last executing test programs: 28.414929526s ago: executing program 4 (id=202): syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000000c0)='sched_switch\x00', r0}, 0x10) fcntl$lock(0xffffffffffffffff, 0x7, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000700), 0x2, 0x0) write$uinput_user_dev(r1, &(0x7f0000000100)={'syz1\x00', {}, 0x7, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff], [0x0, 0x0, 0x0, 0x4e]}, 0x45c) ioctl$UI_DEV_SETUP(r1, 0x5501, 0x0) readv(r1, &(0x7f0000001900)=[{&(0x7f0000000040)=""/65, 0x41}], 0x1) write$input_event(r1, 0x0, 0x0) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r2, 0xc0505350, &(0x7f0000000700)={{0x0, 0x1}, {0xf, 0x2f}, 0xfffffffd}) syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x6e, 0x0, 0x2043}}}, 0x7) syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x5ac, 0x232, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x1, 0x2, 0x0, {0x9}}}]}}]}}, 0x0) 26.052386347s ago: executing program 2 (id=211): r0 = socket$inet_udp(0x2, 0x2, 0x0) prctl$PR_SET_SPECULATION_CTRL(0x35, 0x0) syz_usb_connect(0x0, 0x3f, &(0x7f0000000540)=ANY=[@ANYBLOB="12010000a13de30840205029f1850102030109022d0002000000000904210001d553e500090506050000"], 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=@ipv6_newnexthop={0x18, 0x68, 0x1, 0x0, 0x0, {0x2}}, 0x18}}, 0x0) sendmsg$nl_route(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000004200291b"], 0x14}}, 0x0) recvmmsg(r4, &(0x7f000000bf80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) ioctl$RTC_UIE_ON(r3, 0x7003) ioctl$RTC_SET_TIME(r3, 0x4024700a, &(0x7f0000000040)={0x2, 0x37, 0x6, 0x19, 0x3, 0x64, 0x2, 0x106, 0xffffffffffffffff}) sendmsg$nl_route(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000100)=@RTM_DELMDB={0x38, 0x55, 0x93d, 0x0, 0x0, {0x7, r1}, [@MDBA_SET_ENTRY={0x20, 0x1, {r1, 0x0, 0x0, 0x0, {@ip4=@local, 0x86dd}}}]}, 0x38}}, 0x0) syz_usb_connect$uac1(0x3, 0xb4, &(0x7f0000000000)=ANY=[@ANYRESHEX=r2], 0x0) 25.233004041s ago: executing program 4 (id=216): r0 = fsopen(0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = socket(0x2, 0x80805, 0x0) sendmmsg$inet(r1, &(0x7f0000000880)=[{{&(0x7f0000000080)={0x2, 0x0, @rand_addr=0xac1414bb}, 0x10, &(0x7f0000000100)=[{&(0x7f00000000c0)='Q', 0x1}], 0x1}, 0x20000000}, {{&(0x7f0000000180)={0x2, 0x0, @remote}, 0x69, &(0x7f0000000400)=[{&(0x7f0000000240)="b9", 0x26892}], 0xbb}}], 0x2, 0x0) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b0f, &(0x7f0000000000)={'wlan1\x00', @random="00000c37d7ac"}) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8b04, &(0x7f0000000000)={'wlan1\x00'}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002) add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xfffffffffffffffd) 24.661154584s ago: executing program 4 (id=219): syz_clone(0x2000300, 0x0, 0x35, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x3) syz_open_dev$I2C(&(0x7f0000000040), 0x0, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000000340)=""/102392, 0x18ff8) shmctl$IPC_RMID(0x0, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000140)=0x7) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080)=0xff) r2 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$IPT_SO_SET_REPLACE(r2, 0x9003000000000000, 0x40, &(0x7f0000000b40)=@raw={'raw\x00', 0x2, 0x3, 0x2c8, 0x0, 0x178, 0x178, 0x178, 0x178, 0x230, 0x230, 0x230, 0x230, 0x230, 0x3, 0x0, {[{{@uncond, 0x0, 0x158, 0x178, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'kmp\x00', "d9d9e63590ab5471c46924e95540949f0cd7e2b0a94d71d9d944acb7f0a1297674a95b30cee19db4c1725572ba928385b1635c89b58ae9a0e1ea500b26f006da3fa8a134552f7980e92de5a784cd4f46e799e191835d7d5ea776f04bef524e22f0bb6ed4b00f44ceb936943e13fa1caa6b4b159c673db1efa9a08b1ddc74ce6c", 0x43, 0x3}}, @common=@inet=@socket3={{0x28}, 0x51}]}, @unspec=@NOTRACK={0x20}}, {{@uncond, 0x0, 0x98, 0xb8, 0x0, {}, [@common=@inet=@set2={{0x28}}]}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x328) 24.22750916s ago: executing program 2 (id=221): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) syz_usb_disconnect(0xffffffffffffffff) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x51, 0x44000) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mlockall(0x7) mlockall(0x3) mlockall(0x1) mount_setattr(0xffffffffffffffff, &(0x7f0000002c80)='./file0\x00', 0x8c00, 0x0, 0x0) 22.036508038s ago: executing program 2 (id=225): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = shmget$private(0x0, 0x2000, 0x400, &(0x7f0000e84000/0x2000)=nil) shmctl$SHM_INFO(r1, 0xe, &(0x7f0000001400)=""/182) getsockopt$sock_cred(r0, 0x1, 0x1c, &(0x7f0000009040), &(0x7f0000009080)=0xc) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) write(r2, &(0x7f0000000340)="08000000010000", 0x7) r3 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0) connect$netlink(0xffffffffffffffff, &(0x7f0000000200)=@proc={0x10, 0x0, 0x3, 0x10}, 0xc) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000008c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_INTERFACE(r4, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000140)={0x38, r5, 0x1, 0x0, 0x0, {{}, {@void, @val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'nicvf0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x9}]}, 0x38}}, 0x0) 21.84313606s ago: executing program 0 (id=226): mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="1500000065ffff0010000008003950323030302e75"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENT(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="58000000000000009fed2788c5532994414b47034801d524faf416638217", @ANYRES32], 0x58) mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1]) chdir(&(0x7f0000000100)='./file0\x00') read$FUSE(r0, &(0x7f0000002380)={0x2020}, 0x2020) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.net/syz0\x00', 0x200002, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r4) mkdir(&(0x7f0000000340)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0xfffe) 21.716149266s ago: executing program 0 (id=228): bind$unix(0xffffffffffffffff, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='rcu_utilization\x00', r0, 0x0, 0x2}, 0x18) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0xc010) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000026006bab9a3fe3d86e17aa31106b876c1d0000007ea60864160af36504001a0038001d004231a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb5b64f69853362ac3407173ec", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x40) recvmsg$kcm(r1, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r3) socket$netlink(0x10, 0x3, 0x0) ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) recvmsg$kcm(r1, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0) 21.652722412s ago: executing program 2 (id=229): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdir(&(0x7f00000004c0)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@metacopy_on}]}) chdir(&(0x7f0000000140)='./bus\x00') mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0) mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000280)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1000, 0x0) mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000040)='./file0/file0\x00', 0x0, 0x91905a, 0x0) mount$bind(&(0x7f00000001c0)='./file0/../file0\x00', &(0x7f0000000dc0)='./file0/file0\x00', 0x0, 0x1145d10, 0x0) mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') read$FUSE(r0, &(0x7f0000004480)={0x2020}, 0x2020) 21.300578077s ago: executing program 1 (id=231): r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0) ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000040)={@host}) ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r0, 0x7a5, &(0x7f0000000000)={{@any, 0xffffffff}, 0x1}) socket$vsock_stream(0x28, 0x1, 0x0) r1 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r1, &(0x7f0000000640)={0x28, 0x0, 0x2710}, 0x10) r2 = io_uring_setup(0x3454, &(0x7f0000000080)={0x0, 0xffffeffe, 0x18, 0x2}) io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r2, 0x10, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)=[{0x0}], 0x0, 0x1, 0x2000000}, 0x20) r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r4 = dup(r3) write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c) pselect6(0x0, 0x0, 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0xffffffffffffffff}, 0x0, 0x0) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 21.29924509s ago: executing program 2 (id=232): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) socket$key(0xf, 0x3, 0x2) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x8000) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) r2 = syz_io_uring_setup(0x497, &(0x7f0000000400)={0x0, 0x7079, 0x0, 0x4, 0x316}, &(0x7f0000000340)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}) io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0x0) getsockopt$bt_hci(r0, 0x84, 0x9, &(0x7f0000001f00)=""/4062, &(0x7f00000004c0)=0x744) openat2$dir(0xffffff9c, &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) 21.035222197s ago: executing program 2 (id=233): socket$netlink(0x10, 0x3, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000001400)='0', 0x1) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e"], 0x0) write$binfmt_script(r3, &(0x7f0000000100), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000000, 0x28011, r3, 0x1fa2b000) 20.817057429s ago: executing program 32 (id=233): socket$netlink(0x10, 0x3, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000001400)='0', 0x1) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e"], 0x0) write$binfmt_script(r3, &(0x7f0000000100), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000000, 0x28011, r3, 0x1fa2b000) 20.790093468s ago: executing program 0 (id=235): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, 0x0) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080), 0xc2800, 0x0) waitid(0x2, 0x0, 0xfffffffffffffffd, 0x8, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f00000000c0)) ppoll(&(0x7f0000000000)=[{r1}], 0x1, 0x0, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0) 19.808720714s ago: executing program 0 (id=236): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) socket$netlink(0x10, 0x3, 0x4) r0 = userfaultfd(0x1) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000800000/0x800000)=nil, 0x800000}, 0x2}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6) 19.808419466s ago: executing program 1 (id=237): socket$nl_generic(0x10, 0x3, 0x10) io_setup(0x4082, &(0x7f0000000380)) bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = creat(0x0, 0x0) r1 = socket$inet(0x2, 0x3, 0x2) setsockopt$inet_mreqsrc(r1, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local, @local}, 0xc) setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000000)={@multicast2, @local, 0x1, 0x1, [@broadcast]}, 0x14) ioctl$AUTOFS_IOC_EXPIRE(0xffffffffffffffff, 0x810c9365, 0x0) r2 = socket$inet(0x2, 0x3, 0x4) bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000400)={0x3, 0x4, 0x4, 0xa, 0x0, r0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x4, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001540)={0x1b, 0x0, 0x0, 0x3f, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x2, 0x3, 0x3, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) setsockopt$inet_msfilter(r2, 0x0, 0x23, &(0x7f0000004b00)=ANY=[@ANYBLOB="e0000808ac1414aa"], 0x10) syz_emit_ethernet(0x2a, &(0x7f0000000000)={@broadcast, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @private}, @address_request}}}}, 0x0) 19.808170609s ago: executing program 4 (id=238): r0 = openat$6lowpan_control(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$6lowpan_control(r0, &(0x7f0000001a40)='connect aa:aa:aa:aa:aa:10 2', 0x1b) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={0xffffffffffffffff, &(0x7f0000000080), 0x0}, 0x20) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000c80)=@raw={'raw\x00', 0x3c1, 0x3, 0x4c0, 0x2e0, 0x940c, 0x3002, 0x2e0, 0x2c0, 0x3f0, 0x3d8, 0x3d8, 0x3f0, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0x298, 0x2e0, 0x4001, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x4001, 0x1, 0x3, 'syz0\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x2, 0x0, 'syz0\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@uncond, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x1, 0xbe, {0x565159d7}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x520) 18.768538899s ago: executing program 4 (id=239): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, 0x0, 0x0, 0x0) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x35c, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10) r4 = openat$sysfs(0xffffff9c, &(0x7f00000000c0)='/sys/kernel/fscaps', 0x0, 0x0) finit_module(r4, 0x0, 0x0) 18.720321598s ago: executing program 0 (id=240): pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f00000001c0)=0x7ff, 0x4) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x8000002, 0x2000}, 0x1c) sendto$inet6(r1, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c) sendto$inet6(r1, &(0x7f0000000080)="44f9b108b1cdc885c9c533d21f474bec8bfef1df1e2da71e578dc6b91d09f7ab15378571d8e27546090000006e75436914ab717528ee4b7a9beaf908d11137c11903064e83b4951f4d433a5404970c85d92d7083fd38844cbb0c6c5eb508ddc2dc7a590aa7941b1e9eeb5a688138dea09b776cbfa784cbf550bf3074fb0d775da4df5a3f48bbdf452eeb6b923da9d0e25b80f76a873664b5753444fe05f33e5f91045540836c3cd6af10f0cd018f0c6f57f926ac959a5628c45088fbe0c87fbe6cbcda4662d2a12f6d00"/215, 0xd0d0c2ac, 0x1, 0x0, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) splice(r1, 0x0, r0, 0x0, 0x406f413, 0x0) r2 = socket$igmp6(0xa, 0x3, 0x2) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f00000000c0)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xe, 0x4008031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) fanotify_mark(0xffffffffffffffff, 0x48bf7b268b465224, 0x8000032, 0xffffffffffffffff, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488) 18.663151462s ago: executing program 3 (id=241): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) 18.588859193s ago: executing program 1 (id=242): sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'veth0_to_batadv\x00'}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x0, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = io_uring_setup(0x4896, &(0x7f00000004c0)={0x0, 0xbcd3, 0x80, 0x3, 0x2be}) r2 = openat$proc_mixer(0xffffff9c, &(0x7f0000000180)='/proc/asound/card0/oss_mixer\x00', 0x80a2, 0x0) write$proc_mixer(r2, &(0x7f00000001c0)=ANY=[@ANYBLOB='LINE2 \'Master Playback VoluMe\' 00000000000000000000\nPHONEIN\nRADIO \'Master Capture Switch\' 00000000000000000000\nRA'], 0xd4) close_range(r1, 0xffffffffffffffff, 0x0) 18.15854139s ago: executing program 4 (id=243): unshare(0x6a040000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) r2 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10) recvmmsg(r2, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0) mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x4, 0x3032, 0xffffffffffffffff, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) unshare(0xc000000) 18.157970163s ago: executing program 1 (id=252): bpf$PROG_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) openat$uhid(0xffffffffffffff9c, &(0x7f0000000100), 0x802, 0x0) 17.26890387s ago: executing program 3 (id=244): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) r1 = eventfd(0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000200)={0x1, 0x101}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, 0x0, &(0x7f00000002c0)=""/138, 0x0}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000a40)={0x2, 0x0, [{0x0, 0x3d, &(0x7f0000000500)=""/61}, {0x0, 0xc8, &(0x7f00000007c0)=""/200}]}) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x20000) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x8b}}, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000040), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000001, 0x28011, r2, 0x0) 17.243760741s ago: executing program 1 (id=245): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000380)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = syz_open_procfs(r0, &(0x7f00000001c0)='net/mcfilter6\x00') preadv(r3, &(0x7f0000000280)=[{&(0x7f00000000c0)=""/205, 0xcd}], 0x1, 0x409f, 0x0) r4 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000780)=@raw={'raw\x00', 0x3c1, 0x3, 0x398, 0x0, 0x4c, 0x1a, 0xc000000, 0x73, 0x2c8, 0x258, 0x258, 0x2c8, 0x258, 0x3, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00', @local, [], [], 'wg2\x00', 'macvlan1\x00'}, 0x0, 0x168, 0x198, 0x0, {}, [@common=@inet=@l2tp={{0x30}, {0x40000, 0x0, 0x2, 0x0, 0x7}}, @common=@srh1={{0x90}, {0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @rand_addr=' \x01\x00', @dev}}]}, @common=@inet=@SET2={0x30}}, {{@uncond, 0x0, 0xf8, 0x130, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@icmp6={{0x28}, {0x0, "e1f6"}}]}, @common=@inet=@SET3={0x38}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3f8) 16.674907716s ago: executing program 3 (id=246): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) socket(0x2a, 0x2, 0x0) socket$nl_route(0x10, 0x3, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='task_newtask\x00', r0}, 0x10) r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) close(r2) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000005100000000000000000a200000000900010073797a300000000014000000100001"], 0x48}}, 0x20050800) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x9, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x22, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000380), 0xffffffffffffffff) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="90000000", @ANYRES16=r4, @ANYBLOB="01000000000000000000010000000c000597ff000000000000000c0002000000000000000000040007800c000800000000000000000008000a00000000004400078008000100", @ANYRES32, @ANYBLOB="32000100", @ANYRES32=r5, @ANYBLOB="64800400", @ANYRES32, @ANYBLOB='\b'], 0x90}}, 0x0) 16.529693849s ago: executing program 3 (id=247): sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x38}, 0x1, 0x0, 0x0, 0x8001}, 0x850) openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) socket$inet6(0xa, 0x5, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) gettid() ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r1 = syz_open_dev$dri(&(0x7f0000000000), 0x29, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000380)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r1, 0xc05064a7, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)=[0x0], &(0x7f00000000c0), 0x0, 0x1, 0x0, 0x0, r2}) 16.321012274s ago: executing program 1 (id=248): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xaddb6000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, 0x0, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4c0000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="000004001004000024001a80200002801c00018008001a00060000000800160002000000080010000004000008001b"], 0x4c}, 0x1, 0x0, 0x0, 0x1}, 0x0) 16.079688382s ago: executing program 3 (id=249): ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_open_dev$MSR(0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5) syz_open_dev$vim2m(&(0x7f00000001c0), 0x0, 0x2) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f00000016c0), 0x3af4701e) 15.609757765s ago: executing program 0 (id=250): bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x1) sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x24048844) r0 = socket$nl_route(0x10, 0x3, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=@ipv4_newroute={0x1c, 0x18, 0x35f32a6dfa748ddd, 0x0, 0x2, {0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x6, 0x1400}}, 0x1c}}, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCADDRT(r2, 0x890b, &(0x7f0000000140)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @remote}, {0x2, 0x0, @private}, 0xd0}) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSARP(r3, 0x8953, &(0x7f0000000180)={{0x2, 0x2, @multicast2}, {0x0, @random="ae1457ad617e"}, 0x0, {0x2, 0xfffc, @multicast1=0xe000cc02}}) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000001800dd8d000000f90000000002000600"], 0x1c}}, 0x0) pwritev2(0xffffffffffffffff, 0x0, 0x0, 0xcfba, 0x0, 0x0) 15.469966308s ago: executing program 3 (id=251): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$can_j1939(0x1d, 0x2, 0x7) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) bind$can_j1939(r1, &(0x7f0000000240)={0x1d, r3, 0x0, {0x0, 0x0, 0x4}}, 0x18) connect$can_j1939(r1, &(0x7f0000000340)={0x1d, r3, 0x2, {0x0, 0x1, 0x4}, 0xff}, 0x18) r4 = socket$can_j1939(0x1d, 0x2, 0x7) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000380)={'vcan0\x00', 0x0}) r7 = socket$can_j1939(0x1d, 0x2, 0x7) bind$can_j1939(r7, &(0x7f0000000080)={0x1d, r6, 0x0, {0x0, 0x0, 0x4}}, 0x18) sendmsg$can_j1939(r7, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, &(0x7f0000000180)={&(0x7f00000000c0)="92", 0x1a000}}, 0xee) ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@newtfilter={0x24, 0x11, 0x1, 0x74bd2c, 0x0, {0x0, 0x0, 0x74, r8, {0x2, 0x4}, {0xa, 0x4}, {0xa}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x40804}, 0x0) 3.005243124s ago: executing program 33 (id=243): unshare(0x6a040000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) r2 