last executing test programs: 3m7.228124894s ago: executing program 3 (id=3425): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) ioprio_set$pid(0x1, 0x0, 0x0) pipe(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) io_setup(0x3ff, &(0x7f0000000500)=0x0) io_submit(r4, 0x1, &(0x7f0000000300)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, r3, 0x0}]) 3m7.037237443s ago: executing program 3 (id=3430): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) write(r0, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) bind$bt_sco(r3, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8) 3m6.822387335s ago: executing program 3 (id=3435): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) write(r3, 0x0, 0x0) r4 = socket$xdp(0x2c, 0x3, 0x0) mmap$xdp(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x8, 0x12, r4, 0x100000000) 3m6.67352008s ago: executing program 3 (id=3439): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000480)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x12c5008, 0x0) mount$bind(0x0, &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x80000, 0x0) 3m6.482162979s ago: executing program 3 (id=3443): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2100, 0x0) 3m3.98655363s ago: executing program 3 (id=3472): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r4 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_SIOCSIFBR(r4, 0x8941, 0x0) 3m3.78538275s ago: executing program 32 (id=3472): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r4 = socket$pptp(0x18, 0x1, 0x2) ioctl$sock_SIOCSIFBR(r4, 0x8941, 0x0) 5.845020082s ago: executing program 2 (id=5892): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003780)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) socket$inet6_tcp(0xa, 0x1, 0x0) syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r3, &(0x7f0000002e40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c"], 0x20, 0x4000}}], 0x1, 0x801) 3.628954705s ago: executing program 2 (id=5916): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket(0x10, 0x803, 0x0) sendto(r4, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r4, &(0x7f0000009800)=[{{0x0, 0x0, 0x0}, 0x9}, {{0x0, 0x0, 0x0}, 0xe4e}, {{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000dc0)=""/4096, 0x1000}, {&(0x7f0000000080)=""/93, 0x5d}, {&(0x7f0000000a80)=""/200, 0xc8}, {&(0x7f0000000340)=""/158, 0x9e}], 0x4}, 0x81}], 0x3, 0x2142, 0x0) 3.504072147s ago: executing program 5 (id=5920): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) fstat(r4, &(0x7f00000000c0)) fsetxattr$system_posix_acl(r3, &(0x7f0000000000)='system.posix_acl_access\x00', &(0x7f0000000240)=ANY=[@ANYBLOB="0200000001"], 0x54, 0x1) 3.452342073s ago: executing program 0 (id=5921): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000040)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0xe7c) 3.405799567s ago: executing program 2 (id=5923): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) setsockopt$inet6_MCAST_MSFILTER(r3, 0x29, 0x30, &(0x7f0000000800)=ANY=[], 0x290) 3.28143084s ago: executing program 5 (id=5925): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000040)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) 3.276258521s ago: executing program 0 (id=5927): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32=r0, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$CAN_RAW_ERR_FILTER(r4, 0x65, 0x7, 0x0, 0x0) 3.125943985s ago: executing program 0 (id=5929): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r2, 0x0, 0x0) r4 = socket$inet6(0xa, 0x3, 0x4) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) 3.109945237s ago: executing program 5 (id=5930): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x1c2) 3.100438538s ago: executing program 2 (id=5931): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$vsock_stream(0x28, 0x1, 0x0) getsockopt(r4, 0x28, 0x6, 0x0, &(0x7f0000000000)) 2.950268373s ago: executing program 5 (id=5933): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x24000]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000005800)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r3 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r3, 0x0, 0x0, 0x805, 0x0, 0x0) r4 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, 0x0, 0x0) 2.792292619s ago: executing program 5 (id=5935): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket(0x10, 0x803, 0x0) sendto(r4, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r4, &(0x7f0000009800)=[{{0x0, 0x0, 0x0}, 0x9}, {{0x0, 0x0, 0x0}, 0xe4e}, {{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000dc0)=""/4096, 0x1000}, {&(0x7f0000000080)=""/93, 0x5d}, {&(0x7f0000000a80)=""/200, 0xc8}, {&(0x7f0000000340)=""/158, 0x9e}], 0x4}, 0x81}], 0x3, 0x2142, 0x0) 2.651695883s ago: executing program 5 (id=5937): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) open_tree(0xffffffffffffffff, 0x0, 0x40000) 2.540035414s ago: executing program 1 (id=5939): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) 2.433884585s ago: executing program 1 (id=5940): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x440, 0x0, 0x0) r3 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000080), 0x8002, 0x0) ioctl$ASHMEM_SET_SIZE(r3, 0x40087703, 0x1000001) mmap(&(0x7f0000018000/0x2000)=nil, 0x2000, 0xa8ca3411d3c26009, 0x13, r3, 0x22e7c000) 2.417676047s ago: executing program 0 (id=5941): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) syz_clone3(&(0x7f0000000380)={0x200000000, 0x0, 0x0, 0x0, {0x40}, 0x0, 0x0, 0x0, 0x0}, 0x58) 2.244847594s ago: executing program 0 (id=5942): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, 0xffffffffffffffff) 2.157354163s ago: executing program 0 (id=5943): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) r3 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r3, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4) 1.882363601s ago: executing program 2 (id=5947): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) write(r0, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r3, 0x89f3, &(0x7f0000000040)={'ip6tnl0\x00', &(0x7f0000000100)={'syztnl0\x00', 0x0, 0x4, 0xef, 0x9, 0xfb5, 0xe, @rand_addr=' \x01\x00', @mcast2, 0x10, 0x8000, 0x4, 0xc}}) 1.78791345s ago: executing program 4 (id=5948): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r3, 0x0) fcntl$F_SET_RW_HINT(r0, 0x40c, 0x0) 1.658261013s ago: executing program 4 (id=5949): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r4 = socket(0x8000000010, 0x2, 0x0) fgetxattr(r4, &(0x7f0000000040)=@known='trusted.overlay.opaque\x00', 0x0, 0x0) 1.631317896s ago: executing program 2 (id=5950): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r1) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), r2) sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0) ioctl$int_in(r0, 0x5452, &(0x7f0000000500)=0xfffffffffffffa7c) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) close(r4) socket$nl_route(0x10, 0x3, 0x0) ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"}) 1.518775677s ago: executing program 4 (id=5951): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000000a80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$inet6_int(r3, 0x29, 0x19, 0x0, 0x0) 1.399187499s ago: executing program 4 (id=5952): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x4000) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mprotect(&(0x7f000000b000/0x2000)=nil, 0x2000, 0x4) 1.149963834s ago: executing program 1 (id=5953): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, 0xffffffffffffffff) 1.005971519s ago: executing program 1 (id=5954): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) 432.127436ms ago: executing program 1 (id=5955): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) epoll_pwait(0xffffffffffffffff, 0x0, 0x0, 0x40000000, &(0x7f0000000040)={[0x400]}, 0x8) 431.880006ms ago: executing program 4 (id=5956): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendmmsg$inet(r2, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40040) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r4 = socket$igmp6(0xa, 0x3, 0x2) setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x370, 0x170, 0xffffffff, 0xffffffff, 0x170, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00'}, 0x0, 0x100, 0x130, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x3d0) 317.500888ms ago: executing program 1 (id=5957): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x24000]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000005800)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x88e, &(0x7f0000000080)={[{@errors_remount}, {@mblk_io_submit}, {@inlinecrypt}, {@test_dummy_encryption_v1}, {@barrier}, {@mblk_io_submit}, {@nogrpid}]}, 0x3, 0x445, &(0x7f0000000800)="$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") r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) read$FUSE(r4, &(0x7f0000000380)={0x2020}, 0x2020) 0s ago: executing program 4 (id=5958): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mremap(&(0x7f000000d000/0x2000)=nil, 0xfffffffffffffe74, 0x1000, 0x3, &(0x7f0000007000/0x1000)=nil) kernel console output (not intermixed with test programs): ed [ 220.453018][ T8971] FAT-fs (loop2): Directory bread(block 69) failed [ 220.476502][ T8971] FAT-fs (loop2): Directory bread(block 70) failed [ 220.497611][ T8971] FAT-fs (loop2): Directory bread(block 71) failed [ 220.523142][ T8971] FAT-fs (loop2): Directory bread(block 72) failed [ 220.544362][ T8971] FAT-fs (loop2): Directory bread(block 73) failed [ 220.859925][ T26] audit: type=1800 audit(1763351649.426:245): pid=8971 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2062" name="bus" dev="loop2" ino=1048636 res=0 errno=0 [ 220.994421][ T8971] attempt to access beyond end of device [ 220.994421][ T8971] loop2: rw=2049, want=1876, limit=256 [ 221.528490][ T9015] loop0: detected capacity change from 0 to 128 [ 222.148898][ T9034] loop0: detected capacity change from 0 to 256 [ 222.224730][ T9037] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 222.283828][ T9037] overlayfs: option "index=on" is useless in a non-upper mount, ignore [ 222.327277][ T9034] FAT-fs (loop0): Directory bread(block 64) failed [ 222.336272][ T9037] overlayfs: missing 'lowerdir' [ 222.341967][ T9034] FAT-fs (loop0): Directory bread(block 65) failed [ 222.396870][ T9034] FAT-fs (loop0): Directory bread(block 66) failed [ 222.403465][ T9034] FAT-fs (loop0): Directory bread(block 67) failed [ 222.429544][ T9034] FAT-fs (loop0): Directory bread(block 68) failed [ 222.451150][ T9034] FAT-fs (loop0): Directory bread(block 69) failed [ 222.463906][ T9034] FAT-fs (loop0): Directory bread(block 70) failed [ 222.470499][ T9034] FAT-fs (loop0): Directory bread(block 71) failed [ 222.501170][ T9034] FAT-fs (loop0): Directory bread(block 72) failed [ 222.550311][ T9034] FAT-fs (loop0): Directory bread(block 73) failed [ 222.585604][ T9044] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2107'. [ 222.657570][ T9046] loop4: detected capacity change from 0 to 128 [ 222.757315][ T26] audit: type=1800 audit(2000000000.930:246): pid=9034 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2090" name="bus" dev="loop0" ino=1048637 res=0 errno=0 [ 222.884084][ T9034] attempt to access beyond end of device [ 222.884084][ T9034] loop0: rw=2049, want=1876, limit=256 [ 223.313107][ T9056] overlayfs: missing 'lowerdir' [ 223.701469][ T9060] sctp: [Deprecated]: syz.4.2102 (pid 9060) Use of struct sctp_assoc_value in delayed_ack socket option. [ 223.701469][ T9060] Use struct sctp_sack_info instead [ 224.269347][ T26] audit: type=1326 audit(2000000002.440:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9072 comm="syz.4.2108" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efdc20f86c9 code=0x0 [ 224.325673][ T9075] bridge0: port 3(hsr_slave_1) entered blocking state [ 224.367232][ T9075] bridge0: port 3(hsr_slave_1) entered disabled state [ 224.493429][ T26] audit: type=1326 audit(2000000002.660:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9074 comm="syz.1.2109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7fc00000 [ 224.549751][ T26] audit: type=1326 audit(2000000002.660:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9074 comm="syz.1.2109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7fc00000 [ 224.623736][ T26] audit: type=1326 audit(2000000002.660:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9074 comm="syz.1.2109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7fc00000 [ 224.679315][ T26] audit: type=1326 audit(2000000002.660:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9074 comm="syz.1.2109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7fc00000 [ 224.714933][ T26] audit: type=1326 audit(2000000002.660:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9074 comm="syz.1.2109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7fc00000 [ 224.753456][ T26] audit: type=1326 audit(2000000002.660:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9074 comm="syz.1.2109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7fc00000 [ 224.803826][ T26] audit: type=1326 audit(2000000002.660:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9074 comm="syz.1.2109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7fc00000 [ 225.731842][ T9093] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 225.763097][ T9093] overlayfs: option "index=on" is useless in a non-upper mount, ignore [ 225.804066][ T9093] overlayfs: missing 'lowerdir' [ 225.922769][ T9100] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2121'. [ 226.550781][ T9123] tmpfs: Unknown parameter 'noswap' [ 226.739734][ T9129] loop0: detected capacity change from 0 to 2048 [ 226.900602][ T9129] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 227.109352][ T9145] loop3: detected capacity change from 0 to 256 [ 227.273042][ T9145] FAT-fs (loop3): Directory bread(block 64) failed [ 227.334010][ T9145] FAT-fs (loop3): Directory bread(block 65) failed [ 227.371132][ T9145] FAT-fs (loop3): Directory bread(block 66) failed [ 227.438867][ T9145] FAT-fs (loop3): Directory bread(block 67) failed [ 227.466368][ T9145] FAT-fs (loop3): Directory bread(block 68) failed [ 227.503491][ T9145] FAT-fs (loop3): Directory bread(block 69) failed [ 227.531207][ T9145] FAT-fs (loop3): Directory bread(block 70) failed [ 227.564959][ T9145] FAT-fs (loop3): Directory bread(block 71) failed [ 227.571631][ T9145] FAT-fs (loop3): Directory bread(block 72) failed [ 227.604914][ T9145] FAT-fs (loop3): Directory bread(block 73) failed [ 227.891378][ T26] kauditd_printk_skb: 60 callbacks suppressed [ 227.891394][ T26] audit: type=1800 audit(2000000006.060:315): pid=9145 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2111" name="bus" dev="loop3" ino=1048638 res=0 errno=0 [ 228.470251][ T9192] loop4: detected capacity change from 0 to 2048 [ 228.649198][ T9192] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 228.722669][ T9207] loop3: detected capacity change from 0 to 256 [ 228.846504][ T9207] FAT-fs (loop3): Directory bread(block 64) failed [ 228.853091][ T9207] FAT-fs (loop3): Directory bread(block 65) failed [ 228.863901][ T9207] FAT-fs (loop3): Directory bread(block 66) failed [ 228.870565][ T9207] FAT-fs (loop3): Directory bread(block 67) failed [ 228.915245][ T9207] FAT-fs (loop3): Directory bread(block 68) failed [ 228.921834][ T9207] FAT-fs (loop3): Directory bread(block 69) failed [ 228.957352][ T9207] FAT-fs (loop3): Directory bread(block 70) failed [ 228.974803][ T9207] FAT-fs (loop3): Directory bread(block 71) failed [ 229.012455][ T9207] FAT-fs (loop3): Directory bread(block 72) failed [ 229.147286][ T9207] FAT-fs (loop3): Directory bread(block 73) failed [ 230.155578][ T26] audit: type=1804 audit(2000000008.330:316): pid=9207 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2170" name="/newroot/434/file1/bus" dev="loop3" ino=1048639 res=1 errno=0 [ 230.241076][ T26] audit: type=1800 audit(2000000008.370:317): pid=9207 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2170" name="bus" dev="loop3" ino=1048639 res=0 errno=0 [ 230.408026][ T9239] overlayfs: failed to resolve '/': -2 [ 230.424559][ T4975] attempt to access beyond end of device [ 230.424559][ T4975] loop3: rw=1, want=1876, limit=256 [ 231.326325][ T9288] overlayfs: missing 'lowerdir' [ 231.746577][ T9310] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2214'. [ 232.408206][ T26] audit: type=1326 audit(2000000010.580:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 232.504117][ T26] audit: type=1326 audit(2000000010.610:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 232.588823][ T26] audit: type=1326 audit(2000000010.624:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 232.728268][ T26] audit: type=1326 audit(2000000010.624:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 232.803131][ T9363] overlayfs: overlapping lowerdir path [ 232.803747][ T26] audit: type=1326 audit(2000000010.624:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 232.959532][ T26] audit: type=1326 audit(2000000010.624:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 233.111920][ T26] audit: type=1326 audit(2000000010.624:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 233.163810][ T26] audit: type=1326 audit(2000000010.624:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 233.186724][ T26] audit: type=1326 audit(2000000010.624:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 233.721681][ T26] audit: type=1326 audit(2000000010.624:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 233.986319][ T26] audit: type=1326 audit(2000000010.624:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 234.009222][ T26] audit: type=1326 audit(2000000010.624:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 234.032324][ T26] audit: type=1326 audit(2000000010.624:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 234.054970][ T26] audit: type=1326 audit(2000000010.624:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 234.078626][ T26] audit: type=1326 audit(2000000010.624:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9341 comm="syz.4.2231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 234.405901][ T9399] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2257'. [ 234.604097][ T9409] binder: 9408:9409 ioctl 4018620d 0 returned -22 [ 234.690856][ T9415] netlink: 'syz.4.2263': attribute type 17 has an invalid length. [ 234.908984][ T9429] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2272'. [ 237.075414][ T9492] overlayfs: unrecognized mount option "?Zug=2Dt.