_qs_irqrestore+0x4fd/0xb90 [ 778.812461][T18408] netlink_rcv_skb+0x159/0x420 [ 778.812473][T18408] ? __pfx_genl_rcv_msg+0x10/0x10 [ 778.812487][T18408] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 778.812501][T18408] ? netlink_deliver_tap+0x1ae/0xcc0 [ 778.812512][T18408] genl_rcv+0x28/0x40 [ 778.812524][T18408] netlink_unicast+0x5aa/0x870 [ 778.812536][T18408] ? __pfx_netlink_unicast+0x10/0x10 [ 778.812550][T18408] netlink_sendmsg+0x8b0/0xda0 [ 778.812563][T18408] ? __pfx_netlink_sendmsg+0x10/0x10 [ 778.812575][T18408] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 778.812589][T18408] ____sys_sendmsg+0x9e1/0xb70 [ 778.812602][T18408] ? __pfx_netlink_sendmsg+0x10/0x10 [ 778.812615][T18408] ? __pfx_____sys_sendmsg+0x10/0x10 [ 778.812630][T18408] ? __pfx_futex_wake_mark+0x10/0x10 [ 778.812648][T18408] ___sys_sendmsg+0x190/0x1e0 [ 778.812666][T18408] ? __pfx____sys_sendmsg+0x10/0x10 [ 778.812688][T18408] __sys_sendmsg+0x170/0x220 [ 778.812699][T18408] ? __pfx___sys_sendmsg+0x10/0x10 [ 778.812710][T18408] ? __ia32_sys_futex_time32+0x2f4/0x470 [ 778.812730][T18408] __do_fast_syscall_32+0xe3/0x8c0 [ 778.812744][T18408] do_fast_syscall_32+0x32/0x70 [ 778.812757][T18408] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 778.812771][T18408] RIP: 0023:0xf7fb6f6c [ 778.812782][T18408] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8 [ 778.812794][T18408] RSP: 002b:00000000f543450c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 778.812807][T18408] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000080000040 [ 778.812818][T18408] RDX: 000000000000c080 RSI: 0000000000000000 RDI: 0000000000000000 [ 778.812825][T18408] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 778.812831][T18408] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 778.812838][T18408] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 778.812847][T18408] [ 779.067339][T18408] ‚#{6c: entered promiscuous mode