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10) recvmmsg(r2, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0) mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x4, 0x3032, 0xffffffffffffffff, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) unshare(0xc000000) 1.003462699s ago: executing program 34 (id=248): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xaddb6000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, 0x0, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4c0000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="000004001004000024001a80200002801c00018008001a00060000000800160002000000080010000004000008001b"], 0x4c}, 0x1, 0x0, 0x0, 0x1}, 0x0) 505.596617ms ago: executing program 35 (id=250): bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x1) sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x24048844) r0 = socket$nl_route(0x10, 0x3, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=@ipv4_newroute={0x1c, 0x18, 0x35f32a6dfa748ddd, 0x0, 0x2, {0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x6, 0x1400}}, 0x1c}}, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCADDRT(r2, 0x890b, &(0x7f0000000140)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @remote}, {0x2, 0x0, @private}, 0xd0}) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSARP(r3, 0x8953, &(0x7f0000000180)={{0x2, 0x2, @multicast2}, {0x0, @random="ae1457ad617e"}, 0x0, {0x2, 0xfffc, @multicast1=0xe000cc02}}) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000001800dd8d000000f90000000002000600"], 0x1c}}, 0x0) pwritev2(0xffffffffffffffff, 0x0, 0x0, 0xcfba, 0x0, 0x0) 0s ago: executing program 36 (id=251): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$can_j1939(0x1d, 0x2, 0x7) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) bind$can_j1939(r1, &(0x7f0000000240)={0x1d, r3, 0x0, {0x0, 0x0, 0x4}}, 0x18) connect$can_j1939(r1, &(0x7f0000000340)={0x1d, r3, 0x2, {0x0, 0x1, 0x4}, 0xff}, 0x18) r4 = socket$can_j1939(0x1d, 0x2, 0x7) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000380)={'vcan0\x00', 0x0}) r7 = socket$can_j1939(0x1d, 0x2, 0x7) bind$can_j1939(r7, &(0x7f0000000080)={0x1d, r6, 0x0, {0x0, 0x0, 0x4}}, 0x18) sendmsg$can_j1939(r7, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, &(0x7f0000000180)={&(0x7f00000000c0)="92", 0x1a000}}, 0xee) ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@newtfilter={0x24, 0x11, 0x1, 0x74bd2c, 0x0, {0x0, 0x0, 0x74, r8, {0x2, 0x4}, {0xa, 0x4}, {0xa}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x40804}, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.53' (ED25519) to the list of known hosts. [ 48.103141][ T29] audit: type=1400 audit(1737882690.201:88): avc: denied { mounton } for pid=5804 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1925 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 48.104380][ T5804] cgroup: Unknown subsys name 'net' [ 48.131124][ T29] audit: type=1400 audit(1737882690.201:89): avc: denied { mount } for pid=5804 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 48.153344][ T29] audit: type=1400 audit(1737882690.231:90): avc: denied { unmount } for pid=5804 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 48.296216][ T5804] cgroup: Unknown subsys name 'cpuset' [ 48.302874][ T5804] cgroup: Unknown subsys name 'rlimit' [ 48.398655][ T29] audit: type=1400 audit(1737882690.501:91): avc: denied { setattr } for pid=5804 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=820 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 48.422790][ T29] audit: type=1400 audit(1737882690.501:92): avc: denied { create } for pid=5804 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 48.447353][ T29] audit: type=1400 audit(1737882690.501:93): avc: denied { write } for pid=5804 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 48.465459][ T5806] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 48.467793][ T29] audit: type=1400 audit(1737882690.501:94): avc: denied { read } for pid=5804 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 Setting up swapspace version 1, size = 127995904 bytes [ 48.496804][ T29] audit: type=1400 audit(1737882690.501:95): avc: denied { mounton } for pid=5804 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 48.521664][ T29] audit: type=1400 audit(1737882690.501:96): avc: denied { mount } for pid=5804 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 48.545413][ T29] audit: type=1400 audit(1737882690.551:97): avc: denied { read } for pid=5486 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1 [ 49.149100][ T5804] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 50.713920][ T5820] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 50.714517][ T5822] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 50.721134][ T5820] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 50.728799][ T5822] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 50.742206][ T5824] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 50.745013][ T5822] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 50.757026][ T5822] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 50.761856][ T5825] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 50.764094][ T5822] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 50.771149][ T5829] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 50.779985][ T5825] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 50.785548][ T5830] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 50.792995][ T5822] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 50.799988][ T5829] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 50.806940][ T5822] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 50.814699][ T5829] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 50.827520][ T5830] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 50.827851][ T5822] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 50.834838][ T5830] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 50.842614][ T5822] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 50.849296][ T5831] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 50.855901][ T5822] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 50.863458][ T5830] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 50.869594][ T5822] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 50.876855][ T5830] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 50.884954][ T5822] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 50.890699][ T5830] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 50.909438][ T5824] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 50.916882][ T5824] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 50.924098][ T5824] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 51.036049][ T5814] chnl_net:caif_netlink_parms(): no params data found [ 51.157728][ T5814] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.164865][ T5814] bridge0: port 1(bridge_slave_0) entered disabled state [ 51.171967][ T5814] bridge_slave_0: entered allmulticast mode [ 51.178566][ T5814] bridge_slave_0: entered promiscuous mode [ 51.186426][ T5814] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.193552][ T5814] bridge0: port 2(bridge_slave_1) entered disabled state [ 51.200912][ T5814] bridge_slave_1: entered allmulticast mode [ 51.207940][ T5814] bridge_slave_1: entered promiscuous mode [ 51.218283][ T5818] chnl_net:caif_netlink_parms(): no params data found [ 51.244635][ T5827] chnl_net:caif_netlink_parms(): no params data found [ 51.261872][ T5814] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 51.282037][ T5814] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 51.324130][ T5814] team0: Port device team_slave_0 added [ 51.329917][ T5815] chnl_net:caif_netlink_parms(): no params data found [ 51.338216][ T5823] chnl_net:caif_netlink_parms(): no params data found [ 51.352818][ T5814] team0: Port device team_slave_1 added [ 51.366031][ T5818] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.373106][ T5818] bridge0: port 1(bridge_slave_0) entered disabled state [ 51.380391][ T5818] bridge_slave_0: entered allmulticast mode [ 51.386815][ T5818] bridge_slave_0: entered promiscuous mode [ 51.402235][ T5814] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 51.409255][ T5814] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 51.435164][ T5814] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 51.448274][ T5814] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 51.455266][ T5814] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 51.481295][ T5814] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 51.492179][ T5818] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.499396][ T5818] bridge0: port 2(bridge_slave_1) entered disabled state [ 51.506625][ T5818] bridge_slave_1: entered allmulticast mode [ 51.512868][ T5818] bridge_slave_1: entered promiscuous mode [ 51.519321][ T5827] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.526384][ T5827] bridge0: port 1(bridge_slave_0) entered disabled state [ 51.533450][ T5827] bridge_slave_0: entered allmulticast mode [ 51.540015][ T5827] bridge_slave_0: entered promiscuous mode [ 51.571894][ T5827] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.579063][ T5827] bridge0: port 2(bridge_slave_1) entered disabled state [ 51.586364][ T5827] bridge_slave_1: entered allmulticast mode [ 51.592614][ T5827] bridge_slave_1: entered promiscuous mode [ 51.615374][ T5815] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.622455][ T5815] bridge0: port 1(bridge_slave_0) entered disabled state [ 51.629895][ T5815] bridge_slave_0: entered allmulticast mode [ 51.636298][ T5815] bridge_slave_0: entered promiscuous mode [ 51.654402][ T5815] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.661549][ T5815] bridge0: port 2(bridge_slave_1) entered disabled state [ 51.668765][ T5815] bridge_slave_1: entered allmulticast mode [ 51.675422][ T5815] bridge_slave_1: entered promiscuous mode [ 51.682443][ T5818] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 51.692774][ T5827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 51.714159][ T5818] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 51.728424][ T5827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 51.742975][ T5814] hsr_slave_0: entered promiscuous mode [ 51.749054][ T5814] hsr_slave_1: entered promiscuous mode [ 51.766038][ T5823] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.773129][ T5823] bridge0: port 1(bridge_slave_0) entered disabled state [ 51.780694][ T5823] bridge_slave_0: entered allmulticast mode [ 51.787046][ T5823] bridge_slave_0: entered promiscuous mode [ 51.798868][ T5815] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 51.808637][ T5818] team0: Port device team_slave_0 added [ 51.818059][ T5823] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.825202][ T5823] bridge0: port 2(bridge_slave_1) entered disabled state [ 51.832280][ T5823] bridge_slave_1: entered allmulticast mode [ 51.838838][ T5823] bridge_slave_1: entered promiscuous mode [ 51.852822][ T5815] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 51.866684][ T5818] team0: Port device team_slave_1 added [ 51.872851][ T5827] team0: Port device team_slave_0 added [ 51.892964][ T5827] team0: Port device team_slave_1 added [ 51.899760][ T5823] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 51.911103][ T5815] team0: Port device team_slave_0 added [ 51.925057][ T5823] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 51.936744][ T5815] team0: Port device team_slave_1 added [ 51.943985][ T5818] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 51.951205][ T5818] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 51.977488][ T5818] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 52.005117][ T5818] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 52.012096][ T5818] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 52.038239][ T5818] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 52.049306][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 52.056533][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 52.082618][ T5827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 52.093998][ T5823] team0: Port device team_slave_0 added [ 52.100869][ T5823] team0: Port device team_slave_1 added [ 52.111387][ T5815] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 52.118505][ T5815] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 52.145913][ T5815] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 52.162746][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 52.169890][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 52.196216][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 52.213721][ T5815] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 52.221248][ T5815] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 52.247392][ T5815] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 52.283464][ T5818] hsr_slave_0: entered promiscuous mode [ 52.289462][ T5818] hsr_slave_1: entered promiscuous mode [ 52.295616][ T5818] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 52.303170][ T5818] Cannot create hsr debugfs directory [ 52.309055][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 52.316019][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 52.341923][ T5823] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 52.354490][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 52.361493][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 52.387441][ T5823] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 52.411221][ T5815] hsr_slave_0: entered promiscuous mode [ 52.417637][ T5815] hsr_slave_1: entered promiscuous mode [ 52.423367][ T5815] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 52.431124][ T5815] Cannot create hsr debugfs directory [ 52.450955][ T5827] hsr_slave_0: entered promiscuous mode [ 52.457092][ T5827] hsr_slave_1: entered promiscuous mode [ 52.462818][ T5827] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 52.470649][ T5827] Cannot create hsr debugfs directory [ 52.511568][ T5823] hsr_slave_0: entered promiscuous mode [ 52.517525][ T5823] hsr_slave_1: entered promiscuous mode [ 52.523276][ T5823] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 52.530956][ T5823] Cannot create hsr debugfs directory [ 52.558108][ T5814] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 52.578335][ T5814] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 52.597476][ T5814] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 52.605730][ T5814] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 52.674138][ T5818] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 52.682947][ T5818] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 52.691709][ T5818] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 52.702758][ T5818] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 52.732576][ T5815] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 52.741202][ T5815] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 52.750107][ T5815] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 52.758685][ T5815] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 52.789579][ T5827] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 52.800013][ T5827] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 52.812931][ T5827] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 52.821254][ T5827] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 52.849589][ T5823] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 52.859761][ T5823] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 52.869476][ T5823] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 52.877748][ T5823] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 52.896312][ T5814] 8021q: adding VLAN 0 to HW filter on device bond0 [ 52.920451][ T5814] 8021q: adding VLAN 0 to HW filter on device team0 [ 52.935054][ T5819] Bluetooth: hci2: command tx timeout [ 52.935239][ T3558] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.940460][ T5819] Bluetooth: hci0: command tx timeout [ 52.947533][ T3558] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.952890][ T5824] Bluetooth: hci1: command tx timeout [ 52.965494][ T5824] Bluetooth: hci3: command tx timeout [ 52.996255][ T5818] 8021q: adding VLAN 0 to HW filter on device bond0 [ 53.006066][ T5815] 8021q: adding VLAN 0 to HW filter on device bond0 [ 53.018264][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.024598][ T5824] Bluetooth: hci4: command tx timeout [ 53.025547][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 53.049298][ T5818] 8021q: adding VLAN 0 to HW filter on device team0 [ 53.059515][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0 [ 53.070905][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.078058][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 53.096880][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.103949][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 53.116102][ T5815] 8021q: adding VLAN 0 to HW filter on device team0 [ 53.131974][ T3558] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.139083][ T3558] bridge0: port 1(bridge_slave_0) entered forwarding state [ 53.156758][ T5823] 8021q: adding VLAN 0 to HW filter on device bond0 [ 53.169447][ T5823] 8021q: adding VLAN 0 to HW filter on device team0 [ 53.179222][ T29] kauditd_printk_skb: 14 callbacks suppressed [ 53.179235][ T29] audit: type=1400 audit(1737882695.281:112): avc: denied { sys_module } for pid=5814 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 53.180940][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.213482][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 53.225078][ T5827] 8021q: adding VLAN 0 to HW filter on device team0 [ 53.238836][ T5818] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 53.250115][ T5818] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 53.264183][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.271326][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 53.286185][ T3558] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.293249][ T3558] bridge0: port 1(bridge_slave_0) entered forwarding state [ 53.302332][ T3558] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.309427][ T3558] bridge0: port 2(bridge_slave_1) entered forwarding state [ 53.318390][ T3558] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.325489][ T3558] bridge0: port 2(bridge_slave_1) entered forwarding state [ 53.351394][ T5814] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 53.401659][ T5823] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 53.435187][ T5827] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 53.446567][ T5827] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 53.480404][ T5814] veth0_vlan: entered promiscuous mode [ 53.516598][ T5814] veth1_vlan: entered promiscuous mode [ 53.549729][ T5814] veth0_macvtap: entered promiscuous mode [ 53.576711][ T5814] veth1_macvtap: entered promiscuous mode [ 53.589865][ T5815] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 53.606990][ T5818] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 53.618953][ T5814] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 53.628223][ T5814] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 53.642368][ T5823] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 53.651483][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 53.662058][ T5814] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 53.671998][ T5814] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 53.682343][ T5814] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 53.692791][ T5814] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 53.746458][ T5818] veth0_vlan: entered promiscuous mode [ 53.769992][ T5818] veth1_vlan: entered promiscuous mode [ 53.782175][ T5823] veth0_vlan: entered promiscuous mode [ 53.789882][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 53.802198][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 53.820562][ T5815] veth0_vlan: entered promiscuous mode [ 53.828735][ T5823] veth1_vlan: entered promiscuous mode [ 53.839980][ T51] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 53.847504][ T5827] veth0_vlan: entered promiscuous mode [ 53.857395][ T51] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 53.860740][ T5818] veth0_macvtap: entered promiscuous mode [ 53.871997][ T5815] veth1_vlan: entered promiscuous mode [ 53.885580][ T29] audit: type=1400 audit(1737882695.991:113): avc: denied { mounton } for pid=5814 comm="syz-executor" path="/root/syzkaller.dJHuNk/syz-tmp" dev="sda1" ino=1944 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 53.893612][ T5827] veth1_vlan: entered promiscuous mode [ 53.917441][ T29] audit: type=1400 audit(1737882695.991:114): avc: denied { mount } for pid=5814 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 53.921836][ T5818] veth1_macvtap: entered promiscuous mode [ 53.941646][ T29] audit: type=1400 audit(1737882695.991:115): avc: denied { mounton } for pid=5814 comm="syz-executor" path="/root/syzkaller.dJHuNk/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 