ٵn 1GE-"fhǏ!%Tɠΰ8YP9)-N5\\ϰx=mjYp1kW'<m{ѥ{wгQKSm@YQK8?rjj 1\{>1Q!@dRN ;+!sׂ3~&R~5tfG MY!K0Xll~" or missing value [ 237.082888][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #300!!! [ 237.421871][ T9509] fuse: Bad value for 'fd' [ 240.742176][ T9574] netlink: 1004 bytes leftover after parsing attributes in process `syz.1.2335'. [ 241.097417][ T9588] loop1: detected capacity change from 0 to 512 [ 241.251353][ T9588] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: inode #11: comm syz.1.2343: ea_inode with extended attributes [ 241.303591][ T9588] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.2343: error while reading EA inode 11 err=-117 [ 241.349075][ T9588] EXT4-fs (loop1): 1 orphan inode deleted [ 241.362539][ T9588] EXT4-fs (loop1): mounted filesystem without journal. Opts: nodioread_nolock,journal_dev=0x00000000000000ff,debug_want_extra_isize=0x000000000000004c,nouid32,resgid=0x0000000000000000,acl,init_itable=0x0000000000008d55,,errors=continue. Quota mode: none. [ 242.132698][ T9647] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 242.161897][ T9650] loop4: detected capacity change from 0 to 512 [ 242.304218][ T9650] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #11: comm syz.4.2365: ea_inode with extended attributes [ 242.347405][ T9650] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.2365: error while reading EA inode 11 err=-117 [ 242.405784][ T9650] EXT4-fs (loop4): 1 orphan inode deleted [ 242.414376][ T9650] EXT4-fs (loop4): mounted filesystem without journal. Opts: nodioread_nolock,journal_dev=0x00000000000000ff,debug_want_extra_isize=0x000000000000004c,nouid32,resgid=0x0000000000000000,acl,init_itable=0x0000000000008d55,,errors=continue. Quota mode: none. [ 243.244326][ T9695] loop0: detected capacity change from 0 to 512 [ 243.365761][ T9695] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #11: comm syz.0.2387: ea_inode with extended attributes [ 243.425242][ T9695] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.2387: error while reading EA inode 11 err=-117 [ 243.464819][ T9695] EXT4-fs (loop0): 1 orphan inode deleted [ 243.531329][ T9695] EXT4-fs (loop0): mounted filesystem without journal. Opts: nodioread_nolock,journal_dev=0x00000000000000ff,debug_want_extra_isize=0x000000000000004c,nouid32,resgid=0x0000000000000000,acl,init_itable=0x0000000000008d55,,errors=continue. Quota mode: none. [ 244.024455][ T9724] netlink: 1004 bytes leftover after parsing attributes in process `syz.0.2401'. [ 246.108443][ T9754] loop3: detected capacity change from 0 to 512 [ 246.172356][ T9761] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 246.213529][ T9762] binder: 9760:9762 ioctl 4018620d 0 returned -22 [ 246.302631][ T9761] A link change request failed with some changes committed already. Interface bond_slave_0 may have been left with an inconsistent configuration, please check. [ 246.425084][ T9754] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: inode #11: comm syz.3.2411: ea_inode with extended attributes [ 246.556980][ T9765] netlink: 'syz.0.2417': attribute type 17 has an invalid length. [ 246.574411][ T9754] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.2411: error while reading EA inode 11 err=-117 [ 247.970789][ T9754] EXT4-fs (loop3): 1 orphan inode deleted [ 248.017920][ T9754] EXT4-fs (loop3): mounted filesystem without journal. Opts: nodioread_nolock,journal_dev=0x00000000000000ff,debug_want_extra_isize=0x000000000000004c,nouid32,resgid=0x0000000000000000,acl,init_itable=0x0000000000008d55,,errors=continue. Quota mode: none. [ 248.173457][ T9783] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2433'. [ 248.225534][ T9783] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2433'. [ 248.243719][ T9783] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2433'. [ 248.269101][ T9783] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2433'. [ 249.404669][ T9814] binder: Binderfs stats mode cannot be changed during a remount [ 249.548337][ T9820] netlink: 68 bytes leftover after parsing attributes in process `syz.4.2440'. [ 249.737852][ T9829] loop4: detected capacity change from 0 to 256 [ 250.166897][ T9829] FAT-fs (loop4): Directory bread(block 64) failed [ 250.191182][ T9829] FAT-fs (loop4): Directory bread(block 65) failed [ 250.213265][ T9829] FAT-fs (loop4): Directory bread(block 66) failed [ 250.246873][ T9829] FAT-fs (loop4): Directory bread(block 67) failed [ 250.326487][ T9829] FAT-fs (loop4): Directory bread(block 68) failed [ 250.333111][ T9829] FAT-fs (loop4): Directory bread(block 69) failed [ 250.443902][ T9829] FAT-fs (loop4): Directory bread(block 70) failed [ 250.450603][ T9829] FAT-fs (loop4): Directory bread(block 71) failed [ 250.473440][ T9829] FAT-fs (loop4): Directory bread(block 72) failed [ 250.508453][ T9829] FAT-fs (loop4): Directory bread(block 73) failed [ 251.299788][ T26] kauditd_printk_skb: 32 callbacks suppressed [ 251.299803][ T26] audit: type=1800 audit(2000000029.464:365): pid=9829 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2445" name="bus" dev="loop4" ino=1048642 res=0 errno=0 [ 251.436810][ T9829] attempt to access beyond end of device [ 251.436810][ T9829] loop4: rw=2049, want=1876, limit=256 [ 251.718403][ T9871] netlink: 'syz.0.2462': attribute type 8 has an invalid length. [ 252.572961][ T9901] netlink: 76 bytes leftover after parsing attributes in process `syz.4.2476'. [ 252.617565][ T26] audit: type=1326 audit(2000000030.784:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9903 comm="syz.0.2478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17a05b36c9 code=0x7ffc0000 [ 252.664108][ T9901] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2476'. [ 252.681959][ T26] audit: type=1326 audit(2000000030.784:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9903 comm="syz.0.2478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17a05b36c9 code=0x7ffc0000 [ 252.723823][ T9901] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2476'. [ 252.739893][ T9901] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2476'. [ 252.779574][ T26] audit: type=1326 audit(2000000030.844:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9903 comm="syz.0.2478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f17a05b36c9 code=0x7ffc0000 [ 252.939223][ T26] audit: type=1326 audit(2000000030.844:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9903 comm="syz.0.2478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17a05b36c9 code=0x7ffc0000 [ 253.027492][ T26] audit: type=1326 audit(2000000030.844:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9903 comm="syz.0.2478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17a05b36c9 code=0x7ffc0000 [ 253.148325][ T26] audit: type=1326 audit(2000000030.844:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9903 comm="syz.0.2478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f17a05b36c9 code=0x7ffc0000 [ 253.185325][ T26] audit: type=1326 audit(2000000030.844:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9903 comm="syz.0.2478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17a05b36c9 code=0x7ffc0000 [ 253.246832][ T26] audit: type=1326 audit(2000000030.844:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9903 comm="syz.0.2478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17a05b36c9 code=0x7ffc0000 [ 253.623915][ T26] audit: type=1326 audit(2000000030.844:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9903 comm="syz.0.2478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f17a05b36c9 code=0x7ffc0000 [ 257.784162][ T1422] ieee802154 phy0 wpan0: encryption failed: -22 [ 257.790521][ T1422] ieee802154 phy1 wpan1: encryption failed: -22 [ 258.618759][T10003] loop4: detected capacity change from 0 to 2048 [ 258.702587][ T4935] loop4: p1 < > p4 < > [ 258.767435][T10003] loop4: p1 < > p4 < > [ 258.868968][T10018] device geneve2 entered promiscuous mode [ 258.869283][ T3562] loop4: p1 < > p4 < > [ 258.990538][ T4288] udevd[4288]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 258.990670][ T4935] udevd[4935]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 259.180810][T10027] af_packet: tpacket_rcv: packet too big, clamped from 40 to 4294967272. macoff=96 [ 259.184321][T10031] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2534'. [ 259.229044][T10032] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability [ 259.261146][ T4935] udevd[4935]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 259.262421][ T4288] udevd[4288]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 259.391199][ T4935] udevd[4935]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 259.394205][ T4288] udevd[4288]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 259.851846][T10052] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2543'. [ 260.327899][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #40!!! [ 260.532485][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #100!!! [ 260.542121][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #240!!! [ 260.553704][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #02!!! [ 260.562761][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #02!!! [ 261.343792][T10080] netlink: 188 bytes leftover after parsing attributes in process `syz.1.2555'. [ 262.967792][T10124] netlink: 628 bytes leftover after parsing attributes in process `syz.4.2573'. [ 263.013967][T10125] netlink: 'syz.0.2574': attribute type 4 has an invalid length. [ 263.030813][T10125] netlink: 17 bytes leftover after parsing attributes in process `syz.0.2574'. [ 263.346701][T10138] netlink: 80 bytes leftover after parsing attributes in process `syz.4.2580'. [ 265.384790][T10178] netlink: 'syz.1.2597': attribute type 4 has an invalid length. [ 265.392569][T10178] netlink: 17 bytes leftover after parsing attributes in process `syz.1.2597'. [ 265.699416][T10193] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2604'. [ 265.743592][T10198] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2607'. [ 265.762011][T10198] tc_dump_action: action bad kind [ 265.812057][T10200] netlink: 'syz.0.2608': attribute type 4 has an invalid length. [ 265.930139][T10205] netlink: 'syz.0.2608': attribute type 4 has an invalid length. [ 266.141873][T10219] loop1: detected capacity change from 0 to 256 [ 266.696371][T10240] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2627'. [ 267.570936][T10270] netlink: 'syz.2.2639': attribute type 4 has an invalid length. [ 267.604416][T10270] netlink: 17 bytes leftover after parsing attributes in process `syz.2.2639'. [ 268.742348][T10300] loop3: detected capacity change from 0 to 256 [ 268.863565][T10300] FAT-fs (loop3): Directory bread(block 64) failed [ 268.887740][T10300] FAT-fs (loop3): Directory bread(block 65) failed [ 268.900370][T10300] FAT-fs (loop3): Directory bread(block 66) failed [ 268.915582][T10300] FAT-fs (loop3): Directory bread(block 67) failed [ 268.923241][T10300] FAT-fs (loop3): Directory bread(block 68) failed [ 268.945205][T10300] FAT-fs (loop3): Directory bread(block 69) failed [ 268.951861][T10300] FAT-fs (loop3): Directory bread(block 70) failed [ 269.032122][T10300] FAT-fs (loop3): Directory bread(block 71) failed [ 269.049320][T10300] FAT-fs (loop3): Directory bread(block 72) failed [ 269.069558][T10300] FAT-fs (loop3): Directory bread(block 73) failed [ 269.315017][ T26] kauditd_printk_skb: 29 callbacks suppressed [ 269.315032][ T26] audit: type=1800 audit(2000000047.484:404): pid=10300 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2653" name="bus" dev="loop3" ino=1048643 res=0 errno=0 [ 269.679990][T10337] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2671'. [ 270.114359][T10346] loop2: detected capacity change from 0 to 512 [ 271.245914][T10346] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #11: comm syz.2.2672: ea_inode with extended attributes [ 271.258123][T10355] loop4: detected capacity change from 0 to 256 [ 271.274955][T10346] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.2672: error while reading EA inode 11 err=-117 [ 271.319429][T10346] EXT4-fs (loop2): 1 orphan inode deleted [ 271.327122][T10346] EXT4-fs (loop2): mounted filesystem without journal. Opts: nodioread_nolock,journal_dev=0x00000000000000ff,debug_want_extra_isize=0x000000000000004c,nouid32,resgid=0x0000000000000000,acl,init_itable=0x0000000000008d55,,errors=continue. Quota mode: none. [ 271.485029][T10355] FAT-fs (loop4): Directory bread(block 64) failed [ 271.503720][T10355] FAT-fs (loop4): Directory bread(block 65) failed [ 271.508209][T10365] netlink: 'syz.1.2681': attribute type 4 has an invalid length. [ 271.521581][T10355] FAT-fs (loop4): Directory bread(block 66) failed [ 271.541655][T10355] FAT-fs (loop4): Directory bread(block 67) failed [ 271.610220][T10367] netlink: 'syz.1.2681': attribute type 4 has an invalid length. [ 271.640424][T10355] FAT-fs (loop4): Directory bread(block 68) failed [ 271.668669][T10355] FAT-fs (loop4): Directory bread(block 69) failed [ 271.679751][T10355] FAT-fs (loop4): Directory bread(block 70) failed [ 271.696451][T10355] FAT-fs (loop4): Directory bread(block 71) failed [ 271.706733][T10355] FAT-fs (loop4): Directory bread(block 72) failed [ 271.723972][T10355] FAT-fs (loop4): Directory bread(block 73) failed [ 271.933868][ T26] audit: type=1800 audit(2000000050.104:405): pid=10355 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2676" name="bus" dev="loop4" ino=1048644 res=0 errno=0 [ 272.051801][T10380] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2687'. [ 272.164924][T10384] netlink: 'syz.2.2690': attribute type 4 has an invalid length. [ 272.172698][T10384] netlink: 'syz.2.2690': attribute type 5 has an invalid length. [ 272.253008][T10384] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.2690'. [ 272.298713][T10387] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2688'. [ 272.312329][ T26] audit: type=1326 