53.981122][ T5823] veth0_macvtap: entered promiscuous mode [ 53.985206][ T29] audit: type=1400 audit(1737882695.991:116): avc: denied { mount } for pid=5814 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 54.012516][ T29] audit: type=1400 audit(1737882695.991:117): avc: denied { mounton } for pid=5814 comm="syz-executor" path="/root/syzkaller.dJHuNk/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 54.021552][ T5827] veth0_macvtap: entered promiscuous mode [ 54.046775][ T29] audit: type=1400 audit(1737882695.991:118): avc: denied { mounton } for pid=5814 comm="syz-executor" path="/root/syzkaller.dJHuNk/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=6921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 54.077118][ T5814] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 54.086948][ T29] audit: type=1400 audit(1737882695.991:119): avc: denied { unmount } for pid=5814 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 54.095883][ T5823] veth1_macvtap: entered promiscuous mode [ 54.119260][ T29] audit: type=1400 audit(1737882696.021:120): avc: denied { mounton } for pid=5814 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=2724 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 54.128854][ T5815] veth0_macvtap: entered promiscuous mode [ 54.148167][ T29] audit: type=1400 audit(1737882696.021:121): avc: denied { mount } for pid=5814 comm="syz-executor" name="/" dev="gadgetfs" ino=6924 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 54.152549][ T5827] veth1_macvtap: entered promiscuous mode [ 54.178894][ T5818] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 54.189535][ T5818] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 54.200259][ T5818] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 54.221444][ T5823] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 54.232260][ T5823] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 54.242215][ T5823] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 54.252786][ T5823] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 54.263100][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 54.274484][ T5818] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 54.286958][ T5818] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 54.297880][ T5818] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 54.306901][ T5823] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 54.317404][ T5823] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 54.327497][ T5823] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 54.338153][ T5823] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 54.348769][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 54.356523][ T5815] veth1_macvtap: entered promiscuous mode [ 54.369062][ T5818] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.378205][ T5818] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.387029][ T5818] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.395892][ T5818] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.409576][ T5823] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.418472][ T5823] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.427260][ T5823] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.436150][ T5823] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.447342][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 54.458398][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 54.469348][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 54.480065][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 54.490128][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 54.500629][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 54.511121][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 54.522345][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 54.532898][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 54.543167][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 54.553679][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 54.563747][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 54.574261][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 54.585252][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 54.592801][ T5815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 54.603572][ T5815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 54.613598][ T5815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 54.625855][ T5815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 54.635784][ T5815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 54.646454][ T5815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 54.656329][ T5815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 54.666832][ T5815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 54.677223][ T5815] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 54.693563][ T5815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 54.704430][ T5815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 54.714442][ T5815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 54.725255][ T5815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 54.735973][ T5815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 54.746643][ T5815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 54.756565][ T5815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 54.767084][ T5815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 54.778476][ T5815] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 54.787109][ T5827] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.795951][ T5827] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.804904][ T5827] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.813592][ T5827] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.832546][ T5815] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.841495][ T5815] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.850255][ T5815] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.859293][ T5815] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.898359][ T51] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 54.907872][ T51] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 54.923323][ T1088] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 54.933064][ T1088] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 54.938774][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 54.951847][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 54.970280][ T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 54.979168][ T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 55.010276][ T51] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 55.019113][ T5824] Bluetooth: hci0: command tx timeout [ 55.023082][ T51] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 55.024489][ T5824] Bluetooth: hci1: command tx timeout [ 55.024507][ T5824] Bluetooth: hci2: command tx timeout [ 55.042708][ T5820] Bluetooth: hci3: command tx timeout [ 55.066684][ T1088] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 55.086969][ T1088] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 55.095221][ T5824] Bluetooth: hci4: command tx timeout [ 55.185722][ T1088] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 55.194212][ T1088] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 55.388120][ T3558] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 55.399150][ T3558] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.002771][ T5914] futex_wake_op: syz.3.4 tries to shift op by 32; fix this program [ 56.305190][ T5918] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 56.508829][ T5923] syz.1.2: attempt to access beyond end of device [ 56.508829][ T5923] nbd1: rw=0, sector=1, nr_sectors = 1 limit=0 [ 56.521777][ T5923] VFS: could not find a valid V7 on nbd1. [ 56.820643][ T5906] syz.0.1 (5906): drop_caches: 2 [ 57.096722][ T5820] Bluetooth: hci0: command tx timeout [ 57.097201][ T5830] Bluetooth: hci2: command tx timeout [ 57.107636][ T5819] Bluetooth: hci3: command tx timeout [ 57.142533][ T5824] Bluetooth: hci1: command tx timeout [ 57.175455][ T5824] Bluetooth: hci4: command tx timeout [ 57.328336][ T5936] qnx6: unable to read the first superblock [ 57.347848][ T5942] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 57.418828][ T5942] SELinux: Context $ is not valid (left unmapped). [ 57.458519][ T5942] evm: overlay not supported [ 58.344655][ T29] kauditd_printk_skb: 54 callbacks suppressed [ 58.344671][ T29] audit: type=1400 audit(1737882700.441:176): avc: denied { remove_name } for pid=5965 comm="rm" name="resolv.conf.sl0.link" dev="tmpfs" ino=1859 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 58.524902][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 58.534021][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 58.546171][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 58.556597][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 58.564776][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 58.572063][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 58.581675][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 58.590349][ T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!! [ 58.599011][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 58.607416][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 58.864157][ T29] audit: type=1400 audit(1737882700.961:177): avc: denied { create } for pid=5969 comm="syz.4.20" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 58.916466][ T29] audit: type=1400 audit(1737882700.961:178): avc: denied { map } for pid=5969 comm="syz.4.20" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=8584 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 58.947978][ T29] audit: type=1400 audit(1737882700.961:179): avc: denied { read write } for pid=5969 comm="syz.4.20" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=8584 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 59.196065][ T5824] Bluetooth: hci0: command tx timeout [ 59.196343][ T5820] Bluetooth: hci1: command tx timeout [ 59.201598][ T5824] Bluetooth: hci2: command tx timeout [ 59.212695][ T5824] Bluetooth: hci3: command tx timeout [ 59.256709][ T5820] Bluetooth: hci4: command tx timeout [ 59.294727][ T29] audit: type=1400 audit(1737882700.961:180): avc: denied { setopt } for pid=5972 comm="syz.1.18" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 59.343213][ T29] audit: type=1400 audit(1737882700.961:181): avc: denied { bind } for pid=5972 comm="syz.1.18" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 59.507203][ T29] audit: type=1400 audit(1737882700.961:182): avc: denied { name_bind } for pid=5972 comm="syz.1.18" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1 [ 59.532281][ T29] audit: type=1400 audit(1737882700.961:183): avc: denied { node_bind } for pid=5972 comm="syz.1.18" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1 [ 59.553664][ T29] audit: type=1400 audit(1737882700.961:184): avc: denied { getopt } for pid=5972 comm="syz.1.18" laddr=::ffff:0.0.0.0 lport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 59.576062][ T29] audit: type=1400 audit(1737882700.961:185): avc: denied { connect } for pid=5972 comm="syz.1.18" laddr=::ffff:0.0.0.0 lport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 59.610665][ T5957] syz.0.16 (5957): drop_caches: 2 [ 60.102377][ T6013] futex_wake_op: syz.3.26 tries to shift op by 144; fix this program [ 60.574673][ T9] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 60.774632][ T9] usb 4-1: Using ep0 maxpacket: 32 [ 60.786491][ T9] usb 4-1: config 0 has an invalid interface number: 132 but max is 0 [ 60.825881][ T9] usb 4-1: config 0 has no interface number 0 [ 60.832100][ T9] usb 4-1: config 0 interface 132 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32 [ 60.857522][ T9] usb 4-1: New USB device found, idVendor=0413, idProduct=6023, bcdDevice=ec.e5 [ 60.887144][ T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 61.084092][ T9] usb 4-1: Product: syz [ 61.115590][ T9] usb 4-1: Manufacturer: syz [ 61.195033][ T9] usb 4-1: SerialNumber: syz [ 61.208438][ T9] usb 4-1: config 0 descriptor?? [ 61.222174][ T6013] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 61.231171][ T9] em28xx 4-1:0.132: New device syz syz @ 480 Mbps (0413:6023, interface 132, class 132) [ 61.241510][ T9] em28xx 4-1:0.132: Video interface 132 found: bulk [ 61.404649][ T80] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 61.444775][ T971] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 61.506215][ T9] em28xx 4-1:0.132: unknown em28xx chip ID (0) [ 61.564639][ T80] usb 1-1: Using ep0 maxpacket: 16 [ 61.565830][ T9] em28xx 4-1:0.132: failed to trigger read from i2c address 0xa0 (error=-5) [ 61.571329][ T80] usb 1-1: config 0 has an invalid interface number: 214 but max is 0 [ 61.578822][ T9] em28xx 4-1:0.132: board has no eeprom [ 61.592918][ T80] usb 1-1: config 0 has no interface number 0 [ 61.600864][ T80] usb 1-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5 [ 61.610039][ T80] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 61.618574][ T971] usb 5-1: Using ep0 maxpacket: 16 [ 61.623745][ T80] usb 1-1: Product: syz [ 61.628654][ T80] usb 1-1: Manufacturer: syz [ 61.633312][ T80] usb 1-1: SerialNumber: syz [ 61.639739][ T971] usb 5-1: config index 0 descriptor too short (expected 36, got 28) [ 61.648286][ T971] usb 5-1: config 0 descriptor has 1 excess byte, ignoring [ 61.655909][ T80] usb 1-1: config 0 descriptor?? [ 61.661207][ T9] em28xx 4-1:0.132: Identified as Leadtek Winfast USB II (card=7) [ 61.662179][ T971] usb 5-1: config 0 interface 0 altsetting 253 has 0 endpoint descriptors, different from the interface descriptor's value: 5 [ 61.692443][ T971] usb 5-1: config 0 interface 0 has no altsetting 0 [ 61.699550][ T9] em28xx 4-1:0.132: analog set to bulk mode. [ 61.699773][ T971] usb 5-1: New USB device found, idVendor=04d8, idProduct=f002, bcdDevice= 0.00 [ 61.715635][ T971] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 61.715801][ T1208] em28xx 4-1:0.132: Registering V4L2 extension [ 61.731011][ T971] usb 5-1: config 0 descriptor?? [ 61.742586][ T9] usb 4-1: USB disconnect, device number 2 [ 61.744083][ T971] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 61.790002][ T9] em28xx 4-1:0.132: Disconnecting em28xx [ 62.085347][ T1208] em28xx 4-1:0.132: Config register raw data: 0xffffffed [ 62.103765][ T1208] em28xx 4-1:0.132: AC97 chip type couldn't be determined [ 62.107180][ T6031] capability: warning: `syz.4.32' uses 32-bit capabilities (legacy support in use) [ 62.156043][ T1208] em28xx 4-1:0.132: No AC97 audio processor [ 62.174484][ T1208] usb 4-1: Decoder not found [ 62.194087][ T1208] em28xx 4-1:0.132: failed to create media graph [ 62.208643][ T1208] em28xx 4-1:0.132: V4L2 device video103 deregistered [ 62.224078][ T1208] em28xx 4-1:0.132: Remote control support is not available for this card. [ 62.246722][ T9] em28xx 4-1:0.132: Closing input extension [ 62.261258][ T9] em28xx 4-1:0.132: Freeing device [ 62.293658][ T80] usb 5-1: USB disconnect, device number 2 [ 62.615843][ T80] usb 1-1: USB disconnect, device number 2 [ 63.468240][ T29] kauditd_printk_skb: 24 callbacks suppressed [ 63.468250][ T29] audit: type=1400 audit(1737882705.571:210): avc: denied { create } for pid=6059 comm="syz.1.39" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 63.554409][ T29] audit: type=1400 audit(1737882705.651:211): avc: denied { create } for pid=6059 comm="syz.1.39" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 64.017192][ T29] audit: type=1400 audit(1737882705.751:212): avc: denied { bind } for pid=6059 comm="syz.1.39" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 64.041988][ T29] audit: type=1400 audit(1737882705.761:213): avc: denied { accept } for pid=6059 comm="syz.1.39" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 64.068497][ T29] audit: type=1400 audit(1737882705.761:214): avc: denied { setopt } for pid=6059 comm="syz.1.39" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 64.116726][ T29] audit: type=1400 audit(1737882705.761:215): avc: denied { read } for pid=6059 comm="syz.1.39" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 64.137697][ T29] audit: type=1400 audit(1737882706.201:216): avc: denied { setattr } for pid=6074 comm="syz.3.43" name="#9" dev="tmpfs" ino=47 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 64.172426][ T29] audit: type=1400 audit(1737882706.221:217): avc: denied { mount } for pid=6074 comm="syz.3.43" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 64.425983][ T29] audit: type=1400 audit(1737882706.221:218): avc: denied { unmount } for pid=6074 comm="syz.3.43" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 64.553913][ T6084] netlink: 'syz.0.47': attribute type 11 has an invalid length. [ 64.573383][ T6084] veth0_vlan: entered allmulticast mode [ 64.615497][ T6084] ªªªªªª: renamed from vlan0 [ 64.656119][ T6090] xt_bpf: check failed: parse error [ 64.797272][ T29] audit: type=1400 audit(1737882706.881:219): avc: denied { create } for pid=6087 comm="syz.2.48" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 64.871538][ T6099] syz.2.48 (6099): drop_caches: 2 [ 66.451518][ T6166] netlink: zone id is out of range [ 66.456765][ T6166] netlink: zone id is out of range [ 66.461941][ T6166] netlink: zone id is out of range [ 66.566050][ T6171] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22 [ 66.567545][ T6166] netlink: zone id is out of range [ 66.580545][ T6171] netdevsim netdevsim1: Direct firmware load for . failed with error -22 [ 66.589428][ T6171] netdevsim netdevsim1: Falling back to sysfs fallback for: . [ 66.690986][ T6166] netlink: zone id is out of range [ 66.702133][ T6166] netlink: zone id is out of range [ 66.711546][ T6166] netlink: zone id is out of range [ 66.717081][ T6166] netlink: zone id is out of range [ 67.845905][ T6189] wg2: entered promiscuous mode [ 67.851421][ T6189] wg2: entered allmulticast mode [ 69.362313][ T29] kauditd_printk_skb: 17 callbacks suppressed [ 69.362324][ T29] audit: type=1400 audit(1737882711.461:237): avc: denied { write } for pid=6212 comm="syz.1.70" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 69.440984][ T29] audit: type=1400 audit(1737882711.491:238): avc: denied { nlmsg_write } for pid=6212 comm="syz.1.70" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 69.585014][ T6215] netlink: 12 bytes leftover after parsing attributes in process `syz.1.70'. [ 70.244722][ T29] audit: type=1400 audit(1737882968.308:239): avc: denied { create } for pid=6210 comm="syz.3.69" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 70.327567][ T29] audit: type=1400 audit(1737882968.308:240): avc: denied { write } for pid=6210 comm="syz.3.69" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 70.387576][ T6239] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22 [ 70.396022][ T6239] netdevsim netdevsim2: Direct firmware load for . failed with error -22 [ 70.404630][ T6239] netdevsim netdevsim2: Falling back to sysfs fallback for: . [ 70.682883][ T6243] sch_tbf: burst 4398 is lower than device lo mtu (65550) ! [ 70.694506][ T29] audit: type=1400 audit(1737882968.788:241): avc: denied { ioctl } for pid=6242 comm="syz.0.77" path="socket:[8965]" dev="sockfs" ino=8965 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 70.888801][ T29] audit: type=1400 audit(1737882968.818:242): avc: denied { write } for pid=6242 comm="syz.0.77" laddr=::ffff:172.20.20.170 lport=20000 faddr=::ffff:172.20.20.170 fport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 71.348326][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.357431][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.435568][ T29] audit: type=1400 audit(1737882968.928:243): avc: denied { create } for pid=6245 comm="syz.0.79" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 72.147322][ T29] audit: type=1400 audit(1737882970.248:244): avc: denied { read } for pid=5486 comm="dhcpcd" name="n102" dev="tmpfs" ino=2136 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 72.171319][ T29] audit: type=1400 audit(1737882970.248:245): avc: denied { open } for pid=5486 comm="dhcpcd" path="/run/udev/data/n102" dev="tmpfs" ino=2136 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 72.292061][ T29] audit: type=1400 audit(1737882970.248:246): avc: denied { getattr } for pid=5486 comm="dhcpcd" path="/run/udev/data/n102" dev="tmpfs" ino=2136 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 73.911182][ T6275] pim6reg1: entered promiscuous mode [ 73.941026][ T6275] pim6reg1: entered allmulticast mode [ 74.074010][ T6289] Zero length message leads to an empty skb [ 74.133957][ T6288] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 74.144040][ T6291] tipc: Started in network mode [ 74.151602][ T6291] tipc: Node identity 0e2e7736e383, cluster identity 4711 [ 74.161947][ T6291] tipc: Enabled bearer , priority 0 [ 74.172039][ T6294] syzkaller0: MTU too low for tipc bearer [ 74.179301][ T6294] tipc: Disabling bearer [ 74.392477][ T29] kauditd_printk_skb: 1 callbacks suppressed [ 74.392491][ T29] audit: type=1400 