audit(2000000050.474:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10389 comm="syz.1.2692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 272.333859][T10387] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 272.382786][T10387] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 272.402030][ T26] audit: type=1326 audit(2000000050.504:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10389 comm="syz.1.2692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 272.431601][T10387] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 272.458226][T10387] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 272.517351][ T26] audit: type=1326 audit(2000000050.504:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10389 comm="syz.1.2692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 272.575287][ T26] audit: type=1326 audit(2000000050.504:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10389 comm="syz.1.2692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 272.695798][ T26] audit: type=1326 audit(2000000050.504:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10389 comm="syz.1.2692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 272.807168][ T26] audit: type=1326 audit(2000000050.514:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10389 comm="syz.1.2692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 272.893955][ T26] audit: type=1326 audit(2000000050.514:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10389 comm="syz.1.2692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 272.983704][ T26] audit: type=1326 audit(2000000050.514:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10389 comm="syz.1.2692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 273.100628][T10427] loop1: detected capacity change from 0 to 128 [ 273.158791][T10427] FAT-fs (loop1): Directory bread(block 414) failed [ 273.203907][T10427] FAT-fs (loop1): Directory bread(block 415) failed [ 273.235088][T10427] FAT-fs (loop1): Directory bread(block 416) failed [ 273.252203][T10427] FAT-fs (loop1): Directory bread(block 417) failed [ 273.258970][T10427] FAT-fs (loop1): Directory bread(block 418) failed [ 273.272610][T10437] overlayfs: missing 'lowerdir' [ 273.287195][T10427] FAT-fs (loop1): Directory bread(block 419) failed [ 273.302192][T10427] FAT-fs (loop1): Directory bread(block 420) failed [ 273.353856][T10427] FAT-fs (loop1): Directory bread(block 421) failed [ 273.879715][T10467] netlink: 'syz.2.2729': attribute type 4 has an invalid length. [ 273.997130][T10470] netlink: 'syz.2.2729': attribute type 4 has an invalid length. [ 274.043498][T10474] loop3: detected capacity change from 0 to 128 [ 274.088726][T10474] FAT-fs (loop3): Directory bread(block 414) failed [ 274.109524][T10474] FAT-fs (loop3): Directory bread(block 415) failed [ 274.133826][T10474] FAT-fs (loop3): Directory bread(block 416) failed [ 274.160876][T10474] FAT-fs (loop3): Directory bread(block 417) failed [ 274.183979][T10474] FAT-fs (loop3): Directory bread(block 418) failed [ 274.195043][T10474] FAT-fs (loop3): Directory bread(block 419) failed [ 274.207768][T10474] FAT-fs (loop3): Directory bread(block 420) failed [ 274.223886][T10474] FAT-fs (loop3): Directory bread(block 421) failed [ 275.874041][T10518] xt_CT: No such helper "pptp" [ 276.687787][T10566] netlink: 140 bytes leftover after parsing attributes in process `syz.4.2772'. [ 276.765342][T10570] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2775'. [ 277.969116][T10603] xt_CT: No such helper "pptp" [ 278.136429][T10610] TCP: TCP_TX_DELAY enabled [ 278.245033][T10616] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2793'. [ 278.577838][T10635] loop1: detected capacity change from 0 to 256 [ 278.841052][T10635] FAT-fs (loop1): Unrecognized mount option "smackfsroot=shortname=mixed" or missing value [ 280.564595][T10683] loop0: detected capacity change from 0 to 2048 [ 280.613037][T10691] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2828'. [ 280.706516][T10683] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 280.763785][ T4246] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 281.053768][ T4246] usb 5-1: Using ep0 maxpacket: 8 [ 281.130034][T10708] loop2: detected capacity change from 0 to 256 [ 281.176385][ T4246] usb 5-1: too many endpoints for config 0 interface 0 altsetting 250: 251, using maximum allowed: 30 [ 281.205888][ T4246] usb 5-1: config 0 interface 0 altsetting 250 has 1 endpoint descriptor, different from the interface descriptor's value: 251 [ 281.240679][ T4246] usb 5-1: config 0 interface 0 has no altsetting 0 [ 281.275031][ T4246] usb 5-1: New USB device found, idVendor=13ec, idProduct=0006, bcdDevice= 0.00 [ 281.296227][ T4246] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 281.328704][ T4246] usb 5-1: config 0 descriptor?? [ 281.723816][ T4246] usbhid 5-1:0.0: can't add hid device: -71 [ 281.730020][ T4246] usbhid: probe of 5-1:0.0 failed with error -71 [ 281.768565][ T4246] usb 5-1: USB disconnect, device number 7 [ 282.017674][T10742] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2851'. [ 282.156213][ T26] kauditd_printk_skb: 14 callbacks suppressed [ 282.156229][ T26] audit: type=1326 audit(2000000060.324:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10751 comm="syz.3.2856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f263826c9 code=0x7ffc0000 [ 282.276695][ T26] audit: type=1326 audit(2000000060.364:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10751 comm="syz.3.2856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f263826c9 code=0x7ffc0000 [ 282.360665][ T26] audit: type=1326 audit(2000000060.364:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10751 comm="syz.3.2856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f2f263826c9 code=0x7ffc0000 [ 282.439861][ T26] audit: type=1326 audit(2000000060.364:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10751 comm="syz.3.2856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f263826c9 code=0x7ffc0000 [ 282.535783][ T26] audit: type=1326 audit(2000000060.364:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10751 comm="syz.3.2856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f263826c9 code=0x7ffc0000 [ 282.628364][ T26] audit: type=1326 audit(2000000060.364:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10751 comm="syz.3.2856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2f263826c9 code=0x7ffc0000 [ 282.685123][ T26] audit: type=1326 audit(2000000060.364:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10751 comm="syz.3.2856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f263826c9 code=0x7ffc0000 [ 282.780491][ T26] audit: type=1326 audit(2000000060.364:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10751 comm="syz.3.2856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f263826c9 code=0x7ffc0000 [ 282.861704][ T26] audit: type=1326 audit(2000000060.374:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10751 comm="syz.3.2856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2f263826c9 code=0x7ffc0000 [ 282.962200][ T26] audit: type=1326 audit(2000000060.374:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10751 comm="syz.3.2856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f263826c9 code=0x7ffc0000 [ 284.773778][ T4246] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 284.996523][T10843] binder: 10842:10843 ioctl 4018620d 0 returned -22 [ 285.063816][ T4246] usb 3-1: Using ep0 maxpacket: 8 [ 285.203960][ T4246] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 285.230759][ T4246] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 285.272931][ T4246] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 65312, setting to 1024 [ 285.295028][T10854] netlink: 'syz.0.2896': attribute type 4 has an invalid length. [ 285.310879][ T4246] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 285.334997][ T4246] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 285.378711][ T4246] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 285.413789][ T4246] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 285.619274][T10863] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2901'. [ 285.724029][ T4246] usb 3-1: GET_CAPABILITIES returned 0 [ 285.729628][ T4246] usbtmc 3-1:16.0: can't read capabilities [ 286.063772][ C0] usbtmc 3-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 286.075501][ C0] usbtmc 3-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 286.084637][ C0] usbtmc 3-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 286.093745][ C0] usbtmc 3-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 286.102882][ C0] usbtmc 3-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 286.112005][ C0] usbtmc 3-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 286.121123][ C0] usbtmc 3-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 286.130234][ C0] usbtmc 3-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 286.139346][ C0] usbtmc 3-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 286.148464][ C0] usbtmc 3-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 286.157578][ C0] usbtmc 3-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 286.166703][ C0] usbtmc 3-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 286.175816][ C0] usbtmc 3-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 286.184931][ C0] usbtmc 3-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 286.194163][ C0] usbtmc 3-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 286.203292][ C0] usbtmc 3-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 286.227471][T10881] loop4: detected capacity change from 0 to 128 [ 286.254092][ T13] usb 3-1: USB disconnect, device number 7 [ 286.838754][T10908] netlink: 268 bytes leftover after parsing attributes in process `syz.4.2921'. [ 286.885089][T10907] binder: Unknown parameter 'context' [ 286.943001][T10914] loop3: detected capacity change from 0 to 512 [ 287.012753][T10918] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2927'. [ 287.067162][T10914] EXT4-fs (loop3): Ignoring removed mblk_io_submit option [ 287.079967][T10914] EXT4-fs (loop3): inline encryption not supported [ 287.096947][T10914] EXT4-fs (loop3): Test dummy encryption mode enabled [ 287.115705][T10914] EXT4-fs (loop3): Ignoring removed mblk_io_submit option [ 287.147917][T10914] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 287.167193][T10926] IPv6: NLM_F_CREATE should be specified when creating new route [ 287.209601][T10914] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 287.277166][T10914] EXT4-fs (loop3): 1 truncate cleaned up [ 287.322724][T10914] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,mblk_io_submit,inlinecrypt,test_dummy_encryption=v1,barrier,mblk_io_submit,nogrpid,. Quota mode: none. [ 287.466693][ T13] usb 3-1: new full-speed USB device number 8 using dummy_hcd [ 287.767007][T10914] fscrypt (loop3): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 287.844195][ T13] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 287.887315][ T13] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0 [ 287.920397][ T13] usb 3-1: config 0 interface 0 has no altsetting 0 [ 287.944304][ T13] usb 3-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00 [ 287.966999][ T13] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 287.999939][ T13] usb 3-1: config 0 descriptor?? [ 288.172227][ T26] kauditd_printk_skb: 30 callbacks suppressed [ 288.172245][ T26] audit: type=1326 audit(2000000066.337:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10977 comm="syz.4.2952" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efdc20f86c9 code=0x0 [ 288.589736][ T13] hid-steam 0003:28DE:1102.0001: unknown main item tag 0x0 [ 288.628184][ T13] hid-steam 0003:28DE:1102.0001: unknown main item tag 0x0 [ 288.648381][ T13] hid-steam 0003:28DE:1102.0001: unknown main item tag 0x0 [ 288.665569][ T13] hid-steam 0003:28DE:1102.0001: unknown main item tag 0x0 [ 288.703414][ T13] hid-steam 0003:28DE:1102.0001: unknown main item tag 0x0 [ 288.745565][ T13] hid-steam 0003:28DE:1102.0001: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.2-1/input0 [ 288.905728][T11013] netlink: 268 bytes leftover after parsing attributes in process `syz.0.2964'. [ 288.962005][ T2302] usb 3-1: USB disconnect, device number 8 [ 289.087707][T11010] fido_id[11010]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory [ 289.988392][T11063] binder: Unknown parameter 'context' [ 292.250894][T11126] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3018'. [ 292.278377][T11126] device sit0 entered promiscuous mode [ 292.638162][T11104] futex_wake_op: syz.3.3008 tries to shift op by -1; fix this program [ 292.785683][T11150] x_tables: arp_tables: CLASSIFY target: used from hooks INPUT, but only usable from FORWARD/OUTPUT [ 293.106998][T11161] loop4: detected capacity change from 0 to 2048 [ 293.214569][T11161] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 293.230227][T11164] loop2: detected capacity change from 0 to 512 [ 293.308701][T11164] EXT4-fs (loop2): journaled quota format not specified [ 293.663741][ T4246] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 293.954135][ T4246] usb 2-1: Using ep0 maxpacket: 8 [ 294.049111][ T4970] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1147: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 294.107483][ T4246] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 294.168336][ T4246] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 294.176653][ T4970] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1102 with error 28 [ 294.213534][ T4246] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 65312, setting to 1024 [ 294.235801][ T4970] EXT4-fs (loop4): This should not happen!! Data will be lost [ 294.235801][ T4970] [ 294.240833][ T4246] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 294.269279][ T4970] EXT4-fs (loop4): Total free blocks count 0 [ 294.294450][ T4970] EXT4-fs (loop4): Free/Dirty block details [ 294.299005][ T4246] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 294.300832][ T4970] EXT4-fs (loop4): free_blocks=2415919504 [ 294.354893][ T4246] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 294.367491][ T4246] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 294.604366][ T4970] EXT4-fs (loop4): dirty_blocks=1104 [ 294.683928][ T4970] EXT4-fs (loop4): Block reservation details [ 294.780710][ T4970] EXT4-fs (loop4): i_reserved_data_blocks=69 [ 294.834172][ T4246] usb 2-1: GET_CAPABILITIES returned 0 [ 294.841152][ T4246] usbtmc 2-1:16.0: can't read capabilities [ 295.603692][ C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 295.613003][ C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 295.622116][ C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 295.631216][ C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 295.640412][ C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 295.649512][ C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 295.658609][ C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 295.667704][ C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 295.676801][ C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 295.685908][ C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 295.694997][ C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 295.704102][ C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 295.713293][ C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 295.722398][ C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 295.731501][ C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 295.740601][ C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -2 [ 295.788604][ T2302] usb 2-1: USB disconnect, device number 5 [ 296.427422][T11225] netlink: 'syz.2.3058': attribute type 4 has an invalid length. [ 296.473754][T11225] netlink: 'syz.2.3058': attribute type 5 has an invalid length. [ 296.508013][T11225] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.3058'. [ 296.947497][T11242] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3089888063 (3089888063 ns) > initial count (2126324423 ns). Using initial count to start timer. [ 298.857776][T11293] netlink: 36 bytes leftover after parsing attributes in process `syz.1.3089'. [ 