audit(1737882972.488:248): avc: denied { mounton } for pid=6311 comm="syz.3.93" path="/12/file0" dev="tmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 75.620202][ T29] audit: type=1400 audit(1737882973.678:249): avc: denied { watch_mount } for pid=6341 comm="syz.4.96" path="/21" dev="tmpfs" ino=122 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 76.678507][ T1210] cfg80211: failed to load regulatory.db [ 76.964024][ T6358] block device autoloading is deprecated and will be removed. [ 76.971926][ T6358] syz.0.99: attempt to access beyond end of device [ 76.971926][ T6358] md2: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 77.235300][ T6363] fuse: Unknown parameter '0xffffffffffffffff00000000000000000000' [ 77.245129][ T29] audit: type=1400 audit(1737882975.348:250): avc: denied { create } for pid=6365 comm="syz.4.102" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 77.303087][ T29] audit: type=1400 audit(1737882975.398:251): avc: denied { bind } for pid=6365 comm="syz.4.102" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 77.370938][ T29] audit: type=1400 audit(1737882975.398:252): avc: denied { write } for pid=6365 comm="syz.4.102" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 77.405513][ T29] audit: type=1400 audit(1737882975.448:253): avc: denied { setopt } for pid=6365 comm="syz.4.102" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 77.415933][ T6374] mmap: syz.0.105 (6374) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 78.192265][ T29] audit: type=1400 audit(1737882975.688:254): avc: denied { read write } for pid=6369 comm="syz.1.103" name="ppp" dev="devtmpfs" ino=709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 78.215634][ T29] audit: type=1400 audit(1737882975.688:255): avc: denied { open } for pid=6369 comm="syz.1.103" path="/dev/ppp" dev="devtmpfs" ino=709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 78.347321][ T6382] wg2: left promiscuous mode [ 78.351966][ T6382] wg2: left allmulticast mode [ 78.399446][ T29] audit: type=1400 audit(1737882976.498:256): avc: denied { create } for pid=6386 comm="syz.1.109" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 78.976455][ T29] audit: type=1400 audit(1737882976.838:257): avc: denied { write } for pid=6386 comm="syz.1.109" path="socket:[9406]" dev="sockfs" ino=9406 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 79.084349][ T6382] wg2: entered promiscuous mode [ 79.093358][ T6382] wg2: entered allmulticast mode [ 79.229237][ T6398] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 79.604306][ T29] kauditd_printk_skb: 1 callbacks suppressed [ 79.604321][ T29] audit: type=1400 audit(1737882977.698:259): avc: denied { sqpoll } for pid=6406 comm="syz.1.114" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 79.702440][ T6409] xt_l2tp: v2 tid > 0xffff: 262144 [ 79.949570][ T29] audit: type=1400 audit(1737882978.048:260): avc: denied { execute } for pid=6406 comm="syz.1.114" path="/22/pids.events" dev="tmpfs" ino=131 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 80.003049][ T29] audit: type=1400 audit(1737882978.098:261): avc: denied { setopt } for pid=6388 comm="syz.2.110" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 80.049742][ T6411] netlink: 4 bytes leftover after parsing attributes in process `syz.2.115'. [ 80.085916][ T6411] ipvlan2: entered promiscuous mode [ 80.093179][ T6411] 8021q: adding VLAN 0 to HW filter on device ipvlan2 [ 80.102207][ T6411] bond0: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 80.504678][ T29] audit: type=1400 audit(1737882978.588:262): avc: denied { write } for pid=6421 comm="syz.0.119" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 80.530135][ T29] audit: type=1400 audit(1737882978.608:263): avc: denied { read append } for pid=6424 comm="syz.3.120" name="fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1 [ 80.556437][ T5820] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201' [ 80.571549][ T5820] CPU: 0 UID: 0 PID: 5820 Comm: kworker/u9:3 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0 [ 80.571575][ T5820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 80.571586][ T5820] Workqueue: hci3 hci_rx_work [ 80.571610][ T5820] Call Trace: [ 80.571615][ T5820] [ 80.571620][ T5820] dump_stack_lvl+0x16c/0x1f0 [ 80.571646][ T5820] sysfs_warn_dup+0x7f/0xa0 [ 80.571666][ T5820] sysfs_create_dir_ns+0x24d/0x2b0 [ 80.571686][ T5820] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 80.571706][ T5820] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 80.571723][ T5820] ? kobject_add_internal+0x12d/0x990 [ 80.571746][ T5820] ? do_raw_spin_unlock+0x172/0x230 [ 80.571762][ T5820] kobject_add_internal+0x2c8/0x990 [ 80.571788][ T5820] kobject_add+0x16f/0x240 [ 80.571801][ T5820] ? __pfx_kobject_add+0x10/0x10 [ 80.571814][ T5820] ? class_to_subsys+0x3e/0x160 [ 80.571830][ T5820] ? do_raw_spin_unlock+0x172/0x230 [ 80.571843][ T5820] ? kobject_put+0xab/0x5a0 [ 80.571866][ T5820] device_add+0x289/0x1a70 [ 80.571881][ T5820] ? __pfx_dev_set_name+0x10/0x10 [ 80.571899][ T5820] ? __pfx_device_add+0x10/0x10 [ 80.571915][ T5820] ? mgmt_send_event_skb+0x2f2/0x460 [ 80.571943][ T5820] hci_conn_add_sysfs+0x17e/0x230 [ 80.571961][ T5820] le_conn_complete_evt+0x107f/0x1da0 [ 80.571987][ T5820] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 80.572012][ T5820] ? trace_contention_end+0xee/0x140 [ 80.572037][ T5820] ? __mutex_lock+0x1cc/0xb10 [ 80.572063][ T5820] hci_le_enh_conn_complete_evt+0x23d/0x380 [ 80.572089][ T5820] ? skb_pull_data+0x166/0x210 [ 80.572113][ T5820] hci_le_meta_evt+0x2e2/0x5d0 [ 80.572134][ T5820] ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10 [ 80.572160][ T5820] hci_event_packet+0x666/0x1180 [ 80.572184][ T5820] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 80.572200][ T5820] ? __pfx_hci_event_packet+0x10/0x10 [ 80.572224][ T5820] ? lock_acquire.part.0+0x2e0/0x380 [ 80.572255][ T5820] ? trace_irq_enable.constprop.0+0xea/0x140 [ 80.572280][ T5820] hci_rx_work+0x2c5/0x16b0 [ 80.572294][ T5820] ? process_one_work+0x921/0x1ba0 [ 80.572316][ T5820] process_one_work+0x9c5/0x1ba0 [ 80.572340][ T5820] ? __pfx_process_one_work+0x10/0x10 [ 80.572361][ T5820] ? rcu_is_watching+0x12/0xc0 [ 80.572381][ T5820] ? assign_work+0x1a0/0x250 [ 80.572402][ T5820] worker_thread+0x6c8/0xf00 [ 80.572426][ T5820] ? __pfx_worker_thread+0x10/0x10 [ 80.572445][ T5820] kthread+0x3af/0x750 [ 80.572462][ T5820] ? __pfx_kthread+0x10/0x10 [ 80.572478][ T5820] ? lock_acquire+0x2f/0xb0 [ 80.572496][ T5820] ? rcu_is_watching+0x12/0xc0 [ 80.572511][ T5820] ? __pfx_kthread+0x10/0x10 [ 80.572527][ T5820] ret_from_fork+0x45/0x80 [ 80.572549][ T5820] ? __pfx_kthread+0x10/0x10 [ 80.572567][ T5820] ret_from_fork_asm+0x1a/0x30 [ 80.572587][ T5820] [ 80.573034][ T5820] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 80.573097][ T6423] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3343437945 (53495007120 ns) > initial count (160 ns). Using initial count to start timer. [ 80.594852][ T5820] Bluetooth: hci3: failed to register connection device [ 81.164471][ T29] audit: type=1400 audit(1737882978.608:264): avc: denied { open } for pid=6424 comm="syz.3.120" path="/dev/fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1 [ 81.304682][ T29] audit: type=1400 audit(1737882978.608:265): avc: denied { map } for pid=6424 comm="syz.3.120" path="/dev/fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1 [ 81.342490][ T29] audit: type=1400 audit(1737882978.608:266): avc: denied { write execute } for pid=6424 comm="syz.3.120" path="/dev/fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1 [ 81.654818][ T29] audit: type=1400 audit(1737882978.608:267): avc: denied { write } for pid=6426 comm="syz.1.121" name="001" dev="devtmpfs" ino=746 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 81.684889][ T29] audit: type=1400 audit(1737882978.628:268): avc: denied { write } for pid=6424 comm="syz.3.120" name="hwrng" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1 [ 82.351203][ T6444] capability: warning: `syz.3.126' uses deprecated v2 capabilities in a way that may be insecure [ 82.935673][ T5820] Bluetooth: hci3: command tx timeout [ 84.425242][ T8] IPVS: starting estimator thread 0... [ 84.524650][ T6477] IPVS: using max 131 ests per chain, 314400 per kthread [ 84.998707][ T29] kauditd_printk_skb: 3 callbacks suppressed [ 84.998724][ T29] audit: type=1400 audit(1737882983.098:272): avc: denied { read } for pid=6481 comm="syz.4.136" name="usbmon2" dev="devtmpfs" ino=722 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 85.335152][ T29] audit: type=1400 audit(1737882983.108:273): avc: denied { create } for pid=6486 comm="syz.3.138" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1 [ 85.391718][ T29] audit: type=1400 audit(1737882983.118:274): avc: denied { getopt } for pid=6486 comm="syz.3.138" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 85.509886][ T29] audit: type=1400 audit(1737882983.128:275): avc: denied { open } for pid=6481 comm="syz.4.136" path="/dev/usbmon2" dev="devtmpfs" ino=722 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 85.712069][ T6503] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0. [ 85.842080][ T29] audit: type=1400 audit(1737882983.448:276): avc: denied { ioctl } for pid=6491 comm="syz.2.139" path="socket:[10406]" dev="sockfs" ino=10406 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 85.879261][ T29] audit: type=1400 audit(1737882983.448:277): avc: denied { bind } for pid=6491 comm="syz.2.139" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 85.931944][ T6485] Invalid ELF header magic: != ELF [ 85.938335][ T29] audit: type=1400 audit(1737882984.028:278): avc: denied { sys_module } for pid=6484 comm="syz.1.137" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 85.968690][ T29] audit: type=1400 audit(1737882984.028:279): avc: denied { module_load } for pid=6484 comm="syz.1.137" path="/sys/kernel/notes" dev="sysfs" ino=1382 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1 [ 86.005099][ T29] audit: type=1400 audit(1737882984.108:280): avc: denied { name_bind } for pid=6507 comm="syz.3.143" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1 [ 86.680130][ T80] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 87.246160][ T6525] syz.4.147: attempt to access beyond end of device [ 87.246160][ T6525] nbd4: rw=0, sector=1, nr_sectors = 1 limit=0 [ 87.259071][ T6525] VFS: could not find a valid V7 on nbd4. [ 87.922418][ T80] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 87.963297][ T6531] warning: `syz.0.149' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 87.992000][ T80] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 88.094677][ T80] usb 4-1: New USB device found, idVendor=0079, idProduct=0011, bcdDevice= 0.00 [ 88.103821][ T80] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 88.115493][ T80] usb 4-1: config 0 descriptor?? [ 88.298700][ T29] audit: type=1400 audit(1737882986.368:281): avc: denied { read write } for pid=6536 comm="syz.0.152" name="nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 88.973312][ T6547] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 89.015931][ T6547] kvm: pic: non byte read [ 89.680876][ T80] usbhid 4-1:0.0: can't add hid device: -71 [ 89.716663][ T80] usbhid 4-1:0.0: probe with driver usbhid failed with error -71 [ 89.828264][ T80] usb 4-1: USB disconnect, device number 3 [ 90.352402][ T6568] TCP: out of memory -- consider tuning tcp_mem [ 90.375197][ T6572] ptrace attach of ""[6573] was attempted by "./syz-executor exec"[6572] [ 90.704776][ T29] kauditd_printk_skb: 2 callbacks suppressed [ 90.704789][ T29] audit: type=1400 audit(1737882988.798:284): avc: denied { mounton } for pid=6593 comm="syz.4.167" path="/proc/127/task" dev="proc" ino=9905 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1 [ 90.759309][ T29] audit: type=1326 audit(1737882988.798:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6593 comm="syz.4.167" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1d2838cd29 code=0x0 [ 90.986072][ T6600] xt_nat: multiple ranges no longer supported [ 91.292068][ T29] audit: type=1400 audit(1737882989.388:286): avc: denied { read write } for pid=6605 comm="syz.0.169" name="vhost-vsock" dev="devtmpfs" ino=1275 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 91.366487][ T29] audit: type=1400 audit(1737882989.388:287): avc: denied { open } for pid=6605 comm="syz.0.169" path="/dev/vhost-vsock" dev="devtmpfs" ino=1275 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 91.446654][ T29] audit: type=1400 audit(1737882989.408:288): avc: denied { ioctl } for pid=6605 comm="syz.0.169" path="/dev/vhost-vsock" dev="devtmpfs" ino=1275 ioctlcmd=0xaf01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 91.860458][ T29] audit: type=1400 audit(1737882989.818:289): avc: denied { bind } for pid=6611 comm="syz.2.170" lport=1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 92.014816][ T29] audit: type=1400 audit(1737882989.818:290): avc: denied { node_bind } for pid=6611 comm="syz.2.170" saddr=224.0.0.1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1 [ 94.620999][ T6649] netlink: 'syz.4.180': attribute type 4 has an invalid length. [ 94.859131][ T29] audit: type=1400 audit(1737882992.958:291): avc: denied { setopt } for pid=6645 comm="syz.2.179" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 94.911521][ T6653] netlink: 8 bytes leftover after parsing attributes in process `syz.0.181'. [ 94.971796][ T6657] netlink: 24 bytes leftover after parsing attributes in process `syz.1.184'. [ 95.567572][ T29] audit: type=1400 audit(1737882993.668:292): avc: denied { mount } for pid=6659 comm="syz.3.185" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1 [ 95.656285][ T1210] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 95.997578][ T1210] usb 2-1: Using ep0 maxpacket: 16 [ 96.046580][ T1210] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 96.058696][ T1210] usb 2-1: config 0 has no interfaces? [ 96.065454][ T1210] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 97.084362][ T1210] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 97.176790][ T1210] usb 2-1: config 0 descriptor?? [ 97.588288][ T6696] lo: entered allmulticast mode [ 97.837858][ T6696] pimreg: entered allmulticast mode [ 97.861958][ T6696] pimreg: left allmulticast mode [ 98.484636][ T29] audit: type=1400 audit(1737882996.468:293): avc: denied { setcurrent } for pid=6709 comm="syz.0.200" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 98.922748][ T5820] Bluetooth: hci2: Ignoring connect complete event for invalid link type [ 98.939215][ T29] audit: type=1400 audit(1737882997.038:294): avc: denied { write } for pid=6722 comm="syz.4.202" name="uinput" dev="devtmpfs" ino=920 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 98.958193][ T6723] input: syz1 as /devices/virtual/input/input5 [ 98.992946][ T29] audit: type=1400 audit(1737882997.078:295): avc: denied { read } for pid=5177 comm="acpid" name="event4" dev="devtmpfs" ino=2755 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 99.016839][ T29] audit: type=1400 audit(1737882997.078:296): avc: denied { open } for pid=5177 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=2755 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 99.069847][ T29] audit: type=1400 audit(1737882997.078:297): avc: denied { ioctl } for pid=5177 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=2755 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 99.229062][ T1210] usb 2-1: USB disconnect, device number 2 [ 99.344618][ T5870] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 99.495569][ T5870] usb 5-1: Using ep0 maxpacket: 32 [ 99.518410][ T5870] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 99.603369][ T5870] usb 5-1: New USB device found, idVendor=05ac, idProduct=0232, bcdDevice= 0.40 [ 99.613073][ T5870] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 99.621291][ T5870] usb 5-1: Product: syz [ 99.625697][ T5870] usb 5-1: Manufacturer: syz [ 99.630308][ T5870] usb 5-1: SerialNumber: syz [ 99.650358][ T5870] input: bcm5974 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/input/input6 [ 100.831310][ T6752] MTD: Attempt to mount non-MTD device "/dev/nullb0" [ 100.841855][ T6752] cramfs: wrong magic [ 101.046930][ T5820] Bluetooth: hci2: command tx timeout [ 101.391846][ T6757] netlink: 'syz.3.212': attribute type 29 has an invalid length. [ 101.422931][ T6757] netlink: 'syz.3.212': attribute type 29 has an invalid length. [ 101.434016][ T6757] netlink: 'syz.3.212': attribute type 29 has an invalid length. [ 101.442987][ T6757] netlink: 'syz.3.212': attribute type 29 has an invalid length. [ 101.451691][ T6757] netlink: 'syz.3.212': attribute type 29 has an invalid length. [ 101.525922][ T6757] netlink: 'syz.3.212': attribute type 29 has an invalid length. [ 101.544288][ T6757] netlink: 'syz.3.212': attribute type 29 has an invalid length. [ 101.551978][ T9] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 101.798094][ T9] usb 3-1: Using ep0 maxpacket: 8 [ 101.807376][ T9] usb 3-1: config 0 has an invalid interface number: 33 but max is 1 [ 101.854833][ T9] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 101.950822][ T9] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 101.962201][ T9] usb 3-1: config 0 has no interface number 0 [ 101.968514][ T5177] bcm5974 5-1:1.0: could not read from device [ 101.976072][ T9] usb 3-1: config 0 interface 33 altsetting 0 endpoint 0x6 has an invalid bInterval 0, changing to 7 [ 101.988154][ T5177] bcm5974 5-1:1.0: could not read from device [ 101.995806][ T5870] usb 5-1: USB disconnect, device number 3 [ 102.003711][ T6763] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue [ 102.006476][ T29] audit: type=1400 audit(1737883000.098:298): avc: denied { relabelfrom } for pid=6762 comm="syz.3.215" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1 [ 102.034416][ T29] audit: type=1400 audit(1737883000.098:299): avc: denied { relabelto } for pid=6762 comm="syz.3.215" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1 [ 102.059293][ T9] usb 3-1: New USB device found, idVendor=2040, idProduct=2950, bcdDevice=85.f1 [ 102.071673][ T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 102.112847][ T9] usb 3-1: Product: syz [ 102.127660][ T9] usb 3-1: Manufacturer: syz [ 102.141101][ T9] usb 3-1: SerialNumber: syz [ 102.169098][ T9] usb 3-1: config 0 descriptor?? [ 102.179717][ T9] pvrusb2: Hardware description: WinTV PVR USB2 Model 29xxx [ 102.391969][ T6755] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 102.404144][ T6755] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 102.412964][ T29] audit: type=1400 audit(1737883000.488:300): avc: denied { ioctl } for pid=6754 comm="syz.2.211" path="/dev/rtc0" dev="devtmpfs" ino=921 ioctlcmd=0x7003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 102.561468][ T9] usb 3-1: USB disconnect, device number 2 [ 102.567556][ T2326] pvrusb2: Invalid write control endpoint [ 102.596937][ T2326] usb 3-1: Direct firmware load for v4l-pvrusb2-29xxx-01.fw failed with error -2 [ 102.684765][ T2326] usb 3-1: Falling back to sysfs fallback for: v4l-pvrusb2-29xxx-01.fw [ 103.184664][ T5820] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0 [ 103.192986][ T5820] Bluetooth: hci4: Injecting HCI hardware error event [ 103.199921][ T5820] Bluetooth: hci4: hardware error 0x00 [ 103.201251][ T29] audit: type=1400 audit(1737883001.298:301): avc: denied { rename } for pid=5174 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 103.356344][ T6789] sp0: Synchronizing with TNC [ 103.364519][ T6789] xt_socket: unknown flags 0x50 [ 103.977629][ T6794] netlink: 104 bytes leftover after parsing attributes in process `syz.0.222'. [ 104.508254][ T29] audit: type=1400 audit(1737883001.298:302): avc: denied { unlink } for pid=5174 comm="syslogd" name="messages.0" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 104.530777][ T29] audit: type=1400 audit(1737883001.298:303): avc: denied { create } for pid=5174 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 105.104477][ T29] audit: type=1400 audit(1737883003.018:304): avc: denied { write } for pid=6798 comm="syz.0.223" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 105.216471][ T6806] bridge0: port 3(erspan0) entered blocking state [ 105.223196][ T6806] bridge0: port 3(erspan0) entered disabled state [ 105.230000][ T6806] erspan0: entered allmulticast mode [ 105.242964][ T6806] erspan0: entered promiscuous mode [ 105.250768][ T6806] bridge0: port 3(erspan0) entered blocking state [ 105.257368][ T6806] bridge0: port 3(erspan0) entered forwarding state [ 105.285400][ T5820] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 105.501416][ T29] audit: type=1400 audit(1737883003.598:305): avc: denied { bind } for pid=6808 comm="syz.2.225" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 105.521520][ T6811] Bluetooth: MGMT ver 1.23 [ 105.532065][ T29] audit: type=1400 audit(1737883003.628:306): avc: denied { write } for pid=6808 comm="syz.2.225" path="socket:[10992]" dev="sockfs" ino=10992 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 105.577639][ T29] audit: type=1400 