298.873794][T11293] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3089'. [ 298.948251][T11293] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3089'. [ 299.003524][T11293] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3089'. [ 299.281059][T11317] overlayfs: failed to resolve './file0/file0': -2 [ 299.393392][T11321] netlink: 'syz.1.3103': attribute type 1 has an invalid length. [ 299.709420][T11341] netlink: 68 bytes leftover after parsing attributes in process `syz.2.3112'. [ 300.966417][T11419] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3151'. [ 300.978730][T11420] netlink: 'syz.0.3150': attribute type 21 has an invalid length. [ 301.351563][T11443] loop1: detected capacity change from 0 to 2048 [ 301.418766][T11443] loop1: p1 < > p4 < > [ 301.703974][T11463] fuse: Invalid rootmode [ 301.747444][T10733] udevd[10733]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 301.757591][ T4935] udevd[4935]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory [ 301.926774][ T4935] udevd[4935]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory [ 301.947690][T10733] udevd[10733]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 302.525374][T11509] syz.1.3193 uses obsolete (PF_INET,SOCK_PACKET) [ 302.637440][ T26] audit: type=1326 audit(2000000080.807:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11510 comm="syz.2.3194" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6679e8f6c9 code=0x0 [ 302.967515][T11534] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3203'. [ 303.257913][T11545] loop4: detected capacity change from 0 to 2048 [ 303.329363][ T4935] loop4: p1 < > p4 < > [ 303.368198][T11545] loop4: p1 < > p4 < > [ 303.759320][T11575] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3223'. [ 303.877792][ T4935] udevd[4935]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 303.880349][T11586] netlink: 'syz.3.3228': attribute type 4 has an invalid length. [ 303.899258][T10733] udevd[10733]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 303.904267][T11586] netlink: 17 bytes leftover after parsing attributes in process `syz.3.3228'. [ 304.102229][T10733] udevd[10733]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 304.112990][ T4935] udevd[4935]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 305.493244][T11633] netlink: 204 bytes leftover after parsing attributes in process `syz.1.3248'. [ 305.937030][T11651] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3256'. [ 306.395345][T11681] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3271'. [ 306.422064][T11681] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3271'. [ 306.554983][T11691] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3276'. [ 306.698460][T11700] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3279'. [ 306.861894][T11708] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 307.004451][T11710] loop4: detected capacity change from 0 to 2048 [ 307.066018][ T4935] Alternate GPT is invalid, using primary GPT. [ 307.082916][ T4935] loop4: p2 p3 p7 [ 307.137445][T11710] Alternate GPT is invalid, using primary GPT. [ 307.151908][T11710] loop4: p2 p3 p7 [ 307.452863][ T26] audit: type=1326 audit(2000000085.567:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11686 comm="syz.1.3274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7fc00000 [ 308.560722][ T4935] udevd[4935]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory [ 308.578023][ T4288] udevd[4288]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 308.585157][T11737] loop0: detected capacity change from 0 to 2048 [ 308.592826][T11507] udevd[11507]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory [ 308.673369][ T4288] udevd[4288]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 308.688869][T11507] udevd[11507]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory [ 308.702794][ T4935] udevd[4935]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory [ 308.724730][T11737] loop0: p1 < > p4 < > [ 308.933749][T10733] udevd[10733]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 308.936843][ T4935] udevd[4935]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 309.005950][ T4935] udevd[4935]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 309.019074][T10733] udevd[10733]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 309.402013][ T4185] Bluetooth: hci3: Received unexpected HCI Event 00000000 [ 310.230931][T11825] fuse: Bad value for 'fd' [ 310.932723][T11870] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3357'. [ 311.271047][T11891] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3367'. [ 311.304728][T11891] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3367'. [ 311.383329][T11899] overlayfs: missing 'lowerdir' [ 311.482153][T11901] netlink: 100 bytes leftover after parsing attributes in process `syz.1.3374'. [ 311.500323][T11903] loop2: detected capacity change from 0 to 128 [ 311.558554][T11903] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option [ 311.608075][T11903] EXT4-fs (loop2): Ignoring removed oldalloc option [ 311.651817][T11903] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,grpjquota=,nomblk_io_submit,jqfmt=vfsold,oldalloc,,errors=continue. Quota mode: writeback. [ 311.773965][T11903] ext4 filesystem being mounted at /693/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 312.613828][T11960] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3398'. [ 313.058654][T11959] loop3: detected capacity change from 0 to 128 [ 313.491124][T11959] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option [ 313.523799][T11959] EXT4-fs (loop3): Ignoring removed oldalloc option [ 313.576412][T11959] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpquota,grpjquota=,nomblk_io_submit,jqfmt=vfsold,oldalloc,,errors=continue. Quota mode: writeback. [ 313.657035][T11959] ext4 filesystem being mounted at /676/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 315.290413][T12009] loop4: detected capacity change from 0 to 128 [ 315.381054][T12009] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option [ 315.419822][T12009] EXT4-fs (loop4): Ignoring removed oldalloc option [ 315.484675][T12009] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,grpjquota=,nomblk_io_submit,jqfmt=vfsold,oldalloc,,errors=continue. Quota mode: writeback. [ 315.547106][T12009] ext4 filesystem being mounted at /672/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 315.871607][T12046] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3438'. [ 317.779831][T12091] loop0: detected capacity change from 0 to 128 [ 317.823029][T12094] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3460'. [ 317.837845][T12091] FAT-fs (loop0): Unrecognized mount option "" or missing value [ 317.868393][ T26] audit: type=1326 audit(2000000096.037:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12092 comm="syz.2.3461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 317.944432][ T26] audit: type=1326 audit(2000000096.067:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12092 comm="syz.2.3461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 318.016233][ T26] audit: type=1326 audit(2000000096.107:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12092 comm="syz.2.3461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 318.041733][ T26] audit: type=1326 audit(2000000096.107:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12092 comm="syz.2.3461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 318.097084][ T26] audit: type=1326 audit(2000000096.107:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12092 comm="syz.2.3461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 318.127948][ T26] audit: type=1326 audit(2000000096.107:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12092 comm="syz.2.3461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 318.155613][ T26] audit: type=1326 audit(2000000096.107:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12092 comm="syz.2.3461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 318.178717][ T26] audit: type=1326 audit(2000000096.107:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12092 comm="syz.2.3461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 318.209564][ T26] audit: type=1326 audit(2000000096.287:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12100 comm="syz.4.3464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc20f86c9 code=0x7fc00000 [ 318.214558][T12109] loop1: detected capacity change from 0 to 128 [ 318.292819][T12109] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option [ 318.301819][T12109] EXT4-fs (loop1): Ignoring removed oldalloc option [ 318.309906][T12111] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3467'. [ 318.318901][T12109] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,grpjquota=,nomblk_io_submit,jqfmt=vfsold,oldalloc,,errors=continue. Quota mode: writeback. [ 318.319009][T12109] ext4 filesystem being mounted at /688/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 318.417569][T12116] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3469'. [ 318.639379][ T4970] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 318.757187][ T4970] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 318.777725][ T26] audit: type=1326 audit(2000000096.947:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12100 comm="syz.4.3464" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc20f86c9 code=0x7fc00000 [ 318.889327][ T4970] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 319.135889][ T4970] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 320.470279][T12140] chnl_net:caif_netlink_parms(): no params data found [ 320.832185][T12140] bridge0: port 1(bridge_slave_0) entered blocking state [ 320.853927][T12140] bridge0: port 1(bridge_slave_0) entered disabled state [ 320.940503][T12140] device bridge_slave_0 entered promiscuous mode [ 320.987889][T12140] bridge0: port 2(bridge_slave_1) entered blocking state [ 321.001916][T12140] bridge0: port 2(bridge_slave_1) entered disabled state [ 321.032947][T12140] device bridge_slave_1 entered promiscuous mode [ 321.146811][T12140] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 321.184037][T12140] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 321.224199][ T23] Bluetooth: hci3: command 0x0409 tx timeout [ 321.235919][T12192] netlink: 136 bytes leftover after parsing attributes in process `syz.4.3496'. [ 321.418216][T12140] team0: Port device team_slave_0 added [ 321.461762][T12140] team0: Port device team_slave_1 added [ 321.504588][T12202] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3498'. [ 321.513537][T12202] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3498'. [ 321.696020][T12140] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 321.703039][T12140] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 321.772159][T12140] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 321.837299][T12140] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 321.870921][T12140] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 321.963667][T12140] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 322.039803][T12210] fuse: Bad value for 'fd' [ 322.108302][ T1092] block nbd1: Attempted send on invalid socket [ 322.115298][ T1092] blk_update_request: I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 322.205846][T12140] device hsr_slave_0 entered promiscuous mode [ 322.224191][T12140] device hsr_slave_1 entered promiscuous mode [ 322.232340][T12140] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 322.251249][T12140] Cannot create hsr debugfs directory [ 322.252721][T12212] serio: Serial port ptm0 [ 322.509507][ T1422] ieee802154 phy0 wpan0: encryption failed: -22 [ 322.518924][ T1422] ieee802154 phy1 wpan1: encryption failed: -22 [ 322.902540][ T4970] device hsr_slave_1 left promiscuous mode [ 323.092062][ T4970] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 323.269734][ T4970] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 323.352129][ T1111] Bluetooth: hci3: command 0x041b tx timeout [ 323.359805][ T4970] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 323.379486][ T4970] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 323.434080][ T4970] device veth1_macvtap left promiscuous mode [ 323.450536][ T4970] device veth0_macvtap left promiscuous mode [ 323.478423][ T4970] device veth1_vlan left promiscuous mode [ 323.487027][T12238] netlink: 156 bytes leftover after parsing attributes in process `syz.1.3510'. [ 323.507757][ T4970] device veth0_vlan left promiscuous mode [ 324.012173][T12257] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3509'. [ 324.119348][ T4970] team0 (unregistering): Port device team_slave_1 removed [ 324.148379][ T4970] team0 (unregistering): Port device team_slave_0 removed [ 324.169331][ T4970] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 324.191432][ T4970] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 324.248437][T12265] overlayfs: failed to resolve './file0': -2 [ 324.314533][ T4970] bond0 (unregistering): Released all slaves [ 324.387958][T12257] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3509'. [ 324.606569][T12140] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 324.641335][T12140] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 324.686634][T12140] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 324.740524][T12140] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 324.991743][T12140] 8021q: adding VLAN 0 to HW filter on device bond0 [ 325.036785][ T4985] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 325.049787][ T4985] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 325.075833][T12140] 8021q: adding VLAN 0 to HW filter on device team0 [ 325.115105][ T4985] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 325.128914][ T4985] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 325.142872][ T4985] bridge0: port 1(bridge_slave_0) entered blocking state [ 325.150066][ T4985] bridge0: port 1(bridge_slave_0) entered forwarding state [ 325.184211][ T4985] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 325.193547][ T4985] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 325.216400][ T4985] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 325.232683][ T4985] bridge0: port 2(bridge_slave_1) entered blocking state [ 325.239857][ T4985] bridge0: port 2(bridge_slave_1) entered forwarding state [ 325.258204][ T4985] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 325.289207][ T4985] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 325.347571][ T4985] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 325.383794][ T1111] Bluetooth: hci3: command 0x040f tx timeout [ 325.523379][ T4985] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 325.594542][ T4985] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 325.603588][ T4985] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 325.612720][ T4985] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 326.701060][T12140] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 326.746738][ T4246] Bluetooth: hci5: command 0x1003 tx timeout [ 326.753754][T12140] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 326.775714][ T4185] Bluetooth: hci5: sending frame failed (-49) [ 326.892334][ T4492] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 326.919881][ T4492] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 326.954574][ T4492] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 326.994132][ T4492] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 327.026819][ T4492] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 328.013135][ T7] Bluetooth: hci3: command 0x0419 tx timeout [ 328.464737][ T4492] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 328.472296][ T4492] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 328.538865][T12140] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 328.835331][T12368] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3553'. [ 328.842478][ T7] Bluetooth: hci5: command 0x1001 tx timeout [ 328.876131][ T4185] Bluetooth: hci5: sending frame failed (-49) [ 329.054198][ T26] kauditd_printk_skb: 114 callbacks suppressed [ 329.054215][ T26] audit: type=1326 audit(2000000107.227:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12379 comm="syz.1.3555" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f614b3626c9 code=0x0 [ 329.470106][ T4492] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 329.512298][ T4492] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 329.582914][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 329.637426][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 329.658472][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 329.694746][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 329.706841][T12140] device veth0_vlan entered promiscuous mode [ 329.762928][T12140] device veth1_vlan entered promiscuous mode [ 329.867024][T12140] device veth0_macvtap entered promiscuous mode [ 329.906407][ T4978] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 329.921497][T12411] netlink: 104 bytes leftover after parsing attributes in process `syz.2.3567'. [ 329.935098][ T4978] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 329.963822][ T4978] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 329.991449][ T4978] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 330.049759][ T4978] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 330.089716][T12140] device veth1_macvtap entered promiscuous mode [ 330.169552][T12140] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 330.224735][T12140] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 330.287361][T12140] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 330.323358][T12140] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 330.373201][T12140] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 330.399296][T12140] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 330.404297][T12429] 9pnet: Insufficient options for proto=fd [ 330.417049][T12140] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 330.430569][T12140] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 330.443420][T12140] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 330.479390][T12140] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 330.511896][T12140] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 330.547118][T12140] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 330.577290][T12140] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 330.634077][T12140] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 330.651109][ T4269] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 330.669813][ T4269] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 330.687756][ T4269] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 330.726105][ T4269] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 330.764764][ T4269] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 330.793365][T12140] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 330.803557][T12446] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3580'. [ 330.830901][T12140] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 330.908883][T12140] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 330.918218][ T13] Bluetooth: hci5: command 0x1009 tx timeout [ 330.925783][T12140] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 331.156275][ T4978] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 331.189095][ T4978] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 331.244786][ T4269] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 331.287596][ T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 331.311973][ T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 331.350071][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 332.268823][T12518] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3605'. [ 333.959027][T12601] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3631'. [ 334.564007][ T13] usb 2-1: new full-speed USB device number 6 using dummy_hcd [ 335.023859][ T13] usb 2-1: unable to get BOS descriptor or descriptor too short [ 335.098590][ T13] usb 2-1: not running at top speed; connect to a high speed hub [ 335.218760][ T13] usb 2-1: config 1 has an invalid interface number: 138 but max is 0 [ 335.233663][ T13] usb 2-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config [ 335.263435][ T13] usb 2-1: config 1 has no interface number 0 [ 335.273661][ T13] usb 2-1: config 1 interface 138 altsetting 252 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 335.302577][ T13] usb 2-1: config 1 interface 138 has no altsetting 0 [ 335.538476][ T13] usb 2-1: New USB device found, idVendor=0cb8, idProduct=c90b, bcdDevice= d.ae [ 335.573791][ T13] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 335.581836][ T13] usb 2-1: Product: syz [ 335.617601][ T13] usb 2-1: Manufacturer: syz [ 335.629224][ T13] usb 2-1: SerialNumber: syz [ 335.943432][T12700] loop2: detected capacity change from 0 to 512 [ 336.129615][T12711] device batadv_slave_1 entered promiscuous mode [ 336.156973][T12710] device batadv_slave_1 left promiscuous mode [ 336.196109][ T13] usb 2-1: USB disconnect, device number 6 [ 336.370664][T12700] EXT4-fs (loop2): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000001000,nodiscard,quota,,errors=continue. Quota mode: writeback. [ 336.443982][T12700] ext4 filesystem being mounted at /752/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 336.494855][T12700] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #2: comm syz.2.3669: corrupted inode contents [ 336.612258][T12700] EXT4-fs error (device loop2): ext4_dirty_inode:6054: inode #2: comm syz.2.3669: mark_inode_dirty error [ 336.719286][T12700] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #2: comm syz.2.3669: corrupted inode contents [ 336.841368][T12700] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #2: comm syz.2.3669: mark_inode_dirty error [ 336.966345][T12750] binder: Bad value for 'max' [ 337.553858][ T1325] usb 3-1: new full-speed USB device number 9 using dummy_hcd [ 337.923872][ T1325] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 337.962274][ T1325] usb 3-1: New USB device found, idVendor=172f, idProduct=0037, bcdDevice= 0.00 [ 337.998928][ T1325] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 338.006800][T12797] netlink: 'syz.5.3714': attribute type 16 has an invalid length. [ 338.026674][ T1325] usb 3-1: config 0 descriptor?? [ 338.045407][T12797] netlink: 64122 bytes leftover after parsing attributes in process `syz.5.3714'. [ 338.273876][T12814] netlink: 172 bytes leftover after parsing attributes in process `syz.1.3721'. [ 338.318529][T12814] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3721'. [ 338.348994][T12814] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3721'. [ 338.393915][ T1325] usbhid 3-1:0.0: can't add hid device: -71 [ 338.400009][ T1325] usbhid: probe of 3-1:0.0 failed with error -71 [ 338.452762][ T1325] usb 3-1: USB disconnect, device number 9 [ 339.933023][T12853] netlink: 152 bytes leftover after parsing attributes in process `syz.5.3737'. [ 340.555788][T12890] device veth0 entered promiscuous mode [ 340.608601][T12890] device veth0 left promiscuous mode [ 340.930038][T12909] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3761'. [ 342.740890][T12984] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 342.753104][T12978] binder: Binderfs stats mode cannot be changed during a remount [ 343.127048][T12984] overlayfs: missing 'lowerdir' [ 343.780153][ T26] audit: type=1326 audit(2000000121.947:596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12986 comm="syz.0.3789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17a05b36c9 code=0x7ffc0000 [ 344.057284][T13004] 9pnet: p9_errstr2errno: server reported unknown error 0x000000000000 [ 344.157405][T13008] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3799'. [ 344.322128][T13015] netlink: 'syz.4.3802': attribute type 16 has an invalid length. [ 344.385157][T13015] netlink: 64130 bytes leftover after parsing attributes in process `syz.4.3802'. [ 344.648128][T13032] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3811'. [ 347.469768][T13123] loop1: detected capacity change from 0 to 2048 [ 347.749243][T13123] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 347.806915][T13123] ext4 filesystem being mounted at /768/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 349.150531][T13169] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3859'. [ 351.615384][T13247] binder: Unknown parameter 's' [ 357.047746][T13405] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3949'. [ 357.081581][T13405] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 357.091257][T13405] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 357.100396][T13405] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 357.109234][T13405] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 358.134485][T13446] netlink: 56 bytes leftover after parsing attributes in process `syz.2.3961'. [ 358.307327][T13455] netlink: 'syz.1.3964': attribute type 1 has an invalid length. [ 359.226635][T13509] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3986'. [ 360.058536][T13565] netlink: 'syz.4.4006': attribute type 6 has an invalid length. [ 360.181062][T13567] netlink: 20 bytes leftover after parsing attributes in process `syz.5.4007'. [ 360.246048][ T26] audit: type=1326 audit(2000000138.417:597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13571 comm="syz.1.4010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 360.338302][ T26] audit: type=1326 audit(2000000138.447:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13571 comm="syz.1.4010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 360.439704][ T26] audit: type=1326 audit(2000000138.447:599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13571 comm="syz.1.4010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 360.533144][ T26] audit: type=1326 audit(2000000138.447:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13571 comm="syz.1.4010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 360.626705][ T26] audit: type=1326 audit(2000000138.447:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13571 comm="syz.1.4010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 360.733765][ T26] audit: type=1326 audit(2000000138.447:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13571 comm="syz.1.4010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 360.816234][ T26] audit: type=1326 audit(2000000138.447:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13571 comm="syz.1.4010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 360.905781][ T26] audit: type=1326 audit(2000000138.447:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13571 comm="syz.1.4010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 361.032867][ T26] audit: type=1326 audit(2000000138.447:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13571 comm="syz.1.4010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 361.130532][ T26] audit: type=1326 audit(2000000138.447:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13571 comm="syz.1.4010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 361.219967][T13621] bridge0: port 2(bridge_slave_1) entered disabled state [ 361.417898][T13621] netlink: 44 bytes leftover after parsing attributes in process `syz.5.4034'. [ 361.503717][T13621] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4034'. [ 361.539198][T13621] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4034'. [ 361.577864][T13621] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4034'. [ 362.978062][T13664] netlink: 104 bytes leftover after parsing attributes in process `syz.5.4049'. [ 363.212418][T13678] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 363.250938][T13679] loop5: detected capacity change from 0 to 512 [ 363.348569][T13679] EXT4-fs (loop5): couldn't mount as ext3 due to feature incompatibilities [ 363.469409][T13686] loop4: detected capacity change from 0 to 512 [ 363.569179][T13690] netlink: 'syz.5.4063': attribute type 4 has an invalid length. [ 363.740867][T13686] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #11: comm syz.4.4060: ea_inode with extended attributes [ 363.812944][T13686] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.4060: error while reading EA inode 11 err=-117 [ 363.850851][T13686] EXT4-fs (loop4): 1 orphan inode deleted [ 363.882016][T13686] EXT4-fs (loop4): mounted filesystem without journal. Opts: nodioread_nolock,journal_dev=0x00000000000000ff,debug_want_extra_isize=0x000000000000004c,nouid32,resgid=0x0000000000000000,acl,init_itable=0x0000000000008d55,,errors=continue. Quota mode: none. [ 365.419266][T13741] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4085'. [ 367.702045][T13810] device sit0 entered promiscuous mode [ 367.739830][T13810] netlink: 'syz.2.4116': attribute type 1 has an invalid length. [ 367.796564][T13810] netlink: 1 bytes leftover after parsing attributes in process `syz.2.4116'. [ 367.834313][T13817] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4120'. [ 367.934382][T13823] HTB: quantum of class 4000A is big. Consider r2q change. [ 367.956425][T13817] HTB: quantum of class 4000A is big. Consider r2q change. [ 368.014989][T13827] tipc: Started in network mode [ 368.020339][T13827] tipc: Node identity f256536a26e7, cluster identity 4711 [ 368.050472][T13827] tipc: Enabled bearer , priority 0 [ 368.076382][T13832] device syzkaller0 entered promiscuous mode [ 368.138152][T13827] tipc: Resetting bearer [ 368.193923][T13826] tipc: Resetting bearer [ 368.242058][T13826] tipc: Disabling bearer [ 369.093764][ T1111] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 369.363807][ T1111] usb 5-1: Using ep0 maxpacket: 16 [ 369.495297][ T1111] usb 5-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 369.519862][ T1111] usb 5-1: config 0 interface 0 has no altsetting 0 [ 369.532812][ T1111] usb 5-1: New USB device found, idVendor=044f, idProduct=b304, bcdDevice= 0.00 [ 369.557504][ T1111] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 369.575682][ T1111] usb 5-1: config 0 descriptor?? [ 370.073760][ T1111] usbhid 5-1:0.0: can't add hid device: -71 [ 370.081123][ T1111] usbhid: probe of 5-1:0.0 failed with error -71 [ 371.011744][ T1111] usb 5-1: USB disconnect, device number 8 [ 371.297964][T13912] loop2: detected capacity change from 0 to 2048 [ 371.432859][T13912] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 371.448401][T13912] ext4 filesystem being mounted at /851/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 371.806304][T13934] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=io+mem,decodes=io+mem:owns=io+mem [ 371.950993][T13943] netlink: 104 bytes leftover after parsing attributes in process `syz.4.4177'. [ 372.040260][T13946] tipc: Started in network mode [ 372.046587][T13946] tipc: Node identity 9e98e4e24903, cluster identity 4711 [ 372.055499][T13946] tipc: Enabled bearer , priority 0 [ 372.066228][T13946] device syzkaller0 entered promiscuous mode [ 372.100283][T13946] tipc: Resetting bearer [ 372.147178][T13945] tipc: Resetting bearer [ 372.208643][T13951] loop4: detected capacity change from 0 to 2048 [ 372.247307][T13945] tipc: Disabling bearer [ 372.284265][T13951] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 372.339593][T13951] ext4 filesystem being mounted at /868/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 372.761235][T13975] tipc: Started in network mode [ 372.793397][T13975] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711 [ 372.812110][T13975] tipc: Enabled bearer , priority 0 [ 375.310708][ T23] tipc: Node number set to 11578026 [ 375.642364][T14001] trusted_key: encrypted_key: master key parameter 'd' is invalid [ 376.327038][T14029] netlink: 64 bytes leftover after parsing attributes in process `syz.5.4214'. [ 376.517190][T14037] autofs4:pid:14037:autofs_fill_super: called with bogus options [ 378.327946][T14087] netlink: 'syz.0.4240': attribute type 16 has an invalid length. [ 378.350978][T14087] netlink: 64130 bytes leftover after parsing attributes in process `syz.0.4240'. [ 381.309302][T14137] device bridge3 entered promiscuous mode [ 381.331642][ T26] kauditd_printk_skb: 37 callbacks suppressed [ 381.331658][ T26] audit: type=1326 audit(2000000159.497:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14171 