audit(1737883003.628:307): avc: denied { mount } for pid=6808 comm="syz.2.225" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 105.615996][ T29] audit: type=1400 audit(1737883003.628:308): avc: denied { getopt } for pid=6810 comm="syz.0.226" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 105.636591][ T29] audit: type=1400 audit(1737883003.628:309): avc: denied { write } for pid=6810 comm="syz.0.226" name="/" dev="9p" ino=1694025360095192279 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 105.680331][ T29] audit: type=1400 audit(1737883003.628:310): avc: denied { add_name } for pid=6810 comm="syz.0.226" name=131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D338 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 105.716912][ T29] audit: type=1400 audit(1737883003.628:311): avc: denied { create } for pid=6810 comm="syz.0.226" name=131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D338 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 105.825117][ T6821] overlayfs: failed to resolve './file0': -2 [ 105.836437][ T6821] ======================================================= [ 105.836437][ T6821] WARNING: The mand mount option has been deprecated and [ 105.836437][ T6821] and is ignored by this kernel. Remove the mand [ 105.836437][ T6821] option from the mount to silence this warning. [ 105.836437][ T6821] ======================================================= [ 106.343421][ T1088] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 106.477598][ T1088] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 106.708025][ T5830] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 106.715355][ T5830] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 106.722981][ T5830] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 106.731086][ T5830] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 106.738390][ T5830] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 106.745757][ T5830] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 106.808705][ T1088] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 106.860598][ T1088] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 107.169360][ T6836] chnl_net:caif_netlink_parms(): no params data found [ 107.220655][ T1088] bridge_slave_1: left allmulticast mode [ 107.239737][ T1088] bridge_slave_1: left promiscuous mode [ 107.251874][ T1088] bridge0: port 2(bridge_slave_1) entered disabled state [ 107.264025][ T1088] bridge_slave_0: left allmulticast mode [ 107.270436][ T1088] bridge_slave_0: left promiscuous mode [ 107.276460][ T1088] bridge0: port 1(bridge_slave_0) entered disabled state [ 107.570430][ T1088] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 108.367417][ T1088] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 108.569444][ T1088] bond0 (unregistering): Released all slaves [ 108.643002][ T1088] tipc: Left network mode [ 108.644662][ T6836] bridge0: port 1(bridge_slave_0) entered blocking state [ 108.669102][ T6836] bridge0: port 1(bridge_slave_0) entered disabled state [ 108.676391][ T6836] bridge_slave_0: entered allmulticast mode [ 108.682944][ T6836] bridge_slave_0: entered promiscuous mode [ 108.690511][ T6836] bridge0: port 2(bridge_slave_1) entered blocking state [ 108.697715][ T6836] bridge0: port 2(bridge_slave_1) entered disabled state [ 108.705404][ T6836] bridge_slave_1: entered allmulticast mode [ 108.712027][ T6836] bridge_slave_1: entered promiscuous mode [ 108.774779][ T5830] Bluetooth: hci1: command tx timeout [ 108.785636][ T6836] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 108.799005][ T6836] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 108.920183][ T6882] ALSA: mixer_oss: invalid OSS volume 'RA' [ 109.060949][ T6836] team0: Port device team_slave_0 added [ 109.128241][ T6836] team0: Port device team_slave_1 added [ 109.298577][ T6836] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 109.319544][ T6836] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 109.721883][ T6836] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 110.347037][ T6919] xt_l2tp: v2 tid > 0xffff: 262144 [ 110.661635][ T29] kauditd_printk_skb: 9 callbacks suppressed [ 110.661650][ T29] audit: type=1400 audit(1737883008.758:321): avc: denied { create } for pid=6921 comm="syz.3.246" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 110.692350][ T6922] netlink: 8 bytes leftover after parsing attributes in process `syz.3.246'. [ 110.701561][ T6922] netlink: 4 bytes leftover after parsing attributes in process `syz.3.246'. [ 110.710624][ T6922] netlink: 'syz.3.246': attribute type 1 has an invalid length. [ 110.718661][ T6922] netlink: 10 bytes leftover after parsing attributes in process `syz.3.246'. [ 110.765273][ T6922] nbd: socks must be embedded in a SOCK_ITEM attr [ 110.771822][ T6922] block nbd0: shutting down sockets [ 110.853332][ T29] audit: type=1400 audit(1737883008.948:322): avc: denied { read } for pid=6923 comm="syz.3.247" name="card1" dev="devtmpfs" ino=628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 110.876268][ T5830] Bluetooth: hci1: command tx timeout [ 110.876539][ T29] audit: type=1400 audit(1737883008.948:323): avc: denied { open } for pid=6923 comm="syz.3.247" path="/dev/dri/card1" dev="devtmpfs" ino=628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 110.939690][ T29] audit: type=1400 audit(1737883008.948:324): avc: denied { ioctl } for pid=6923 comm="syz.3.247" path="/dev/dri/card1" dev="devtmpfs" ino=628 ioctlcmd=0x64a0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 111.888363][ T29] audit: type=1400 audit(1737883009.988:325): avc: denied { bind } for pid=6937 comm="syz.3.251" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 111.905310][ T6939] netlink: 4 bytes leftover after parsing attributes in process `syz.3.251'. [ 111.917910][ T29] audit: type=1400 audit(1737883009.988:326): avc: denied { connect } for pid=6937 comm="syz.3.251" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 111.917946][ T29] audit: type=1400 audit(1737883009.988:327): avc: denied { write } for pid=6937 comm="syz.3.251" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 111.917971][ T29] audit: type=1400 audit(1737883010.008:328): avc: denied { ioctl } for pid=6937 comm="syz.3.251" path="socket:[12435]" dev="sockfs" ino=12435 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 111.986167][ C0] vkms_vblank_simulate: vblank timer overrun [ 112.935468][ T5830] Bluetooth: hci1: command tx timeout [ 113.084900][ C0] vcan0: j1939_tp_rxtimer: 0xffff888034406400: rx timeout, send abort [ 113.093135][ C0] vcan0: j1939_tp_rxtimer: 0xffff888034407400: rx timeout, send abort [ 113.101465][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888034406400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 113.115799][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888034407400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 115.014645][ T5830] Bluetooth: hci1: command tx timeout [ 124.374224][ T5820] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 124.382842][ T5820] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 124.390421][ T5820] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 124.397936][ T5820] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 124.405398][ T5820] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 124.413635][ T5820] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 126.377503][ T5830] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 126.386631][ T5830] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 126.393811][ T5830] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 126.401271][ T5830] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 126.408718][ T5830] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 126.416040][ T5830] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 126.454725][ T5820] Bluetooth: hci5: command tx timeout [ 126.875837][ T5830] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 126.883205][ T5830] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 126.891217][ T5830] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 126.898984][ T5830] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 126.906408][ T5830] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 126.913755][ T5830] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 127.385832][ T5820] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 127.393128][ T5820] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 127.400376][ T5820] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 127.408135][ T5820] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 127.417563][ T5820] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3 [ 127.425049][ T5820] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 128.454815][ T5820] Bluetooth: hci6: command tx timeout [ 128.534747][ T5820] Bluetooth: hci5: command tx timeout [ 128.934949][ T5820] Bluetooth: hci7: command tx timeout [ 129.494842][ T5820] Bluetooth: hci8: command tx timeout [ 130.544747][ T5820] Bluetooth: hci6: command tx timeout [ 130.614728][ T5820] Bluetooth: hci5: command tx timeout [ 131.014692][ T5820] Bluetooth: hci7: command tx timeout [ 131.574862][ T5820] Bluetooth: hci8: command tx timeout [ 132.614807][ T5820] Bluetooth: hci6: command tx timeout [ 132.704739][ T5820] Bluetooth: hci5: command tx timeout [ 132.776424][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.782725][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.094715][ T5820] Bluetooth: hci7: command tx timeout [ 133.654738][ T5820] Bluetooth: hci8: command tx timeout [ 134.694809][ T5820] Bluetooth: hci6: command tx timeout [ 135.184897][ T5820] Bluetooth: hci7: command tx timeout [ 135.734741][ T5820] Bluetooth: hci8: command tx timeout [ 163.497149][ T2326] pvrusb2: request_firmware fatal error with code=-110 [ 163.504593][ T2326] pvrusb2: Failure uploading firmware1 [ 163.510043][ T2326] pvrusb2: Device initialization was not successful. [ 163.516753][ T2326] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it. [ 163.526876][ T2326] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover. [ 163.536080][ T9] pvrusb2: Device being rendered inoperable [ 166.923963][ T5830] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1 [ 166.931384][ T5830] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9 [ 166.938928][ T5830] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9 [ 166.948429][ T5830] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4 [ 166.956373][ T5830] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3 [ 166.963542][ T5830] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2 [ 169.014809][ T5830] Bluetooth: hci9: command tx timeout [ 171.094942][ T5830] Bluetooth: hci9: command tx timeout [ 173.174916][ T5830] Bluetooth: hci9: command tx timeout [ 175.254827][ T5819] Bluetooth: hci9: command tx timeout [ 175.815320][ T5819] Bluetooth: hci2: command 0x0406 tx timeout [ 175.816567][ T53] Bluetooth: hci3: command 0x0406 tx timeout [ 175.821380][ T5822] Bluetooth: hci0: command 0x0406 tx timeout [ 184.447126][ T5830] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1 [ 184.454446][ T5830] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9 [ 184.462133][ T5830] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9 [ 184.469831][ T5830] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4 [ 184.477350][ T5830] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3 [ 184.484832][ T5830] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2 [ 186.480802][ T5820] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1 [ 186.488278][ T5820] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9 [ 186.495713][ T5820] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9 [ 186.503258][ T5820] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4 [ 186.510918][ T5820] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3 [ 186.518278][ T5820] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2 [ 186.534694][ T5830] Bluetooth: hci10: command tx timeout [ 186.992295][ T5820] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1 [ 187.000130][ T5820] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9 [ 187.007457][ T5820] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9 [ 187.016327][ T5820] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4 [ 187.023686][ T5820] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3 [ 187.031033][ T5820] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2 [ 187.492684][ T5820] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1 [ 187.500106][ T5820] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9 [ 187.507357][ T5820] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9 [ 187.515106][ T5820] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4 [ 187.522485][ T5820] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3 [ 187.529967][ T5820] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2 [ 188.534652][ T5830] Bluetooth: hci11: command tx timeout [ 188.614718][ T5830] Bluetooth: hci10: command tx timeout [ 189.095922][ T5830] Bluetooth: hci12: command tx timeout [ 189.574642][ T5830] Bluetooth: hci13: command tx timeout [ 190.614638][ T5830] Bluetooth: hci11: command tx timeout [ 190.694607][ T5830] Bluetooth: hci10: command tx timeout [ 191.174688][ T5830] Bluetooth: hci12: command tx timeout [ 191.654719][ T5830] Bluetooth: hci13: command tx timeout [ 192.694662][ T5830] Bluetooth: hci11: command tx timeout [ 192.774623][ T5830] Bluetooth: hci10: command tx timeout [ 193.254627][ T5830] Bluetooth: hci12: command tx timeout [ 193.734660][ T5830] Bluetooth: hci13: command tx timeout [ 194.220242][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.226703][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.774675][ T5830] Bluetooth: hci11: command tx timeout [ 195.334656][ T5830] Bluetooth: hci12: command tx timeout [ 195.814644][ T5830] Bluetooth: hci13: command tx timeout [ 227.038533][ T5820] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1 [ 227.046324][ T5820] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9 [ 227.053581][ T5820] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9 [ 227.061573][ T5820] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4 [ 227.069044][ T5820] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3 [ 227.076515][ T5820] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2 [ 229.094667][ T5830] Bluetooth: hci14: command tx timeout [ 231.174670][ T5820] Bluetooth: hci14: command tx timeout [ 232.134658][ T5820] Bluetooth: hci1: command 0x0406 tx timeout [ 233.254770][ T5830] Bluetooth: hci14: command tx timeout [ 235.344627][ T5830] Bluetooth: hci14: command tx timeout [ 244.559629][ T5820] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1 [ 244.567027][ T5820] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9 [ 244.574249][ T5820] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9 [ 244.581826][ T5820] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4 [ 244.589228][ T5820] Bluetooth: hci15: unexpected cc 0x0c25 length: 249 > 3 [ 244.596678][ T5820] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2 [ 246.570628][ T5822] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1 [ 246.578121][ T5822] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9 [ 246.585429][ T5822] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9 [ 246.593070][ T5822] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4 [ 246.600718][ T5822] Bluetooth: hci16: unexpected cc 0x0c25 length: 249 > 3 [ 246.608138][ T5822] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2 [ 246.614649][ T5824] Bluetooth: hci15: command tx timeout [ 247.072714][ T5830] Bluetooth: hci17: unexpected cc 0x0c03 length: 249 > 1 [ 247.080192][ T5830] Bluetooth: hci17: unexpected cc 0x1003 length: 249 > 9 [ 247.087733][ T5830] Bluetooth: hci17: unexpected cc 0x1001 length: 249 > 9 [ 247.095534][ T5830] Bluetooth: hci17: unexpected cc 0x0c23 length: 249 > 4 [ 247.103141][ T5830] Bluetooth: hci17: unexpected cc 0x0c25 length: 249 > 3 [ 247.110955][ T5830] Bluetooth: hci17: unexpected cc 0x0c38 length: 249 > 2 [ 247.494949][ T5830] Bluetooth: hci5: command 0x0406 tx timeout [ 247.572851][ T5830] Bluetooth: hci18: unexpected cc 0x0c03 length: 249 > 1 [ 247.580222][ T5830] Bluetooth: hci18: unexpected cc 0x1003 length: 249 > 9 [ 247.587662][ T5830] Bluetooth: hci18: unexpected cc 0x1001 length: 249 > 9 [ 247.595298][ T5830] Bluetooth: hci18: unexpected cc 0x0c23 length: 249 > 4 [ 247.602697][ T5830] Bluetooth: hci18: unexpected cc 0x0c25 length: 249 > 3 [ 247.610077][ T5830] Bluetooth: hci18: unexpected cc 0x0c38 length: 249 > 2 [ 248.694672][ T5830] Bluetooth: hci15: command tx timeout [ 248.696144][ T5820] Bluetooth: hci16: command tx timeout [ 249.174678][ T5820] Bluetooth: hci17: command tx timeout [ 249.654657][ T5820] Bluetooth: hci18: command tx timeout [ 250.774662][ T5822] Bluetooth: hci15: command tx timeout [ 250.774670][ T5819] Bluetooth: hci16: command tx timeout [ 251.254659][ T5822] Bluetooth: hci17: command tx timeout [ 251.734677][ T5822] Bluetooth: hci18: command tx timeout [ 252.615019][ T5824] Bluetooth: hci7: command 0x0406 tx timeout [ 252.615055][ T5819] Bluetooth: hci8: command 0x0406 tx timeout [ 252.627115][ T5822] Bluetooth: hci6: command 0x0406 tx timeout [ 252.854687][ T5820] Bluetooth: hci16: command tx timeout [ 252.854691][ T5830] Bluetooth: hci15: command tx timeout [ 253.334670][ T5830] Bluetooth: hci17: command tx timeout [ 253.814670][ T5830] Bluetooth: hci18: command tx timeout [ 254.934648][ T5830] Bluetooth: hci16: command tx timeout [ 255.414664][ T5830] Bluetooth: hci17: command tx timeout [ 255.657166][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.663460][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.894664][ T5830] Bluetooth: hci18: command tx timeout [ 272.934664][ T30] INFO: task kworker/u8:3:51 blocked for more than 143 seconds. [ 272.942447][ T30] Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0 [ 272.949812][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 272.958536][ T30] task:kworker/u8:3 state:D stack:24816 pid:51 tgid:51 ppid:2 flags:0x00004000 [ 272.968993][ T30] Workqueue: cfg80211 cfg80211_dfs_channels_update_work [ 272.976006][ T30] Call Trace: [ 272.979296][ T30] SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 272.982207][ T30] __schedule+0x1142/0x5b60 [ 272.986847][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 272.992489][ T30] ? lock_acquire+0x2f/0xb0 [ 273.022965][ T30] ? debug_object_activate+0x149/0x4a0 [ 273.029756][ T30] ? do_raw_spin_unlock+0x172/0x230 [ 273.035681][ T30] ? __pfx___schedule+0x10/0x10 [ 273.040542][ T30] ? lock_release+0x4e2/0x6f0 [ 273.045265][ T30] ? schedule+0x298/0x350 [ 273.049590][ T30] ? __pfx_lock_release+0x10/0x10 [ 273.054639][ T30] ? __mutex_trylock_common+0x78/0x250 [ 273.060095][ T30] ? schedule+0x1fd/0x350 [ 273.064439][ T30] ? lock_acquire+0x2f/0xb0 [ 273.069021][ T30] ? schedule+0x1fd/0x350 [ 273.073367][ T30] schedule+0xe7/0x350 [ 273.077459][ T30] schedule_preempt_disabled+0x13/0x30 [ 273.082931][ T30] __mutex_lock+0x6bd/0xb10 [ 273.087454][ T30] ? cfg80211_dfs_channels_update_work+0xd0/0x640 [ 273.093876][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 273.098947][ T30] ? __pfx_lock_release+0x10/0x10 [ 273.103971][ T30] ? lock_release+0x4e2/0x6f0 [ 273.108683][ T30] ? debug_object_deactivate+0x1ef/0x370 [ 273.114317][ T30] ? __pfx_lock_release+0x10/0x10 [ 273.119804][ T30] ? cfg80211_dfs_channels_update_work+0xd0/0x640 [ 273.126269][ T30] ? rtnl_lock+0x9/0x20 [ 273.130451][ T30] cfg80211_dfs_channels_update_work+0xd0/0x640 [ 273.136745][ T30] ? do_raw_spin_unlock+0x172/0x230 [ 273.141962][ T30] ? rcu_is_watching+0x12/0xc0 [ 273.146870][ T30] ? lock_release+0x4e2/0x6f0 [ 273.151573][ T30] ? __pfx_cfg80211_dfs_channels_update_work+0x10/0x10 [ 273.158440][ T30] ? rcu_is_watching+0x12/0xc0 [ 273.163210][ T30] ? process_one_work+0x921/0x1ba0 [ 273.168358][ T30] ? lock_acquire+0x2f/0xb0 [ 273.172866][ T30] ? process_one_work+0x921/0x1ba0 [ 273.177983][ T30] process_one_work+0x9c5/0x1ba0 [ 273.183085][ T30] ? __pfx_process_one_work+0x10/0x10 [ 273.188483][ T30] ? rcu_is_watching+0x12/0xc0 [ 273.193253][ T30] ? assign_work+0x1a0/0x250 [ 273.197874][ T30] worker_thread+0x6c8/0xf00 [ 273.202459][ T30] ? __pfx_worker_thread+0x10/0x10 [ 273.207596][ T30] kthread+0x3af/0x750 [ 273.211668][ T30] ? __pfx_kthread+0x10/0x10 [ 273.216280][ T30] ? lock_acquire+0x2f/0xb0 [ 273.221159][ T30] ? __pfx_kthread+0x10/0x10 [ 273.225775][ T30] ret_from_fork+0x45/0x80 [ 273.230185][ T30] ? __pfx_kthread+0x10/0x10 [ 273.234786][ T30] ret_from_fork_asm+0x1a/0x30 [ 273.239562][ T30] [ 273.242592][ T30] INFO: task kworker/u8:5:1088 blocked for more than 143 seconds. [ 273.250429][ T30] Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0 [ 273.257750][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 273.266518][ T30] task:kworker/u8:5 state:D stack:24016 pid:1088 tgid:1088 ppid:2 flags:0x00004000 [ 273.276739][ T30] Workqueue: netns cleanup_net [ 273.281503][ T30] Call Trace: [ 273.284790][ T30] [ 273.287720][ T30] __schedule+0x1142/0x5b60 [ 273.292224][ T30] ? __switch_to+0x749/0x1190 [ 273.296917][ T30] ? rcu_is_watching+0x12/0xc0 [ 273.301676][ T30] ? synchronize_rcu_expedited+0x424/0x450 [ 273.307498][ T30] ? trace_sched_wakeup+0xe8/0x140 [ 273.312612][ T30] ? __pfx___schedule+0x10/0x10 [ 273.317472][ T30] ? lock_release+0x4e2/0x6f0 [ 273.322142][ T30] ? schedule+0x298/0x350 [ 273.326947][ T30] ? __pfx_lock_release+0x10/0x10 [ 273.331982][ T30] ? __mutex_trylock_common+0x78/0x250 [ 273.337698][ T30] ? schedule+0x1fd/0x350 [ 273.342051][ T30] ? lock_acquire+0x2f/0xb0 [ 273.346570][ T30] ? schedule+0x1fd/0x350 [ 273.350910][ T30] schedule+0xe7/0x350 [ 273.354999][ T30] schedule_preempt_disabled+0x13/0x30 [ 273.360464][ T30] __mutex_lock+0x6bd/0xb10 [ 273.365001][ T30] ? unregister_netdevice_many_notify+0x1a51/0x21a0 [ 273.371585][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 273.376625][ T30] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 273.381918][ T30] ? __pfx___might_resched+0x10/0x10 [ 273.387233][ T30] ? unregister_netdevice_many_notify+0x959/0x21a0 [ 273.393734][ T30] ? unregister_netdevice_many_notify+0x1a51/0x21a0 [ 273.400357][ T30] unregister_netdevice_many_notify+0x1a51/0x21a0 [ 273.406788][ T30] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 273.413570][ T30] ? rcu_is_watching+0x12/0xc0 [ 273.418378][ T30] ? lock_release+0x4e2/0x6f0 [ 273.423109][ T30] ? kernfs_remove_by_name_ns+0xc4/0x130 [ 273.429221][ T30] ? __pfx_lock_release+0x10/0x10 [ 273.434253][ T30] ? trace_irq_enable.constprop.0+0xea/0x140 [ 273.440252][ T30] unregister_netdevice_queue+0x307/0x3f0 [ 273.445979][ T30] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 273.452203][ T30] _cfg80211_unregister_wdev+0x64b/0x830 [ 273.458021][ T30] ieee80211_remove_interfaces+0x34f/0x720 [ 273.463824][ T30] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 273.470174][ T30] ieee80211_unregister_hw+0x55/0x3a0 [ 273.475577][ T30] hwsim_exit_net+0x3ad/0x7d0 [ 273.480237][ T30] ? __pfx_hwsim_exit_net+0x10/0x10 [ 273.485439][ T30] ? ip_vs_sync_net_cleanup+0x72/0xb0 [ 273.490807][ T30] ? __ip_vs_dev_cleanup_batch+0xb1/0x290 [ 273.496560][ T30] ? __pfx_hwsim_exit_net+0x10/0x10 [ 273.501761][ T30] ops_exit_list+0xb0/0x180 [ 273.506265][ T30] cleanup_net+0x5c6/0xbf0 [ 273.510676][ T30] ? __pfx_cleanup_net+0x10/0x10 [ 273.515615][ T30] ? lock_acquire+0x2f/0xb0 [ 273.520125][ T30] ? process_one_work+0x921/0x1ba0 [ 273.525262][ T30] process_one_work+0x9c5/0x1ba0 [ 273.530622][ T30] ? __pfx_process_one_work+0x10/0x10 [ 273.536029][ T30] ? rcu_is_watching+0x12/0xc0 [ 273.540786][ T30] ? assign_work+0x1a0/0x250 [ 273.545396][ T30] worker_thread+0x6c8/0xf00 [ 273.549981][ T30] ? __pfx_worker_thread+0x10/0x10 [ 273.555104][ T30] kthread+0x3af/0x750 [ 273.559178][ T30] ? __pfx_kthread+0x10/0x10 [ 273.563739][ T30] ? lock_acquire+0x2f/0xb0 [ 273.568252][ T30] ? __pfx_kthread+0x10/0x10 [ 273.572846][ T30] ret_from_fork+0x45/0x80 [ 273.577604][ T30] ? __pfx_kthread+0x10/0x10 [ 273.582197][ T30] ret_from_fork_asm+0x1a/0x30 [ 273.586993][ T30] [ 273.590015][ T30] INFO: task kworker/0:3:1210 blocked for more than 144 seconds. [ 273.597776][ T30] Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0 [ 273.605074][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 273.613726][ T30] task:kworker/0:3 state:D stack:25912 pid:1210 tgid:1210 ppid:2 flags:0x00004000 [ 273.623913][ T30] Workqueue: events reg_todo [ 273.628530][ T30] Call Trace: [ 273.632505][ T30] [ 273.635468][ T30] __schedule+0x1142/0x5b60 [ 273.640415][ T30] ? _raw_spin_lock_irqsave+0x42/0x60 [ 273.645815][ T30] ? rcu_is_watching+0x12/0xc0 [ 273.650576][ T30] ? __pfx___schedule+0x10/0x10 [ 273.655450][ T30] ? lock_release+0x4e2/0x6f0 [ 273.660119][ T30] ? schedule+0x298/0x350 [ 273.664424][ T30] ? __pfx_lock_release+0x10/0x10 [ 273.669450][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 273.674893][ T30] ? rcu_is_watching+0x12/0xc0 [ 273.679667][ T30] ? trace_irq_enable.constprop.0+0xea/0x140 [ 273.685672][ T30] schedule+0xe7/0x350 [ 273.689733][ T30] schedule_preempt_disabled+0x13/0x30 [ 273.695210][ T30] __mutex_lock+0x6bd/0xb10 [ 273.699711][ T30] ? reg_process_self_managed_hints+0x95/0x1f0 [ 273.705881][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 273.710903][ T30] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 273.716904][ T30] ? do_raw_spin_lock+0x12d/0x2c0 [ 273.721927][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 273.727300][ T30] ? reg_process_self_managed_hints+0x95/0x1f0 [ 273.733815][ T30] reg_process_self_managed_hints+0x95/0x1f0 [ 273.739846][ T30] reg_todo+0x684/0x910 [ 273.743992][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 273.749380][ T30] ? process_one_work+0x921/0x1ba0 [ 273.754511][ T30] ? lock_acquire+0x2f/0xb0 [ 273.759013][ T30] ? process_one_work+0x921/0x1ba0 [ 273.764130][ T30] process_one_work+0x9c5/0x1ba0 [ 273.769119][ T30] ? __pfx_crda_timeout_work+0x10/0x10 [ 273.774629][ T30] ? __pfx_process_one_work+0x10/0x10 [ 273.780011][ T30] ? rcu_is_watching+0x12/0xc0 [ 273.784994][ T30] ? assign_work+0x1a0/0x250 [ 273.789674][ T30] worker_thread+0x6c8/0xf00 [ 273.794256][ T30] ? __kthread_parkme+0x148/0x220 [ 273.799304][ T30] ? __pfx_worker_thread+0x10/0x10 [ 273.804526][ T30] kthread+0x3af/0x750 [ 273.808598][ T30] ? __pfx_kthread+0x10/0x10 [ 273.813164][ T30] ? lock_acquire+0x2f/0xb0 [ 273.817729][ T30] ? __pfx_kthread+0x10/0x10 [ 273.822322][ T30] ret_from_fork+0x45/0x80 [ 273.826758][ T30] ? __pfx_kthread+0x10/0x10 [ 273.831339][ T30] ret_from_fork_asm+0x1a/0x30 [ 273.836538][ T30] [ 273.839611][ T30] INFO: task kworker/u8:7:3017 blocked for more than 144 seconds. [ 273.847548][ T30] Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0 [ 273.854927][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 273.863568][ T30] task:kworker/u8:7 state:D stack:23920 pid:3017 tgid:3017 ppid:2 flags:0x00004000 [ 273.873744][ T30] Workqueue: events_unbound linkwatch_event [ 273.879686][ T30] Call Trace: [ 273.882942][ T30] [ 273.885898][ T30] __schedule+0x1142/0x5b60 [ 273.890414][ T30] ? __pfx___schedule+0x10/0x10 [ 273.895292][ T30] ? lock_release+0x4e2/0x6f0 [ 273.899981][ T30] ? schedule+0x298/0x350 [ 273.904325][ T30] ? __pfx_lock_release+0x10/0x10 [ 273.909412][ T30] ? __mutex_trylock_common+0x78/0x250 [ 273.914911][ T30] ? schedule+0x1fd/0x350 [ 273.919239][ T30] ? lock_acquire+0x2f/0xb0 [ 273.923723][ T30] ? schedule+0x1fd/0x350 [ 273.928065][ T30] schedule+0xe7/0x350 [ 273.932146][ T30] schedule_preempt_disabled+0x13/0x30 [ 273.938069][ T30] __mutex_lock+0x6bd/0xb10 [ 273.942582][ T30] ? linkwatch_event+0x51/0xc0 [ 273.947370][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 273.952417][ T30] ? do_raw_spin_unlock+0x172/0x230 [ 273.957627][ T30] ? lock_release+0x4e2/0x6f0 [ 273.962477][ T30] ? process_one_work+0x813/0x1ba0 [ 273.967603][ T30] ? rcu_is_watching+0x12/0xc0 [ 273.972361][ T30] ? linkwatch_event+0x51/0xc0 [ 273.977257][ T30] linkwatch_event+0x51/0xc0 [ 273.981859][ T30] ? __pfx_linkwatch_event+0x10/0x10 [ 273.987179][ T30] ? rcu_is_watching+0x12/0xc0 [ 273.991943][ T30] process_one_work+0x9c5/0x1ba0 [ 273.996957][ T30] ? __pfx_rds_connect_worker+0x10/0x10 [ 274.002502][ T30] ? __pfx_process_one_work+0x10/0x10 [ 274.007911][ T30] ? rcu_is_watching+0x12/0xc0 [ 274.012683][ T30] ? assign_work+0x1a0/0x250 [ 274.017317][ T30] worker_thread+0x6c8/0xf00 [ 274.021910][ T30] ? __kthread_parkme+0x148/0x220 [ 274.026976][ T30] ? __pfx_worker_thread+0x10/0x10 [ 274.032095][ T30] kthread+0x3af/0x750 [ 274.036179][ T30] ? __pfx_kthread+0x10/0x10 [ 274.041134][ T30] ? lock_acquire+0x2f/0xb0 [ 274.045681][ T30] ? __pfx_kthread+0x10/0x10 [ 274.050350][ T30] ret_from_fork+0x45/0x80 [ 274.056405][ T30] ? __pfx_kthread+0x10/0x10 [ 274.061004][ T30] ret_from_fork_asm+0x1a/0x30 [ 274.065805][ T30] [ 274.068829][ T30] INFO: task dhcpcd:5486 blocked for more than 144 seconds. [ 274.076307][ T30] Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0 [ 274.083583][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 274.092269][ T30] task:dhcpcd state:D stack:23376 pid:5486 tgid:5486 ppid:5485 flags:0x00000002 [ 274.102543][ T30] Call Trace: [ 274.105823][ T30] [ 274.108744][ T30] __schedule+0x1142/0x5b60 [ 274.113225][ T30] ? lock_release+0x4e2/0x6f0 [ 274.117926][ T30] ? is_bpf_text_address+0x8a/0x1a0 [ 274.123156][ T30] ? trace_lock_acquire+0x14e/0x1f0 [ 274.128370][ T30] ? is_bpf_text_address+0x30/0x1a0 [ 274.133573][ T30] ? bpf_ksym_find+0x127/0x1c0 [ 274.138487][ T30] ? __pfx___schedule+0x10/0x10 [ 274.143700][ T30] ? lock_release+0x4e2/0x6f0 [ 274.148411][ T30] ? schedule+0x298/0x350 [ 274.152748][ T30] ? __pfx_lock_release+0x10/0x10 [ 274.157788][ T30] ? __mutex_trylock_common+0x78/0x250 [ 274.163240][ T30] ? schedule+0x1fd/0x350 [ 274.167639][ T30] ? lock_acquire+0x2f/0xb0 [ 274.172148][ T30] ? schedule+0x1fd/0x350 [ 274.176477][ T30] schedule+0xe7/0x350 [ 274.180535][ T30] schedule_preempt_disabled+0x13/0x30 [ 274.186005][ T30] __mutex_lock+0x6bd/0xb10 [ 274.190506][ T30] ? cred_has_capability.isra.0+0x192/0x2f0 [ 274.196398][ T30] ? __pfx_cred_has_capability.isra.0+0x10/0x10 [ 274.202625][ T30] ? devinet_ioctl+0x26e/0x1f50 [ 274.207486][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 274.212523][ T30] ? rcu_is_watching+0x12/0xc0 [ 274.217366][ T30] ? bpf_lsm_capable+0x9/0x10 [ 274.222056][ T30] ? security_capable+0x7e/0x260 [ 274.227030][ T30] ? devinet_ioctl+0x26e/0x1f50 [ 274.231877][ T30] devinet_ioctl+0x26e/0x1f50 [ 274.236582][ T30] ? __might_fault+0xe3/0x190 [ 274.241262][ T30] ? __might_fault+0xe3/0x190 [ 274.246423][ T30] ? __pfx_devinet_ioctl+0x10/0x10 [ 274.251556][ T30] ? _copy_from_user+0x59/0xd0 [ 274.256348][ T30] inet_ioctl+0x3aa/0x3f0 [ 274.260677][ T30] ? __pfx_inet_ioctl+0x10/0x10 [ 274.265548][ T30] ? tomoyo_path_number_perm+0x190/0x590 [ 274.271272][ T30] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 274.277227][ T30] sock_do_ioctl+0x116/0x280 [ 274.281836][ T30] ? __pfx_sock_do_ioctl+0x10/0x10 [ 274.286986][ T30] ? percpu_counter_add_batch+0xb5/0x1e0 [ 274.292621][ T30] ? ioctl_has_perm.constprop.0.isra.0+0x2f2/0x450 [ 274.299130][ T30] ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450 [ 274.305656][ T30] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 274.312503][ T30] sock_ioctl+0x228/0x6c0 [ 274.316857][ T30] ? __pfx_sock_ioctl+0x10/0x10 [ 274.321704][ T30] ? selinux_file_ioctl+0x180/0x270 [ 274.326934][ T30] ? selinux_file_ioctl+0xb4/0x270 [ 274.332044][ T30] ? __pfx_sock_ioctl+0x10/0x10 [ 274.336912][ T30] __x64_sys_ioctl+0x190/0x200 [ 274.341671][ T30] do_syscall_64+0xcd/0x250 [ 274.346192][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 274.352496][ T30] RIP: 0033:0x7f23d8eeed49 [ 274.356976][ T30] RSP: 002b:00007ffee3557398 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 274.365404][ T30] RAX: ffffffffffffffda RBX: 00007f23d8e206c0 RCX: 00007f23d8eeed49 [ 274.373555][ T30] RDX: 00007ffee3567588 RSI: 0000000000008914 RDI: 0000000000000018 [ 274.381694][ T30] RBP: 00007ffee3577748 R08: 00007ffee3567548 R09: 00007ffee35674f8 [ 274.389803][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 274.397813][ T30] R13: 00007ffee3567588 R14: 0000000000000028 R15: 0000000000008914 [ 274.405802][ T30] [ 274.408832][ T30] INFO: task kworker/0:5:5870 blocked for more than 144 seconds. [ 274.416720][ T30] Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0 [ 274.423998][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 274.432733][ T30] task:kworker/0:5 state:D stack:23872 pid:5870 tgid:5870 ppid:2 flags:0x00004000 [ 274.442936][ T30] Workqueue: events_power_efficient crda_timeout_work [ 274.450198][ T30] Call Trace: [ 274.453475][ T30] [ 274.456478][ T30] __schedule+0x1142/0x5b60 [ 274.461004][ T30] ? debug_object_activate+0x149/0x4a0 [ 274.466577][ T30] ? rcu_is_watching+0x12/0xc0 [ 274.471353][ T30] ? rcu_is_watching+0x12/0xc0 [ 274.476145][ T30] ? __pfx___schedule+0x10/0x10 [ 274.481002][ T30] ? lock_release+0x4e2/0x6f0 [ 274.485697][ T30] ? schedule+0x298/0x350 [ 274.490049][ T30] ? __pfx_lock_release+0x10/0x10 [ 274.495094][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 274.500503][ T30] ? rcu_is_watching+0x12/0xc0 [ 274.505284][ T30] ? trace_irq_enable.constprop.0+0xea/0x140 [ 274.511265][ T30] schedule+0xe7/0x350 [ 274.515342][ T30] schedule_preempt_disabled+0x13/0x30 [ 274.520800][ T30] __mutex_lock+0x6bd/0xb10 [ 274.525320][ T30] ? lock_acquire+0x2f/0xb0 [ 274.529823][ T30] ? crda_timeout_work+0x15/0x50 [ 274.534783][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 274.539807][ T30] ? rcu_is_watching+0x12/0xc0 [ 274.544589][ T30] ? process_one_work+0x813/0x1ba0 [ 274.549693][ T30] ? trace_lock_acquire+0x14e/0x1f0 [ 274.555444][ T30] ? process_one_work+0x921/0x1ba0 [ 274.560575][ T30] ? crda_timeout_work+0x15/0x50 [ 274.565538][ T30] crda_timeout_work+0x15/0x50 [ 274.570299][ T30] process_one_work+0x9c5/0x1ba0 [ 274.575255][ T30] ? __pfx_process_one_work+0x10/0x10 [ 274.580626][ T30] ? rcu_is_watching+0x12/0xc0 [ 274.585401][ T30] ? assign_work+0x1a0/0x250 [ 274.589985][ T30] worker_thread+0x6c8/0xf00 [ 274.594621][ T30] ? __kthread_parkme+0x148/0x220 [ 274.599678][ T30] ? __pfx_worker_thread+0x10/0x10 [ 274.604822][ T30] kthread+0x3af/0x750 [ 274.608898][ T30] ? __pfx_kthread+0x10/0x10 [ 274.613505][ T30] ? lock_acquire+0x2f/0xb0 [ 274.618046][ T30] ? rcu_is_watching+0x12/0xc0 [ 274.622805][ T30] ? __pfx_kthread+0x10/0x10 [ 274.627399][ T30] ret_from_fork+0x45/0x80 [ 274.631816][ T30] ? __pfx_kthread+0x10/0x10 [ 274.636425][ T30] ret_from_fork_asm+0x1a/0x30 [ 274.641187][ T30] [ 274.644207][ T30] INFO: task syz-executor:6836 blocked for more than 145 seconds. [ 274.652033][ T30] Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0 [ 274.659803][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 274.668508][ T30] task:syz-executor state:D stack:23536 pid:6836 tgid:6836 ppid:1 flags:0x00000004 [ 274.678722][ T30] Call Trace: [ 274.681978][ T30] [ 274.684917][ T30] __schedule+0x1142/0x5b60 [ 274.689418][ T30] ? rcu_is_watching+0x12/0xc0 [ 274.694161][ T30] ? avc_has_perm_noaudit+0x119/0x3a0 [ 274.699550][ T30] ? __pfx___schedule+0x10/0x10 [ 274.704398][ T30] ? lock_release+0x4e2/0x6f0 [ 274.709085][ T30] ? schedule+0x298/0x350 [ 274.713411][ T30] ? __pfx_lock_release+0x10/0x10 [ 274.718814][ T30] ? __mutex_trylock_common+0x78/0x250 [ 274.724289][ T30] ? schedule+0x1fd/0x350 [ 274.728692][ T30] ? lock_acquire+0x2f/0xb0 [ 274.733204][ T30] ? schedule+0x1fd/0x350 [ 274.737568][ T30] schedule+0xe7/0x350 [ 274.741661][ T30] schedule_preempt_disabled+0x13/0x30 [ 274.747131][ T30] __mutex_lock+0x6bd/0xb10 [ 274.751656][ T30] ? rcu_is_watching+0x12/0xc0 [ 274.756928][ T30] ? rtnl_newlink+0x5d9/0x1d60 [ 274.761715][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 274.766771][ T30] ? cap_capable+0xb3/0x250 [ 274.771276][ T30] ? ns_capable+0xd7/0x110 [ 274.775742][ T30] ? rtnl_newlink+0x5d9/0x1d60 [ 274.780557][ T30] rtnl_newlink+0x5d9/0x1d60 [ 274.785198][ T30] ? __pfx_rtnl_newlink+0x10/0x10 [ 274.790247][ T30] ? avc_has_perm_noaudit+0x143/0x3a0 [ 274.795648][ T30] ? cred_has_capability.isra.0+0x192/0x2f0 [ 274.801569][ T30] ? __pfx_cred_has_capability.isra.0+0x10/0x10 [ 274.807859][ T30] ? rcu_is_watching+0x12/0xc0 [ 274.812642][ T30] ? rcu_is_watching+0x12/0xc0 [ 274.817430][ T30] ? lock_release+0x4e2/0x6f0 [ 274.822143][ T30] ? rtnetlink_rcv_msg+0x93a/0xea0 [ 274.827294][ T30] ? __pfx_lock_release+0x10/0x10 [ 274.832330][ T30] ? trace_lock_acquire+0x14e/0x1f0 [ 274.837589][ T30] ? bpf_lsm_capable+0x9/0x10 [ 274.842276][ T30] ? security_capable+0x7e/0x260 [ 274.847258][ T30] ? rtnetlink_rcv_msg+0x205/0xea0 [ 274.852387][ T30] ? lock_acquire+0x2f/0xb0 [ 274.857090][ T30] ? rtnetlink_rcv_msg+0x205/0xea0 [ 274.862602][ T30] ? __pfx_rtnl_newlink+0x10/0x10 [ 274.867739][ T30] rtnetlink_rcv_msg+0x95b/0xea0 [ 274.872712][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 274.878205][ T30] ? __pfx_avc_has_perm+0x10/0x10 [ 274.883302][ T30] netlink_rcv_skb+0x16b/0x440 [ 274.888145][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 274.893616][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 274.898932][ T30] ? lock_release+0x4e2/0x6f0 [ 274.903791][ T30] ? netlink_deliver_tap+0x1ae/0xd30 [ 274.909181][ T30] netlink_unicast+0x53c/0x7f0 [ 274.914019][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 274.919354][ T30] netlink_sendmsg+0x8b8/0xd70 [ 274.924145][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 274.929461][ T30] __sys_sendto+0x488/0x4f0 [ 274.933967][ T30] ? __pfx___sys_sendto+0x10/0x10 [ 274.939023][ T30] ? __fput+0x68d/0xb70 [ 274.943261][ T30] __x64_sys_sendto+0xe0/0x1c0 [ 274.948110][ T30] ? trace_irq_enable.constprop.0+0xea/0x140 [ 274.954101][ T30] do_syscall_64+0xcd/0x250 [ 274.958628][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 274.965024][ T30] RIP: 0033:0x7fe41b18ebbc [ 274.969436][ T30] RSP: 002b:00007fffee4fe9b0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 274.977873][ T30] RAX: ffffffffffffffda RBX: 00007fe41bed4620 RCX: 00007fe41b18ebbc [ 274.985858][ T30] RDX: 0000000000000028 RSI: 00007fe41bed4670 RDI: 0000000000000003 [ 274.993805][ T30] RBP: 0000000000000000 R08: 00007fffee4fea04 R09: 000000000000000c [ 275.001804][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 275.009884][ T30] R13: 0000000000000000 R14: 00007fe41bed4670 R15: 0000000000000000 [ 275.017977][ T30] [ 275.021018][ T30] INFO: task syz.4.243:6887 blocked for more than 145 seconds. [ 275.028754][ T30] Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0 [ 275.036063][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 275.044736][ T30] task:syz.4.243 state:D stack:27104 pid:6887 tgid:6886 ppid:5827 flags:0x00004006 [ 275.054928][ T30] Call Trace: [ 275.058209][ T30] [ 275.061119][ T30] __schedule+0x1142/0x5b60 [ 275.066151][ T30] ? __kernel_text_address+0xd/0x40 [ 275.071383][ T30] ? unwind_get_return_address+0x59/0xa0 [ 275.077046][ T30] ? arch_stack_walk+0xa7/0x100 [ 275.081913][ T30] ? __pfx___schedule+0x10/0x10 [ 275.086798][ T30] ? lock_release+0x4e2/0x6f0 [ 275.091477][ T30] ? schedule+0x298/0x350 [ 275.097489][ T30] ? __pfx_lock_release+0x10/0x10 [ 275.102529][ T30] ? __mutex_trylock_common+0x78/0x250 [ 275.108276][ T30] ? schedule+0x1fd/0x350 [ 275.112603][ T30] ? lock_acquire+0x2f/0xb0 [ 275.117129][ T30] ? schedule+0x1fd/0x350 [ 275.121458][ T30] schedule+0xe7/0x350 [ 275.125543][ T30] schedule_preempt_disabled+0x13/0x30 [ 275.131009][ T30] __mutex_lock+0x6bd/0xb10 [ 275.135525][ T30] ? ip_tunnel_init_net+0x218/0x790 [ 275.140722][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 275.145753][ T30] ? lock_release+0x4e2/0x6f0 [ 275.150427][ T30] ? __pfx_lock_release+0x10/0x10 [ 275.155572][ T30] ? net_generic+0x30/0x2a0 [ 275.160076][ T30] ? lock_acquire+0x2f/0xb0 [ 275.164682][ T30] ? net_generic+0x30/0x2a0 [ 275.169573][ T30] ? ip_tunnel_init_net+0x218/0x790 [ 275.174833][ T30] ? rtnl_lock+0x9/0x20 [ 275.178995][ T30] ip_tunnel_init_net+0x218/0x790 [ 275.184003][ T30] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 275.189655][ T30] ? __kmalloc_noprof+0x23b/0x510 [ 275.194716][ T30] ? __pfx_fou_init_net+0x1/0x10 [ 275.199657][ T30] ? __pfx_ipgre_init_net+0x10/0x10 [ 275.204879][ T30] ops_init+0x1df/0x5f0 [ 275.209130][ T30] setup_net+0x21f/0x860 [ 275.213367][ T30] ? __pfx_setup_net+0x10/0x10 [ 275.218160][ T30] ? down_read_killable+0xcc/0x380 [ 275.223288][ T30] ? __pfx_down_read_killable+0x10/0x10 [ 275.228886][ T30] ? __raw_spin_lock_init+0x3a/0x110 [ 275.234192][ T30] ? debug_mutex_init+0x37/0x70 [ 275.239071][ T30] copy_net_ns+0x2b4/0x6c0 [ 275.243487][ T30] create_new_namespaces+0x3ea/0xad0 [ 275.248801][ T30] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 275.254436][ T30] ksys_unshare+0x45d/0xa40 [ 275.258976][ T30] ? __pfx_ksys_unshare+0x10/0x10 [ 275.263992][ T30] ? do_user_addr_fault+0x83d/0x13f0 [ 275.269759][ T30] __x64_sys_unshare+0x31/0x40 [ 275.274568][ T30] do_syscall_64+0xcd/0x250 [ 275.279080][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.285003][ T30] RIP: 0033:0x7f1d2838cd29 [ 275.289407][ T30] RSP: 002b:00007f1d291a5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 275.297836][ T30] RAX: ffffffffffffffda RBX: 00007f1d285a5fa0 RCX: 00007f1d2838cd29 [ 275.305828][ T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006a040000 [ 275.313774][ T30] RBP: 00007f1d2840e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 275.321764][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 275.329795][ T30] R13: 0000000000000001 R14: 00007f1d285a5fa0 R15: 00007fff8beef178 [ 275.337811][ T30] [ 275.340859][ T30] INFO: task syz.1.248:6931 blocked for more than 145 seconds. [ 275.348433][ T30] Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0 [ 275.355721][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 275.364360][ T30] task:syz.1.248 state:D stack:27736 pid:6931 tgid:6926 ppid:5815 flags:0x00004004 [ 275.375044][ T30] Call Trace: [ 275.378320][ T30] [ 275.381319][ T30] __schedule+0x1142/0x5b60 [ 275.385831][ T30] ? rcu_is_watching+0x12/0xc0 [ 275.390586][ T30] ? trace_irq_enable.constprop.0+0xea/0x140 [ 275.396688][ T30] ? __pfx___schedule+0x10/0x10 [ 275.401535][ T30] ? lock_release+0x4e2/0x6f0 [ 275.406217][ T30] ? schedule+0x298/0x350 [ 275.410555][ T30] ? __pfx_lock_release+0x10/0x10 [ 275.415597][ T30] ? __mutex_trylock_common+0x78/0x250 [ 275.421053][ T30] ? schedule+0x1fd/0x350 [ 275.425395][ T30] ? lock_acquire+0x2f/0xb0 [ 275.429926][ T30] ? schedule+0x1fd/0x350 [ 275.434231][ T30] schedule+0xe7/0x350 [ 275.438326][ T30] schedule_preempt_disabled+0x13/0x30 [ 275.443790][ T30] __mutex_lock+0x6bd/0xb10 [ 275.448321][ T30] ? rcu_is_watching+0x12/0xc0 [ 275.453087][ T30] ? rtnl_newlink+0x5d9/0x1d60 [ 275.457886][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 275.462917][ T30] ? cap_capable+0xb3/0x250 [ 275.467455][ T30] ? ns_capable+0xd7/0x110 [ 275.471885][ T30] ? rtnl_newlink+0x5d9/0x1d60 [ 275.477098][ T30] rtnl_newlink+0x5d9/0x1d60 [ 275.481878][ T30] ? __pfx_rtnl_newlink+0x10/0x10 [ 275.486914][ T30] ? __pfx___schedule+0x10/0x10 [ 275.491774][ T30] ? avc_has_perm_noaudit+0x143/0x3a0 [ 275.497231][ T30] ? lock_release+0x4e2/0x6f0 [ 275.501908][ T30] ? rcu_preempt_deferred_qs_irqrestore+0x502/0xbd0 [ 275.508512][ T30] ? __pfx_lock_release+0x10/0x10 [ 275.513536][ T30] ? do_raw_spin_lock+0x12d/0x2c0 [ 275.518574][ T30] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 275.523933][ T30] ? rcu_is_watching+0x12/0xc0 [ 275.528711][ T30] ? trace_irq_enable.constprop.0+0xea/0x140 [ 275.534719][ T30] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 275.540525][ T30] ? rcu_preempt_deferred_qs_irqrestore+0x502/0xbd0 [ 275.547323][ T30] ? rcu_is_watching+0x12/0xc0 [ 275.552081][ T30] ? __pfx_rtnl_newlink+0x10/0x10 [ 275.557131][ T30] rtnetlink_rcv_msg+0x95b/0xea0 [ 275.562089][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 275.567575][ T30] netlink_rcv_skb+0x16b/0x440 [ 275.572347][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 275.578286][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 275.583594][ T30] ? rcu_is_watching+0x12/0xc0 [ 275.588392][ T30] netlink_unicast+0x53c/0x7f0 [ 275.593156][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 275.598470][ T30] netlink_sendmsg+0x8b8/0xd70 [ 275.603234][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 275.608537][ T30] ____sys_sendmsg+0xaaf/0xc90 [ 275.613295][ T30] ? copy_msghdr_from_user+0x10b/0x160 [ 275.618772][ T30] ? __pfx_____sys_sendmsg+0x10/0x10 [ 275.624055][ T30] ? try_to_wake_up+0x953/0x1490 [ 275.629017][ T30] ___sys_sendmsg+0x135/0x1e0 [ 275.633692][ T30] ? __pfx____sys_sendmsg+0x10/0x10 [ 275.638922][ T30] ? __pfx_lock_release+0x10/0x10 [ 275.644063][ T30] ? trace_lock_acquire+0x14e/0x1f0 [ 275.649285][ T30] ? __fget_files+0x206/0x3a0 [ 275.653977][ T30] __sys_sendmsg+0x16e/0x220 [ 275.658640][ T30] ? __pfx___sys_sendmsg+0x10/0x10 [ 275.663794][ T30] ? __x64_sys_futex+0x1e1/0x4c0 [ 275.668758][ T30] ? rcu_is_watching+0x12/0xc0 [ 275.673528][ T30] ? rcu_is_watching+0x12/0xc0 [ 275.678765][ T30] do_syscall_64+0xcd/0x250 [ 275.683297][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.689259][ T30] RIP: 0033:0x7f80c778cd29 [ 275.693863][ T30] RSP: 002b:00007f80c8685038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 275.702311][ T30] RAX: ffffffffffffffda RBX: 00007f80c79a6160 RCX: 00007f80c778cd29 [ 275.710353][ T30] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000006 [ 275.718343][ T30] RBP: 00007f80c780e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 275.726331][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 275.734279][ T30] R13: 0000000000000000 R14: 00007f80c79a6160 R15: 00007ffec4adfe98 [ 275.742269][ T30] [ 275.745305][ T30] INFO: task syz.0.250:6934 blocked for more than 146 seconds. [ 275.752833][ T30] Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0 [ 275.760133][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 275.768820][ T30] task:syz.0.250 state:D stack:28456 pid:6934 tgid:6933 ppid:5818 flags:0x00004004 [ 275.779100][ T30] Call Trace: [ 275.782793][ T30] [ 275.785754][ T30] __schedule+0x1142/0x5b60 [ 275.790279][ T30] ? __pfx___schedule+0x10/0x10 [ 275.795229][ T30] ? lock_release+0x4e2/0x6f0 [ 275.799990][ T30] ? schedule+0x298/0x350 [ 275.804298][ T30] ? __pfx_lock_release+0x10/0x10 [ 275.809331][ T30] ? __mutex_trylock_common+0x78/0x250 [ 275.815059][ T30] ? schedule+0x1fd/0x350 [ 275.819392][ T30] ? lock_acquire+0x2f/0xb0 [ 275.823890][ T30] ? schedule+0x1fd/0x350 [ 275.828259][ T30] schedule+0xe7/0x350 [ 275.832320][ T30] schedule_preempt_disabled+0x13/0x30 [ 275.837782][ T30] __mutex_lock+0x6bd/0xb10 [ 275.842304][ T30] ? __pfx_cred_has_capability.isra.0+0x10/0x10 [ 275.848564][ T30] ? rtnetlink_rcv_msg+0x372/0xea0 [ 275.853673][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 275.858729][ T30] ? rcu_is_watching+0x12/0xc0 [ 275.863485][ T30] ? lock_release+0x4e2/0x6f0 [ 275.868359][ T30] ? trace_lock_acquire+0x14e/0x1f0 [ 275.873551][ T30] ? bpf_lsm_capable+0x9/0x10 [ 275.878239][ T30] ? security_capable+0x7e/0x260 [ 275.883824][ T30] ? rtnetlink_rcv_msg+0x205/0xea0 [ 275.889006][ T30] ? rtnetlink_rcv_msg+0x372/0xea0 [ 275.894134][ T30] rtnetlink_rcv_msg+0x372/0xea0 [ 275.899109][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 275.904607][ T30] netlink_rcv_skb+0x16b/0x440 [ 275.909379][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 275.914858][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 275.920244][ T30] ? lock_release+0x4e2/0x6f0 [ 275.924954][ T30] ? netlink_deliver_tap+0x1ae/0xd30 [ 275.930234][ T30] netlink_unicast+0x53c/0x7f0 [ 275.935012][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 275.940307][ T30] netlink_sendmsg+0x8b8/0xd70 [ 275.945130][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 275.950431][ T30] ____sys_sendmsg+0xaaf/0xc90 [ 275.955215][ T30] ? copy_msghdr_from_user+0x10b/0x160 [ 275.960672][ T30] ? __pfx_____sys_sendmsg+0x10/0x10 [ 275.965972][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 275.971355][ T30] ? try_to_wake_up+0x953/0x1490 [ 275.976381][ T30] ___sys_sendmsg+0x135/0x1e0 [ 275.981085][ T30] ? __pfx____sys_sendmsg+0x10/0x10 [ 275.986792][ T30] ? wake_up_q+0x9e/0x140 [ 275.991220][ T30] ? __pfx_lock_release+0x10/0x10 [ 275.996285][ T30] ? trace_lock_acquire+0x14e/0x1f0 [ 276.001492][ T30] ? __fget_files+0x206/0x3a0 [ 276.006190][ T30] __sys_sendmsg+0x16e/0x220 [ 276.010775][ T30] ? __pfx___sys_sendmsg+0x10/0x10 [ 276.015896][ T30] ? __x64_sys_futex+0x1e1/0x4c0 [ 276.020860][ T30] ? rcu_is_watching+0x12/0xc0 [ 276.025675][ T30] ? rcu_is_watching+0x12/0xc0 [ 276.030438][ T30] do_syscall_64+0xcd/0x250 [ 276.034986][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 276.040908][ T30] RIP: 0033:0x7fad8f38cd29 [ 276.045419][ T30] RSP: 002b:00007fad90214038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 276.053864][ T30] RAX: ffffffffffffffda RBX: 00007fad8f5a5fa0 RCX: 00007fad8f38cd29 [ 276.061966][ T30] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 276.069970][ T30] RBP: 00007fad8f40e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 276.077954][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 276.085932][ T30] R13: 0000000000000000 R14: 00007fad8f5a5fa0 R15: 00007ffc447eab48 [ 276.094372][ T30] [ 276.097530][ T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 276.106578][ T30] INFO: task syz.0.250:6935 blocked for more than 146 seconds. [ 276.114111][ T30] Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0 [ 276.121416][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 276.130102][ T30] task:syz.0.250 state:D stack:29312 pid:6935 tgid:6933 ppid:5818 flags:0x00004004 [ 276.141778][ T30] Call Trace: [ 276.145113][ T30] [ 276.148033][ T30] __schedule+0x1142/0x5b60 [ 276.152517][ T30] ? __pfx___schedule+0x10/0x10 [ 276.157378][ T30] ? lock_release+0x4e2/0x6f0 [ 276.162051][ T30] ? schedule+0x298/0x350 [ 276.166405][ T30] ? __pfx_lock_release+0x10/0x10 [ 276.171432][ T30] ? __mutex_trylock_common+0x78/0x250 [ 276.176916][ T30] ? schedule+0x1fd/0x350 [ 276.181240][ T30] ? lock_acquire+0x2f/0xb0 [ 276.185763][ T30] ? schedule+0x1fd/0x350 [ 276.190747][ T30] schedule+0xe7/0x350 [ 276.194866][ T30] schedule_preempt_disabled+0x13/0x30 [ 276.200328][ T30] __mutex_lock+0x6bd/0xb10 [ 276.204846][ T30] ? cred_has_capability.isra.0+0x192/0x2f0 [ 276.210736][ T30] ? __pfx_cred_has_capability.isra.0+0x10/0x10 [ 276.217036][ T30] ? ip_rt_ioctl+0xfd/0x15e0 [ 276.221628][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 276.226656][ T30] ? rcu_is_watching+0x12/0xc0 [ 276.231415][ T30] ? bpf_lsm_capable+0x9/0x10 [ 276.236102][ T30] ? security_capable+0x7e/0x260 [ 276.241037][ T30] ? ip_rt_ioctl+0xfd/0x15e0 [ 276.245638][ T30] ip_rt_ioctl+0xfd/0x15e0 [ 276.250058][ T30] ? __pfx_ip_rt_ioctl+0x10/0x10 [ 276.255010][ T30] ? lock_release+0x4e2/0x6f0 [ 276.259693][ T30] ? __might_fault+0xe3/0x190 [ 276.264420][ T30] inet_ioctl+0x347/0x3f0 [ 276.268835][ T30] ? __pfx_inet_ioctl+0x10/0x10 [ 276.273708][ T30] ? tomoyo_path_number_perm+0x190/0x590 [ 276.279369][ T30] ? rcu_watching_snap_stopped_since+0x74/0x110 [ 276.285641][ T30] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 276.291550][ T30] sock_do_ioctl+0x116/0x280 [ 276.296702][ T30] ? __pfx_sock_do_ioctl+0x10/0x10 [ 276.301929][ T30] ? finish_task_switch.isra.0+0x217/0xcc0 [ 276.307757][ T30] ? ioctl_has_perm.constprop.0.isra.0+0x2f2/0x450 [ 276.314446][ T30] ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450 [ 276.320975][ T30] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 276.327927][ T30] sock_ioctl+0x228/0x6c0 [ 276.332326][ T30] ? __pfx_sock_ioctl+0x10/0x10 [ 276.337219][ T30] ? selinux_file_ioctl+0x180/0x270 [ 276.342425][ T30] ? selinux_file_ioctl+0xb4/0x270 [ 276.347550][ T30] ? __pfx_sock_ioctl+0x10/0x10 [ 276.352403][ T30] __x64_sys_ioctl+0x190/0x200 [ 276.357197][ T30] do_syscall_64+0xcd/0x250 [ 276.361719][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 276.367654][ T30] RIP: 0033:0x7fad8f38cd29 [ 276.372059][ T30] RSP: 002b:00007fad901f3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 276.380652][ T30] RAX: ffffffffffffffda RBX: 00007fad8f5a6080 RCX: 00007fad8f38cd29 [ 276.388674][ T30] RDX: 0000000020000140 RSI: 000000000000890b RDI: 0000000000000007 [ 276.397131][ T30] RBP: 00007fad8f40e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 276.405144][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 276.413114][ T30] R13: 0000000000000000 R14: 00007fad8f5a6080 R15: 00007ffc447eab48 [ 276.421109][ T30] [ 276.424142][ T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 276.433198][ T30] INFO: task syz.0.250:6936 blocked for more than 146 seconds. [ 276.440759][ T30] Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0 [ 276.448060][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 276.456746][ T30] task:syz.0.250 state:D stack:29304 pid:6936 tgid:6933 ppid:5818 flags:0x00004004 [ 276.466913][ T30] Call Trace: [ 276.470181][ T30] [ 276.473091][ T30] __schedule+0x1142/0x5b60 [ 276.477639][ T30] ? __pfx___schedule+0x10/0x10 [ 276.482487][ T30] ? lock_release+0x4e2/0x6f0 [ 276.487170][ T30] ? schedule+0x298/0x350 [ 276.491495][ T30] ? __pfx_lock_release+0x10/0x10 [ 276.496525][ T30] ? __mutex_trylock_common+0x78/0x250 [ 276.502383][ T30] ? schedule+0x1fd/0x350 [ 276.506758][ T30] ? lock_acquire+0x2f/0xb0 [ 276.511276][ T30] ? schedule+0x1fd/0x350 [ 276.515636][ T30] schedule+0xe7/0x350 [ 276.519708][ T30] schedule_preempt_disabled+0x13/0x30 [ 276.525181][ T30] __mutex_lock+0x6bd/0xb10 [ 276.529784][ T30] ? rcu_is_watching+0x12/0xc0 [ 276.534570][ T30] ? arp_ioctl+0x765/0xcf0 [ 276.538989][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 276.544055][ T30] ? trace_irq_enable.constprop.0+0xea/0x140 [ 276.550105][ T30] ? arp_ioctl+0x765/0xcf0 [ 276.554590][ T30] ? arp_ioctl+0x765/0xcf0 [ 276.559042][ T30] arp_ioctl+0x765/0xcf0 [ 276.563289][ T30] ? __pfx_arp_ioctl+0x10/0x10 [ 276.568071][ T30] ? __pfx_lock_release+0x10/0x10 [ 276.573534][ T30] ? trace_lock_acquire+0x14e/0x1f0 [ 276.578772][ T30] ? avc_has_extended_perms+0x481/0x1580 [ 276.584406][ T30] inet_ioctl+0x365/0x3f0 [ 276.588751][ T30] ? __pfx_inet_ioctl+0x10/0x10 [ 276.593600][ T30] ? trace_irq_enable.constprop.0+0xea/0x140 [ 276.600049][ T30] ? __schedule+0x114a/0x5b60 [ 276.604764][ T30] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 276.610656][ T30] sock_do_ioctl+0x116/0x280 [ 276.615288][ T30] ? __pfx_sock_do_ioctl+0x10/0x10 [ 276.620521][ T30] ? ioctl_has_perm.constprop.0.isra.0+0x2f2/0x450 [ 276.627075][ T30] ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450 [ 276.633610][ T30] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 276.640496][ T30] sock_ioctl+0x228/0x6c0 [ 276.644864][ T30] ? __pfx_sock_ioctl+0x10/0x10 [ 276.649725][ T30] ? selinux_file_ioctl+0x180/0x270 [ 276.654951][ T30] ? selinux_file_ioctl+0xb4/0x270 [ 276.660071][ T30] ? __pfx_sock_ioctl+0x10/0x10 [ 276.664957][ T30] __x64_sys_ioctl+0x190/0x200 [ 276.669722][ T30] do_syscall_64+0xcd/0x250 [ 276.674203][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 276.680107][ T30] RIP: 0033:0x7fad8f38cd29 [ 276.684545][ T30] RSP: 002b:00007fad901d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 276.692946][ T30] RAX: ffffffffffffffda RBX: 00007fad8f5a6160 RCX: 00007fad8f38cd29 [ 276.700938][ T30] RDX: 0000000020000180 RSI: 0000000000008953 RDI: 0000000000000008 [ 276.709402][ T30] RBP: 00007fad8f40e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 276.717408][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 276.725394][ T30] R13: 0000000000000000 R14: 00007fad8f5a6160 R15: 00007ffc447eab48 [ 276.733347][ T30] [ 276.736385][ T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 276.745436][ T30] INFO: task syz.0.250:6938 blocked for more than 147 seconds. [ 276.753005][ T30] Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0 [ 276.760388][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 276.769113][ T30] task:syz.0.250 state:D stack:28736 pid:6938 tgid:6933 ppid:5818 flags:0x00000004 [ 276.779616][ T30] Call Trace: [ 276.782908][ T30] [ 276.785863][ T30] __schedule+0x1142/0x5b60 [ 276.790460][ T30] ? __pfx___schedule+0x10/0x10 [ 276.795348][ T30] ? lock_release+0x4e2/0x6f0 [ 276.800035][ T30] ? schedule+0x298/0x350 [ 276.804776][ T30] ? __pfx_lock_release+0x10/0x10 [ 276.809825][ T30] ? __mutex_trylock_common+0x78/0x250 [ 276.815309][ T30] ? schedule+0x1fd/0x350 [ 276.819642][ T30] ? lock_acquire+0x2f/0xb0 [ 276.824130][ T30] ? schedule+0x1fd/0x350 [ 276.828487][ T30] schedule+0xe7/0x350 [ 276.832553][ T30] schedule_preempt_disabled+0x13/0x30 [ 276.838021][ T30] __mutex_lock+0x6bd/0xb10 [ 276.842569][ T30] ? __pfx_cred_has_capability.isra.0+0x10/0x10 [ 276.848911][ T30] ? rtnetlink_rcv_msg+0x372/0xea0 [ 276.854035][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 276.859144][ T30] ? rcu_is_watching+0x12/0xc0 [ 276.863908][ T30] ? lock_release+0x4e2/0x6f0 [ 276.868638][ T30] ? trace_lock_acquire+0x14e/0x1f0 [ 276.873858][ T30] ? bpf_lsm_capable+0x9/0x10 [ 276.878611][ T30] ? security_capable+0x7e/0x260 [ 276.883561][ T30] ? rtnetlink_rcv_msg+0x205/0xea0 [ 276.888716][ T30] ? rtnetlink_rcv_msg+0x372/0xea0 [ 276.893856][ T30] rtnetlink_rcv_msg+0x372/0xea0 [ 276.898826][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 276.904344][ T30] netlink_rcv_skb+0x16b/0x440 [ 276.909639][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 276.915232][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 276.920540][ T30] ? lock_release+0x4e2/0x6f0 [ 276.925257][ T30] ? netlink_deliver_tap+0x1ae/0xd30 [ 276.930544][ T30] netlink_unicast+0x53c/0x7f0 [ 276.935354][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 276.940742][ T30] netlink_sendmsg+0x8b8/0xd70 [ 276.945538][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 276.950865][ T30] ____sys_sendmsg+0xaaf/0xc90 [ 276.955640][ T30] ? copy_msghdr_from_user+0x10b/0x160 [ 276.961098][ T30] ? __pfx_____sys_sendmsg+0x10/0x10 [ 276.966407][ T30] ? __pfx___page_table_check_ptes_set+0x10/0x10 [ 276.972735][ T30] ? __folio_batch_add_and_move+0x612/0xc60 [ 276.978692][ T30] ? const_folio_flags+0x5b/0x100 [ 276.983796][ T30] ___sys_sendmsg+0x135/0x1e0 [ 276.988621][ T30] ? __pfx____sys_sendmsg+0x10/0x10 [ 276.993844][ T30] ? __pfx_lock_release+0x10/0x10 [ 276.998921][ T30] ? trace_lock_acquire+0x14e/0x1f0 [ 277.004117][ T30] ? lock_vma_under_rcu+0x6b9/0x980 [ 277.009861][ T30] ? __fget_files+0x206/0x3a0 [ 277.014592][ T30] __sys_sendmsg+0x16e/0x220 [ 277.019182][ T30] ? __pfx___sys_sendmsg+0x10/0x10 [ 277.024271][ T30] ? do_user_addr_fault+0x83d/0x13f0 [ 277.029629][ T30] ? rcu_is_watching+0x12/0xc0 [ 277.034403][ T30] do_syscall_64+0xcd/0x250 [ 277.039115][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 277.045040][ T30] RIP: 0033:0x7fad8f38cd29 [ 277.049429][ T30] RSP: 002b:00007fad901b1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 277.057867][ T30] RAX: ffffffffffffffda RBX: 00007fad8f5a6240 RCX: 00007fad8f38cd29 [ 277.065868][ T30] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 277.073830][ T30] RBP: 00007fad8f40e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 277.081880][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 277.089892][ T30] R13: 0000000000000001 R14: 00007fad8f5a6240 R15: 00007ffc447eab48 [ 277.097946][ T30] [ 277.101002][ T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 277.110060][ T30] INFO: task syz.3.251:6939 blocked for more than 147 seconds. [ 277.118164][ T30] Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0 [ 277.125481][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 277.134136][ T30] task:syz.3.251 state:D stack:26448 pid:6939 tgid:6937 ppid:5823 flags:0x00004006 [ 277.144338][ T30] Call Trace: [ 277.147640][ T30] [ 277.150637][ T30] __schedule+0x1142/0x5b60 [ 277.155166][ T30] ? preempt_count_add+0x76/0x150 [ 277.160192][ T30] ? __wake_up_klogd.part.0+0x99/0xf0 [ 277.165579][ T30] ? trace_lock_acquire+0x14e/0x1f0 [ 277.170795][ T30] ? __pfx___schedule+0x10/0x10 [ 277.177332][ T30] ? lock_release+0x4e2/0x6f0 [ 277.182058][ T30] ? schedule+0x298/0x350 [ 277.186443][ T30] ? __pfx_lock_release+0x10/0x10 [ 277.191498][ T30] ? __mutex_trylock_common+0x78/0x250 [ 277.196991][ T30] ? schedule+0x1fd/0x350 [ 277.201320][ T30] ? lock_acquire+0x2f/0xb0 [ 277.205841][ T30] ? schedule+0x1fd/0x350 [ 277.210176][ T30] schedule+0xe7/0x350 [ 277.214627][ T30] schedule_preempt_disabled+0x13/0x30 [ 277.220107][ T30] __mutex_lock+0x6bd/0xb10 [ 277.224691][ T30] ? rtnl_dellink+0x281/0xaa0 [ 277.229371][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 277.234413][ T30] ? __nla_parse+0x40/0x60 [ 277.238891][ T30] ? rtnl_dellink+0x281/0xaa0 [ 277.243592][ T30] rtnl_dellink+0x281/0xaa0 [ 277.248146][ T30] ? kasan_save_stack+0x33/0x60 [ 277.252997][ T30] ? kasan_save_track+0x14/0x30 [ 277.257892][ T30] ? kasan_save_free_info+0x3b/0x60 [ 277.263095][ T30] ? __kasan_slab_free+0x51/0x70 [ 277.268074][ T30] ? __pfx_rtnl_dellink+0x10/0x10 [ 277.273124][ T30] ? nlmon_xmit+0xa5/0xe0 [ 277.277483][ T30] ? dev_hard_start_xmit+0x9a/0x7b0 [ 277.282695][ T30] ? __dev_queue_xmit+0x7f0/0x43e0 [ 277.287847][ T30] ? netlink_deliver_tap+0xa87/0xd30 [ 277.293127][ T30] ? netlink_unicast+0x5e1/0x7f0 [ 277.298102][ T30] ? cred_has_capability.isra.0+0x192/0x2f0 [ 277.304008][ T30] ? __pfx_cred_has_capability.isra.0+0x10/0x10 [ 277.310317][ T30] ? lock_release+0x4e2/0x6f0 [ 277.315031][ T30] ? rcu_is_watching+0x12/0xc0 [ 277.320206][ T30] ? rcu_is_watching+0x12/0xc0 [ 277.324998][ T30] ? lock_release+0x4e2/0x6f0 [ 277.329672][ T30] ? rtnetlink_rcv_msg+0x93a/0xea0 [ 277.334792][ T30] ? __pfx_lock_release+0x10/0x10 [ 277.339832][ T30] ? trace_lock_acquire+0x14e/0x1f0 [ 277.345048][ T30] ? bpf_lsm_capable+0x9/0x10 [ 277.349805][ T30] ? security_capable+0x7e/0x260 [ 277.354756][ T30] ? rtnetlink_rcv_msg+0x205/0xea0 [ 277.359887][ T30] ? lock_acquire+0x2f/0xb0 [ 277.364394][ T30] ? rtnetlink_rcv_msg+0x205/0xea0 [ 277.369540][ T30] ? __pfx_rtnl_dellink+0x10/0x10 [ 277.374587][ T30] rtnetlink_rcv_msg+0x95b/0xea0 [ 277.379509][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 277.384974][ T30] netlink_rcv_skb+0x16b/0x440 [ 277.389738][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 277.395213][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 277.400492][ T30] ? lock_release+0x4e2/0x6f0 [ 277.405197][ T30] ? netlink_deliver_tap+0x1ae/0xd30 [ 277.410577][ T30] netlink_unicast+0x53c/0x7f0 [ 277.415593][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 277.421345][ T30] ? security_netlink_send+0x2b/0x210 [ 277.426775][ T30] ? __sanitizer_cov_trace_pc+0x62/0x70 [ 277.432322][ T30] netlink_sendmsg+0x8b8/0xd70 [ 277.437117][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 277.442406][ T30] ____sys_sendmsg+0xaaf/0xc90 [ 277.447192][ T30] ? copy_msghdr_from_user+0x10b/0x160 [ 277.452644][ T30] ? __pfx_____sys_sendmsg+0x10/0x10 [ 277.457940][ T30] ___sys_sendmsg+0x135/0x1e0 [ 277.462627][ T30] ? __pfx____sys_sendmsg+0x10/0x10 [ 277.467845][ T30] ? __pfx_lock_release+0x10/0x10 [ 277.472896][ T30] ? trace_lock_acquire+0x14e/0x1f0 [ 277.478139][ T30] ? __fget_files+0x206/0x3a0 [ 277.482817][ T30] __sys_sendmsg+0x16e/0x220 [ 277.487430][ T30] ? __pfx___sys_sendmsg+0x10/0x10 [ 277.492533][ T30] ? __x64_sys_futex+0x1e1/0x4c0 [ 277.497495][ T30] ? rcu_is_watching+0x12/0xc0 [ 277.502263][ T30] ? rcu_is_watching+0x12/0xc0 [ 277.507063][ T30] do_syscall_64+0xcd/0x250 [ 277.511567][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 277.517503][ T30] RIP: 0033:0x7f376a58cd29 [ 277.522401][ T30] RSP: 002b:00007f376b40f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 277.530869][ T30] RAX: ffffffffffffffda RBX: 00007f376a7a5fa0 RCX: 00007f376a58cd29 [ 277.538860][ T30] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003 [ 277.546860][ T30] RBP: 00007f376a60e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 277.554855][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 277.562813][ T30] R13: 0000000000000000 R14: 00007f376a7a5fa0 R15: 00007fffc1395018 [ 277.570799][ T30] [ 277.573825][ T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 277.582914][ T30] INFO: task syz-executor:6942 blocked for more than 148 seconds. [ 277.590827][ T30] Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0 [ 277.598142][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 277.606826][ T30] task:syz-executor state:D stack:28232 pid:6942 tgid:6942 ppid:1 flags:0x00000004 [ 277.617034][ T30] Call Trace: [ 277.620298][ T30] [ 277.623767][ T30] __schedule+0x1142/0x5b60 [ 277.628332][ T30] ? rcu_is_watching+0x12/0xc0 [ 277.633095][ T30] ? lock_release+0x4e2/0x6f0 [ 277.637803][ T30] ? __pfx___schedule+0x10/0x10 [ 277.642757][ T30] ? lock_release+0x4e2/0x6f0 [ 277.647474][ T30] ? schedule+0x298/0x350 [ 277.651810][ T30] ? __pfx_lock_release+0x10/0x10 [ 277.656850][ T30] ? __mutex_trylock_common+0x78/0x250 [ 277.662312][ T30] ? schedule+0x1fd/0x350 [ 277.666658][ T30] ? lock_acquire+0x2f/0xb0 [ 277.671157][ T30] ? schedule+0x1fd/0x350 [ 277.675504][ T30] schedule+0xe7/0x350 [ 277.679566][ T30] schedule_preempt_disabled+0x13/0x30 [ 277.685212][ T30] __mutex_lock+0x6bd/0xb10 [ 277.689713][ T30] ? inet_rtm_newaddr+0x316/0x1560 [ 277.694843][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 277.699864][ T30] ? __pfx___nla_validate_parse+0x10/0x10 [ 277.705612][ T30] ? inet_rtm_newaddr+0x316/0x1560 [ 277.710718][ T30] ? rtnl_lock+0x9/0x20 [ 277.714878][ T30] inet_rtm_newaddr+0x316/0x1560 [ 277.719831][ T30] ? __pfx_cred_has_capability.isra.0+0x10/0x10 [ 277.726557][ T30] ? rcu_is_watching+0x12/0xc0 [ 277.731329][ T30] ? __pfx_inet_rtm_newaddr+0x10/0x10 [ 277.736818][ T30] ? rtnetlink_rcv_msg+0x205/0xea0 [ 277.741952][ T30] ? lock_acquire+0x2f/0xb0 [ 277.746755][ T30] ? rtnetlink_rcv_msg+0x205/0xea0 [ 277.751988][ T30] ? __pfx_inet_rtm_newaddr+0x10/0x10 [ 277.757405][ T30] rtnetlink_rcv_msg+0x95b/0xea0 [ 277.762353][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 277.767861][ T30] ? __pfx_avc_has_perm+0x10/0x10 [ 277.772896][ T30] netlink_rcv_skb+0x16b/0x440 [ 277.777672][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 277.783149][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 277.788469][ T30] ? lock_release+0x4e2/0x6f0 [ 277.793181][ T30] ? netlink_deliver_tap+0x1ae/0xd30 [ 277.798521][ T30] netlink_unicast+0x53c/0x7f0 [ 277.803302][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 277.808631][ T30] netlink_sendmsg+0x8b8/0xd70 [ 277.813402][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 277.818756][ T30] __sys_sendto+0x488/0x4f0 [ 277.823259][ T30] ? __pfx___sys_sendto+0x10/0x10 [ 277.828764][ T30] ? rcu_is_watching+0x12/0xc0 [ 277.833532][ T30] ? rcu_is_watching+0x12/0xc0 [ 277.838345][ T30] __x64_sys_sendto+0xe0/0x1c0 [ 277.843111][ T30] ? trace_irq_enable.constprop.0+0xea/0x140 [ 277.849124][ T30] do_syscall_64+0xcd/0x250 [ 277.853648][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 277.859574][ T30] RIP: 0033:0x7fabc718ebbc [ 277.863981][ T30] RSP: 002b:00007fff6d924c50 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 277.872514][ T30] RAX: ffffffffffffffda RBX: 00007fabc7ed4620 RCX: 00007fabc718ebbc [ 277.880506][ T30] RDX: 0000000000000028 RSI: 00007fabc7ed4670 RDI: 0000000000000003 [ 277.888503][ T30] RBP: 0000000000000000 R08: 00007fff6d924ca4 R09: 000000000000000c [ 277.896600][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 277.904599][ T30] R13: 0000000000000000 R14: 00007fabc7ed4670 R15: 0000000000000000 [ 277.912582][ T30] [ 277.915682][ T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 277.924736][ T30] INFO: task syz-executor:6947 blocked for more than 148 seconds. [ 277.932912][ T30] Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0 [ 277.940273][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 277.948970][ T30] task:syz-executor state:D stack:27872 pid:6947 tgid:6947 ppid:1 flags:0x00000004 [ 277.959153][ T30] Call Trace: [ 277.962434][ T30] [ 277.965390][ T30] __schedule+0x1142/0x5b60 [ 277.969914][ T30] ? rcu_is_watching+0x12/0xc0 [ 277.974718][ T30] ? lock_release+0x4e2/0x6f0 [ 277.979398][ T30] ? __pfx___schedule+0x10/0x10 [ 277.984227][ T30] ? lock_release+0x4e2/0x6f0 [ 277.988923][ T30] ? schedule+0x298/0x350 [ 277.993249][ T30] ? __pfx_lock_release+0x10/0x10 [ 277.998544][ T30] ? __mutex_trylock_common+0x78/0x250 [ 278.004001][ T30] ? schedule+0x1fd/0x350 [ 278.008355][ T30] ? lock_acquire+0x2f/0xb0 [ 278.012862][ T30] ? schedule+0x1fd/0x350 [ 278.017209][ T30] schedule+0xe7/0x350 [ 278.021277][ T30] schedule_preempt_disabled+0x13/0x30 [ 278.026757][ T30] __mutex_lock+0x6bd/0xb10 [ 278.031272][ T30] ? inet_rtm_newaddr+0x316/0x1560 [ 278.036828][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 278.041867][ T30] ? __pfx___nla_validate_parse+0x10/0x10 [ 278.047608][ T30] ? inet_rtm_newaddr+0x316/0x1560 [ 278.052727][ T30] ? rtnl_lock+0x9/0x20 [ 278.056918][ T30] inet_rtm_newaddr+0x316/0x1560 [ 278.061854][ T30] ? __pfx_cred_has_capability.isra.0+0x10/0x10 [ 278.068111][ T30] ? rcu_is_watching+0x12/0xc0 [ 278.072870][ T30] ? __pfx_inet_rtm_newaddr+0x10/0x10 [ 278.078272][ T30] ? rtnetlink_rcv_msg+0x205/0xea0 [ 278.083396][ T30] ? lock_acquire+0x2f/0xb0 [ 278.087929][ T30] ? rtnetlink_rcv_msg+0x205/0xea0 [ 278.093058][ T30] ? __pfx_inet_rtm_newaddr+0x10/0x10 [ 278.098463][ T30] rtnetlink_rcv_msg+0x95b/0xea0 [ 278.103395][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 278.108949][ T30] ? __pfx_avc_has_perm+0x10/0x10 [ 278.113987][ T30] netlink_rcv_skb+0x16b/0x440 [ 278.118766][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 278.124225][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 278.129528][ T30] ? lock_release+0x4e2/0x6f0 [ 278.134203][ T30] ? netlink_deliver_tap+0x1ae/0xd30 [ 278.139941][ T30] netlink_unicast+0x53c/0x7f0 [ 278.144749][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 278.150036][ T30] netlink_sendmsg+0x8b8/0xd70 [ 278.154811][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 278.160091][ T30] __sys_sendto+0x488/0x4f0 [ 278.164607][ T30] ? __pfx___sys_sendto+0x10/0x10 [ 278.169634][ T30] ? rcu_is_watching+0x12/0xc0 [ 278.174397][ T30] ? rcu_is_watching+0x12/0xc0 [ 278.179257][ T30] __x64_sys_sendto+0xe0/0x1c0 [ 278.184197][ T30] ? trace_irq_enable.constprop.0+0xea/0x140 [ 278.190210][ T30] do_syscall_64+0xcd/0x250 [ 278.194759][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 278.200667][ T30] RIP: 0033:0x7fda6138ebbc [ 278.205116][ T30] RSP: 002b:00007ffdeb82bd10 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 278.213521][ T30] RAX: ffffffffffffffda RBX: 00007fda620d4620 RCX: 00007fda6138ebbc [ 278.222061][ T30] RDX: 0000000000000028 RSI: 00007fda620d4670 RDI: 0000000000000003 [ 278.230232][ T30] RBP: 0000000000000000 R08: 00007ffdeb82bd64 R09: 000000000000000c [ 278.238675][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 278.246701][ T30] R13: 0000000000000000 R14: 00007fda620d4670 R15: 0000000000000000 [ 278.254685][ T30] [ 278.257696][ T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 278.266738][ T30] INFO: task syz-executor:6950 blocked for more than 148 seconds. [ 278.274549][ T30] Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0 [ 278.281809][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 278.290477][ T30] task:syz-executor state:D stack:27608 pid:6950 tgid:6950 ppid:1 flags:0x00000004 [ 278.300718][ T30] Call Trace: [ 278.303982][ T30] [ 278.306935][ T30] __schedule+0x1142/0x5b60 [ 278.311443][ T30] ? rcu_is_watching+0x12/0xc0 [ 278.316223][ T30] ? lock_release+0x4e2/0x6f0 [ 278.321007][ T30] ? __pfx___schedule+0x10/0x10 [ 278.325886][ T30] ? lock_release+0x4e2/0x6f0 [ 278.330560][ T30] ? schedule+0x298/0x350 [ 278.334903][ T30] ? __pfx_lock_release+0x10/0x10 [ 278.340363][ T30] ? __mutex_trylock_common+0x78/0x250 [ 278.345869][ T30] ? schedule+0x1fd/0x350 [ 278.350190][ T30] ? lock_acquire+0x2f/0xb0 [ 278.354716][ T30] ? schedule+0x1fd/0x350 [ 278.359053][ T30] schedule+0xe7/0x350 [ 278.363104][ T30] schedule_preempt_disabled+0x13/0x30 [ 278.368580][ T30] __mutex_lock+0x6bd/0xb10 [ 278.373086][ T30] ? inet_rtm_newaddr+0x316/0x1560 [ 278.378249][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 278.383268][ T30] ? __pfx___nla_validate_parse+0x10/0x10 [ 278.389005][ T30] ? inet_rtm_newaddr+0x316/0x1560 [ 278.394123][ T30] ? rtnl_lock+0x9/0x20 [ 278.398295][ T30] inet_rtm_newaddr+0x316/0x1560 [ 278.403229][ T30] ? __pfx_cred_has_capability.isra.0+0x10/0x10 [ 278.409502][ T30] ? rcu_is_watching+0x12/0xc0 [ 278.414260][ T30] ? __pfx_inet_rtm_newaddr+0x10/0x10 [ 278.419663][ T30] ? rtnetlink_rcv_msg+0x205/0xea0 [ 278.425071][ T30] ? lock_acquire+0x2f/0xb0 [ 278.429575][ T30] ? rtnetlink_rcv_msg+0x205/0xea0 [ 278.434712][ T30] ? __pfx_inet_rtm_newaddr+0x10/0x10 [ 278.440092][ T30] rtnetlink_rcv_msg+0x95b/0xea0 [ 278.445518][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 278.450984][ T30] ? __pfx_avc_has_perm+0x10/0x10 [ 278.456043][ T30] netlink_rcv_skb+0x16b/0x440 [ 278.460809][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 278.466280][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 278.471565][ T30] ? lock_release+0x4e2/0x6f0 [ 278.476267][ T30] ? netlink_deliver_tap+0x1ae/0xd30 [ 278.481562][ T30] netlink_unicast+0x53c/0x7f0 [ 278.486339][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 278.491639][ T30] netlink_sendmsg+0x8b8/0xd70 [ 278.496423][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 278.501714][ T30] __sys_sendto+0x488/0x4f0 [ 278.506409][ T30] ? __pfx___sys_sendto+0x10/0x10 [ 278.511431][ T30] ? rcu_is_watching+0x12/0xc0 [ 278.516216][ T30] ? rcu_is_watching+0x12/0xc0 [ 278.520977][ T30] __x64_sys_sendto+0xe0/0x1c0 [ 278.525767][ T30] ? trace_irq_enable.constprop.0+0xea/0x140 [ 278.531749][ T30] do_syscall_64+0xcd/0x250 [ 278.536261][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 278.542151][ T30] RIP: 0033:0x7fed0658ebbc [ 278.547196][ T30] RSP: 002b:00007ffdb9420070 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 278.555640][ T30] RAX: ffffffffffffffda RBX: 00007fed072d4620 RCX: 00007fed0658ebbc [ 278.563618][ T30] RDX: 0000000000000028 RSI: 00007fed072d4670 RDI: 0000000000000003 [ 278.571605][ T30] RBP: 0000000000000000 R08: 00007ffdb94200c4 R09: 000000000000000c [ 278.579849][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 278.587832][ T30] R13: 0000000000000000 R14: 00007fed072d4670 R15: 0000000000000000 [ 278.595807][ T30] [ 278.598803][ T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 278.607839][ T30] INFO: task syz-executor:6953 blocked for more than 149 seconds. [ 278.615669][ T30] Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0 [ 278.622945][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 278.631709][ T30] task:syz-executor state:D stack:27808 pid:6953 tgid:6953 ppid:1 flags:0x00000004 [ 278.641909][ T30] Call Trace: [ 278.645190][ T30] [ 278.648475][ T30] __schedule+0x1142/0x5b60 [ 278.653061][ T30] ? rcu_is_watching+0x12/0xc0 [ 278.657873][ T30] ? lock_release+0x4e2/0x6f0 [ 278.662557][ T30] ? __pfx___schedule+0x10/0x10 [ 278.667443][ T30] ? lock_release+0x4e2/0x6f0 [ 278.672121][ T30] ? schedule+0x298/0x350 [ 278.676473][ T30] ? __pfx_lock_release+0x10/0x10 [ 278.681507][ T30] ? __mutex_trylock_common+0x78/0x250 [ 278.687008][ T30] ? schedule+0x1fd/0x350 [ 278.691343][ T30] ? lock_acquire+0x2f/0xb0 [ 278.695858][ T30] ? schedule+0x1fd/0x350 [ 278.700210][ T30] schedule+0xe7/0x350 [ 278.704274][ T30] schedule_preempt_disabled+0x13/0x30 [ 278.709773][ T30] __mutex_lock+0x6bd/0xb10 [ 278.714298][ T30] ? inet_rtm_newaddr+0x316/0x1560 [ 278.719456][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 278.724532][ T30] ? __pfx___nla_validate_parse+0x10/0x10 [ 278.730258][ T30] ? inet_rtm_newaddr+0x316/0x1560 [ 278.735387][ T30] ? rtnl_lock+0x9/0x20 [ 278.739559][ T30] inet_rtm_newaddr+0x316/0x1560 [ 278.744549][ T30] ? __pfx_cred_has_capability.isra.0+0x10/0x10 [ 278.751177][ T30] ? rcu_is_watching+0x12/0xc0 [ 278.755994][ T30] ? __pfx_inet_rtm_newaddr+0x10/0x10 [ 278.761408][ T30] ? rtnetlink_rcv_msg+0x205/0xea0 [ 278.766829][ T30] ? lock_acquire+0x2f/0xb0 [ 278.771437][ T30] ? rtnetlink_rcv_msg+0x205/0xea0 [ 278.776618][ T30] ? __pfx_inet_rtm_newaddr+0x10/0x10 [ 278.782020][ T30] rtnetlink_rcv_msg+0x95b/0xea0 [ 278.786990][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 278.792480][ T30] ? __pfx_avc_has_perm+0x10/0x10 [ 278.797642][ T30] netlink_rcv_skb+0x16b/0x440 [ 278.802452][ T30] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 278.807951][ T30] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 278.813243][ T30] ? lock_release+0x4e2/0x6f0 [ 278.817980][ T30] ? netlink_deliver_tap+0x1ae/0xd30 [ 278.823277][ T30] netlink_unicast+0x53c/0x7f0 [ 278.828060][ T30] ? __pfx_netlink_unicast+0x10/0x10 [ 278.833444][ T30] netlink_sendmsg+0x8b8/0xd70 [ 278.838246][ T30] ? __pfx_netlink_sendmsg+0x10/0x10 [ 278.843534][ T30] __sys_sendto+0x488/0x4f0 [ 278.848061][ T30] ? __pfx___sys_sendto+0x10/0x10 [ 278.853502][ T30] ? rcu_is_watching+0x12/0xc0 [ 278.858359][ T30] ? rcu_is_watching+0x12/0xc0 [ 278.863160][ T30] __x64_sys_sendto+0xe0/0x1c0 [ 278.867947][ T30] ? trace_irq_enable.constprop.0+0xea/0x140 [ 278.874016][ T30] do_syscall_64+0xcd/0x250 [ 278.878537][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 278.884559][ T30] RIP: 0033:0x7fc88d38ebbc [ 278.889059][ T30] RSP: 002b:00007ffe3c374150 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 278.897482][ T30] RAX: ffffffffffffffda RBX: 00007fc88e0d4620 RCX: 00007fc88d38ebbc [ 278.905483][ T30] RDX: 0000000000000028 RSI: 00007fc88e0d4670 RDI: 0000000000000003 [ 278.913476][ T30] RBP: 0000000000000000 R08: 00007ffe3c3741a4 R09: 000000000000000c [ 278.921534][ T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 278.929535][ T30] R13: 0000000000000000 R14: 00007fc88e0d4670 R15: 0000000000000000 [ 278.937520][ T30] [ 278.940555][ T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 278.949602][ T30] INFO: lockdep is turned off. [ 278.954822][ T30] NMI backtrace for cpu 0 [ 278.954833][ T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0 [ 278.954850][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 278.954860][ T30] Call Trace: [ 278.954864][ T30] [ 278.954871][ T30] dump_stack_lvl+0x116/0x1f0 [ 278.954908][ T30] nmi_cpu_backtrace+0x27b/0x390 [ 278.954927][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 278.954949][ T30] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 278.954969][ T30] watchdog+0xf14/0x1240 [ 278.954994][ T30] ? __pfx_watchdog+0x10/0x10 [ 278.955017][ T30] ? lockdep_hardirqs_on+0x7c/0x110 [ 278.955039][ T30] ? __kthread_parkme+0x148/0x220 [ 278.955056][ T30] ? __pfx_watchdog+0x10/0x10 [ 278.955079][ T30] kthread+0x3af/0x750 [ 278.955097][ T30] ? __pfx_kthread+0x10/0x10 [ 278.955117][ T30] ? __pfx_kthread+0x10/0x10 [ 278.955135][ T30] ret_from_fork+0x45/0x80 [ 278.955155][ T30] ? __pfx_kthread+0x10/0x10 [ 278.955173][ T30] ret_from_fork_asm+0x1a/0x30 [ 278.955193][ T30] [ 278.955199][ T30] Sending NMI from CPU 0 to CPUs 1: [ 279.066670][ C1] NMI backtrace for cpu 1 [ 279.066682][ C1] CPU: 1 UID: 0 PID: 6154 Comm: kworker/u8:13 Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0 [ 279.066698][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 279.066706][ C1] Workqueue: events_unbound nsim_dev_trap_report_work [ 279.066732][ C1] RIP: 0010:unwind_next_frame+0xa2/0x20c0 [ 279.066754][ C1] Code: 44 24 08 49 8d 45 38 48 89 c2 48 89 04 24 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 ac 17 00 00 49 8b 45 38 01 00 00 00 48 89 44 24 10 e8 bf 1f 1f 00 4d 8d 65 50 48 b8 00 [ 279.066766][ C1] RSP: 0018:ffffc9000b4ef5e8 EFLAGS: 00000246 [ 279.066776][ C1] RAX: ffffc9000b4ef6a8 RBX: 0000000000000001 RCX: ffffc9000b4ef740 [ 279.066784][ C1] RDX: 1ffff9200169dedc RSI: ffffc9000b4ef678 RDI: ffffc9000b4ef6a8 [ 279.066793][ C1] RBP: ffffc9000b4ef6f0 R08: ffffc9000b4ef6dc R09: ffffffff90f53f4c [ 279.066801][ C1] R10: ffffc9000b4ef6a8 R11: 0000000000006950 R12: fffff5200169ded7 [ 279.066810][ C1] R13: ffffc9000b4ef6a8 R14: ffffc9000b4ef6a8 R15: ffffc9000b4ef6b0 [ 279.066818][ C1] FS: 0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 279.066833][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 279.066841][ C1] CR2: 00007ffdcdd3cff8 CR3: 000000000df80000 CR4: 00000000003526f0 [ 279.066849][ C1] DR0: 0000000000000007 DR1: 000000000000000b DR2: 0000000000000002 [ 279.066857][ C1] DR3: 0000000000000010 DR6: 00000000ffff0ff0 DR7: 0000000000000400 [ 279.066865][ C1] Call Trace: [ 279.066869][ C1] [ 279.066875][ C1] ? nmi_cpu_backtrace+0x1d8/0x390 [ 279.066892][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 279.066908][ C1] ? nmi_handle+0x1ac/0x5d0 [ 279.066926][ C1] ? unwind_next_frame+0xa2/0x20c0 [ 279.066943][ C1] ? default_do_nmi+0x6a/0x160 [ 279.066957][ C1] ? exc_nmi+0x170/0x1e0 [ 279.066969][ C1] ? end_repeat_nmi+0xf/0x53 [ 279.066989][ C1] ? unwind_next_frame+0xa2/0x20c0 [ 279.067006][ C1] ? unwind_next_frame+0xa2/0x20c0 [ 279.067024][ C1] ? unwind_next_frame+0xa2/0x20c0 [ 279.067041][ C1] [ 279.067044][ C1] [ 279.067049][ C1] ? arch_stack_walk+0x74/0x100 [ 279.067061][ C1] __unwind_start+0x45f/0x7f0 [ 279.067078][ C1] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 279.067095][ C1] arch_stack_walk+0x74/0x100 [ 279.067107][ C1] ? arch_stack_walk+0x74/0x100 [ 279.067118][ C1] stack_trace_save+0x95/0xd0 [ 279.067131][ C1] ? __pfx_stack_trace_save+0x10/0x10 [ 279.067148][ C1] ? stack_trace_save+0x95/0xd0 [ 279.067161][ C1] ? __pfx_stack_trace_save+0x10/0x10 [ 279.067174][ C1] ? stack_depot_save_flags+0x28/0x9c0 [ 279.067190][ C1] kasan_save_stack+0x33/0x60 [ 279.067218][ C1] kasan_save_track+0x14/0x30 [ 279.067235][ C1] __kasan_kmalloc+0xaa/0xb0 [ 279.067252][ C1] __kmalloc_node_track_caller_noprof+0x222/0x510 [ 279.067266][ C1] ? rcu_watching_snap_stopped_since+0x71/0x110 [ 279.067281][ C1] ? __alloc_skb+0x164/0x380 [ 279.067299][ C1] kmalloc_reserve+0xef/0x2c0 [ 279.067314][ C1] __alloc_skb+0x164/0x380 [ 279.067330][ C1] ? __pfx___alloc_skb+0x10/0x10 [ 279.067347][ C1] ? do_raw_spin_lock+0x12d/0x2c0 [ 279.067358][ C1] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 279.067370][ C1] ? lock_acquire+0x2f/0xb0 [ 279.067385][ C1] ? nsim_dev_trap_report_work+0x1cc/0xd00 [ 279.067403][ C1] nsim_dev_trap_report_work+0x2af/0xd00 [ 279.067423][ C1] process_one_work+0x9c5/0x1ba0 [ 279.067442][ C1] ? __pfx_toggle_allocation_gate+0x10/0x10 [ 279.067462][ C1] ? __pfx_process_one_work+0x10/0x10 [ 279.067477][ C1] ? rcu_is_watching+0x12/0xc0 [ 279.067490][ C1] ? assign_work+0x1a0/0x250 [ 279.067505][ C1] worker_thread+0x6c8/0xf00 [ 279.067523][ C1] ? __pfx_worker_thread+0x10/0x10 [ 279.067538][ C1] kthread+0x3af/0x750 [ 279.067553][ C1] ? __pfx_kthread+0x10/0x10 [ 279.067567][ C1] ? lock_acquire+0x2f/0xb0 [ 279.067582][ C1] ? rcu_is_watching+0x12/0xc0 [ 279.067595][ C1] ? __pfx_kthread+0x10/0x10 [ 279.067608][ C1] ret_from_fork+0x45/0x80 [ 279.067624][ C1] ? __pfx_kthread+0x10/0x10 [ 279.067644][ C1] ret_from_fork_asm+0x1a/0x30 [ 279.067661][ C1] [ 279.068665][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 279.474391][ T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-syzkaller-07632-gaa22f4da2a46 #0 [ 279.484526][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 279.494563][ T30] Call Trace: [ 279.497822][ T30] [ 279.500737][ T30] dump_stack_lvl+0x3d/0x1f0 [ 279.505319][ T30] panic+0x71d/0x800 [ 279.509196][ T30] ? __pfx_panic+0x10/0x10 [ 279.513592][ T30] ? __pfx__printk+0x10/0x10 [ 279.518185][ T30] ? ret_from_fork_asm+0x1a/0x30 [ 279.523107][ T30] ? irq_work_claim+0x76/0xa0 [ 279.527772][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 279.533748][ T30] ? irq_work_queue+0x2a/0x80 [ 279.538408][ T30] ? watchdog+0xd7e/0x1240 [ 279.542821][ T30] ? watchdog+0xd71/0x1240 [ 279.547224][ T30] watchdog+0xd8f/0x1240 [ 279.551453][ T30] ? __pfx_watchdog+0x10/0x10 [ 279.556127][ T30] ? lockdep_hardirqs_on+0x7c/0x110 [ 279.561312][ T30] ? __kthread_parkme+0x148/0x220 [ 279.566314][ T30] ? __pfx_watchdog+0x10/0x10 [ 279.570979][ T30] kthread+0x3af/0x750 [ 279.575031][ T30] ? __pfx_kthread+0x10/0x10 [ 279.579606][ T30] ? __pfx_kthread+0x10/0x10 [ 279.584184][ T30] ret_from_fork+0x45/0x80 [ 279.588590][ T30] ? __pfx_kthread+0x10/0x10 [ 279.593179][ T30] ret_from_fork_asm+0x1a/0x30 [ 279.597967][ T30] [ 279.601290][ T30] Kernel Offset: disabled [ 279.605589][ T30] Rebooting in 86400 seconds..