comm="syz.2.4278" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6679e8f6c9 code=0x0 [ 381.940896][ T26] audit: type=1326 audit(2000000160.107:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14192 comm="syz.5.4289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 381.994509][ T26] audit: type=1326 audit(2000000160.147:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14192 comm="syz.5.4289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 382.021819][ T26] audit: type=1326 audit(2000000160.147:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14192 comm="syz.5.4289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 382.286918][ T26] audit: type=1326 audit(2000000160.147:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14192 comm="syz.5.4289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 382.319958][ T26] audit: type=1326 audit(2000000160.147:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14192 comm="syz.5.4289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 383.630000][ T26] audit: type=1326 audit(2000000160.147:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14192 comm="syz.5.4289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 383.743864][ T26] audit: type=1326 audit(2000000160.147:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14192 comm="syz.5.4289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 383.846655][T14226] netlink: 152 bytes leftover after parsing attributes in process `syz.0.4300'. [ 383.863835][ T26] audit: type=1326 audit(2000000160.147:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14192 comm="syz.5.4289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 383.955729][ T1422] ieee802154 phy0 wpan0: encryption failed: -22 [ 383.962203][ T1422] ieee802154 phy1 wpan1: encryption failed: -22 [ 383.964029][ T26] audit: type=1326 audit(2000000160.147:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14192 comm="syz.5.4289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 384.059563][T14237] netlink: 'syz.0.4306': attribute type 32 has an invalid length. [ 384.406149][T14243] netlink: 'syz.2.4305': attribute type 3 has an invalid length. [ 385.446979][T14253] xt_policy: output policy not valid in PREROUTING and INPUT [ 387.225842][T14288] netlink: 224 bytes leftover after parsing attributes in process `syz.5.4329'. [ 387.884067][T14311] overlayfs: missing 'lowerdir' [ 387.919652][T14316] device batadv_slave_1 entered promiscuous mode [ 387.938916][T14312] loop5: detected capacity change from 0 to 512 [ 387.950378][T14315] device batadv_slave_1 left promiscuous mode [ 388.173191][T14312] EXT4-fs (loop5): Ignoring removed mblk_io_submit option [ 388.225618][T14312] EXT4-fs (loop5): inline encryption not supported [ 388.288819][T14312] EXT4-fs (loop5): Test dummy encryption mode enabled [ 388.366042][T14312] EXT4-fs (loop5): Ignoring removed mblk_io_submit option [ 388.488339][T14312] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 388.767671][T14312] EXT4-fs (loop5): 1 truncate cleaned up [ 388.773362][T14312] EXT4-fs (loop5): mounted filesystem without journal. Opts: errors=remount-ro,mblk_io_submit,inlinecrypt,test_dummy_encryption=v1,barrier,mblk_io_submit,nogrpid,. Quota mode: none. [ 390.060832][T14312] fscrypt (loop5): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 390.484919][T14389] netlink: 20 bytes leftover after parsing attributes in process `syz.5.4368'. [ 390.747734][T14406] tmpfs: Unknown parameter 'no' [ 392.774888][T14502] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4422'. [ 393.349414][T14523] device veth4 entered promiscuous mode [ 393.972691][T14557] netlink: 68 bytes leftover after parsing attributes in process `syz.4.4448'. [ 394.672664][T14588] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4462'. [ 394.717856][T14588] device bridge_slave_1 left promiscuous mode [ 394.732922][T14588] bridge0: port 2(bridge_slave_1) entered disabled state [ 394.768530][T14588] device bridge_slave_0 left promiscuous mode [ 394.783093][T14588] bridge0: port 1(bridge_slave_0) entered disabled state [ 396.751334][ T26] kauditd_printk_skb: 1 callbacks suppressed [ 396.751350][ T26] audit: type=1326 audit(2000000174.920:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14638 comm="syz.5.4487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 396.876032][ T26] audit: type=1326 audit(2000000174.920:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14638 comm="syz.5.4487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 396.972393][ T26] audit: type=1326 audit(2000000174.930:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14638 comm="syz.5.4487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 397.060097][ T26] audit: type=1326 audit(2000000175.070:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14638 comm="syz.5.4487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 397.173373][T14658] loop1: detected capacity change from 0 to 512 [ 397.180603][ T26] audit: type=1326 audit(2000000175.070:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14638 comm="syz.5.4487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 397.268511][T14658] EXT4-fs (loop1): Test dummy encryption mode enabled [ 397.333680][T14658] EXT4-fs (loop1): inline encryption not supported [ 397.389229][T14658] EXT4-fs (loop1): Ignoring removed mblk_io_submit option [ 397.457367][T14658] EXT4-fs (loop1): Ignoring removed mblk_io_submit option [ 397.510573][T14658] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 397.553868][T14658] EXT4-fs (loop1): can't mount with commit=255, fs mounted w/o journal [ 400.258903][T14770] loop2: detected capacity change from 0 to 512 [ 400.390625][T14770] EXT4-fs (loop2): Ignoring removed mblk_io_submit option [ 400.404217][T14770] EXT4-fs (loop2): inline encryption not supported [ 400.432185][T14770] EXT4-fs (loop2): Test dummy encryption mode enabled [ 400.442280][T14770] EXT4-fs (loop2): Ignoring removed mblk_io_submit option [ 400.462521][T14770] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 400.513948][T14770] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c018, mo2=0002] [ 400.527686][T14770] System zones: 1-12 [ 400.598543][T14770] EXT4-fs (loop2): 1 truncate cleaned up [ 400.611454][T14770] EXT4-fs (loop2): mounted filesystem without journal. Opts: debug,mblk_io_submit,inlinecrypt,test_dummy_encryption=v1,barrier,mblk_io_submit,nogrpid,,errors=continue. Quota mode: none. [ 400.783860][T14791] netlink: 128 bytes leftover after parsing attributes in process `syz.0.4554'. [ 400.834248][T14770] fscrypt: AES-256-XTS using implementation "xts-aes-aesni" [ 401.277562][T14813] overlayfs: overlapping lowerdir path [ 401.285251][T14811] netlink: 36 bytes leftover after parsing attributes in process `syz.1.4563'. [ 401.455094][T14821] 9pnet_virtio: no channels available for device syz [ 401.475489][T14824] tmpfs: Bad value for 'nr_inodes' [ 402.217453][T14873] overlayfs: overlapping lowerdir path [ 402.438380][T14885] device batadv_slave_1 entered promiscuous mode [ 402.459587][T14883] device batadv_slave_1 left promiscuous mode [ 402.786922][T14906] netlink: 'syz.2.4609': attribute type 4 has an invalid length. [ 402.795139][T14906] netlink: 17 bytes leftover after parsing attributes in process `syz.2.4609'. [ 404.130160][ T26] audit: type=1326 audit(2000000182.300:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14927 comm="syz.5.4619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 404.218908][ T26] audit: type=1326 audit(2000000182.300:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14927 comm="syz.5.4619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 404.315430][ T26] audit: type=1326 audit(2000000182.330:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14927 comm="syz.5.4619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 404.399535][ T26] audit: type=1326 audit(2000000182.330:663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14927 comm="syz.5.4619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 404.473987][T14941] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4625'. [ 404.531078][ T26] audit: type=1326 audit(2000000182.330:664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14927 comm="syz.5.4619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 404.598055][ T26] audit: type=1326 audit(2000000182.340:665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14927 comm="syz.5.4619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 404.701506][ T26] audit: type=1326 audit(2000000182.340:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14927 comm="syz.5.4619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 404.812168][T14915] netlink: 104 bytes leftover after parsing attributes in process `syz.2.4612'. [ 404.820439][ T26] audit: type=1326 audit(2000000182.340:667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14927 comm="syz.5.4619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 404.933511][ T26] audit: type=1326 audit(2000000182.350:668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14927 comm="syz.5.4619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 404.975950][T14966] netlink: 104 bytes leftover after parsing attributes in process `syz.4.4635'. [ 405.015230][ T26] audit: type=1326 audit(2000000182.350:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14927 comm="syz.5.4619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4008c016c9 code=0x7ffc0000 [ 405.270637][T14980] loop5: detected capacity change from 0 to 512 [ 405.345737][T14980] EXT4-fs (loop5): Ignoring removed mblk_io_submit option [ 405.393714][T14980] EXT4-fs (loop5): inline encryption not supported [ 405.400328][T14980] EXT4-fs (loop5): Test dummy encryption mode enabled [ 405.483800][T14980] EXT4-fs (loop5): Ignoring removed mblk_io_submit option [ 405.543774][T14980] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 405.587528][T14980] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c018, mo2=0002] [ 405.720340][T14980] System zones: 1-12 [ 405.784924][T14980] EXT4-fs (loop5): 1 truncate cleaned up [ 405.790616][T14980] EXT4-fs (loop5): mounted filesystem without journal. Opts: debug,mblk_io_submit,inlinecrypt,test_dummy_encryption=v1,barrier,mblk_io_submit,nogrpid,,errors=continue. Quota mode: none. [ 406.138714][T15010] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4654'. [ 407.170629][T15022] binder: 15021:15022 ioctl c0306201 0 returned -14 [ 407.241470][T15023] netlink: 96 bytes leftover after parsing attributes in process `syz.0.4657'. [ 407.376235][T15032] Invalid ELF header magic: != ELF [ 408.372260][T15084] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4686'. [ 412.323117][ T26] kauditd_printk_skb: 29 callbacks suppressed [ 412.323133][ T26] audit: type=1804 audit(2000000190.490:699): pid=15203 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.4739" name="bus" dev="ramfs" ino=84067 res=1 errno=0 [ 413.118979][T15238] loop4: detected capacity change from 0 to 2048 [ 413.199287][ T4288] Alternate GPT is invalid, using primary GPT. [ 413.220998][ T4288] loop4: p2 p3 p7 [ 413.268995][T15238] Alternate GPT is invalid, using primary GPT. [ 413.294968][T15238] loop4: p2 p3 p7 [ 413.535285][ T4935] udevd[4935]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory [ 413.555477][T10733] udevd[10733]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 413.569309][ T4288] udevd[4288]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory [ 413.634835][T10733] udevd[10733]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 413.650923][ T4288] udevd[4288]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory [ 413.686161][ T4935] udevd[4935]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory [ 414.317745][T15287] netlink: 140 bytes leftover after parsing attributes in process `syz.2.4779'. [ 416.203161][T15331] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4799'. [ 416.780135][T15359] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4812'. [ 417.116581][T15371] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 417.138188][T15371] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 418.043818][T15392] netlink: 9 bytes leftover after parsing attributes in process `syz.1.4827'. [ 418.248263][T15391] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4828'. [ 418.273843][T15391] tipc: Enabling of bearer rejected, failed to enable media [ 420.555999][T15437] netlink: 92 bytes leftover after parsing attributes in process `syz.1.4849'. [ 422.225315][T15486] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4872'. [ 422.318223][T15486] tipc: Enabling of bearer rejected, failed to enable media [ 422.788472][T15514] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4884'. [ 422.853677][T15514] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4884'. [ 422.862692][T15514] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4884'. [ 422.926535][T15514] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4884'. [ 425.331717][T15629] netlink: 9 bytes leftover after parsing attributes in process `syz.0.4937'. [ 425.939576][T15623] overlayfs: statfs failed on './file0' [ 427.206920][T15691] loop5: detected capacity change from 0 to 512 [ 427.303139][T15691] EXT4-fs error (device loop5): ext4_xattr_inode_iget:404: inode #11: comm syz.5.4966: ea_inode with extended attributes [ 427.323879][T15691] EXT4-fs error (device loop5): ext4_xattr_inode_iget:409: comm syz.5.4966: error while reading EA inode 11 err=-117 [ 427.400258][T15700] mmap: syz.2.4969 (15700): VmData 50049024 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data. [ 427.463911][T15691] EXT4-fs (loop5): 1 orphan inode deleted [ 427.469694][T15691] EXT4-fs (loop5): mounted filesystem without journal. Opts: nodioread_nolock,journal_dev=0x00000000000000ff,debug_want_extra_isize=0x000000000000004c,nouid32,resgid=0x0000000000000000,acl,init_itable=0x0000000000008d55,,errors=continue. Quota mode: none. [ 427.494113][ C1] vkms_vblank_simulate: vblank timer overrun [ 427.896333][T15711] netlink: 108 bytes leftover after parsing attributes in process `syz.1.4974'. [ 428.887641][T15756] netlink: 132 bytes leftover after parsing attributes in process `syz.0.4992'. [ 429.217750][T15778] netlink: 44 bytes leftover after parsing attributes in process `syz.4.5004'. [ 429.251835][T15778] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5004'. [ 429.296204][T15778] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5004'. [ 429.340346][T15778] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5004'. [ 429.362520][T15785] netlink: 92 bytes leftover after parsing attributes in process `syz.0.5007'. [ 429.398983][T15783] overlayfs: overlapping lowerdir path [ 429.580748][T15794] netlink: 9 bytes leftover after parsing attributes in process `syz.5.5021'. [ 429.768738][T15802] netlink: 104 bytes leftover after parsing attributes in process `syz.2.5016'. [ 430.865256][T15825] 9pnet: Insufficient options for proto=fd [ 431.415537][T15847] overlayfs: missing 'lowerdir' [ 431.842194][T15869] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5046'. [ 432.050095][T15878] fuse: Bad value for 'fd' [ 432.172069][ T26] audit: type=1326 audit(2000000210.340:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15881 comm="syz.0.5052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17a05b36c9 code=0x7ffc0000 [ 433.720428][T15910] loop5: detected capacity change from 0 to 1024 [ 435.377159][T15941] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5077'. [ 436.372920][T15992] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5103'. [ 436.407220][T15992] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5103'. [ 436.771152][T16014] loop5: detected capacity change from 0 to 256 [ 437.706185][T16014] exFAT-fs (loop5): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 440.141718][T16068] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5136'. [ 441.704813][ T26] audit: type=1326 audit(2000000219.880:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16131 comm="syz.1.5165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 441.755107][T16133] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5168'. [ 441.808477][ T26] audit: type=1326 audit(2000000219.920:702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16131 comm="syz.1.5165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 441.919985][ T26] audit: type=1326 audit(2000000219.920:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16131 comm="syz.1.5165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 442.031357][ T26] audit: type=1326 audit(2000000219.920:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16131 comm="syz.1.5165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 442.149485][T16152] mmap: syz.0.5176 (16152) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst. [ 442.167800][ T26] audit: type=1326 audit(2000000219.920:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16131 comm="syz.1.5165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 442.243753][ T26] audit: type=1326 audit(2000000219.920:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16131 comm="syz.1.5165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 442.335176][T16160] netlink: 9 bytes leftover after parsing attributes in process `syz.2.5180'. [ 442.344677][ T26] audit: type=1326 audit(2000000219.920:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16131 comm="syz.1.5165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 442.368127][ T23] Bluetooth: hci3: command 0x0406 tx timeout [ 442.432512][ T26] audit: type=1326 audit(2000000219.920:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16131 comm="syz.1.5165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 442.455340][T16166] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5183'. [ 442.549664][ T26] audit: type=1326 audit(2000000219.920:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16131 comm="syz.1.5165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 442.640816][ T26] audit: type=1326 audit(2000000219.920:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16131 comm="syz.1.5165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f614b3626c9 code=0x7ffc0000 [ 444.389254][T16205] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 444.398139][T16205] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 444.406942][T16205] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 444.415740][T16205] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 444.616357][T16205] netdevsim netdevsim2 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 444.625584][T16205] netdevsim netdevsim2 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 444.634541][T16205] netdevsim netdevsim2 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 444.643659][T16205] netdevsim netdevsim2 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 444.705249][T16218] overlayfs: failed to resolve './file2': -2 [ 444.770866][T16219] loop1: detected capacity change from 0 to 2048 [ 444.847629][ T4935] loop1: p1 < > p4 < > [ 444.879612][T16219] loop1: p1 < > p4 < > [ 445.117612][T10733] udevd[10733]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 445.362708][T16232] netlink: 36 bytes leftover after parsing attributes in process `syz.5.5211'. [ 445.387130][ T1422] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.402289][ T1422] ieee802154 phy1 wpan1: encryption failed: -22 [ 445.977296][T10733] udevd[10733]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 446.004329][ T4935] udevd[4935]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory [ 446.036619][T16237] device syzkaller0 entered promiscuous mode [ 446.071582][ T4970] IPv6: ADDRCONF(NETDEV_CHANGE): syzkaller0: link becomes ready [ 447.743604][ T2302] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 447.993705][ T2302] usb 3-1: Using ep0 maxpacket: 8 [ 448.115042][ T2302] usb 3-1: unable to get BOS descriptor or descriptor too short [ 448.193684][ T2302] usb 3-1: unable to read config index 0 descriptor/start: -71 [ 448.209180][ T2302] usb 3-1: can't read configurations, error -71 [ 448.568510][T16333] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5258'. [ 448.638665][ T26] kauditd_printk_skb: 8 callbacks suppressed [ 448.638681][ T26] audit: type=1326 audit(2000000226.810:719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16336 comm="syz.4.5260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 448.696691][T16338] netlink: 'syz.5.5258': attribute type 10 has an invalid length. [ 448.728293][ T26] audit: type=1326 audit(2000000226.810:720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16336 comm="syz.4.5260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 448.843298][ T26] audit: type=1326 audit(2000000226.810:721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16336 comm="syz.4.5260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 448.883676][T16338] team0: Port device dummy0 added [ 448.924039][ T26] audit: type=1326 audit(2000000226.810:722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16336 comm="syz.4.5260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 449.016039][T16351] netlink: 188 bytes leftover after parsing attributes in process `syz.0.5267'. [ 449.061068][ T26] audit: type=1326 audit(2000000226.820:723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16336 comm="syz.4.5260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 449.088791][T16352] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5266'. [ 449.143968][ T26] audit: type=1326 audit(2000000226.820:724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16336 comm="syz.4.5260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 449.254562][ T26] audit: type=1326 audit(2000000226.820:725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16336 comm="syz.4.5260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 449.337301][ T26] audit: type=1326 audit(2000000226.820:726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16336 comm="syz.4.5260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 449.478312][ T26] audit: type=1326 audit(2000000226.820:727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16336 comm="syz.4.5260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 449.622318][ T26] audit: type=1326 audit(2000000226.820:728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16336 comm="syz.4.5260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdc20f86c9 code=0x7ffc0000 [ 450.453170][T16393] loop5: detected capacity change from 0 to 4096 [ 450.570170][T16393] EXT4-fs (loop5): Test dummy encryption mode enabled [ 450.623716][T16393] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003] [ 450.631935][T16393] System zones: 0-5 [ 450.786897][T16393] EXT4-fs (loop5): mounted filesystem without journal. Opts: debug,delalloc,journal_ioprio=0x0000000000000000,test_dummy_encryption,nodiscard,min_batch_time=0x0000000000000004,acl,debug_want_extra_isize=0x0000000000000040,,errors=continue. Quota mode: writeback. [ 451.229316][T16426] loop4: detected capacity change from 0 to 1024 [ 451.313642][ T23] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 451.398164][T16426] EXT4-fs (loop4): Ignoring removed oldalloc option [ 451.459902][T16426] EXT4-fs (loop4): mounted filesystem without journal. Opts: nodelalloc,auto_da_alloc=0x00000000000000e6,oldalloc,barrier,auto_da_alloc,nodioread_nolock,,errors=continue. Quota mode: none. [ 451.540950][T16426] ext4 filesystem being mounted at /1095/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 451.603617][ T23] usb 2-1: Using ep0 maxpacket: 8 [ 451.620231][T16426] EXT4-fs (loop4): re-mounted. Opts: (null). Quota mode: none. [ 451.736940][T16437] loop5: detected capacity change from 0 to 128 [ 451.745052][ T23] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 451.773637][ T23] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 451.808123][ T23] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 451.844370][ T23] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 451.960953][ T23] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 452.000906][ T23] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 452.120922][T16448] netlink: 'syz.4.5307': attribute type 4 has an invalid length. [ 452.130518][T16448] netlink: 'syz.4.5307': attribute type 5 has an invalid length. [ 452.146341][T16448] netlink: 3657 bytes leftover after parsing attributes in process `syz.4.5307'. [ 452.303759][ T23] usb 2-1: GET_CAPABILITIES returned 0 [ 452.309408][ T23] usbtmc 2-1:16.0: can't read capabilities [ 452.537904][ T1325] usb 2-1: USB disconnect, device number 7 [ 453.272407][T16476] loop1: detected capacity change from 0 to 1024 [ 456.130079][T16563] xt_TCPMSS: Only works on TCP SYN packets [ 457.017864][T16561] loop5: detected capacity change from 0 to 4096 [ 457.120268][T16561] NILFS (loop5): unrecognized mount option "01777777777777777777777" [ 458.033894][ T23] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 458.318346][ T23] usb 1-1: Using ep0 maxpacket: 32 [ 458.498072][ T23] usb 1-1: config 0 has no interfaces? [ 458.528498][T16582] loop5: detected capacity change from 0 to 40427 [ 458.722692][ T23] usb 1-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 458.750076][ T23] usb 1-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 458.783861][ T23] usb 1-1: Product: syz [ 458.788081][ T23] usb 1-1: Manufacturer: syz [ 458.792704][ T23] usb 1-1: SerialNumber: syz [ 458.853763][ T23] usb 1-1: config 0 descriptor?? [ 459.121974][ T1325] usb 1-1: USB disconnect, device number 3 [ 459.625894][T16651] netlink: 44 bytes leftover after parsing attributes in process `syz.1.5396'. [ 459.635821][T16651] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5396'. [ 459.664328][T16651] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5396'. [ 459.673233][T16651] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5396'. [ 459.821375][T16657] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5399'. [ 459.861368][T16657] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5399'. [ 461.296135][T16732] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5435'. [ 461.457120][T16738] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5439'. [ 462.003444][T16763] netlink: 44 bytes leftover after parsing attributes in process `syz.4.5451'. [ 462.032756][T16763] netlink: 32 bytes leftover after parsing attributes in process `syz.4.5451'. [ 464.570653][ T26] kauditd_printk_skb: 87 callbacks suppressed [ 464.570668][ T26] audit: type=1326 audit(2000000242.740:816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16832 comm="syz.2.5481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 464.668121][ T26] audit: type=1326 audit(2000000242.770:818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16832 comm="syz.2.5481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 464.786136][ T26] audit: type=1326 audit(2000000242.770:819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16832 comm="syz.2.5481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 464.864912][ T26] audit: type=1326 audit(2000000242.770:817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16832 comm="syz.2.5481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 464.937300][ T26] audit: type=1326 audit(2000000242.770:820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16832 comm="syz.2.5481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 464.959992][ T26] audit: type=1326 audit(2000000242.770:821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16832 comm="syz.2.5481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 465.071337][ T26] audit: type=1326 audit(2000000242.770:822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16832 comm="syz.2.5481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 465.099824][ T26] audit: type=1326 audit(2000000242.770:823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16832 comm="syz.2.5481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 465.143185][ T26] audit: type=1326 audit(2000000242.770:824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16832 comm="syz.2.5481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 465.192763][ T26] audit: type=1326 audit(2000000242.770:825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16832 comm="syz.2.5481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 465.962298][T16865] __nla_validate_parse: 1 callbacks suppressed [ 465.962317][T16865] netlink: 56 bytes leftover after parsing attributes in process `syz.4.5495'. [ 468.970106][T16972] raw_sendmsg: syz.0.5545 forgot to set AF_INET. Fix it! [ 469.446346][T16989] netlink: 36 bytes leftover after parsing attributes in process `syz.0.5553'. [ 471.202062][ T26] kauditd_printk_skb: 14 callbacks suppressed [ 471.202090][ T26] audit: type=1326 audit(2000000249.370:840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17031 comm="syz.2.5574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 471.340441][ T26] audit: type=1326 audit(2000000249.370:841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17031 comm="syz.2.5574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 471.444266][ T26] audit: type=1326 audit(2000000249.380:842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17031 comm="syz.2.5574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 471.542015][ T26] audit: type=1326 audit(2000000249.380:843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17031 comm="syz.2.5574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 471.685272][ T26] audit: type=1326 audit(2000000249.380:844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17031 comm="syz.2.5574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 471.722269][T17052] netlink: 56 bytes leftover after parsing attributes in process `syz.1.5581'. [ 471.784032][ T26] audit: type=1326 audit(2000000249.380:845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17031 comm="syz.2.5574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 471.883564][ T26] audit: type=1326 audit(2000000249.380:846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17031 comm="syz.2.5574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 472.002830][ T26] audit: type=1326 audit(2000000249.380:847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17031 comm="syz.2.5574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 472.098188][ T26] audit: type=1326 audit(2000000249.380:848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17031 comm="syz.2.5574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 472.171541][ T26] audit: type=1326 audit(2000000249.380:849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17031 comm="syz.2.5574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6679e8f6c9 code=0x7ffc0000 [ 472.633714][T17093] netlink: 56 bytes leftover after parsing attributes in process `syz.5.5599'. [ 472.896088][T17105] netlink: 188 bytes leftover after parsing attributes in process `syz.5.5605'. [ 473.600797][T17137] x_tables: duplicate underflow at hook 1 [ 473.690211][T17140] netlink: 188 bytes leftover after parsing attributes in process `syz.4.5623'. [ 474.643728][ T6316] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 474.923681][ T6316] usb 2-1: Using ep0 maxpacket: 8 [ 474.958321][T17158] netlink: 'syz.0.5628': attribute type 4 has an invalid length. [ 475.007910][T17158] netlink: 'syz.0.5628': attribute type 5 has an invalid length. [ 475.066123][T17158] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.5628'. [ 475.093811][ T6316] usb 2-1: unable to get BOS descriptor or descriptor too short [ 475.193656][ T6316] usb 2-1: unable to read config index 0 descriptor/start: -71 [ 475.201307][ T6316] usb 2-1: can't read configurations, error -71 [ 477.602560][T17208] netlink: 44 bytes leftover after parsing attributes in process `syz.4.5652'. [ 477.620611][T17208] netlink: 59 bytes leftover after parsing attributes in process `syz.4.5652'. [ 477.640305][T17209] netlink: 'syz.5.5648': attribute type 4 has an invalid length. [ 477.658552][T17209] netlink: 'syz.5.5648': attribute type 5 has an invalid length. [ 477.661575][T17208] netlink: 59 bytes leftover after parsing attributes in process `syz.4.5652'. [ 477.675321][T17209] netlink: 3657 bytes leftover after parsing attributes in process `syz.5.5648'. [ 478.838739][T17241] netlink: 536 bytes leftover after parsing attributes in process `syz.4.5668'. [ 478.863972][T17241] netlink: 52 bytes leftover after parsing attributes in process `syz.4.5668'. [ 479.693027][T17280] netlink: 536 bytes leftover after parsing attributes in process `syz.5.5683'. [ 479.761410][T17280] netlink: 52 bytes leftover after parsing attributes in process `syz.5.5683'. [ 479.942253][T17285] loop4: detected capacity change from 0 to 4096 [ 480.029538][T17285] NILFS (loop4): unrecognized mount option "01777777777777777777777" [ 480.530007][T17313] netlink: 536 bytes leftover after parsing attributes in process `syz.0.5704'. [ 480.569985][T17313] netlink: 52 bytes leftover after parsing attributes in process `syz.0.5704'. [ 483.174559][T17409] netlink: 44 bytes leftover after parsing attributes in process `syz.0.5744'. [ 483.227448][T17409] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5744'. [ 483.258065][T17409] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5744'. [ 483.299271][T17409] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5744'. [ 483.374783][T17415] netlink: 32 bytes leftover after parsing attributes in process `syz.1.5747'. [ 484.996809][T17449] xt_TCPMSS: Only works on TCP SYN packets [ 486.373816][ T4186] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 486.486011][T17485] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5790'. [ 486.516806][T17485] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5790'. [ 486.653881][ T4186] usb 6-1: Using ep0 maxpacket: 32 [ 486.794221][ T4186] usb 6-1: config 0 has no interfaces? [ 487.013965][ T4186] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 487.023070][ T4186] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 487.070368][ T4186] usb 6-1: Product: syz [ 487.093606][ T4186] usb 6-1: Manufacturer: syz [ 487.098299][ T4186] usb 6-1: SerialNumber: syz [ 487.145370][ T4186] usb 6-1: config 0 descriptor?? [ 487.410422][ T1325] usb 6-1: USB disconnect, device number 2 [ 488.878091][ T4246] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 488.979782][T17557] loop2: detected capacity change from 0 to 40427 [ 489.109506][T17565] loop0: detected capacity change from 0 to 1024 [ 489.177307][T17565] EXT4-fs (loop0): Ignoring removed oldalloc option [ 489.263618][ T4246] usb 6-1: Using ep0 maxpacket: 8 [ 489.324752][T17565] EXT4-fs (loop0): mounted filesystem without journal. Opts: nodelalloc,auto_da_alloc=0x00000000000000e6,oldalloc,barrier,auto_da_alloc,nodioread_nolock,,errors=continue. Quota mode: none. [ 489.344780][T17565] ext4 filesystem being mounted at /1164/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 490.056094][T17577] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5813'. [ 490.113778][ T4246] usb 6-1: config 162 has an invalid interface number: 197 but max is 0 [ 490.122178][ T4246] usb 6-1: config 162 has an invalid descriptor of length 244, skipping remainder of the config [ 490.138204][ T4246] usb 6-1: config 162 has no interface number 0 [ 490.145270][ T4246] usb 6-1: config 162 interface 197 altsetting 4 has 0 endpoint descriptors, different from the interface descriptor's value: 3 [ 490.162925][ T4246] usb 6-1: config 162 interface 197 has no altsetting 0 [ 490.343975][ T4246] usb 6-1: New USB device found, idVendor=0c10, idProduct=0000, bcdDevice=95.a7 [ 490.353072][ T4246] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 490.376045][ T4246] usb 6-1: Product: syz [ 490.383845][ T4246] usb 6-1: Manufacturer: syz [ 490.388481][ T4246] usb 6-1: SerialNumber: syz [ 490.693003][T17601] netlink: 44 bytes leftover after parsing attributes in process `syz.4.5824'. [ 490.865065][T17555] udc-core: couldn't find an available UDC or it's busy [ 490.872107][T17555] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 490.938538][T17555] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 491.006769][ T4246] usb 6-1: USB disconnect, device number 3 [ 491.427732][T17627] binder: Unknown parameter 's' [ 493.810100][T17677] loop2: detected capacity change from 0 to 512 [ 494.014606][T17689] netlink: 'syz.1.5860': attribute type 4 has an invalid length. [ 494.067860][T17689] netlink: 'syz.1.5860': attribute type 5 has an invalid length. [ 494.114874][T17689] netlink: 3657 bytes leftover after parsing attributes in process `syz.1.5860'. [ 494.132541][T17677] EXT4-fs (loop2): Ignoring removed mblk_io_submit option [ 494.169570][T17677] EXT4-fs (loop2): inline encryption not supported [ 494.239067][T17696] syz.4.5864[17696] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 494.239402][T17696] syz.4.5864[17696] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 494.402435][T17677] EXT4-fs (loop2): Test dummy encryption mode enabled [ 494.496494][T17696] netlink: 96 bytes leftover after parsing attributes in process `syz.4.5864'. [ 495.017465][T17677] EXT4-fs (loop2): Ignoring removed mblk_io_submit option [ 495.153381][T17677] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 495.261956][T17677] EXT4-fs (loop2): 1 truncate cleaned up [ 495.393731][T17677] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,mblk_io_submit,inlinecrypt,test_dummy_encryption=v1,barrier,mblk_io_submit,nogrpid,. Quota mode: none. [ 495.537749][T17708] binder: Binderfs stats mode cannot be changed during a remount [ 496.079666][T17729] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 496.724858][T17759] binder: 17758:17759 ioctl c0306201 2000000004c0 returned -22 [ 496.781663][T17764] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 497.140961][T17775] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 497.194593][T17778] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5901'. [ 497.660416][T17793] xt_socket: unknown flags 0x4c [ 501.035635][T17884] tipc: Enabled bearer , priority 0 [ 501.079204][T17884] device syzkaller0 entered promiscuous mode [ 501.173047][T17884] tipc: Resetting bearer [ 502.095312][T17561] tipc: Node number set to 3568391018 [ 502.431825][T17904] loop1: detected capacity change from 0 to 512 [ 604.493435][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 604.500548][ C0] rcu: 1-...!: (0 ticks this GP) idle=2a1/1/0x4000000000000000 softirq=54236/54236 fqs=0 [ 604.512126][ C0] (detected by 0, t=10506 jiffies, g=67865, q=3243) [ 604.518832][ C0] Sending NMI from CPU 0 to CPUs 1: [ 604.524056][ C1] NMI backtrace for cpu 1 [ 604.524067][ C1] CPU: 1 PID: 4492 Comm: kworker/u4:7 Not tainted syzkaller #0 [ 604.524085][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 604.524098][ C1] Workqueue: netns cleanup_net [ 604.524135][ C1] RIP: 0010:debug_deactivate+0x3f/0x1c0 [ 604.524158][ C1] Code: af 0c 8a e8 e3 42 77 02 0f 1f 44 00 00 e8 39 e1 0f 00 65 8b 1d 7a 2a 9a 7e bf 07 00 00 00 89 de e8 86 e4 0f 00 83 fb 07 77 58 1c e1 0f 00 41 89 de c1 eb 06 48 8d 3c dd 28 9d 69 8d be 08 00 [ 604.524172][ C1] RSP: 0018:ffffc90000dd0cf8 EFLAGS: 00000097 [ 604.524186][ C1] RAX: ffffffff8167eaea RBX: 0000000000000001 RCX: ffff88801e635940 [ 604.524199][ C1] RDX: 0000000000010000 RSI: 0000000000000001 RDI: 0000000000000007 [ 604.524209][ C1] RBP: ffffc90000dd0e98 R08: dffffc0000000000 R09: ffff888078542340 [ 604.524222][ C1] R10: ffffed100f0a846b R11: 1ffff1100f0a8468 R12: ffff8880b912a350 [ 604.524236][ C1] R13: 1ffff1101722546a R14: 0000000000000001 R15: dffffc0000000000 [ 604.524248][ C1] FS: 0000000000000000(0000) GS:ffff8880b9100000(0000) knlGS:0000000000000000 [ 604.524263][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 604.524275][ C1] CR2: 0000001b3241aff8 CR3: 000000000be8e000 CR4: 00000000003506e0 [ 604.524290][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 604.524300][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 604.524311][ C1] Call Trace: [ 604.524317][ C1] [ 604.524326][ C1] __hrtimer_run_queues+0x2db/0xc40 [ 604.524351][ C1] ? taprio_free_sched_cb+0x190/0x190 [ 604.524377][ C1] ? hrtimer_interrupt+0x8d0/0x8d0 [ 604.524396][ C1] ? ktime_get_update_offsets_now+0x3ce/0x3e0 [ 604.524418][ C1] hrtimer_interrupt+0x3bb/0x8d0 [ 604.524451][ C1] __sysvec_apic_timer_interrupt+0x137/0x4a0 [ 604.524471][ C1] sysvec_apic_timer_interrupt+0x9b/0xc0 [ 604.524490][ C1] [ 604.524495][ C1] [ 604.524501][ C1] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 604.524520][ C1] RIP: 0010:lock_release+0x128/0x870 [ 604.524539][ C1] Code: 4c 8d b3 ec 0a 00 00 4c 89 f0 48 c1 e8 03 42 0f b6 04 28 84 c0 0f 85 28 05 00 00 41 83 3e 00 0f 85 58 04 00 00 48 89 5c 24 18 <48> c7 84 24 a0 00 00 00 00 00 00 00 9c 8f 84 24 a0 00 00 00 48 8b [ 604.524553][ C1] RSP: 0018:ffffc900014ef920 EFLAGS: 00000246 [ 604.524567][ C1] RAX: 0000000000000000 RBX: ffff88801e635940 RCX: b8aae14ac7e96900 [ 604.524579][ C1] RDX: 0000000000000000 RSI: ffffffff8a59e560 RDI: ffffffff8a59e520 [ 604.524591][ C1] RBP: ffffc900014efa30 R08: dffffc0000000000 R09: fffffbfff1ad33a6 [ 604.524604][ C1] R10: fffffbfff1ad33a6 R11: 1ffffffff1ad33a5 R12: 0000000000010cc4 [ 604.524616][ C1] R13: dffffc0000000000 R14: ffff88801e63642c R15: 1ffff9200029df30 [ 604.524642][ C1] ? rcu_lock_release+0x5/0x20 [ 604.524661][ C1] ? read_lock_is_recursive+0x10/0x10 [ 604.524680][ C1] ? __lock_acquire+0x7c60/0x7c60 [ 604.524707][ C1] inet_twsk_purge+0x77d/0x810 [ 604.524733][ C1] ? __inet_twsk_schedule+0x130/0x130 [ 604.524752][ C1] ? iput+0x706/0x8a0 [ 604.524771][ C1] ? dccp_v6_exit_net+0x80/0x80 [ 604.524791][ C1] cleanup_net+0x77b/0xb80 [ 604.524810][ C1] ? ops_free_list+0x330/0x330 [ 604.524831][ C1] ? _raw_spin_unlock_irq+0x1f/0x40 [ 604.524850][ C1] process_one_work+0x863/0x1000 [ 604.524878][ C1] ? worker_detach_from_pool+0x240/0x240 [ 604.524895][ C1] ? lockdep_hardirqs_off+0x70/0x100 [ 604.524916][ C1] ? _raw_spin_lock_irq+0xab/0xe0 [ 604.524931][ C1] ? _raw_spin_lock_irqsave+0xf0/0xf0 [ 604.524949][ C1] ? wq_worker_running+0x97/0x170 [ 604.524966][ C1] worker_thread+0xaa8/0x12a0 [ 604.525007][ C1] ? lockdep_hardirqs_on+0x94/0x140 [ 604.525028][ C1] ? lockdep_hardirqs_on+0x94/0x140 [ 604.525046][ C1] ? _raw_spin_unlock_irqrestore+0xaa/0x100 [ 604.525070][ C1] kthread+0x436/0x520 [ 604.525085][ C1] ? rcu_lock_release+0x20/0x20 [ 604.525100][ C1] ? kthread_blkcg+0xd0/0xd0 [ 604.525117][ C1] ret_from_fork+0x1f/0x30 [ 604.525144][ C1] [ 604.526050][ C0] rcu: rcu_preempt kthread timer wakeup didn't happen for 10505 jiffies! g67865 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 [ 604.923993][ C0] rcu: Possible timer handling issue on cpu=1 timer-softirq=28891 [ 604.931889][ C0] rcu: rcu_preempt kthread starved for 10506 jiffies! g67865 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1 [ 604.943267][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 604.953243][ C0] rcu: RCU grace-period kthread stack dump: [ 604.959133][ C0] task:rcu_preempt state:I stack:27528 pid: 15 ppid: 2 flags:0x00004000 [ 604.968375][ C0] Call Trace: [ 604.971667][ C0] [ 604.974614][ C0] __schedule+0x11bb/0x4390 [ 604.979148][ C0] ? _raw_spin_lock_irqsave+0x7f/0xf0 [ 604.984545][ C0] ? _raw_spin_unlock_irqrestore+0x82/0x100 [ 604.990455][ C0] ? _raw_spin_unlock_irqrestore+0xaa/0x100 [ 604.996365][ C0] ? _raw_spin_unlock+0x40/0x40 [ 605.001229][ C0] ? rcu_is_watching+0x11/0xa0 [ 605.006023][ C0] ? release_firmware_map_entry+0x190/0x190 [ 605.011958][ C0] schedule+0x11b/0x1e0 [ 605.016139][ C0] schedule_timeout+0x15c/0x280 [ 605.021014][ C0] ? console_conditional_schedule+0x40/0x40 [ 605.026923][ C0] ? update_process_times+0x200/0x200 [ 605.032333][ C0] ? prepare_to_swait_event+0x331/0x350 [ 605.037911][ C0] rcu_gp_fqs_loop+0x29e/0x11b0 [ 605.042788][ C0] ? lockdep_hardirqs_on+0x94/0x140 [ 605.048010][ C0] ? rcu_gp_init+0xd58/0x10e0 [ 605.052702][ C0] ? rcu_gp_init+0x10e0/0x10e0 [ 605.057492][ C0] ? _raw_spin_unlock_irq+0x1f/0x40 [ 605.062720][ C0] ? lockdep_hardirqs_on+0x94/0x140 [ 605.067940][ C0] rcu_gp_kthread+0x98/0x350 [ 605.072550][ C0] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 605.077680][ C0] ? _raw_spin_unlock_irqrestore+0xaa/0x100 [ 605.083593][ C0] ? __kthread_parkme+0x157/0x1b0 [ 605.088645][ C0] kthread+0x436/0x520 [ 605.092729][ C0] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 605.097857][ C0] ? kthread_blkcg+0xd0/0xd0 [ 605.102467][ C0] ret_from_fork+0x1f/0x30 [ 605.106919][ C0] [ 605.109946][ C0] rcu: Stack dump where RCU GP kthread last ran: [ 605.116276][ C0] Sending NMI from CPU 0 to CPUs 1: [ 605.121494][ C1] NMI backtrace for cpu 1 [ 605.121504][ C1] CPU: 1 PID: 4492 Comm: kworker/u4:7 Not tainted syzkaller #0 [ 605.121522][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 605.121536][ C1] Workqueue: netns cleanup_net [ 605.121557][ C1] RIP: 0010:match_held_lock+0xb/0xb0 [ 605.121578][ C1] Code: 00 75 cf 48 c7 c7 00 1b 0b 8a 48 c7 c6 40 1b 0b 8a e8 19 35 f5 ff 0f 0b eb b6 e8 f0 fa ff ff b9 01 00 00 00 48 39 77 10 74 6c <53> 81 7f 20 00 00 10 00 72 5f 48 8b 46 08 48 85 c0 75 17 48 89 fb [ 605.121594][ C1] RSP: 0018:ffffc90000dd0c30 EFLAGS: 00000006 [ 605.121609][ C1] RAX: 0000000000000005 RBX: ffff88801e635940 RCX: 0000000000000001 [ 605.121621][ C1] RDX: 0000000000010000 RSI: ffff888078542300 RDI: ffff88801e6364a8 [ 605.121635][ C1] RBP: 00000000ffffffff R08: 0000000000000004 R09: 0000000000000003 [ 605.121646][ C1] R10: fffff520001ba180 R11: 1ffff920001ba180 R12: 0000000000000003 [ 605.121660][ C1] R13: 0000000000000046 R14: ffff888078542300 R15: ffff88801e6364a8 [ 605.121673][ C1] FS: 0000000000000000(0000) GS:ffff8880b9100000(0000) knlGS:0000000000000000 [ 605.121689][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 605.121702][ C1] CR2: 0000001b3241aff8 CR3: 000000000be8e000 CR4: 00000000003506e0 [ 605.121718][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 605.121729][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 605.121740][ C1] Call Trace: [ 605.121746][ C1] [ 605.121752][ C1] lock_is_held_type+0xa6/0x190 [ 605.121775][ C1] advance_sched+0x141/0x940 [ 605.121797][ C1] ? _raw_spin_unlock+0x40/0x40 [ 605.121819][ C1] __hrtimer_run_queues+0x53d/0xc40 [ 605.121844][ C1] ? taprio_free_sched_cb+0x190/0x190 [ 605.121870][ C1] ? hrtimer_interrupt+0x8d0/0x8d0 [ 605.121890][ C1] ? ktime_get_update_offsets_now+0x3ce/0x3e0 [ 605.121913][ C1] hrtimer_interrupt+0x3bb/0x8d0 [ 605.121952][ C1] __sysvec_apic_timer_interrupt+0x137/0x4a0 [ 605.121972][ C1] sysvec_apic_timer_interrupt+0x9b/0xc0 [ 605.121992][ C1] [ 605.121997][ C1] [ 605.122003][ C1] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 605.122022][ C1] RIP: 0010:lock_release+0x128/0x870 [ 605.122044][ C1] Code: 4c 8d b3 ec 0a 00 00 4c 89 f0 48 c1 e8 03 42 0f b6 04 28 84 c0 0f 85 28 05 00 00 41 83 3e 00 0f 85 58 04 00 00 48 89 5c 24 18 <48> c7 84 24 a0 00 00 00 00 00 00 00 9c 8f 84 24 a0 00 00 00 48 8b [ 605.122059][ C1] RSP: 0018:ffffc900014ef920 EFLAGS: 00000246 [ 605.122073][ C1] RAX: 0000000000000000 RBX: ffff88801e635940 RCX: b8aae14ac7e96900 [ 605.122086][ C1] RDX: 0000000000000000 RSI: ffffffff8a59e560 RDI: ffffffff8a59e520 [ 605.122099][ C1] RBP: ffffc900014efa30 R08: dffffc0000000000 R09: fffffbfff1ad33a6 [ 605.122113][ C1] R10: fffffbfff1ad33a6 R11: 1ffffffff1ad33a5 R12: 0000000000010cc4 [ 605.122127][ C1] R13: dffffc0000000000 R14: ffff88801e63642c R15: 1ffff9200029df30 [ 605.122153][ C1] ? rcu_lock_release+0x5/0x20 [ 605.122173][ C1] ? read_lock_is_recursive+0x10/0x10 [ 605.122195][ C1] ? __lock_acquire+0x7c60/0x7c60 [ 605.122223][ C1] inet_twsk_purge+0x77d/0x810 [ 605.122250][ C1] ? __inet_twsk_schedule+0x130/0x130 [ 605.122270][ C1] ? iput+0x706/0x8a0 [ 605.122291][ C1] ? dccp_v6_exit_net+0x80/0x80 [ 605.122313][ C1] cleanup_net+0x77b/0xb80 [ 605.122333][ C1] ? ops_free_list+0x330/0x330 [ 605.122355][ C1] ? _raw_spin_unlock_irq+0x1f/0x40 [ 605.122375][ C1] process_one_work+0x863/0x1000 [ 605.122402][ C1] ? worker_detach_from_pool+0x240/0x240 [ 605.122420][ C1] ? lockdep_hardirqs_off+0x70/0x100 [ 605.122441][ C1] ? _raw_spin_lock_irq+0xab/0xe0 [ 605.122458][ C1] ? _raw_spin_lock_irqsave+0xf0/0xf0 [ 605.122477][ C1] ? wq_worker_running+0x97/0x170 [ 605.122495][ C1] worker_thread+0xaa8/0x12a0 [ 605.122515][ C1] ? lockdep_hardirqs_on+0x94/0x140 [ 605.122538][ C1] ? lockdep_hardirqs_on+0x94/0x140 [ 605.122557][ C1] ? _raw_spin_unlock_irqrestore+0xaa/0x100 [ 605.122581][ C1] kthread+0x436/0x520 [ 605.122597][ C1] ? rcu_lock_release+0x20/0x20 [ 605.122614][ C1] ? kthread_blkcg+0xd0/0xd0 [ 605.122631][ C1] ret_from_fork+0x1f/0x30 [ 605.122657][ C1]